Infected USB sticks from HP
Internet Storm (ISC) has issued a warning about USB sticks shipped by HP for its ProLiant line servers. Some of the 256KB and 1GB versions contain malware that can spread across a network.
A batch of "floppy USB keys" contains the W32.SillyFDC and W32.Fakerecy worms. They attempt to autorun via autorun.inf and then seek out all connected drives and try to replicate themselves. They also embed themselves in the system. SillyFDC will also download additional components.
The USB sticks are intended for use with ProLiant servers. However, since these are otherwise perfectly normal memory sticks, they can also be used by other computers. According to AusCERT, an up-to-date virus scanner should have no problem detecting the virus. If you have already inserted the stick into a computer that does not have a virus scanner, you may well have become infected without realizing it.
You can remedy the problem by installing a current virus scanner on the computer and using it to detect and remove the infection. Before using an unknown or new USB stick or other USB memory device (such as a picture frame) with a Windows computer, users should turn off "autorun" by holding down the shift key and should make sure that virus protection is active.
- HP USB Keys Shipped with Malware for your ProLiant Server, warning from ISC
- HP USB Floppy Drive Key (Option) for ProLiant Servers, Local Virus Infection, warning from AusCERT