Windows 10: I don't know if I'm experiencing a false positive: VirTool:Win32/DefenderTamperingRestore

Discus and support I don't know if I'm experiencing a false positive: VirTool:Win32/DefenderTamperingRestore in Windows 10 Gaming to solve the problem; Windows Defender keeps finding this threat VirTool:Win32/DefenderTamperingRestore, it's been about a month, and I just kept running the quick/full scan... Discussion in 'Windows 10 Gaming' started by Iolanda_C, Oct 30, 2023.

  1. IOLANDA_C
    Iolanda_C Win User

    I don't know if I'm experiencing a false positive: VirTool:Win32/DefenderTamperingRestore


    Windows Defender keeps finding this threat VirTool:Win32/DefenderTamperingRestore, it's been about a month, and I just kept running the quick/full scan everyday, removing it or quarantining it which it does by itself mostly, of course, also using MSERT: the first time I used it full scan, it didn't take much it did not find anything.Yesterday I performed a full scan with the normal Defender, as I'm doing almost every day and SURPRISE that's what it found in a random folder: Trojan:script/sabsik.fl.a!ml.I clicked on remove, and I also removed the folder manually because I didn't need it, an

    :)
     
    Iolanda_C, Oct 30, 2023
    #1
  2. HERNAN COVA
    Hernan Cova Win User

    Win32/DefenderTamperingRestore

    Hi there.

    Anybody can help me with how to clean my computer from this virus:
    Win32/DefenderTamperingRestore

    Usually, when I run MSERT.exe it says that this virus was eliminated. But I have some questions:

    a) Is it a memory-resident malware?

    b) Is it launched in my computer startup?

    c) Or is it activated when I run some software. How can I know which software is launching it? I guess that MSERT must know.

    d) Where it is located?

    e) How can I delete it?

    f) FINALLY.......IS IT DANGEROUS? (For example, Is my computer safe to use it with my credit card payments)

    Regards

    Hernán Covarrubias

    Mobile: +569 9870 3539

    Private mail: *** Email address is removed for privacy ***
     
    Hernan Cova, Oct 30, 2023
    #2
  3. BHRINGER
    bhringer Win User
    False Positive by Windows Defender ? Win32/Critet.BS

    @G_963

    Found thread in ZHPCleaner forum.

    Dectection du trojan :Win32/Critet.BS

    Dectection du trojan :Win32/Critet.BS

    Updated Windows Defender definitions to 1.263.740.0 and downloaded ZHPCleaner from author's site. It passed security scan so hopefully the issue has been resolved with false positives.

    Try manually updating through Windows Defender Security Center - Virus and Treat Protection Updates and determine if supercopier is still detected.

    ~
     
    bhringer, Oct 30, 2023
    #3
  4. REJZOR
    RejZoR Win User

    I don't know if I'm experiencing a false positive: VirTool:Win32/DefenderTamperingRestore

    Avast: False Positive Much?

    In these days you can't really trust anyone's word without inspecting. Hacked servers with injected binaries, viruses that infect compiler resources (these are cool, programmers even slam digital signatures over them -> Win32:Induc virus) etc...

    But if you suspect it's a false positive made by avast!, let me know and i'll inspect it.
     
    RejZoR, Oct 30, 2023
    #4
Thema:

I don't know if I'm experiencing a false positive: VirTool:Win32/DefenderTamperingRestore

Loading...

  1. I don't know if I'm experiencing a false positive: VirTool:Win32/DefenderTamperingRestore - Similar Threads - don't I'm experiencing

  2. False positive??

    in AntiVirus, Firewalls and System Security
    False positive??: Hello! I downloaded a file from web and I think I got viruses or malware from it. First, Windows Defender notified me that I got malware and I deleted all the temp and patched files from my laptop and scanned it after with Microsoft Security Scan and it said I have 0 files...

  3. False positive??

    in Windows 10 Software and Apps
    False positive??: Hello! I downloaded a file from web and I think I got viruses or malware from it. First, Windows Defender notified me that I got malware and I deleted all the temp and patched files from my laptop and scanned it after with Microsoft Security Scan and it said I have 0 files...

  4. I don't know if I'm experiencing a false positive: VirTool:Win32/DefenderTamperingRestore

    in Windows 10 Software and Apps
    I don't know if I'm experiencing a false positive: VirTool:Win32/DefenderTamperingRestore: Windows Defender keeps finding this threat VirTool:Win32/DefenderTamperingRestore, it's been about a month, and I just kept running the quick/full scan everyday, removing it or quarantining it which it does by itself mostly, of course, also using MSERT: the first time I used...

  5. Win32/DefenderTamperingRestore issue

    in Windows 10 Software and Apps
    Win32/DefenderTamperingRestore issue: I am having an issue with my laptop. It is as if it is in a deepfreeze type state. When I install new software and restart, the installed software is not there after the restart. I have tried various anti-virus tools but as soon as I download them and install or run, they...

  6. Win32/DefenderTamperingRestore issue

    in Windows 10 Gaming
    Win32/DefenderTamperingRestore issue: I am having an issue with my laptop. It is as if it is in a deepfreeze type state. When I install new software and restart, the installed software is not there after the restart. I have tried various anti-virus tools but as soon as I download them and install or run, they...

  7. VirTool: Win32 / DefenderTamperingRestore

    in AntiVirus, Firewalls and System Security
    VirTool: Win32 / DefenderTamperingRestore: Hi.I have a fully up-to-date HP PAVILION laptop with Windows 11 HOME.I check for updates every day with Windows Update.The PC is protected with Malwarebytes Premium updated in the malware definitions several times a day; I always keep the Windows Defender virus definitions up...

  8. Windows Defender -VirTools Win32/ExcludeProc.D and Win32/ExcludeProc.A

    in AntiVirus, Firewalls and System Security
    Windows Defender -VirTools Win32/ExcludeProc.D and Win32/ExcludeProc.A: Hi, for the past few days I've been getting notifications about VirTool:Win32/ExcludeProc.D and VirTool:Win32/ExcludeProc.A. I tried to remove them in windows defender but when I restart my laptop I get notification again. I tried using Malwarebytes and Avast but they are not...

  9. false positive? Win32/Sabsik.FT.A!ml

    in AntiVirus, Firewalls and System Security
    false positive? Win32/Sabsik.FT.A!ml: after compiling my C++ using the devolper console "cl /EHsc hello.cpp" this triggered my antivirus to say Win32/Sabsik.FT.A!ml trojan was discovered and it affected "hello.cpp", so false positive or not or this Win32/Sabsik.FT.A!ml the C++ compilor?...

  10. Win32/DefenderTamperingRestore

    in AntiVirus, Firewalls and System Security
    Win32/DefenderTamperingRestore: Hi there. Anybody can help me with how to clean my computer from this virus: Win32/DefenderTamperingRestore Usually, when I run MSERT.exe it says that this virus was eliminated. But I have some questions: a Is it a memory-resident malware? b Is it launched in my computer...