• Status: Solved
  • Priority: High
  • Security: Public
  • Views: 99
  • Last Modified:

getting rid of viruses

i work in a school that is famous for getting viruses especially the shortcut virus. i recently got a virus that was actually deleting files from people flash drive and even trying to run cmd to see if it was just hidden have proven to be futile

we have plenty computers that do not have internet access so i was wondering is it possible to like have a flash drive that has antivirus installed in it which you can plug in and get rid of viruses without having to worry about anything happening to your flash drive?

Any way to do this ?
0
brian ramdhan
Asked:
brian ramdhan
  • 4
  • 4
  • 3
  • +2
4 Solutions
 
timgreen7077Exchange EngineerCommented:
Yes. there is portable antivirus software which doesn't require to be installed and can be run from a usb flash drive. perform a Google search for portable antivirus software. see the options available and what would work for you but it can be done. I used it alto when I was a computer tech.
1
 
Hello ThereSystem AdministratorCommented:
https://www.geckoandfly.com/9751/free-portable-antivirus-software-microsoft-safety-scanner/

The link above provides a list of portable antiviruses.
Personally I recommend Kaspersky. We use it and it usually have a great virus detection.

But you can still run Windwos Defender (if you use Windows 10 devices). Defender is built-in and for free.
The best practice is to have antivirus installed in environment like school, work etc.

Steps to do if you are infected:
1. If possible, disconnect from the Internet.
2. Enter the Safe Mode and run Disc Cleanup or anything that deletes all your temp files.
3. Still in Safe Mode... run all necessary scans. Deep scans!
Some free tools: Kaspersky TDSSKiller for removing rootkits, Malwarebytes and HitmanPro for removing malware, AdwCleaner for removing adware.
4. Try to remove all 'unknown publisher' apps as well as recently downloaded files. Also uninstall Google Chrome and delete all its files manually, if they remain. (All Chrome data in %APPDATA% folder)
5. If nothing helps, you should consider reinstalling your OS.
0
 
RaminTechnical AdvisorCommented:
First Suggestion:
If there is any Boot sector Virus on the boot sector of hard disk of those PCs then you need to do something more.
I think the best Option is to detach an infected hard disk and attach it to a clean PC with an updated antivirus software, then scan that hard disk and do the same for all hard disks.

Second Suggestion:
Boot sector Viruses can easily run in safe mode and can infect your flash drives. so you need a more powerful method, you need a Bootable Antivirus on a DVD / flash drive to boot your system from it ( to make sure Virus is not loaded), and then scan those PCs.
0
How do you know if your security is working?

Protecting your business doesn’t have to mean sifting through endless alerts and notifications. With WatchGuard Total Security Suite, you can feel confident that your business is secure, meaning you can get back to the things that have been sitting on your to-do list.

 
Sam Simon NasserIT Support ProfessionalCommented:
whats your antivirus products, is it centrally managed or standalone? as mentioned by Hello There, we use Kaspersky in Our university. We Use Kaspersky Management Kit to control the computer, updates delivery, and most important, POLICIES. for example, we have active policy that whenever someone plugs a usb drive, Kaspersky automatically starts scanning it, and the default action is delete. user cannot abort or stop the scan.
By this policy we minimized our infected pc ALOT through drive scanning.

Hope this helps, you have many antivirus suite that are managed like Symantec, kaspersky and others.
0
 
Hello ThereSystem AdministratorCommented:
@Sam
Since the new version was released users can abort the scan.
0
 
Sam Simon NasserIT Support ProfessionalCommented:
hello there,
you must have the kaspersky agent is connected to the kaspersky kit, and then you protect it with password. so users can't change the settings, policies stop scan or even uninstall it. here image from my computer
1.png
0
 
Hello ThereSystem AdministratorCommented:
Oh boy, I could teach you. Password protection won't prevent users from doing this since KSC 10.4.343 and KES 10.3.0.6294. Users can skip quick scan of removable device unless you install patch via Kaspersky Company Account (also confirmed by Kaspersky employee).
0
 
Sam Simon NasserIT Support ProfessionalCommented:
well, i cant argue with you about this since i'm not the one responsible for admin kit task :D i'll inform my colleague. thanks for the tip.
0
 
brian ramdhaniCT Technician Author Commented:
As I said before. We have some computers that do not have internet by them which is the main ones I want to clean.

The others use security essentials which seem to work good.

If I install a portable antivirus in a flash is there the possibility that as soon as I plug it in; it will also be infected and thus of no use to me ?
0
 
timgreen7077Exchange EngineerCommented:
I guess anything is possible but that gas never happened to me when I plugged a portable antivirus.
0
 
brian ramdhaniCT Technician Author Commented:
Just curious as to which av you used portable ?
0
 
timgreen7077Exchange EngineerCommented:
I used  "Spybot - Search & Destroy Portable"
I liked it alot.
1
 
Hello ThereSystem AdministratorCommented:
If something... use Kaspersky TDSSKiller Portable.
1
 
RaminTechnical AdvisorCommented:
If I install a portable antivirus in a flash is there the possibility that as soon as I plug it in; it will also be infected and thus of no use to me ?

Yes for sure.  only if you turn your PC off, insert a flash drive (bootable Antivirus not portable Antivirus) and boot from bootable antivirus on that flash drive will protect you against that virus. because you don't let it to boot and boot your PC from that flash drive.
0
 
timgreen7077Exchange EngineerCommented:
You don't install a portable, all the files are on the flash drive. it's not installed, that's why it's called portable. you execute from the flash, no installation.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Microsoft Exchange Server

The MCTS: Microsoft Exchange Server 2010 certification validates your skills in supporting the maintenance and administration of the Exchange servers in an enterprise environment. Learn everything you need to know with this course.

  • 4
  • 4
  • 3
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now