![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 89%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
Good day John, thanks for your question. I am glad to be able to provide assistance to you today. By the looks of it is that MS/Windows Defender combatted the said threat and below are a couple of steps if in any case that you will still have a doubt about it.
Method 1: (as you have already tried this then you can go the last step to check the history of Windows Defender/Security)
- Download a copy of the Microsoft Safety Scanner and run a full scan on your PC and this is to determine the possibility that you are getting a false positive from Windows Defender/Security. The Safety Scanner and Defender uses the same Intelligence Definitions and anything that one detects then it should also be detected by the other and if you do not see this with the Safety Scanner then we can say that Defender's alert is a false one
- You can also check the folder C:\ProgramData\Microsoft\Windows Defender\Quarantine and delete any items that is in there as well
- Check and monitor your PC afterwards
https://docs.microsoft.com/en-us/windows/securi...
Reference link for removing detection history of Windows Defender/Security:
https://answers.microsoft.com/en-us/protect/for...
Method 2:
- Head over to this link below to download MalwareBytes and install it as well
https://www.malwarebytes.com/mwb-download/thank...
- After the installation, run the program and scan your computer to see if MalwareBytes will be able to detect and remove the said malware
- You can also change on how the scan will be done by checking on the link below
- While you still have or still using MalwareBytes is that you need to change the setting first in order for it to run side by side with Windows Security/Defender and you can do that by going to it Settings (gear icon) and under Security ensure that that the toggle slider for "Always register Malwarebytes in Windows Security Center" is off
- You can also check the folder C:\ProgramData\Microsoft\Windows Defender\Quarantine and delete any items that is in there as well
- Check and monitor your PC afterwards
Method 3:
- Head over to this link below and follow the Emisoft guide using their EEK and see how it goes
https://blog.emsisoft.com/en/16796/how-to-find-...
___________________________________________________________
Note: This is a non-Microsoft website. The page appears to be providing accurate, safe information. Watch out for ads on the site that may advertise products frequently classified as a PUP (Potentially Unwanted Products). Thoroughly research any product advertised on the site before you decide to download and install it.
___________________________________________________________
Regards,
Paul R.