Microsoft Defender Antivirus

Last updated
Microsoft Defender Antivirus
Other namesWindows Defender
Original author(s) Microsoft
Developer(s) Microsoft
Stable release
4.18.24070.5 / 7 August 2024;25 days ago (2024-08-07) [1]
Operating system
Platform Windows
Predecessor Microsoft Security Essentials
Type Antivirus software, personal firewall, parental control, intrusion prevention, email filtering and anti-phishing
License Proprietary

Microsoft Defender Antivirus (formerly Windows Defender) is an antivirus software component of Microsoft Windows. It was first released as a downloadable free anti-spyware program for Windows XP and was shipped with Windows Vista and Windows 7. It has evolved into a full antivirus program, replacing Microsoft Security Essentials in Windows 8 or later versions. [3]

Contents

In March 2019, Microsoft announced Microsoft Defender ATP for Mac for business customers to protect their Mac [4] devices from attacks on a corporate network, and a year later, to expand protection for mobile devices, it announced Microsoft Defender ATP for Android [5] and iOS [6] devices, which incorporates Microsoft SmartScreen, a firewall, and malware scanning. The mobile version of Microsoft Defender also includes a feature to block access to corporate data if it detects a malicious app is installed.

Microsoft Defender brand

As of 2021, Microsoft Defender Antivirus is part of the much larger Microsoft Defender brand, which includes several other software and service offerings, including:

Features

Microsoft Defender Antivirus provides several key features to protect endpoints from computer virus. In Windows 10, Windows Defender settings are controlled in the Windows Defender Security Center. Windows 10 Anniversary Update includes several improvements, including a new popup that announces the results of a scan. [16]

Real-time protection

Windows Defender real-time notification Windows Defender EICAR.png
Windows Defender real-time notification

In the Windows Defender options, the user can configure real-time protection options. Windows 10's Anniversary Update introduced Limited Periodic Scanning, which optionally allows Windows Defender to scan a system periodically if another antivirus app is installed. [16] It also introduced Block at First Sight, which uses machine learning to predict whether a file is malicious. [17]

Browser integration

Demonstration of Microsoft Defender Browser Protection on Chrome. Pictured here is the warning that the website in question "has been reported as unsafe". Microsoft Defender Smartscreen.png
Demonstration of Microsoft Defender Browser Protection on Chrome. Pictured here is the warning that the website in question "has been reported as unsafe".

Integration with Internet Explorer and Microsoft Edge enables files to be scanned as they are downloaded to detect malicious software inadvertently downloaded. As of April 2018, Microsoft Defender is also available for Google Chrome via an extension [18] and works in conjunction with Google Safe Browsing, but as of late 2022, this extension is now deprecated. [19]

Application Guard

A feature released in early 2018, Windows Defender Application Guard is a feature exclusive to Microsoft Edge that allows users to sandbox their current browsing session from the system. This prevents a malicious website or malware from affecting the system and the browser. Application Guard is a feature only available on Windows 10 Pro and Enterprise. In May 2019, Microsoft announced Application Guard for Google Chrome and Firefox. The extension, once installed, will open the current tabs web page in Microsoft Edge with Application Guard enabled. In April 2024, Microsoft announced that Microsoft Defender Application Guard will be deprecated for Edge for Business. The Chrome and Firefox extensions will not be migrating to Manifest V3 and will be deprecated after May 2024. [20]

Controlled Folder Access

A notification showing Microsoft Defender has blocked access to a protected folder Controlled Folder Access.png
A notification showing Microsoft Defender has blocked access to a protected folder

Controlled Folder Access is a feature introduced with Windows 10 Fall Creators Update to protect a user's important files from the growing threat of ransomware. This feature was released about a year later after the Petya family of ransomware first appeared. The feature will notify the user every time a program tries to access these folders and will be blocked unless given access via the user. Windows will warn the user with a User Account Control popup as a final warning if they opt to "Allow" a program to read Controlled Folders.

History

Microsoft AntiSpyware (Beta 1)

Microsoft AntiSpyware Beta 1 (Version 1.0.701) running on Windows XP Windows AntiSpyware Beta 1.png
Microsoft AntiSpyware Beta 1 (Version 1.0.701) running on Windows XP

Windows Defender was initially based on GIANT AntiSpyware, formerly developed by GIANT Company Software, Inc. [21] The company's acquisition was announced by Microsoft on December 16, 2004. [22] [23] While the original GIANT AntiSpyware officially supported older Windows versions, support for the Windows 9x line of operating systems was later dropped by Microsoft.

The first beta release of Microsoft AntiSpyware from January 6, 2005, was a repackaged version of GIANT AntiSpyware. [22] There were more builds released in 2005, with the last Beta 1 refresh released on November 21, 2005.

