[WinPowerTip] How to Protect Flash Disk contagious virus.
Perhaps at the time this article was posted, I’m in the hospital to check-up, so I ask the readers of prayer …..
Well. WinPowerTip at this time, I will share how to protect the Flash Disk from virus infection, without install any software on your computer.
How? Read on this article
Follow up:
In the world, especially in Indonesia, most of the virus occurs through Flash Disk. There are 2 ways the virus can spread through the flash disk.
First way, infectious virus in a way to write the file “autorun.inf” in the root directory of the Flash Disk. This result when dicolokkan Flash Disk to the USB socket, Windows akan direct the execution of the program referred to by the file “autorun.inf” is. As a result, the virus is running, and your computer is contagious.
How Second, infectious virus in a way hide the folders in the Flash Disk, and then reproduce themselves with the same name and icon are the same as the folder icon. As a result, users are less careful not men-double-click the folder you want opened, even men-double-click the virus program.
According to me, the way of the first of the more serious of the two ways. The way of the second requires active interaction from the user (that is, double-click), and if the user is careful (for example, always use the “Details” mode), then a small possibility the virus will be execution.
The way of the first, otherwise, does not require user interaction at all. If Autorun feature on, then the action just mencucukkan Flash Disk into the USB socket will execute the virus. Indeed, the user can prevent Autorun runs with holding down the Shift key, but we can forget, or we terpleset fingers, and finally … tertularlah our computer. In addition, if we open our Flash Disk through the My Computer with a double-click … remain only in the autorun.inf akan-execution.
Given the risk of transmission is very large, why do not we prevent the spread of vectors penularannya only? Or in other words, we try Flash Disk so that we are not contracting the virus since the beginning.
How? After research, I can share the strategy of prevention to be several levels / level:
Prevention Level 1: Prevent the creation autorun.inf
Prevention Level 2: Prevent folder deletion with protective Unicode
Prevention Level 3: Prevent folder protector erased with the “No Folder Terhapuskan”
==================================
Prevention Level 1:
Prevent the creation autorun.inf
Do the following:
Delete the file autorun.inf in the root directory of your Flash Disk, and then immediately create a folder called autorun.inf
This is very simple, and based on 2 principles:
Windows does not allow the dibuatnya a file with the same name with the name of a folder
Function call to delete a folder with a different function call to delete a file
What’s it mean? Okay I explain:
You may think that to prevent the spread of virus through autorun.inf, you just create the file autorun.inf which made super-hidden (read-only, hidden, system).
You are wrong.
The virus can easily reset the attribute me the file, delete the file, and create a new autorun.inf.
BUT, if we create a folder with the name autorun.inf, the virus can not create the file autorun.inf! And if men strive virus-delete ‘file’ autorun.inf, the virus will fail and an error! (Because we created the autorun.inf file but not the folder).
Additional bonus is, in this way, the possibility of the virus in memory akan mati. Why? Since most viruses do not have the Exception Handling for this situation, he would be an error, and were killed directly by Windows.
This is still not foolproof; virus still can delete this folder with 1 function call to the right. So let’s create a live virus to be more difficult with the Level 2.
==================================
Prevention Level 2:
Prevent folder deletion with protective Unicode
Do the following:
Go into the autorun.inf folder you just created, and make a new text file. Rename your text file is to be: ?????. txt
If the letters CJK above does not appear, use this image as a reference:
For information, to the 5-letter CJK (China-Japan-Korea) above is the Unicode character code in succession: U + D00F U + C15B U + B41D U +9354 U +804 E
To be able to make a 5-CJK fonts, you need:
Arial Unicode Font (1 packages in Microsoft Office)
Character Map (usually ter-install with the Windows installation)
Open the Character Map, select font “Arial Unicode”:
Scroll down, find the character U + D00F:
Click the select button, the characters will be copied to the box to the left button:
Discover the four characters, and do the same thing, until the box contains the five characters that we need:
Once we have the fifth character, click Copy, and Paste as we live a new file name. Important note: When you paste the character-mem-karaketer as a new file name, these characters appear as boxes. THIS NORMAL. Windows font used to display the file name does not have a form letter (glyph) for the characters, so that will be replaced with a box.
Why should we bother to create file names with the letter CJK? My underlie this step with several principles:
Most of the men-virus does not support Unicode; consequently to the 5-letter CJK above will be treated as the Windows
Because Windows uses UTF-8 mapping to map Unicode characters to be multi-byte characters Windows single-byte, character-character that I pilihkan above akan terpetakan into C1 control characters, who can not / do not want to be processed by the Windows function call non – Unicode
Well, so at this stage, we autorun.inf folder is protected by a text file with a Unicode name. As a result, the virus-the virus that are ‘quasi-smart’ you want to delete the contents of this folder will fail when he tried to delete the files in it.
But this level is still not foolproof, if the flash disk you borrowed a friend, for example, and he saw no “autorun.inf” in the root directory is, he can take your flash disk is virus infected, and dihapusnya folder! As a result, the flash disk into your “naked” again.
Nah, we need additional protection against colleagues who intend good but less skillful Please see this prevention Level 3
===================================
Prevention Level 3:
Prevent the protective folder with the deleted “Folder Not Terhapuskan”
Do the following:
Downloadlah file makesuperdir.vbs.zip from this link. Un-zip is the file, and run the file “makesuperdir.vbs” it is referring to.
Makesuperdir.vbs this program is a simple program that will create a folder that ‘is not terhapuskan’ in the folder autorun.inf in the root directory.
This step is based on the following principles:
Windows Explorer can not handle (delete) the folder that last letter is a space
Simple, is not it? If there are people who try to men-delete autorun.inf folder using Windows Explorer, he will encounter error messages, and not be deleted autorun.inf folder.
Thus WinPowerTip this time. Hopefully the tips I give useful to you.
Goodbye WinPowerTip in the next!
thanks to WinPowerTip
I think I will try to recommend this post to my friends and family, cuz it’s really helpful.