Is this a Virus?

[PixelatedB]

Hi, recently my Dad asked me if I could check his USB as it was having some problems. When I plugged it in, I noticed a strange file named "G.T.R.VBS". I formatted the drive anyways. But sure enough it returned. I searched for it and some website (I honestly have never seen this website before) said it was a virus, and if your PC got infected it can be found in C:\users\USER\appdata\local\temp and I saw it there I got scared, and now here am I. is this really a virus?

Thank you for this community.
Nasr A. Bajbair

[AngryBeaver]

4 minutes ago, PixelatedB said:

Hi, recently my Dad asked me if I could check his USB as it was having some problems. When I plugged it in, I noticed a strange file named "G.T.R.VBS". I formatted the drive anyways. But sure enough it returned. I searched for it and some website (I honestly have never seen this website before) said it was a virus, and if your PC got infected it can be found in C:\users\USER\appdata\local\temp and I saw it there I got scared, and now here am I. is this really a virus?

Thank you for this community.
Nasr A. Bajbair

Yes it IS a virus. It is also spread most often by USB. You will need to take some steps to get rid of it. I would try running Malwarebytes and see if that has any luck as that would be the easiest option to remove it.

[GoldenLag]

run malwarebytes, if that failes.

 

backup your stuff and reinstall windows and put a nail through the USB drive and throw it in the recycling (protect and be enviromentally friendly)

[PixelatedB]

Well I haven't really ran Malwarebytes yet, but the I can't seem to find the file it's gone, both in the drive and in my disk. I will run Malwarebytes though, but I'm not sure if I delted it or what?

[LukeSavenije]

11 minutes ago, PixelatedB said:

Well I haven't really ran Malwarebytes yet, but the I can't seem to find the file it's gone, both in the drive and in my disk. I will run Malwarebytes though, but I'm not sure if I delted it or what?

run malwarebytes and a startup scan with your antivirus. better safe then sorry

[Amazonsucks]

On 11/12/2018 at 12:53 PM, PixelatedB said:

Well I haven't really ran Malwarebytes yet, but the I can't seem to find the file it's gone, both in the drive and in my disk. I will run Malwarebytes though, but I'm not sure if I delted it or what?

When you run malwarebytes, make sure you enable rootkit detection in settings.

 

Also make sure that, in addition to the threat scan on any PC you have plugged that USB into, you also scan the USB itself. Id personally trash that USB and get a new one if possible.

[homeap5]

8 hours ago, Amazonsucks said:

When you run malwarebytes, make sure you enable rootkit detection in settings.

 

Also make sure that, in addition to the threat scan on any PC you have plugged that USB into, you also scan the USB itself. Id personally trash that USB and get a new one if possible.

Do you trash your ssd when you have a virus? I can give you my address and you can send me all SSD drives with viruses. Good expensive pendrives too.

[Amazonsucks]

3 hours ago, homeap5 said:

Do you trash your ssd when you have a virus? I can give you my address and you can send me all SSD drives with viruses. Good expensive pendrives too.

If it infected the firmware, yes itd be trash. USB sticks are usually only a few dollars so its simply not worth the risk if its advanced persistent malware.

[homeap5]

7 hours ago, Amazonsucks said:

If it infected the firmware, yes itd be trash. USB sticks are usually only a few dollars so its simply not worth the risk if its advanced persistent malware.

You can be paranoid for your hardware, but suggesting other people that they should destroy their hardware is a little too much.

[JoostinOnline]

1 minute ago, homeap5 said:

You can be paranoid for your hardware, but suggesting other people that they should destroy their hardware is a little too much.

That's barely even paranoia by his standards.

[Amazonsucks]

15 minutes ago, homeap5 said:

You can be paranoid for your hardware, but suggesting other people that they should destroy their hardware is a little too much.

Throwing away a cheap infected USB stick is a big deal now? Wow ok.

12 minutes ago, JoostinOnline said:

That's barely even paranoia by his standards.

Youre not big into cybersecurity i guess.

[homeap5]

13 minutes ago, Amazonsucks said:

Youre not big into cybersecurity i guess.

He is probably bigger than you. I never heard of cybersecurity specialist that recommend destroying any hardware. Cheap or not.

[Amazonsucks]

1 minute ago, homeap5 said:

He is probably bigger than you. I never heard of cybersecurity specialist that recommend destroying any hardware. Cheap or not.

Then look into firmware malware and ring -1 rootkits.

[homeap5]

43 minutes ago, Amazonsucks said:

Then look into firmware malware and ring -1 rootkits.

And ring - in 99,99% cases it's just file virus, not firmware malware.

Anyway - what are we talking about, it's pointless. You have read some informations on internet and trying to be smart.

 

Other quote from internet if you like them:

"So far, this has proven to be a theoretical vulnerability. Real attacks have been demonstrated, so it’s a real vulnerability - but we haven’t seen it exploited by any actual malware in the wild yet."