This is work in progress.

Windows / Modules / mpssvc.dll

mpssvc.dll

Protection Service API

Associated Error Codes

Below lists error codes and symbolic names found for this module.

CodeDescription
0x20007faConfig Read Failed Config: %1 Error: %2
0x3001900An attempt to programmatically disable the Windows Defender Firewall using a call to INetFwProfile.FirewallEnabled(FALSE) interface was rejected because this API is not supported on Windows Vista. This has most likely occurred due to an application which is incompatible with Windows Vista. Please contact the application's vendor to make sure you have a Windows Vista compatible application version. Error Code: E_NOTIMPL Caller Process Name: %1 Process Id: %2 Publisher: %3
0x30000001Start
0x30000002Stop
0x32000000Info
0x50000004Information
0x52000002Error
0x90000001Microsoft-Windows-Firewall-Service
0x91000001Microsoft-Windows-Firewall-Client
0x92000001Microsoft-Windows-Windows Firewall With Advanced Security
0x92000002Microsoft-Windows-Windows Firewall With Advanced Security/Firewall
0x92000003Microsoft-Windows-Windows Firewall With Advanced Security/ConnectionSecurity
0x92000004Microsoft-Windows-Windows Firewall With Advanced Security/FirewallVerbose
0x92000005Microsoft-Windows-Windows Firewall With Advanced Security/ConnectionSecurityVerbose
0x92000006Network Isolation Operational
0x92000007Microsoft-Windows-Windows Firewall With Advanced Security/FirewallDiagnostics
0x92000008System
0x93000001Microsoft-Windows-Firewall
0xb20007d0The following settings were applied to the Windows Defender Firewall at startup Current Profile: %1 IPsec SA Idle time: %2 IPsec preshared key encoding: %3 IPsec Exempt: %4 IPsec CRL Check: %5 IPsec Through NAT: %6 Policy Version Supported: %7 Policy Version: %8 Binary Version Supported: %9 Stateful FTP: %10 Group Policy Applied: %11 Remote Machine Authorization List: %12 Remote UserAuthorization List: %13
0xb20007d1The following per profile settings were applied by Windows Defender Firewall Profile: %1 Operational Mode: %2 Stealth Mode: %3 Block all Incoming Connections: %4 Unicast response to multicast broadcast: %5 Log dropped packets: %6 Log successful connections: %7 Log ignored rules: %8 Inbound Notifications: %9 Allow Local Policy Merge: %12 Allow Local IPsec Policy Merge: %13 Default Outbound Action: %14 Default Inbound Action: %15 Remote Administration: %16 Stealth Mode IPsec Secured Packet Exemption: %21 Maximum Log file size: %17 Log File path: %18 Allow User preferred merge of Authorized Applications: %10 Allow User preferred merge of Globally open ports: %11
0xb20007d2A Windows Defender Firewall setting has changed. New Setting: Type: %1 Value: %4 Modifying User: %6 Modifying Application: %7
0xb20007d3A Windows Defender Firewall setting in the %1 profile has changed. New Setting: Type: %2 Value: %5 Modifying User: %7 Modifying Application: %8
0xb20007d4A rule has been added to the Windows Defender Firewall exception list. Added Rule: Rule ID: %1 Rule Name: %2 Origin: %3 Active: %18 Direction: %6 Profiles: %11 Action: %10 Application Path: %4 Service Name: %5 Protocol: %7 Security Options: %21 Edge Traversal: %19 Modifying User: %22 Modifying Application: %23
0xb20007d5A rule has been modified in the Windows Defender Firewall exception list. Modified Rule: Rule ID: %1 Rule Name: %2 Origin: %3 Active: %18 Direction: %6 Profiles: %11 Action: %10 Application Path: %4 Service Name: %5 Protocol: %7 Security Options: %21 Edge Traversal: %19 Modifying User: %22 Modifying Application: %23
