[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


shortcut virus

Posted on 2011-05-03
Medium Priority
Last Modified: 2013-11-22
how do I get rid of the shortcut virus on my flash drive and computer
Question by:WIETIE

Expert Comment

ID: 35515766
LVL 30

Accepted Solution

Thomas Zucker-Scharff earned 1000 total points
ID: 35516102
Also for External drives you should be doing a couple of things.  

disable Autorun: http://support.microsoft.com/kb/967715 (you can use the fix it for me links)
Use a vaccine program like USB-Set: http://www.geekstogo.com/forum/files/file/378-usb-set/
(this will disable autoplay for all devices now and that you ever attach to your computer, if you set it correctly)

Note that the autorun/autoplay vector was the PRIMARY spreader of malware in 2010.
LVL 47

Assisted Solution

rpggamergirl earned 1000 total points
ID: 35688253
If it's just to clean the flash drive use Flash_disinfector.exe.

and save it to your desktop.
Double-click Flash_Disinfector.exe to run it and follow any prompts that may appear.
The utility may ask you to insert your flash drive and/or other removable drives etc. Please do so and allow the utility to clean up those drives as well.
Wait until it has finished scanning and then exit the program.
Reboot your computer when done.

Flash_Disinfector also creates a bogus folder "autorun.inf"(harmless autorun.inf) in the root of every partition to prevent loading point from getting created when an infected USB is inserted which should stop the spread.

To clean the system you can use your resident AV or use ComboFix and post the log here.
Please download ComboFix by sUBs:

STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
Double click combofix.exe & follow the prompts.
When finished, it will produce a log. Please save that log and attach it in your next reply.
Do not mouse-click combofix's window while it is running. That may cause it to stall.

ComboFix tutorial:

OR do you mean a .lnk virus also known as Stuxnet? If so, try these also:

STUXNET Scanner, A forensic tool:

BitDefender Free removal tool for STuxnet:

MSE is supposed to detect and remove Stuxnet:

USB worm exploits Windows vulnerability.
LVL 38

Expert Comment

ID: 35937180
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It started not too long ago. It was at first annoying. My keystrokes seemed to be randomly generated, not the ones I typed on the keyboard. For some reason this only happened in certain applications (especially browsers such as IE11, Firefox and Chr…
Many people tend to confuse the function of a virus with the one of adware, this misunderstanding of the basic of what each software is and how it operates causes users and organizations to take the wrong security measures that would protect them ag…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question