受感染的文件是否会在 Clam TK 中被自动隔离或删除?

受感染的文件是否会在 Clam TK 中被自动隔离或删除?

经过 Clam TK 扫描后我在报告中得到了此信息。

如何隔离或删除文件?

/home/joso/.config/libreoffice/4/user/basic/Standard/Module1.xba: PUA.Doc.Tool.LibreOfficeMacro-2 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/F3E66A595E83D041E1FAA753D6891C1F834D999D: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/192B6C604083F2F8CA5C3B256F6503F2EED6C356: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/8692CD48ACD5FEF8A15738DF2967BB8F24774B39: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/202830B1AEC4163D9E44121DFE05997DDB9D0F5C: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/E1FB319332D07B90FF6D8C61A4A824C51FDC2CA6: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/9775D2629CA01D3822064AF3C63963D598577D13: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/A7409BF7EDF17C8DA0E211C22DF4F32DC44CB3ED: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/C9D74473D012C2C11830F414ABC36133F8426BEB: PUA.Win.Trojan.Xored-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/4183DCD90871653B99882B62E42BF38DD2E6E29C: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/82E1AC12C9A48FE247184A40752A0250A3607DA2: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/C435B0454EE68144D531CA47C649C3B2F6121C46: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/124AE7BE33894E844BAE0326EDF3D2AF85C31650: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/1081E83D3B4F913688A9A155D4CC63B2759D0A74: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.cache/mozilla/firefox/uot09tm7.default-release/cache2/entries/ACF2C449528BD44519F66584C340C1248F6208F7: PUA.Win.Exploit.CVE_2012_1461-1 FOUND
/home/joso/.mozilla/firefox/uot09tm7.default-release/extensions/[email protected]: PUA.Win.Trojan.Xored-1 FOUND
/home/joso/MEGA/.debris/2019-10-03/2019-08-28_12-56-53-131/net.sourceforge.opencamera.apk: PUA.Andr.Adware.Ewind-6878615-0 FOUND
/home/joso/MEGA/.debris/2019-10-03/2019-08-28_12-56-53-131/com.google.android.music.apk: PUA.Andr.Adware.Revmob-6803898-0 FOUND
/home/joso/MEGA/.debris/2019-10-03/2019-08-28_12-56-53-131/hr.tele2.support.apk: PUA.Andr.Trojan.Mobidash-6840972-0 FOUND
/home/joso/MEGA/.debris/2019-10-03/2019-08-28_12-56-53-131/ch.protonmail.android.apk: PUA.Andr.Adware.Domob-6888036-0 FOUND
/home/joso/MEGA/.debris/2019-10-03/2019-08-28_12-56-53-131/com.lastpass.lpandroid.apk: PUA.Andr.Trojan.Mobidash-6840972-0 FOUND
/home/joso/MEGA/.debris/2019-10-03/2019-08-28_12-56-53-131/com.huawei.himovie.apk: PUA.Andr.Adware.Ewind-6878615-0 FOUND
/home/joso/MEGA/.debris/2019-10-03/2019-08-28_12-56-53-131/com.bti.tempMeter.apk: PUA.Andr.Trojan.Mobidash-6840972-0 FOUND
/home/joso/MEGA/.debris/2019-10-04/2019-09-13_19-18-51-097/ch.protonmail.android.apk: PUA.Andr.Adware.Domob-6888036-0 FOUND
/home/joso/MEGA/.debris/2019-10-04/2019-09-13_19-18-51-097/com.bti.tempMeter.apk: PUA.Andr.Trojan.Mobidash-6840972-0 FOUND
/home/joso/MEGA/MANUALS/delta_66/Delta_WDM_5_10_00_5057v3 (2017_08_07 19_31_19 UTC).exe: PUA.Win.Packer.Msvcpp-1 FOUND

----------- SCAN SUMMARY -----------
Known viruses: 6699353
Engine version: 0.102.1
Scanned directories: 1531
Scanned files: 18306
Infected files: 26
Total errors: 2
Data scanned: 6037.41 MB
Data read: 11919.23 MB (ratio 0.51:1)
Time: 1297.667 sec (21 m 37 s)

答案1

如何隔离或删除文件?

为什么?PUA 意味着潜在的有害应用程序所以 PUA 不是病毒。那么你为什么要这么做呢?

如果您想要删除这些通知,则需要删除不需要的应用程序。因此删除...

  • 自由办公室
  • 火狐

从其他人看来,您安装了一些扩展,因此也删除它们:

  • 开放式摄像头
  • 最后通行证
  • 质子邮件
  • 温度计
  • 与 tele2 相关的东西。

我认为您自己在 Firefox 中安装了这些?

请注意,这也是您不应该使用 clamav 的原因。使用适用于 Windows 的规则扫描 Ubuntu 机器上的问题永远不会奏效。永远都不会。

您获得的唯一正确报告是在让 Windows 计算机获取或发送这些文件之前扫描来自 Windows 计算机的传入和传出文件。基本上当您使用 Ubuntu 作为网关并在您的网络中拥有 Windows 桌面时。

相关内容