Windows Defender alert, threat neutralized...no visible issue detected.
Windows Defender alert, threat neutralized...no visible issue detected.
It's been happening for a few weeks now. The system claims it handled a threat, but I don't see any activity in the notifications or event viewer. Could be a Windows issue or something glitchy?
I'll try it tomorrow at work—it's the PC in the shop we use. We don't do anything unusual or go anywhere out of the ordinary, and we rarely download files to it. The only updates are about restricted folder access permissions from over a month ago when I adjusted Windows Defender settings more.
Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 5/6/21 Scan Time: 8:33 AM Log File: 9adae274-ae6f-11eb-af62-20256409b6c9.json -Software Information- Version: 4.3.3.116 Components Version: 1.0.1292 Update Package Version: 1.0.40175 License: Trial -System Information- OS: Windows 10 (Build 19042.964) CPU: x64 File System: NTFS User: SHOP-PC\Shop -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 275211 Threats Detected: 0 Threats Quarantined: 0 Time Elapsed: 1 min, 25 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)
If your MWB scan takes a minute, something is off. You should run a full scan when you have multiple drives for each one—there’s no restriction that viruses can only install on the main drive. A thorough check usually requires several hours. Also, any detected threats must appear in the threat history.
It took roughly 20 minutes to complete, I believe. The system had minimal software beyond Windows 10, Chrome browser, a few PDFs, and images related to work. Yes, threat records show only blocked applications due to restricted folder access, which were manually unblocked after enabling ransomware protection about a month ago. When checking the event viewer at that moment, it indicated activity but found nothing suspicious—just logon events. I recommend reviewing the logs yourself; there doesn’t appear to be any detection or threat action. It’s also puzzling that this has occurred every boot for the past couple of weeks without any entries in the logs or threat history during that period. Event-Security.evtx
But... you should definitely use a full scan. A 20-minute session would work well if the content isn't too heavy, but that doesn't match what you shared. I'm not very experienced with this, so it might be one of these reasons. What exactly did you let me do?
I realized the process took longer than expected, I was using the computer for about 20 minutes and it ran very slow. I switched to Chrome browser, used the shop management app, and accessed some restricted folders through Windows Defender. Only a few items needed permission, though we don’t handle much on the PC but it manages client data. I checked if this was an issue with Windows Defender. I also turned on Core Isolation since it’s available on this machine.
It has returned after a period of absence. The recent steps taken appear effective, with no prior records of protection measures. Seeking additional insights—perhaps reviewing other logs or using the Event Viewer tool?