Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I was mostly playing around & downloaded & ran ClamTK and got these results.
I am curious as to what users here think of the results - mostly seems to be files in the Firefox cache? (from surfing the web?)
Addendum: Looks like most results are from one particular folder name: "hln7vqn6" and inside that a folder ".cache2"
Various files in that folder are targeted by ClamTK
Addendum 2: I have another question a about ClamTK. When I enter a value into "Scheduler," the value just disappears the next time I look at "Scheduler."
Last edited by Michael Piziak; 06-01-2022 at 05:28 PM.
I downloaded & ran ClamTK and got these results.
I am curious as to what users here think of the results - mostly seems to be files in the Firefox cache? (from surfing the web?) Addendum: Looks like most results are from one particular file name: "hln7vqn6"
PUA means "Potential Unwanted Application". Not a virus; that's what clamav says when there is an application they consider of note, because that file or extension have been proven to be dangerous in Windows.
Win as 2nd part means it is a Windows related notice.
XBA (macro) files are considered to be 'dangerous', because (again) of Windows
Clamav has an option to not scan for PUA's.
Posting a random file name from what looks like your Firefox cache is pointless; you don't specify the path, or where you got that data. Since you're using Linux and you're getting warnings about Windows dangers, you can apply a bit of thought as to whether or not you should be concerned.
Since you're curious (but not curious enough to do any research of your own), you can upload anything you're concerned about to virustotal for a scan. Or use another scanning tool.
I don't know why you keep replying to my threads, knowing you're one of the 2 on my ignore list... I don't see what you've replied, only that you have...
I don't know why you keep replying to my threads, knowing you're one of the 2 on my ignore list... I don't see what you've replied, only that you have...
Because, as you've been told before, answers here are for the COMMUNITY, not just your personal use. If you want to know why, then read them, which you apparently can't do because you're afraid of text on a screen. And you're obviously a liar too, since (based on what you posted), you ignored THREE people, not two, for being 'mean'. Which is, we call you out on your laziness, lack of research, etc.
Don't like it? Show some effort or quit your whining.
Distribution: Ubuntu based stuff for the most part
Posts: 1,173
Rep:
I will quote TBOne's reply so you can read it, which far more accurate then what I would have posted.
Quote:
Originally Posted by TB0ne
PUA means "Potential Unwanted Application". Not a virus; that's what clamav says when there is an application they consider of note, because that file or extension have been proven to be dangerous in Windows.
Win as 2nd part means it is a Windows related notice.
XBA (macro) files are considered to be 'dangerous', because (again) of Windows
Clamav has an option to not scan for PUA's.
Posting a random file name from what looks like your Firefox cache is pointless; you don't specify the path, or where you got that data. Since you're using Linux and you're getting warnings about Windows dangers, you can apply a bit of thought as to whether or not you should be concerned.
Since you're curious (but not curious enough to do any research of your own), you can upload anything you're concerned about to virustotal for a scan. Or use another scanning tool.
I will quote TBOne's reply so you can read it, which far more accurate then what I would have posted.
I can do one click and read them if I so choose. Quite frankly, I can live without reading any of his replies. Although this reply wasn't anywhere near the rudeness in the past, even in this reply, he gets his dig by saying "since you're curious (but not curious enough to do any research of your own)"
I try to be nice to everyone on here. Personally, I can live without his smart mouth...
Last edited by Michael Piziak; 06-02-2022 at 03:57 PM.
Quite frankly, I can live without reading any of his replies. Although this reply wasn't anywhere near the rudeness in the past, even in this reply, he gets his dig by saying "since you're curious (but not curious enough to do any research of your own)"
Come on...at some point you have to start doing SOMETHING for yourself:
Quote:
Personally, I can live without his smart mouth...
And we could all live without your laziness. You've been here SEVEN YEARS; most of your questions show next to no effort on your part to do any research at all. Not sure how many times myself an others have told you to show effort, do basic research, and ask a clear question, but you don't. Then you have a temper-tantrum and ignore people who are 'rude' and 'mean' to you, which apparently means having the audacity to ask YOU to do something on your own.
Then you have a temper-tantrum and ignore people who are 'rude' and 'mean' to you, which apparently means having the audacity to ask YOU to do something on your own.
How DARE you ask him to put in some effort, when he has all of us to do the work for him? /s
I mean that's why the forum is here right... No?
My take on this discussion:
I don't know you from Job, and have no opinion about you.
TBOne is one of many members who seem to live on this forum. They dedicate a lot of time to help people. Sometimes answers can be terse, which at times can have a rude-ish tone. But having been here a while myself, I think I understand their temperament when I interact on this board.
