Which ones are the viruses?

Ray Parrish crp at cmc.net
Sat Jan 3 17:36:14 UTC 2009 

Peter Hillier-Brook wrote:
> Ray Parrish wrote:
>   
>> Hello,
>>
>> I've been scanning my Windows drive to get rid of infections I picked up 
>> while unwisely participating in online surveys which paid me for my 
>> participation. I recently discovered through the use of a hosts file 
>> that these survey servers were serving trojans with the surveys.
>>
>> Now I'm trying to clean things up with calmav from within Ubuntu so the 
>> viruses aren't running while I'm scanning. Yesterday I ran a scan that 
>> took 5 hours, but unfortunately had set the options to "show all files" 
>> which output every file scanned to the output window of the virus 
>> scanner. When it was done I couldn't scroll through the 80,000 files 
>> scanned to find the infected ones, except for the one show last which 
>> was infected with Trojan CMOS Killer. It was in pagefile.sys and I had 
>> clamav delete it.
>>     
> [cut]
> Why don't you get hold of the Trinity Rescue Disc? It's a free-standing 
> ISO built on Debian and supports several AV programs, including AVG and 
> clamav. When run, it updates the AV to current status and I've found it 
> invaluable to clear up infections in my circle of friends and 
> acquaintances, those I haven't yet graduated to Linux :-)
>
> Peter HB
>
>   
I'll give a try at finding that with google here in a bit. I just 
remembered that clamav's log file contains the information about the 
things it thought were viruses and had a look at it.

It is saying that the the "file number limit exceeded" entries are the 
ones which it considers possible viruses. There are eight entries of 
this sort, and they are all pointing at my mail and newgroup folders 
which are huge since I've got mail saved up from the past 8 years.

I'm sure that this is a false positive, so I'm thinking I am now clean.

Thanks for all the answers everyone. Never, never, never respond to a 
spam email! That's how I got in this trouble in the first place, I got 
an email about making money by taking online surveys, and decided to 
give it a try. That is a mistake I will never repeat.

Later, Ray Parrish

-- 
http://www.rayslinks.com/ Web index of human reviewed links.
<http://www.rayslinks.com/Troubleshooting%20and%20fixing%20Windows.html>
Trouble shooting and Fixing Windows
http://www.writingsoftheschizophrenic.com My poetry in web pages

More information about the ubuntu-users mailing list