Benny Posted December 1, 2009 Report Share Posted December 1, 2009 Hello everyone, I come here seeking your advice after I found the malware(?) mentioned in the title lurking on my computer. It was supposedly located in my Open Canvas file...which I went ahead and deleted; this leaves me with two questions: 1) What was this thing? 2) Should I have deleted it? Am I still at risk from it? And if so, what do I do to kill off the threat? (More than two questions, then.). Link to comment Share on other sites More sharing options...
ShadowPuterDude Posted December 1, 2009 Report Share Posted December 1, 2009 Hello and welcome to the EMSI Software support forums. All posters requesting Malware Removal assistance are required to follow all procedures in the thread titled START HERE, if you don't we are just going to send you back to this thread Traduction anglais-français: http://translate.google.com/translate?js=y&prev=_t&hl=en&ie=UTF-8&u=http%3A%2F%2Fsupport.emsisoft.com%2Findex.php%3F%2Fforum-6%2Fannouncement-2-start-here-if-you-dont-we-are-just-going-to-send-you-back-to-this-thread%2F&sl=en&tl=fr&history_state0= Englisch > Deutsch Übersetzung: http://translate.google.com/translate?hl=en&sl=en&tl=de&u=http%3A%2F%2Fsupport.emsisoft.com%2Findex.php%3F%2Fforum-6%2Fannouncement-2-start-here-if-you-dont-we-are-just-going-to-send-you-back-to-this-thread%2F Inglese Traduzione italiana: http://translate.google.com/translate?hl=en&sl=en&tl=it&u=http%3A%2F%2Fsupport.emsisoft.com%2Findex.php%3F%2Fforum-6%2Fannouncement-2-start-here-if-you-dont-we-are-just-going-to-send-you-back-to-this-thread%2F Traducción del Inglés al Español: http://translate.google.com/translate?hl=en&sl=en&tl=es&u=http%3A%2F%2Fsupport.emsisoft.com%2Findex.php%3F%2Fforum-6%2Fannouncement-2-start-here-if-you-dont-we-are-just-going-to-send-you-back-to-this-thread%2F Link to comment Share on other sites More sharing options...
Benny Posted December 1, 2009 Author Report Share Posted December 1, 2009 Thank you, I have read the 'Start here' and found it informative...I hope this issue can be resolved soon. Link to comment Share on other sites More sharing options...
ShadowPuterDude Posted December 1, 2009 Report Share Posted December 1, 2009 Without logs, I can't even begin to tell you if you should have deleted the detection in question. Infection names are pretty useless when it comes to analysis. I need to see what was detected full patch and filename. Link to comment Share on other sites More sharing options...
Benny Posted December 1, 2009 Author Report Share Posted December 1, 2009 Without logs, I can't even begin to tell you if you should have deleted the detection in question. Infection names are pretty useless when it comes to analysis. I need to see what was detected full patch and filename. So far I have the scan report for A2 so I'll post that. I'll post the rest as soon as I have them. Sorry. Link to comment Share on other sites More sharing options...
Benny Posted December 2, 2009 Author Report Share Posted December 2, 2009 Sorry this took so long... Got the needed logs now, the issue mentioned in the title appears to be no more after I deleted it...but I did suddenly get 56 tracking cookies (there were apparently 30 before, according to another anti-malware scan.). Seeing as the malicious-looking object is now gone, does that mean that deleting the infected file got rid of the problem? Link to comment Share on other sites More sharing options...
Lynx Posted December 2, 2009 Report Share Posted December 2, 2009 You did not provide all required log files You should not run Win32Diag, since your a-squared report doesn't meet the conditions described in the instruction You should not attempt to quarantine / delete anything as it's stated in the instruction Cookies are harmless and they are never representing danger and threats Those should be deleted by preliminary running CCleaner before the Deep Scan by a-squared Attach HiJackFree & ISeeYouXP log files as per instruction My regards Link to comment Share on other sites More sharing options...
Benny Posted December 2, 2009 Author Report Share Posted December 2, 2009 Again, sorry for the delay...I couldn't get the appropriate logs because I had to go to bed Anyway, here they are...tell me if I did anything wrong, because I seem to have a knack for doing that. Link to comment Share on other sites More sharing options...
ShadowPuterDude Posted December 3, 2009 Report Share Posted December 3, 2009 Your logs show no malware. The opencanvas.exe detection appears to be a False Positive. Link to comment Share on other sites More sharing options...
Benny Posted December 3, 2009 Author Report Share Posted December 3, 2009 Your logs show no malware. The opencanvas.exe detection appears to be a False Positive. Thank you so much, I've been so nervous about this My sister has a question, I was wondering if you could answer it? She wants to know if (since we are in a network) she is in any danger from getting malware that I get? And also, did it do any harm at all from deleting opencanvas? Link to comment Share on other sites More sharing options...
ShadowPuterDude Posted December 3, 2009 Report Share Posted December 3, 2009 There is always the possibility for an infected computer, that is connected to a network, infecting other computers on the network. No, there was no harm done in deleting opencanvas. Link to comment Share on other sites More sharing options...
Recommended Posts