At the 2005 RSA Security conference, Bill Gates, the Chief Software Architect and co-founder of Microsoft, announced that Microsoft AntiSpyware would be made available free-of-charge to users with validly licensed Windows 2000, Windows XP, and Windows Server 2003 operating systems to secure their systems against the increasing malware threat. [24]

Windows Defender (Beta 2)

On November 4, 2005, it was announced that Microsoft AntiSpyware was renamed to Windows Defender. [25] [26] Windows Defender (Beta 2) was released on February 13, 2006. It featured the program's new name and a redesigned user interface. The core engine was rewritten in C++, unlike the original GIANT-developed AntiSpyware, which was written in Visual Basic. [27] This improved the application's performance. Also, since Beta 2, the program works as a Windows service, unlike earlier releases, which enables the application to protect the system even when a user is not logged on. Beta 2 also requires Windows Genuine Advantage (WGA) validation. However, Windows Defender (Beta 2) did not contain some of the tools found in Microsoft AntiSpyware (Beta 1). Microsoft removed the System Inoculation, Secure Shredder and System Explorer tools found in MSAS (Beta 1) as well as the Tracks Eraser tool, which allowed users to easily delete many different types of temporary files related to Internet Explorer 6, including HTTP cookies, web cache, and Windows Media Player playback history. [22] German and Japanese versions of Windows Defender (Beta 2) were later released by Microsoft. [28] [29]

Windows Defender - Release

On October 23, 2006, Microsoft released the final version of Windows Defender. [30] It supports Windows XP and Windows Server 2003; however, unlike the betas, it doesn't run on Windows 2000. [31] Some of the key differences from the beta version are improved detection, redesigned user interface and delivery of definition updates via Automatic Updates. [32]

Windows Defender includes has the ability to remove installed ActiveX software. [33] Windows Defender featured an integrated support for Microsoft SpyNet that allows users to report to Microsoft what they consider to be spyware, [34] and what applications and device drivers they allow to be installed on their systems.

Windows Defender - Windows Vista

Windows Vista included several security functionalities related to the Windows Defender. Some of the functionality was removed in subsequent versions of Windows. [35]

Security agents

Security agents which monitor the computer for malicious activities:

  • Auto Start – Monitors lists of programs that are allowed to automatically run when the user starts the computer
  • System Configuration (settings) – Monitors security-related settings in Windows
  • Internet Explorer Add-ons – Monitors programs that automatically run when the user starts Internet Explorer
  • Internet Explorer Configurations (settings) – Monitors browser security settings
  • Internet Explorer Downloads – Monitors files and programs that are designed to work with Internet Explorer
  • Services and Drivers – Monitors services and drivers as they interact with Windows and programs
  • Application Execution – Monitors when programs start and any operations they perform while running
  • Application Registration – Monitors tools and files in the operating system where programs can register to run at any time
  • Windows Add-ons – Monitors add-on programs for Windows

Software Explorer

The Advanced Tools section allows users to discover potential vulnerabilities with a series of Software Explorers. They provide views of startup programs, currently running software, network connected applications, and Winsock providers (Winsock LSPs).

In each Explorer, every element is rated as either "Known", "Unknown" or "Potentially Unwanted". The first and last categories carry a link to learn more about the particular item, and the second category invites users to submit the program to Microsoft SpyNet for analysis by community members. [36] [37] The Software Explorer feature has been removed from Windows Defender in Windows 7. [38]

Conversion to Full Antivirus

Windows Defender was released with Windows Vista and Windows 7, serving as their built-in anti-spyware component. [39] In Windows Vista and Windows 7, Windows Defender was superseded by Microsoft Security Essentials, an antivirus product from Microsoft which provided protection against a wider range of malware. Upon installation, Microsoft Security Essentials disabled and replaced Windows Defender. [40] [41]

In Windows 8, Microsoft upgraded Windows Defender into an antivirus program very similar to Microsoft Security Essentials for Windows 7, [3] and it also uses the same anti-malware engine and virus definitions from MSE. Microsoft Security Essentials itself does not run on Windows versions beyond 7. [40] In Windows 8 or later, Microsoft Defender Antivirus is on by default. It switches itself off upon installation of a third-party anti-virus package. [42] [43]

Following the consumer-end launch, Windows Server 2016 was the first version of Windows Server to include Windows Defender. [44]

Ongoing Evolution of UI and Brands

UI changes

Until Windows 10 version 1703, Windows Defender had a dedicated GUI similar to Microsoft Security Essentials. [3] Additionally, Windows Security and Maintenance tracked the status of Windows Defender. With the first release of Windows 10, Microsoft removed the "Settings" dialog box from Windows Defender's GUI in favor of a dedicated page in the Settings app. Then, in the 1703 update, Microsoft tried to merge both Windows Defender's GUI and Windows Security and Maintenance into a unified UWP app called Windows Defender Security Center (WDSC). [45] Users could still access original GUI by alternative methods, [46] [47] until the 1803 update, which saw the UI removed altogether. [lower-alpha 1] The Security and Maintenance app, however, was never removed.

