Skip to main content

Prevent Autorun pendrive/ flashdrive viruses

The usage of a pen drive or a flash drive become a very common thing. Also with the cost of memory chips going down (now you can get a 4GB memory stick for Rs.800) have boosted its usage and also an USB flash drive is compact and very easy to carry around. With the increase in the usage of pen drives, viruses spreading through these memory sticks has increased exponentially.
As such you can't completely prevent the viruses but to minimize these viruses and worms spreading to the PCs we can take some preventive measures.
Turn off the Auto Run:-
Pen drives uses the Autorun feature to load certain files when it is plugged into a USB port. Now, the worms and viruses uses this autorun feature to spread itself from the thumb drives to the computers. You can avoid majority of these worms spreading by turning off the autorun feature. To do is very simple just follow these steps,


If you are using Win XP Professional edition:-
Click Start button
Select Run.
Now type gpedit.msc in Run command .
You will notice the Group Policy Window opening.
Double click Administrative Templates.
Select System in the right pane of the window.
Now,select(double click)Turn Off AutoPlay .
Turn Off Autoplay properties window opens.
Now.select All Drives from the combo box in that and select Enabled radio button and press OK.




If you are using Win XP Home edition,try these:-
Select Run and type regedit to open the registry editor.
Then navigate as follows

HKEY_CURRENT_USER
--> Software
--> Microsoft
--> Windows
--> CurrentVersion
--> Policies
--> Explorer.

Now,select NODRIVETYPEAUTORUN and select Modify.
Set the Hexadecimal value to 95 to turn off autoplay in removable drives and use b5 to turn off autorun feature in CD-ROMs and pen drives.
Thus turning off autorun feature just stops many malwares from spreading into a PC from a thumb drive.
Known malwares:
Now you can now delete many worms manually some known viruses are Autorun.inf,iexplore.vbs,ifo.exe,raven.exe,rvhost.exe and NewFolder.exe(a worm looks like folder,but is actually an exe file,a worm).Better to use a nice antivirus and scan for viruses in the plugged in drive before opening it as these files will be hidden or access protected.But however you can view those files in command prompt by first entering into your removable drive(eg: J:)then type the following- attrib -h -r -s -a *.*.After typing that you can view those files.But it is better to use a nice Anti-virus software.
You can also many softwares available(like TrueCrypt) to encrypt your pen drive .In such a case a window Pops Up every time when you plug in the drive.This would also help preventing the viruses from loading automatically into the pen drive. Using such softwares will also prevent unauthorized usage of data your drive, especially when your having sensitive information in your drive.

Use latest anti-virus software (NOD32 is best dealing with auto run virus)

Comments

This is a really useful post. I’ve found them very useful. Now I can use it like a college boardhelp ;). Thanks

Popular posts from this blog

Get Double Speed BSNL Broadband Simple Trick High Speed Broadband

UPDATE 2:

Step 1: Make sure that your modem is in Bridge Mode.

Step 2: Make a new Virtual Machine and install Windows XP on it.

Step 3 : Create a new text file and type following command:

rasdial "Broadband Connection" username password

username = ur broadband username
password = ur broadband password
Broadband Connection = Name of the Connection you use to connect, you can find it in Control Panel -> Network Connections


save it as "connect.bat"

double click on that file to check if it connects to the internet or not.

Step 5:
Copy that file to XP running in Virtual Machine.

Step 6:

Click Start -> Programs -> Accessories -> System -> Task Scheduler

select connect.bat as application to run and then set the time to run that app (same time in both systems*)

Time should be 2 minutes from current time so you dont have to wait too much...

*Very Important if connect.bat doesnt run at same time then only 1 XP would be connected to internet.

Complete Step 6 on both host and …

Amarok 2 screenshot peview! :)

**Update**
Added some Amarok on windows screenshots :)

For those who don't know about Amarok, Amarok 2 is the free cross platform music player, with support for album art, lyrics, Wikipedia and last.fm integration.

Amarok 2 is not out yet as it is going to be released with KDE 4.2 sometime in January 2009 before KDE 4.2 :) in 1 to 3 months, Amarok team released beta 2 few days ago, Amarok 2 is cross platform i.e. available for Mac, Windows & Linux (:D). As my Arch installation was screwed up so I'm on Kubuntu, they have a nice repository to try nightly builds of Amarok/KDE4 (project neon), following screenshots are bit old as they are taken from my Arch Installation.

It supports Last.fm integration, Jamendo, Magnatune, Shoutcast Radio service,Mp3tune service etc...

the best feature I like about Amarok2 is Dynamic Playlist.

for collection and statistics it uses MySQL embedded


Lyrics script fetches lyrics as soon as you play the song




Internet Services:

Last.fm




Shoutcast!


Dynamic Play…