0xb20007d6A rule has been deleted in the Windows Defender Firewall exception list. Deleted Rule: Rule ID: %1 Rule Name: %2 Modifying User: %3 Modifying Application: %4
0xb20007d7A rule has been listed when the Windows Defender Firewall started. Added Rule: Rule ID: %1 Rule Name: %2 Origin: %3 Active: %18 Direction: %6 Profiles: %11 Action: %10 Application Path: %4 Service Name: %5 Protocol: %7 Security Options: %21 Edge Traversal: %19
0xb20007d8Windows Defender Firewall Group Policy settings have changed. The new settings have been applied
0xb20007d9The Windows Defender Firewall service failed to load Group Policy. Error: %1
0xb20007daNetwork profile changed on an interface. Adapter GUID: %1 Adapter Name: %2 Old Profile: %3 New Profile: %4
0xb20007dbWindows Defender Firewall was unable to notify the user that it blocked an application from accepting incoming connections on the network. Reason: %1 Application Path: %2 IP Version: %3 Protocol: %4 Port: %5 Process Id: %6 User: %7
0xb20007dcA connection security rule was added to IPsec settings. Rule ID: %1 Rule Name: %2 Origin: %3 Active: %4 Protocol: %5 EndPoint1Ports: %6 EndPoint2Ports: %7 LocalTunnelEndpointV4: %8 LocalTunnelEndpointV6: %9 RemoteTunnelEndpointV4: %10 RemoteTunnelEndpointV6: %11 Phase1AuthSetId: %12 Phase2AuthSetId: %13 Phase2CryptoSetId: %14 Action: %15 Profiles: %16 LocalAddresses: %17 RemoteAddresses: %18 EmbeddedContext: %20 IsDTM: %22 ApplyAuthZ: %23 BypassTunnelIfEncrypted: %24 NoIPSecOnOutbound: %25 ModifyingUser: %26 ModifyingApplication: %27
0xb20007ddA connection security rule was modified in IPsec settings. Rule ID: %1 Rule Name: %2 Origin: %3 Active: %4 Protocol: %5 EndPoint1Ports: %6 EndPoint2Ports: %7 LocalTunnelEndpointV4: %8 LocalTunnelEndpointV6: %9 RemoteTunnelEndpointV4: %10 RemoteTunnelEndpointV6: %11 Phase1AuthSetId: %12 Phase2AuthSetId: %13 Phase2CryptoSetId: %14 Action: %15 Profiles: %16 LocalAddresses: %17 RemoteAddresses: %18 EmbeddedContext: %20 IsDTM: %22 ApplyAuthZ: %23 BypassTunnelIfEncrypted: %24 NoIPSecOnOutbound: %25 ModifyingUser: %26 ModifyingApplication: %27
0xb20007deA connection security rule was deleted from IPsec settings. Deleted Rule: Rule ID: %1 Rule Name: %2 Modifying User: %3 Modifying Application: %4
0xb20007dfA connection security rule was added to IPsec settings when Windows Defender Firewall started. Rule ID: %1 Rule Name: %2 Origin: %3 Active: %4 Protocol: %5 EndPoint1Ports: %6 EndPoint2Ports: %7 LocalTunnelEndpointV4: %8 LocalTunnelEndpointV6: %9 RemoteTunnelEndpointV4: %10 RemoteTunnelEndpointV6: %11 Phase1AuthSetId: %12 Phase2AuthSetId: %13 Phase2CryptoSetId: %14 Action: %15 Profiles: %16 LocalAddresses: %17 RemoteAddresses: %18 EmbeddedContext: %20 IsDTM: %22 ApplyAuthZ: %23 BypassTunnelIfEncrypted: %24 NoIPSecOnOutbound: %25 ModifyingUser: %26 ModifyingApplication: %27
0xb20007e0A main mode rule has been added in the IPsec settings. Rule ID: %1 Rule Name: %2 Profiles: %3 Endpoint1: %4 Endpoint2: %5 Phase1AuthSetId: %6 Phase1CryptoSetId: %7 Flags: %8 Active: %9 EmbeddedContext: %10 Origin: %11 ModifyingUser: %12 ModifyingApplication: %13
0xb20007e1A main mode rule has been modified in the IPsec settings. Rule ID: %1 Rule Name: %2 Profiles: %3 Endpoint1: %4 Endpoint2: %5 Phase1AuthSetId: %6 Phase1CryptoSetId: %7 Flags: %8 Active: %9 EmbeddedContext: %10 Origin: %11 ModifyingUser: %12 ModifyingApplication: %13
0xb20007e2A main mode rule has been deleted in the IPsec settings. Deleted Rule: Rule ID: %1 Rule Name: %2 Modifying User: %3 Modifying Application: %4
