Ubuntu
clamtk package

Problem with Virus Scanner - clamtk 4.08

Asked by kittenlover

When it says a "virus" is found, I right click to delete or quarantine the file, it doesn't do anything and when I check for updates, how do I update when a new version is available - there is not an option to actually update? Thanks!

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu clamtk Edit question
Assignee:
No assignee Edit question
Solved by:
actionparsnip
Solved:
Last query:
Last reply:
Revision history for this message
Andre Mangan (kyphi) said : 		#1

The current version of clamtk is 4.15. This is merely a GUI frontend for ClamAV. You can get the latest version (as a deb file) from: http://clamtk.sourceforge.net/

The option to manually update signatures is available via the "Help" button in clamtk.

Information for ClamAV is here: http://www.clamav.net/download/packages/packages-linux

You can subscribe to receive updates here: http://www.clamav.net/download/sources

General information on ClamAV is here: https://help.ubuntu.com/community/ClamAV

Revision history for this message
kittenlover (kittencatlover24) said : 		#2

Ok, I downloaded the newest version and the virus definitions updated. After I ran the scan, it found I had 3 viruses. Of the three, only one would actually delete. The first two would not delete. Here is the output:
/home/renee/.mozilla/firefox/z5uvg0mq.default/Cache/9F17EB7Ed01 PUA.Script.Packed-2
/home/renee/.mozilla/firefox/z5uvg0mq.default/Cache/B467F9ECd01 PUA.Script.Packed-2
/home/renee/.wine/drive_c/windows/temp/spoolsv/run.bat

Probably nothing to worry about?

Revision history for this message
actionparsnip (andrew-woodhead666) said : 		#3

Clear your firefox cache, it will remove the virus. I would also check out:

/home/renee/.wine/drive_c/windows/temp/spoolsv/run.bat

to see what it does.

Revision history for this message
kittenlover (kittencatlover24) said : 		#4

How do I clear the cache? Is it the same as clearing history? I had told the scanner to delete that .bat file. How would I find out what it does?

Revision history for this message
Best actionparsnip (andrew-woodhead666) said : 		#5

CTRL+SHIFT+DEL in firefox, choose what you wish to delete

if the command:

file /home/renee/.wine/drive_c/windows/temp/spoolsv/run.bat

Does not output:

/home/renee/.wine/drive_c/windows/temp/spoolsv/run.bat: ERROR: cannot open `/home/renee/.wine/drive_c/windows/temp/spoolsv/run.bat' (No such file or directory)

Then the file is still present. You can delete it with:

rm /home/renee/.wine/drive_c/windows/temp/spoolsv/run.bat

but i recommend you run:

gedit /home/renee/.wine/drive_c/windows/temp/spoolsv/run.bat

to read the file to see what it actually does (or use kate instead of gedit if you use kde)

Revision history for this message
kittenlover (kittencatlover24) said : 		#6

Ok, I deleted the cache and the .bat file is not present. Thanks for all your help!

Revision history for this message
kittenlover (kittencatlover24) said : 		#7

Thanks actionparsnip, that solved my question.