Questions tagged [microsoft-defender]
16 questions
40
votes
4 answers
Why has Windows Defender started removing shortcuts on 13 January 2023?
All of a sudden, Windows Defender has removed loads of shortcuts (.lnk files) from our Windows 10 and 11 computers. Dozens of computers affected.
Shortcuts have disappeared from both the desktop folder and the taskbar - with most disappearing…
Matty Brown
- 865
4
votes
1 answer
Microsoft Defender web filtering on MacOS
I would like to find out what policies were deployed to my private Mac that I enrolled under Intune in order to read work email. The Microsoft Content Filter is running under network properties - I would like to know:
Where are the policies store…
TomEus
- 3,793
3
votes
1 answer
How to enable an app to connect outbound despite being blocked by default by Microsoft Defender Firewall on Windows 10?
I have just installed a new app on Windows 10. When this app tries to connect to the internet the connection is blocked if Microsoft Defender Firewall is enabled and is not blocked if it's disabled. I don't understand why this happens because I…
John Cashew
- 83
2
votes
2 answers
Will Windows Defender full scan adversely affect a failing hard disc?
A monthly anti-malware full scan was run on this pc using Windows Defender (-aka- Windows Security) as routine, but not this month.
Will running a full scan from Windows Defender adversely affect the failing hard disc?
Popup when hovering over the…
xypha
- 4,890
2
votes
1 answer
Disable Windows Defender in Windows 11
How to disable Windows Defender in Windows 11 (Professional) (i.e. prevent Antimaleware Service Executable to spin up my (completely disconnected) Laptop's fans)?
The top answer of Disable Windows Defender in Windows 10 recommends to set Turn off…
jan-glx
- 476
1
vote
1 answer
How can I know which folder/file is currently being scanned by Microsoft's Antimalware Service Executable?
I see that the Microsoft's Antimalware Service Executable is taking a fair amount of CPU:
How can I know which folder/file is currently being scanned by Microsoft's Antimalware Service Executable?
Franck Dernoncourt
- 24,246
- 64
- 231
- 400
0
votes
0 answers
Windows Defender - What are detection types?
Recently, Windows Defender flagged a .txt file on my Windows 10 system as Exploit:O97M/DDEDownloader.D, with the detection type listed as "Concrete." The detection surprised me, because the .txt file contained data that I assume is non-executable…
0
votes
0 answers
Anti-phish policies in Defender are blocking some scans with PII
We are having a percentage of our scans from the email address associated with our scanner that are being sent to Quarantine. Examining the list in defender explorer, it appears that the anti-fishing and anti-spam. policies are sending our scans to…
0
votes
1 answer
After reset, Microsoft Defender Antivirus (Windows Security) says "Your IT administrator has limited access", or appears as a blank white window
I reset my personal laptop to remove everything. This seems to have broken the built-in anti-virus.
I ran "Reset this PC" with "Remove everything", and then re-created my user account on my personal PC.
I downloaded the Firefox installer, and…
sourcejedi
- 3,860
0
votes
0 answers
Windows defender for Antivirus and Endpoint updates
We are planning to deploy defender for endpoint for our premises, the patch management solution which we are using is Ivanti to deploy the patches to windows 10 and 11 client machines.
I read from the MS article that below are the patches…
0
votes
0 answers
Is there something I can do to encourage MicroSoft Defender to get additional intelligence when scanning? ie Defender Event ID 2010
Is it possible to safely make Defender want to download extra definitions during a scan?
Reason for asking:-
I am looking for a pattern or possible cause of strange behaviour.
A Windows 10 PC no longer gets any additional intelligence updates when…
Eric
- 97
0
votes
0 answers
Sandboxing features in Windows 11 Enterprise all fail to launch
I work in IT, and often need a sandbox environment to check security issues in. Historically I have done this using Windows Sandbox or MS Edge Defender App Guard, but on my new PC neither seem to be working and they aren't giving me any good reason…
Chris
- 670
0
votes
0 answers
What is the meaning of the MTB suffix according to Microsoft malware naming scheme?
Microsoft uses the CARO naming scheme for malware identification. The suffix part (name's right-most part after the ! separator) is supposed to be dedicated to "vendor-specific" comments [1]. Microsoft does list a few suffixes [2], but not MTB.
Does…
tumasgiu
- 101
0
votes
1 answer
How to test path exclusions in Defender
Listing Defender Path exclusions ((Get-MpPreference).ExclusionPath), there is quite long list. Some paths contain wildcard and/or environment variables. There might be configured also file extensions exclusions.
Is there a single command (or…
eXavier
- 203
0
votes
0 answers
File context menu contains Windows Defender, not Microsoft Defender
When I right-click on a file in the Windows Explorer to perform an on-demand scan of a single file, the context menu (shown below) presents me with Windows Defender, not Microsoft Defender. My understanding is that this is the legacy Windows…
user2153235
- 1,543