wscript.exe being constantly attacked/blocked

Morgorth

Hi,

Bitdefender is constantly blocking threats on wscript.exe as below.

It does this about every 10 minutes but never really fixes it.

Am I infected or is it a bit def issue ?

I tried deleting the file but it comes back

Here's the detail:

Command line parameters: "C:\Windows\System32\wscript.exe" "C:\Users\Morgorth\AppData\Local\Temp\xILpQyWZSadYJkdNp.js"Detection ID: ML:SuspiciousBehavior.B75E43AB21B81015

thanks !

Flexx

https://community.bitdefender.com/en/discussion/100819/wscript-exe-being-constantly-attacked-blocked

The code "ML:SuspiciousBehavior.B75E43AB21B81015" is a detection signature from Bitdefender, indicating that the antivirus software has identified suspicious behavior on your system.

If you believe that a website or file has been incorrectly blocked by Bitdefender, you can share the details with our malware researchers by filling out the form at the link provided below:

https://www.bitdefender.com/consumer/support/answer/29358/

If the website or file is indeed incorrectly blocked, the detection will be removed within a maximum of 72 hours. However, if the detection still persists after 72 hours, please consider the website or file as malicious, as determined by our malware researchers, and the detection will remain.

To temporarily use the file until you receive an update from the malware research team, you can set an exclusion in your Bitdefender product. Follow the steps below to set the exclusion in your Bitdefender product.

1) Temporarily disable Bitdefender Protection: https://www.bitdefender.com/consumer/support/answer/28557/

2) Set exclusions in Bitdefender Antivirus: https://www.bitdefender.com/consumer/support/answer/13427/

3) Set exclusions in Bitdefender Advanced Threat Defense: https://www.bitdefender.com/consumer/support/answer/2393/

4) Re-enable real-time protection in Bitdefender.

Regards