~~ODT~~
voir l'article original
Often, even if we do catch a virus, it's not so difficult to eradicate it using installed antivirus—but if your system has been crippled, try using Linux to scan the drive for viruses instead.
As any Linux veteran knows, one of Linux's greatest uses is fixing unbootable drives—recovering files, deleting files, and even killing viruses. For those of you that aren't quite as well-versed in Linux, technology blog gHacks has a tutorial for doing just that, though we recommend a few tweaks to their process.
If you have another machine already running Linux, as gHacks suggests, then you'll have a pretty easy time with this ; all you need to do is install some antivirus, hook the infected drive into your Linux machine, and go to town.
However, we know that not everyone has an extra Linux machine just floating around ; so we recommend using a Live CD with antivirus pre-installed, or, even better, a live USB stick on which you can install antivirus yourself (the USB solution is likely easier in the long run, since I have yet to find a Linux Live CD with a GUI-based antivirus program pre-installed).
You'll have to make the live USB yourself, but this is a pretty easy process using previously mentioned Ubuntu Live Creator or UNetbootin.
However, these require a working Windows computer, and if your only PC is the infected one, you'll have to download, burn, and boot from the Ubuntu Live CD (available here), and under System > Administration, use their easy-to-use Live USB creator.
After making the Live USB stick, boot into it (you may have to set your boot priority in your BIOS, directions for which can be found in step 2 of this post), and install antivirus on it.
gHacks recommends F-Prot, but if you don't want to buy a copy of F-Prot just for this, all of our Hive Five antivirus favorites have Linux versions, and open-source favorite ClamAV (pictured above) is available from Synaptic Package Manager (along with the Clamtk GUI for it ; just search for clamav and clamtk in Synaptic [available under System > Administration] and install both packages). Start it up from Applications > System Tools, set it to scan your Windows drive and you're good to go.
Note that if your BIOS does not support booting from USB, you'll need to make a boot disk that allows it to—which, unfortunately, requires a bit of command-line-fu, and then you're right back where you started with the command-line-requiring Live CDs. If you know of any Linux Live CDs that contain an Antivirus program with a GUI, let us know in the comments!
voir l'article original (Author: Jack Wallen)
Recently I came into a client who had a Windows XP machine that contained a nasty little virus that rendered the machine nearly unusable. When the machine would boot the CPU was pegging out at 100%, causing the GUI to be nearly unresponsive.
I attempted to run AVG, Avast, Malwarebytes – but all for naught. The machine was so slow it seemed as if installing a simple anti-virus tool was going to take me an entire 40 hour work week. So I opted for a different approach. Instead of allowing Windows to boot, I decided it was time take advantage of my good old friend, Linux! That’s right, Linux can scan a Windows machine for viruses, and it does it quite well. And in this article I am going to show you a quick way to achieve this.
Amidst all the simplicity you will enjoy with the Linux scanning, there are a few things you will need. First you need to remove that drive from the Windows machine. That’s right, we’re going to attach it to the Linux machine and do a scan of this now “external” drive. I prefer to use a tool that allows me to attach the drive such that the drive is attached to the machine via USB.
You will also want to have a modern instance of Linux up and running. The machine can already be on. In fact, it’s better if it is.
You will also need to install an anti-virus on Linux. http://www.f-prot.com/download/home_user/ is an outstanding choice.
The first thing you need to do is connect the infected drive to the Linux machine. Depending upon your distribution, an icon should appear on your desktop. If it does, double click that icon so to ensure the drive mounts. Now check to where that drive mounted (most likely in /media ). What you will now do is use your Linux scanning tool to scan that mounted drive.
Let’s say you are using F-Prot. To run this scan you would issue the command:
fpscan –disinfect /media/DISK
Where DISK is the mount point of your disk.
This will scan that drive and disinfect it. Understand that if one scanner doesn’t locate the infected files you might want to run a different scan. You can use ClamAV for email-based viruses (Check out my article “ Scan your Linux machine for viruses with ClamTK ” for using a GUI front end for ClamAV). NOTE: I will be doing an article on installing and using Avira Antivir on Linux this week.
Hopefully one of your anti-virus tools will have caught the culprit and either quarantined or removed the virus. Once you are done with the scan, make sure you unmount the “external” drive before you remove the hardware.
After the hard drive is off the Linux machine, re-install it to the Windows machine, and boot up. Hopefully you are good to go.
You probably never thought you would need any anti-virus on a Linux machine. Well, if your Windows machine has become unusable you have found the perfect use for such a combination. And remember, if you are using Linux for your mail server, you should certainly have anti-virus installed.