Microsoft Defender – Windows Blog by Brink

Microsoft Defender

Open New Application Guard Window in Microsoft Edge

Microsoft Defender Application Guard opens Microsoft Edge in an isolated Hyper-V browsing container like a sandbox to better protect your device and data from malware.

When you browse in Application Guard for Microsoft Edge, certain actions like save data, copy and paste, printing, access to camera and microphone, and advanced graphics are disabled by default. You can choose to turn on these actions, but be aware that your browsing might be less secure.

This tutorial will show you how to open a new Microsoft Edge in Application Guard window for your account in the Pro, Education, and Enterprise editions of Windows 10 and Windows 11.

Read more…

Turn On or Off Advanced Graphics in Application Guard for Microsoft Edge

Microsoft Defender Application Guard opens Microsoft Edge in an isolated Hyper-V browsing container like a sandbox to better protect your device and data from malware.

When you browse in Application Guard for Microsoft Edge, certain actions like save data, copy and paste, printing, access to camera and microphone, and advanced graphics are disabled by default.

You can turn on or off improve video and graphics performance with Hyper-V virtualization technology in Application Guard for Microsoft Edge.

This tutorial will show you how to turn on or off advanced graphics in Application Guard for Microsoft Edge for all users in the Pro, Education, and Enterprise editions of Windows 10 and Windows 11.

Read more…

Turn On or Off Camera and Microphone Access in Application Guard for Microsoft Edge

Microsoft Defender Application Guard opens Microsoft Edge in an isolated Hyper-V browsing container like a sandbox to better protect your device and data from malware.

When you browse in Application Guard for Microsoft Edge, certain actions like save data, copy and paste, printing, access to camera and microphone, and advanced graphics are disabled by default.

You can turn on or off allow access to camera and microphone in Application Guard for Microsoft Edge.

This tutorial will show you how to turn on or off allow access to camera and microphone Application Guard for Microsoft Edge for all users in the Pro, Education, and Enterprise editions of Windows 10 and Windows 11.

Read more…

Turn On or Off Print from Application Guard for Microsoft Edge

Microsoft Defender Application Guard opens Microsoft Edge in an isolated Hyper-V browsing container like a sandbox to better protect your device and data from malware.

When you browse in Application Guard for Microsoft Edge, certain actions like save data, copy and paste, printing, access to camera and microphone, and advanced graphics are disabled by default.

You can turn on or off allow printing from Application Guard for Microsoft Edge.

This tutorial will show you how to turn on or off allow printing from Application Guard for Microsoft Edge for all users in the Pro, Education, and Enterprise editions of Windows 10 and Windows 11.

Read more…

Turn On or Off Copy and Paste to and from Application Guard for Microsoft Edge

Microsoft Defender Application Guard opens Microsoft Edge in an isolated Hyper-V browsing container like a sandbox to better protect your device and data from malware.

When you browse in Application Guard for Microsoft Edge, certain actions like save data, copy and paste, printing, access to camera and microphone, and advanced graphics are disabled by default.

You can turn on or off allowing copy and paste to and from Application Guard for Microsoft Edge.

This tutorial will show you how to turn on or off allowing copy and paste to and from Application Guard for Microsoft Edge for all users in the Pro, Education, and Enterprise editions of Windows 10 and Windows 11.

Read more…

Turn On or Off Save Data in Application Guard for Microsoft Edge

Microsoft Defender Application Guard opens Microsoft Edge in an isolated Hyper-V browsing container like a sandbox to better protect your device and data from malware.

When you browse in Application Guard for Microsoft Edge, certain actions like save data, copy and paste, printing, access to camera and microphone, and advanced graphics are disabled by default.

You can turn on or off to keep any data that saved while browsing in Application Guard for Microsoft Edge.

This tutorial will show you how to turn on or off save data while browsing in Application Guard for Microsoft Edge for all users in the Pro, Education, and Enterprise editions of Windows 10 and Windows 11.

Read more…

Hide or Show App and Browser Control page in Windows Security

Windows Security provides built-in security options to help protect your device from malicious software attacks.

App & browser control in Windows Security provides the settings for Microsoft Defender SmartScreen, which helps protect your device from potentially dangerous apps, files, websites, and downloads.

App & browser control includes the following features:

  • Smart App Control¬†provides enhanced protection from untrusted apps in Windows 11.
  • Reputation-based protection¬†leverages what Microsoft knows about various sites, services, and publishers, as well as threats we’ve seen in action to help protect you from malicious or¬†potentially unwanted apps,¬†files, or¬†websites.
  • Isolated browsing¬†is for¬†Microsoft Defender Application Guard for Edge¬†that can help to protect you against untrusted and potentially dangerous sites by opening them in a virtualized container, isolated from your important files and folders.
  • Exploit protection¬†is already running and protecting your device, and your device is set up with the protection settings that work best for most people. However, you can always customize the settings for your device and the programs you run. If you manage devices and programs in an organization, you can use the export feature to share customized exploit protection settings across all of the devices in your organization.

You can hide the¬†App & browser control¬†area from users on the device. This option can be useful if you don’t want users to see or have access to user-configured options for these features.

