This is probably not the right community but I haven’t found a better one.

So I watched a video from Seytonic where he mentiond that some malware creates a windows link with the name of the usb on a usb. So I checked my usb because I remembered that I had to click 2 times on my usb to opened it. I found a link that contained cmd.exe and a name of a file next to it. Upload to the virustotal showed Raspberry Roblin worm.

I use Linux but my familly uses windows so I will have to go through all familly computers and remove the worm. Where can I find info how to remove this specific worm - Raspberry Roblin? On google I found a description about how the worm works but not specific files it creates and how to remove it.

The first page that shows up is microsoft.com and it says that windows defender detects the worm, but clearly it doesnt.

Edit: The worm was on one computer and it did not have windows defender installed. Seems like malware removed it and also disabled automatic updates. I installed MalwareBytes and sucessfully removed the worm :)

  • Saik0@lemmy.saik0.com
    link
    fedilink
    English
    arrow-up
    2
    arrow-down
    2
    ·
    7 months ago

    Others seem to disagree.

    That’s fine. You/them can disagree all you want. Just realize that they’re using it too. I just disagree with the default Lemmy stance that users can’t see something that everyone else on the fediverse(including moderators and admin on any federated instance) can. And if they want to defederate me for that. I’m not sure I care. I’ve been defederated from one instance so far… it’s not been a major loss and definitely doesn’t weigh on my conscience at all.

    My sincerest apologies: three user instance 🙄

    I have no interest in disclosing how many users are using my instance. They can post things if they want. That’s up to them. Many are just lurkers though.