With the release of Windows Server 2016, Microsoft introduced a Defender module for PowerShell, which allows interacting with Windows Defender via a command-line interface (CLI). [53]

Microsoft continued to decouple the management front-end from the core antivirus. In addition, to WDSC and PowerShell, it is possible to manage the antivirus via Windows Admin Center, Group Policy, WMI, Microsoft Endpoint Manager, and Microsoft Intune's "tenant attach" feature. [54]

Changes in branding and business focus

In Windows 10 version 1703, Microsoft renamed Windows Defender, calling it Windows Defender Antivirus. [55] Windows Firewall and Microsoft SmartScreen also saw their names changed to Windows Defender Firewall and Windows Defender SmartScreen. [56] Microsoft added other components under the "Windows Defender" brand name, including Windows Defender Application Guard (WDAG), [56] Windows Defender Exploit Guard (WDEG), [56] Windows Defender Application Control, [57] and Windows Defender Advanced Threat Protection (Defender ATP). [57]

A year later, Microsoft began dissolving the Windows Defender brand in favor a of the cloud-oriented "Microsoft Defender" brand. The company removed WDSC from the brand in the 1809 update, renaming it Windows Security Center (WSC). [58] The 2004 update renamed Windows Defender Antivirus, calling it Microsoft Defender Antivirus, as Microsoft extended Defender ATP's capabilities beyond the Windows OS. [59] [60] As part of this branding change and shift in focus, they have also changed branding of Windows Defender Firewall and Windows Defender SmartScreen into "Microsoft Defender Firewall" and "Microsoft Defender SmartScreen" respectively, [61] [62] although the former branding name is also often still ambiguously used despite this branding change. [63] [64]

Windows Defender Offline

Windows Defender Offline (formerly known as Standalone System Sweeper) [65] is a stand-alone anti-malware program that runs from bootable removable media (e.g. CD or USB flash drive) designed to scan infected systems while the Windows operating system is offline. [66] Since Windows 10 Anniversary Update in 2016, the option to boot into Windows Defender Offline can be initiated from within Windows itself, negating the need for the separate boot disk.

Microsoft Defender for Individuals

Microsoft Defender for Individuals was released to the general public in June 2022 for Windows 10, Windows 11, Mac OS, Android, and iOS devices. [67] [68] On Windows it works alongside Microsoft's first and third-party antivirus solutions, such as Microsoft Defender Antivirus.

Microsoft Defender for Individuals requires a Microsoft 365 personal or family license. [69]

Microsoft Defender for Individuals is a stand-alone app that adds central management with visibility of family devices, as well as Identity Theft Monitoring (in supported regions [70] ) to existing anti-malware features on Windows devices. On macOS and Android, the app includes its own anti-malware protection and on Android and iOS it also includes web protection (malicious link detection). [71]

All supported platforms share a common user interface, which is also accessible from a web browser through Microsoft's My Defender portal.

Mitigated security vulnerability

On May 5, 2017, Tavis Ormandy, a vulnerability researcher from Google, discovered a security vulnerability in the JavaScript analysis module (NScript) of Microsoft Antimalware Engine (MsMpEngine) that impacted Windows Defender, Microsoft Security Essentials and System Center Endpoint Protection. By May 8, 2017, Microsoft had released a patch to all affected systems. Ars Technica commended Microsoft for its unprecedented patching speed and said that the disaster had been averted. [72] [73]

Reviews

During a December 2017 test of various anti-malware software carried out by AV-TEST on Windows 10, Windows Defender earned 6 out of 6 points in detection rate of various malware samples, earning its "AV-TEST Certified" seal. [74]

During a February 2018 "Real-World Protection Test" performed by AV-Comparatives, Windows Defender achieved a 100% detection rate of malicious URL samples, along with 3 false positive results. [75]

An AV-TEST test of Windows Defender in October 2019 demonstrated it provides excellent protection both against viruses and 0-day / malware attacks. [76]

On December 1, 2021, AV-TEST gave Defender a maximum protection score of 34 points after successfully managing to detect ten out of ten ransomware samples in a lab test. [77]

