The Energizer DUO Trojan:

The Duo seems to have been a failed experiment for battery maker Energizer in more ways than one. Sales of the USB nickle-metal battery charging station never really took off, and now, via a press release, the company has announced the monitoring software distributed with the Duo packs a fairly nasty Windows trojan. The rogue code, according to Computerworld: “listens for commands on TCP port 7777… can download and execute files, transmit files stolen from the PC, or tweak the Windows registry. The Trojan automatically executes each time the PC is turned on, and remains active, even if the Energizer charger is not connected to the machine.” Energizer released a statement saying: “Energizer is currently working with both CERT and U.S. government officials to understand how the code was inserted in the software.”


Here is how to remove the Trojan:

First, uninstall the software. This will remove the Windows registry value that executes the Trojan when starting Windows. Restart your computer, then go to the System32 directory in Windows and delete the file "arucer.dll," which is the backdoor component itself. For good measure, you can use a firewall to block access to 7777/tcp, but Energizer doesn't list this step as necessary.