anti virus
 

I seem to have picked up a virus on my usb stick. Doesn't affect it on Linux, but now, when I plug it into the computer at work to print something, I can't see any files. The anti virus on that computer seems to have blocked it or something.

What I can see on Linux is a load of hidden .lnk files to my original files. My original files are still visible and useable in Linux, but not in Windows

I have now downloaded clamtk and pointed it at my usb stick. Seems to have gone into overload, cpus are working at max for the last 15 minutes.

This first happened the other day, so I backed up the usb stick, ran gparted and repartitioned it. After that Windows at work could read it ok, it is FAT32, but then yesterday the problem occurred again.

Is clamtk good??

reformat the usb stick

that should take care of it
unless it replaced the usb control software

as to the TK language GUI for clam ???
it always caused me problems

use the normal clamAV in the terminal

that should tell you where the bad code is

Thanks, I did that. I ran

root@pedro-bedro2:/home/pedro# clamscan -r /media/pedro/TOSHIBASTIC

Just one more question:I want to update the av files. In Ubuntu software centre it says run clamav-freshclam, but I get this.

root@pedro-bedro2:/home/pedro# clamav-freshclam
clamav-freshclam: command not found

How to keep the av files up to date?

"clamav-freshclam"
that is not the correct command


there are TWO programs
"freshclam"
and
"clamscan"

if you installed from source then the FIRST time you run it there WILL be an error
-- WITH the fix posted ( remove a " # " from a file )

run just
as root
some of the mirrors are a bit " ? iffy ?" on uptime
so expect one or more " looking for mirror" warnings

Aha, thanks!

Don't know if this is good or bad.

root@pedro-bedro2:/home/pedro# freshclam
ClamAV update process started at Tue Nov 18 09:07:59 2014
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.98.1 Recommended version: 0.98.4
DON'T PANIC! Read http://www.clamav.net/support/faq
main.cvd is up to date (version: 55, sigs: 2424225, f-level: 60, builder: neo)
daily.cld is up to date (version: 19645, sigs: 1263452, f-level: 63, builder: neo)
bytecode.cvd is up to date (version: 242, sigs: 46, f-level: 63, builder: dgoddard)
root@pedro-bedro2:/home/pedro#

EVEN fedora TESTING(rawhide) is a outdated clam
DON'T PANIC!
is right on

the database is the issue
if clam is one version off see the change log
IF the bug that was fixed IS CAUSING YOU a problem , then upgrade

if not
wait for the repo to update

Also clam is SO easy to install from source that if you just want to get rid of the warning
take 5 minuets and build the current source


the database files "main.cvd","daily.cld","bytecode.cvd" are updated from running "freshclam"

those are the ones you DO want to have current

i run freshclam first then run clamscan on the file i have a suspicion on

Thanks again.

I'll wait for the repo to update, and do a manual freshclam before I need to check anything. I don't normally use Windows at all, so I don't really worry about viruses much.

The works computer has AVG antivirus, so I can't understand how I got my usb stick infected. Unless it's hidden itself in some secret area that even Linux can't see and is still there.

Ermm, little problem.
I have my own computer in the office. I installed Ubuntu on it, but left Windows. Today I downloaded clamav and ran clamscan on the windows partitions. It came up with 13 infections.

----------- SCAN SUMMARY -----------
Known viruses: 3682159
Engine version: 0.98.1
Scanned directories: 21684
Scanned files: 117316
Infected files: 13
Data scanned: 19460.46 MB
Data read: 24817.12 MB (ratio 0.78:1)
Time: 3485.874 sec (58 m 5 s)
root@pedro-school:/home/pedro# man clamscan
root@pedro-school:/home/pedro#

How do I get rid of the viruses? Can I give clamscan a parameter to delete them?