0xb20007e3A main mode rule was added to the IPsec settings when Windows Defender Firewall started. Rule ID: %1 Rule Name: %2 Profiles: %3 Endpoint1: %4 Endpoint2: %5 Phase1AuthSetId: %6 Phase1CryptoSetId: %7 Flags: %8 Active: %9 EmbeddedContext: %10 Origin: %11 ModifyingUser: %12 ModifyingApplication: %13
0xb20007e4A phase 1 crypto set was added to IPsec settings. Set ID: %1 Set Name: %2 Origin: %4 Flags: %6 NumSuites: %7 TimeOutMinutes: %10 TimeOutSessions: %11 ModifyingUser: %12 ModifyingApplication: %13
0xb20007e5A phase 1 crypto set was modified in IPsec settings. Set ID: %1 Set Name: %2 Origin: %4 Flags: %6 NumSuites: %7 TimeOutMinutes: %10 TimeOutSessions: %11 ModifyingUser: %12 ModifyingApplication: %13
0xb20007e6A phase 1 crypto set was deleted from IPsec settings. Deleted Rule: Rule ID: %1 Rule Name: %2 Modifying User: %3 Modifying Application: %4
0xb20007e7A phase 1 crypto set was added to IPsec settings when Windows Defender Firewall started. Set ID: %1 Set Name: %2 Origin: %4 Flags: %6 NumSuites: %7 TimeOutMinutes: %10 TimeOutSessions: %11 ModifyingUser: %12 ModifyingApplication: %13
0xb20007e8A phase 2 crypto set was added to IPsec settings. Set ID: %1 Set Name: %2 Origin: %4 Pfs: %6 NumSuites: %7 ModifyingUser: %10 ModifyingApplication: %11
0xb20007e9A phase 2 crypto set was modified in IPsec settings. Set ID: %1 Set Name: %2 Origin: %4 Pfs: %6 NumSuites: %7 ModifyingUser: %10 ModifyingApplication: %11
0xb20007eaA phase 2 crypto set was deleted from IPsec settings. Deleted Rule: Rule ID: %1 Rule Name: %2 Modifying User: %3 Modifying Application: %4
0xb20007ebA phase 2 crypto set was added to IPsec settings when Windows Defender Firewall started. Set ID: %1 Set Name: %2 Origin: %4 Pfs: %6 NumSuites: %7 ModifyingUser: %10 ModifyingApplication: %11
0xb20007ecAn authentication set has been added to IPsec settings. Set ID: %1 Set Name: %2 IPsec Phase: %3 Origin: %5 NumSuites: %7 ModifyingUser: %10 ModifyingApplication: %11
0xb20007edAn authentication set has been modified in IPsec settings. Set ID: %1 Set Name: %2 IPsec Phase: %3 Origin: %5 NumSuites: %7 ModifyingUser: %10 ModifyingApplication: %11
0xb20007eeAn authentication set has been deleted from IPsec settings. Deleted Rule: Rule ID: %1 Rule Name: %2 Modifying User: %3 Modifying Application: %4
0xb20007efAn authentication set has been added to IPsec settings when Windows Defender Firewall started. Set ID: %1 Set Name: %2 IPsec Phase: %3 Origin: %5 NumSuites: %7 ModifyingUser: %10 ModifyingApplication: %11
0xb20007f0Windows Defender Firewall has been reset to its default configuration. ModifyingUser: %1 ModifyingApplication: %2
0xb20007f1All rules have been deleted from the Windows Defender Firewall configuration on this computer. Store Type: %1 ModifyingUser: %2 ModifyingApplication: %3
0xb20007f2All connection security rules have been deleted from the IPsec configuration on this computer. Store Type: %1 ModifyingUser: %2 ModifyingApplication: %3
0xb20007f3All main mode rules have been deleted from the IPsec configuration on this computer. Store Type: %1 ModifyingUser: %2 ModifyingApplication: %3
0xb20007f4All authentication sets have been deleted from the IPsec configuration on this computer. IPsec Phase: %1 Store Type: %2 ModifyingUser: %3 ModifyingApplication: %4
0xb20007f5All crypto sets have been deleted from the IPsec configuration on this computer. IPsec Phase: %1 Store Type: %2 ModifyingUser: %3 ModifyingApplication: %4
