Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I am new to linux. I run the Fedora on my machine. I also have a copy of Knoppix-STD.
I have a friend who has a Windows XP laptop which has a virus. He let his Virus scan lapse.
I have checked on the Symantec website to find that the symptoms that he has are very common, such that there are 900+ viruses which it could be.
The main problem is that the laptop shuts itself off after about 60 seconds, so no Windows based scan would ever finsh completely.
Since I have a copy of this bootable version of linux, Knoppix STD I started thinking that perhaps I could utilize some bootable copy of Linux and then scan for/repair the virus? Is this known to be possible? It doesn't seem possible with the Knopper (Knoppix-std)
Sure it is. Knoppix-std includes the ClamAV antivirus application. You can boot the laptop with the knoppix-std cdrom (you may have to set the laptop BIOS to boot from the CDROM drive). Then mount the windows drive and use clamAV to scan for viruses (probably a good idea to update the ClamAV virus definitions before-hand).
Distribution: FreeBSD,Debian, RH, ok well most of em...
Posts: 238
Rep:
if it's just a simple virus like mydoom or whatever, boot into safe mode, run regedit and clean up whatever is trying to kick off in the "run" or "runonce"
then delete that file from the c: drive.
Symantec also has a boot floppy for this kinda virus....
It turned out the virus was the Sasser. I was unable to connect to the web through windows because of this infection, however I used the Knoppix STD to my advantage so that I could connect to the symantec site and retrieve the fix. I placed the fix on a Thumb drive and booted back into windows and made the fix.
I also browbeat the victim into renewing the virus subscriptions.
Another trick you could do is Type Shutdown -i 9999 at the run line on windows and this should give you time to download patches before getting disconnected. Also setting the RPC services recovery to restart will help keep you connected.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.