How to unblock a file from windows’ “publisher could not be verified” warning

By: Waseem Patwegar

Here is how you can disable “The Publisher could not be verified” Error message while trying to open certain files and programs on your Windows 10 computer.

Publisher Could Not Be Verified Warning in Windows 10

Publisher could not be verified warning dialog box appears in Windows 10 when you try to open a File or Run a Program on your computer that Windows does not recognize as a trusted file.

Windows 10 will continue to block the File or prevent the Program from Running on your computer, until you specifically instruct your computer that the File can be opened.

If you are certain that you have downloaded the file from a trusted source, you can disable “Publisher could not be verified” Error in Windows 10 by using any of the following methods, as applicable in your case.

1. Over Rule Windows 10

If Windows 10 is unable to confirm the origin or the authenticity of the File that you are trying to open, it will provide you with an option to overrule the File block.

1. Open the File on your computer

2. On “Publisher could not be verified” dialogue box, uncheck Always ask before opening this file option and click on Run .

3. Depending on your User Account settings, you may see “Do you want to allow this app from unknown publisher” pop-up. Click on Yes to confirm.

After this, the File should automatically open on your computer.

2. Unblock File Using Properties

If the File that you are trying to open is already on your computer (Desktop, Downloads or Documents), you can easily unblock the file by going to its properties screen.

1. Right-click the File that you want to unblock and select Properties .

2. On the File Properties screen, click on the General tab > check the Unblock box and click on Apply .

Note: If you do not see Unblock box, the file is not blocked and you should be able to open the File.

After this, you should be able to open the File without coming across “Publisher could not be verified” message.

3. Disable Smart Screen Filter

The Smart Screen Filter in Windows can prevent Files and Programs from opening on your computer.

If you trust the File or Program and its publisher, you can open the File after disabling smart screen filter on your computer.

1. Open Settings > Click on Update & Security .

2. On Update & Security screen, click on Windows Security > App & Browser Control .

3. On the next screen, select Warn option.

After this try to open the File/Program and click on Open Anyway on the pop-up warning.

If you are still unable to open the File, you can temporarily disable Windows Defender by selecting OFF option.

If you are using a Windows PC, probably you’d have seen this message, especially while trying to install applications from some not-so-popular vendors on your computer.

There isn’t anything to worry about this message- it’s just a warning that you can simply ignore. Here, I can summarize the cause of this problem in one sentence, “Windows fails to recognize publisher of that program.”

How this explanation seems to you? If you’ve doubts, try to install programs from any recognized software vendors. For example, let’s try to install Remo Recover 4.0 on the same PC. Perhaps, you’d see a pop-up like this.

Here you can see Windows has identified the program as a verified publisher – which did not happen with the first program. This happens because of Microsoft’s policy that asks vendors to get the approval as verified publisher. For this, the vendor needs to earn a code signing certificate for their product from a trusted third party provider like DigiCert. Consumers often trust programs powered by these certificates like shrink-wrapped programs they purchase from a retail store. Actually, a code signing certificate is nothing more than a document for validating a program in order to prove it has not been altered by a third party.

But, what’s the guarantee that such programs do not harm your computer? The reality is, any software vendor can acquire a code signing certificate for their program for a sum of money. So, how can you assure that such programs do not have malicious nature?

Also, you can’t blindly consider that an unverified program will disrupt your system. So it doesn’t matter if a program is verified or unverified, sometimes these programs can put your PC at risk.

Precaution you should take before Running an Unverified Program

It is always best to run a verified program, but if you still want to run a program from unknown source ignoring the security warning, it is recommended to at least create a system restore point. So that you can always restore the system to a previous working state if something goes wrong.

Methods to Unblock File from any Publisher in Windows 10

1 st Method

While trying to install program from an unknown publisher on your Windows 10 PC, you might have seen a check box saying “Always ask for opening this file”. Just tick the check box. Next time, when you try to open that particular file, you’ll not see the publisher could not be verified warning.

2 nd Method

Right click on the file and select properties option. On the bottom of General tab, you’ll see a security tab saying “This file came from another computer and might be blocked to help protect this computer” and an “Unblock” check box to its right.