0xb20007f6Windows Defender Firewall did not apply the following rule because the rule was not properly configured on this computer: Rule Information: ID: %1 Name: %2 Error Information: Reason: %3
0xb20007f7Http Proxies Changed Reason: %1 All Proxies: %2 All Domain Proxies: %3 Group Policy Configured Domain Proxies: %4 Group Policy Configured Local Proxies: %5 All DA Nat64 Domain Proxies: %6 Group Policy is authoritative: %7
0xb20007f8Corp Subnets Changed Reason: %1 All Domain Subnets: %2 Group Policy Configured Domain Subnets: %3 All DA Nat64 Domain Subnets: %4 Group Policy is authoritative: %5
0xb20007f9Capability Changed Reason: %1 Capability: %2 Profile: %3 IP Range Definition: %4
0xb20007fbThe Windows Firewall Service failed to initialize a component. Some policies may not be fully enforced. Component Name: %1 Error Code: %2
0xb20007ffTenant Restrictions Policy Update. Error code: %1 Old Addresses: %2 New Addresses: %3
0xb2000800Added Dynamic Keyword Address. Error Code: %1 Id: %2 Keyword: %3 Addresses %4 AutoResolve: %5
0xb2000801Deleted Dynamic Keyword Address. Error Code: %1 Id: %2
0xb2000802Updated Dynamic Keyword Address. Error Code: %1 Id: %2 Append: %3 Previous Addresses: %4 Addresses to update: %5 Updated Addresses %6
0xb2000803Tenant Restrictions Policy Update Error code: %1 Policy Change: %2
0xb2000824The firewall rule is not enforced due to an error processing the dynamic keyword address. Re-applying the policy may restore this rule into a working state. Rule ID: %1 Rule Name: %2
0xb2000831A rule has been added to the Windows Defender Firewall exception list. Added Rule: Rule ID: %1 Rule Name: %2 Origin: %3 Active: %18 Direction: %6 Profiles: %11 Action: %10 Application Path: %4 Service Name: %5 Protocol: %7 Security Options: %21 Edge Traversal: %19 Modifying User: %22 Modifying Application: %23 PolicyAppId: %27
0xb2000832A rule has been listed when the Windows Defender Firewall started. Added Rule: Rule ID: %1 Rule Name: %2 Origin: %3 Active: %18 Direction: %6 Profiles: %11 Action: %10 Application Path: %4 Service Name: %5 Protocol: %7 Security Options: %21 Edge Traversal: %19
0xb2000833A rule has been modified in the Windows Defender Firewall exception list. Modified Rule: Rule ID: %1 Rule Name: %2 Origin: %3 Active: %18 Direction: %6 Profiles: %11 Action: %10 Application Path: %4 Service Name: %5 Protocol: %7 Security Options: %21 Edge Traversal: %19 Modifying User: %22 Modifying Application: %23
0xb2000837A commit of an atomic transaction failed. Rollback will begin. Error Code: %1
0xb2000838The commit of an add operation in CSP failed. Rule name: %1 Error Code: %2
0xb2000839The commit of an delete operation in CSP failed. Rule name: %1 Error Code: %2
0xb200083aThe commit of a set operation in CSP failed. Rule name: %1 Error Code: %2
0xb200083bA rollback of an atomic transaction completed. Error Code: %1
0xb200083cThe rollback of a delete operation completed. The rollback of a delete is the addition of the rule. Rule name: %1 Error Code: %2
0xb200083dThe rollback of an add operation completed. The rollback of an add is deletion of the rule. Rule name: %1 Error Code: %2
0xb200083eThe rollback of a set operation completed. The rollback of a set is re-setting the previous values. Rule name: %1 Error Code: %2
0xd2000001Enable Windows Defender Firewall
0xd2000002Disable Stealth Mode
0xd2000003Windows Defender Firewall Shielded Mode
0xd2000004Disable Unicast Responses to Multicast
0xd2000005Log Dropped Packets
0xd2000006Log Successful Connections
0xd2000007Log Ignored Rules
