Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


windows 8 defender task scheduler

  • Please log in to reply
1 reply to this topic

#1 ankitj1611


  • Members
  • 1 posts
  • Local time:06:54 AM

Posted 19 June 2014 - 11:29 PM

First this is my first post in this forum.have heard a lot about this community :)






I am using windows 8 in my office.I have disabled windows updates and because of that defeneder dosent updates itself.but sometimes it does.


i searched and found i can create a task in task scheduler using this option


MpCmdRun.exe -SignatureUpdate -MMPC



But the problem in this is that it popups the command prompt when it starts.I want that it runs in hidden so that users in my office dosent sees whats happening.



how can i do it so?








Edited by ankitj1611, 19 June 2014 - 11:30 PM.

BC AdBot (Login to Remove)


#2 scotty_ncc1701


  • Members
  • 520 posts
  • Gender:Male
  • Local time:09:24 PM

Posted 20 June 2014 - 06:17 AM

OK, I don't use Defender, I use another program.  But, here are all available options:
c:\Program Files\Windows Defender>MpCmdRun.exe /?
Microsoft Antimalware Service Command Line Utility ©2006-2012 Microsoft Corp
Use this tool to automate and troubleshoot Microsoft Antimalware Service

MpCmdRun.exe [command] [-options]

Command Description
   -? / -h                                    Displays all available options
                                              for this tool
   -Scan [-ScanType #] [-File <path> [-DisableRemediation]]  Scans for malicious

   -Trace [-Grouping #] [-Level #]            Starts diagnostic tracing
   -GetFiles                                  Collects support information
   -RemoveDefinitions [-All]                  Restores the installed
                                              signature definitions
                                              to a previous backup copy or to
                                              the original default set of
                      [-DynamicSignatures]    Removes only the dynamically
                                              downloaded signatures
   -SignatureUpdate [-UNC | -MMPC]            Checks for new definition updates
   -Restore  [-ListAll | [-Name <name>] [-All] [-Path <path>]]  Restore or list
                                                               quarantined item(
   -AddDynamicSignature [-Path]               Loads a dynamic signature
   -ListAllDynamicSignatures                  List the loaded dynamic signatures

   -RemoveDynamicSignature [-SignatureSetID]  Removes a dynamic signature
   -EnableIntegrityServices                   Enables integrity services
   -SubmitSamples                             Submit all sample requests

Additional Information:

Support information will be in the following directory:
C:\ProgramData\Microsoft\Windows Defender\Support

   -Scan [-ScanType value]
        0  Default, according to your configuration
        1  Quick scan
        2  Full system scan
        3  File and directory custom scan

           [-File <path>]
                Indicates the file or directory  to be scanned, only valid for c
ustom scan.

                This option is valid only for custom scan.
                When specified:
                  - File exclusions are ignored.
                  - Archive files are scanned.
                  - Actions are not applied after detection.
                  - Event log entries are not written after detection.
                  - Detections from the custom scan are not displayed in the use

      Return code is
      0    if no malware is found or malware is successfully remediated and no a
dditional user action is required
      2    if malware is found and not remediated or additional user action is r
equired to complete remediation or there is error in scanning.  Please check His
tory for more information.

   -Trace [-Grouping value] [-Level value]
        Begins tracing Microsoft Antimalware Service's actions.
        You can specify the components for which tracing is enabled and
        how much information is recorded.
        If no component is specified, all the components will be logged.
        If no level is specified, the Error, Warning and Informational levels
        will be logged. The data will be stored in the support directory
        as a file having the current timestamp in its name and bearing
        the extension BIN.

        0x1    Service
        0x2    Malware Protection Engine
        0x4    User Interface
        0x8    Real-Time Protection
        0x10   Scheduled actions
        0x20   NIS/GAPA

        0x1    Errors
        0x2    Warnings
        0x4    Informational messages
        0x8    Function calls
        0x10   Verbose
        0x20   Performance

   -GetFiles [-Scan]
        Gathers the following log files and packages them together in a
        compressed file in the support directory

        - Any trace files from Microsoft Antimalware Service
        - The Windows Update history log
        - All Microsoft Antimalware Service events from the System event log
        - All relevant Microsoft Antimalware Service registry locations
        - The log file of this tool
        - The log file of the signature update helper tool

        Scans for unusual files.  The files and results of the scan
        will be packaged in the compressed file.

        Restores the last set of signature definitions

        Removes any installed signature and engine files. Use this
        option if you have difficulties trying to update signatures.

        Removes all Dynamic Signatures.

        Checks for new definition updates

        [-UNC [-Path <path>]]
        Performs update directly from UNC file share specified in <path>
        If -Path is not specified, update will be performed directly from the
             preconfigured UNC location

        Performs update directly from Microsoft Malware Protection Center

        List all items that were quarantined

        [-Name <name>]
        Restores the most recently quarantined item based on threat name
        One Threat can map to more than one file

        Restores all the quarantined items based on name

        Specify the path where the quarantined items will be restored.
        If not specified, the item will be restored to the original path.
   -AddDynamicSignature -Path <path>
        Adds a Dynamic Signature specified by <path>

        Lists SignatureSet ID's of all Dynamic Signatures added to the client
        via MAPS and MPCMDRUN -AddDynamicSignature

   -RemoveDynamicSignature -SignatureSetID <SignatureSetID>
        Removes a Dynamic Signature specified by <SignatureSetID>

Another option might be to try piping to NUL (or NULL, don't remember which it is):

MpCmdRun.exe -SignatureUpdate -MMPC > NUL




MpCmdRun.exe -SignatureUpdate -MMPC > NULL

But like I said, I don't use Defender, so this is a "best guess".

Best of luck.

Edited by scotty_ncc1701, 20 June 2014 - 06:18 AM.

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users