Hey all,
So here's the situation. At work I had a colleague forward an email asking if it was legitimate. Upon quickly determining it was phishing I asked if she had opened the attached file, and she had.
After installing Bitdefender on her machine it did turn out an infection (Trojan.Agent.DELU) and there were some shady files in the startup that started a windows process marked as vulnerability.
And here comes the topic question: Can you retroactively find out what had been done to your PC after threat detection?
Without a priori installing monitoring and logging software, can you find out what had been done to your system? And does the Trojan name giveaway somehow the possible vulnerabilities that were exploited or all of them are backdoors into everything?