A couple of questions about my first threat found

Ihateviruses · 2022-01-17T20:38:53+00:00

There was an error rendering this rich post.

Ihateviruses

"Threat successfully quarantined

Today at 1:47 PM

Feature: Antivirus

An infected file attempted to run on your device.

Threat name: PDF.Spam.Heur.3

Path: /Users/myname/Library/Caches/Google/Chrome/Default/Cache/Cache Data/

11e094729845ee22_0

We quarantined the file to prevent malicious commands from being executed on your device."

I know it cannot cause damage while quarantined, but I would rather it not be on my computer at all. If I clear my Google Chrome cache, then will the file be able to infect my computer? Or if it stays in quarantine will it just be there indefinitely?
Could the file have done damage before the antivirus scanner caught it?
Am I okay to turn my computer off and on?

Find more posts tagged with

antivirus

Mac

quarantined

Google Chrome

Accepted answers

Flexx

https://community.bitdefender.com/en/discussion/90053/a-couple-of-questions-about-my-first-threat-found

Here is the thing, as per detection, the file seems to be heuristic detection/ machine learning based and not a signature based dete tion. Additionally it seems to be a PDF file of phishing or spam type.

Since bitdefender has quarantined the file you are currently safe. The thing you need to understand here is that whenever any antivirus quranties a file it changes its extension before that which makes the execution of the file to be useless thus the qurantine file will remain on your system but it will be harmless.n

In brief, if there is a malicious file like malware.exe, and when antimalware software qurantines it, they change the extension of file to some random, in this case it can be malware.fphs or malware.kjul, that depends on vendor to vendor, which makes the execution of file impossible thus it cannot harm the system. Now when you restore the file from qurantine, the antimalware software changes the extension of the file to its orignal.

All in all, you are currently safe since bitdefender has dealt with the threat and your threat is also a pdf based file which seems mostly a phishing or spam and not an executable malware file.

Regards

All comments

Alexandru_BD

Hello @Ihateviruses and welcome to the Community!

Based on your description of the situation encountered, I would recommend contacting the Technical Support Teams, as more information might be required to troubleshoot this. The engineers may request some logs from you.

You can get in touch with our engineers by choosing one of the contact methods available here:

https://www.bitdefender.com/consumer/support/

Stay safe.

Warren666

Hello. My pc was hacked so I bought a Mac and immediately installed BD Total Security. It's been over two months since I installed BD and there hasn't been ONE single threat found. I know PC's are more vulnerable but is this lack of threats normal on a Mac? Or is there something else going on?

Also, Dropbox is uploading what I suspect to be suspicious files with misspellings (?):

photosgraph.kgdb / photosgraph-tmp.kgdb-wal / construction-photosgraph.kgdb (also the same file named with .kgdb-shm extension) / PGCurationCache.sqlite.sqlite (double sqlite) / etc.

When I Googled the extensions there were no matches, which scares me. Please tell me I'm being paranoid and this is all normal. Thanks for any answers you can provide!

Flexx

https://community.bitdefender.com/en/discussion/90053/a-couple-of-questions-about-my-first-threat-found

All in all, you are currently safe since bitdefender has dealt with the threat and your threat is also a pdf based file which seems mostly a phishing or spam and not an executable malware file.

Regards