View original (French)

External hard drives and USB flash drives analysis

elo8876 Posted messages 20 Status Member -  
elo8876 Posted messages 20 Status Member -
Hello,

A few days ago, my desktop PC got infected. I realized this because my peripherals (keyboard and mouse) were constantly disconnecting and Malwarebytes was asking me several times a day to update. So I ran a custom scan including rootkits, and it detected 3 viruses, including apparently a Trojan horse (I researched the name). After that, the problem seemed resolved, but this morning, Malwarebytes was disabled and had disappeared from my taskbar. Yesterday, I connected my external hard drive and USB flash drive, so I think I might have infected my PC because I hadn't scanned those removable drives.

I wanted to scan the drives with Malwarebytes, but when I go to custom scan, it doesn't find the removable drives; only C, D, F, G, H, and I appear.
Is it possible to scan removable drives with Malwarebytes?
I discovered USBFIX, but I'm not sure if it is reliable and whether it is compatible with Malwarebytes and Avast.
How can I tell if my PC is still infected?

Thank you for your help!

Elo

Configuration: Windows 7 / Chrome 45.0.2454.93

4 answers

  1.
    Malekal_morte- Posted messages 178136 Registration date   Status Moderator, Security Contributor Last intervention   24 712
     
    Hello,

    Mmm, doesn't seem infected,
    Can you provide the report regarding the rootkits?

    To check:

    Follow the FRST tutorial.
    (And take your time to read it thoroughly to apply correctly - everything is explained there).
    Download and run the FRST scan; this will generate three FRST reports:
    • FRST.txt
    • Shortcut.txt
    • Additionnal.txt


    Send these three reports to the site http://pjjoint.malekal.com as explained, and then provide the three pjjoint links leading to these reports here in a new response so that we can consult them.

    Like the angel you are, you laugh creating a lightness in my chest,
    Your eyes they penetrate me,
    (Your answer's always 'maybe')
    That's when I got up and left.
    0
  2. elo8876 Posted messages 20 Status Member
     
    Hello,

    thank you for your response. By restarting the PC, Malwarebytes detected the connected USB ports, I was able to start the scan but it gets stuck on a file (a video, I think) in my internal hard drive. While I wait to do what you asked me, here are the rootkits:

    Files: 3
    PUP.SMSPay, C:\Users\meryem\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4YSNY2UP\WINRAR_2014_FR_setup[1].exe, In quarantine, [4352bb75157641f5dc29814502ffc53b],

    PUP.SMSPay, C:\Users\meryem\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\WIUH0JI4\WINRAR_2014_FR_setup[1].exe, In quarantine, [464fb0808ffc4ceadc295a6c28d9ba46],

    PUP.Optional.InstallCore, C:\Users\meryem\Downloads\Programs\cdbxp_setup_4.5.4.5306.exe, In quarantine, [dabb240c0b8056e0f4f88239000119e7],
    0
  4. Malekal_morte- Posted messages 178136 Registration date   Status Moderator, Security Contributor Last intervention   24 712
     
    Not infected.
    Scan your drive with Avast!, that will be enough.

    --
    Comme l'ange que tu es, tu ris en créant une légèreté dans ma poitrine,
    Tes yeux me pénètrent,
    (Ta réponse est toujours 'peut-être')
    C'est à ce moment-là que je me suis levé et suis parti.
    0
    1. elo8876 Posted messages 20 Status Member
       
      Oh really? Yet, it's bugging, I was sure it was infected... And the rootkits, they were indeed malicious?
      0
    2. Malekal_morte- Posted messages 178136 Registration date   Status Moderator, Security Contributor Last intervention   24 712
       
      These are not rootkits but PUPs (potentially unwanted programs).
      See: https://www.malekal.com/adwares-pup-protection/

      In your case, these are setups in your internet cache.
      Nothing serious.
      0
    3. elo8876 Posted messages 20 Status Member
       
      Okay, thank you for your help.
      0