Re: I have a big problem
a) First, if you can don't use the infected Linux for cleaning but
boot from a rescue-system.
b) Maybe try to generate a list of files that are infected. Have a
look if only a limited number of files or files from a certain number
of packages have been infected.
c) Try to re-install those packages by force, overwriting the
infected files.
d) Scan again and again during reinstallation of packages.
Should be pretty straight-forward. Good luck,
Stefan
On 8 Mar 2004 at 5:38, dj-cristi@dj-cristi.us wrote:
> > > Pls tel me where can i find a Unix/RST.B Antivirus
> > > because i have been infected by that virus and i
> have
> > > big important documents on my box . Pls send me some
> > > help ..
> > > ---------------------
> > > [root@onodera f-prot]# ./f-prot /* -disinf
> > > Virus scanning report - 7 March 2004 @ 15:54
> > >
> > > F-PROT ANTIVIRUS
> > > Program version: 4.4.0
> > > Engine version: 3.14.10
> > >
> > > VIRUS SIGNATURE FILES
> > > SIGN.DEF created 5 March 2004
> > > SIGN2.DEF created 5 March 2004
> > > MACRO.DEF created 1 March 2004
> > >
> > > Search: /bin /bkup /boot /dev /etc /home /initrd
> /lib
> > > /lost+found /misc /mnt /opt /proc /root /sbin /temp
> > > /tftpboot /tmp /usr /var
> > > Action: Disinfect/Query
> > > Files: "Dumb" scan of all files
> > > Switches: -ARCHIVE -PACKED -SERVER
> > >
> > > /bin/ping Infection: Unix/RST.B
> > > Disinfect (Y/N/A/Q) ?
> > > y
> > > Yes
> > > Unable to remove the virus.
> > > ----------------
> > > i have install F-prot on the machine and without any
> > > succes .. pls help me whit something...
Reply to: