The cause
So, I did a stupid and executed an infected exe. Immediately my PC started acting up, all sorts of applications were installing, ads were popping up, you name it. I quickly started a Windows Defender scan but 10 seconds later a notification popped up that Windows Defender was disabled by group policy.
The clean up
I managed to download and run Malwarebytes which as far as I know cleaned up most of it. I had to change the HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender key in the registry to enable Windows Defender again. And after a little bit of cleaning up I think my PC is clean again.
My question
However, my Settings > Updates & security > Windows Defender menu still says "some settings are managed by your organization".
I can turn on or off Windows Defender, but the two options below it "Cloud Protection" and "Automatic Sample submission" are greyed out. Any idea on how to get rid of that and make sure nothing else was changed?
I've tried looking around in gpedit.msc as some posts suggested but could not find anything regarding those two settings.
Answer
User @DanielB posted about O&O ShutUp 10 which is an application that stops communication to Microsoft by changing your Windows settings.
After installing and opening it I got a nice overview of my options. After fiddling around with it I found the Undo all changes (factory reset) button which fixed my problem!
No comments:
Post a Comment