Just a heads up, and if this is not posted in the correct area, please feel free to move it.
I recently purchased a jumpdrive at a good price. It was in new and unopened packaging and I still found it had a Trojan horse on it.
The product information:
Lexar Firefly Jumpdrive 2GB. Model JDFF2GB-431 Rev. H
UPC: 6-50590-14097-8
Other package labeling:
-- 2518676
-- 1824968
-- "China"
There was software (Dmailer_for_Lexar_V7_0_334.exe) on the drive and my security software detected and handled the Sheur2.blp Trojan horse within it. Now I freely admit that I do not know if this might be a benign program or not, but I did not want anything on the drive at all (I'm using this USB drive for storage only).
I run a few different anitvirus and spyware programs and constantly update them. I also have a USB specific antivirus program. All this helps, but the easiest thing to do is to always check any USB drive whenever you plug it in. I also always recommend holding down the shift key when installing a USB drive. This prevents any autorun programs that might be on the drive from starting. Just be aware that if you hold down the shift key for more than about 8 seconds it might put you into a different keyboard mode (weird characters may appear as you type and if you cannot get out of that, just reboot. Not that big a deal but it can look scary). You can right click and then select "explore" to see what is on the USB drive.
Also, if you have installed TweakUI on your system, bring it up, and in teh left column under "my computer" select "autoplay" and then "types." Select which types you want to disable autoplay on and you're good to go.
Good habits pay off I guess, and I just wanted to let folks be aware.
I recently purchased a jumpdrive at a good price. It was in new and unopened packaging and I still found it had a Trojan horse on it.
The product information:
Lexar Firefly Jumpdrive 2GB. Model JDFF2GB-431 Rev. H
UPC: 6-50590-14097-8
Other package labeling:
-- 2518676
-- 1824968
-- "China"
There was software (Dmailer_for_Lexar_V7_0_334.exe) on the drive and my security software detected and handled the Sheur2.blp Trojan horse within it. Now I freely admit that I do not know if this might be a benign program or not, but I did not want anything on the drive at all (I'm using this USB drive for storage only).
I run a few different anitvirus and spyware programs and constantly update them. I also have a USB specific antivirus program. All this helps, but the easiest thing to do is to always check any USB drive whenever you plug it in. I also always recommend holding down the shift key when installing a USB drive. This prevents any autorun programs that might be on the drive from starting. Just be aware that if you hold down the shift key for more than about 8 seconds it might put you into a different keyboard mode (weird characters may appear as you type and if you cannot get out of that, just reboot. Not that big a deal but it can look scary). You can right click and then select "explore" to see what is on the USB drive.
Also, if you have installed TweakUI on your system, bring it up, and in teh left column under "my computer" select "autoplay" and then "types." Select which types you want to disable autoplay on and you're good to go.
Good habits pay off I guess, and I just wanted to let folks be aware.
Last edited:
