A simple and safe Windows utility to clear Microsoft Defender Protection History using administrative permissions.
This tool helps remove old or stuck protection history entries that remain even after threats are resolved.
- Clears Microsoft Defender Protection History
- Uses official Windows directories only
- Lightweight and fast
- No Defender disabling or bypassing
- Open-source and transparent
- Windows 10 / Windows 11
- Administrator privileges (mandatory)
Microsoft Defender stores protection history in protected system folders.
Running as Administrator is required to safely access and clear these files.
- Download or clone this repository
- Right-click the file and select Run as administrator
- The tool will clear Defender Protection History
- When prompted:
- Press Y and hit Enter to restart
(Restart is required for changes to fully apply)
Some Defender services keep files locked while Windows is running.
A system restart ensures:
- All Defender services reload correctly
- Protection History is fully refreshed
- No leftover cached entries remain
- β Does NOT disable Microsoft Defender
- β Does NOT bypass real-time protection
- β Does NOT modify registry security policies
- β Only removes Protection History logs
- β Uses standard Windows commands
This tool is intended for maintenance and cleanup only.
Add screenshots here if you want
MIT License β free to use, modify, and distribute.
Febin Daniel
B.Tech CSE | Cybersecurity Enthusiast
GitHub: https://github.com/your-username
Use this tool responsibly.
The author is not responsible for misuse or unintended consequences.