Note: This method will work only if your file is in a location where your account has permission. For example- Desktop, Downloads, Documents …

3 rd Method – for Advanced Users

1. “Windows + R” Key to launch the “Run Utility”.
2. Type gpedit.msc and press enter to access Local Group Policy Editor.
3. Select “User Configuration” -> “Administrative Templates” -> “Windows Components” -> “Attachment Manager”.
4. On the right pane of the windows, you’ll see certain settings. You’ve to open “inclusion list for moderate risk file types” setting.
5. Configure the policy setting to “Enabled” state and in the ‘options’ textbox, specify the high-risk file extensions separate by a period.
6. Logoff you system and Login again. You’ll never see “Publisher Could Not Be Verified” warning for your particular file type in the future.

Also Read:

1. Warning Signs of a Hard Drive Crash
2. Learn How to Dual-Boot Windows 10 with Windows 7 or 8
3. How to Get Windows Photo Viewer Back in Windows 10?
4. Windows Anniversary Update: Commonly Asked Questions

Senior Editor, Content Analyst and a fan of exceptional customer service. John develops and publishes instructional and informational content regarding partition management, Windows hot-fixes, data management and computer troubleshooting.

As a tenured data recovery specialist, John shares exceptional insights and blog posts about data loss and data recovery across any storage device. With 8+ years’ experience in writing for Data Recovery for both Mac OS and Windows OS computers, he is an avid learner who always wants to polish and simplify the data recovery process. John passes his free time playing Chess and reading Science Fiction novels.

Lori Kaufman is a technology expert with 25 years of experience. She’s been a senior technical writer, worked as a programmer, and has even run her own multi-location business. Read more.

The Security Warning dialog box in Windows displays when you run or open a file that Microsoft doesn’t recognize as a trusted file. The file is blocked unless you specifically tell Windows the file can be run or opened.

If you downloaded a file from a trusted source, and you run it often, you can unblock that file so you don’t get the Security Warning dialog box every time you run it.

WARNING: Be sure to only unblock files you know are from trusted sources. Unblocking unknown files can increase the risk of your computer being infected by malware or viruses.

How to Unblock a File Directly on the Security Warning Dialog Box

The easiest way to unblock a file is a checkbox on the Security Warning dialog box itself. When the Security Warning appears, just uncheck the “Always ask before opening this file” box. Then, click “Run” or “Open” to run or open the file.

NOTE: This method will unblock a file in any location on your PC.

If the User Account Control dialog box displays, click “Yes” to continue.

NOTE: The User Account Control dialog box displays if the file is in a location that your user account does not have permission to access by default. Whether or not the User Account Control dialog box displays also depends on your User Account Control settings.

The next time you run or open this specific file, you will not see the Security Warning dialog box.

How to Unblock a File Using Its Properties

You can also unblock a file by changing a setting in the properties of the file.

NOTE: You can only use this method to unblock a file if the file is in one of the locations in your user folder, such as Desktop, Downloads, or Documents (or locations your user account has permission to access). If it’s not in one of these locations, you must move the file to one of these locations first, unblock the file, and then move the file back to its original location.

Right-click the file you want to unblock and select “Properties” from the popup menu.

The Properties dialog box displays. In Windows 10, on the General tab, check the “Unblock” check box so there is a check mark in the box. In Windows 7 and 8/8.1, click the “Unblock” button on the General tab. Click “OK”.

NOTE: If you do not see an Unblock check box or button, the file is already unblocked.

When you run or open this specific file from now on, the Security Warning dialog box will not display.

How to Unblock Files Using the SmartScreen Filter in Windows 8/8.1 and 10

Microsoft’s SmartScreen Filter prevents unknown and malicious programs from running, unless you give permission to do so. The SmartScreen Filter used to part of Internet Explorer 8 and 9. However, as of Windows 8, the SmartScreen Filter is integrated into the Windows operating system. You can unblock files from the SmartScreen Filter dialog box, if you encounter it in Windows 8/8.1 or 10.

Remember to be very careful when choosing to unblock a file and be sure that you know the file comes from a trusted source.

when i try to install add-on i get this,

Internet Explorer Add-on Installer – Security Warning

Windows has blocked this software because it can’t verify publisher.

Name; canvidplayer8.2.cab
Publisher; Unknown Publisher

i have used the site, add-on and the software many times before with no problems. i trust the web site and
have it in Trusted Sites. i even lowered the security level to allow Unsigned Active controls to be downloaded.
i don’t understand why i was able to download before, but not able to now.
any solutions to my problem would be appreciated.
thank you,
therayman

Report abuse

Report abuse

39 people found this reply helpful

Was this reply helpful?

Sorry this didn’t help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.

a) Did you make any changes to the computer recently link installing/uninstalling/upgrade?

Try the below methods which may resolve your issue.

1. Open Internet Explorer.

2. Click on Tools and select Internet Options.

3. Under Privacy tab click on settings button.

4. Now enter the website address in the box labeled Address of the website to allow:

5. Click on Add button.

6. Close the Pop-up blocked settings and Internet Options windows.

Now try visiting the website again.

If you still have the problem then follow the below steps and let me know if it works.

1. Open Internet Explorer.

2. Click on Tools and select Internet Options.

3. Under Advanced tab scroll all the way to the bottom to the Security section.

4. Check the third box down “Allow software to run or install even if the signature is invalid”.

5. Click OK to close out the dialog box

Hope this information is helpful.

Thanks and Regards:

Umesh P – Microsoft Support

Visit our Microsoft Answers Feedback Forum and let us know what you think.

[If this post helps to resolve your issue, please click the “Mark as Answer” or “Helpful” button at the top of this message. By marking a post as Answered, or Helpful you help others find the answer faster.]

December 16, 2015 By Admin

In Windows, the Attachment Manager’s task is to protect the user from downloads that may prove to be unsafe for the system. The Manager performs this task by identifying the type of file and the security settings that go along with it. Based off the security info the Zone information provides, Windows uses the Attachment Manager to warn you before you open the file, or often to block your access to these potentially harmful files. While this is a really good security measure provided by Microsoft, problem is that sometimes Windows classifies a source that you trust, a harmful- if the file came from an e-mail attachment, if you downloaded it from the Internet; such files are prime suspects for Windows to block them for your protection.

When Windows blocks your access to a file, you will receive a message like this when you try to open it: “Windows found that this file is potentially harmful. To help protect your computer, Windows has blocked access to this file.” There is only one option provided below this warning: “OK”, and once you select that, you are shown an empty folder. But of course you really need that blocked file- is there a way to access it?

Of course there is a simple solution to this problem, but before going ahead and unblocking the file for accessing, be sure that it is indeed a safe file and has no chance of infecting your computer with viruses or malware. If you haven’t made sure already, you can scan the file (you won’t have to open the file for this). If you wish to proceed without scanning, do so at your own risk.

Here’s how to unblock a file using Properties:

• Right click on the file that is blocked.
• Select Properties from the options that appear.

• Click on the General tab in the Properties window.
• Click on the Unblock option next to the Security detail which says “This file came from another computer and might be blocked to help protect this computer.”

• Windows might display an Access denied message box here, don’t panic. All you need to do is provide Administrator credentials if this box pops up, if the file is in a C:\Users destination, it won’t appear at all.
• You should be able to access the blocked file now.

Now, if you find that even after selecting the Unblock option, it appears again in the Properties window, don’t worry. All you have to do is follow a few steps:

What to do if Windows SmartScreen blocks app or file

To unblock a file or app blocked by Windows SmartScreen is pretty easy. Just follow these steps:

• Run the blocked file or app. This will pop up the Windows SmartScreen.
• Under the heading “Windows protected your PC”, the text displayed will be “Windows SmartScreen prevented an unrecognized app from starting. Running this app might put your PC at risk.” Below there is simply a More info option, and the “OK” option.

• This may seem like a dead end, SmartScreen has blocked the app/file, all you can do is click OK, right? But, note, this is important. All you have to do is click on the More info option.

• Two new options will appear at the bottom of the SmartScreen window: Run Anyway, and Don’t run.
• Select the Run Anyway option. You will be able to access your file/app now.

Note: Always create a restore point before it

How to Permanently Unblock the file with help of CMD : Advanced users

You will first need to create a restore point for the system. This will basically save all your data, files, and information for you to restore your system to that particular state in which you have saved it.

• Now that the restore point has been created, download Streams (latest version 1.56) from Windows Sysinternals (technet.microsoft.com)
• 1. Extract streams from the zip to a folder like the desktop.
• 2. Right click and choose properties.
• 3. Click unblock.
• 4. Move to c:\windows.
• Open the Start menu and type “cmd” in the Search bar.
• Right click on the Command Prompt icon and choose Run as administrator.

• In the Command Prompt window, type in: streams -d filename
• Replace filename with the actual name of the blocked file. Press the Enter key. Now you can access the blocked file.

In case Windows does not block a file but does consider it potentially harmful, it’s going to display Security warnings each time you go to open the file. It will say “The publisher could not be verified. Are you sure you want to run this software?” Getting this warning is any day better than having to unblock a file, but it can get pretty irritating facing the warning and clicking Run each time you want to access the file.

