There’s a problem using Windows Defender for virus protection – win update

Topic

New Reply

You can’t block windows update – you need it to update Defender

Reply | Quote

Replies

Did you mean to post this as a new topic?

cheers, Paul

Reply | Quote

yes

 

Reply | Quote

On Windows 10 machines that I manage for family, updates are delayed either a few weeks by Group Policy or simply setting the network connection to Metered. This depends on whether it is a Pro or Home edition.

So, to update Defender, I created a scheduled task to run at logon. The Program is C:\Program Files\Windows Defender\MpCmdRun.exe and the Argument is -SignatureUpdate. I’m sure I’ve seen this shared before by others on this forum.

Reply | Quote

Like this?
https://www.askwoody.com/forums/topic/defender-wont-update-with-a-metered-connection/

cheers, Paul

Reply | Quote

When you use the defer updates to a later date it does not defer the definition updates.

It all depends on HOW you postpone Windows updating.  If you turn off Windows update services, yes that is way too impactful.

Susan Bradley Patch Lady/Prudent patcher

Reply | Quote

hhhenry1 wrote:

You can’t block windows update – you need it to update Defender

IMO that’s not quite accurate.

If you block Windows Update‘s default mechanism – Windows Update Orchestrator – then Defender automatically uses a failback mechanism – the Background Intelligent Transfer Service (or BITS) – usually after 1-2 days, to keep its AV signatures up-to-date… but not Defender engine updates.

In effect, Defender piggy-backs on the local Windows Update service to reduce local resource usage… but the Defender signature update mechanism is not dependent on the service. This may be because signature updates don’t require the Orchestrator service’s arbiter to work out how or in what order to install them. (See Microsoft’s How Windows Update works article for more info.)

Unless something has changed since I last posted about this (Windows 11?), Windows Update and Microsoft Update use CDNs as download sources, including Defender engine updates whilst Defender signatures via BITS come direct from Microsoft sources, not CDNs.

Hope this helps…

1 user thanked author for this post.

wavy

Reply | Quote

FYI: CDNs = Content Delivery Networks.

I had to look it up…this old brain just can’t deal with all the acronyms and abbreviations any more.

May the Forces of good computing be with you!

RG

PowerShell & VBA Rule!
Computer Specs

1 user thanked author for this post.

Elly

Reply | Quote

I use StopUpdatesWindows set to Hard Block.

This still does not update the engine. But if I didn’t use Defender, I could have anti-virus separate entirely from Windows update.

Reply | Quote

I use WuMgr to manage all updates. I can control everything and there are no surprises from Windows.
https://www.askwoody.com/forums/topic/60002-guide-to-using-wumgr-for-windows-10-updates/

cheers, Paul

Reply | Quote

RetiredGeek wrote:

FYI: CDNs = Content Delivery Networks.

I had to look it up…this old brain just can’t deal with all the acronyms and abbreviations any more.

My mistake, you’re quite right.

Reply | Quote