This tutorial will show you how to hide or show the App & browser control page in Windows Security for all users in Windows 10 and Windows 11.

Read more…

Add or Remove Exclusions for Microsoft Defender Antivirus in Windows 11

Windows Security is built-in to Windows 11 and includes an antivirus program called Microsoft Defender Antivirus. Your device will be actively protected from the moment you start Windows 11. Windows Security continually scans for malware (malicious software), viruses, and security threats. In addition to this real-time protection, updates are downloaded automatically to help keep your device safe and protect it from threats.

If you trust a file, file type, folder, or a process that Windows Security has detected as malicious, you can stop Windows Security from alerting you or blocking the program by adding the file to the exclusions list.

This tutorial will show you how to add or remove exclusions for Microsoft Defender Antivirus for Windows Security in Windows 10 and Windows 11.

Read more…

Clear Windows Security Protection History in Windows 11

The Protection History page in the Windows Security app is where you can go to view recommendations and actions that Microsoft Defender Antivirus has taken on your behalf, Potentially Unwanted Apps that have been removed, or key services (ex: SmartScreen) that are turned off.

Protection History only retains events for 15 days by default, after which they will automatically be cleared from history.

This tutorial will show you how to manually clear Windows Security protection history in Windows 10 and Windows 11.

Read more…

Change Time to Clear Windows Security Protection History in Windows 11

The Protection History page in the Windows Security app is where you can go to view recommendations and actions that Microsoft Defender Antivirus has taken on your behalf, Potentially Unwanted Apps that have been removed, or key services (ex: SmartScreen) that are turned off.

Protection History only retains events for 15 days by default, after which they will automatically be cleared from history.

You can change the number of days to keep items in the scan history folder. After this time, Microsoft Defender removes the items. If you specify a value of zero, Microsoft Defender does not remove items.

This tutorial will show you how to change how many days to automatically clear Windows Security protection history in Windows 10 and Windows 11.

Read more…

View Windows Security Protection History in Windows 11

The Protection History page in the Windows Security app is where you can go to view recommendations and actions that Microsoft Defender Antivirus has taken on your behalf, Potentially Unwanted Apps that have been removed, or key services (ex: SmartScreen) that are turned off.

Protection History only retains events for 15 days by default, after which they will automatically be cleared from history.

This tutorial will show you how to view the protection history of Microsoft Defender Antivirus in Windows Security in Windows 11.

Read more…

Enable or Disable Microsoft Defender PUA Protection in Windows 11

Potentially unwanted apps (PUA)¬†aren’t malware, but they might display advertising, use your PC for cryptomining, or do other things you’d prefer they not do. Potentially unwanted applications (PUA) are a category of software that can cause your machine to run slowly, display unexpected ads, or at worst, install other software which may be more harmful or annoying.

Microsoft Defender Antivirus blocks detected PUA files and any attempts to download, move, run, or install them. Blocked PUA files are then moved to quarantine. When a PUA file is detected on an endpoint, Microsoft Defender Antivirus sends a notification to the user.

This tutorial will show you how to enable or disable Microsoft Defender Antivirus Potentially unwanted applications (PUA) protection in Windows 11.

Read more…

Enable or Disable Microsoft Defender SmartScreen for Microsoft Edge in Windows 11

Microsoft Defender SmartScreen protects against phishing or malware websites and applications, and the downloading of potentially malicious files.

Microsoft Defender SmartScreen helps protect your device from malicious sites and downloads while you browse the web in Microsoft Edge.

You can turn on or off Microsoft Defender SmartScreen for Microsoft Edge if wanted in Windows 11.

On = Warns users that sites and downloads are potentially dangerous but allows the action to continue while running in Microsoft Edge.

Off¬†= Turns off Microsoft Defender SmartScreen, so a user isn’t alerted or stopped from downloading potentially malicious apps and files.

Microsoft Defender SmartScreen determines whether a site is potentially malicious by:

  • Analyzing visited webpages for indications of suspicious behavior.
  • Checking the visited sites against a dynamic record of¬†reported¬†phishing sites.

If Microsoft Defender SmartScreen determines that a page is malicious, it will show a warning page to notify the user that that site is reported as unsafe. The next screenshot shows an example of a Microsoft Defender SmartScreen warning page when a user tries to open a malicious website.

This tutorial will show you how to turn on or off Microsoft Defender SmartScreen for Microsoft Edge for your account in Windows 11.

Read more…

Enable or Disable Microsoft Defender SmartScreen for Microsoft Store Apps in Windows 11

Microsoft Defender SmartScreen protects against phishing or malware websites and applications, and the downloading of potentially malicious files.

By default, Microsoft Defender SmartScreen protects your device by checking web content that Microsoft Store apps use.

You can turn on or off Microsoft Defender SmartScreen for Microsoft Store apps in Windows 11.

On = Warns users that the sites and downloads used by Microsoft Store apps are potentially dangerous but allows the action to continue.

Off¬†= Turns off Microsoft Defender SmartScreen, so a user isn’t alerted or stopped from visiting sites or from downloading potentially malicious apps and files.

