Hello. I’m new here, so I apologize in advance for any mistakes I might make whilst writing this. And I also apologize for the length of this post.
I have an issue with Windows Security Center. At 11 AM today, I heard a ding sound signaling that a device was inserted into my PC. I’d assumed it was malware, since I didnt connect any device at all. So, I checked the Windows Defender icon in the pop put panel, and sure enough, the icon showed the caution symbol signaling that Windows Defender has actions I need to check.
When I entered, it stated that part of the Core Isolation protection was turned off. I felt panicked and nervous, since this has never happened to me before. I turned it back on, and now it told me it needed to restart to enable it. I did so, and yet the yellow icon still was there. (It was the Local Security Authority protection)
I re-entered, and when I checked again, what I saw confused me greatly.
It had remained enabled, but Windows still warned that it was turned off. I dismissed the warning, and rechecked the icon. It was green, no issues. However, I noticed that Memory access protection was disabled. I renabled it, and now it says that a restart is required. I then thought, “No problem, right?”
As it turns out, people on the Windows 11 Reddit have been reporting that the latest Windows Defender update (KB5023286, Version 1000.25305.0.1000) has been causing issues, ranging from UI color changes, to LSA or TPM disabling itself, refusing to open, etc. Sounds similar to my issue, albeit in a worse form.
They fixed it by adding two Registry keys, (But I don’t think I need that drastic of a fix just yet) but I have a problem concerning the new update. I told Windows Defender to check for updates, (because I was going to run a scan, but I halted myself, due to the above information.) and it installed the same one. I did so before I heard the above information, so now I’m in possession of a dilemma: Should I restart and hope for the best, restart and roll back the update, or should I avoid turning off my PC?
I have not installed any updates since March 1st, (I use WUSOHide to hide updates and GPEdit to use the setting of “Notify, but don’t download or install”) but I’ve heard rumors that Defender updated in the background.
My PC is still on, so now I have to make a decision. So my question is this: What should I do? Should I restart and go on, restart and roll back, or avoid shutting down?
I will be grateful for any advice or aid anyone can give me, and I hope not to waste the community’s time.