Energizer Duo Charger Software Packs a Trojan

It would appear as if Energizer has found themselves in between a rock and a hard place. The famous battery maker’s Duo charger software infects an end user’s computer with a Trojan Horse malware infection, granting hackers full access to your computer, according to the United States Computer Emergency Readiness Team (US-CERT).

When the software is installed on a user’s computer, it creates a malevolent file called “arucer.dll,” which will actually listen for remote commands on TCP port 7777. The file is capable of downloading executable files, transmit pilfered information, or even modify your computer’s registry files.

Even worse, the Trojan is still capable of running when your Energizer Duo charger is not plugged in. Testing has shown that the malware starts doing its job when the computer starts up.

The US-CERT has suggested that all unfortunate users of the software uninstall it immediately, which will prevent the Trojan from starting up upon the next boot up. Users can also find the “arucer.dll” in the System32 folder and delete it to prevent it from working any further.

As for Energizer, the company has removed the software from their download site and is working with both the US-CERT and the United States government to find out how/why the malicious code made it to the final product.

The infection only affect the PC variation of the software. Mac users — take a deep breath.

[ via ComputerWorld ]