Microsoft releases fix for Behavior:Win32/Hive.ZY error in Windows Defender
A Microsoft official confirmed reports that Google Chrome, Chromium Edge, Discord and several other applications were flagged by Microsoft's built-in antivirus software "Windows Defender" as "Behavior:Win32/Hive.ZY" extensive coverage. The tech giant confirmed in a statement that it is working on a fix that will be rolled out to everyone in the next few hours.
So what exactly is "Behavior:Win32/Hive.ZY"? According to a document posted on the Microsoft Security Portal, any file marked "Behavior:Win32/Hive.ZY" is a threat with suspicious behavior. It is used to flag potentially malicious files, especially those downloaded via email.
This notification appears to have been added to Defender version 1.373.1508.0. Your app may be flagged as malicious by:
- Microsoft Defender Antivirus for Windows 10, Windows 11, and Windows 8.1, or Microsoft Security Essentials for Windows 7 and Windows Vista .
- Microsoft Security Scanner.
We have received confirmation from Microsoft that this activity is a false positive issue, but it is another issue for companies like Google and Discord as customers apparently Looking for their support.
#We have seen reports that affected users are automatically shown the above error during regular scans of Defender.
"Docker Desktop downloaded from their website or installed via WinGet reported "Behavior: Win32/Hive.ZY" in this morning's security update. This prevents Docker Desktop from being updated via WinGet or within the application option to upgrade and resulted in many, many, many false warnings," noted one affected user.
In our testing, we observed Windows Defender on Windows 10 and Windows 11 flagging Chromium-based apps and other apps like Discord as "Win32/Hive.ZY." If you are affected, you can easily reproduce the bug if you kill Edge, Chrome, or any process that triggers it and launch the app again.
If the app keeps running in the background, the error will pop up again over time.
"Alerts appear when opening new pages in Chrome, but not all. Even microsoft.com when I click Learn more under Protect History. Started happening today, probably on Windows After Defender updates. The culprit is always one of Chrome's PIDs," another user pointed out.
Microsoft Releases Fix for Behavior:Win32/Hive.ZY
You cannot fix false positive errors with Windows Defender because they can only be patched through server-side updates from Microsoft. Thankfully, Microsoft officials tell us they've begun investigating the issue and have released a potential fix.
The fix is rolling out version: 1.373.1537.0. To fix Behavior:Win32/Hive.ZY, follow these steps:
- Search for "Windows Security" in Windows Search.
- Navigate to Virus & Threat Protection.
- Check for updates.
- Restart.
If you don’t see the update when you check for updates, you can also manually download the fix from the given link:
- 64-bit download
- 32-bit download
This is the third such incident involving Windows Defender. Earlier this year, some Google Chrome updates were flagged by Microsoft as potentially harmful. A similar incident was reported in March, when the company flagged its own Office updates as a ransomware threat.
Similar incidents also occurred in 2021. In fact, Defender blocked Office apps and applications due to Emotet malware.
The above is the detailed content of Microsoft releases fix for Behavior:Win32/Hive.ZY error in Windows Defender. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
1377
52
What software is bonjour and can it be uninstalled?
Feb 20, 2024 am 09:33 AM
Title: Explore the Bonjour software and how to uninstall it Abstract: This article will introduce the functions, scope of use and how to uninstall the Bonjour software. At the same time, it will also be explained how to use other tools to replace Bonjour to meet the needs of users. Introduction: Bonjour is a common software in the field of computer and network technology. Although this may be unfamiliar to some users, it can be very useful in some specific situations. If you happen to have Bonjour software installed but now want to uninstall it, then
What to do if WPS Office cannot open the PPT file - What to do if WPS Office cannot open the PPT file
Mar 04, 2024 am 11:40 AM
Recently, many friends have asked me what to do if WPSOffice cannot open PPT files. Next, let us learn how to solve the problem of WPSOffice not being able to open PPT files. I hope it can help everyone. 1. First open WPSOffice and enter the homepage, as shown in the figure below. 2. Then enter the keyword "document repair" in the search bar above, and then click to open the document repair tool, as shown in the figure below. 3. Then import the PPT file for repair, as shown in the figure below.
What software is crystaldiskmark? -How to use crystaldiskmark?
Mar 18, 2024 pm 02:58 PM
CrystalDiskMark is a small HDD benchmark tool for hard drives that quickly measures sequential and random read/write speeds. Next, let the editor introduce CrystalDiskMark to you and how to use crystaldiskmark~ 1. Introduction to CrystalDiskMark CrystalDiskMark is a widely used disk performance testing tool used to evaluate the read and write speed and performance of mechanical hard drives and solid-state drives (SSD). Random I/O performance. It is a free Windows application and provides a user-friendly interface and various test modes to evaluate different aspects of hard drive performance and is widely used in hardware reviews
CrystalDiskinfo usage tutorial-What software is CrystalDiskinfo?
Mar 18, 2024 pm 04:50 PM
CrystalDiskInfo is a software used to check computer hardware devices. In this software, we can check our own computer hardware, such as reading speed, transmission mode, interface, etc.! So in addition to these functions, how to use CrystalDiskInfo and what exactly is CrystalDiskInfo? Let me sort it out for you! 1. The Origin of CrystalDiskInfo As one of the three major components of a computer host, a solid-state drive is the storage medium of a computer and is responsible for computer data storage. A good solid-state drive can speed up file reading and affect consumer experience. When consumers receive new devices, they can use third-party software or other SSDs to
How to set the keyboard increment in Adobe Illustrator CS6 - How to set the keyboard increment in Adobe Illustrator CS6
Mar 04, 2024 pm 06:04 PM
Many users are using the Adobe Illustrator CS6 software in their offices, so do you know how to set the keyboard increment in Adobe Illustrator CS6? Then, the editor will bring you the method of setting the keyboard increment in Adobe Illustrator CS6. Interested users can take a look below. Step 1: Start Adobe Illustrator CS6 software, as shown in the figure below. Step 2: In the menu bar, click the [Edit] → [Preferences] → [General] command in sequence. Step 3: The [Keyboard Increment] dialog box pops up, enter the required number in the [Keyboard Increment] text box, and finally click the [OK] button. Step 4: Use the shortcut key [Ctrl]
What kind of software is bonjour? Is it useful?
Feb 22, 2024 pm 08:39 PM
Bonjour is a network protocol and software launched by Apple for discovering and configuring network services within a local area network. Its main role is to automatically discover and communicate between devices connected in the same network. Bonjour was first introduced in the MacOSX10.2 version in 2002, and is now installed and enabled by default in Apple's operating system. Since then, Apple has opened up Bonjour's technology to other manufacturers, so many other operating systems and devices can also support Bonjour.
How to resolve an incompatible software attempt to load with Edge?
Mar 15, 2024 pm 01:34 PM
When we use the Edge browser, sometimes incompatible software attempts to be loaded together, so what is going on? Let this site carefully introduce to users how to solve the problem of trying to load incompatible software with Edge. How to solve an incompatible software trying to load with Edge Solution 1: Search IE in the start menu and access it directly with IE. Solution 2: Note: Modifying the registry may cause system failure, so operate with caution. Modify registry parameters. 1. Enter regedit during operation. 2. Find the path\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Micros
How to delete recently opened files in Adobe Reader XI - How to delete recently opened files in Adobe Reader XI
Mar 04, 2024 am 11:13 AM
Recently, many friends have asked me how to delete recently opened files in Adobe Reader XI. Next, let us learn how to delete recently opened files in Adobe Reader XI. I hope it can help everyone. Step 1: First, use the "win+R" shortcut key to open the run, enter "regedit", and press Enter to open it, as shown in the picture. Step 2: After entering the new interface, click "HKEY_CURRENT_USERSoftwareAdobeAcrobatReader11.0AVGeneralcRecentFiles" on the left, select "c1", right-click and select the "Delete" option, as shown in the figure. Step 3: Then pop up