McAfee will send another SNS notice when the Stinger is available. A new version of Stinger will be available later. McAfee has released an Extra.DAT to detect and clean this threat. This threat has the ability to download other malware or updates to itself as directed by a Command-and-Control (C&C) server. The infection starts either with manual execution of an infected file or by navigating to a folder that contains infected files. What are the special cases? Well, you might be facing issues with Linux on NTFS dirty partitions, this is where Windows environment does good job.W32/-h has the ability to infect removable media devices and mounted network shares. Recommended for advanced users only, I would recommend BartPE in special cases only (do not start with BartPE). – virusscan script should allow to SCAN ONLY / DISINFECT / DELETE virus option for each AV engine (not sure if this is possible)Ĭommand line scan is not as easy to follow as GUI but does it’s job – at the time of writing this AVG did not work (looks like AVG changed the scanning engine and newest trinity ISO 3.3 did not reflect the changes yet) – downloaded ISO did not have latest virus signatures (this is by definition, trinity is universal wrapper for multiple AV engines) – offers command line console only (no graphical interface) – there should be a message “type trkhelp for detail documentation” after you boot from CD (not everybody is a pro or users this CD every day) + has tons of additional tools (my favorite is SAMBA) + very good documentation (type trkhelp in the command line) + allow virus signatures update over network + automatically updates virus signatures before scanning + multiple antivirus engines (ClamAV, BitDefender, F-prot, AVG) + allows SCAN ONLY / DISINFECT VIRUSES / DELETE VIRUSES (depending on the engine you select) Trinity is actually not Antivirus CD created by one AV company, it is Bootable Linux CD with easy to start 4 free available antivirus scanners. boot from CD (I recommend to put CD in the tray, turn off PC, then turn it back on – don’t do just reboot from windows) make sure the boot sequence is set to CD-ROM then HARD DRIVE in BIOS (see below)Ĥ. download ISO of the antivirus engine (see links below)ģ. My personal choice is Trinity for it’s flexibility and multiple AV engines.ġ. So who is the winner? If you are dummy user, I would start with AVIRA or DrWeb – it offers very simple interface and it’s kinda hard to screw. Some Antivirus packages are very simple scanners only, some allow additional tasks like fixing registry or transfering data from infected PC over the network. TRINITY needs internet connection no matter how fresh the CD is (this is by design). I found one exception – F-SECURE allows to boot from CD and load virus definitions from USB stick. In general you should to use the CD right away or the PC should be connected with ethernet cable to the internet to receive newest virus signaures (wireless can work in some cases but requires some linux knowledge). You should be prepared to create several CDs instead of relying on one AV only. There are several free Bootable Antivirus CDs out there, however they do not work always as they could or should.In general I found more issues on old laptops when the CD froze during boot, during scan or did not recognize NTFS partition (older the laptop, more issues you will face). Luckily Linux improved and can boot easily from CD or USB stick and can even read-write to NTFS partitions. I remember back in the old days of MS DOS 3.0 it was pretty easy to built bootable floppy disk. This prevents virus from loading during boot on infected machine and makes the scanning easier (viruses usually try to hide when loaded in memory). Boot from external device and then scan hard drive. Please note this article was published in May 2009 and is outdated, some links below might be broken
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |