HOW TO RESOLVE-VIRUS ISSUES.

VIRUS ISSUE
Symptoms:
-          Folders/files not being able to open
-          Folder duplicates
-          Short cut icons appearing

Solution:
-          Run anti-virus
-          If problem still persists, go into the command prompt




-          Enter the following command:


-this should reset the attributes
-open up the usb flash drive/external drive and delete all suspicious looking files that look like duplicates or short cut icons

attrib –r –h –a –s G:\* /s /d






Using command prompt "attrib" to check for Viruses or Malware
Microsoft Command Prompt "attrib" is a very useful tool to check if your hard drives even your flashdisks have been infected by a virus.
You will know if a Malware is inside your hard drive just by looking at the attributes of each files and the file that has the attributes of +s +h +r
The function of attrib is to set and remove file attributes (read-only, archive, system and hidden).

Launch attrib

To start attrib
  1. Go to Start Menu > Run
  2. Type cmd (cmd stands for command prompt)
  3. Press Enter key
The Command Prompt will appear showing us where is our location in the directory.
command prompt showing the current location in the directory

Using attrib

To use attrib
  1. Go to the root directory first by typing cd\(because this is always the target of Malware / Virus)
2. Type attrib and press Enter key
after typing attrib, all the attributes of all the files (excluding folders) will be shown

In this example, I have two files that are considered as malware.
Note that there are two files which I outlined in red (SilentSoftech.exe and autorun.inf). Since you cannot see this file nor delete it (because the attributes that was set on these files are +s +h +r)
  1. +s - meaning it is a system file (which also means that you cannot delete it just by using the delete command)
  2. +h - means it is hidden (so you cannot delete it)
  3. +r - means it is a read only file ( which also means that you cannot delete it just by using the delete command)

Now we need to set the attributes of autorun.inf to -s -h -r (so that we can manually delete it)
  1. Type attrib -s -h -r autorun.inf ( be sure to include -s -h -r because you cannot change the attributes using only -s or -h or -r alone)
  2. Type attrib again to check if your changes have been commited
  3. If the autorun.inf file has no more attributes, you can now delete it by typing del autorun.inf
  4. Since SilentSoftech.exe is a malware you can remove its attributes by doing step 1 and step 3(just change the filename) ex. attrib -s -h -r silentsoftech.exe

There you have it!!!!
NOTE : when autorun.inf keeps coming back even if you already deleted it, be sure to check your Task Manager by pressing CTRL + ALT + DELETE ( a virus is still running as a process thats why you cannot delete it. KILL the process first by selecting it and clicking End Process.
NOTE: You can also apply the attrib -s -h -r command to all the partition of your computer, drive D: drive E: drive F: (all of your drives). For example. for drive D, just type "D:" (minus the double quote) then you can see that your current drive is D.. type there the command "attrib -s -h -r *.exe" for exe files and "attrib -s -h -r *.inf" and then delete the file by "del autorun.inf".


Comments

Post a Comment

Popular posts from this blog

A VOYAGE Through Rohu in Makira Ulawa Province.

Image
EXCITED MOMENT-HOLIDAY FEVER. It was in the month of December, 2014. The Christmas Holiday break was approaching and everybody working, studying and just Liu Ai ( Unemployed) who reside in Honiara City were all excited as the transport arrangements and the departure date has been confirmed. On the next day (departure date), the sky was cleared and the sun was started to reach the tree tops. Everybody was ready for the voyage. The traffic was busy and the rush hour almost hit the road again as it's Friday afternoon. Later that afternoon, Everybody has ready and started to catch the early Taxi's and buses heading to the west-side where the post areas was. Mv. Airi was the ship to board and it was the last ship to make its passenger run through this route, Marou bay to Haununu Area before the 25th of December. Things have been little crappy for me. I have not got enough for my sea fare. I am so worried during that time as i don't want to spend the X-mass Holiday in Town. I...
Read more

How to fix an unrecognized USB drive: we help you find the cause of the problem

Image
It’s never a good thing to see the message “USB Device Not Recognised” after plugging in a hard drive or thumb drive full of your precious files. Here’s how you can try and fix an unrecognized USB drive. By Jim Martin | 25 Apr 14 Share Share Share How to fix an unrecognized USB drive It’s never a good thing to see the message “USB Device Not Recognised” after plugging in a hard drive or thumb drive full of your precious files. But before you give up all hope of ever seeing those files again, there are a few things you can try. Here’s how you can try and fix an unrecognized USB drive. (See also: Recover deleted files for free: recover lost data .) Various problems can cause the error message, from faulty USB ports or software drivers to corrupt partitions or even a dead USB drive. We’ll explain how to figure out what’s gone wrong. How to fix an unrecognized USB drive: try a different USB port or PC The fi...
Read more