0xd2000008Maximum Log File Size
0xd2000009Log File Path
0xd200000aDisable Inbound Notifications
0xd200000bAllow User preferred merge of Authorized Applications
0xd200000cAllow User preferred merge of Globally open ports
0xd200000dAllow Local Policy Merge
0xd200000eAllow Local IPsec Policy Merge
0xd200000fDisabled Interfaces
0xd2000010Default Outbound Action
0xd2000011Default Inbound Action
0xd2000012Disable Stealth Mode IPsec Secured Packet Exemption
0xd2000013Current Profile
0xd2000014Disable Stateful FTP
0xd2000015Ignored Disable Stateful PPTP
0xd2000016IPsec SA Idle time
0xd2000017IPsec preshared key encoding
0xd2000018IPsec Exempt
0xd2000019IPsec CRL Check
0xd200001aIPsec Through NAT
0xd200001bPolicy Version
0xd200001cBinary Version Supported
0xd200001dRemote Machine Authorization List
0xd200001eRemote User Authorization List
0xd200001fLocal
0xd2000020Group Policy
0xd2000021Dynamic
0xd2000022AutoGenerated
0xd2000023Hardcoded
0xd2000024Allow
0xd2000025Block
0xd2000026Yes
0xd2000027No
0xd2000028Group policy RSOP
0xd2000029Local
0xd200002aWSH Static
0xd200002bWSH Configurable
0xd200002cDynamic
0xd200002dGroup policy
0xd200002eEnabled
0xd200002fDisabled
0xd2000030None
0xd2000031Allow
0xd2000032Defer to application
0xd2000033Defer to user
0xd2000034None
0xd2000035Require Authentication
0xd2000036Require Encryption
0xd2000037Require Authentication, Negotiate Encryption
0xd2000038Require Authentication, Allow no encapsulation
0xd2000039Never
0xd200003aServer behind NAT
0xd200003bServer and client behind NAT
0xd200003cInbound
0xd200003dOutbound
0xd200003eAuthenticated IPSec Bypass
0xd200003fBlock
0xd2000040Allow
0xd2000041None
0xd2000042Private
0xd2000043Public
0xd2000044Domain
0xd2000045Private,Domain
0xd2000046Public, Domain
0xd2000047Public, Private
0xd2000048Private,Domain, Public
0xd2000049The application is a system service
0xd200004aThe application is non interactive
0xd200004bThe firewall is off and the application is allowed
0xd200004cThe image is block listed
0xd200004dThe session is inactive
0xd200004eAn unknown error occurred
0xd200004fInbound notifications are not enabled
0xd2000050All Inbound connections are disallowed
0xd2000051All Inbound connections are disallowed, Inbound notifications are not enabled
0xd2000052IPv4
0xd2000053IPv6
0xd2000054Any
0xd2000055TCP
0xd2000056UDP
0xd2000057ICMP V4
0xd2000058ICMP V6
0xd2000059Any
0xd200005aDisabled
0xd200005bCheck
0xd200005cEnforce
0xd200005dNone
0xd200005eUTF8
0xd200005fNone
0xd2000060NeighborDiscovery
0xd2000061ICMP
0xd2000062Require authentication for inbound connections and request authentication for outbound connections
0xd2000063Request authentication for inbound and outbound connections
0xd2000064Require authentication for inbound and outbound connections
0xd2000065Do not authenticate
0xd2000066None
0xd2000067Do Not Skip DH
0xd2000068Invalid
0xd2000069None
0xd200006aMainMode
0xd200006bDHGroup1
0xd200006cDHGroup1
0xd200006dDHGroup14
0xd200006eECDHP256
0xd200006fECDHP384
0xd2000070DHGroup24
0xd2000071Invalid
0xd2000072Phase 1
0xd2000073Phase 2
0xd2000074Group Policy Change
0xd2000075Network Change
0xd2000076Manual Change
0xd2000077Indication Change
0xd2000078Subscription Refresh
0xd2000079Group Policy Change
0xd200007aAD Subnets Change
0xd200007bSubscription Refresh
0xd200007cLocal Address Change
0xd200007dCorp Subnets
0xd200007eHttp Proxies
0xd200007fNetwork Profile Change
0xd2000080Internet
0xd2000081PrivateNetwork
0xd2000082DA Remote PrivateNetwork
0xd2000083Proximity
209 entries