Recommended Steps:
Network precaution (optional): While the DNS block prevents immediate communication, you may choose to temporarily disconnect the endpoint from the network if you suspect the situation could escalate.
Perform a full-system scan: Run a full-system scan using our Heimdal Next-Gen Antivirus on the affected endpoint(s), or any antivirus solution of your choice.
Investigate suspicious processes:
If the flagged process is a browser (common in ~70% of cases), the issue may be caused by additional toolbars, browser add-ons, gadgets, or third-party software installed alongside another application.
Remove any unwanted extensions, toolbars, or unknown software. Check the Control Panel> Programs and Features to uninstall unknown or unnecessary programs.
We strongly recommend scanning affected endpoints as soon as possible. If Heimdal Next-Gen Antivirus is not enabled on your devices, please contact your Account Manager for assistance.
For further assistance, please contact us here: https://support.heimdalsecurity.com/hc/en-us/requests/new.
Related articles:
Vectorᴺ Detection (Windows and macOS) – Heimdal Assistance and Support