• All you have to do to make the warning never appear again, is just uncheck the checkbox saying “Always ask before opening this file”. Windows will never flash the warning again for this file.
• However, it may flash warnings for other files, and you’ll have to uncheck the “Always ask before opening this file” individually for each.

Here’s how to create a system restore point-

• Click on the Start button and right click on Computer.
• Choose Properties from the options that appear.
• Click on System Protection on the left side (under Control Panel home)
• By default, it will open on the System Protection tab itself. You will see an option called “Create a restore point right now for the drives that have system protection turned on.”
• Click on the Create option next to it. You will need to type in a description related to your restore point to help you find it easily later. Click on Create.

Saurav is associated with IT industry and computers for more than a decade and is writing on The Geek Page on topics revolving on windows 10 and softwares.

Question

I have developed an application that runs on system startup, but I am always confronted with a message saying “The Publisher Could Not Be Verified”. One way to solve this issue is to create a registry value:

This is fine except for the fact that this disables publisher verification for ALL downloaded software, which presents a security issue.

Now what I am looking for is a registry-key that I can use to add an exception for my software on startup.

• Moved by Yi Feng Li Thursday, October 21, 2010 3:34 AM security issue (From:Visual C++ General)

All replies

If you made an installer for your application, the install.exe would have the NTFS file stream that contains the “This is downloaded, present a warning” data, but the actual app.exe, would not.

Or find some way to remove the ntfs stream from the downloaded exe file. The api calls are simple, but I don’t think EXE files can open themselves for read/write access.

To open the zone identifier security information for a file, you can do something like

HANDLE hf = CreateFile(TEXT(“c:\\blah.exe:Zone.Identifier”).

Not sure how to delete a stream using API calls tho. Pass the remove on close flag?

• Edited by Farproc Tuesday, October 19, 2010 2:15 PM typo
• Proposed as answer by Yi Feng Li Thursday, October 21, 2010 3:05 AM

It is very poor form to mess with a user’s global settings. What if the user wants the warning.

Farproc had a couple of reasonable ideas. Signing is a bit of a pain due to needing to get a certificate. However an installer is perfectly reasonable. Then you get the warning on running the installer, but the final exe does not generate it.

It is very poor form to mess with a user’s global settings. What if the user wants the warning.

Farproc had a couple of reasonable ideas. Signing is a bit of a pain due to needing to get a certificate. However an installer isperfectly reasonable. Then you get the warning on running the installer, but the final exe does not generate it.

I have an installer, which is custom-made. That doesn’t solve the problem actually, unless I know what an installer does to get rid of the warning on the extracted files.

However I end up with using a certificate, known installer or Farproc’s suggestion, the question still remains.

It is very poor form to mess with a user’s global settings. What if the user wants the warning.

Farproc had a couple of reasonable ideas. Signing is a bit of a pain due to needing to get a certificate. However an installer isperfectly reasonable. Then you get the warning on running the installer, but the final exe does not generate it.

I have an installer, which is custom-made. That doesn’t solve the problem actually, unless I know what an installer does to get rid of the warning on the extracted files.

However I end up with using a certificate, known installer or Farproc’s suggestion, the question still remains.

It is very poor form to mess with a user’s global settings. What if the user wants the warning.

Farproc had a couple of reasonable ideas. Signing is a bit of a pain due to needing to get a certificate. However an installer isperfectly reasonable. Then you get the warning on running the installer, but the final exe does not generate it.

I have an installer, which is custom-made. That doesn’t solve the problem actually, unless I know what an installer does to get rid of the warning on the extracted files.

However I end up with using a certificate, known installer or Farproc’s suggestion, the question still remains.

What makes you believe that there IS such a registry setting? Answering policy: see profile.

We understand small businesses need support just as much as enterprises. With our Enterprise expertise and Small Business cost model, we have the knowledge and experience to help your technology grow as your small business grows.

Our team of engineers will bring your business technologies up to industry standard best practices providing you with a fast, stable, secure, and backed up environment, addressing all of your Pain Points!

Speed

Your employees are only as productive as the technology allows them to be. When their computers, applications, or internet connections are sluggish, you loose productivity…
Read More

Security

Today’s compliance standards such as PCI and HIPPA can be difficult for Small Businesses to understand, let alone comply with. In addition, you need your systems to be stable…
Read More

Backups

It happens all the time. Drives fail, backups don’t exist, and years of data is lost. Even if you have backups, are you confident they work? When was the last time they were tested…
Read More

Fix Downloaded Files from being Blocked in Windows 10: When you try to open or execute the files you just download over the internet you may receive a security warning stating “The publisher could not be verified and the file might be a security threat“. This happens when Windows can’t verify the digital signature of the file, hence the error message. Windows 10 comes with an Attachment Manager which identifies an attachment either safe or unsafe, if the file is unsafe then it warns you before you open the files.

