{"id":14048,"date":"2020-04-11T12:30:44","date_gmt":"2020-04-11T10:30:44","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=14048"},"modified":"2021-06-17T23:06:06","modified_gmt":"2021-06-17T21:06:06","slug":"defender-stufte-flschlich-winaero-tweaker-als-hacker-tool-ein","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/04\/11\/defender-stufte-flschlich-winaero-tweaker-als-hacker-tool-ein\/","title":{"rendered":"Defender mis-classified Winaero Tweaker as a hacker tool"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2013\/03\/winb.jpg\" width=\"58\" align=\"left\" height=\"58\">[<a href=\"https:\/\/www.borncity.com\/blog\/2020\/04\/11\/defender-stufte-flschlich-winaero-tweaker-als-hacker-tool-ein\/\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]The tool Winaero Tweaker was mistakenly classified by Windows Defender as a hacker tool or unwanted software and quarantined. But the whole thing seems to be fixed in the meantime.<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" alt=\"\" src=\"https:\/\/vg08.met.vgwort.de\/na\/99d2feed8a9b4a69a85a0f30704396dd\" width=\"1\" height=\"1\">The <a href=\"https:\/\/web.archive.org\/web\/20200919120939\/https:\/\/winaero.com\/comment.php?comment.news.1836\" target=\"_blank\" rel=\"noopener noreferrer\">Winaero Tweaker<\/a> is a tool for Windows 7 to Windows 10, with which you can retrieve certain information and make adjustments. <\/p>\n<p><img decoding=\"async\" title=\" Winaero Tweaker\" alt=\" Winaero Tweaker\" src=\"https:\/\/winaero.com\/blog\/wp-content\/uploads\/2019\/03\/Winaero-Tweaker-014.png\"><br \/>(<a href=\"https:\/\/web.archive.org\/web\/20200919120939\/https:\/\/winaero.com\/comment.php?comment.news.1836\" target=\"_blank\" rel=\"noopener noreferrer\">Winaero Tweaker<\/a>)<\/p>\n<p>I had already read it the days with the colleagues of <a href=\"https:\/\/www.deskmodder.de\/blog\/2020\/04\/10\/der-winaero-tweaker-wurde-von-microsoft-auf-die-blacklist-gesetzt\/\" target=\"_blank\" rel=\"noopener noreferrer\">deskmodder.de gelesen<\/a>. The developer had noticed that the Winaero Tweaker was suddenly quarantined under Windows 10 as potentially unwanted software (PUS) and thus blocked. WinAero had discussed this in <a href=\"https:\/\/winaero.com\/blog\/microsoft-defender-flags-winaero-tweaker-in-windows-10\/\" target=\"_blank\" rel=\"noopener noreferrer\">this article<\/a>. Here are some screenshots that WinAero posted about this incident wurde. <\/p>\n<p><img loading=\"lazy\" decoding=\"async\" title=\"Winaero Tweaker Flagged By Defender\" alt=\"Winaero Tweaker Flagged By Defender\" src=\"https:\/\/winaero.com\/blog\/wp-content\/uploads\/2020\/04\/Winaero-Tweaker-Flagged-By-Defender-4.png\" width=\"561\" height=\"179\"><\/p>\n<p>In the screenshot above there is a concrete hint that a virus has been found in the Winaero Tweaker. The following toast notification also shows a finding. <\/p>\n<p><img loading=\"lazy\" decoding=\"async\" title=\"Winaero Tweaker Flagged By Defender\" alt=\"Winaero Tweaker Flagged By Defender\" src=\"https:\/\/winaero.com\/blog\/wp-content\/uploads\/2020\/04\/Winaero-Tweaker-Flagged-By-Defender-3.png\" width=\"364\" height=\"145\"><\/p>\n<p>In the following screenshot, a more detailed explanation was then provided. The program was identified as a hacking tool. <\/p>\n<p><img loading=\"lazy\" decoding=\"async\" title=\"Winaero Tweaker Flagged By Defender\" alt=\"Winaero Tweaker Flagged By Defender\" src=\"https:\/\/winaero.com\/blog\/wp-content\/uploads\/2020\/04\/Winaero-Tweaker-Flagged-By-Defender-2.png\" width=\"478\" height=\"391\"><\/p>\n<p>But this was a false alarm, the Winaero Tweaker does not contain any malware and is not a hacking tool. In the meantime Microsoft has probably noticed the error and corrected the whole thing with a definition update, which raises the Defender to version 1.313.1221.0.<\/p>\n<p>Bleeping Computer had picked up the whole thing <a href=\"https:\/\/www.bleepingcomputer.com\/news\/microsoft\/windows-defender-incorrectly-flagged-winaero-tweaker-as-hacktool\/\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>. Windows Defender uses heuristics and AI to classify programs as malicious, but sometimes these \"intelligent systems\" make mistakes. \"The tradeoff of a smart, scalable approach is that some of our more aggressive classifications occasionally misclassify normal files as malicious (false positives). Although false positives are a very small occurrence compared to the large number of malware that we correctly identify (true positives) and protect our customers from, we recognize the impact that misclassified files can have,\" <a href=\"https:\/\/www.microsoft.com\/security\/blog\/2018\/08\/16\/partnering-with-the-industry-to-minimize-false-positives\/\" target=\"_blank\" rel=\"noopener noreferrer\">writes<\/a> Michael Johnson of Windows Defender Research. <\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]The tool Winaero Tweaker was mistakenly classified by Windows Defender as a hacker tool or unwanted software and quarantined. But the whole thing seems to be fixed in the meantime.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,1547,2],"tags":[773,69,194],"class_list":["post-14048","post","type-post","status-publish","format-standard","hentry","category-security","category-software","category-windows","tag-defender","tag-security","tag-windows"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/14048","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=14048"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/14048\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=14048"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=14048"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=14048"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}