Overclock.net › Forums › Software, Programming and Coding › Operating Systems › HOW TO: Remove a Virus in Windows using Linux
New Posts  All Forums:Forum Nav:

HOW TO: Remove a Virus in Windows using Linux - Page 3

post #21 of 24
Quote:
Originally Posted by StupidMonkey View Post

Setting to root 1st avoids SUDO and thus one less step. Thanks for the verification!
erm, I was saying you DONT need root to run the scan so I haven't a clue where you got the impression I was 'sudo'ing the scan as that would still be running it as root. rolleyes.gif

Plus, I'm really not sure where you got the idea that sudo is more effort anyway. logging in as root is two additional commands as opposed to prefixing sudo, which is no additional commands.
Quote:
Originally Posted by StupidMonkey View Post

The command of -r tells clamav to remove said files automatically upon scanning... and you get a summary at the end of scanning. If they are new to this at all, then a log file gives them nothing of value. A simple summary is sufficient. "6 bazillion files scanned, 6 Viruses Found, 6 Viruses Removed" is peace of mind. Putting it in /var/log/clam puts it out of sight and out of mind, but leaves it there for the curious, and is gone upon ejection of the liveCD. No cleanup, no mess, no after thought. Easy Virus Go Bye-Bye = Goal.

-r is recursive (which you would need as well). It has nothing to do with deleting files. What you'd want would be --remove=yes (which is a dangerous option to have anyway).
Also if you wanted a more user friendly summary then you should have added -i to only output infected files.

So if you wanted all of the above, then your command would actually look like:
Code:
clamscan -ril /path/to/log --remove=yes

Also, being a live CD, /var/log is still volatile ramdisk - just as /home/ is. So in this instance there's no benefit in putting it in /var/log/ as you're just adding additional hurdles for users who might want to see the log file (though I do agree that's best practice to use /var/log/ on static systems).
Edited by Plan9 - 2/2/12 at 2:26am
post #22 of 24
This work using vmware too ?
My System
(17 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500K Asus P8Z68-V Gen3 Gigabyte r9 280x Kingston HyperX blu DDR3 8GB 1600 Mhz CL9 
Hard DriveHard DriveCoolingOS
WD 640GB Blue Vertex 3 240 GB Thermalright Silver Arrow Windows 7 x64 Ultimate 
MonitorPowerCaseOther
Dell 2209wa LC Arkangel 850W Enermax Chakra Sennheiser HD 598 
Other
Creative X-FI Titanium 
  hide details  
Reply
My System
(17 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500K Asus P8Z68-V Gen3 Gigabyte r9 280x Kingston HyperX blu DDR3 8GB 1600 Mhz CL9 
Hard DriveHard DriveCoolingOS
WD 640GB Blue Vertex 3 240 GB Thermalright Silver Arrow Windows 7 x64 Ultimate 
MonitorPowerCaseOther
Dell 2209wa LC Arkangel 850W Enermax Chakra Sennheiser HD 598 
Other
Creative X-FI Titanium 
  hide details  
Reply
post #23 of 24
Thread Starter 
Quote:
Originally Posted by Weedvender View Post

ok. now what happens when removal of virus kills the internet.

This just happened to me when doing such on a Vista computer. Following my advice of DLing drivers from the linux side still did not help. I'm in the process of fixing this Vista junk, and it seems more and more like its Vista that is the problem and nothing else. If I figure out a solid answer, I will post my results.

Current results thus far:

System Restore = no
Driver reinstall = no
FlushDNS = no
IP reset = no
Wireless drivers = no
Ethernet card drivers = no
reinstall the removed 'MIRAR' virus = yes (but not an option!)
safemode w/ networking = no
manual IP config = no
manual DNS config = no
reinstall vista = yes, sadly...
Edited by StupidMonkey - 2/27/12 at 3:20am
    
