Here is what I did and it still shows that it's running under system information 1) I disabled Memory Integrity. 2) I disabled it from the Group Policy Editor (Administrative Templates > System > Device Guard > Turn on Virtualization Based Security = Off) 3) From Registry: Code: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard] "EnableVirtualizationBasedSecurity"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\CredentialGuard] "Enabled"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity] "Enabled"=dword:00000000 "ChangedInBootCycle"=hex(b):40,76,a1,c4,e6,10,db,01 It still shows as Running in System Information
As I am newbie here my 1st post @MDL I use a local account all I done was simple regedit [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard] "EnableVirtualizationBasedSecurity"=dword:00000000 VBS Gone or running
Code: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard] "RequirePlatformSecurityFeatures"=dword:00000000 "EnableVirtualizationBasedSecurity"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios] "HypervisorEnforcedCodeIntegrity"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\DeviceGuard] "EnableVirtualizationBasedSecurity"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\CredentialGuard] "Enabled"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity] "Enabled"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\KernelShadowStacks] "Enabled"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard] "RequirePlatformSecurityFeatures"=dword:00000000 "EnableVirtualizationBasedSecurity"=dword:00000000 "HypervisorEnforcedCodeIntegrity"=dword:00000000 this worked for me after multiple testings
That didn't work for me, still show that it's running. I don't even have the Virtual Machine Platform enabled in Windows > Programs and Features and have disabled Virtualization Based Security fro the Group Policy Editor then ran that reg file twice but it's still running.
@Super Spartan IDK Disable Virtualization in Bios???, i 've it disabled on my side without all the above registry keys or GPO.
You might have credential guard running with a UEFI lock (or something similar). What does msinfo32 tell you? What is the VBS technology that is running?
I went into the BIOS of my Razer Blade 16, there was an option saying "Security Device Support" which was set to Enabled. I set it to Disabled but that also didn't help
I guess I'm out of luck, there are no settings to change under CPU configuration in the BIOS for this laptop.
Isn't Virtual Base Security a useful security feature and what's the advantage or reason for turning it off?
Do you happen to be using a game like Valorant that requires VBS? The "security device support" is probably TPM2.0 and should be kept on