Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't tell If I have been infected by malware/virus


  • Please log in to reply
3 replies to this topic

#1 JoeAllenPa

JoeAllenPa

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 02 May 2018 - 06:19 PM

I was stupid enough to open a word document and I clicked "Enable Editing." After clicking, nothing happened on my machine. I finally figured out I was tricked, so I ran anti virus/malware (list below) scanners, but they picked up nothing.

How can I tell if I am infected and what should I do next?

AVG Antivirus business editions
Malwarebytes
Hitman pro
Windows defender

This site lists the exact document that I received, but they don't talk about what to do.
https://thayer2design.com/new-virus-alert/

I am using Office 365 and it is updated.

OS Version: Microsoft Windows 10 Pro, 64 bit
Processor: Intel® Core™ i7-7700 CPU @ 3.60GHz, Intel64 Family 6 Model 158 Stepping 9
Processor Count: 8
RAM: 16285 Mb
Graphics Card: NVIDIA GeForce GTX 1050 Ti, -1 Mb
Hard Drives: C: 915 GB (758 GB Free);
Motherboard: Dell Inc., 0VHXCD
Antivirus: Windows Defender, Disabled



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:10 AM

Posted 05 May 2018 - 09:37 AM

Are there any symptoms after running this?

zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
And finally I'd like us to scan your machine with ESET OnlineScan:
  • It is recommended to turn off your antivirus program. Click on the E5rfZI9.png button to see which antivirus is currently enabled:
c4VVzVO.png
  • Turn off your antivirus program. See here how to do this.
  • Check the option beside: Enable detection of potentially unwanted applications.
  • Now click on Advanced Settings and make sure that the option Clean threats automatically is NOT checked, and select the following:
Enable detection of potentially unsafe applications
Enable detection of suspicious applications
Scan archives
Enable Anti-Stealth Technology
  • Click on the Change button and select only Operating memory, Autostart locations and drive C:\ to be scanned.
yKulboi.jpg
  • Push the dtoGjAL.png button.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
8L8IBHJ.png
  • When the scan completes a list of found threats will open automatically (if any malicious files are found).
imxEgHt.png
  • Push thecRhRYZ8.png button and save the file to your desktop using a unique name, such as ESETScan.txt. Include the contents of this report in your next reply.
  • Push the 9IjfdXq.png button.
  • Check the box beside RHzfZB1.png to uninstall the application when closed.
  • Push Vc3btaC.png and the close the application clicking the X in upper right corner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 JoeAllenPa

JoeAllenPa
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 07 May 2018 - 01:04 PM

Thank you for your reply. Here are the results of the scans.

​

​

# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build:    04-27-2018
# Database: 2018-05-07.1
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    05-07-2018
# Duration: 00:00:08
# OS:       Windows 10 Pro
# Scanned:  40830
# Detected: 3

***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Legacy             C:\Users\JoeAllenPa\AppData\Roaming\download Manager
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
PUP.Optional.Legacy             Ask
PUP.Optional.Legacy             AOL
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
 
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
​
​
​
​ESET online results

C:\Users\JoeAllenPa\Documents\ADMIN\PDFXVwer.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application 
​



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:10 AM

Posted 07 May 2018 - 01:18 PM

looks like a couple items. not that bad though.. you can rerun both apps .. remove what they found and see how it is.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users