What Kind of Virus is Infecting my USB and How Can I Clean It?

  • Thread starter Thread starter ajri02
  • Start date Start date
  • Tags Tags
    Virus
Click For Summary

Discussion Overview

The discussion revolves around identifying and cleaning a virus infecting a USB drive and potentially affecting a computer and a web host. Participants share experiences, suggest tools, and propose methods for virus removal, focusing on both theoretical and practical approaches.

Discussion Character

  • Exploratory
  • Technical explanation
  • Debate/contested
  • Experimental/applied

Main Points Raised

  • One participant reports that their USB is infected with an undetectable virus, which causes malicious code to be inserted into hosted files.
  • Another suggests using different antivirus software, such as Avast or AVG, to scan the USB drive.
  • A participant emphasizes the importance of using a good antivirus to clean the USB drive and mentions that it should work properly afterward.
  • One reply questions the method of formatting the USB drive using MS-DOS, suggesting that if the virus is a rootkit, this method may not be effective.
  • A detailed method is proposed involving the use of a Linux live CD to boot from a non-infected system, scan the USB, and perform a full format to ensure the virus is removed.
  • Another participant reiterates the need to format the USB on a non-infected computer and warns against opening the USB on that computer to prevent infection.
  • One participant mentions uploading virus files to VirusTotal for identification and suggests researching the names for removal instructions.
  • A later reply expresses uncertainty about the specific type of virus, likening it to Conficker but noting that it cannot be cleaned by Symantec.

Areas of Agreement / Disagreement

Participants express various methods and tools for cleaning the USB and computer, but there is no consensus on the specific type of virus or the most effective cleaning method. Multiple competing views on how to address the infection remain unresolved.

Contextual Notes

Some participants highlight limitations in the effectiveness of certain antivirus tools against rootkits and the potential for incomplete virus removal, which may leave residual issues.

ajri02
Messages
4
Reaction score
0
I got an USB and that infected virus that I never seen!
I plug it in mycomputer and it's infected. Bitdefender in my machine can't detect this virus.
When I upload files to host from the infected machine, the host is hacked. It is inserted dangerous code that link to a virus website from chinese, to the index.html, index.php files.
When I Format Usb (from MS DOS), the Usb is not cleaned.
I really don't know what kind of it? And which tools to clean it from my computer, my usb and my host?
Thank for your help!
 
Computer science news on Phys.org
Hello friends
There are many virus infected your USB drive. You should be try to good antivirus to clean USB drive. You will be downloading the some good Antivirus and remove virus. I think USB drive working properly...
 
Where did you find MS-DOS ? Unless you are running Windows 98, I doubt that you formatted your USB from MS-DOS. The command line interface that ships with later versions of Windows depends on the windows kernel and several subsystems including drivers being loaded into memory, and if your virus is a rootkit that is designed to work with windows kernel-mode and user-mode processes, formatting from this interface will not be effective. Use a Linux boot disk (also known as a Linux live CD) and boot from this disk on any PC (if possible, do not boot from the infected PC). If you boot from your PC, use a cold boot (do not boot the CD by restarting the computer, boot it from a computer that has been shut down and turned off). You may have to go into your PC's BIOS settings to tell it to try to boot from CD/DVD before the main disk drive. After Linux has loaded, plug in your USB drive, run a virus scanner on it, and then copy any files you want to save to the main disk, then do a full format of the USB drive. You should then be able to copy over the files you need. Do not copy any files you do not recognize, and try not to copy executables.
Unfortunately, the best way to clean your machine of a rootkit type infection quickly is to use Linux to copy files that you wish to save (no executables!) to an external disk, and then do a system restore, which will wipe all data from your drive, reformat your drive, and install a factory image of the operating system and programs that shipped with your computer. Many PCs come with a hidden partition built in that will restore for you (Dell, HP, Compaq, Gateway, Acer, toshiba, etc.).
While there are many effective virus scanners out there that scan for rootkits, your rootkit may not be detected by their scanner, and worse, you may remove some viruses (rarely is a virus ever alone) and leave the main culprit or nonsense like a damaged driver or system file that causes your system to have silly errors afterwards. System restores are also a great way to get back some speed from a bloated registry, unnecessary drivers and little programs, and sprawling filesystem.
 
