Windows Defender: A perplexing Issue


Recommended Posts

My windows security icon in the system tray shows an exclamation mark, but upon bringing up window settings it says there are no actions that can be taken (images wind1 and wind2). Furthermore, when I try to scan anything with Windows Defender it says "Page not available: Your IT administrator has limited access to some of the areas of this app, and the item you tried to access is not available" (wind3). I've double-checked in user settings and it shows that I'm the only admin. How can I fix this?

 

System:

i7 8750H

8 Gigs Memory

GTX 1060

250 Samsung SSD

Windows 10 (build 19041.685)

wind1.JPG

wind2.JPG

wind3.JPG

winbuild.JPG

Link to comment
https://www.neowin.net/forum/topic/1403214-windows-defender-a-perplexing-issue/
Share on other sites

  On 13/12/2020 at 12:50, Nick H. said:

I see that you're running Windows 10 2004. Have you considered updating Windows to 20H2? There may be simpler solutions to the issue, but you may as well have an up-to-date system while you're at it. ;)

Expand  

Updated. The issue persists.

In regedit ... can you look at the key --- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender Security Center\App and browser protection

 

....and see if there is an entry "UILockdown" ... if so, change the value to 0 or delete the "UILockdown" entry.

 

Do you have any other security software installed...like McAfee or whatever?

Did you install any 3rd-party anti-virus/security programs? Change any group policy settings recently? Install a Windows "optimization"  program that tweaks the registry?  Are you using a Windows account to logon to the PC?

  On 13/12/2020 at 13:32, Jim K said:

In regedit ... can you look at the key --- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender Security Center\App and browser protection

 

....and see if there is an entry "UILockdown" ... if so, change the value to 0 or delete the "UILockdown" entry.

 

Do you have any other security software installed...like McAfee or whatever?

Expand  

I'm using Avast Antivirus. I'll try your fix and get back with result.

  On 13/12/2020 at 13:34, Superuser said:

Did you install any 3rd-party anti-virus/security programs? Change any group policy settings recently? Install a Windows "optimization"  program that tweaks the registry?  Are you using a Windows account to logon to the PC?

Expand  

1. Avast Antivirus

2. I don't recall doing that. Unless any of the Windows updates or application silently did something in the background.

3. No optimisation program whatsoever. The only third-party app protection is Avast Antivirus.

3. It's my own login which is connected to my MSN/Live account.
 

  On 13/12/2020 at 13:35, Nick H. said:

Also, have you tried logging in as the hidden administrator account and seeing if you can access the options from there?

Expand  

I... haven't. Will try it and let you know.

  On 13/12/2020 at 13:32, Jim K said:

In regedit ... can you look at the key --- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender Security Center\App and browser protection

 

....and see if there is an entry "UILockdown" ... if so, change the value to 0 or delete the "UILockdown" entry.

 

Do you have any other security software installed...like McAfee or whatever?

Expand  

Nope. No such key. There's only one REG_SZ that says "Default" and has no assigned value.

  On 13/12/2020 at 13:35, Nick H. said:

Also, have you tried logging in as the hidden administrator account and seeing if you can access the options from there?

Expand  

Same issue with the hidden administrator account.

Check Group Policy settings for App and browser control

 

Type Group Policy in search  ->  Edit group policy -> Under Computer Configuration expand Administitive Templates ->  Windows Components -> Windows Security ->  Click on App and browser protection

 

You should see 2 entries, Prevent users from modifying settings +  Hide the app and browser protection area

 

Highlight one and click "policy settings" ->  Click Next Setting -> Are either of these Enabled or Disabled as opposed to Not Configured?

 

You could try and reset all group policy settings back to default.

 

https://www.tenforums.com/tutorials/68549-reset-local-group-policy-editor-settings-default-windows-10-a.html

  On 13/12/2020 at 18:13, Riggers said:

Check Group Policy settings for App and browser control

 

Type Group Policy in search  ->  Edit group policy -> Under Computer Configuration expand Administitive Templates ->  Windows Components -> Windows Security ->  Click on App and browser protection

 

You should see 2 entries, Prevent users from modifying settings +  Hide the app and browser protection area

 

Highlight one and click "policy settings" ->  Click Next Setting -> Are either of these Enabled or Disabled as opposed to Not Configured?

 

You could try and reset all group policy settings back to default.

 

https://www.tenforums.com/tutorials/68549-reset-local-group-policy-editor-settings-default-windows-10-a.html

Expand  

Both of them say "not configured".

  On 13/12/2020 at 14:24, zakyr said:

1. Avast Antivirus

2. I don't recall doing that. Unless any of the Windows updates or application silently did something in the background.

3. No optimisation program whatsoever. The only third-party app protection is Avast Antivirus.

3. It's my own login which is connected to my MSN/Live account.
 

I... haven't. Will try it and let you know.

Expand  

I would uninstall Avast to see if that is the problem. Personally, I would keep it off my PC even if it is not the issue.

