Errors reported by Clamav scan
Hey. That will be probably a newbie question, so I'm sorry for triviality.
I lately start taking care about my laptops health and scan it with clamav. Besides viruses witch are easy to get rid off ("rm" or "mv :)), clamav is reporting total errors. And last time I scan there was 22923 total errors find! That make me really worry, and thats probably the reason of loud radiator work. Anyways, I have no idea how to fix thous errors, is there any way to find out more about them by using clamav or some other tool? Do i need to fix them all by hand or is there some easy way to do this? I been searching the web before for that but find nothing. -- Thank you, 513ry! |
Would it be possible posting some of the errors?
|
Scan your stuff in terminal using
Code:
clamscan -ir $HOME --log=$HOME/scan.rpt Three things: Did you use ClamTK? (the gui) Did you scan / ? (don't) Did you enable PUA (it is disabled by default) at the end of the run, you'll see the "warnings" and they are also logged in $HOME/scan.rpt That file will identify "infections". Please post the output of $HOME/scan.rpt Thank you. |
No, I don't use the GUI (I'm comfortable with the terminal, even if I seem not technical, I work witch terminal every day)
Yes, I did scan the "/" :) No, I didn't use PUA, but I enabled UFW on that PC some days ago after I saw that rapport. So you mean I should scan only "~/"? What about viruses that get into root directories? And why not using root privilege, are you sure no viruses and errors have them :)? |
scan raport
After scanning only the $HOME directory I got no "Total Errors" summary. And only infected files are some test files from clamav download. So I guess it's fine. I will be grateful for someone who explains why do thous errors appear when I scan the system from the root directory.
Whole raport: Quote:
|
I don't use "Clam," but it sure does look to me like those might be test files that are supposed to trigger "found" responses!
The subdirectory names are test and unit_test and that just has to be significant. |
Don't scan / ever.
Seriously, mono triggers clamav. mintwifi.py triggers it. It's useless as teats on a boar hog. It's a Red-Herrring and you'll ire Linus. :( |
Quote:
|
The fallacy of "anti-virus" software ... in addition to mis-appropriating a biological metaphor which does not apply at all to digital equipment ... is that software files will get tampered-with "on their own."
You should routinely be running your computer from a user-id that is not an Administrator ... is not a member of the wheel group ... "doesn't have the special ability to do jack squat!" :) So, the only files that you can modify are ... yours. (And you're running continuous backups, right?) If anything asks you to enter an administrative password, of course(!) you know not to do any such thing. You have one user-id that is used only for system maintenance and for no other purpose. You log on to that user, perform maintenance, then log off. Malware can't get a toe-hold. It can't modify anything of value. |
Quote:
You my friend, know how to vet a 4 year old Common Vulnerability found in a "new Install". John Q. Public does not. Why scan it is the Real Question? Surely someone has let clamav know that mime.cache in Ubuntu isn't "infected". C'mon, it's Big Bad Ubuntu. Been there for years...No one at clamav uses Ubuntu? Guess what? clamav could give a rat's ass. Notice most of the "test" directory stuff were .exes? And the worst "feature" of all isn't a feature at all. Alas, clamscan doesn't clean. It's a crutch for new users. You go out of your way to install it (Desktops only) they should be prepared to hand over control of the system to it. 22 Years, only saw a Linux "worm" once, in a collection of vulns, on a Windows machine in a compressed archive of 10k of them. Common Sense and regular backups. No offense and just my gnarly opinion, as usual. Peace. |
Quote:
Quote:
|
Hey there. I do not wish to make an issue of this. But in terms of what people do on their pc. Like you said jsbjsb001, people do what they want.
I believe the last part of the sexond quote you wroteis a little on the iffy side.as you said in older posts. You do not pay for anti virus stuff. Well I do. For windows boxes i do have a rather expensive subscription and it is certainly not for protecting against a virus. It is simply because in a typical version of windows, yes you can secure it but you cannot fine tune it to the finest detail. As sundial said. 99% of the time. If you use a non authoratative account, which does not belong to wheel, you are going to be fine. Have you not realized yet that even most windows machines are comoletely bollocksed because people do the wrong thing at wrong time in an administrative acount? It will happen with both linux and windows systems. So as a matter of fact, the advice sundial gave is probably better protecting a far greater amount of systems from what is the most common apart from phishing. The time of viruses has past. Sure there are some nasty ones out there. But user error is still the biggest issue. I mean i have a little school with 2 part time staffers and my ips goes absolutely bonkers with denied services notifications due to blocking their machines for corporate policy violations. As such your files only and backup. That is really really sound advice in my opinion. Besides that, I can say that Habitual and sundial are two members I personally look up to and they have provided myself and other with tremendous resources and guidance. They may not always give a direct answer to solve your issue but if you sit back and think. They do know a thing or two. So seeing you are from Oz mate. Sit back have a beer, watch a bit of footy and enjoy a barbeque coz where I am at it is too darn cold and wet to do any of those things. |
Quote:
Quote:
Quote:
https://www.symantec.com/security_re...ng/threats.jsp you can also do a google search, which will also give you more results. Quote:
And who's talking about Habitual!?? Quote:
Seconds, don't own a barbecue ether! Thirds, I can't help you with the weather mate! And if you what to take that track, you could always enjoy some whale meat, oh sorry "research" Any breakthrough's yet?? LOL |
All times are GMT -5. The time now is 10:26 PM. |