Auto Scan USB

create share 671 Reputation points
2022-02-08T23:55:25.713+00:00

Hi,

Is it still not possible to let windows defender auto-scan USB Flash Disk once it is connected to the system?

Thanks.

Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,652 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,963 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Reza-Ameri 17,011 Reputation points
    2022-02-10T17:49:12.307+00:00

    USB are removable media and you might connect it for a while and then disconnect it and let say you want quickly copy a document and when you perform scan, you have to wait for the scan to become complete and then remove it. This behavior has been troublesome for some users. However, when the real-time protection is on and you navigate to the USB and it detects any malware, it will automatically detect and remove it and you may right click and run scan with it.
    There is PowerShell command called Set-MpPreference -DisableRemovableDriveScanning where you could set to True or False to disable or enable scanning removable drive and you could set it with management tools like Group Policy and Microsoft Intune too. And when the policy is enable it will scan removable media during full scan.

    1 person found this answer helpful.
    0 comments No comments

  2. Dwayne White 5 Reputation points
    2024-02-07T14:50:05+00:00

    Since the question hasn't been closed, and I was having a similar question, I thought I would post my solution. Windows AutoPlay "runs" anything that connects to a port. This helps with monitor, headphone, mouse, keyboard, etc. All sorts of connections are made easier by AutoPlay. But you are correct there is a danger with some thumb drive based malware. What I did was typed "Edit Group Policy" in the Taskbar Search box and opened it when it was suggested. Computer Configuration > Administrative Templates > Windows Components > AutoPlay Policies. There is a Setting called "Turn off Autoplay." Enable this for All Drives. Essentially this stops the Windows AutoPlay from immediately running any thumb drive that connects. This then leaves you with the choice of when to scan or not scan the thumb drive with an Antivirus program before opening. UAC also helps stop autorun.exe malware. Trade off is your media and headphones may not auto detect and connect anymore. Security and convenience are an inverse relationship.

    1 person found this answer helpful.
    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.