Avast has probably changed a registry setting [due to having its own mitigation methods], have a look in these 2 places [pictures below]. Does Avast allow Defender to run on demand or disables it completely?

 

Actually check all keys under Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\PolicyManager\default\WindowsDefenderSecurityCenter and HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender Security Center\App and browser protection

 

Look for any UILockdown with a value of 1 below.

 

Unless as above uninstalling Avast solves it.

 

Dont edit any keys unless you are comfortable doing it and write down what you did so you can change it back if needed, you may bork something so having a back up is crucial!

 

Have you tried the Avast forum to see if others have the same issue, it could well be by design...

 

 

key1.png

key2.png

 

  On 14/12/2020 at 12:57, Riggers said:

Avast has probably changed a registry setting [due to having its own mitigation methods], have a look in these 2 places [pictures below]. Does Avast allow Defender to run on demand or disables it completely?

 

Actually check all keys under Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\PolicyManager\default\WindowsDefenderSecurityCenter and HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender Security Center\App and browser protection

 

Look for any UILockdown with a value of 1 below.

 

Unless as above uninstalling Avast solves it.

 

Dont edit any keys unless you are comfortable doing it and write down what you did so you can change it back if needed, you may bork something so having a back up is crucial!

 

Have you tried the Avast forum to see if others have the same issue, it could well be by design...

 

Expand  

 

Values as they appear in registry. Didn't change anything.

 

1.JPG

2.JPG

One more registry key to try which I didn`t mention also stops Windows Defender. It should be empty and have just (Default).

Have you tried uninstalling Avast, preferably in Safe Mode with their Clean Up utility? This looks like something a third party AV would do!

 

Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Policy Manager

 

You can also open powershell and insert   Get-MpPreference   which should have UILockdown : False    (near the bottom)

 

Worth a look :)

  • 2 weeks later...

 

  On 15/12/2020 at 18:40, Riggers said:

One more registry key to try which I didn`t mention also stops Windows Defender. It should be empty and have just (Default).

Have you tried uninstalling Avast, preferably in Safe Mode with their Clean Up utility? This looks like something a third party AV would do!

 

Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Policy Manager

 

You can also open powershell and insert   Get-MpPreference   which should have UILockdown : False    (near the bottom)

 

Worth a look :)

Expand  

Yup. UILockdown is False. Also, the registry entry you mentioned is empty.

I guess I'll have to try uninstalling Avast then. But I'm baffled as to why Avast would disable WD all of sudden when they'd both been working alongside just fine beforehand.

I would consider not using Avast it's such a bad piece of software now.

 

