Home > Blogs > VMware PowerCLI Blog

Windows Defender reports false positive for PowerShell Modules

Over the weekend, Microsoft released a Windows Defender signature file that falsely reports many PowerShell modules, including PowerCLI as containing a virus.

This is a FALSE POSITIVE widely affecting the PowerShell community.


There is no official statement from Microsoft yet, but the PowerCLI community on VMware {Code} has been working overtime! Here’s what you need to do to get back to automating:

  1. Update Windows Defender Signatures to the latest (>= 1.261.424.0 1.261.459.0).
  2. If your PowerShellGet module was affected, you may need to download manually from Github (https://github.com/PowerShell/PowerShellGet)
    1. Update: Kevin Marquette has a pretty good workaround for PowerShellGet, which reverts back it back to
  3. Release the affected files from Quarantine, or reinstall PowerCLI (Install-Module VMware.PowerCLI -scope CurrentUser -force)

This story is still developing, so I will update as the info comes in.

This is a great time for a shout out to the PowerCLI community on VMware {Code}. Special thanks to the PowerCLI users that have been working on this over the weekend and this morning: Luc Dekens, Edgar Sanchez, Wouter Kursten, Scott Haas, and John Kavanagh

You can join the VMware {Code} Slack by signing up here: https://code.vmware.com/join


14 thoughts on “Windows Defender reports false positive for PowerShell Modules

  1. Pingback: Windows Defender reports false positive for PowerShell Modules – VMPRO.AT – all about virtualization

  2. health 88

    Thee abundant affair about is this website lets you examination songs and
    acqusition the onnes you want, and again save these to your personal
    computer afterwards downloading them so you can accept for them over aand over.

    In fact, my girlfriend was drunk with joy when she found out that a selected database
    features a large choice of potential cute fairy tattoos that they
    could never wish to find in any sesxual affair generic tattoo gallery sites.
    The invitation part is the best thing being
    decorated because cards are beautiful and brimming with lots of pictures like fairy and
    pajama characters.

  3. Windows Defender Error Code

    Sometimes while using the Windows Defender on your system an error code 0X800704EC occurs. This issue can’t be solved by the user. Last day I faced this issues and visit Windows Defender Error Code solution. The solution helps me a lot.

  4. Gmail Customer Service Number

    Microsoft always comes with innovative ideas, But maybe sometimes it can get false. Thanks for sharing a Useful article, It’s great that we can avoid these kinds of loss through the window PowerCLI updation.

  5. bigg boss

    Will your site have a contact site? I’m having troubles finding it but, I wish to toss you a contact. I’ve received some advice for your site you might well be considering hearing.

  6. Happy Halloween

    Thanks 1st tremendous publishing! I savored reading it; you’re a good publisher.I’ll check that you bookmarker your web site and will keep going back sometime. i might wish to encourage that you simply carry on your nice articles, have an honest weekend!

  7. 0xc000000f

    This error code on my system creates much more issues from yesterday to me, Microsoft released a Windows Defender signature file that falsely reports many PowerShell modules, that solve by you.

  8. piidmpune

    I unmistakably like what you individuals ar now and then up as well. this kind of astute artistic creations and protection! hold the beautiful works individuals i’ve a ton of you fellas to my blogroll.

  9. DMCA Ignored Hosting

    Hopefully this is just a bad malware signature, and not some compromise of Microsoft’s digital signature, or worse.

  10. Casey Rackham

    Seems like it’s better to wait with recent signature updates to avoid issues.

  11. happybirthdaywisheslover.xyz/

    I’ve Also gone through Such Situation! But Got The Issue Cleared It Self.

  12. Email Support

    Hopefully, this is just a bad malware signature, and not some compromise of Microsoft’s digital signature, or worse. it was a False positive and not a compromise, the issue has been resolved with the signature update.

  13. www.mahadbtmahait.gov.in

    Had a requirement to create you a next to no term to a couple of thanks within the in the meantime as before on the point of the primary powerful thoughts you’ve got given ideal here.

  14. Happy Easter Images

    it’s been entirely comfortable on to provide clearly what Relate in Nursing} few folks could’ve sold-out for A digital book to stipulate influencing a couple of coins for his or her to prevent, within the elemental on account of the precise truth it’s everything thought-about shot you’ve got tried it at interims the event you needed.


Leave a Reply

Your email address will not be published. Required fields are marked *