I am having problems with a new Windows Server 2016 VM. This server is a print/internal web server. I have webroot installed on this computer and I also noticed Windows Defender is also active as well. I have noticed several things that are odd. For instance, I have an hosted app on this machine that will launch but immediately closes after entering the username and password. However, on the same machine I installed Firefox and it works fine. The software provider for this app indicates a 405 error is occurring with IE. I have the app defined as a trusted site too. So for now I am using Firefox to logon to the app for now.
We also use Quorum OnQ to backup our hosts. Since this server has 1.5 million files it took a little while for the initial backup which is normal. However, performing following backups takes 5 to 6 hours because it has to scan each file to see if changes were made to back them up or not. So, I enabled QFiltering for this server since this feature will build a database of all the files so that it does not need to scan all files. Once I enabled QFilter, Windows will not allow the QFilter service to start (Event ID 7000, Service Control Manager with error: Windows cannot verify the digital signature of this file... Also, the Qfilter service uses SquirtCopy.
So in order to get a backup of this critical server, I disabled Qfilter and the backup ran last night. It took about 6 hours to complete. Early this morning around 5:40am I remotely checked to see if the backup completed. It completed, but the server was responding sluggish. While I was in the event viewer and using Windows Explorer to view a couple of other files, the server crashed. It not responsive and displayed a black screen. The event viewer did not have any errors for this bad shutdown. I had to shutdown the VM and brought it back up again. Its been running since then. I disabled backups for now.
I am thinking Windows Defender is blocking apps, etc. I want to disable it, but cannot seem to do it. I tried to remove the role via the wizard, and the check boxes for Windows defender are all grayed out. First, I just wanted to disable it, but it won't disable and automatically enables itself after disabling. So now I am trying to remove it altogether but can't since I cannot uncheck it ti remove it.
This server is now in production, so I need to be real careful, etc. Any ideas.