Opened a pdf phishing email. Am I screwed or fine?
I opened a phishing email that contained a pdf saying my apple account was compromised and I had to reset my password. After opening the pdf, no matter where I would click it would redirect me to google.
This website showcases the scam in full extent ( https://www.hoax-slayer.net/fake-apple-invoice-pdf... ), so after you would click on any of the blue links it was supposed to take you to a fake apple website where you would put your info and they would steal it. In my case, it only redirected me to google. Nowhere else. It didn't redirect me to a fake apple website.
So, am I fine or did I get a keylogger or something ? I scanned my pc with malwarebytes, 20 detections were found (here is what it found https://imgur.com/a/wuGtcIL ) but I quarantined them all and on the 2nd scan nothing was found, same with eset.
Thank you all, sorry for the long post
- Anonymous10 months ago
Yes, other people have obviously reported it as a scam, and the Internet authorities have taken the fake website down. In the place of the original scam website, they installed a warning PDF to tell you it's a scam. You should be fine, you're being protected through the work of others who came before you.
- Anonymous10 months ago
First of all it's not wise to open up e-mails from people who you don't know. Second of all perhaps if you know someone their account might be compromised, so this is something else to consider. Third of all I would need to see inside of your account to know, for sure if something is wrong based on what you did. You can show me what you think I would want to see, but you don't know much about technology anyway, so anything you show me would be irrelevant.
"After opening the pdf, no matter where I would click it would redirect me to
google." <--- This is not normal. I think your computer is infected with something.
Just because something gets quarantined doesn't mean it's gone from your computer. If your computer is still doing the same thing then I recommend wiping everything off of your hard drive, or solid state drive, or replacing your hard drive, or solid state drive with a new one.
Can I see the e-mail you received?
I want to see it exactly how you first saw it. There is something that I would like to look at, but since you don't know what I know then you won't know what I want to look at.
It's hard to give you a good answer without me being able to see what you got.
Sometimes people send me e-mails, but I am nowhere near interested enough to open up my e-mails, so I just either block the sender, or delete the e-mails.
I don't recognize a lot of the e-mails that I receive, so the e-mails I don't recognize will either be blocked, or deleted.
- AnonymousLv 610 months ago
Phishing emails generally only want to phish login info, though it's possible that it could contain malicious software. The things Malwarebytes found are Potentially Unwanted Programs (Pups) Pups are generally adware. Adware is a type of software that injects ads into your computer so it generates money to the software developer. Adware/pups are user installed by not unchecking or declining the installation of the software when installing other software that you intended to install. It is not something caused by the email. Since those were found, I'd recommend using Malwarebytes other scanner called AdwCleaner. It may find other traces that Malwarebytes didn't.
Now, about the possibility of malicious software from the email. While it's possible you could have been infected, it's a good sign Malwarebytes didn't find any actual malware. You could check your computer over in places malware can hide. This includes the Task Scheduler and Registry. You can also check the network tab in Resource Monitor which you can find in the Task Manager to see if any weird connections are being made by unknown processes. If you are not sure how to do these things, you could then take it to a computer shop if you think you are infected. Personally I would think that you are ok. Simply learn not to open emails that you may be suspicious of, and definitely do not open attachments until it's scanned by an AV or http://virustotal.com or http://hybrid-analysis.com
- The DevilLv 710 months ago
Shight, I'm not clicking on that link, especially after it effed up your computer. It's funny how stupid you think other people are, after you said what trouble it caused you.
- What do you think of the answers? You can sign in to give your opinion on the answer.
- EnigmaLv 610 months ago
it might have installed ransomware
- PearlLv 710 months ago
maybe you should run your antivirus
- TheoLv 410 months ago
For future reference, don't open files from emails such as this. Don't click any of the links.
- daniel gLv 710 months ago
Unless you followed through with any "ANY" personal information, no, you are OK, just a matter now to locate the source of the nuisance and delete it.
Some of these are coded so well, you need a removal tool from a security website.
Clicking on links in the PDF or giving ANY personal info, you have been compromised completely, YOU are the Phish that took the bait.
Lesson learned,,Apple as with many account hosters DO NOT SEND SUCH EMAILS and the original email URL can be checked for validity before yo open the email.
Might look legit just odd like Aipple/XXX/.com << not a genuine Apple site.
- RickLv 710 months ago
take your computer to a computer doctor ............................