/ _ \ \_\(_)/_/ _//"\\_ more on JOHLEM.net / \ 0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0o0 Antivirus Management Commands: ------------------------------- 1. **Get-MpPreference** (Windows Defender) Display the current settings and preferences for Windows Defender. Syntax: Get-MpPreference 2. **Set-MpPreference** (Windows Defender) Configure settings for Windows Defender, such as exclusions or scan schedules. Syntax: Set-MpPreference -ExclusionPath "C:\Path\To\Exclude" Example: Set-MpPreference -ScanScheduleDay 0 -ScanScheduleTime 02:00 3. **Get-MpComputerStatus** (Windows Defender) Display the current status of Windows Defender, including last scan and update information. Syntax: Get-MpComputerStatus 4. **Start-MpScan** (Windows Defender) Start a manual scan with Windows Defender. Syntax: Start-MpScan -ScanType QuickScan Example: Start-MpScan -ScanType FullScan 5. **Update-MpSignature** (Windows Defender) Update Windows Defender definitions. Syntax: Update-MpSignature 6. **Get-MpThreat** (Windows Defender) Display information about detected threats. Syntax: Get-MpThreat 7. **Remove-MpThreat** (Windows Defender) Remove detected threats. Syntax: Remove-MpThreat 8. **Get-MpThreatDetection** (Windows Defender) List recent threat detection events. Syntax: Get-MpThreatDetection 9. **Add-MpPreference** (Windows Defender) Add an exclusion for files, paths, or processes. Syntax: Add-MpPreference -ExclusionPath "C:\Path\To\Exclude" Example: Add-MpPreference -ExclusionExtension ".log" -ExclusionPath "C:\Logs" -ExclusionProcess "ProcessName.exe" 10. **Remove-MpPreference** (Windows Defender) Remove an exclusion for files, paths, or processes. Syntax: Remove-MpPreference -ExclusionPath "C:\Path\To\Exclude" 11. **Get-Service** for Antivirus Status Check the status of the antivirus service (Windows Defender). Syntax: Get-Service -Name "WinDefend" 12. **Stop-Service** for Antivirus (with caution) Stop the Windows Defender service (not recommended for security reasons). Syntax: Stop-Service -Name "WinDefend" -Force 13. **Start-Service** for Antivirus Start the Windows Defender service. Syntax: Start-Service -Name "WinDefend" 14. **Get-WindowsFeature** (Requires Server) Check if Windows Defender is installed and enabled (Windows Server). Syntax: Get-WindowsFeature -Name "Windows-Defender-Features" 15. **Install-WindowsFeature** (Requires Server) Install Windows Defender on Windows Server if not already installed. Syntax: Install-WindowsFeature -Name "Windows-Defender-Features" 16. **Uninstall-WindowsFeature** (Requires Server) Uninstall Windows Defender from Windows Server (not recommended). Syntax: Uninstall-WindowsFeature -Name "Windows-Defender-Features" +----------------------------------------------------------+ | Note: Antivirus management commands allow for controlling| | and monitoring Windows Defender, including scans, | | updates, and configuration changes. Always be | | cautious when disabling or uninstalling antivirus.| +----------------------------------------------------------+