Viruses that are causing problems & unable to be deleted
I tried reinstalling Ubuntu many times to remove these viruses. I found them with clamtk 5.10 (using the latest virus definitions) and it detected those viruses. I am unable to delete them or quarantine them, but when I used clamtk's analysis feature, the details it showed were questionable. These files are PUAs. Can I get more details on these viruses? I want to see information from other people to know for sure if these viruses are truly a threat and ways to deal with them if they are a threat. Thank you for any information and/or advice.
All the viruses were located in the same folder.
Location
/usr/lib/shim
Names+Information
MokManager.
vendors- TotalDefense, NANO-Antivirus, Microsoft, MacAfee-GW-Edition, AntiVir
shim.efi
vendors- Comodo, MacAfee-GW-Edition, Microsoft, TheHacker, TotalDefense
shim.efi.signed
vendors- Ad-Aware, GData, AegisLab, CMC, Emsisoft
ps
I tried reinstalling Ubuntu many times and these viruses were never removed.
Side question
If I send files between this computer and another computer (using a flash drive) that has windows on it, can these viruses spread to my windows machine? The files I wanted to put on my windows computer are video files that I downloaded using Video Download Helper.
_______
Additional Information & Questions in Response to Answers-
1. Vanamali (vanamalishastry)
Results from Terminal
ryan@VavlaPC-
No LSB modules are available.
ryan@VavlaPC-
Linux VavlaPC-laptop 3.13.0-39-generic #66-Ubuntu SMP Tue Oct 28 13:30:27 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
ryan@VavlaPC-
I entered what you told me to type in the terminal. Did you give me complete commands? If not, can you type the commands from start to finish? (I am not good at remembering computer commands, so I only use them when I have complete instructions.) Ths is what showed up when I pasted thosw two commands in the terminal. What is the command for clamtk that you were talking about?
I don't think those files were there from the start. At first I thought those files came from the video download helper addon, but they showed up before I even installed it ( this happened after I reinstalled ubuntu, but it was not the first time I ever used vdh). The clamtk was unable to find it at first even though I set it to find those types of files. Then out of nowhere, it found these three files. The latest version of vdh messed with my computer before, but the ones that worked with firefox v31 and below never gave me any trouble. Plus these files were not the original problem. I managed to fix the original problem, but this new problem cropped up when I reinstalled Ubuntu on my computer. The original problem was that the latest version of VDH was putting an infected entry along side the entries that were from the sites I visited. I solved it by making Firefox stop putting entries on my computer. The entries were alongside the Cache.
I am using Ubuntu 14.04 LTS
For ClamTK (latest version is currently 5.11)
a. Download the latest release from the developer website (Link to that website is in the Software Center)
b. Install ClamTK using Software Center
c. Make sure the checkboxes in the settings are all checked
d. Set the updates to be installed manually using the update assistant.
e. Restart the computer (I tried to get the updates without restarting the computer before, but that made getting the updates take longer. Thinking back on it, the updates never showed up at all unless I restarted my computer.)
f. Get the updates (at first clamtk will look like it is not responding, but all I did was wait and the updates eventually downloaded). After that first update, the download speed of the updates (from the second download and on) increased with each download untill getting the updates became simple and quick. Thats how it is for me at least. I think it depends on the speed of your internet and the speed of your computer.
Icon definitions for update feature in ClamTK 5.10 and earlier releases
Green Check- New updates
Black X- Updates are current
Red sphere with white minus sign- Unknown/Unable to connect to server
ClamTK recently revealed a new version of its software. What I described is how I set up ClamTK 5.10. The new version has some changes in it's interface. (so far only the update feature was changed) It may be a little bit different then version 5.10. I upgraded to version 5.11, but it was already set up thanks to 5.10. For me to discover how to set up 5.11, I will need to reinstall Ubuntu again. In my opinion, I think it won't be any different when it comes to how you set it up. I looked at the update feature and I think the only thing that was changed was that this feature was simplified for easier use. For example, 5.10 and below has those icons that I described above and it showed both the updates that were already installed and when new updates are ready for download. 5.11 only showes the installed updates and the icons were removed. Little changes in software could make major parts of the software run differently, BUT I think it will still work the same when it comes to setting ClamTK up.
Using ClamTK requires it's users to have alot of patience.
I'll bet the next few releases will have major changes done to them just like the update feature did.
2. Manfred Hampl (m-hampl)
Is it enough if only ClamTK thinks those files are viruses to be eligible to upload these files to the site you mentioned? If not, what are the requirements for uploading those files to that site? I don't think there are any other antivirus programs for linux that are completely free, able to find viruses, and remove the viruses. I don't want to install programs without knowing more information about them.
Question information
- Language:
- English Edit question
- Status:
- Answered
- For:
- Ubuntu Edit question
- Assignee:
- No assignee Edit question
- Last query:
- Last reply:
Can you help with this problem?
Provide an answer of your own, or ask 908423-p for more information if necessary.