Comments (5)
I was able to configure this setting using the Local Group Policy Editor (C:\Windows\System32\gpedit.msc
):
Local Computer Policy -> Administrative Templates -> Windows Components -> Microsoft Defender Antivirus -> Real-time Protection -> Scan all downloaded files and attachments -> Disabled
I can close and restart gpedit.msc and see the setting is retained. I checked the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection
, and DisableIOAVProtection
is set to 1
.
But when I run ConfigureDefender, it still shows that this setting is "ON".
???
from configuredefender.
I looked into this some more. It appears that ConfigureDefender is trying to change this registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection
-> set Dword DisableIOAVProtection
to 1
If Windows Defender real time protection is turned on, it disallows writing to this registry key, even if permissions & ownership of the key is set to Administrator. If you disable real time protection, you can then write this value to the key. But if real time protection is re-enabled, the DisableIOAVProtection
Dword will be completely erased.
Looks like ConfigureDefender is going to have to instead use the policy key (HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection
) to set this value... I haven't checked other settings yet.
from configuredefender.
Hi BlohoJo,
Two ConfigureDefender settings are prevented from changes by Windows Defender Tamper Protection:
- Behavior monitoring
- Scan all downloaded files and attachments
When trying to change them you get the alert you posted about.
from configuredefender.
Maybe if runned as Trusted Installer it could work ?
https://winaero.com/execti-run-programs-trustedinstaller/
from configuredefender.
Nothing will help when Tamper Protection is enabled.
Anyway, there is no reason to disable the options that are protected by Tamper Protection.
from configuredefender.
Related Issues (20)
- Support for Windows 10 Multi-Session HOT 2
- scan history bug HOT 2
- ASR rules update HOT 2
- Feature Request: Export Settings / Save Settings HOT 2
- cfg defender on windows 11 issue HOT 1
- Feature Request: Reset Settings to Default HOT 2
- About ASLR 'Default On' on High Defaults HOT 1
- possible to work with server 2016/2019? HOT 5
- Retrieve current config and display HOT 1
- May 2022 3.0.1.1 ConfigureDefender.exe SmartScreen Issue HOT 2
- Trojan.Autoit.Wirus Report HOT 2
- Powershell HOT 1
- Use GitHub repo for source code, GitHub Releases for binaries HOT 3
- Network unresponsive when using the HIGH profile.
- "Automatic sample submission" repeated warning HOT 1
- ConfigureDefender and Intune HOT 1
- Scrolling the GUI HOT 2
- [Feature Request] Add Option For Time Interval To Check For Intelligence Updates Automatically HOT 2
- Run from commandline HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from configuredefender.