As far as the board itself, there is certainly an expectation that you've at least attempted some sort of work, and are actually at a crossroads. Helpers on the board want you to learn something. With Linux, you learn by doing and making mistakes. To ask to be spoon fed isn't appropriate, is a waste of time, and could be considered disrespectful ... especially you've been asked to "show your work" when asking questions.
Short: LQ is a good, educational community. Like any other, you need to participate within it's rules, written and unwritten.
As far as the board itself, there is certainly an expectation that you've at least attempted some sort of work, and are actually at a crossroads. Helpers on the board want you to learn something. With Linux, you learn by doing and making mistakes. To ask to be spoon fed isn't appropriate, is a waste of time, and could be considered disrespectful ... especially you've been asked to "show your work" when asking questions.
Short: LQ is a good, educational community. Like any other, you need to participate within it's rules, written and unwritten.
Actually, I've been in communication with one of the developers of ClamTK, concerning the "Scheduler" (which is Addendum 2 in one of my posts), again-> concering the scheduler not working properly. (by the way, he can't figure out what the issue with the "Scheduler" currently is either.
So, I don't just hang out here and try to get people to spoon feed me answers. I do google things and contact developers, etc....
I personally don't know what gets people worked up in a tizzy over other people's posts. If you don't feel they deserve help, then don't help them. Don't waste your time. These ClamTK posts I made, are mostly low level conversational issues. Its' not like a printer or scanner isn't working. As I stated in my original post, "I was mostly playing around & downloaded & ran ClamTK, etc...." & simply asked for opinions of users (should they wish to leave a comment or opinion). My feelings aren't hurt if no one replies. In fact, I'd rather have a broken Linux box than deal with rude people. I strive to be nice to everyone. Those that I consider rude, I simply put on my ignore list - if they want to keep on posting in my threads (and about me), knowing they're on my ignore list, then it's their problem, not mine.... I've made 600 posts in these forums and only have 3 members on my ignore list - which is a fairly statistically insignificant number of users on my list. Why one particular individual continues to post in my threads, & about me, knowing this, is unexplainable.
Last edited by Michael Piziak; 06-02-2022 at 09:07 PM.
Actually, I've been in communication with one of the developers of ClamTK, concerning the "Scheduler" (which is Addendum 2 in one of my posts), again-> concering the scheduler not working properly. (by the way, he can't figure out what the issue with the "Scheduler" currently is either.
Amazing....you're in 'communication' with a developer of the program, yet couldn't ask THEM the answer to your question??? And you expect us to believe that one of the people who WROTE the program, doesn't know how it works???
Quote:
So, I don't just hang out here and try to get people to spoon feed me answers. I do google things and contact developers, etc....
I personally don't know what gets people worked up in a tizzy over other people's posts. If you don't feel they deserve help, then don't help them. Don't waste your time. These ClamTK posts I made, are mostly low level conversational issues. Its' not like a printer or scanner isn't working. As I stated in my original post, "I was mostly playing around & downloaded & ran ClamTK, etc...." & simply asked for opinions of users (should they wish to leave a comment or opinion). My feelings aren't hurt if no one replies. In fact, I'd rather have a broken Linux box than deal with rude people. I strive to be nice to everyone. Those that I consider rude, I simply put on my ignore list - if they want to keep on posting in my threads (and about me), knowing they're on my ignore list, then it's their problem, not mine.... I've made 600 posts in these forums and only have 3 members on my ignore list - which is a fairly statistically insignificant number of users on my list. Why one particular individual continues to post in my threads, & about me, knowing this, is unexplainable.
Unexplainable...because you are too afraid to read something that may be 'mean'. Been explained several times to you, and again in this very thread. Grow up; if you 'strive to be nice' to everyone, then why aren't you 'nice' enough to show your own efforts? You claim to have looked things up, yet over and over again, can't seem to find what everyone else can. And that leaves us with two options:
You are lying, and don't show any effort (most likely)
You just don't understand what you're looking at, and need someone to explain it to you.
Either way...why should we do #2, when you won't do #1??
::EDIT:: And since you ignore the LQ Rules/guidelines about not editing your original question:
Quote:
Originally Posted by Michael Piziak
Addendum 2: I have another question a about ClamTK. When I enter a value into "Scheduler," the value just disappears the next time I look at "Scheduler."
...try reading the docs. ClamTK uses cron to schedule things...want to see those events? Run "crontab -l".
Welcome to my ignore list - #3.
Don't bother replying to my threads as I won't see what you type....
Good day
No skin off my nose mate...
@TB0ne, you have more patience than I do that you are constantly try to help by asking them to put in some basic effort. In any case, even if he doesn't appreciate it I do. I have learnt a lot reading your replies to various threads.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.