Thursday, June 6, 2013

Protect your USB and other external storage devices from viruses

Many of us suffers from viruses on our USB and other Storage drives, for an instance you are having a very important file and it has been plugged in to an infected PC therefore the USB will get infected by virus and the antivirus will automatically delete it for sure. Now im gonna show you this new trick that will defend your USB from this kinds of instances.


Many of us suffers from viruses on our USB and other Storage drives, for an instance you are having a very important file and it has been plugged in to an infected PC therefore the USB will get infected by virus and the antivirus will automatically delete it for sure. Now im gonna show you this new trick that will defend your USB from this kinds of instances.




For this tutorial i will show you how to defend your USB from those malwares and other types of viruses by creating a fake autorun.inf.

Note: only windows Operating system is covered for this tutorial

First thing is to make sure that your usb doesnt contain any viruses.(Such as malwares, trojans and worms etc.)

How?


  • Make your file and folder settings to show hidden files.

  • Open computer left-click Organize and select folder and search options from the context menu now switch to the view tab then check show hidden files, folders and drives, and apply changes

Click the image to enlarge

























  • Search for any autorun.inf file in the root of your usb/storage drive and delete it

  • Search for any hidden folders in the root of your drive. (if you have any hidden confidential folders/files do not delete that)

  • Search for any recycle bin folder in the root of your drive and delete that. (Removable storage should not have any recycle bin folder.)

  • If your PC is already infected locate the infected drives in your pc and perform attrib. (Note: "attrib" can also be performed to an internal drive)


  • Create an "autorun.inf" folder in the root of USB/Other storage drive

  • Set the autorun.inf folder  as "Hidden and Read-only" attribute.(You can also do this in DOS window just enter the following command "attrib +h +s +r autorun.inf")

Click the image to enlarge


























The idea that the autorun.inf folder's presence will conflict the virus. because the virus might try to look for an existing autorun.inf file, destroy it and replace it with its own malicious content. since you've already created an autorun.inf folder the virus cannot rewrite nor delete it since it is not a file, neither create a new autorun.inf file in the USB/other Storage drive's root since FAT & NTFS file systems cannot have 2 file system entry in the same root with the same name.

Notes:

Most virus will attempt to hide themselves even more by using non-standard file extensions, but ones that are still considered executable.

Examples:
COM, BAT, CMD, SCR, LNK, PIF, etc... (So beware with the files that contain this kind of extension.)

Many anti-virus doesn't able to detect most of spreading USB viruses (anti-virus applications will NEVER give your a 100% guarantee don't be stupid because you have the latest lame updates...)

This trick will probably not work 100% of the time, but at least its better than nothing!