Solved

Wiping history completely from compromised thumbdrives

Posted on 2006-07-20
6
289 Views
Last Modified: 2010-04-11
f someone has broken into your computer and you wipe the drive, do all things necessary to get rid of them but you used thumb drives on the compromised computers before, is there a way to delete/erase/wipe the history completely from the thumbdrives .  I have 4 and my daughter has one.  Totalaling about 2 gbs between all of them.  plus I have a portable 40 gb and a seagate 60 gb hardrives.  They are lexmar secure jumpdrives, centron, seagate, western digital. I would like to wipe them like I did/can the hardrives on the desktops and notebooks. Is this
possible?
0
Comment
Question by:Smcf4
  • 3
  • 2
6 Comments
 
LVL 5

Accepted Solution

by:
Dbergert earned 500 total points
ID: 17148945
0
 

Author Comment

by:Smcf4
ID: 17149126
will I still be able to use them afterwards?
0
 
LVL 5

Expert Comment

by:Dbergert
ID: 17149163
yes, you can reformat or just use them as a usb drive.

0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 5

Expert Comment

by:Dbergert
ID: 17149170
yes, you can reformat or just use them as a usb drive. -- AFTER you use SDelete or eraser on them...
0
 
LVL 4

Expert Comment

by:MalleusMaleficarum
ID: 17187480
It sounds to me like your motivation for wanting to wipe your compromised computer and your external devices and your thumbdrives is to make sure that there is no way that whatever tool/exploit was used to break into your computer could have found it's way into your other devices.

If this is the case, then a simple re-format in windows would take care of this.  So you wouldn't need another utility to do any kind of secure wiping, etc.  Formatting would remove the computer's ability to read anything on the device because as far as the computer is concerned, the device is empty.  

Also, let me make sure that when you say "wipe the drive" we are all talking about the same thing.  Typically when you talk about "wiping" to a security professional, it involves overwriting every bit of space (used and unused) on a device with either 1's, 0's, some pattern, etc.  The goal of wiping a device is to ensure that nothing that used to live on the device could ever be unerased or retrieved via conventional data recovery methods.

If you worried that information that used to be on these devices could be recovered later, then wiping is what you want.  If, however, you simply want to be able to ensure that there isn't some infected remnant of your previous breach on any of your other devices, a simple windows (or whatever OS you are using) format will suffice.

To accomplish this on an external or a thumbdrive, you can typically just right click on the device inside "My Computer" and select format.  Be sure there is nothing there you want to keep, and then let it run.  

Just a thought....
0
 

Author Comment

by:Smcf4
ID: 17196938
Yes, I want to make sure the tool/ exploit are gone.  I was under the impression a re-format only takes the information on the computer and partitions it elsewhere on the drive.  What I mean by wiping the drive,  I use a disc that I bought to write over every single thing on the drive itself.  I usually choose the one that wipes it 35 times. It sanitizes and then verifies that its been wiped.  Now, my concern comes in with the logical and physical drives.  I generally wipe the logical since it is where all the partitions are.  The physical I'm not so sure about.  

I was also under the impression that even though the computer tells you it has been formatted and that nothing remains on your system it is still recoverable with other software.  I do not want this, I want the MBR, and all drives wiped clean as if I just bought it from a store. Or it has just been built.  I do not know much about computers anything I do know I have learned through my own research.  

I could be wrong but I thought that someone could place a trojan/keylogger etc. in the boot sector or mbr of the drive and it can / will remain there until it is wiped not simply a reformat
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Join & Write a Comment

SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now