Forum Discussion
Navilhoss422
Mar 11, 2022Copper Contributor
Windows 11 Defender not responding at all - No online solutions working.
Hello all! This is my first post on here, so i am sorry if i maybe mess something up with the formatting or so. But i have been having an issue ever since i got Windows 11 for my Surface Pro 4, whic...
- Mar 12, 2022
I have finally (!) resolved the issue. However, i was forced to do a reset of my system. It seems to be working reliably now, even after a restart. Hopefully this problem does not reappear. I honestly think ill sell my Surface Pro if it does - It's just not worth spending so much time for.
ashadyllia
Apr 05, 2022Copper Contributor
For making policies instantly take action, use command prompt or powershell as admin and start the ~15seconds long command:
gpupdate /force /wait:-1
Several settings but require you to restart the PC. ... as usual, it's a bit unpredictable on Registry edit time of activation. 🙂
gpupdate /force /wait:-1
Several settings but require you to restart the PC. ... as usual, it's a bit unpredictable on Registry edit time of activation. 🙂
ashadyllia
Apr 05, 2022Copper Contributor
last edit:
I forgot to mention EXPLOIT GUARD feature of WinDefend. It needs an outer configuration file. In my Registry-edits you see I used a file "C:\0\Settings.xml" or in "C:\!\Settings.xml"... create an .XML and put this in there: then turn on what you like, false to true.
<?xml version="1.0" encoding="UTF-8"?>
<MitigationPolicy>
<SystemConfig>
<DEP Enable="false" EmulateAtlThunks="false" />
<ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
<SystemCalls DisableWin32kSystemCalls="false" />
<ExtensionPoints DisableExtensionPoints="false" />
<DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
<ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
<SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
<Fonts DisableNonSystemFonts="false" AuditOnly="false" />
<ImageLoad BlockRemoteImageLoads="false" AuditRemoteImageLoads="false" BlockLowLabelImageLoads="false" AuditLowLabelImageLoads="false" PreferSystem32="false" AuditPreferSystem32="false" />
<SEHOP Enable="false" TelemetryOnly="false" />
<Heap TerminateOnError="false" />
<UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" AuditUserShadowStack="false" />
</SystemConfig>
</MitigationPolicy>
I forgot to mention EXPLOIT GUARD feature of WinDefend. It needs an outer configuration file. In my Registry-edits you see I used a file "C:\0\Settings.xml" or in "C:\!\Settings.xml"... create an .XML and put this in there: then turn on what you like, false to true.
<?xml version="1.0" encoding="UTF-8"?>
<MitigationPolicy>
<SystemConfig>
<DEP Enable="false" EmulateAtlThunks="false" />
<ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
<SystemCalls DisableWin32kSystemCalls="false" />
<ExtensionPoints DisableExtensionPoints="false" />
<DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
<ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
<SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
<Fonts DisableNonSystemFonts="false" AuditOnly="false" />
<ImageLoad BlockRemoteImageLoads="false" AuditRemoteImageLoads="false" BlockLowLabelImageLoads="false" AuditLowLabelImageLoads="false" PreferSystem32="false" AuditPreferSystem32="false" />
<SEHOP Enable="false" TelemetryOnly="false" />
<Heap TerminateOnError="false" />
<UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" AuditUserShadowStack="false" />
</SystemConfig>
</MitigationPolicy>