Q&A Trojan:Win32/Bluteal!rfn found by Windows Defender. False positive?

Status
Not open for further replies.

easytools

New Member
Jun 3, 2020
8
first is there anyway to know if it's a real 'trojan'
or that windows defender is mis-detecting things?
others have dl this file with seemingly no said problems

trojan name seems to be 'Trojan:Win32/Bluteal!rfn'

2nd there are 3 options, what does each do?
remove quarant allow
why not just delete the file in 'file explorer' or others? it's in a 'zip' file

last when windows defender scans a specific file (which they call a 'quick scan'), does it do an offline scan?
does it scan for more things if its not an 'offline scan'?
 
Last edited:
  • Like
Reactions: omidomi

omidomi

Level 69
Verified
Trusted
Malware Hunter
Apr 5, 2014
5,878
first is there anyway to know if it's a real 'trojan'
or that windows defender is mis-detecting things?
others have dl this file with seemingly no said problems

trojan name seems to be 'Trojan:Win32/Bluteal!rfn'

2nd there are 3 options, what does each do?
remove quarant allow
why not just delete the file in 'file explorer' or others? it's in a 'zip' file

last when windows defender scans a specific file (which they call a 'quick scan'), does it do an offline scan?
does it scan for more things if its not an 'offline scan'?
Any hash or VT link?
 
  • Like
Reactions: Dave Russo
Status
Not open for further replies.
Top