A20.4 Virus Protection
Level of expertise required for this Chapter: Intermediate
Virus is a permanent threat to all computer systems, but there are very good and efficient virus protection tools available on every level. The antivirus protection recommended with LUPMIS is Avira AntiVir. Download the latest version (from www.avira.com) and install it in your system (with daily update and weekly scanning as default).
Technical note: The system is positively tested with Avira for many years. We recommend Avira. There are known conflicts between Avasta and xampp. If you have Avasta installed, un-install it and install Avira.
- - - - -
1) Scan regularly (e.g. once a week)
The scan can be set to automatical or can be started manually (by 'Scan system'). This will run through various checks:
- Scanning hidden objects
- Scanning registry
- Scanning files
'Last detection' should show: No detection
If the scan shows any detections, suspicious files or warning, 'Apply' and run the scan again. Before you repeat a virus scan, better disconnect from the Internet (disconnect cable and/or turn wireless feature off).
The scan might take long time (1-8 hours).
- - - - -
2) As of early 2011, a virus is floating around, which changes folders to files and makes them un-usable. This virus affects all data on your USB memory stick (pen drive).
1. Run the latest AntiVir and get rid of the virus.
2. Still, you have to recover all folders (and files):
3. Get into command line level: At the windows circle bottom left, click and at 'Start Search' type: cmd
4. Type: attrib -h -r -s /s /d G:*.* (where G is the drive letter for the memory stick)
5. Wait a few minutes
6. If you have man *.lnk files but are sure, that you have recovered all files you want, you can delete these lnk files: Type: del G:*.lnk (where G is the drive letter for the memory stick)
- - - - -
3) If this fails and you still have all the lnk files, try following approach:
1. Go to command line level: Search for 'command', and enter 'Command Prompt'
2. In the (black) command level window, log to the drive of the external, infected pen drive, e.g. 'G:'
3. Type: attrib *.* and you should see a listing of many files, possibly with letters AHRS at the left side
4. To remove these letters (file attributes), type: attrib -A -H -R -S *.*
5. Repeat step 3. All letters AHRS should be removed.
6. In Windows Explorer, that you can access these files.
7. Back to command line level: Type: del *.lnk
8. All should be fine. Check again with scanning the pen drive with AntiVir.
- - - - -
4) As of November 2013, a new type of 'virus' is coming in: ADWAR. Some might argue, this is not a virus, but just a malware. Nevertheless, it should be removed from the system.
1. Disconnect from the internet (unplug the cable from the network or set the wireless connection off).
2. Scan as many time as necessary, till no detections or suspicious files are found anymore.
3. Run at least once, but not as the last one, a scan in Windows safe mode.
3. Defragment after cleaning.