I was duped into copy/pasting and running a malicious powershell ****** on my Windows 10 PC using Windows Run. As soon as I did this, Bitdefender had a popup that appeared, which made me realize what I had done. At that point I shut the computer down quickly. Unfortunately I can't remember exactly what the Bitdefender popup message was, so I'm not sure if Bitdefender stopped the ****** or not (or even if it has the capability to do so).
If it is relevant, I had subscribed to a BitDefender Family Pack, but the subscription had expired. However I had just left BitDefender on my computer, so whatever protection that gives me is what I had at the time.
At this point I am nervous about booting back into my normal Windows environment, and the safest option seems to be to boot into another environment using the USB drive to try and analyze what actually happened to my computer. I have already done this with Hirens Boot USB and it works well to give me access to my C drive files, etc.
Can someone help me know where I can go to examine what Bitdefender might have done, and see if it actually stopped the ****** from running - i.e. is there a log somewhere or event viewer to show the timeline?
If I can somehow demonstrate that Bitdefender stopped the ******, I feel like then I can use the computer again without worry.
If not, then I need to go to the next step of trying to figure out exactly what might have been done to my computer through the ******, so any help there would be appreciated as well.
I do have a copy of the malicious ****** if anyone wants to see it.
Thanks for any help!
