I recently enabled the protected folder feature on my C: drive, and since then, I've been getting notifications from Windows Defender stating that PowerShell is blocked from accessing certain locations like systemprofile and userroot. The only unusual download I had was yt-dlp from its official GitHub, and my UAC settings are set to the highest. I've run full scans with both Windows Defender and Malwarebytes without any malware detections. After restarting my PC, the notifications didn't appear again, and I even checked the Task Scheduler but found no references to PowerShell. I'm currently running a thorough scan with Malwarebytes. Is this blocking behavior normal due to the controlled folder access, or should I be concerned?
3 Answers
I can understand your concern. Malware can sometimes use PowerShell for malicious activities, but since you’ve downloaded from trusted sources and haven’t detected any malware so far, it shouldn't be an issue. Maybe consider running an additional scan with another antivirus program just for peace of mind, like Bitdefender or Kaspersky. It never hurts to be extra safe!
It sounds like your system is just being cautious. The blocked access is usually a result of your protected folder settings designed to prevent unauthorized apps like PowerShell from accessing important files. Given that you’ve scanned your system without finding any malware, it's likely nothing to worry about. Just keep an eye on things in case the situation changes.
It's actually a good thing PowerShell is being blocked in protected folders. This security feature is there for a reason—to prevent any unwanted changes. As you noted, protected folder access wasn't on for the entire C: drive originally, so it makes sense PowerShell would be restricted. Just stay vigilant about what software you download!
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures