Virus From Usb Stick

Discussion in 'Malware Help (A Specialist Will Reply)' started by Torple, May 1, 2016.

  1. Torple

    Torple Private E-2

    Hi-- I am a teacher and I (stupidly) plugged a student's USB drive into my Win7 64bit machine. When I did, a window popped up saying something about a virus, but it didn't look like it was from my McAfee virus scanner program, it looked like a spoof. I immediately took the USB out and the popup disappeared so I don't remember exactly what the popup said. I didn't click on it or anything.

    Since then I have been receiving mail at my two gmail accounts which is addressed to me that are also FROM me. This started happening only after the USB event, and now I've received about half a dozen or so in the past couple of days. When I look at the headers it looks like my email address is being spoofed, not that my gmail accounts are actually compromised. (I have changed all the passwords on all my accounts and have 2-factor authentication on my gmail accounts.)

    I read your starter's guide and have completed all the steps. I have attached my log files. Thank you in advance for your help!
     

    Attached Files:

    Torple, May 1, 2016
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am not finding any malware in your logs. Is your email the only issue you are having?
     
    TimW, May 2, 2016
    #2
  3. Torple

    Torple Private E-2

    The emails and also the fact that a window (that didn't seem to be coming from my virus scanner) popped up with the message about viruses when I inserted the USB stick. It seemed like a spoof window that was trying to get me to click on something.

    If my machine is clean what could be causing the emails? They only started right after the incident with the USB stick.

    THanks!
     
    Torple, May 2, 2016
    #3
  4. Torple

    Torple Private E-2

    If it helps, one of the emails had a subject line of hi prnt and a .zip attachment, and another subject line was file8 (I will have to look up the others).
     
    Torple, May 2, 2016
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Since you have changed your passwords, clean out your inbox and do this:

    http://imageshack.us/a/img841/7292/thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista,Seven,Eight or 10, right-mouse click it and select Run as Administrator.
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Attach JRT.txt to your next message.

    Please download AdwCleaner by Xplode and save to your Desktop.
    • Double click on AdwCleaner.exe to run the tool.
      Vista/Windows 7/8 and 10 users right-click and select Run As Administrator
    • Click on the Scan button.
    • AdwCleaner will begin...be patient as the scan may take some time to complete.
    • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R#].txt) will open in Notepad for review (where the largest value of # represents the most recent report).
    • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
    • Attach the logfile to your next next reply.
    • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
     
    TimW, May 2, 2016
    #5
  6. Torple

    Torple Private E-2

    Hi--Thank you very much for your help. I have attached the log files.
     

    Attached Files:

    Torple, May 3, 2016
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    What you are receiving are calling Phishing Emails which are trying to bait you into responding and or opening attachments. Many time emails like this can contain password stealing malware. You should verify that no financial account type information has been accessed and you should change passwords for all accounts ( not just our email accounts ) from another clean PC. You may want to send a warning email to friends that were in you contacts list to in order to warn them about fake emails that may look like they came from you.

    I also suggest that you run the below just to take another step of caution.

    Malwarebytes Anti-Rootkit - Running
     
    chaslang, May 3, 2016
    #7
    TimW likes this.

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds