Skip to main content

Remove 'Shortcut Virus' and 'Automatically creating undeleteable Folder Virus' Without any anti-virus

Being a hosteler I can understand how capable is a computer virus in spreading like a plague in a society. Many people who do not have a deep knowledge about working of a computer feel helpless in front of such viruses even after having some paid anti-virus softwares.
Its time that we take matter into our own hands..

  • Open task manager as administrator. To do this you can open command prompt as admin by typing 'cmd' at the start menu and then right click and choose 'Run as Admin' and type taskmgr and press enter.
  • Go to processes tab and find a process 'wscript.exe'. It is a process which execute the scipts on your windows computer. Its presence shows that a script is running on your computer.
  • To delete a shortcut virus you need to end this wscript.exe process.
  •  Now go to My computer or windows explorer and click organize on top left corner, Go to folder options and then View tab, and click on 'Show hidden files' and UNCHECK 'hide protected OS files', click yes and Ok. This is because mostly all the virus files are hidden using system attribute.
  • Go to the drive which has stored your Windows files (generally C:/). Search for any file with .vbs extension, you can do this by searching '*.vbs'. The virus file would GENERALLY be named according to the name of folder being created or some useless name like asdfgdnjd or csdafdsacd etc. inside C:/Users/Username/AppData folder. Beware of interfering with any wrong file, if you are suspicious about one, google its name.
  • Once you find a suspicious file, right click on it and select 'open file location', You will be redirected to the folder which contain that file with another file with .exe extension. Permanently delete both .vbs and .exe file by pressing shift+del keys.
After deleting the virus file to be able to see the infected files you need to set the attribute of 'infected' files back to normal, for this:

  • Open command prompt as admin.
  •  Go to the path where the files were infected by typing 'cd pathname.
 For eg: cd f:/folder

  • Now type 'attrib *.* -s -h'  and press enter. This will convert all your hidden system files back to normal. If a folder or file is left you can use attrib folder/filename -s -h -r
  •  Now delete all the shortcuts from the location by using command del *.lnk
Any other query or suggestions are welcomed as comments.




Comments

Post a Comment

Popular posts from this blog

Testing React loader with React Testing Library

 I have came across this situation so many times where I need to write a unit test for a component pattern I have developed so many times that I can write the code with my eyes closed. BUT what about unit testing! That's something my mind thought is the best candidate to get rid of in order to store more cat memes. Even when these patterns are used almost everywhere and we write the tests for each one of them (I hope you do) but still we (it can't be just me) tend to forget them and get even more confused with those pesky `act` warnings. So I decided to curate a recipe book for some common unit tests which I come across and might be useful for future me. Happy to share the github repo and also would love to see if anyone has more such common unit testing patterns which they can add or suggest. https://github.com/Charchit26/react-testing-library-recipes Now, let's talk about the one I have coded a dozen times and still take half an hour to struggle with its unit tests - Load...
Post a Comment
Read more

Pair Programming - Is it really effective??

So, I have been working in a "strict" pair programming environment for about 5 months now and this is the first project of my career in which I have been subjected to sit with another person for the whole 8-9 hours of the day while I (or he) codes. Also I have been pairing remotely for half of those days (half of our team is at onshore). I learnt these practices and principles while working with another vendor for the same client in Sydney, Australia. Hence, I thought it will be a good idea to share my thoughts and experiences as well as point down the things which otherwise I have to re-iterate over and over for every person looking for advice from me before starting with this practice. Note: All the points that will be mentioned here going forward are from my own personal experience and specific to the project I worked in. Though I think most of the dev community who has worked in this setup would second my opinion. What is "pair programming"? Yo...
Post a Comment
Read more

Google I/O Extended Heads Up!

Hey, Do not forget to watch live streaming of Google I/O from anywhere in the world on June 25th and June 26th on  Google I/O Extended . I am expecting many new and exciting technologies this year from the "search giant". Who knows.. May be a new Android OS would be waiting for us!! ;) PS:  Google I/O  is an annual developer-focused  conference  held by Google in San Francisco, California. for more info about Google IO: Click Here
Post a Comment
Read more