This tutorial will show you how to turn on or off Microsoft Defender SmartScreen for Microsoft Store apps for your account in Windows 11.

Read more…

 

Enable or Disable Microsoft Defender SmartScreen Check Apps and Files from Web in Windows 11

Microsoft Defender SmartScreen protects against phishing or malware websites and applications, and the downloading of potentially malicious files.

By default, Microsoft Defender SmartScreen helps protect your device by checking for unrecognized apps and files from the web.

  • On¬†= Warns users that the apps and files being downloaded from the web are potentially dangerous but allows the action to continue.
  • Off¬†= Turns off Microsoft Defender SmartScreen, so a user isn’t alerted or stopped from downloading potentially malicious apps and files.

This tutorial will show you how to enable or disable Microsoft Defender SmartScreen Check apps and files from the web in Windows 11.

Read more…

Enable or Disable Microsoft Defender SmartScreen Phishing Protection in Windows 11

Microsoft Defender SmartScreen protects against phishing or malware websites and applications, and the downloading of potentially malicious files.

Starting with Windows 11 build 22593, Microsoft is introducing two powerful new features that strike against the most common cyberattack techniques: phishing and targeted malware. New in Windows 11 is enhanced phishing detection and protection built into Windows with Microsoft Defender SmartScreen. This new feature will help protect users from phishing attacks by identifying and alerting users when they are entering their Microsoft credentials into a malicious application or hacked website. Smart App Control uses code signing alongside Microsoft’s powerful artificial intelligence models to ensure that only trusted applications are run, blocking one of the largest attack vectors on Windows by-default.

This tutorial will show you how to turn on or off Microsoft Defender SmartScreen Phishing protection in Windows 11.

 

Manually Scan with Microsoft Defender Antivirus in Windows 11

Microsoft Defender Antivirus is an antivirus software that is included in Windows 11 and can help protect your device from viruses, malware, and other threats.

Real-time protection consists of always-on scanning with file and process behavior monitoring and heuristics. When real-time protection is on, Microsoft Defender Antivirus detects malware and potentially unwanted software that attempts to install itself or run on your device, and prompts you to take action on malware detections.

Sometimes you may need to manually scan with Microsoft Defender Antivirus.

This tutorial will show you different ways to manually scan files, folders, and drives on demand with Microsoft Defender Antivirus in Windows 10 and Windows 11.

Read more…

Run Microsoft Defender Offline Scan in Windows 11

Microsoft Defender Offline is an antimalware scanning tool that lets you boot and run a scan from a trusted environment. The scan runs from outside the normal Windows kernel so it can target malware that attempts to bypass the Windows shell, such as viruses and rootkits that infect or overwrite the master boot record (MBR).

You can use Microsoft Defender Offline if you suspect a malware infection, or you want to confirm a thorough clean of the endpoint after a malware outbreak.

This tutorial will show you how to manually run a Microsoft Defender Offline scan of your PC in Windows 10 and Windows 11.

Read more…

Add or Remove Allowed Apps for Controlled Folder Access in Windows 11

Microsoft Defender Antivirus is an antivirus software that is included in Windows 11 and can help protect your device from viruses, malware, and other threats.

Controlled folder access helps protect your valuable data from malicious apps and threats, such as ransomware. In a ransomware attack, your files can get encrypted and held hostage.

Controlled folder access protects your data by checking apps against a list of known, trusted apps. With controlled folder access in place, a notification appears on the computer where an app attempted to make changes to a file in a protected folder.

Controlled folder access works by only allowing trusted apps to access protected folders. Protected folders are specified when controlled folder access is configured. Typically, commonly used folders, such as those used for documents, pictures, downloads, and so on, are included in the list of controlled folders.

Controlled folder access works with a list of trusted apps. Apps that are included in the list of trusted software work as expected. Apps that are not included in the list are prevented from making any changes to files inside protected folders.

By default, Windows adds apps that are considered friendly to the allowed list. Such apps that are added automatically are not recorded in the list shown in the Windows Security app or by using the associated PowerShell cmdlets. You shouldn’t need to add most apps. Only add apps if they are being blocked and you can verify their trustworthiness.

Occasionally, an app that is safe to use will be identified as harmful. This happens because Microsoft wants to keep you safe and will sometimes err on the side of caution; however, this might interfere with how you normally use your PC. You can add an app to the list of safe or allowed apps to prevent them from being blocked.

You can specify if certain apps are always considered safe and give write access to files in protected folders. Allowing apps can be useful if a particular app you know and trust is being blocked by the controlled folder access feature.

When you add an app, you have to specify the app’s full path location. Only the app in that location will be permitted access to the protected folders. If the app (with the same name) is in a different location, it will not be added to the allow list and may be blocked by controlled folder access.

An allowed application only has write access to a controlled folder after it starts. For example, an app will continue to trigger events after it’s allowed until it is stopped and restarted.

This tutorial will show you how to add and remove allowed apps for Controlled Folder Access in Microsoft Defender Antivirus in Windows 11.

Read more…