Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Latest News:    Device Can Generate Master Keys From Valid or Expired Hotel Keys

Featured Deal: Pay What You Want Complete Cyber Security Certification Bundle Deal

Photo

USB devices compromised by Backdoor Trojan?

Started by somerfieldnigel , Dec 21 2008 02:42 PM

  • Please log in to reply
1 reply to this topic

#1 somerfieldnigel

somerfieldnigel

  • Members
  • 1 posts
  • OFFLINE
    •  
  • Local time:07:12 PM

Posted 21 December 2008 - 02:42 PM

Hello,

This my first post here, so I'll start off by apologising if I've put this in the incorrect place. I stumbled across this forum and have found it to be very informative. As a result, I was wondering whether anyone could help me with a query I have.

Recently, my laptop became infected with Spyware Guard 2008 (hereinafter 'SG2008') and this effectively prevented my laptop from connecting to the internet (everytime I clicked on Internet Explorer 7, it suffered an error and closed). Having browsed a few websites on another computer, I was given the impression that SG2008 could be removed by running Malwarebytes Anti-Malware. I transferred Malwarebytes onto my infected laptop using a USB storage device, but not before backing up some files onto another USB storage device and some music files onto my MP3 player.

Running Malwarebytes (3 times) revealed that my laptop had been infected by a backdoor trojan/rootkit infection (Malwarebytes picked up numerous TDSS.??? files). Following the advice given on a number of websites (and on this forum), I changed my internet passwords, reformated my hard disk, and re-installed MS XP. The laptop now appears to be fine, but I was wondering whether my two storage devices and my MP3 player could have been compromised by the infection? Are they safe to use? (I have not used them since).

Thanks in advance for any help - it would be very much appreciated!

BC AdBot (Login to Remove)

 

#2 garmanma

garmanma

    Computer Masochist


  • Staff Emeritus
  • 27,809 posts
  • OFFLINE
    •  
  • Location:Cleveland, Ohio
  • Local time:03:12 PM

Posted 21 December 2008 - 03:52 PM

Try this
------------------------


Please insert your flash drive before you begin!

Download Flash_Disinfector.exe by sUBs and save it to your desktop.
  • Double-click Flash_Disinfector.exe to run it and follow any prompts that may appear.
  • The utility may ask you to insert your flash drive and/or other removable drives. Please do so and allow the utility to clean up those drives as well.
  • Wait until it has finished scanning and then exit the program.
  • Reboot your computer when done.
Note: Flash_Disinfector will create a hidden folder named autorun.inf in each partition and every USB drive that is plugged in when you ran it. Don't delete this folder...it will help protect your drives from future infection.

Edited by garmanma, 21 December 2008 - 03:52 PM.

Mark
Posted Image
why won't my laptop work?

Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter
Back to Am I infected? What do I do?


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Security
  3. Am I infected? What do I do?
  4. Privacy Policy
  5. Rules ·