How to Use CMD to Remove Virus from Any Drive in Windows 10

Jean updated on Sep 16, 2019 to Resource | How-to Articles

Summary

This guide describes how to use cmd to remove the virus from an infected USB drive, SD card, pen drive and more on a Windows 10 computer. The cmd syntax is explained so you can understand the commands you are entering into the command prompt, if you wish to know. After removing the virus with cmd, don't forget to download EaseUS data recovery software to see if the virus has deleted or hidden any files.

 Download for PC Download for Mac
PAGE CONTENT:
What damage a virus could do to you
General knowledge about commands
How to remove/delete virus using CMD in Windows 10/8/7
More tips for virus removal/dt>

What damage a virus could do to you

We loathe computer viruses, undoubtedly. But do you know exactly how viruses can damage your computer? There are many types of viruses, and they behave in many different ways. To sum it up, a computer virus is simply a type of program that causes your computer to act in an undesirable way. It can be a dangerous infiltration designed to drag your computer down, erase very important files, track your habits, or gives hackers access to your personal information...

what damage can a computer virus cuase

Viruses are a great nuisance. Some viruses like the Locky virus and CryptoLocker, also known as ransomware; delete computer files, encrypt them, even change the file extension to .locky or .encypt. Other viruses hide files and leave users with nowhere to unhide them. If you happen to be a victim who's looking for .locky file recovery or .crypt file recovery, then click the link.

General knowledge about commands

On this page, we're going to offer you solutions to remove viruses from your USB drive, memory card, in fact, any drive in a Windows 10 computer using the Command Prompt (cmd). In order to remove a viruses using cmd, we will use a famous cmd command called the 'attrib' command. First, we'd better have some understanding about the commands we'll be using.

Here are the basic attributes of the 'attrib' command:

R – represents the "Read-only" attribute of a file or folder. Read-only means the file cannot be written on or executed.
H – the "Hidden" attribute.
A – stands for "Archiving" which prepares a file for archiving.
S – the "System" attribute changes the selected files or folders from user files into system files.
I - "not content indexed file" attribute.

"attrib" Syntax:

ATTRIB [+ attribute | – attribute] [pathname] [/S [/D]]

In the above command, let's see what the different parameters and switches are:

'+ / –': To enact or to cancel the specified attribute.
'attribute': As explained above.
'/S': Searching throughout the entire path including subfolders.
'/D':  Include any process folder.
'pathname': Path where the target file or folder is located.

Here is the proper syntax order for attrib command:

ATTRIB [+R | -R] [+A | -A ] [+S | -S] [+H | -H] [+I | -I] [drive:][path][filename] [/S [/D] [/L]]

Warning
Be careful while using the Command Prompt. Improper use of cmd can result in system damage.

How to remove/delete virus using CMD in Windows 10/8.1/8/7

Here is an example of how to transfer an 'autorun.inf' virus from my USB drive to my D: drive and delete that virus from my D: drive. And you can follow for a try now:

use cmd to remove virus in Windows 10

Step 1. Open Command Prompt from search and run as an administrator.

Step 2. Type: D: and press Enter.

Step 3. Type: attrib and press Enter. You'll see autorun.inf virus files listed.

Step 4. To remove the virus using CMD, type into your command prompt: attrib -r -a -s -h *.* and press Enter. This will remove the Read Only, Archive, System and hidden file attribute from all the files. (*.* for all the files with all different types of file extensions).

Step 5. Type: del autorun.inf and hit enter to delete the files.

If you are infected with other viruses, replace autorun.inf with other virus extensions such as *.ink or *.exe so to respectively delete those suspicious files.

Manual input of the command line is suitable for computer professionals since wrong commands can cause more severe problems. Therefore, for security and usability, we strongly recommend you try an automatic command line alternative. EaseUS Tool M is a practical tool that enables you to check and fix files system error, enable/disable write protection and system update with one-click instead of typing intricate command lines.

Follow the simple steps below to show hidden files with this 1-click-fix software. 

Step 1.  DOWNLOAD EaseUS Tool M for Free.

Step 2. Start EaseUS Tool M, choose "File Fixing" on the left pane. Next, choose the target drive and keep the "Show hidden files." selected. Then, click the "Fix" button to start the progress.

show hidden files - step 2

Step 3. After the operation completes, click the View button to check the hidden files. 

show hidden files - step 3

More tips for virus removal

Don't forget to use a data recovery tool in case the virus deleted or hid your important files on USB and other drives. Using commands can only help remove the virus but can do nothing to restore damaged and lost files. EaseUS file recovery software is able to complete virus file recovery in just three steps.

 Download for PC Download for Mac

Learn the 3-step file recovery in this video guide.

 
 

100% of people found this article helpful.

 

Frequently Asked Questions

1. Why cannot I recover 2GB data for free?

It is recommended to check the version installed is Free or Trial because they are different versions.

Trial has data preview function but cannot save any files, while the Free version enables to recover 2 GB files. The default free space is 500 MB and you may share the product on social media to get another 1.5 GB.

2. Why cannot the recovered files be opened?

A file is saved as 2 parts on the storage device: directory info (which is comprised by file name, time stamp and size info, etc.) and data content.

If the files with original file names and folder structures cannot be opened, one possible reason is the corrupted directory info. There is still a chance to recover the data content with the RAW Recovery method in our software.

3. Why isn't it suggested to recover the files back to the original drive?

The storage structure of the lost files would be altered or damaged by any changes on the drive. If you save the recovered files back to the same drive, the original data structures and data content would be corrupted or overwritten, which causes permanent data loss. So you should prepare another disk to save the files.

4. How can I check whether my data is recoverable or not before purchase?

The Free version helps you save 2GB files to better verify the recovery quality of our product before purchase.

5. How long does it take to scan the drive?

It strongly depends on the capacity of your hard drive and the performance of your computer. As reference,most drive recoveries can be completed in around 10 to 12 hours for a 1-TB healthy hard drive in general conditions.

Related Articles

About Data Recovery Wizard

It's super easy to recover 250+ types of files after deletion, disk formatting and virus infection. Click the links and compare the difference of each version.

Win Version Mac Version
SHOP EaseUS
DOWNLOAD CENTER
EaseUS Freeware
Free Data Recovery Software
Free Backup Software
Free Partition Manager
Support
Knowledge Base
Retrieve My Code
Contact Support Team
My Account
Discover EaseUS
Company
Partner
Contact Us
Mobile Solution
iPhone Recovery
Android Recovery
iPhone Data Transfer
User Guide
Data Recovery Wizard
Todo Backup
Partition Master
How-to Articles
PC Data Recovery
Mac Data Recovery
Data Recovery Resources
Data Recovery Solutions
Backup & Restore Solutions
Partition Manager Solutions
United States (English)

Copyright ©   EaseUS. ALL RIGHTS RESERVED.

Privacy Policy | License Agreement | Terms & Conditions | Uninstall | Backup Utility | Partition Master Solution