Skip to main content

Prevent Autorun pendrive/ flashdrive viruses

The usage of a pen drive or a flash drive become a very common thing. Also with the cost of memory chips going down (now you can get a 4GB memory stick for Rs.800) have boosted its usage and also an USB flash drive is compact and very easy to carry around. With the increase in the usage of pen drives, viruses spreading through these memory sticks has increased exponentially.
As such you can't completely prevent the viruses but to minimize these viruses and worms spreading to the PCs we can take some preventive measures.
Turn off the Auto Run:-
Pen drives uses the Autorun feature to load certain files when it is plugged into a USB port. Now, the worms and viruses uses this autorun feature to spread itself from the thumb drives to the computers. You can avoid majority of these worms spreading by turning off the autorun feature. To do is very simple just follow these steps,


If you are using Win XP Professional edition:-
Click Start button
Select Run.
Now type gpedit.msc in Run command .
You will notice the Group Policy Window opening.
Double click Administrative Templates.
Select System in the right pane of the window.
Now,select(double click)Turn Off AutoPlay .
Turn Off Autoplay properties window opens.
Now.select All Drives from the combo box in that and select Enabled radio button and press OK.




If you are using Win XP Home edition,try these:-
Select Run and type regedit to open the registry editor.
Then navigate as follows

HKEY_CURRENT_USER
--> Software
--> Microsoft
--> Windows
--> CurrentVersion
--> Policies
--> Explorer.

Now,select NODRIVETYPEAUTORUN and select Modify.
Set the Hexadecimal value to 95 to turn off autoplay in removable drives and use b5 to turn off autorun feature in CD-ROMs and pen drives.
Thus turning off autorun feature just stops many malwares from spreading into a PC from a thumb drive.
Known malwares:
Now you can now delete many worms manually some known viruses are Autorun.inf,iexplore.vbs,ifo.exe,raven.exe,rvhost.exe and NewFolder.exe(a worm looks like folder,but is actually an exe file,a worm).Better to use a nice antivirus and scan for viruses in the plugged in drive before opening it as these files will be hidden or access protected.But however you can view those files in command prompt by first entering into your removable drive(eg: J:)then type the following- attrib -h -r -s -a *.*.After typing that you can view those files.But it is better to use a nice Anti-virus software.
You can also many softwares available(like TrueCrypt) to encrypt your pen drive .In such a case a window Pops Up every time when you plug in the drive.This would also help preventing the viruses from loading automatically into the pen drive. Using such softwares will also prevent unauthorized usage of data your drive, especially when your having sensitive information in your drive.

Use latest anti-virus software (NOD32 is best dealing with auto run virus)

Comments

This is a really useful post. I’ve found them very useful. Now I can use it like a college boardhelp ;). Thanks

Popular posts from this blog

Getting Started with Rancher & Kubernetes

During my time working at Azoi (a startup), I was responsible for maintaining Gitlab for my team along with various other self-hosted internal services. When I first setup Gitlab in 2013, it was quite a task, as setting it up would involve configuring various services using provided scripts and a lot of luck. Fortunately, I found Bitnami Gitlab package to make that process easier. However initial setup is one thing and keeping up with the latest releases was a nightmare.

Fast forward to 2016, I joined eInfochips as Solutions Consultant. Where one of my responsibilities was to modernize development workflow and encourage DevOps culture. It made sense to use Gitlab specially for Gitlab-runner and since this was a fresh setup, I explored few options to setup Gitlab, I found that Gitlab monthly releases were now published as Docker images. So I decided to use Gitlab docker image to host gitlab-ce internally. This time around, the experience was very different, initial setup and upgrading…

Get Double Speed BSNL Broadband Simple Trick High Speed Broadband

UPDATE 2:

Step 1: Make sure that your modem is in Bridge Mode.

Step 2: Make a new Virtual Machine and install Windows XP on it.

Step 3 : Create a new text file and type following command:

rasdial "Broadband Connection" username password

username = ur broadband username
password = ur broadband password
Broadband Connection = Name of the Connection you use to connect, you can find it in Control Panel -> Network Connections


save it as "connect.bat"

double click on that file to check if it connects to the internet or not.

Step 5:
Copy that file to XP running in Virtual Machine.

Step 6:

Click Start -> Programs -> Accessories -> System -> Task Scheduler

select connect.bat as application to run and then set the time to run that app (same time in both systems*)

Time should be 2 minutes from current time so you dont have to wait too much...

*Very Important if connect.bat doesnt run at same time then only 1 XP would be connected to internet.

Complete Step 6 on both host and …