MS Windows Defender and DeCSS
On 7/20/2021 at 7:42pm, Windows Defender definitions daily update picked up a copy of the famous DeCSS DVD encryption software as a Trojan and performed an immediate quarantine, followed by deletion 60 seconds later. Windows Defender is also misdiagnosing XFX Keygen programs from the mid-2000's as high threats. If you are feeling brave, here is the file in question: DeCSS.exe <- Warning! Here be dragons. You dump the log by opening an elevated CMD window in the folder C:Program FilesWindows Defender folder. You'll notice my log above lists a failed code of 80508014 for each file. The data will then be fine at rest in D:temp until I try to copy it back to where Defender Deleted it on the NAS. At which point it deletes it again. The NAS contains other separate volumes servicing an Internet facing Pi running Traefikv2 with multipule services on a separate VLAN. MS Has pushed out an update that appears to fix the false positive on DeCSS as of 7:42am this morning.