Microsoft Bringing New Security Scan Option to Windows 10 This Summer

Microsoft will add a new malware scanning option for consumers with the Windows 10 "anniversary update" release that's coming this summer.

This option, called "limited periodic scanning," will be part of Microsoft's existing Windows Defender antimalware service that's included with Windows 10 for consumer users, but it's principally designed to work on machines that use other antimalware programs. It's conceived by Microsoft as being supplementary to those antimalware programs.

"Limited Periodic Scanning is intended to offer an additional line of defense to your existing antivirus program's real-time protection," Microsoft's announcement this week explained.

Right now, the limited periodic scanning service isn't designed for use on domain-joined PCs used in organizations. It's just for consumers. However, Microsoft's announcement suggested that it could arrive sometime for its commercial customers:

At this time, Windows 10 Limited Periodic Scanning is intended for consumers. We are evaluating this feature for commercial customers, but Limited Periodic Scanning only applies to unmanaged devices for the Windows 10 Anniversary Update.

The new limited periodic scanning option will be something like a cross between Windows Defender and the Microsoft Safety Scanner solution that consumers typically turn to when they suspect their machines have malware. The main difference is that the limited periodic scanning service will be more direct than the Microsoft Safety Scanner, which requires a download. It also will automatically remove malware without user intervention, although users will get a notice to that effect. Maintenance times for running will be determined automatically by the Windows Automatic Management service, based on user inactivity.

The limited periodic scanning feature is currently available for preview as part of this week's Windows Insider build of Windows 10 with rollout planned for the summer.

In other security news, Microsoft announced this week that a "new type of ransomware that exhibits worm-like behavior" has been seen. The ransomware, labeled "Ransom:Win32/ZCryptor.A" by Microsoft, blocks user access to their machine's files.

ZCryptor gets spread through spam e-mail messages, macros and fake program installers. Antimalware solutions, including Windows Defender, can detect it. Microsoft also recommends turning on the Microsoft Active Protection Service, which reports "suspicious queries" that may indicate malware. Other security measures to take were described in Microsoft's announcement.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.


  • Weird Blue Tunnel Graphic

    Microsoft Goes Deep on 'Solorigate' Secondary Attack Methods

    Microsoft on Wednesday published an analysis of the second-stage "Solorigate" attack methods used by an advanced persistent threat (APT) attack group.

  • Microsoft Talks Teams and SharePoint at Modern Workplace Event

    It's a hybrid world, but remote work is here to stay, according to Microsoft's Teams and SharePoint head Jeff Teper.

  • Malwarebytes Affirms Other APT Attack Methods Used Besides 'Solorigate'

    Security solutions company Malwarebytes affirmed on Monday that alternative methods besides tainted SolarWinds Orion software were used in the recent "Solorigate" advanced persistent threat (APT) attacks.

  • How To Fix the Hyper-V Read Only Disk Problem

    DOS might seem like a relic now, but sometimes it's the only way to fix a problem that Windows seems ill-equipped to deal with -- like this one.

comments powered by Disqus