When installing two AVs simultaneously
- Thread starter Parkinsond
- Start date
@Parkinsond That looks like a Windows Defender detection for what it thinks is a backdoor trojan—specifically Backdoor:Win32/Remco.GAM!MTB. From the screenshot, it's pointing to files in your McAfee WebProtect folder, which is part of McAfee's security suite (likely related to their web protection or VPN components).
A few things to consider here:
- Possible False Positive? Remcos (the tool this detection is based on) is a legitimate remote access software that can sometimes get flagged, especially if it's embedded in other programs. Since this is in McAfee's own directory, it might be a misidentification—Windows Defender has been known to flag legit security software files before. I'd check if you've recently updated McAfee or if there's a known issue.
- If It's Real: Backdoors like this could allow remote access to your system, so it's good that Defender caught it. But given the path, it seems unlikely to be actual malware unless something's been tampered with.
Recommended Steps:
- For now, let Defender quarantine or remove it (if you haven't already). Then, restart your PC and see if McAfee still works properly.
- Run a full scan with another tool like Malwarebytes (free version) to double-check for anything else.
- If McAfee breaks after this, you might need to reinstall it. Also, consider submitting the file to Microsoft via the Defender interface or to McAfee support to confirm if it's a false positive.
- If you're concerned, post your full system specs and any recent changes (like new software installs) here—we can dig deeper.
Stay safe, and let us know how it goes!
