Solved

Usbdriver.exe icon on flash drive is being corrupted by virus..

Posted on 2013-01-07
7
917 Views
Last Modified: 2013-01-08
When I insert any flash drive into my system a new usbdriver.exe file is automatically inserted on the drive and the icon for the file is porn.  Bitdefender can't find a thing on the Win 7 Pro system.  I believe the startup process associated with recognizing the flash drive and initializing it in the file system has a virus.   Any ideas on how to fix it?  Placing a startup.ini file with a custom icon on the flash drive doesn't fix it.
0
Comment
Question by:Hwylie
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 16

Expert Comment

by:Shaik M. Sajid
ID: 38753459
copy all the data to antivirus updated system and scan it..

connect the usb and format it from command promot..
i.e usb detected as f: deive

go to run type cmd
in command prompt   type  C:/ format f /q   enter

this can be solve

all the best
0
 
LVL 22

Accepted Solution

by:
Rick Hobbs earned 500 total points
ID: 38753491
Download a copy of MalwareAntiBytes and scan the PC and any USB drives you have inserted.  I have yet to see it unable to fix this type of virus.
0
 
LVL 8

Expert Comment

by:jpgobert
ID: 38753495
Definitely sounds like you have a bug and you're going to need another PC that isn't infected if you want to attempt to clean your PC... I'd suggest creating a bootable antivirus disc or usb jump drive on another PC that isn't compromised by this or any other virus.  A good utility that I've used for building bootable antivirus media is Sardu (http://www.sarducd.it/)  There are many ways to create a bootable disc or drive but I've found Sardu to be easy and convenient.

In any case, once you have a bootable antivirus disc or jumpdrive, use it to boot your PC so that none of the software or the OS from your computer will be loaded.  Use that antivirus program to completely scan and clean your computer's hard drive.  You may even want to use more than one antivirus application for this (i.e. boot from one antivirus app and completely scan and clean your pc, then boot from another and do the same)... it'll take a while but you want to be sure that you've gotten as much as possible off of your PC.

Ultimately the only sure fire way to handle this is to clean your PC, backup your important data, completely format your PC's hard drive and then re-install the OS.  

Good luck!
0
Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

 

Author Comment

by:Hwylie
ID: 38753724
Solution 1 - "copy all the data to antivirus updated system and scan it...." ignores the source of the virus is the PC and not the USB -  since virgin new flash drives are infected upon being inserted.

Solution 2  - "Download a copy of MalwareAntiBytes" - it worked and deserves the full credit

Solution 3 -  "Definitely sounds like you have a bug" was not tried because of solution 2 but wasn't an effective solution because it required extensive setup with no predictable results. Out of band virus scanning can be more effectively done by isolating the suspect disk(s) via USB to hard drive interface converters and scanning the drives as if they are just non-system disks.  This still relies on software that can find the virus/malware.  

Thanks to all for taking the time to respond.  It's always valuable to get a fresh look at the problem regardless of the problem and actual solution.

Hunter
0
 

Author Comment

by:Hwylie
ID: 38753728
I've requested that this question be closed as follows:

Accepted answer: 0 points for Hwylie's comment #a38753724

for the following reason:

My comment acknowledges solution 2, not my own solution.
0
 
LVL 8

Expert Comment

by:jpgobert
ID: 38753745
Hunter,

Given the details you posted, and your response to my suggestions, I'd say you have a narrow understanding of how viral propagation occurs.  While I agree that "out of band virus scanning can effectively be done by isolating the suspect disk(s) via USB", this presents the opportunity for the infection to propagate to the host system being used for out of band scanning via auto-run if not disabled on the host.  Since we had no details on the infection itself other than the indication that it seems to take advantage of auto-run on the infected system a good technician would take the extra precaution of keeping the infected system and its disks isolated from non-infected systems.

Given that, had I known this was some game you were playing with other people's time I wouldn't have bothered wasting mine.  I'd suggest finding another avenue for playing games.
0
 
LVL 22

Expert Comment

by:Rick Hobbs
ID: 38757162
I think the reason he was asking for advice may be "a narrow understanding of how viral propagation occurs".  I don't think he was playing any game, he just may of stated how he assigned points in a fashion you didn't like.

The bottom line is the problem is resolved and I am glad I was able to be of assistance.
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

First some basics on Windows 7 Backup.  It has 2 components one is a file based backup which is stored in .zip files each zip is split at around 200 Megabytes and there is the Image Backup which is as the name implies a total image of the partition …
If you get continual lockouts after changing your Active Directory password, there are several possible reasons.  Two of the most common are using other devices to access your email and stored passwords in the credential manager of windows.
This Micro Tutorial will teach you how to change your appearance and customize your Windows 7 interface to your unique preference. This will be demonstrated using Windows 7 operating system.
The viewer will learn how to successfully download and install the SARDU utility on Windows 7, without downloading adware.

690 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question