Uninstalling built in windows programs seems like a very poor conception from lansweeper,  surely in the past 18 months there must have been implementation of function to propose a better solution to this ?

Sophos tends to leave installation files that persist in add/remove programs, at least from my old experience with the application, where I had to use the uninstall tools that Sophos made...  The accepted answer was from a helpful community member, not an official recommendation from Lansweeper - though I must say that it was written so well that I thought it was an official response myself 🙂   - I agree with your conclusion that one should not uninstall Defender, but rather ensure that it stays disabled, which Sophos should do if it installed correctly.   I need to dig up old reports I made, but I made a report that showed everything exactly as the 'scanned antivirus' section shows... i use it to report on several things - one of which is 'defender enabled with sophos' report, as they both shouldn't be running.

ah here it is:

Select 
  Top 1000000 unioned.assetid, 
  tblAssets.AssetName, 
  tsysOS.Image As icon, 
  unioned.software, 
  unioned.version, 
  unioned.Enabled, 
  unioned.Uptodate, 
  unioned.RetrievedFrom, 
  tblAssets.Domain, 
  tblAssets.Username, 
  tblAssets.Userdomain, 
  tblAssets.IPAddress, 
  tblAssets.Description, 
  tblAssetCustom.Manufacturer, 
  tblAssetCustom.Model, 
  tblAssetCustom.Location, 
  tsysIPLocations.IPLocation, 
  tsysOS.OSname As OS, 
  tblAssets.SP As SP, 
  tblAssets.Firstseen, 
  tblAssets.Lastseen 
From 
  (
    (
      Select 
        a.assetid As assetid, 
        a.software As software, 
        a.version As version, 
        'software comparison' As RetrievedFrom, 
        '' As Enabled, 
        '' As Uptodate 
      From 
        (
          Select 
            tblSoftware.AssetID As assetid, 
            tblSoftwareUni.softwareName As software, 
            tblSoftware.softwareVersion As version 
          From 
            tblSoftware 
            Inner Join tblSoftwareUni On tblSoftware.softID = tblSoftwareUni.SoftID 
            Inner Join tsysantivirus On tblSoftwareUni.softwareName Like tsysantivirus.Software
        ) a
    ) 
    Union 
      (
        Select 
          tblAntivirus.AssetID As assetid, 
          tblAntivirus.DisplayName As software, 
          Null As version, 
          'WMI' As RetrievedFrom, 
          Case When tblAntivirus.onAccessScanningEnabled = 1 Then 'Yes' Else 'No' End As Enabled, 
          Case When tblAntivirus.productUpToDate = 1 Then 'Yes' Else 'No' End As Uptodate 
        From 
          tblAntivirus
      )
  ) unioned 
  Inner Join tblAssetCustom On unioned.assetid = tblAssetCustom.AssetID 
  Inner Join tblAssets On tblAssets.AssetID = unioned.assetid 
  Inner Join tsysOS On tblAssets.OScode = tsysOS.OScode 
  Inner Join tblComputersystem On tblAssets.AssetID = tblComputersystem.AssetID 
  Left Join tsysIPLocations On tblAssets.LocationID = tsysIPLocations.LocationID 
Where 
  tblAssetCustom.State = 1  
  and unioned.RetrievedFrom like '%wmi%' 
Order By 
  tblAssets.AssetName