Criticisms

Microsoft Defender has often been subjected to criticisms related to privacy concerns, performance issues, and intrusive behavior in recent versions of Microsoft Windows operating systems. Microsoft Defender features cloud file analysis and file submission under Microsoft Spynet Membership which eventually became Microsoft Advanced Protection Service (MAPS) when opted in with basic or advanced membership collects user data and sends to Microsoft which arises privacy concerns among users. [78] [79] The cloud integration of Microsoft Defender also raised concerns among privacy advocates. The MsmpEngine of Microsoft Defender in recent versions of Windows was found to be using high amounts of system resources, especially CPU Resources when Real-time protection and scheduled scan is configured to be turned on. [80] This issue is more apparent in PCs with Intel CPUs. [81] Microsoft defender is configured by default to take up 50% of the system's CPU resources available by default, although this can be configured using Group Policy Editor along with limiting the process of MsmpEngine to use a Low Priority Process during a Realtime Scan and customizing scheduled scans. [82] [83] Recent Windows Versions also deeply integrated Microsoft Defender with the operating system using mechanisms like Early Boot Anti-Malware, Tamper Protection, etc., making it almost impossible to remove or uninstall. Although these are useful to prevent malware from disabling or removing the antivirus itself, they also lead to frustration among users who utilize and seek 3rd party alternatives. [84] [85] [86] [87] In late-July 2020, Microsoft Defender began to classify modifications of the hosts file that blocks Microsoft telemetry and data collection servers as being a severe security risk. [88] [89]

See also

Notes

  1. As reported in Microsoft forums, [48] comments to news articles [49] [50] and other forums. [51] [52]

Related Research Articles

Adware, often called advertising-supported software by its developers, is software that generates revenue for its developer by automatically generating online advertisements in the user interface of the software or on a screen presented to the user during the installation process. The software may generate two types of revenue: one is for the display of the advertisement and another on a "pay-per-click" basis, if the user clicks on the advertisement. Some advertisements also act as spyware, collecting and reporting data about the user, to be sold or used for targeted advertising or user profiling. The software may implement advertisements in a variety of ways, including a static box display, a banner display, a full screen, a video, a pop-up ad or in some other form. All forms of advertising carry health, ethical, privacy and security risks for users.

Spyware is any software with malicious behavior that aims to gather information about a person or organization and send it to another entity in a way that harms the user by violating their privacy, endangering their device's security, or other means. This behavior may be present in malware and in legitimate software. Websites may engage in spyware behaviors like web tracking. Hardware devices may also be affected.

<span class="mw-page-title-main">Antivirus software</span> Computer software to defend against malicious computer viruses

Antivirus software, also known as anti-malware, is a computer program used to prevent, detect, and remove malware.

<span class="mw-page-title-main">ESET NOD32</span> Computer protection software

ESET NOD32 Antivirus, commonly known as NOD32, is an antivirus software package made by the Slovak company ESET. ESET NOD32 Antivirus is sold in two editions, Home Edition and Business Edition. The Business Edition packages add ESET Remote Administrator allowing for server deployment and management, mirroring of threat signature database updates and the ability to install on Microsoft Windows Server operating systems.

Norton AntiVirus is an anti-virus or anti-malware software product founded by Peter Norton, developed and distributed by Symantec since 1990 as part of its Norton family of computer security products. It uses signatures and heuristics to identify viruses. Other features included in it are e-mail spam filtering and phishing protection.

Norton Internet Security, developed by Symantec Corporation, is a discontinued computer program that provides malware protection and removal during a subscription period. It uses signatures and heuristics to identify viruses. Other features include a personal firewall, email spam filtering, and phishing protection. With the release of the 2015 line in summer 2014, Symantec officially retired Norton Internet Security after 14 years as the chief Norton product. It was superseded by Norton Security, a rechristened adaptation of the original Norton 360 security suite. The suite was once again rebranded to Norton 360 in 2019.

<span class="mw-page-title-main">Windows Live OneCare</span> Discontinued Microsoft security software

Windows Live OneCare was a computer security and performance enhancement service developed by Microsoft for Windows. A core technology of OneCare was the multi-platform RAV, which Microsoft purchased from GeCAD Software Srl in 2003, but subsequently discontinued. The software was available as an annual paid subscription, which could be used on up to three computers.

Defensive computing is a form of practice for computer users to help reduce the risk of computing problems, by avoiding dangerous computing practices. The primary goal of this method of computing is to be able to anticipate and prepare for potentially problematic situations prior to their occurrence, despite any adverse conditions of a computer system or any mistakes made by other users. This can be achieved through adherence to a variety of general guidelines, as well as the practice of specific computing techniques.

Microsoft Forefront is a discontinued family of line-of-business security software by Microsoft Corporation. Microsoft Forefront products are designed to help protect computer networks, network servers and individual devices. As of 2015, the only actively developed Forefront product is Forefront Identity Manager.

<span class="mw-page-title-main">Security and Maintenance</span> Microsoft Windows software

Security and Maintenance is a component of the Windows NT family of operating systems that monitors the security and maintenance status of the computer. Its monitoring criteria includes optimal operation of antivirus software, personal firewall, as well as the working status of Backup and Restore, Network Access Protection (NAP), User Account Control (UAC), Windows Error Reporting (WER), and Windows Update. It notifies the user of any problem with the monitored criteria, such as when an antivirus program is not up-to-date or is offline.

<span class="mw-page-title-main">Kaspersky Anti-Virus</span> Antivirus solution

Kaspersky Anti-Virus is a proprietary antivirus program developed by Kaspersky Lab. It is designed to protect users from malware and is primarily designed for computers running Microsoft Windows and macOS, although a version for Linux is available for business consumers.

Webroot Inc. is an American privately-held cybersecurity software company that provides Internet security for consumers and businesses. The company was founded in Boulder, Colorado, US, and is now headquartered in Broomfield, Colorado, and has US operations in San Mateo and San Diego, and globally in Australia, Austria, Ireland, Japan and the United Kingdom.

<span class="mw-page-title-main">PC Tools (company)</span> Australian software company

PC Tools', formerly known as WinGuides.com, was a software company acquired by Symantec in 2008; the new owner eventually discontinued the PC Tools name. Company headquarters were in Australia, with offices in Luxembourg, the United States, United Kingdom, Ireland and Ukraine. The company had previously developed and distributed security and optimization software for the Mac OS X and Microsoft Windows platforms.

<span class="mw-page-title-main">Microsoft Security Essentials</span> Discontinued antivirus product for Microsoft Windows

Microsoft Security Essentials (MSE) is a discontinued antivirus software (AV) product that provides protection against different types of malicious software, such as computer viruses, spyware, rootkits, and Trojan horses. Prior to version 4.5, MSE ran on Windows XP, Windows Vista, and Windows 7, but not on Windows 8 and later versions, which have built-in AV components known as Windows Defender. MSE 4.5 and later versions do not run on Windows XP. The license agreement allows home users and small businesses to install and use the product free of charge.

<span class="mw-page-title-main">Comodo Internet Security</span> Internet security software suite

Comodo Internet Security (CIS) is developed and distributed by Comodo Group, a freemium Internet security suite that includes an antivirus program, personal firewall, sandbox, host-based intrusion prevention system (HIPS) and website filtering.

<span class="mw-page-title-main">Malwarebytes</span> Internet security company

Malwarebytes Inc. is an American Internet security company that specializes in protecting home computers, smartphones, and companies from malware and other threats. It has offices in Santa Clara, California; Clearwater, Florida; Tallinn, Estonia; Bastia Umbra, Italy; and Cork, Ireland.

MS Antivirus is a scareware rogue anti-virus which purports to remove virus infections found on a computer running Microsoft Windows. It attempts to scam the user into purchasing a "full version" of the software. The company and the individuals behind Bakasoftware operated under other different 'company' names, including Innovagest2000, Innovative Marketing Ukraine, Pandora Software, LocusSoftware, etc.

<span class="mw-page-title-main">Trend Micro Internet Security</span> Antivirus and online security software

Trend Micro Internet Security is an antivirus and online security program developed by Trend Micro for the consumer market. According to NSS Lab comparative analysis of software products for this market in 2014, Trend Micro Internet Security was fastest in responding to new internet threats, but as of June 2024 based on the chat support there is no known mechanism as with Microsoft Defender Antivirus to submit false positives like "Incorrectly detected as malware/malicious" or "Incorrectly detected as PUA " which may point to cutting corners and be the cause of application mislabeling e.g. as ransomware, while the mechanism for detecting real threats is not specified.

Avira Operations GmbH & Co. KG is a German multinational computer security software company mainly known for its Avira Free Security antivirus software. Although founded in 2006, the Avira antivirus application has been under active development since 1986 through its predecessor company H+BEDV Datentechnik GmbH. Since 2021, Avira has been owned by American software company NortonLifeLock, which also operates Norton, Avast and AVG. It was previously owned by investment firm Investcorp.

