It is better to know something about viruses that affect the flash memories. Because no one can say I am safe from virus even though you are using any, new, updated, and power full antivirus software. You may ask why? yes, it is because.. You might have installed and keep up to date anti-virus software within your laptop or PC. But sometimes you would need to use your Flash memories in other PC's as well. You can't avoid it. It is the one of main purpose of flash memory.Flash memories are becoming as a main target for viruses and Trojans. I have Little experience fighting with a kind Of autorun virus virus that affects flash memories past days.
That main medium for that virus to spread is the flash memory. If you have a computer affected by that kinds of virus, the first job of that virus is to disable the folder option in windows Explorer/folder. It a main trick of it. Later I'LL come to that point. Then it resides in memory and searching for any new storage devices to be detected.
Normally you know if a Flash memory stick is plugged in to USB port, PC automatically detects it and open the root folder or ask you to select the action. When the virus detects these flash memory, It automatically copies the virus (one or more executable files) in to the flash memory. not only that, it also create an Autorun.inf file in the root of the flash memory and inside the fiLes it makes a Link to the virus's executabLe file. The second step of the virus's Job is now over.
Again you may use it in another PC as well. Yo may guess what wiLL happen if this Flash memory stick Will be plugged in to another PC that is not protected by any antivirus software. Here it starts the 3rd job. Then the flash memory is inserted, the autorun.inf file starts to work and run that executable virus file. Then this PC also falls in to the virus hell. And it is also now ready for spreading virus. This the Life cycLe of that virus.
And there is another big trick with some of these kinds of viruses. You may have important datas inside your flash memories which you frequently open. These kinds of virus use this point to attack your system. You Know how??
When the flash memory is plugged in to the affected PC, the virus hides all your document's folder with the attribute (S & h). then copies the copy of virus's executable file in the name of your file's folder and change its icon same as a foLder icon. any one open the flash memory Will double click those executable virus file thinking it as his file's folder. again it starts it Life cycLe. how tricky is it??
How to overcome from this virus
I am using NOD32 anti-virus software. After I installed this software, I found this is a best one for dealing with these autorun Trojans. below is an screen shot how NOD 32 detects the virus when flash memory plugged in.
If you wish to download NOD32 you can purchase or download a 30 days trial version from Original ESET's website here http://www.eset.com/download/index.php.Bye!
0 comments:
Post a Comment