CPUMotherboardGraphicsRAM
AVC PENTIUM 4 DUAL CORE HSF Z9H741K011 EVGA 680i SLI 2x NVIDIA GEFORCE 8800GT 512MB PCI-E REV 1 (SLI) 4x WM552/XG691 HYNIX 1GB DDR2 PC2-6400 JEDEC STD 
Hard DriveOptical DriveOSMonitor
2x SEAGATE HDD 250GB SATA 7200RPM 16MB (Raid0) LG 20X DUAL-LAYER DVD RE-WRITER NON-LIG XP-MCE/Mint 11 KDE 50 inch Samsung DLP HDTV 
KeyboardPowerCaseMouse
MS Wireless BT 7000 1 KILOWATT OEM ATX PSU FULL-TOWER BLUE CASE 2.0B MS Wireless Laser BT 8000 
Mouse Pad
Alienware Big Head 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
AVC PENTIUM 4 DUAL CORE HSF Z9H741K011 EVGA 680i SLI 2x NVIDIA GEFORCE 8800GT 512MB PCI-E REV 1 (SLI) 4x WM552/XG691 HYNIX 1GB DDR2 PC2-6400 JEDEC STD 
Hard DriveOptical DriveOSMonitor
2x SEAGATE HDD 250GB SATA 7200RPM 16MB (Raid0) LG 20X DUAL-LAYER DVD RE-WRITER NON-LIG XP-MCE/Mint 11 KDE 50 inch Samsung DLP HDTV 
KeyboardPowerCaseMouse
MS Wireless BT 7000 1 KILOWATT OEM ATX PSU FULL-TOWER BLUE CASE 2.0B MS Wireless Laser BT 8000 
Mouse Pad
Alienware Big Head 
  hide details  
Reply
post #24 of 24
Thread Starter 
Quote:
Originally Posted by StupidMonkey View Post

This just happened to me when doing such on a Vista computer. Following my advice of DLing drivers from the linux side still did not help. I'm in the process of fixing this Vista junk, and it seems more and more like its Vista that is the problem and nothing else. If I figure out a solid answer, I will post my results.
Current results thus far:
System Restore = no
Driver reinstall = no
FlushDNS = no
IP reset = no
Wireless drivers = no
Ethernet card drivers = no
reinstall the removed 'MIRAR' virus = yes (but not an option!)
safemode w/ networking = no
manual IP config = no
manual DNS config = no
reinstall vista = yes, sadly...

OK, I tried about 100 million things and the only (legal) option that worked like a champ was with the vista CD. If anyone knows how else to do it, post it up.
    
CPUMotherboardGraphicsRAM
AVC PENTIUM 4 DUAL CORE HSF Z9H741K011 EVGA 680i SLI 2x NVIDIA GEFORCE 8800GT 512MB PCI-E REV 1 (SLI) 4x WM552/XG691 HYNIX 1GB DDR2 PC2-6400 JEDEC STD 
Hard DriveOptical DriveOSMonitor
2x SEAGATE HDD 250GB SATA 7200RPM 16MB (Raid0) LG 20X DUAL-LAYER DVD RE-WRITER NON-LIG XP-MCE/Mint 11 KDE 50 inch Samsung DLP HDTV 
KeyboardPowerCaseMouse
MS Wireless BT 7000 1 KILOWATT OEM ATX PSU FULL-TOWER BLUE CASE 2.0B MS Wireless Laser BT 8000 
Mouse Pad
Alienware Big Head 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
AVC PENTIUM 4 DUAL CORE HSF Z9H741K011 EVGA 680i SLI 2x NVIDIA GEFORCE 8800GT 512MB PCI-E REV 1 (SLI) 4x WM552/XG691 HYNIX 1GB DDR2 PC2-6400 JEDEC STD 
Hard DriveOptical DriveOSMonitor
2x SEAGATE HDD 250GB SATA 7200RPM 16MB (Raid0) LG 20X DUAL-LAYER DVD RE-WRITER NON-LIG XP-MCE/Mint 11 KDE 50 inch Samsung DLP HDTV 
KeyboardPowerCaseMouse
MS Wireless BT 7000 1 KILOWATT OEM ATX PSU FULL-TOWER BLUE CASE 2.0B MS Wireless Laser BT 8000 
Mouse Pad
Alienware Big Head 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Operating Systems
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › HOW TO: Remove a Virus in Windows using Linux