Last edited:
I got an USB and that infected virus that I never seen!
I plug it in mycomputer and it's infected. Bitdefender in my machine can't detect this virus.
Update Bitdefender, and scan your computer after that.

When I upload files to host from the infected machine, the host is hacked. It is inserted dangerous code that link to a virus website from chinese, to the index.html, index.php files.
I think you can use another (not infected) computer to delete the dangerous code.

When I Format Usb (from MS DOS), the Usb is not cleaned.
It`s because you clean it while your computer is infected, so everytime you clean it, the virus copies the files again to the USB.
Simply take the USB to another (not infected) computer and format it.
Please note that if you open the USB flash at the another computer, it will also get infected; so be totally sure that you format without opening the USB flash. (you can open it after you are sure it`s clean)

I really don't know what kind of it? And which tools to clean it from my computer, my usb and my host?
upload any of the virus files to virustotal.com, you`ll get it`s name(s), google the name(s) and you`ll probably find information on how to totally remove it from your computer.
 
Last edited:
slider142 said:
Where did you find MS-DOS ? Unless you are running Windows 98, I doubt that you formatted your USB from MS-DOS. The command line interface that ships with later versions of Windows depends on the windows kernel and several subsystems including drivers being loaded into memory, and if your virus is a rootkit that is designed to work with windows kernel-mode and user-mode processes, formatting from this interface will not be effective. Use a http://www.vangthegioi.com.vn (also known as a Linux live CD) and boot from this disk on any PC (if possible, do not boot from the infected PC). If you boot from your PC, use a cold boot (do not boot the CD by restarting the computer, boot it from a computer that has been shut down and turned off). You may have to go into your PC's BIOS settings to tell it to try to boot from CD/DVD before the main disk drive. After Linux has loaded, plug in your USB drive, run a virus scanner on it, and then copy any files you want to save to the main disk, then do a full format of the USB drive. You should then be able to copy over the files you need. Do not copy any files you do not recognize, and try not to copy executables.
Unfortunately, the best way to clean your machine of a rootkit type infection quickly is to use Linux to copy files that you wish to save (no executables!) to an external disk, and then do a system restore, which will wipe all data from your drive, reformat your drive, and install a factory image of the operating system and programs that shipped with your computer. Many PCs come with a hidden partition built in that will restore for you (Dell, HP, Compaq, Gateway, Acer, toshiba, etc.).
While there are many effective virus scanners out there that scan for rootkits, your rootkit may not be detected by their scanner, and worse, you may remove some viruses (rarely is a virus ever alone) and leave the main culprit or nonsense like a damaged driver or system file that causes your system to have silly errors afterwards. System restores are also a great way to get back some speed from a bloated registry, unnecessary drivers and little programs, and sprawling filesystem.

Dear Friends,
thank for your help, yes I use Linux to clean the USB. And with host, I change the ftp password.
But I really don't know what kind of this virus. It looks like Conficker http://en.wikipedia.org/wiki/Conficker But I can't clean by Symantec
 
Last edited by a moderator:

Similar threads

How can I reformat a USB thumb drive that is not recognized by my Windows 10 PC?
  • · Replies 12 ·
Replies
12
Views
3K
What is the NWJS virus and how can I protect my computer from it?
  • · Replies 17 ·
Replies
17
Views
6K
Virus mutation by artificially guided selection
  • · Replies 15 ·
Replies
15
Views
3K
How can I clone a USB drive to a VFD file for use in Windows?
  • · Replies 14 ·
Replies
14
Views
4K
Help! My PC is Infected with Conficker Virus - How Can I Remove It for Free?”
  • · Replies 1 ·
Replies
1
Views
3K
My laptop is infected, what should I do?
  • · Replies 5 ·
Replies
5
Views
2K
What Can You Discover from a USB Stick Found in the Grass?
  • · Replies 5 ·
Replies
5
Views
2K
How can I remove a stubborn virus from my computer?
  • · Replies 15 ·
Replies
15
Views
5K
Calculators Virus Removal, New viruses acting as anti-virus scanners
  • · Replies 17 ·
Replies
17
Views
16K
Can bacteria be used as a control agent to fight viral infections?
  • · Replies 1 ·
Replies
1
Views
3K