Hi. I accidentally clicked https:// go.dws .com/PoAkUrTS%3Fdclid%3D%25edclid!&usg=AOvVaw3R8yl1ZadImFWbgk6UQvZR not sure if malicious. I have no idea what it is since I clicked back when I clicked it.

Product & version number: Norton with Lifelock

OS details: Android A51

Screenshot_20251120_014029_Google Play services1080×2400 262 KB

Hello @MattPat
related: https://community.norton.com/t/norton-android-app/451223/43

-------------------------------------------
https://go.dws.com/PoAkUrTS%3Fdclid%3D%25edclid!&usg=AOvVaw3R8yl1ZadImFWbgk6UQvZR

image1920×343 31 KB

--------------------------------------------

https://go.dws.com/PoAkUrTS?dclid=%edclid!

image1920×412 38.8 KB

-----------------------------------------

image419×322 72.3 KB

https://tvtropes.org/
Note: tvtropes.org has ads

https://tvtropes.org/pmwiki/pmwiki.php/Characters/Gundam
https://tvtropes.org/pmwiki/pmwiki.php/Characters/MiraculousLadybug

image344×746 52 KB

image344×746 55.2 KB

What does that mean in English? Was the site dws site malicious or not?

The dws addresses you posted cannot be found.
404 = an error message displayed by a browser indicating that an internet address cannot be found.
502 = there’s a communication problem between two servers, where a server acting as a gateway or proxy receives an invalid response from an upstream server.

image573×319 77.2 KB

image1920×547 76.2 KB

image678×357 20.2 KB

image1224×168 21.5 KB

The link seemed not broken when I touched the link.

Okay…my side reports 404 & 502 for the addresses…at this time.
Maybe, the addresses were to content that has since changed.
Sorry, IDK

website domain may be rated safe…while the website content may not be rated safe.

AI Mode
A website can be rated as “safe” based on its technical security measures (like using HTTPS encryption), while still containing “unsafe” content (such as user-generated content, an internal phishing link, or an unpatched vulnerability) that is not immediately detected by automated scanners.

Technical Security vs. Content Safety

• Website Safety (the rating): This primarily refers to the connection and infrastructure of the site. A “safe” rating usually means the site uses HTTPS (indicated by a padlock icon in your browser), which encrypts the data transmitted between your browser and the server, protecting it from interception by third parties. It also means the site likely has a valid SSL certificate issued by a trusted authority, confirming the site’s identity.
• Content Safety (the material): This refers to the actual material hosted on the site. Content can be malicious (e.g., malware, phishing links) or objectionable (e.g., hate speech, explicit material). The website’s security protocol (HTTPS) does not guarantee the integrity of the information presented on the pages.

Why the Discrepancy Occurs

• Different Scanning Focus: Website safety scanners typically check for network-level vulnerabilities, SSL certificate status, and known malware signatures in specific locations. They often do not perform a deep, real-time analysis of all user-generated content, especially dynamic content or newly posted material.
• User-Generated Content: Many major, otherwise secure, websites (social media platforms, forums, etc.) rely heavily on user-generated content. While these sites have robust security for data transmission, they depend on content moderation teams and AI, which can have delays or false negatives in identifying every single piece of unsafe content.
• Evasion Techniques: Malicious content creators often use techniques like code obfuscation to hide harmful scripts or links from automated scanners, making them difficult to detect until a behavioral analysis identifies the threat.
• Trust vs. Content: A reputable organization may have a technically secure website, but an attacker could exploit a software vulnerability to temporarily inject malicious content (like a hidden script or a fake login page) without the site owner’s immediate knowledge.
• Mixed Content: A website that is mostly secure (HTTPS) may still load some resources (like images or scripts) over an insecure HTTP connection, creating “mixed content” vulnerabilities that can be exploited, even though the main site appears “safe”.

In essence, a website’s security rating indicates that the delivery mechanism is secure, but you must still be vigilant about the nature and source of the specific content you interact with on that site.

AI Mode may make mistakes

I did click back on the link, but sometimes I get other link addresses on the address bar and the files I have had increased multiple times though I cannot find where it is.

Did you clear browser cache?
Clear Cache is like taking out the recycling—the house is still fully functional, just a little tidier.
Clear Data is like moving out of the house and returning the keys—everything you put into it is gone, and you start from scratch when you move back in.