What I do is use a 3 month trial of Bitdefender Total Security and then sign-up again and repeat using the same email but just move the period in it, you can do this with a Gmail address.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • RGB yes, as a gimmick on cheap cases and keyboard.  A well built, thoughtfully considered computer with good configurable RGB are not on the top of people's lists when searching for a deal.  And invariably, when people look towards the 2nd hand market - they are searching for a deal.
    • Hello, The thing about Thunderbolt 2/3/4 PCIe cards is that in additional to the signals carried over the PCIe slot they are plugged into they need to send additional signals to the motherboard for which there is no standardized connection set of connections on the PCIe bus.  To get around this limitation, motherboard manufacturers can include a separate Thunderbolt header. which is sometimes labeled as JTBT1 or TBT1 on the motherboard.  The Thunderbolt PCIe card has a corresponding header on it, and comes with a proprietary cable to connect between the card and motherboard. While the additional signals that need to be sent over the Thunderbolt header are somewhat standardized, motherboard manufacturers are also free to implement whatever custom vendor-specific additions like like, like allowing a the system to recognize an on/off button on a Thunderbolt dock they alone offer to power up the system, or recognize what an external peripheral has been plugged in or unplugged from the Thunderbolt port.  Features like this, plus the lack of requirements for standardized features, or even a standard physical layout for the Thunderbolt header, mean that manufacturers can implement what are Thunderbolt PCIe cards that are essentially proprietary in that all features only work with their motherboard and even then only when their custom cable is used between their motherboard and their Thunderbolt PCIe card.  There may be additional cables required in order to route a video card's signals through the Thunderbolt port as well. Because of this, you need to go with the motherboard manufacturer's Thunderbolt PCIe card, unless you want to get a different brand, build a custom cable to connect it to your motherboard, and potentially give up features like hot-plugging devices to it. I believe @Nik Louch identified a card which will work with your motherboard.  You can always double-check with the motherboard manufacturer just to be sure, or find out if there are any issues or limitations to the combination of your motherboard and the card. If you purchase a used Thunderbolt PCIe card, make sure to check with the seller if it comes with all of the cabling necessary to use it, otherwise you may end up having to purchase that separately as well. Regards, Aryeh Goretsky  
    • ChromeOS M137 goes stable, bringing new Face Control policy and more by David Uzondu Google has brought ChromeOS M137 to the stable channel, and it includes a few focused updates for users and IT admins. A key change is a new policy for managing big groups of Chromebooks. The face control accessibility tool, which Google also updated back in ChromeOS M135, now gets a vital control for managers. A new policy called FaceGazeEnabled lets them switch the feature on or off across a whole school or company. The update also brings a new audio feature called crosstalk cancellation. It aims to create a better sound experience using just the Chromebook's built-in speakers. The software processes audio to make it seem like it is surrounding your head, not just coming from two small points. This tries to copy the feel of a surround sound system or good headphones. Any audio gets a boost, but you will notice it most when watching movies or playing games with directional sound. More accessibility tools have arrived, too. ChromeVox now has a direct keyboard shortcut, Search + O + C, that displays spoken text as braille captions on a connected display. For the poor souls in IT, troubleshooting got a little less painful as well. A new event-based log collection system, when enabled by an admin, will automatically upload relevant logs when something specific fails, like an OS crash or a botched update. Instead of digging through mountains of data, administrators get targeted reports sent straight to them. Here's how to enable it: Turn on the Device system log upload setting. Turn on OS update status reporting—For the Report device OS information setting, select OS update status. Turn on device telemetry reporting on crash information—For the Report device telemetry setting, select Crash information. Google also keeps things sane by limiting these targeted uploads to just twice a day per device. As usual, the update is rolling out slowly. If you do not see ChromeOS M137 for your machine yet, just be patient. This phased release lets Google find and address any issues before the update gets to everyone.
    • LG gram Book 15U50T: Is this lightweight laptop the right upgrade for you? by Paul Hill If you’re in the UK looking for a new mid-range laptop that won’t feel underpowered, check out the LG gram Book 15U50T now because it’s at its all-time lowest price on Amazon UK thanks to a 14% discount from its £699.99 RRP. You can get it now for just £599.99 (Buying link at the end). At this price, the laptop definitely makes this mid-range option much more appealing, it’s also pretty new having only come out in January 2025, so you’re definitely getting more value for your money. The delivery is free and will take a few days to arrive unless you take advantage of a Prime member trial and get it next-day in time for Father’s Day. LG gram Book 15U50T: Key features and who it's for The LG gram Book 15U50T features a 15.6-inch Full-HD (1920x1080) anti-glare IPS display, making it ideal for use in well-lit areas as you won’t see yourself staring back. It’s powered by an Intel Core i5 processor (1334U), 16GB of RAM, and has a very fast 512GB NVMe Gen4 SSD. In my opinion, the storage might be a bit tight for some users; however, the device comes with two M.2 slots if you want to upgrade the storage. The LG gram Book 15U50T is ideal for students or professionals who need a device to carry with them out and about. It has an ultra-lightweight design and weighs just 1.65kg - that’s not too far off a similarly sized MacBook Air, but for a fraction of the cost. In terms of ports, there is an HDMI port, two USB-A ports, and two USB-C ports. There's also a 3.5mm headphone jack if you need to plug in headphones. Other noteworthy details about this laptop include that it's running Windows 11 Home with Copilot integration, it has a HD webcam with a privacy shutter, it uses Dolby Atmos audio for immersive sound, and it has a unique feature called gram Link for multi-device (including Android and iOS) connectivity. Should you buy it? If you are a student or a professional that won’t be doing heavy gaming, or using other super intensive applications, this laptop is a solid pick. It’s lightweight - so easy to carry around, it has an anti-reflective screen - so good in well-lit environments; and it features upgradeable storage slots if 512GB is not enough space. On the downside, this laptop has a mid-range processor that could limit your ability to use high-end professional tools. Another thing I’m not really a fan of here is how opaque LG has been with the battery life. As a portable laptop, you’re obviously going to want to take it on the go where you don’t have a charger handy, but all LG says about the battery is that it has a capacity of 51Wh. According to some online sources, variants of this laptop manage about 7 to 10 hours, so if you need a super long battery life, you might be better off with something like a MacBook Air. So should you buy it? If you’re not going to be doing anything super intensive, but can’t stand underpowered and slow budget laptops then this could be the ideal laptop for you. The £100 discount makes it even more appealing! LG gram Book 15U50T: £599.99 (Amazon UK) / RRP £699.99 This Amazon deal is U.K. specific, and not available in other regions unless specified. If you don't like it or want to look at more options, check out the Amazon UK deals page here. Get Prime, Prime Video, Music Unlimited, Audible or Kindle Unlimited, free for the first 30 days As an Amazon Associate we earn from qualifying purchases.
  • Recent Achievements

    • Week One Done
      somar86 earned a badge
      Week One Done
    • One Month Later
      somar86 earned a badge
      One Month Later
    • Apprentice
      Adrian Williams went up a rank
      Apprentice
    • Reacting Well
      BashOrgRu earned a badge
      Reacting Well
    • Collaborator
      CHUNWEI earned a badge
      Collaborator
  • Popular Contributors

    1. 1
      +primortal
      504
    2. 2
      ATLien_0
      260
    3. 3
      +Edouard
      186
    4. 4
      +FloatingFatMan
      175
    5. 5
      snowy owl
      132
  • Tell a friend

    Love Neowin? Tell a friend!