Mar 30, 2012

Linux thật là ngon

Hôm vừa rồi em USB về quê, cắm vào 1 máy tính ở UBND xã, thế là dính
con worm này luôn.
Mình phát hiện ngay lúc đó, hỏi cán bộ xã thì được trả lời: "Bọn em
sống quen với lũ quen rồi anh ạ"

Mình nói: Nếu các anh chị chuyển sang dùng Linux thì chả bao giờ sợ bị virus.

Thông tin về worm:
http://about-threats.trendmicro.com/ArchiveMalware.aspx?language=us&name=WORM_SOHANAD.I

Cách remove:
http://www.ehow.com/how_5092808_remove-worm-sohanad.html

Nhưng mình đã format lại cho nó nhanh rồi:
vuhung@:~$ sudo mkfs.vfat /dev/sdc1

Đây là kết quả scan bằng clamscan trên Ubuntu:
$clamscan -ir /media/FUSION16G/

----------- SCAN SUMMARY -----------
Known viruses: 1184321
Engine version: 0.97.3
Scanned directories: 267
Scanned files: 4193
Infected files: 160
Data scanned: 1126.97 MB
Data read: 7444.93 MB (ratio 0.15:1)
Time: 139.612 sec (2 m 19 s)

/media/FUSION16G/SCVVHSOT.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/New Folder.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/boot.exe: Worm.Autorun-4228 FOUND
/media/FUSION16G/boot/grub/grub.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/boot/boot.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/casper/casper.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/dists/natty/main/binary-i386/binary-i386.exe:
Worm.Sohanad-155 FOUND
/media/FUSION16G/dists/natty/main/source/source.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/dists/natty/main/main.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/dists/natty/restricted/binary-i386/binary-i386.exe:
Worm.Sohanad-155 FOUND
/media/FUSION16G/dists/natty/restricted/source/source.exe:
Worm.Sohanad-155 FOUND
/media/FUSION16G/dists/natty/restricted/restricted.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/dists/natty/natty.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/dists/dists.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/install/install.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pics/pics.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/b/b43-fwcutter/b43-fwcutter.exe:
Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/b/b.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/d/dkms/dkms.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/d/d.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/l/linux-wlan-ng/linux-wlan-ng.exe:
Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/l/lupin/lupin.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/l/l.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/m/mouseemu/mouseemu.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/m/m.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/n/ndisgtk/ndisgtk.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/n/ndiswrapper/ndiswrapper.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/n/n.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/s/setserial/setserial.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/s/s.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/u/ubiquity/ubiquity.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/u/ubiquity-slideshow-ubuntu/ubiquity-slideshow-ubuntu.exe:
Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/u/u.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/w/wvdial/wvdial.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/w/wvstreams/wvstreams.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/w/w.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/main/main.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/restricted/b/bcmwl/bcmwl.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/restricted/b/b.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/restricted/s/sl-modem/sl-modem.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/restricted/b/b.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/restricted/s/sl-modem/sl-modem.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/restricted/s/s.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/restricted/restricted.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/pool/pool.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/preseed/preseed.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/.disk/.disk.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/.Trash-1001/info/info.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/.Trash-1001/files/files.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/.Trash-1001/expunged/expunged.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/.Trash-1001/.Trash-1001.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/syslinux/syslinux.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/LOST.DIR/LOST.DIR.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/DCIM/.thumbnails/.thumbnails.exe: Worm.Sohanad-155 FOUND
/media/FUSION16G/DCIM/DCIM.exe: Worm.Sohanad-155 FOUND

No comments: