irritated with virus infection that automatically make you at Flash Disk Plug your USB Flash Disk port to your computer infected with virus? What if we make the Anti Virus Autorun from USB Removable Flash Disk Drive kind? Often the virus will create the file "autorun.inf" which pro-attribute hidden and system files (and / or the file may also include virus / trojan - server) so you Flask Disk pair made the target of virus infection or target shadowing activity or theft of user data users with Trojan.
This autorun.inf file command or trigger file and the main library virus / trojan that has been lodged in the local computer network or the Flash Disk, and you interact directly ter execution.
If your Windows OS users, as we know, the next generation version of Windows before Windows Vista (including Windows XP, Windows), by default do not allow the "autorun" executable files from media such as USB Removable Drives External Hardisk or Flash Drive / Flash Disk (except from media disk), which most likely is for the interest of security. Windows only allows the process of "AutoPlay" media only as AutoPlay Movie / Music DVD's, or command such as Open / View the files through windows explorer.
Fortunately (from the convenience factor) unfortunately at a time (factor of safety), Windows Vista has by default permit process "Autorun" performed with the default options that you can select a permanent basis.
Then how outmanoeuvre Windows XP in order to allow the "autorun" executable files from removable drives such as Flash and External Hardisk Disk?
Below the author submit the technical creation of Autorun Flash Disk AntiVirus.
STEP I - Download a Portable AntiVirus
Why should Portable? Because the goal of creating autorun files from the Flash is also portable, so a referral program, in this case Anti Virus, can be run directly from the Flash Drive without installation required. You can use ANSAV (Ansav.exe - do not ANSAV Security Guard) or PCMAV (PCMAV-CLN.EXE - Do not PCMAV-RTP.EXE)
Enter Anti Virus Portable files (plus supporting library files - if any) into your Flash Disk.
In this example, to make it easier, place it on your Root Flash Disk without having to enter in your folder.
STEP II - From Making Autorun Flash Disk
There are two (2) the options that you can select:
1. Using the software assistance of others, or
2. Using the help of your own
1. Using the software assistance of others
This number will not be talking on the core of this article.
However, if you will, the author recommends you to use an application called APO USB Autorun and a very good quality, work well on Windows XP SP2, the file size small, and free again.
APO USB Autorun will create a service called autorunusb.exe running in the background that served as the detector to scan the file autorun.inf in the root removable drive and detect all executable files on the removable drives and media akan match executable files with the file name and path of the file referred to by the autorun.inf file. Wonder that the author of this software, APO will perform scan on all executable files in the removable media drives.
However, despite the effect a little slow computer performance, the process of scanning is also useful to scan for the existence of the virus in the Removable Drives that have not detected by AntiVirus is active in the computer. Once the scanning process to find a script or executable files that are considered as malware by AntiVirus, it will trigger (trigger) notification of AntiVirus has been found that the threat (virus).
Unfortunately APO Autorun USB you must install before you can apply the Autorun from flash disk. Fortunately APO USB Autorun has also been included for the installation of portable plus autorun.inf builder.
2. Using the help of your own
Techniques you can do is the first structure with little change in the Windows Registry Hex.
If the previous or the default Windows does not allow the "Autorun" from the USB Flash Disk, the Registry is like this:
This autorun.inf file command or trigger file and the main library virus / trojan that has been lodged in the local computer network or the Flash Disk, and you interact directly ter execution.
If your Windows OS users, as we know, the next generation version of Windows before Windows Vista (including Windows XP, Windows), by default do not allow the "autorun" executable files from media such as USB Removable Drives External Hardisk or Flash Drive / Flash Disk (except from media disk), which most likely is for the interest of security. Windows only allows the process of "AutoPlay" media only as AutoPlay Movie / Music DVD's, or command such as Open / View the files through windows explorer.
Fortunately (from the convenience factor) unfortunately at a time (factor of safety), Windows Vista has by default permit process "Autorun" performed with the default options that you can select a permanent basis.
Then how outmanoeuvre Windows XP in order to allow the "autorun" executable files from removable drives such as Flash and External Hardisk Disk?
Below the author submit the technical creation of Autorun Flash Disk AntiVirus.
STEP I - Download a Portable AntiVirus
Why should Portable? Because the goal of creating autorun files from the Flash is also portable, so a referral program, in this case Anti Virus, can be run directly from the Flash Drive without installation required. You can use ANSAV (Ansav.exe - do not ANSAV Security Guard) or PCMAV (PCMAV-CLN.EXE - Do not PCMAV-RTP.EXE)
Enter Anti Virus Portable files (plus supporting library files - if any) into your Flash Disk.
In this example, to make it easier, place it on your Root Flash Disk without having to enter in your folder.
STEP II - From Making Autorun Flash Disk
There are two (2) the options that you can select:
1. Using the software assistance of others, or
2. Using the help of your own
1. Using the software assistance of others
This number will not be talking on the core of this article.
However, if you will, the author recommends you to use an application called APO USB Autorun and a very good quality, work well on Windows XP SP2, the file size small, and free again.
APO USB Autorun will create a service called autorunusb.exe running in the background that served as the detector to scan the file autorun.inf in the root removable drive and detect all executable files on the removable drives and media akan match executable files with the file name and path of the file referred to by the autorun.inf file. Wonder that the author of this software, APO will perform scan on all executable files in the removable media drives.
