Bkav Pro Reddit
Faith Lienhard
So I wasn't sure if the file I downloaded was a virus or not but after extracting it from zip, I scanned it with Malwarebytes, didn't show as anything, opened it, nothing happened and then after deleting it I got the following pop up but 4 times from Malwarebytes , only attached one but the rest are the same just different names
Then when I go to temp folder I see 2 more as pictured. I did microsoft scan thing in safe mode and that found nothing
When I use the online virus tool with it, it flags on these ones;
AhnLab-V3Malware/Win.ExploitX-gen.C5592095
I should add the original virus file was an exe with multiple folders made to look like a game but the exe looked odd, after deleting it thats when these files popped up in temp folder.
Kaspersky virus scan has been ran and didn't pick anything up, the two exes I attached in the rar are still in my temp folder, should I just delete them?
Am I safe then? The two leftover files that didn't get automatically detected/deleted, I just manually scanned with Malwarebytes and it picked them up and quarantined them both.
Those websites that have the 'download button' then usually have the real download button somewhere else on the page, I've clicked on the spam one. How dangerous was the file I opened? I'm just considering doing a full reset.
Adwcleaner just picked up on a bunch of totalav stuff etc.
I downloaded sophos and it picked up the same folder I was suspicious of as it was created when I opened the virus
Although scanning it with MWB shows nothing, I've also scanned it with Bit and it shows as clean too.
I done the wbxtrace.dll into virustotal and noticed it has relations with the zip file I think [can't remember the name but it seems similar]
What should I do now? just delete the folder or?
Thank you, it didn't find anything of concern, I've put the mci32 folder into a rar and used file shredder on the mci32 folder in roaming.
So the mci32 folder whitelisted itself in roaming when I opened the original virus zip file and tried running the exe? ?
I dislike posting all my information.. so that probably doesn't help ?
That DOES NOT mean the computer is infected. Once the scan has been completed it uploads the log to their Cloud service which then uses Artificial Intelligence to determine if in fact any of the traces are an infection or not.
It was one of my first scans I done, it didn't pick up on the mci32 folder.
The zip file that contained the virus that I ran did create the mci32 folder in roaming as its linked on virustotal.
I'm just going to do a new fresh install today, I've already moved txtfiles and pictures that I need to keep
Just to be extra safe ?
So turns out the virus was active, whats the chances it stored itself on another drive after windows reinstall? I disconnected my spare SSD and Harddrive
It gained access to my Reddit 2days ago from recent activity and just about 30mins ago reddit locked my account due to suspicious activity.. just now 5mins ago I noticed it joined r/cucold and r/legalteens and a whole other bunch...
Yeah I don't wanna put those databasefiles into virustotal - I found out its normal to have them but when I seen that the WFAFrance virus writes them I assumed they were part of it.
If my logs look okay, I'll assume that my PC is clean unless WFAFrance.exe is known to somehow hide lol.