User not logged in - login - register
Home Calendar Books School Tool Photo Gallery Message Boards Users Statistics Advertise Site Info
go to bottom | |
 Message Boards » » security people -- pre-packaged rootkit? Page [1]  
jackleg
All American
170957 Posts
user info
edit post

ive got a batch of brand new kingston 'USB mass storage' thumb drives

any type of autorun.ini stuff is automatically squashed on my network, which is i guess good. don't need it anyways.

point is, i was setting these up to give to people as emergency boot/rescue/whatever things to hook to their credentials and today 7 of them came up as some sort of risk not otherwise specified and pointed specifically to an autorun.ini that does not exist.

only 2 things make sense, this virus scanner's heuristic AI is going crazy, or this batch of drives tried to spike a process to unhide hidden stuff. i took one and formatted it with http://www.hiren.info/download/freeware/usb_format.zip just to see what would happen, and that drive went out and back in without setting off any bells

is there something new out there to watch out for, or am i just being too careful? IF I FUCK UP, THE WORLD ENDS

5/19/2009 5:04:22 PM

jackleg
All American
170957 Posts
user info
edit post

PUNK ASS LEETLESS NOOBS

5/19/2009 7:42:35 PM

dakota_man
All American
26584 Posts
user info
edit post

did you put the emergency boot stuff back on the one you formatted?

5/19/2009 8:39:56 PM

Grandmaster
All American
10829 Posts
user info
edit post

U3?

http://www.precisesecurity.com/tools-resources/adware-tools/flash-disinfector/

[Edited on May 19, 2009 at 11:55 PM. Reason : /]

5/19/2009 11:54:48 PM

dannydigtl
All American
18302 Posts
user info
edit post

My gf's Dad who works in the Pentagon said that they're not allowed to bring USB thumb drives in because sometimes the Chinese put rootkit/worm shit on them when they manufacture them.

I dunno if thats true or not, but...

5/20/2009 12:28:45 AM

Seotaji
All American
34244 Posts
user info
edit post

^ it is true.

you would be surprised at the effort the chinese government goes to, to steal info.

5/20/2009 12:36:43 AM

llama
All American
841 Posts
user info
edit post

my sandisk drive came with U3

http://en.wikipedia.org/wiki/U3

5/20/2009 12:42:35 PM

jackleg
All American
170957 Posts
user info
edit post

not u3

Quote :
"My gf's Dad who works in the Pentagon said that they're not allowed to bring USB thumb drives in because sometimes the Chinese put rootkit/worm shit on them when they manufacture them."


i got mine from a nigerian distributor, so i dont have to worry about the chinese. HA HA. kidding obviously, but even sony has put software on their drives to hide processes etc etc

its my "policy" to use brand new hardware for keychain drives, and to format with something i trust and image them all exactly and write protect them (as close as possible)...

im pretty sure they're all clean, they seem to check out byte for byte etc, never found a good read though

Quote :
"did you put the emergency boot stuff back on the one you formatted?"


the emergency boot stuff was never on there, i got them for the purpose of putting it on there. fresh out of the shrinkwrap avira called it out...

5/20/2009 3:08:30 PM

Shaggy
All American
17820 Posts
user info
edit post

friend jackleg. You are having found my fash drives. I am KING of NIGERIA. If you would kindly send flash drive I will give you SHIPPING COSTS and the sum of $32.5 million DOLLARS for you trouble. Pleast to send me credit card numbers and bank account informations so transfer can begin.

Thanking you very much.

5/20/2009 5:42:26 PM

darkone
(\/) (;,,,;) (\/)
11610 Posts
user info
edit post

lolz

5/20/2009 5:54:14 PM

jackleg
All American
170957 Posts
user info
edit post

you know, as bad as lagos is... i'd take it over los angeles any day.

5/21/2009 3:22:10 PM

DeltaBeta
All American
9417 Posts
user info
edit post

Also, Mogadishu. It's beautiful this time of year.

5/21/2009 3:30:06 PM

 Message Boards » Tech Talk » security people -- pre-packaged rootkit? Page [1]  
go to top | |
Admin Options : move topic | lock topic

© 2024 by The Wolf Web - All Rights Reserved.
The material located at this site is not endorsed, sponsored or provided by or on behalf of North Carolina State University.
Powered by CrazyWeb v2.39 - our disclaimer.