Apr 20 2023 05:26 PM
I am the IT Admin and I keep seeing this Windows Security pop up notification on my system about blocking mtalk.google.com. I do not have this installed nor can I find anything about it in the registry. How can I find and remove this completely to stop these notifications? Driving me crazy....
Apr 21 2023 06:50 AM
SolutionApr 26 2023 11:06 AM
Jul 18 2023 09:16 PM
@Blacksuit2375 did you make any progress on this to remove it or stop it from happening?
Jul 18 2023 10:17 PM
I have made ZERO progress on this issue. I even posted to Google and have not received any help thus far...this annoys the hell out of me! I know it is Chrome because it doesn't pop up when it is closed, only when Chrome is open.
Aug 22 2023 03:43 AM
@Blacksuit2375 We are encountering the same issue. Have you heard anything back from Google? How did you solve / avoid the problem?
Aug 22 2023 09:34 AM
I wish I could provide you answers but Google nor anyone else has been able to assist me with this issue...it literally drives me insane!
Sep 14 2023 12:52 PM
Not sure if it helps but I recently had issues with the 'content blocked by IT Admin' notifications and tracked it down to the Defender for Endpoint's web content filter. I found through the Reports > Web protection that the mtalk.google.com site is considered a 'chat' related site so if your content filter rule has the chat category blocked, this could be the cause. You can either add an exception for that site via the indicators section or allow the chat category to stop the notifications. If you're not using the content filter, I would also suggest checking the attack surface reduction rule called 'network protection.'
I'm still trying to determine what mtalk.google.com is exactly and finding mixed results on the web. Seems to be a now-defunct google service but as you observed, chrome is trying to reach it. I would assume any google related product or service could be for that matter.
Sep 21 2023 12:15 AM
Sep 26 2023 01:32 PM - edited Sep 26 2023 01:36 PM
@SCIOTo stop the pop-up, you would either need to exclude the particular offending web content filter category/ies from your web content filter policy (this would be determined by the web content filter reports) or if you want to just exclude individual URLs, you'll do this through security.microsoft.com > Settings > Endpoints > Indicators (under the Rules section.)
As noted above, if you're not using web content filter, then you should look at your attack surface reduction rule called Network protection. https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/enable-network-protection...
Hope that helps!
Sep 26 2023 10:27 PM
Oct 17 2023 11:21 PM
Oct 27 2023 08:11 AM - edited Oct 27 2023 08:14 AM
@Blacksuit2375 This started on my main personal machine a while back (maybe August '23 or so?) after an update I think. I get it A LOT!! For all sorts of programs, the majority of which are from reputable companies, are "signed" and have been on my machine for ages. Admittedly, about half of them could potentially be security risks if installed or running unintentionally, such as NoMachine. The other half, I dunno why they trigger this warning. I've gone into Windows Security settings and created exceptions for many of them but it makes no difference, I still getting these notifications and it still keeps blocking my important software and I cannot find any place to turn it off. Likewise, Googling (and Binging) has return no useful results. But apparently not too many people are having or reporting this problem. It's annoying as heck and I want to disable it! Also note that most of the programs I am getting this on are NOT web related.
Jan 09 2024 12:33 AM
Jan 09 2024 12:35 AM
Jan 10 2024 11:39 PM
Jan 17 2024 03:55 PM
@MariusSusma So based on your post, it would seem that my "content blocked" problem is being caused by Endpoint Manager, aka InTune. Very plausible since it started around the time I installed Office 365, using the license (with their permission) of a tiny company that I sometimes help with IT issues. So I am the admin. Their license level is just Business Standard which best as I can determine does not include Endpoint Manager/InTune. So how the heck did it get on my machine? I was able to log into the InTune admin center under that account (even though they don't have it?) but was unable to do anything. Cannot add a device or policy or change anything. All options are either grayed out or returns a "Something went wrong" error message.
Furthermore, it has now decided it wants to block the driver installers for my AMD graphics card and my fingerprint reader and as I mentioned above, adding an exception to Windows Security does not stop it from blocking them.
So now I'm really pissed! How do I uninstall this #$%& security program that I did not ask for, did not grant permission to, and do not want! It is annoying as heck and now interfering with the proper use of my machine!
Apr 21 2023 06:50 AM
Solution