One of the features of Defender Exploit Guard is network protection. It blocks communication with dangerous domains or IP...
Tag Archive for: antivirus
4sysops - The online community for SysAdmins and DevOps
Manage Windows Defender Firewall with Intune

For a home user, it's easy to manage the Windows Firewall. However, if you have more than 50 devices...
Security baseline for Windows 11 2022: New recommended settings for printing, Defender, NetBIOS, and VBS

Together with the release of Windows 11 2022, Microsoft published the corresponding security baseline. It recommends activating a whole...
Configuring Defender Antivirus: Exclusions, real-time protection, scans, and remediations

On most PCs, Defender Antivirus runs with the default settings. However, Microsoft offers admins many options to customize the...
Microsoft Defender: Control updates for malware signatures using Group Policy or PowerShell

Obtaining effective protection by virus scanners requires that they always use the latest definitions. Therefore, Microsoft Defender is not...
Configure Defender exploit protection using PowerShell and Group Policy

Under the term exploit protection, Microsoft brings together several technologies intended to protect against malware attacks. Among them are...
Manage Defender Antivirus using Intune

Defender Antivirus is Microsoft's built-in antivirus, available in Windows 10/11 and Windows Server. You can manage this security component...
Configure attack surface reduction in Microsoft Defender using Group Policy or PowerShell

In addition to the virus scanner, Microsoft Defender offers other security functions. These include the reduction of the attack...
Windows Defender Application Control (WDAC): Secure Windows 10 / 11 against malicious apps and rogue drivers with recommended WDAC block rules

Windows Defender Application Control (WDAC) allows controlling which applications and drivers can run in Windows. Microsoft provides a recommended...
Setting up Microsoft Defender for Business with a simplified configuration

One of the problems with enterprise security is that it has typically been challenging to configure. However, Microsoft Defender...
Turn on Windows 10 Tamper Protection for Microsoft Defender

When hackers gain access to a computer, one of their first goals is to disable the system's security mechanisms....
Using the Windows Defender PowerShell cmdlets

There are several ways to manage and configure Windows Defender, such as via the System Center Configuration Manager (SCCM),...
Uninstall tamper-protected Sophos Antivirus with PowerShell

The Sophos Antivirus Endpoint tamper protection feature prevents even administrators from uninstalling the product. In this post, you will...
System Center Configuration Manager 2016 TP3

SCCM 2016 TP3 is now publically available. This technical preview provides cluster support, full Windows 10 application compatibility, and...
Install antivirus on a Hyper-V host?

In an IT landscape where antivirus is usually a security compliance requirement on Windows Servers and client endpoints, should...
Stopping CryptoLocker and other ransomware

Ransomware can lock away your documents and kill a business. Learn how to prevent CryptoLocker and related malware with...
Windows XP end of life – Dealing with malware

In this part of our Windows XP end of life series, I’ll discuss how you can continue to protect...
Process Explorer 16 now with VirusTotal integration

Microsoft’s free Process Explorer is one of those utilities that every admin should have in his tool box. The...
VMware vShield Endpoint

VMware vShield Endpoints’ purpose is to provide anti-virus services for your virtual machines, but at the host level, relieving...
Raffle: GFI MailEssentials – Exchange security software – Part 2

In this blog post we continue our review of GFI MailEssentials, this time focusing on the basic operation of...