Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


USB devices compromised by Backdoor Trojan?

  • Please log in to reply
1 reply to this topic

#1 somerfieldnigel


  • Members
  • 1 posts
  • Local time:04:55 AM

Posted 21 December 2008 - 02:42 PM


This my first post here, so I'll start off by apologising if I've put this in the incorrect place. I stumbled across this forum and have found it to be very informative. As a result, I was wondering whether anyone could help me with a query I have.

Recently, my laptop became infected with Spyware Guard 2008 (hereinafter 'SG2008') and this effectively prevented my laptop from connecting to the internet (everytime I clicked on Internet Explorer 7, it suffered an error and closed). Having browsed a few websites on another computer, I was given the impression that SG2008 could be removed by running Malwarebytes Anti-Malware. I transferred Malwarebytes onto my infected laptop using a USB storage device, but not before backing up some files onto another USB storage device and some music files onto my MP3 player.

Running Malwarebytes (3 times) revealed that my laptop had been infected by a backdoor trojan/rootkit infection (Malwarebytes picked up numerous TDSS.??? files). Following the advice given on a number of websites (and on this forum), I changed my internet passwords, reformated my hard disk, and re-installed MS XP. The laptop now appears to be fine, but I was wondering whether my two storage devices and my MP3 player could have been compromised by the infection? Are they safe to use? (I have not used them since).

Thanks in advance for any help - it would be very much appreciated!

BC AdBot (Login to Remove)


#2 garmanma


    Computer Masochist

  • Members
  • 27,809 posts
  • Gender:Male
  • Location:Cleveland, Ohio
  • Local time:12:55 AM

Posted 21 December 2008 - 03:52 PM

Try this

Please insert your flash drive before you begin!

Download Flash_Disinfector.exe by sUBs and save it to your desktop.
  • Double-click Flash_Disinfector.exe to run it and follow any prompts that may appear.
  • The utility may ask you to insert your flash drive and/or other removable drives. Please do so and allow the utility to clean up those drives as well.
  • Wait until it has finished scanning and then exit the program.
  • Reboot your computer when done.
Note: Flash_Disinfector will create a hidden folder named autorun.inf in each partition and every USB drive that is plugged in when you ran it. Don't delete this folder...it will help protect your drives from future infection.

Edited by garmanma, 21 December 2008 - 03:52 PM.

Posted Image
why won't my laptop work?

Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users