However, despite the effect a little slow computer performance, the process of scanning is also useful to scan for the existence of the virus in the Removable Drives that have not detected by AntiVirus is active in the computer. Once the scanning process to find a script or executable files that are considered as malware by AntiVirus, it will trigger (trigger) notification of AntiVirus has been found that the threat (virus).
Unfortunately APO Autorun USB you must install before you can apply the Autorun from flash disk. Fortunately APO USB Autorun has also been included for the installation of portable plus autorun.inf builder.
2. Using the help of your own
Techniques you can do is the first structure with little change in the Windows Registry Hex.
If the previous or the default Windows does not allow the "Autorun" from the USB Flash Disk, the Registry is like this:
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
“NoDriveTypeAutoRun”=dword:00000095
So that Windows could allow the "Autorun" from the USB Flash Disk, the Registry change it to:
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
“NoDriveTypeAutoRun”=dword:00000091
You can copy Registry Lines, and you save it as (eg): "AutoRun_Removable_Media_Enable.reg" to your right click and merge (combine) with the Windows Registry Database.
After you successfully enter Registry Entry Files to the Database in the Windows Registry, then your job is to make the last file "autorun.inf" that serves as a reference to the Command with the File Anti Virus that you have to download and enter in your Flash Disk (in Step I)
In this example, the author using the PC Media Anti Virus PCMAV-CLN.EXE the filename it has to be change Author PCM4V-CL34N32.EXE to avoid a possible pendeteksian Virus PCMAV akan block-CLN.EXE.
The file "autorun.inf" PCMAV be like this:
PC Media Anti Virus
[AutoRun]
open=PCM4V-CL34N32.EXE
icon=PCMAV.ICO
shellexecute=PCM4V-CL34N32.EXE
shell\Scan Virus\command=PCM4V-CL34N32.EXE
shell=Scan Virus
After you successfully enter Registry Entry Files to the Database in the Windows Registry, then your job is to make the last file "autorun.inf" that serves as a reference to the Command with the File Anti Virus that you have to download and enter in your Flash Disk (in Step I)
In this example, the author using the PC Media Anti Virus PCMAV-CLN.EXE the filename it has to be change Author PCM4V-CL34N32.EXE to avoid a possible pendeteksian Virus PCMAV akan block-CLN.EXE.
The file "autorun.inf" PCMAV be like this:
PC Media Anti Virus
[AutoRun]
open=PCM4V-CL34N32.EXE
icon=PCMAV.ICO
shellexecute=PCM4V-CL34N32.EXE
shell\Scan Virus\command=PCM4V-CL34N32.EXE
shell=Scan Virus
Copy these lines Inf, and save it as. Inf files with the name "autorun.inf" (without the quotes), then place the file "autorun.inf" on the Root your Flash Disk.
DETAIL
* To file PCMAV from ICON, the author of the extract file PCMAV-CLN.EXE, which ICON files are also placed on the Flash Disk Root. You can remove / delete the line "icon = PCMAV.ICO" is used to display the File ICON Icon PCMAV as a Flash Disk as the screenshot above. ICON reference line does not affect this process autorun. However, if you want PCMAV ICON, you can download it by clicking this link.
* Line-Inf line is you can modify your writing to suit the taste, which is the file path you are not wrong; file your goals are relatively cf.
* Do not Forget, to avoid file deletion so easily, it should hide File Anti Virus together with supporting library files (if any) and the file "autorun.inf" file is set with Attributes with its "hidden" and when the need to "system". Recommend one again, would that, all file Set File Attributenya to "Read Only" so that, simply, can not be changed.
For the purpose of setting file attribute these modifications you can do with the Select All files to be hidden, then right-click the file, select and click "properties", and check the check box "hidden. Are set to become a "system", you can use the Windows ATTRIB.EXE work in DOS environment, or you can also use the attribute Changer work environment that has a GUI. Q = Lho, a tool that does not ya? A = for the sake of convenience, use the attribute Changer ATTRIB.EXE when damaged / removed Virus / Admin and you are lazy to extract from the Windows CAB.
DETAIL
* To file PCMAV from ICON, the author of the extract file PCMAV-CLN.EXE, which ICON files are also placed on the Flash Disk Root. You can remove / delete the line "icon = PCMAV.ICO" is used to display the File ICON Icon PCMAV as a Flash Disk as the screenshot above. ICON reference line does not affect this process autorun. However, if you want PCMAV ICON, you can download it by clicking this link.
* Line-Inf line is you can modify your writing to suit the taste, which is the file path you are not wrong; file your goals are relatively cf.
* Do not Forget, to avoid file deletion so easily, it should hide File Anti Virus together with supporting library files (if any) and the file "autorun.inf" file is set with Attributes with its "hidden" and when the need to "system". Recommend one again, would that, all file Set File Attributenya to "Read Only" so that, simply, can not be changed.
For the purpose of setting file attribute these modifications you can do with the Select All files to be hidden, then right-click the file, select and click "properties", and check the check box "hidden. Are set to become a "system", you can use the Windows ATTRIB.EXE work in DOS environment, or you can also use the attribute Changer work environment that has a GUI. Q = Lho, a tool that does not ya? A = for the sake of convenience, use the attribute Changer ATTRIB.EXE when damaged / removed Virus / Admin and you are lazy to extract from the Windows CAB.
source:http://artikel-tentang-komputer.blogspot.com
0 comments:
Post a Comment