References

  1. "Microsoft Defender Antivirus security intelligence and product updates". Microsoft Learn. Retrieved 2 August 2024.
  2. 1 2 "Minimum requirements for Microsoft Defender for Endpoint". Microsoft Learn. Microsoft. 23 December 2022.
  3. 1 2 3 Kingsley, Robert (18 January 2013). "Windows Defender in Windows 8 and Windows 7 – What's New & Different?". www.digitalcitizen.life. Archived from the original on 19 December 2020. Retrieved 4 March 2021.
  4. "Announcing Microsoft Defender ATP for Mac". TECHCOMMUNITY.MICROSOFT.COM. 2019-03-21. Retrieved 2021-03-07.
  5. "Announcing Microsoft Defender ATP for Android". TECHCOMMUNITY.MICROSOFT.COM. 2020-06-23. Retrieved 2021-03-07.
  6. "Microsoft Defender for Endpoint on iOS is generally available". TECHCOMMUNITY.MICROSOFT.COM. 2020-12-07. Retrieved 2021-03-07.
  7. "Microsoft 365 Defender - Threat Protection | Microsoft Security". www.microsoft.com. Retrieved 2022-11-26.
  8. "Microsoft Defender for Cloud | Microsoft Security". www.microsoft.com. Retrieved 2022-11-26.
  9. "Microsoft Defender for Endpoint | Microsoft Security". www.microsoft.com. Retrieved 2022-11-26.
  10. "Microsoft Defender for Office 365 | Microsoft Security". www.microsoft.com. Retrieved 2022-11-26.
  11. "Microsoft Defender for Identity | Microsoft Security". www.microsoft.com. Retrieved 2022-11-26.
  12. "Microsoft Defender for Cloud Apps | Microsoft Security". www.microsoft.com. Retrieved 2022-11-26.
  13. "Microsoft Defender Vulnerability Management | Microsoft Security". www.microsoft.com. Retrieved 2022-11-26.
  14. "Microsoft Defender Threat Intelligence | Microsoft Security". www.microsoft.com. Retrieved 2022-11-26.
  15. "Microsoft Defender for Individuals | Microsoft 365". www.microsoft.com. Retrieved 2023-03-01.
  16. 1 2 "What's new in Windows Defender for Windows 10 Anniversary Update". windowscentral.com. 26 July 2016. Retrieved 27 March 2018.
  17. "How to enable Windows 10's Block at First Sight protection in Windows Defender". betanews.com. 18 November 2016. Retrieved 27 March 2018.
  18. "Microsoft Defender Browser Protection". chromewebstore.google.com. Retrieved 2023-12-06.
  19. "Microsoft Defender Browser Protection". browserdefaults.microsoft.com. Retrieved 2024-05-31.
  20. "Microsoft Edge and Microsoft Defender Application Guard". learn.microsoft.com. 2024-04-04. Retrieved 2024-05-31.
  21. "Microsoft Acquires Anti-spyware Leader Giant Company Software Inc". www.giantcompany.com. December 2004. Archived from the original on 30 December 2004. Retrieved 21 December 2020.
  22. 1 2 3 Thurrot, Paul (6 October 2010). "Microsoft Windows Anti-Spyware Preview: Paul Thurott's SuperSite for Windows". SuperSite for Windows. Archived from the original on 5 August 2016. Retrieved 21 December 2020.
  23. "Microsoft Acquires Anti-Spyware Leader GIANT Company". PressPass. 16 December 2004. Archived from the original on 17 June 2005. Retrieved 21 December 2020.
  24. "Gates Highlights Progress on Security, Outlines Next Steps for Continued Innovation". PressPass. 15 February 2005. Archived from the original on 6 June 2005. Retrieved 21 December 2020.
  25. Garms, Jason (4 November 2005). "What's in a name?? A lot!! Announcing Windows Defender!". blogs.technet.com . Archived from the original on 23 November 2005. Retrieved 21 December 2020.
  26. Dodson, Steve (4 November 2005). "Microsoft Windows AntiSpyware is now......"Windows Defender"". blogs.technet.com . Archived from the original on 24 November 2005. Retrieved 21 December 2020.
  27. Thurrott, Paul (14 February 2006). "Windows Defender Beta 2 Review: Paul Thurrott's SuperSite for Windows". SuperSite for Windows. Archived from the original on 7 January 2015. Retrieved 21 December 2020.
  28. "Windows Defender: Startseite" (in German). Microsoft Corporation. Archived from the original on 30 January 2009. Retrieved 21 December 2020.
  29. "マイクロソフト セキュリティ At Home" (in Japanese). Microsoft Corporation. Archived from the original on 18 January 2010. Retrieved 21 December 2020.
  30. "Windows Defender: Release notes". www.microsoft.com. 23 October 2006. Archived from the original on 30 October 2006. Retrieved 21 December 2020.
  31. "Windows® Defender". www.microsoft.com. 8 November 2006. Archived from the original on 18 November 2006. Retrieved 21 December 2020. Windows Defender no longer supports Windows 2000
