F5F Stay Refreshed Software Operating Systems Windows Defender threats

Windows Defender threats

Windows Defender threats

V
vvRNGvv
Junior Member
Find
1
03-03-2021, 12:43 PM
#1
The updated summary will show only new threats detected during the latest scan, while previous entries stay in the history.
Reply
Reply
V
vvRNGvv
03-03-2021, 12:43 PM #1

The updated summary will show only new threats detected during the latest scan, while previous entries stay in the history.

Reply
Reply
P
PvtStoner
Senior Member
Find
599
03-04-2021, 02:06 AM
#2
It seems uncertain, but I believe quarantining it would prevent rescanning unless you've adjusted some unusual settings. Many WinDef flags on my system get completely disabled, not just quarantined.
Reply
Reply
P
PvtStoner
03-04-2021, 02:06 AM #2

It seems uncertain, but I believe quarantining it would prevent rescanning unless you've adjusted some unusual settings. Many WinDef flags on my system get completely disabled, not just quarantined.

Reply
Reply
B
Bekindly_
Member
Find
165
03-07-2021, 10:45 PM
#3
Based on my observations, if a threat is well-established and confirmed, Defender eliminates it. For uncertainties in the PUP category, you receive guidance on possible actions. I believe these aren't indicating items already placed under quarantine.
Reply
Reply
B
Bekindly_
03-07-2021, 10:45 PM #3

Based on my observations, if a threat is well-established and confirmed, Defender eliminates it. For uncertainties in the PUP category, you receive guidance on possible actions. I believe these aren't indicating items already placed under quarantine.

Reply
Reply
S
SolitudeFX
Member
Find
131
03-21-2021, 02:02 PM
#4
I probably received a false alarm because the same file appeared in two different sources once labeled as Trojan:Win32/Wacatac.B!ml and the next time as Program:Win32/Wacapew.C!ml. It was an old file and was detected during a standard check of an old hard drive, so nothing was executed on this machine. I reinstalled it just to confirm, but the defender reported the threats as removed and they were initially stopped. All full and offline scans show nothing else.
Reply
Reply
S
SolitudeFX
03-21-2021, 02:02 PM #4

I probably received a false alarm because the same file appeared in two different sources once labeled as Trojan:Win32/Wacatac.B!ml and the next time as Program:Win32/Wacapew.C!ml. It was an old file and was detected during a standard check of an old hard drive, so nothing was executed on this machine. I reinstalled it just to confirm, but the defender reported the threats as removed and they were initially stopped. All full and offline scans show nothing else.

Reply
Reply
F
FTTank2008
Member
Find
174
03-23-2021, 04:08 PM
#5
You're almost certainly safe. If you're really worried, you can use a Restore Point, but you're probably fine. Dumb story time: Ages ago a friend asked if I could pull some of his personal docs off an old work laptop SSD. I plugged the thing in and Windows basically locked up for 5 minutes from all the Defender notifications it was throwing. Given that Buddy worked for a *HIGH* power (and more than a little shady) law firm, I pulled a report and sent it off to him to share with their IT security. They were very interested. When they got back to me (2 months later) they tracked it down to one of the times Buddy had to check his carry on into China and thanked me for explaining a breach attempt they had. Fun times. All I ended up doing was running a full scan, restoring to the restore point I manually created right before installing the drive, and scanning again. That tower has been humming along just fine ever since. Oh, and of course I grabbed the pics and docs Buddy needed.
Reply
Reply
F
FTTank2008
03-23-2021, 04:08 PM #5

You're almost certainly safe. If you're really worried, you can use a Restore Point, but you're probably fine. Dumb story time: Ages ago a friend asked if I could pull some of his personal docs off an old work laptop SSD. I plugged the thing in and Windows basically locked up for 5 minutes from all the Defender notifications it was throwing. Given that Buddy worked for a *HIGH* power (and more than a little shady) law firm, I pulled a report and sent it off to him to share with their IT security. They were very interested. When they got back to me (2 months later) they tracked it down to one of the times Buddy had to check his carry on into China and thanked me for explaining a breach attempt they had. Fun times. All I ended up doing was running a full scan, restoring to the restore point I manually created right before installing the drive, and scanning again. That tower has been humming along just fine ever since. Oh, and of course I grabbed the pics and docs Buddy needed.

Reply
Reply
U
umizou1393
Senior Member
Find
253
03-28-2021, 01:40 AM
#6
Thanks for the clarification.
Reply
Reply
U
umizou1393
03-28-2021, 01:40 AM #6

Thanks for the clarification.

Reply
Reply