OS: Win7 x64 SP1
I believe I infected my PC with a trojan/MSIL/injector/rootkit earlier, and so far all of the scans and apps I've run have found nothing (TDSSKiller, Malware Bytes, Kaspersky Virus Removal Tool 2015, HitmanPro, Microsoft Security Essentials).
I really find it hard to believe that my system is actually clean since I saw a suspicious popup when I made the mistake of dragging a malware exe from a compressed file on top of a malware exe in a Windows folder, which launched the underlying exe (or did it launch the one I was dragging?)--I was trying to unzip the file and missed my drag-and-drop target.
I quickly closed the popup and disconnected from the internet. I didn't get a chance to register what it was that I was seeing on the popup, but it may have been a fake antivirus type window.
These are the two files that were involved in this screw up:
I've also uploaded them for behavior analysis, available here:
The analysis shows creation of "File.exe" and "Sysstem.exe" in a temp folder, yet a full system search for those file names turned up no results. And when I ran the viruses in a virtual machine, there was no popup, but I did see those file names appear briefly in the running processes.
Any suggestions for next steps? I'd like to get any possible infection removed without putting the system back online for fear that a bunch of malware will be downloaded as soon as the trojan/dropper has a connection. I can provide copies of the virus files, if that's helpful.
P.S. Yes, I realize this was very stupid of me. I'll be 1,000% more careful next time I have to deal with potential virus files at work.