On Fri, Oct 22, 2010 at 1:18 PM, Carlos E. R.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Friday, 2010-10-22 at 12:45 +0200, Stan Goodman wrote:
I have received a message from my hosting service informing me that they have found that my FTP password has been compromised by an intruder or a trojan, and that they have cleaned it of malicious software and given it a temporary password. They urge me to perform a "full anti-viral scan on your local PC (using an in-depth scanner)".
That's probably just the copy-pasted stock advise.
I agree with Carlos. They most probable have a problem themselves. In cases when such a message also contains suggestion to scan your computer with their on-line scanner or install their scanner, it is most probable an attack.
Through YaST I have searched the usual repos plus Packman to find software to make such a scan, but there is little there, and all of it seems to be for mail gateways or proxies, which I think are not relative. I've also searched the Web. especially openSuSE pages, for helpful information, but so far have not recognized any.
I would appreciate advice on how to proceed and what tool(s) to use for this.
Install clamav, then activate system service "freshclam" to keep it updated. Then run "clamav /" and let it run.
Clamav doesn't have a great hit ratio. You can also install "antivir", which is gratis for personal use, but not free, update it manually (antivir --update), then scan from root.
Both work on a terminal. Forget GUIs.
There are also free Linux versions of quite popular AVG and AVIRA (I used only MS-Windows versions of these anti-viruses): http://en.kioskea.net/download/download-110-avira-antivir-personal-free-for-... http://free.avg.com/us-en/download.prd-alf -- Mark Goldstein -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org