@Parkinsond You activated SAC without reinstalling Windows?
Does enabling Smart App Control prevent unblocking files downloaded from internet?
- Thread starter Parkinsond
- Start date
You mean if I enable both, SAC will communicate with the cloud and would not block simplewall?
I do not think so; even MD blocks simplewall installer and detects it as trojan.
@Andy Ful - Here is a block of a shortcut, but it is not the usual SAC block notification. This seems like some recent SAC development.
Shortcut execution attempt was via SUA. The same shortcut execution is not blocked when run from Administrator account.
Shortcut execution attempt was via SUA. The same shortcut execution is not blocked when run from Administrator account.
Last edited:
Yes, it's a requirement. Although I believe if you disable optional diag data, SAC won't function properly and won't show as disabled.
If you use two accounts, shortcuts may run two different executables. On SUA the executable has MotW.
You have to submit the blocked files to Microsoft for an update to the SAC reputation database/whitelisting. Then wait.
Windows Security internals, expected behaviors, documentation are like a witches' coven brew of inadequacies. It is no surprise that so many IT Pros struggle with it all because even the teams at Microsoft who are responsible for creating the documentation are unaware of Windows Security internals - nor do the teams that develop and support Windows Security know them all either - which means they cannot advise the separate/siloed documentation teams on all the necessary details.
If people did not know, Microsoft internally is extremely fragmented at various levels and siloed. In many instances, one division, program, project, team doesn't know what any of the others are doing. This is how Microsoft has always worked as a company.
Removing MotW will stop the block; but why the message looks different from the usual block messages of SAC? Is it the SUA?
That's what I'm wondering and why I tagged @Andy Ful
Thanks people. I have a shortcut on my desktop for ControlD, with the .exe configuration file on Onedrive. Recently getting SAC blocks, so the "unblock" option on file properties has done the trick and allowed me to use the shortcut.
The first tweak I do when I install Windows is to disable this stupid file classification.
When you download any file, Windows places a BLOCKED marker on it. This is a significant issue for developers when users report that a program fails to install or, despite installation, doesn't function correctly. The same applies to drivers.
It is a nuisance because Windows does not distinguish between safe and harmful files. It just blocks everything you download, which is why you sometimes get the warning that says, "Are you sure you want to open this file?
To prevent Windows from automatically blocking downloaded files, check this guide: Enable or Disable Block Files Downloaded from Internet in Windows
It is the mark of the web; it is good for security, as it asks MD to scan the file immediately after download and asks SAC to treat it differently if its extension is potentially dangerous.
It is not a good idea to do so; you may manually remove motw (ublock) a certain file, if it is blocked by SAC while you are dead sure it is safe.
I consider people who uses SAC on their work or home pc to be a masochist cause they derive pleasure from inflicting SAC upon them and I believe that the person behind SAC to be the most sadistic one ever worked in Microsoft.
It is not for people who use a computer for gaming or install not-so-popular applications.
However, it can be a good option for many people who use computers for simple tasks like web browsing, document editing, watching videos, etc.
Many useful applications can be used with SAC, for example:
https://malwaretips.com/threads/applications-that-work-well-with-smart-app-control.131260/
It is possible that we on MT are masochists by spending too much time on tweaking and seeking the best protection.
The alternative is using any AV + SAC and spending more time on finding software that works well with SAC.
That is the job of the Antivirus, not this automatic blocking that blocks everything right and left without knowing anything. I have seen many people having an entire collection of pictures all with that blocked status marker, every time they open a pic they have to confirm that they are sure they want to open it. If you don't mind, feel free to keep it enabled. Not my cup of tea. I've been using computers since 30 years with this setting turned off and not once had I had a virus. My Antivirus blocks malicious files, not a stupid automatic classification to block everything that comes from the web blindly.
I also work in a computer company and we have so many support tickets of people installing a program and it not working properly. For example, for Dell Alienware computers, there is a utilityh they use called the Alienware Command Center, if you install it without first unblocking the file whihc most people don't do since they have no clue that any file they download is blocked, it install, but it never runs when they try to launch it.
I have it on downloaded image files with no problem; it only matters for office files (eg, docx) where it makes Word open in protected mode.
I know people used PC for the same period without AV (MD turned off) and not once had they had a virus too.
Agree; however, I have learned which programs (and even which activators) can work nicely with SAC.
You may also like...
-
-
-
Simple Steps to Secure Your Windows 11 PC- Started by Divergent
- Replies: 0
-
A Habit-Based Guide to Internet Security
- Started by Divergent
- Replies: 2
-
Applications that work well with Smart App Control.
- Started by Andy Ful
- Replies: 16