Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
Hosts file is detected as malware in Windows Defender
Article ID: 2764944 - View products that this article applies to.
Consider the following scenario:
(http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=SettingsModifier%3aWin32%2fPossibleHostsFileHijack)malware threat by Windows Defender.
This issue occurs because Windows Defender may determine incorrectly that the Hosts file was changed by malware, such as adware or spyware. Typically, malware programs change the Hosts file to redirect users to malicious websites. Therefore, Windows Defender may detect the Hosts file as a security threat.
To resolve this issue, exclude the Hosts file from scanning in Windows Defender. To do this, follow these steps:
For more information about the SettingsModifier:Win32/PossibleHostsFileHijack malware threat, go to the following Microsoft Malware Protection Center encyclopedia entry:
For information about how to reset the Hosts file to the default settings, click the following article number to go to the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/972034/ )How can I reset the Hosts file back to the default?