Tag: windows defender » Page 2

Windows Defender “HostsFileHijack” alert appears if Telemetry is blocked

Last Updated on: August 2, 2023 by Ramesh

Since July last week, Windows Defender started issuing Win32/HostsFileHijack “potentially unwanted behavior” alerts if you had blocked Microsoft’s Telemetry servers using the HOSTS file.

Out of the SettingsModifier:Win32/HostsFileHijack cases reported online, the earliest one was reported at the Microsoft Answers forums where the user stated:

I’m getting a serious “potentially unwanted” message. I have the current Windows 10 2004 (1904.388) and only Defender as permanent protection.
How is that to evaluate, since nothing has changed at my hosts, I know that. Or is this a false positive message? A second check with AdwCleaner or Malwarebytes or SUPERAntiSpyware shows no infection.

“HostsFileHijack” alert if Telemetry is blocked

After inspecting the HOSTS file from that system, it was observed that the user had added Microsoft Telemetry servers to the HOSTS file and routed it to 0.0.0.0 (known as “null-routing”) to block those addresses. Here is the list of telemetry addresses null-routed by that user.Read more

Cannot Save Files to Desktop and Error “File not found” in Windows 10

Last Updated on: August 2, 2023 by Ramesh

unauthorized changes blocked - controlled folder access

When you try to save a file on the desktop or the documents folder on your Windows 10 computer, it may show the “File not found” error message. Here is the full error message verbatim:

Save as C:\Users\Ramesh\Desktop\filename.txt
File not found.
Check the file name and try again.

.. with the “Unauthorized changes blocked” error in the Notification area and the Action Center.

For each error, an action center notification along with an event log entry is created.

[Fix] Windows Defender Yellow Exclamation Icon and “Set up OneDrive” Warning

Last Updated on: July 31, 2023 by Ramesh

windows defender set up onedrive - yellow exclamation warning

The Windows 10 action center may show a prompt with a black exclamation inside a yellow triangle icon in the Notification area. When you click on that, it opens Windows Defender Security Center. In the Windows Defender Security Center, underneath the “Virus & threat protection” icon the exclamation mark inside a yellow triangle shows up again, with the note reading “Set up OneDrive for file recovery options in case of a ransomware attack.”

The Windows Defender warning shows up even though OneDrive is already be configured, syncing and working perfectly fine. Also, clicking the “Dismiss” link beneath the warning message may do nothing.

If OneDrive is already setup correctly and working fine, then the yellow exclamation warning can be safely ignored. But if you’re desperate to stop Windows Defender from issuing the false alert, this post tells you how to do so.Read more

Fix: Windows Defender Error 577 | Service Fails to Start

Last Updated on: July 31, 2023 by Ramesh

The “Security and Maintenance” Control Panel applet or the Action Center in Windows 10 may warn you that Windows Defender is disabled and no anti-virus is protecting your system. If you open the Windows Defender interface, it offers to Turn On protection, but the button doesn’t work.Read more

Fix: Malwarebytes Disables Defender or 3rd Party Anti-Virus

Last Updated on: October 6, 2022 by Ramesh

After installing Malwarebytes Premium 14-day trial or licensed product, your anti-virus software (e.g., Microsoft Defender Antivirus) may get disabled automatically. In this scenario, when you attempt to start the Microsoft Defender Antivirus Service (WinDefend) via the Services console, it shows the following error, and the service wouldn’t start.Read more

Windows Defender Error 0x80070643 Updating Definitions

Last Updated on: July 31, 2023 by Ramesh

When you attempt to update Windows Defender via Windows Update, error 0x80070643 may appear and the definition updates fail to install. Here is the full error message:Read more

Windows Defender Error loading type library/DLL (0x80029c4a) in Windows 10

Last Updated on: July 31, 2023 by Ramesh

After upgrading to Windows 10 version 1709 (Fall Creators Update), when you open Windows Defender classic interface MSASCui.exe, and click View details on the History tab, the following error message appears:Read more

Your organization used Windows Defender Application Control to block this app

Last Updated on: July 31, 2023 by Ramesh

When you try to run files downloaded from the internet, the following error may appear on your Windows 10 computer:

Your organization used Windows Defender Application Control to block this app

In some systems, the same error may pop up also when opening Command Prompt or PowerShell.Read more

How to Configure Controlled Folder Access to Stop “Unauthorized changes blocked” Notifications

Last Updated on: July 31, 2023 by Ramesh

Windows 10 Fall Creators Update adds a beneficial security feature named Controlled folder access, which is part of the Windows Defender Exploit Guard. You may have noticed the Unauthorized changes blocked notifications. Windows Defender’s Controlled folder access feature is the one behind those notifications. Controlled folder access helps you protect valuable data from malicious programs, such as ransomware.

This article explains how to configure CFA and prevent Unauthorized changes blocked notifications when running a program.

Microsoft Defender: “Managed by your administrator” or “Your IT administrator has limited access”

Last Updated on: August 18, 2022 by Ramesh

defender settings grayed out - managed by administrator

In the aftermath of a malware attack, the Windows Defender Security settings page may show the message Some settings are managed by your organization or This setting is managed by your administrator. The real-time protection and cloud-based protection options may remain disabled or grayed out.

Here is what the Windows Defender Settings page might look like. The controls for real-time protection, cloud-based protection, and Automatic sample submission options may be disabled and locked down or grayed out.Read more