Two infected webpages detected and blocked - What steps to take?
Hi all,
On February 24 and March 4, on two different webpages, Bitdefender blocked infected webpages. In both cases, I accessed benign websites. On February 24 accessed a government website, and on March 4 I accessed a benign website that I have used for a very long time prior to having Bitdefender and prior to having the computer on which I run Bitdefender.
The February 24 threat name is: GT:JS.Injected.1.F5F748D2
The March 4 threat name is: JS:Trojan.Cryxos.13592
I wonder whether I have to take any action since Bitdefender says it has blocked connection. Moreover, nothing appears in my download file for both these dates.
I apologize if this is a simple question. I am very new to computer defense and Bitdefender and want to make sure I protect my computer.
Thank you dearly in advance!
Best Answer
-
Bitdefender has already protected you from the malicious JavaScript embedded in the respective website.
Additionally, follow the below steps
1) Restart your PC in safe mode. You can follow this guide: https://support.microsoft.com/en-us/windows/start-your-pc-in-safe-mode-in-windows-92c27cff-db89-8644-1ce4-b3e5e56fe234
2) Open the Run command and execute the following commands one by one:
temp – delete all the files in the folder.
%temp% – delete all the files in the folder.
prefetch – delete all the files in the folder.
3) Restart your PC in normal mode by unselecting the option to run the system in Safe Mode, then click 'Apply.'
4) Reset your web browsers:
Google Chrome: https://support.google.com/chrome/answer/3296214?hl=en
Mozilla Firefox: https://support.mozilla.org/en-US/kb/refresh-firefox-reset-add-ons-and-settings
Microsoft Edge: https://malwaretips.com/blogs/reset-microsoft-edge/
Opera: https://browsersolution.com/reset-opera-browser
Vivaldi: https://help.vivaldi.com/desktop/install-update/full-reset-of-vivaldi/
Brave: https://support.brave.com/hc/en-us/articles/360017903152-How-do-I-reset-Brave-settings-to-default-
5) Reset the Windows host file to default. You can find instructions here: https://support.microsoft.com/en-us/topic/how-to-reset-the-hosts-file-back-to-the-default-c2a43f9d-e176-c6f3-e4ef-3500277a6dae
6) Run Disk Cleanup using this guide: https://support.microsoft.com/en-us/windows/disk-cleanup-in-windows-8a96ff42-5751-39ad-23d6-434b4d5b9a68
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
1
Answers
-
Thank you very much for your help Flexx! I took all the above steps and feel much more secure. You also improved my peace of mind. I wonder whether you can help me on one last step.
In step 5, I reset the hosts file. The instructions instructed me to change the host file that existed to "hosts.old." Now that I have a new hosts file, can I delete the "host.old" file, should I keep it, or is it inconsequential?
Thank you in advance, and take good care :)
0 -
Yes, you can delete the old hosts file, but make sure you rename the new host file as hosts only.
If the name does not gets changed or the old hosts file does not gets deleted in the first place, boot your system in safe mode and do the necessary steps.
Restart your PC in safe mode. You can follow this guide: https://support.microsoft.com/en-us/windows/start-your-pc-in-safe-mode-in-windows-92c27cff-db89-8644-1ce4-b3e5e56fe234
When you are able to successfully do the required changes in the hosts file, restart your PC in normal mode by unselecting the option to run the system in Safe Mode, then click 'Apply.'
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
0