| Removable disk drives like USB flash drives make it | | | | 7. |
| easier to carry large files. Unfortunately, removable | | | | |
| drives are also one of today's most common | | | | 1. Create a new folder in the root directory of the |
| infection vectors for malware. | | | | removable disk and rename it as "AUTORUN.INF." |
| Worm Writers Getting Smarter | | | | 2. Create four more folders in the same location and |
| Seeing as malware writers are constantly finding new | | | | name them as "recycle," "recycler," "recycled," and |
| infection tactics, you should exert extra effort to | | | | "setup" respectively. (Note: Creating folders recycle, |
| avoid malware from getting into your computers. | | | | recycler, recycled and setup is optional but |
| One such way is to use the Autorun feature. Worms | | | | recommended since malware often use these names |
| typically create an AUTORUN.INF file, which enables | | | | titles.) |
| the malware to automatically run on the system | | | | 3. Open a command prompt (cmd.exe) and go to the |
| even without the user's intervention. As such, | | | | root directory of your removable drive. |
| creating a folder or file and renaming it as | | | | 4. Set the folder attributes using the following DOS |
| AUTORUN.INF can ideally prevent worms from | | | | command: attrib autorun.inf /s /d -a +s +r |
| infecting in this manner. | | | | 5. Set the privilege level of the folder using the |
| However, this method is not perfect. Worms can | | | | following DOS command: cacls autorun.inf /c /d |
| delete the existing AUTORUN.INF file or folder, and | | | | administrators |
| then replace it with a malicious version, negating the | | | | 6. Select 'Y' and press enter when the message, 'Are |
| protection in the process. Still, it is better to use file | | | | you sure (Y/N)?' appears. |
| permissions to restrict possible changes. | | | | 7. To test it, try to delete, modify, rename, copy, or |
| Malware-Proof Your Removable Drive | | | | open the created folder. If you cannot perform any |
| To put these preventive measures into place, simply | | | | of these functions, then the procedure is successful. |
| follow the steps below. Make sure that your external | | | | You may also try using the external switch found on |
| drive is formatted using NTFS, since this procedure | | | | some removable drives, which prevent them from |
| uses a specific feature of NTFS. If your removable | | | | being written on. These bits of information could go a |
| drive is formatted using either FAT or FAT32, BACK | | | | long way in providing maximum protection to your |
| UP any data on the said drive then reformat to | | | | removable drives against malware. |
| NTFS. This may require Windows Vista or Windows | | | | |