I have 4 to 5 viruses every day under UBUNTU / FIREFOX says ClamTK
NO FIREFOX TABS OPEN
TIME VIRUS CLEAN 2016-07-18 19:56 LATER ONLY TABS OPEN: Gmail TIME VIRUS CHECK 2016-07-19 2:28 VIRUSES (ClamTK Home Directory 10,095 Files scanned): PUA.Doc.Tool.LibreOfficeMacro-1 Seems to not come from the sites, but through the ports, like that famous worm in the early 00's Is new for me: not in the Mozilla subdirectories but in the LibreOffice subdirectory, usually have 4 to 5 viruses per day in Mozilla subdirectories |
Quote:
|
Quote:
Can't find anything useful with "candlestick hack" or "candlestick virus" with google, what do you mean? CLAMTK sometimes scans more files than othertimes, could be that this time he scanned the most, and alleged virus is a false positive former scan 9,000 files last scan 10,000 files I don't know CLAMTK very well, but now the same installation also scans sometimes only 4,000, 5,000 or 6,000 files in home directory, I scan several times a day, so I noticed this in the reports |
PUA is not enabled by default. Don't, or
Code:
clamscan -ir $HOME |
Quote:
I do CLAMTK GUI most of the time if there are viruses found by CLAMTK also: clamscan --remove -r / also funny first scan only SSD any consecutive scan with same command it suddenly does whole computer (SSD, PHOTO CAMERA USB Stick, harddisk) takes forever ( > 4 hours) 1 Tb |
You don't need to scan /
Warning: And I certainly cannot advise any arbitrary "--remove" action. clamav doesn't clean anything. Have you noticed? Remove and quarantine. you really want to trash your system for a false-positive because clam-tk with PUA enabled, scanning / gave you the --remove "option"? Do you think there's a reason to consider what I'm saying? Worry about your stuff is my advice and you have that command. Don't waste your time scanning anything that is not "your stuff". Linux can take of itself. IF PUA.Doc.Tool.LibreOfficeMacro-1 showed up in "your stuff", upload the suspect file to virustotal.com Clear your browser's cache once in awhile. Code:
clamscan -ir $HOME Nice and tidy short list of how many, and what/where infection of "your stuff". clam-tk is just lipstick on the pig. Don't trust your system to a lipstick wearing pig. |
Quote:
Code:
clamscan --remove -ir -r $HOME Do you mean I get a list of viruses and locations, with Code:
clamscan -ir $HOME |
What is "laborious" is scanning / unnecessarily.
Uploading to virustotal.com of a suspect file is just good Linux Admin 101. Any monkey can delete stuph without investigating. Don't trash your system.
Do what you want. |
Quote:
How do I upload to virustotal.com? From quarantine directory or so? Would be nice if I first quarantined and from that uploaded, then I am already rid of the viruses. Moreover I have then a archive of the infections. |
Quote:
Forget virustotal. Trash your system, I don't care. All I intended to say is don't scan / don't scan with PUA delete if you want after independent verification at virustotal.com Am I not making it clear? Quarantine? You're using the --remove option. Stop using the gui, it's useless to you. Code:
sudo apt-get remove --purge clamtk |
Quote:
reboot, clamtk scan, delete 4 to 5 PUA's, system behaves normally for a couple of hours, then the next day the whole cycle over again PUA's like: html.trojan.agent.37075 html.exploit.cve_2015_1692-1 win.trojan.xored-1 Are these harmless HABITUAL? |
I think you're falling into the trap of thinking that Linux is Windows and that ClamAV is picking up Linux viruses. What you are seeing are false positives because you're using a virus scanner mainly meant to pick up Windows viruses on a Linux server to prevent it serving those to Windows machines which may become infected.
Take a step back and explain what it is you are trying to do here. I think it's highly unlikely (though not impossible) that you'll have a virus slowing down your Linux system. |
Quote:
|
They're not viruses though.
It's typical when Windows runs slow to think "Oh, no, I must have a virus!" and do a virus scan because that can often be the case in Windows (sometimes it's not the case there either) but under Linux viruses are extremely rare. I could go on about a virus that slows down a system is pointless as it won't make money and a load of other things but the bottom line is that a slow system does not automatically mean that you have a virus (even under Windows). Take a step back and look at what's happening when your system becomes unresponsive and in what way it is unresponsive. I suspect something like badly-scripted web pages full of rubbish are filling RAM and taking far too many processor cycles. |
Quote:
|
Quote:
|
Quote:
html.trojan.agent.37075 html.exploit.cve_2015_1692-1 win.trojan.xored-1 can it be that html pua's are active in LINUX too, and win pua's are these windows active only pua's, html is platform independent, could be active and messing with mozilla firefox browser I use, they are in the mozilla software subdirectories Moreover system crashed again today and I found after reboot and disconnect from internet, clamscan, CLAMTK scan, win.trojan.xored-1 in mozilla subdirectory |
I give up. If you want to think that your computer is being filled with viruses and that running Windows anti-virus will help then go ahead.
|
as 273 said ...
plz STOP being necio ! btw: some mod close this |
|
Quote:
|
Quote:
i got a great laugh from it well the non funny break down of the JOKE #1 technological progress or something -- hi tech things like COMPUTERS and LED's #2 candlestick -- LOW tech and NOT a led or computer #3 It's this or the candlestick -- the choice between HIGH and LOW tech candle / led books / hand held computers and so on |
Quote:
|
Quote:
|
Quote:
Like in “Opposing Basic on Linux is like being a left wing extremist terrorist who lives in a cave in the forest, scratches clay tablets under the light of a ~ and eats nothing but root vegetables.“ Gallienus, I am not from the gens Michael, since after we had conquered your empire, we used to put the Christian name in front. |
Quote:
|
But Please stay on topic: why do I get the same viruses every day, I constantly delete them with CLAMTK, but they are refreshed every day, must come through the ports and not through Facebook, Google and Gmail
|
Quote:
Quote:
|
Quote:
Or, this may be nothing to do with viruses but, since you're insisting it is, I would tell your family you love them while you still have chance. |
@galien8: OK, so, your next post will determine if this thread has some blood left after OT-vampires got hold of the carcass. You're strongly suggested to to review what I wrote in post #21, else there'll be no salvation (for this thread that is ;-p).
|
Quote:
----- ...I operate from the outside... |
Surely, "I have 4 to 5 viruses every day" is a little alarmist for such officiates and the scholarly?
|
@galien8: I basically asked you to choose wisely how to respond next. Your choice for all things irrelevant for solving your problem means there's no future for this thread. Closing.
|
All times are GMT -5. The time now is 07:10 PM. |