Clearing the app cache on Android is a useful troubleshooting step that can help with various issues related to app and device performance. It is particularly helpful in the following situations:

Troubleshooting App Errors
App crashes or freezes: Corrupted or outdated cache files are a common cause of app instability. Clearing the cache forces the app to load fresh files, which can resolve these issues.
App is unresponsive or misbehaving: If an app is not working as expected (e.g., a specific button doesn’t work, a feature is glitchy), a cache clear can often fix it.
Issues loading new content: Sometimes an app might display outdated information because it’s using old cached data. Clearing the cache ensures the app fetches the most recent data.

Improving Performance & Freeing Up Space
Device slowdowns: While cache is designed to speed things up, an overloaded or excessively large cache can have the opposite effect, slowing down your device’s overall performance.
Low storage space: Apps like Instagram, Spotify, and YouTube can accumulate gigabytes of cached data over time. Clearing the cache is a quick way to reclaim significant storage space without deleting personal data or app settings.

Security and Privacy
Removing sensitive data: Cached data can include elements like browsing history or location data. Periodically clearing the cache can help protect your privacy by removing these temporary traces of your activity.
After major updates: After a significant app or system update, old cached data might not be compatible with the new version, leading to conflicts. Clearing the cache can prevent these post-update problems.

How to Clear an App’s Cache
Open your device’s Settings app.
Tap Apps (or Apps & notifications, depending on your device).
Select the specific app you want to manage. You may need to tap See all apps first.
Tap Storage & cache.
Tap Clear cache.

This action is safe and will not delete your personal information, login details, or saved progress within the app. The app will simply rebuild the temporary files as you use it again.

=====================================

How to clear cache and cookies on Android
https://www.android.com/intl/en_us/articles/clear-cache-and-cookies/

========================================

Did you restart device?
Are you concerned your device has malware?
Lets ask @peterweb to chime in.

=========================================

Malwarebytes Mobile Security free
https://www.malwarebytes.com/mobile

Screenshot_20251117_131217_Google Play Store405×878 82.7 KB

Screenshot_20251117_131909_Malwarebytes405×878 96.6 KB

Screenshot_20251117_132610_Malwarebytes405×878 49.5 KB

Screenshot_20251117_140709_Malwarebytes405×878 81.2 KB

======================================

Mobile Malware Removal Help & Support
https://forums.malwarebytes.com/forum/182-mobile-malware-removal-help-support/

Where are you seeing these files that are multiplying?

bjm_'s advice to install and run the Malwarebytes app would be the first step. Malwarebytes concentrates more on Possibly Unwanted Apps, PUAs, than Norton does.

TV tropes Ad showing
https://forums.malwarebytes.com/topic/331334-tv-tropes-ad-showing/

Hello @MattPat
Please share your progress

OK. I’m waiting for the ticket to go through. Also this link

crwtnyc.org 

Is not shown to be scanned.

Edit: forgot to add this.

You’re waiting for Malwarebytes ticket?

This site can’t be reached
Check if there is a typo in crwtnyc.org

image370×239 71.4 KB

scanned where? scanned by what/who?

image541×330 68.8 KB

Yes.

It’s down? I backed out of it as soon as untested came up. How do you test it then?
How about this since its the full link.

https://www.cwrtnyc.org/android-rcs-archival-work-phone-privacy/&ved=2ahUKEwiQ5ZX2jqORAxU-SjABHdPFNJkQFnoECDIQAQ&usg=AOvVaw0gYcEqZOYW-I-VAziHJjlL

~ posted earlier here:
crwtnyc.org

~ posted later here:
cwrtnyc.org

image542×205 57.1 KB

image542×112 25.5 KB

image400×248 66.1 KB

Hello @MattPat

Sorry. Phone got super wet and has streaks. Trying to fix this. But if the exact link down, was the link malicious?

what is the domain name? Check if there is a typo in crwtnyc.org…crwtnyc or cwrtnyc?

~ posted earlier here:
crwtnyc.org

~ posted later here:
cwrtnyc.org

https://community.norton.com/t/possible-malicious-link/474070/15

======================================

https://www.cwrtnyc.org/

image1287×255 21.5 KB

image542×334 71.3 KB

========================================

https://www.crwtnyc.org

image630×302 62.5 KB