It will be very difficult to delete all the files of the result of Clamscan. In some cases the infected files will be more than 2000.
The command for clamscan is
# clamscan -r -i /home/username/public_html/ -l clamscan_username.txt
# cat clamscan_username.txt Will show the content as :
/home/username/public_html/.guestbook/baru.txt: Exploit.E107-1 FOUND
/home/username/public_html/newlog/hideme: Hacktool.Fakeproc FOUND
/home/username/public_html/newlog/.log/hideme: Hacktool.Fakeproc FOUND
/home/username/public_html/newlog/.log/t3394: Linux.RST.B FOUND
/home/username/public_html/newlog/.log/guard: Linux.RST.B FOUND
You can delete all the files listed there by using the below command in a split of second.
# for i in `cat /root/clamscan_username.txt | gawk -F ': ' '{print $1}'`; do rm -rf $i; done
Make sure that you have got confirmation from the customer before deleting all his infected files.
:-)
Comments