Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Weird File In Administrator


  • This topic is locked This topic is locked
4 replies to this topic

#1 EnigmaUser

EnigmaUser

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:07:26 PM

Posted 16 October 2016 - 11:01 PM

Hello, last week after reinstalling windows, a new user account called Administrator popped up.  I scanned my laptop for viruses today with BitDefender, and found a file in a password protected archive that was supposedly there from August 17 (before I even had the account), under AppData.  It looks pretty suspicious, but I scanned it with BitDefender and Virus Total and nothing came up on it.  I have included some screenshots below of the suspicious .XML file.

 

http://prntscr.com/cv8hw7

 

And what happens when I click on it:

 

http://prntscr.com/cv8i18

 

It actually says virus, if that's not a giveaway for something wrong I don't know what it.

Edit: I did some research, and it may be related to BitDefender, but I'm unsure so opinions are still appreciated.

Edit 2: I found this, so it may be nothing actually https://forum.bitdefender.com/index.php?/topic/46526-roaminguser_gensettxml/ 


Edited by EnigmaUser, 16 October 2016 - 11:11 PM.


BC AdBot (Login to Remove)

 


#2 EnigmaUser

EnigmaUser
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:07:26 PM

Posted 17 October 2016 - 06:06 PM

So does this sound like nothing?



#3 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,947 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:26 PM

Posted 21 October 2016 - 09:38 AM

Yes, it is legitimate with BitDefender.

Are there any other concerns you have?
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,947 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:26 PM

Posted 24 October 2016 - 09:22 AM

Greetings,

===================================================

Do You Still Need Help?

It has been 3 days since my last post.
  • Do you still need help with this?
  • If you have not replied within 48 hours I will assume you have abandoned the Topic and it will be closed.

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#5 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,947 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:04:26 PM

Posted 26 October 2016 - 12:37 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users