Results 1 to 1 of 1
2013-12-20, 16:25 #1
- Join Date
- Dec 2009
- Polk County, Florida
- Thanked 251 Times in 199 Posts
Windows Defender Automatic Update, Scheduled Scans
This is not intended to stir the pot again over this AV or that AV and which is better. For those of us who do use Windows Defender but don't allow Automatic Windows Updates, Windows Defender definition updates can be scheduled using Task Scheduler. I posted this as an answer in another forum, and considered that it might be easier to find here, so I've copied, edited and reposted it here.
This tutorial will work for Windows 8, Windows 8.1, and Windows 8.1.1.
A shortcut to Task Scheduler can be found in Control Panel > Administrative Tools. Or, on the Start Screen, type tasks, click on Settings, then Schedule tasks to open Task Scheduler, which runs on the Desktop.
Task Scheduler must be "Run as administrator" in order to schedule this task successfully (right-click and select Run as administrator).
In the left pane of Task Scheduler, expand Task Scheduler Library, expand Microsoft, and expand Windows. Scroll down the list of folders to Windows Defender, and click on that folder. In the center pane is a listing of all the tasks scheduled by default for Windows Defender. (One of these is Windows Defender Scheduled Scan, which is a daily quick scan that runs when the PC is left idle for 10 minutes, and is interrupted if the idle state is interrupted.) Leave these as they are, and in the right pane, click on Create Task.
This will open a dialog box with tabs for General, Triggers, Actions, Conditions, and History. In the General tab, give your task a name in the Name box. Mine is "Daily Signature Update". Note that Location: is already filled in as \Microsoft\Windows\Windows Defender; leave that as it is. A Description can be added, but isn't necessary.
Under Security options, click on the button Change User or Group... In the Select User of Group dialog that pops up, type system in the box for Enter the object name to select, then click the button Check Names. This will reformat system into the Windows way of names, and will be changed to SYSTEM. Click OK on that box, and SYSTEM is transformed once more to NT AUTHORITY\SYSTEM.
Next, put a check by Run with highest privileges, and using the dropbox by Configure for: select Windows 8 (this will show 8.1 if you have upgraded), then click on the Triggers tab.
At the bottom of the Triggers tab, click the New... button. In the New Trigger dialog box that pops up, put a tick in the radio button for Daily. Start: will be pre-filled the current date and time. Change the Start time to whatever you like. Bear in mind that if you hibernate or sleep your PC rather than turn it off, this can be any time. If you turn your PC off, this should be a time when the machine will be running. Enabled will have a check by it, and everything else on the New Trigger tab can be left as is.
Click the Actions tab and the New... button at the bottom. In the New Action dialog box, Start a program will be pre-filled beside Action; leave that as is. By the Program/script textbox, click the Browse button and navigate to Program Files\Windows Defender\, highlight MpCmdRun.exe and click the Open button. In the Add arguments (optional): textbox type -SignatureUpdate -MMPC then click OK.
On the Condititons tab, leave the box unchecked by Start the task only if the computer is idle for: because this is a background task that happens very quickly. If you hibernate/sleep your PC rather than turning it off, put a check by Wake the computer to run this task. Under Network, put a check in the box, and leave Any connection as the available connection.
In the Settings tab be sure there's a check by Allow task to be run on demand, and Run task as soon as possible after a scheduled start is missed. The rest can be left as is.
Click OK, and you're finished. Windows Defender definitions will be updated every day at the time you selected.
My PC is left on 24/7, and my daily update is scheduled for 6:00 AM.
To schedule a Windows Defender full scan, follow the instructions in this post with the exception of the arguments to add to the program in the Actions tab.
For arguments, you want Windows Defender to get the latest definitions update and then run a full scan; -SignatureUpdate -Scan -ScanType 2. There is a space after each argument. For a Quick Scan, use -SignatureUpdate -Scan -ScanType 1.
I have mine set for a daily quick scan and weekly full scan (a daily full scan is a bit of overkill for me). Note that for a weekly full scan, in the New Trigger dialog box you'll want to use Weekly, and select a day and time.
Last edited by bbearren; 2014-04-22 at 18:10. Reason: updated OS versions capabilityCreate a new drive image before making system changes, in case you need to start over!
"Let them that don't want it have memories of not gettin' any." "Gratitude is riches and complaint is poverty and the worst I ever had was wonderful." Brother Dave Gardner "Experience is what you get when you're looking for something else." Sir Thomas Robert Deware. "The problem is not the problem. The problem is your attitude about the problem. Do you understand?" Captain Jack Sparrow. Unleash Windows