Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Mon 03 Aug 2015, 02:53
All times are UTC - 4
 Forum index » Advanced Topics » Additional Software (PETs, n' stuff) » Utilities
How To Find the Infected Files after Running Clamavscan??
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [12 Posts]  
Author Message
michaellowe


Joined: 17 Dec 2011
Posts: 63
Location: The Garden

PostPosted: Tue 28 Jul 2015, 10:18    Post subject:  How To Find the Infected Files after Running Clamavscan??  

Hello to anyone and everyone who is or isn't a definitive clamav guru, preference for the former but any help would be appreciated.
I dont run it often but when I do it makes me feel more secure.
Anyway just ran my clamavscan and it returned this:

----------- SCAN SUMMARY -----------
Known viruses: 3918521
Engine version: 0.97.3
Scanned directories: 35459
Scanned files: 340654
Infected files: 2
Total errors: 580
Data scanned: 18930.77 MB
Data read: 47810.95 MB (ratio 0.40:1)
Time: 5631.223 sec (93 m 51 s)

so it appears it works but one thing Ive never known how to do is where to find the offending infected files? my knowledge of clamav is very limited other than typing clamav in the terminal and hitting return, I dont know anything else about it? anyone knwo anything about the program and how to run it efficiently, is there man pages somewhere? i'm running the sfs so its hard to know anything?

Thanks in advance for any help,

cheers

_________________
Smash forehead on keyboard to continue.....
well thats at least how some of us deal with ba$h !
Back to top
View user's profile Send private message 
Semme

Joined: 07 Aug 2011
Posts: 5313
Location: World_Hub

PostPosted: Tue 28 Jul 2015, 10:27    Post subject:  

You want the -r and -i switch >> http://askubuntu.com/questions/250290/how-do-i-scan-for-viruses-with-clamav

I think /var collects a log file as well.

_________________
>>> Great minds discuss ideas; Average minds discuss events; Small minds discuss people. <<<
Back to top
View user's profile Send private message 
michaellowe


Joined: 17 Dec 2011
Posts: 63
Location: The Garden

PostPosted: Tue 28 Jul 2015, 10:39    Post subject: How To Find the Infected Files after Running Clamavscan??  

Semme wrote:
You want the -r and -i switch >> http://askubuntu.com/questions/250290/how-do-i-scan-for-viruses-with-clamav

I think /var collects a log file as well.


Yeah I tried that r switch and cant remember what happened but it did nothing I think, well at least not visually?? will try it again and report back
Thanks

_________________
Smash forehead on keyboard to continue.....
well thats at least how some of us deal with ba$h !
Back to top
View user's profile Send private message 
michaellowe


Joined: 17 Dec 2011
Posts: 63
Location: The Garden

PostPosted: Tue 28 Jul 2015, 10:42    Post subject: Re: How To Find the Infected Files after Running Clamavscan??  

michaellowe wrote:
Semme wrote:
You want the -r and -i switch >> http://askubuntu.com/questions/250290/how-do-i-scan-for-viruses-with-clamav

I think /var collects a log file as well.


Yeah I tried that r switch and cant remember what happened but it did nothing I think, well at least not visually?? will try it again and report back
Thanks


ok ran freshclam

and I get this:

# freshclam
ClamAV update process started at Mon Jul 27 15:38:54 2015
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.97.3 Recommended version: 0.98.7
DON'T PANIC! Read http://www.clamav.net/support/faq
main.cvd is up to date (version: 55, sigs: 2424225, f-level: 60, builder: neo)
daily.cvd is up to date (version: 20733, sigs: 1499961, f-level: 63, builder: neo)
bytecode.cvd is up to date (version: 265, sigs: 47, f-level: 63, builder: neo)
[LibClamAV] ******************************************************
[LibClamAV] *** Virus database timestamp in the future! ***
[LibClamAV] *** Please check the timezone and clock settings ***
[LibClamAV] ******************************************************


what to do about these warnings, the second one seems irrelevant???
but now what about the virus database timestamp in the future warning?

