Powershell malicious requests
Bitdefender notification isn't stopped as soon as i boot my pc it starts popping up, did all kinds of scans but nothing was found, altho the first time i install it , it found multiple threats and managed to delete them,
how should i approach this ?
Comments
-
Kindly perform the following steps and see if they help you in any way:
1) Open the Run command (press the 'Windows + R' key on your keyboard) and execute the following commands one by one:
temp - delete all the files in the folder
%temp% - delete all the files in the folder
prefetch - delete all the files in the folder
2) Run Disk Cleanup using this guide: https://support.microsoft.com/en-us/windows/disk-cleanup-in-windows-8a96ff42-5751-39ad-23d6-434b4d5b9a68
3) Reset your web browsers:
Google Chrome: https://support.google.com/chrome/answer/3296214?hl=en
Mozilla Firefox: https://support.mozilla.org/en-US/kb/refresh-firefox-reset-add-ons-and-settings
Microsoft Edge: https://malwaretips.com/blogs/reset-microsoft-edge/
Opera: https://browsersolution.com/reset-opera-browser
Vivaldi: https://help.vivaldi.com/desktop/install-update/full-reset-of-vivaldi/
Brave: https://support.brave.com/hc/en-us/articles/360017903152-How-do-I-reset-Brave-settings-to-default-
4) Reset the Windows host file to default. You can find instructions here: https://support.microsoft.com/en-us/topic/how-to-reset-the-hosts-file-back-to-the-default-c2a43f9d-e176-c6f3-e4ef-3500277a6dae
5) Reset Your Network:
Open the Command Prompt (press the 'Windows + S' key on your keyboard), type cmd, right-click Command Prompt, and select 'Run as administrator'. Then, run the following commands one by one:
netsh winsock reset
netsh int ip reset
ipconfig /release
ipconfig /renew
ipconfig /flushdnsAdditionally, the detection reported by Bitdefender is accurate, as the file in question is indeed malicious, as confirmed by the VirusTotal link provided below.
https://www.virustotal.com/gui/file/a01853cdf594caeb7aad5a284c2f2c271b54d2819441389ebfd29ae5a663e183?nocache=1
Let us know if your issue gets resolved.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
2 -
Jalapeno! 😄
Premium Security & Bitdefender Endpoint Security Tools user
0 -
I guess the Bitdefender malware researcher who created that detection was having a great time, savouring something salty, sour, and tangy — the jalapeno pickle 😂
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
0 -
i have did those steps and problem still exists, im using brave but i also have other browsers installed and i did step3 for all of them, bitdefender still blocking powershell every 30~40min
0 -
Set PowerShell as an exclusion in your Bitdefender product settings.
SETTING EXCLUSION
1) Temporarily disable Bitdefender Protection:
2) Set exclusions in Bitdefender Antivirus:
3) Set exclusions in Bitdefender Advanced Threat Defense:
4) Allow an app through Bitdefender Firewall:
5) Re-enable real-time protection in Bitdefender
Set the folder C:\Windows\System32\WindowsPowerShell\v1.0 as an exclusion in Bitdefender Antivirus, and add the files powershell.exe and powershell_ise.exe from the same folder to the exclusions in Bitdefender Advanced Threat Defense.
If the issue persists, kindly contact Bitdefender support by visiting
Select, How to's & Troubleshooting Bitdefender products→Troubleshooting→I don't know→Contact Support→ You will get the option of chat, call or email.
To get immediate update, make use of the chat option. Once the AI chatbot recommends a series of solutions, you can type in the chat, 'transfer to an agent,' and you will be transferred to a Bitdefender support agent. Bitdefender support may require logs and will assist you in generating them.
Also, ensure you do not have any ad-blocker or privacy-blocker extensions enabled, as they might prevent the chat window from appearing.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
1
