the Protection history The page displays detections by Windows Defender and provides detailed and easier to understand information about available threats and actions. As of version 18305, it includes blocks for controlled access to files, as well as all the blocks created via the organizational configuration of the rules for reducing the attack surface. In this article, we will show you how to manually clear the protection history in Windows Defender on Windows 10.
If you use Windows Defender’s offline analysis tool, all the detections it performs will now also appear in this history. In addition, you will see all pending recommendations (red or yellow states of the entire application) in the history list.
Delete Windows Defender protection history
This specifies the number of days that items are stored in the scan log folder. After this time, Windows Defender will delete the items. If you specify a null value, Windows Defender will not delete the items. If you do not specify a value, Windows Defender will delete the items from the default scan log folder, that is, 30 days.
However, if you want to clear the protection history manually, you can do it in one of the following three ways;
- Using the Set-MpPreference PowerShell cmdlet
- Delete Windows Defender service folder from local drive
- Using the Event Viewer
Let’s look at the steps involved in relation to each of the methods listed.
1]Using the Set-MpPreference PowerShell cmdlet
the Set-MpPreference The cmdlet configures preferences for Windows Defender scans and updates. You can change the exclusion file name extensions, paths, or processes, and specify the default action for high, moderate, and low threat levels.
You can specify a different time (in days) by running the cmdlet below in PowerShell administrator mode (press Win + X then press A on the keyboard):
Set-MpPreference -ScanPurgeItemsAfterDelay 1
The specified number 1 is the number of days after which the protection history log and items in the log folder will be deleted.
2]Delete Windows Defender service folder from local drive
To manually clear the protection history, this method requires you to delete the Service folder under the Windows Defender folder on the local drive.
Here’s how:
- hurry Windows key + R to call the Run dialog box.
- In the Run dialog box, copy and paste the path below and press Enter (if prompted, click Continue).
C:ProgramDataMicrosoftWindows DefenderScansHistory
- Now right click on the A service folder in this location and select Remove.
You can quit File Explorer.
- Then open Windows security > Protection against viruses and threats > Manage settings.
- Switch the button to Of then Sure again for Real-time protection and Cloud protection.
3]Using the Event Viewer
To manually clear Windows Defender’s protection history using Event Viewer, do the following:
- hurry Windows key + R to call the Run dialog box.
- In the Run dialog box, type eventvwr and press Enter to open the Event Viewer.
- Under the Event observer (local) on the left side of the pane, expand the Application and service logs option.
- Below, expand the Microsoft option.
- Click on the Windows to open the list of all its files in the central pane.
- In the middle pane, scroll down to find Windows Defender in the file list.
- Right click Windows Defenderand click Open.
- In the two options of the central pane, right click on Operationaland click Open to display all previous logs.
- Now under Windows Defender folder in the left pane, right click on Operational.
- Click on Clear log … On the menu.
- To select Clear or Save and delete depending on your need to clear the protection history.
And the above are the 3 known methods to manually clear Windows Defender protection history in Windows 10.