Virus Rescue Disk

Justin Bennett Justin.Bennett at dynabrade.com
Mon Nov 18 22:24:07 EST 2002 

Ok this is what I'm going to do (tommarow at work): use the mkCDrec
utility to create a bootable iso cd image (thanks to sfielding7 at cogeco.ca
for the tech republic article on it) . Then I'm going to mount the ISO
image under an existing linux system using
mount -t iso9660 -o loop /path/to/isoimage.iso /path/to/mount/point/

Then I'm going to see if I can put Macafee on the iso (find all the
neccesary libraries), then burn the iso to CD. If this work I should have
a rescue CD I can boot with, and mount win98 partition, and run uvscan to
clean the HD. If I get it to work I'll let you all know. This might be
something some you you may be interested in. The problem is these newer
viruses crash macafee when you try and run it on the PC, so you need to
scan it from an OS that isn't infected. At work I'll just take the HD out
and put it in a linux box, but for home use this would be easier.

Wish me luck.

Justin




shipdadip said:
> Slackware is insatlled from the shell prompt, when u go to install
> Slackware ur dropped into a shell prompt, u can put the virus scanner on
> a Slackware CD and boot of the CD into a # prompt than run the virus
> scanner.
>
> On Mon, 2002-11-18 at 21:28, Justin Bennett wrote:
>> I guess what I'm asking is if there is a way I can create a bootable
>> rescue CD which I can put the virusscanner on, boot off of and run
>> virusscan.
>>
>> Richard Hubbard said:
>> > I don't know all the details, but knoppix
>> > http://www.knopper.net/knoppix/index-en.html
>> > may have the software you're looking for.
>> >
>> > --- John Seth <johnseth at phoenixwing.com> wrote:
>> >> That'll work fine for mounting the HD, but he also
>> >> want's an anti-virus
>> >> program either resident, or accessible once booted.
>> >> Neither RH nor
>> >> Slackware have that built onto their boot disks.
>> >> I'm not a mandrake fan,
>> >> so I can't speak for that, though I doubt it for the
>> >> fact that I haven't
>> >> heard of a distro that had their rescue disk w/
>> >> anti-virus.  Only tools
>> >> for access and fixing other linux partitions, not
>> >> FAT/FAT32... When
>> >> there's a boot disk with FAT/FAT32 and NTFS
>> >> read/write access, I
>> >> personally will be interested as well.
>> >>
>> >>   - Tony
>> >>
>> >> --
>> >> You say you are lying.  But if everything you say is
>> >> a lie, then you are
>> >> telling the truth.  You cannot tell the truth
>> >> because everything you say
>> >> is a lie.  You lie, you tell the truth ... but you
>> >> cannot, for you lie.
>> >>                 -- Norman the android, "I, Mudd",
>> >> stardate 4513.3
>> >> --
>> >>
>> >> On Mon, 18 Nov 2002, shipdadip wrote:
>> >>
>> >> > a slackware CD?
>> >> >
>> >> > ----- Original Message -----
>> >> > From: "Cyber Source" <peter at thecybersource.com>
>> >> > To: <nflug at nflug.org>
>> >> > Sent: Monday, November 18, 2002 4:01 PM
>> >> > Subject: Re: Virus Rescue Disk
>> >> >
>> >> >
>> >> > > Wouldn't any of the current install disks work
>> >> (i.e. from RedHat and
>> >> > > Mandrake) that can be run in rescue mode. You
>> >> can then simulate mounting
>> >> > > your system by "chroot /mnt/sysimage" for
>> >> example with RedHat, then
>> >> > > mount the cd an run it?
>> >> > > On Mon, 2002-11-18 at 15:34, Justin Bennett
>> >> wrote:
>> >> > > > anybody got some instructions on how to make a
>> >> bootable CDrom that boots
>> >> > > > into a linux shell environment. This is what
>> >> I'm looking to do. Burn a
>> >> > CD
>> >> > > > that boots a generic x86 kernel, boots into a
>> >> shell and has Macafee for
>> >> > > > linux on it so I can mount a disk and scan it.
>> >> One of those small
>> >> > > > distributions is prob fine, just need to be
>> >> able to add macafee and put
>> >> > it
>> >> > > > on a cd. I've got a buddy whose father in law
>> >> has a 98 Pc thats got
>> >> > > > viruses on it. I want to make a CD he can take
>> >> over there, boot up,
>> >> > mount
>> >> > > > the disk and scan it.
>> >> > > >
>> >> > > >
>> >> > > >
>> >> > > > --
>> >> > > > -------------------------------------------
>> >> > > > Justin Bennett
>> >> > > > Red Hat (Linux) Certified Engineer
>> >> > > > Network Administrator
>> >> > > > Dynabrade Inc.
>> >> > > > 8989 Sheridan Dr
>> >> > > > Clarence, NY 14031
>> >> > > > 716-631-0100 ext 215
>> >> > > >
>> >> > >
>> >> > >
>> >> > >
>> >> > >
>> >> >
>> >> >
>> >>
>> >
>> >
>> > __________________________________________________
>> > Do you Yahoo!?
>> > Yahoo! Web Hosting - Let the expert host your site
>> > http://webhosting.yahoo.com
>> >
>> > --
>> > This message has been scanned for viruses and
>> > dangerous content by Dynabrade using Mailscanner,
>> > and is believed to be clean.
>>
>>
>> --
>> -------------------------------------------
>> Justin Bennett
>> Red Hat (Linux) Certified Engineer
>> Network Administrator
>> Dynabrade Inc.
>> 8989 Sheridan Dr
>> Clarence, NY 14031
>> 716-631-0100 ext 215
>>
>>
>
>
>
> --
> This message has been scanned for viruses and
> dangerous content by Dynabrade using Mailscanner,
> and is believed to be clean.


-- 
-------------------------------------------
Justin Bennett
Red Hat (Linux) Certified Engineer
Network Administrator
Dynabrade Inc.
8989 Sheridan Dr
Clarence, NY 14031
716-631-0100 ext 215

More information about the nflug mailing list