  32. "Frequently asked questions about Windows Defender". www.microsoft.com. 13 February 2006. Archived from the original on 30 October 2006. Retrieved 21 December 2020.
  33. "How to Remove an Active-X Control in Windows". Microsoft . Retrieved 31 December 2017.
  34. Seagren, Eric (2011). Secure Your Network for Free. Syngress. pp. 197–198. ISBN   9780080516813.
  35. "Protect Your PC with New Security Features in Windows Vista". Microsoft. November 2006. Retrieved 12 April 2018.
  36. "Using Software Explorer in Windows Defender". Support. Microsoft. Archived from the original on 14 October 2009. Retrieved 26 April 2017.
  37. O'Reilly, Dennis (22 April 2008). "Software Explorer keeps unneeded apps from auto-starting". CNET . CBS Interactive . Retrieved 9 May 2015.
  38. Thurrott, Paul (6 October 2010). "Windows 7 Annoyances". Supersite for Windows. Penton. Archived from the original on 1 July 2015. Retrieved 9 May 2015.
  39. Shultz, Greg (17 November 2016). "Windows Defender: Past, present, and future" . Retrieved 13 June 2017.
  40. 1 2 Hau, Kevin (23 June 2009). "Windows Defender and Microsoft Security Essentials". Microsoft Answers. Microsoft Corporation. Retrieved 19 December 2020.
  41. Marius, Marius Oiaga (30 August 2010). "Microsoft Security Essentials 1.0 and 2.0 Disable Windows Defender". news.softpedia.com . Retrieved 19 December 2020.
  42. "Microsoft Defender Antivirus compatibility". docs.microsoft.com . 17 December 2020. Retrieved 19 December 2020.
  43. Bott, Ed (2013). Introducing Windows 8.1 for IT Professionals (PDF). Microsoft Press (published 15 October 2013). p. 8. ISBN   978-0-7356-8427-0. If you install a different antimalware solution, Windows Defender disables its real-time protection but remains available.
  44. Gerend, Jason; et al. (11 October 2022). "Windows Defender Overview for Windows Server". Windows Server documentation. Microsoft . Retrieved 2022-12-10 via Microsoft Learn.
  45. Lich, Brian (18 May 2017). "Windows Defender Antivirus in the Windows Defender Security Center app". docs.microsoft.com . Archived from the original on 3 August 2017. Retrieved 19 December 2020. In Windows 10, version 1703 (also known as the Creators Update), the Windows Defender app is now part of the Windows Defender Security Center.
  46. Popa, Bogdan (24 April 2017). "Quick Tip: Use the Old Windows Defender in Windows 10 Creators Update". www.softpedia.com . Archived from the original on 27 April 2017. Retrieved 5 March 2021.
  47. Williams, Wayne (24 August 2017). "How to get the classic Windows Defender back on Windows 10 Creators Update". BetaNews. Archived from the original on 5 March 2021. Retrieved 5 March 2021.
  48. "How to Get the Old Windows Defender in Windows 10 Back". social.microsoft.com. There appears to be no way to access the "classic UI" in 1803.
  49. "How to Get the Old Windows Defender in Windows 10 Back". 29 June 2017. Since the new Windows 10 Update 1803, this no longer works. (Comments section)
  50. "Get Classic Windows Defender in Windows 10 Creators Update". 18 April 2017. Classic UI its gone on windows 10 enterprise 1803, try other way pls (Comments section)
  51. "Version 1803 and Windows Defender". In previous versions a link to [...] MSASCui.exe" opened the program in the "classic" user interface but no longer.
  52. "Windows 10 & Windows Defender Interface". the "Classic" Windows Defender interface has been removed in the 1803 version of Windows 10
  53. Gerend, Jason (20 December 2016). "Defender Module for Windows Server 2016". PowerShell documentation. Retrieved 2022-12-10 via Microsoft Learn.
  54. Vangel, Denise (20 October 2022). "Configure Microsoft Defender Antivirus features". Microsoft Defender for Endpoint documentation. Microsoft . Retrieved 2022-12-10 via Microsoft Learn. Applies to: ... Microsoft Defender Antivirus
  55. "What's new in Windows 10, version 1703 for IT Pros". docs.microsoft.com . 9 May 2017. Archived from the original on 2 June 2017. Retrieved 19 December 2020. Windows Defender is now called Windows Defender Antivirus
  56. 1 2 3 Hoffman, Chris (3 July 2018). "How to Enable Windows Defender Application Guard for Microsoft Edge". How-To Geek. Retrieved 2022-12-10.
  57. 1 2 Gerend, Jason; et al. (8 September 2022). "What's new in Windows Server 2016". Windows Server documentation via Microsoft Learn.
