![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 99%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGG%3C/text%3E%3C/svg%3E)
1,608 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 39%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKH%3C/text%3E%3C/svg%3E)
Hello Geetha Ganesan,
welcome to Q&A
According to your description, an internal web application was suddenly marked as “not secure” by Microsoft Defender SmartScreen, combined with the information in the screenshot (the domain dhhappchne8164.cscidp.net was blocked).
Possible causes of problems
- Domain Reputation Issues
- Domain *.cscidp.net is blacklisted by Microsoft The domain belongs to a dynamic DNS service (e.g. No-IP/DynDNS). Hackers often abuse such domains to host malware, causing Microsoft to block entire domain extensions in bulk. Even if your subdomain is harmless, it will be implicated.
- Trigger point: May 27, 2025 Microsoft updated the blacklist to mark the entire domain of cscidp.net as dangerous.
- SSL Certificate Issues
- Expired certificates, domain name mismatches, or the use of self-signed certificates may trigger security warnings (but SmartScreen is primarily targeted at malicious content and needs to be combined with troubleshooting).
- Content False Alarm
- If the page contains external resources (e.g. JS/CSS libraries) that have been tampered with by hackers, or if there are suspicious redirects, it may be determined by SmartScreen to be malicious.
- Domain *.cscidp.net is blacklisted by Microsoft The domain belongs to a dynamic DNS service (e.g. No-IP/DynDNS). Hackers often abuse such domains to host malware, causing Microsoft to block entire domain extensions in bulk. Even if your subdomain is harmless, it will be implicated.
Method 1: Replace the domain name (with immediate effect)
Discard the dynamic DNS domain name:
Replace dhhappchne8164.cscidp.net with:
Internal private domain name (e.g. appname.internal) and configure the intranet DNS resolution
or apply for a regular corporate domain name (e.g. app.yourcompany.com)
Modify the application configuration : Update the server hostname binding and client access address.
Method 2: # Check certificate expiration date (performed at the server)
Get-ChildItem -Path Cert:\LocalMachine\My | Where-Object { $_.Subject -match "dhhappchne8164" } | fl Subject, NotAfter
Make sure that the certificate is valid and the domain name matches (renew if expired).
Thank you for your patience and reading.
Best regards.
Kai Ho | Microsoft Community Support Specialist