_________________
Smash forehead on keyboard to continue.....
well thats at least how some of us deal with ba$h !
Back to top
View user's profile Send private message 
Semme

Joined: 07 Aug 2011
Posts: 5313
Location: World_Hub

PostPosted: Tue 28 Jul 2015, 10:46    Post subject:  

Which pup are you running this from?
_________________
>>> Great minds discuss ideas; Average minds discuss events; Small minds discuss people. <<<
Back to top
View user's profile Send private message 
michaellowe


Joined: 17 Dec 2011
Posts: 63
Location: The Garden

PostPosted: Tue 28 Jul 2015, 10:55    Post subject: How To Find the Infected Files after Running Clamavscan??  

Semme wrote:
Which pup are you running this from?


hmm seems to be working now??

at the mo I am currently running a scan on /

using this command:
clamscan -r --move=/home/USER/VIRUS /home/USER

Ive replaced the above file/directory paths with my own to suit the way I have things set up like so:


clamscan -r --move=/mnt/home/vault /

will let you know the outcome it still puts out the warning about the virus database timestamp being in the future???
and to check time and clock settings??? weird

PS. im on lucid 525

_________________
Smash forehead on keyboard to continue.....
well thats at least how some of us deal with ba$h !
Back to top
View user's profile Send private message 
michaellowe


Joined: 17 Dec 2011
Posts: 63
Location: The Garden

PostPosted: Tue 28 Jul 2015, 11:23    Post subject: How To Find the Infected Files after Running Clamavscan??  

also found out that I didnt need to create that vault dir at mnt/home as there is already a /virus
checked the contents and it had more than 2 infected files which was the previous scans results? weird?? anyway its still chugging away will share a screenshot and you can see what you make of the contents of the /virus directory? cheers

_________________
Smash forehead on keyboard to continue.....
well thats at least how some of us deal with ba$h !
Back to top
View user's profile Send private message 
michaellowe


Joined: 17 Dec 2011
Posts: 63
Location: The Garden

PostPosted: Tue 28 Jul 2015, 11:32    Post subject: How To Find the Infected Files after Running Clamavscan??  

found out why clamscan -r wouldnt work before:
it had the -i parameter set as well (which I assume can only mean that it lists the infected items or is supposed to???) well it didnt work like that anyway so Ive removed it and run it just as clamscan -r --move=.....
hopefully this might shed some light for other clamav users?
cheers

_________________
Smash forehead on keyboard to continue.....
well thats at least how some of us deal with ba$h !
Back to top
View user's profile Send private message 
michaellowe


Joined: 17 Dec 2011
Posts: 63
Location: The Garden

PostPosted: Tue 28 Jul 2015, 13:15    Post subject: How To Find the Infected Files after Running Clamavscan??  

For anyone thats interested
this is the final output from several locations including the terminal
would be very interested in finding out what anyone in the know
makes of it?
output of clamscan -r --move=.png
Description 
png

 Download 
Filename  output of clamscan -r --move=.png 
Filesize  126.21 KB 
Downloaded  12 Time(s) 

_________________
Smash forehead on keyboard to continue.....
well thats at least how some of us deal with ba$h !
Back to top
View user's profile Send private message 
Semme

Joined: 07 Aug 2011
Posts: 5313
Location: World_Hub

PostPosted: Tue 28 Jul 2015, 16:02    Post subject:  

What's this site say?
_________________
>>> Great minds discuss ideas; Average minds discuss events; Small minds discuss people. <<<
Back to top
View user's profile Send private message 
Bindee

Joined: 19 Jun 2014
Posts: 280

PostPosted: Yesterday, at 03:50    Post subject:  

Seems to have vanished>>>>>>>>>
Back to top
View user's profile Send private message 
michaellowe


Joined: 17 Dec 2011
Posts: 63
Location: The Garden

PostPosted: Yesterday, at 05:57    Post subject: How To Find Infected Files Running clamcan -r and move them  

Bindee wrote:
Seems to have vanished>>>>>>>>>


yeah i got similar? page never loads and wifi drop outs, their serves might be overloaded?!!

_________________
Smash forehead on keyboard to continue.....
well thats at least how some of us deal with ba$h !
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [12 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Advanced Topics » Additional Software (PETs, n' stuff) » Utilities
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0912s ][ Queries: 12 (0.0116s) ][ GZIP on ]