  58. "What's new in Windows 10, version 1809 for IT Pros". docs.microsoft.com . September 2018. Archived from the original on 11 November 2020. Retrieved 19 December 2020. Windows Defender Security Center is now called Windows Security.
  59. "Announcing Windows 10 Insider Preview Build 18945". Windows Experience Blog. 26 July 2019. Archived from the original on 26 July 2019. Retrieved 19 December 2020.
  60. "Windows Security: Microsoft Defender Antivirus & More". www.microsoft.com. June 2020. Archived from the original on 30 June 2020. Retrieved 21 December 2020. Formerly known as Windows Defender, Microsoft Defender Antivirus still delivers the [...]
  61. "Turn Microsoft Defender Firewall on or off - Microsoft Support". support.microsoft.com. Retrieved 2023-11-20.
  62. vinaypamnani-msft (2023-08-11). "Microsoft Defender SmartScreen overview - Windows Security". learn.microsoft.com. Retrieved 2023-11-20.
  63. lenewsad (2023-11-15). "Enable Windows Firewall". learn.microsoft.com. Retrieved 2023-11-20.
  64. paolomatarazzo (2023-05-24). "Windows Defender Firewall with Advanced Security - Windows Security". learn.microsoft.com. Retrieved 2023-11-20.
  65. Whitney, Lance (31 August 2016). "Utility Spotlight: Repair Your PC Infection". technet.microsoft.com. Retrieved 16 April 2018.
  66. "Help protect my PC with Windows Defender Offline". support.microsoft.com. Retrieved 16 April 2018.
  67. Jakkal, Vasu (2022-06-16). "Making the world a safer place with Microsoft Defender for individuals". Microsoft Security Blog. Retrieved 2023-03-01.
  68. "Microsoft's Defender online security tool is now available to consumers". Engadget. 16 June 2022. Retrieved 2023-03-01.
  69. "Microsoft Defender for Individuals FAQ reference 1". www.microsoft.com. Retrieved 2023-03-01.
  70. "Microsoft Defender for Individuals FAQ reference 2". www.microsoft.com. Retrieved 2023-03-01.
  71. "Microsoft Defender for Individuals FAQ - section Security". www.microsoft.com. Retrieved 2023-03-01.
  72. Anthony, Sebastian (9 May 2017). "Massive vulnerability in Windows Defender leaves most Windows PCs vulnerable". Ars Technica . Condé Nast.
  73. "Microsoft Security Advisory 4022344". TechNet . Microsoft. 8 May 2017.
  74. "The best antivirus software for Windows Home User". AV-TEST.org. AV-TEST. 2018. Retrieved 12 April 2018.
  75. "Real-World Protection Test" (PDF). AV-Comparatives.com. AV-Comparatives. 2018. Retrieved 12 April 2018.
  76. "Test Microsoft Windows Defender 4.18 for Windows 10 (194015)". www.av-test.org. Retrieved 2020-09-04.
  77. "9 Security Packages for Consumer Users in an Advanced Threat Protection Test against Ransomware". AV-TEST.org. AV-TEST. 2021. Retrieved 1 December 2021.
  78. denisebmsft (2023-11-06). "Cloud protection and Microsoft Defender Antivirus". learn.microsoft.com. Retrieved 2023-11-20.
  79. mjcaparas (2023-08-23). "Microsoft Defender for Endpoint data storage and privacy". learn.microsoft.com. Retrieved 2023-11-20.
  80. "Resolving High Hard Disk Drive and CPU Usage During Scans by Windows Defender | Dell US". www.dell.com. Retrieved 2023-11-20.
  81. "Intel CPU Performance Takes a Big Hit Due to Windows Defender Bug". PCMAG. Retrieved 2023-11-20.
  82. denisebmsft (2023-05-24). "Configure Microsoft Defender Antivirus with Group Policy". learn.microsoft.com. Retrieved 2023-11-20.
  83. Bashkarla (2019-10-27). "How to Limit Windows Defender CPU Usage". WindowsLoop. Retrieved 2023-11-20.
  84. "Turn off Defender antivirus protection in Windows Security - Microsoft Support". support.microsoft.com. Retrieved 2023-11-20.
  85. tedhudek (2022-03-17). "Overview of Early Launch AntiMalware - Windows drivers". learn.microsoft.com. Retrieved 2023-11-20.
  86. "Prevent changes to security settings with Tamper Protection - Microsoft Support". support.microsoft.com. Retrieved 2023-11-20.
  87. denisebmsft (2023-10-27). "Protect security settings with tamper protection". learn.microsoft.com. Retrieved 2023-11-20.
  88. "Windows 10: HOSTS file blocking telemetry is now flagged as a risk". BleepingComputer. Retrieved 2023-11-20.
  89. "Windows 10 telemetry secrets: Where, when, and why Microsoft collects your data". ZDNET. Retrieved 2023-11-20.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.