Windows Attachment Manager uses the IAttachmentExecute application programming interface (API) to find the file type and file association. When you download some files from the Internet and save it on your disk (NTFS) then Windows add specific metadata to these downloaded files. These metadata are saved as an Alternate Data Stream (ADS). When Windows adds metadata to the download files as an attachment then it is known as Zone Information. This zone information is not visible and is added to the download file as an Alternate Data Stream (ADS).

When you try to open the downloaded file then Windows File Explorer also checks the zone information and see if the file came from an unknown source. Once Windows recognizes that the file is an unrecognized or came from unknown sources the Windows Smart Screen warning will appear stating “Windows smart screen prevented an unrecognized app from starting. Running this app might put your PC at risk“.

If you wish to unblock the file then you could do that manually by right-clicking on the downloaded file and then select Properties. Under properties window checkmark “Unblock” then click Apply followed by OK. But users don’t prefer this method as it’s very annoying to do that every time you download a file instead you could disable the additional zone information which means there won’t be any smart screen security warning. So without wasting any time let’s see How to Fix Downloaded Files from being Blocked in Windows 10 with the help of the below-listed tutorial.

Fix Downloaded Files from being Blocked in Windows 10

Make sure to create a restore point just in case something goes wrong.

Method 1: Enable or Disable Downloaded Files from being Blocked in Registry Editor

1.Press Windows Key + R then type regedit and hit Enter.

2.Navigate to the following registry key:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments

3.If you can’t find Attachments folder then right-click on Policies then select New > Key.

4.Name this key as Attachments and hit Enter.

5.Now right-click on Attachments then select New > DWORD (32-bit) Value.

6.Name this newly created DWORD as SaveZoneInformation and hit Enter.

7.Double-click on SaveZoneInformation then change it’s value to 1.

8.If in future you need to enable Zone information simply right-click on SaveZoneInformation DWORD and select Delete.

9.Close Registry Editor then reboot your PC to save changes.

This is How to Fix Downloaded Files from being Blocked in Windows 10 but if you still have some problem then follow the next method.

Method 2: Enable or Disable Downloaded Files from being Blocked in Group Policy Editor

Note: This method won’t work for Windows 10 Home Edition Users as it only work in Windows 10 Pro, Education, and Enterprise Edition.

1.Press Windows Key + R then type gpedit.msc and hit Enter.

2.Navigate to the following Policy:

User Configuration > Administrative Templates > Windows Components > Attachment Manager

3.Make sure to select Attachment Manager then in the right window double-click on “Do not preserve zone information in file attachments” policy.

4.Now if you need to enable or disable zone information do the following:

To Enable Downloaded Files from being Blocked: Select Not configured or Disable

To Disable Downloaded Files from being Blocked: Select Enabled

5.Click Apply followed by OK.

6.Reboot your PC to save changes.

Recommended:

That’s it, you successfully Fix Downloaded Files from being Blocked in Windows 10 but if you still have any questions regarding this tutorial then feel free to ask them in the comment’s section.

Aditya Farrad

Aditya is a self-motivated information technology professional and has been a technology writer for the last 7 years. He covers Internet services, mobile, Windows, software, and How-to guides.

IF it has been blocked at all. very confusing info in Settings

Showing it is blocked>

BUT Showing it is allowed

Report abuse

(What Rob said). Plus..

One point; It may be necessary to allow an App to pass through CFA in some cases.

If you have an App, that you know is legitimate and you need, but it is being blocked

by CFA, it will be necessary to allow it to pass through. CFA doesn’t know everything!

You will know if they are being blocked, because when they are, there is a notification

on the screen. Or a notification on the taskbar.

You can affect an allow function, by clicking on either notification.

You will be taken into Windows Defender where that function is available.

Just follow the path, to “Allow an App through (CFA) access”. Then click “Add an allowed

App”. Select “Recently blocked Apps” on the drop down.

In the list of blocked apps, you can allow any that you trust , by clicking the + sign.

Whether or not it has been previously blocked is immaterial. Once in the allowed list,

it should no longer be blocked.

Report abuse

3 people found this reply helpful

Was this reply helpful?

Sorry this didn’t help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.

Leave them alone and don’t worry about them unless something else specifically indicates there’s a problem relating with that service or device.

In fact, I don’t even try to guess whether to allow an item that CFA displays, since if I don’t know the only possibility is that I’ll make things worse, so I leave that up to CFA itself to decide.

The reason isn’t that CFA is new (it’s not, it’s about 2 or so years old) or even that it does anything wrong, it’s that it’s not truly “protection” like Defender’s AV. It’s simply a blocker of suspicious filing system or service activity that may relate to a potential malware attack, but just as likely may not.

For example, for the very first time in well over a year, I just received my first warnings from CFA this Wednesday evening and very early on Thursday morning. However, they were both for Windows services including the taskhostw.exe one of yours indicated, as well as both involving protected memory related to the CdRom0 and HarddiskVolume3 devices. The other clue was that at least the early morning one occurred when I was certainly not using the system, which is during the time that this PC happens to be awake performing automated system maintenance tasks.

The major clue though, is that both of these transient warnings occurred within a day of the Wednesday installation of the most recent Cumulative Windows 10 update that just released on this month’s Black Tuesday, May 12th. This is a time of typical operating system changes which can easily false trigger these warnings, since many seemingly random and strange events can occur that the consumer is usually unaware of.

The problem with CFA isn’t that it’s “new” or even undependable, it’s that it’s function isn’t consumer friendly, since it’s purposefully designed to block these suspicious actions that in some cases have been known to also be used by ransomware in order to infect or encrypt (modify) files within these particular folders or devices. That’s the reason CFA exists and since it’s operation is highly technical, the warnings it provides often appear to be as well.

However, like many things that attempt to provide protection today, CFA is simply a workaround and has nothing directly to do with malware at all. It’s actually designed to detect these particular types of filing system activity in order to warn the PC user of what is today considered abnormal activity, just in case that user was recently doing anything like browsing a questionable website or opening a suspect email attachment that may have actually caused the suspicious event.

So don’t try to understand the specific event details completely, even I’d have to do extensive research in many cases in order to make that determination. Instead, if they occur while you’re working, stop, think and only then make the decision whether to allow the item being displayed to perform the operation or not. In other words, think about whether what you just did is trustworthy and might have a valid reason for accessing the folder or device the warning message is indicating and only if that answer is yes should you allow it.

There’s absolutely no rush to make this decision, since it’s automatically blocked by CFA, the only decision is whether to allow it in the future. That’s why in cases like those affecting Windows update it’s not critical to even be there, since if the action needs to occur, Microsoft will realize the issue when literally hundreds or thousands of individual PCs return telemetry (auto-uploaded log) entries indicating this same specific issue has occurred for a specific device type or folder. Eventually they’ll send out an updated version of that Windows patch to fix the transient failure, assuming it truly caused the update to fail and wasn’t simply a non-critical event due to some unnecessary query or action the update performed.

The final point I’ll make is that though it’s included in Windows Defender, CFA really has nothing to do with Defender itself, they’ve just collected everything that even hints of PC or user protection under the single visual interface of Windows Security (at one time titled Windows Defender Security Center). That’s due to the fact that most consumers perceive their protection as a single “product” or app, while in truth all major security suites today are the combination of often dozens of discrete, independent modules performing their functions separately or in overlapping unison.

I know the above seems complex and beneath the coding it’s massively so, but in truth the interface for most of Windows Security functions are some of the simplest and easiest to use out there, which is actually where Microsoft’s developers have spent the most time since the original Microsoft Security Essentials (WinXP to Win7) and more recently Defender starting with Windows 8.

The reason you’re confused is that you’re new to using Defender and you’re digging into the bowels of its various modules where few consumers ever tread. That’s not generally a bad thing, but like anything new, it’s likely to bring up lots of questions. Typically most consumers won’t even bother looking and truly don’t need to, since the only reason is to deal with exceptions actually causing problems.

In your case I’ve really heard nothing yet that’s a significant problem, just visual anomalies that are causing confusion since you’re trying to understand them fully, which in many cases there’s no need.

For example, in my case there’s no indication that any action is necessary when I go into the Windows Security interface from the quick access icon in the notification menu, since that’s green. However, if I choose to drill down into the Ransomware protection, Controlled Folder Access menu under Virus & malware protection either there or via a CFA notification, I’ll find a similar list of (currently 2) history items. The point here is that though the last CFA blocked notification was displayed in Windows 10 notifications pane, nothing was indicating my attention is critical.