Html.Malware.Agent-6625209-0(已解决)及时更新病毒库很重要

centos6系统安装上clamav后做了一次 / 根扫描。

扫描结果显示多个文件存在被感染。

[jumpserver@SX-SVN logs]$ grep FOUND clamd.2018-08-01.log 
/usr/local/java/nexus-2.11.2-03/nexus/WEB-INF/lib/httpcore-4.3.3.jar: Html.Malware.Agent-6625209-0 FOUND
/usr/local/java/sonatype-work/nexus/storage/central/org/apache/httpcomponents/httpcore/4.3.3/httpcore-4.3.3.jar: Html.Malware.Agent-6625209-0 FOUND
/usr/local/java/sonatype-work/nexus/storage/central/org/apache/httpcomponents/httpcore/4.3/httpcore-4.3.jar: Html.Malware.Agent-6625209-0 FOUND
/usr/local/java/sonatype-work/nexus/storage/central/org/apache/httpcomponents/httpcore/4.3.2/httpcore-4.3.2.jar: Html.Malware.Agent-6625209-0 FOUND
/usr/local/java/sonatype-work/nexus/storage_bak/central/org/apache/httpcomponents/httpcore/4.3.2/httpcore-4.3.2.jar: Html.Malware.Agent-6625209-0 FOUND

这些文件都是一般的jar包。

 

clamav版本:

[jumpserver@SX-SVN ~]$ clamscan -V
ClamAV 0.100.1/24800/Wed Aug  1 00:43:36 2018

现在比较头疼,我从网上下载了一些jar包,clamav扫描也是一样显示被感染。

 

百度了一下,没有找到相关信息,这些jar包程序上还在用,先记录在这里,要是确认了在回来补充。

路过的人要是知道,请回复我一下,谢谢。

 

 

 

后续更新:

还好没有主动删除;

我设置了定时主动更新病毒库。

然后发现之前的疑似被感染,已经变更OK了

[jumpserver@SX-SVN logs]$ grep FOUND clamd.2018-08-02.log 
/home/jumpserver/httpcore-4.3.2.jar: Html.Malware.Agent-6625209-0 FOUND
/usr/local/java/nexus-2.11.2-03/nexus/WEB-INF/lib/httpcore-4.3.3.jar: Html.Malware.Agent-6625209-0 FOUND
/usr/local/java/sonatype-work/nexus/storage/central/org/apache/httpcomponents/httpcore/4.3.3/httpcore-4.3.3.jar: Html.Malware.Agent-6625209-0 FOUND
/usr/local/java/sonatype-work/nexus/storage/central/org/apache/httpcomponents/httpcore/4.3/httpcore-4.3.jar: Html.Malware.Agent-6625209-0 FOUND
/usr/local/java/sonatype-work/nexus/storage/central/org/apache/httpcomponents/httpcore/4.3.2/httpcore-4.3.2.jar: Html.Malware.Agent-6625209-0 FOUND
/usr/local/java/sonatype-work/nexus/storage_bak/central/org/apache/httpcomponents/httpcore/4.3.2/httpcore-4.3.2.jar: Html.Malware.Agent-6625209-0 FOUND

[jumpserver@SX-SVN logs]$ grep httpcore-4.3.3.jar clamd.2018-08-03.log 
/usr/local/java/nexus-2.11.2-03/nexus/WEB-INF/lib/httpcore-4.3.3.jar: OK
/usr/local/java/sonatype-work/nexus/storage/central/org/apache/httpcomponents/httpcore/4.3.3/httpcore-4.3.3.jar: OK
/usr/local/java/sonatype-work/nexus/storage/central/.nexus/attributes/org/apache/httpcomponents/httpcore/4.3.3/httpcore-4.3.3.jar: OK
/usr/local/java/sonatype-work/nexus/storage/central-m1/org.apache.httpcomponents/jars/httpcore-4.3.3.jar: OK
/usr/local/java/sonatype-work/nexus/storage/central-m1/.nexus/attributes/org.apache.httpcomponents/jars/httpcore-4.3.3.jar: OK
----------- SCAN SUMMARY -----------
Known viruses: 6595542
Engine version: 0.100.1
Scanned directories: 22924
Scanned files: 75542
Infected files: 0
Total errors: 5119
Data scanned: 6976.62 MB
Data read: 6782.93 MB (ratio 1.03:1)
Time: 3170.321 sec (52 m 50 s)

虚惊一场。

posted on 2018-08-01 14:13  LiuDan182  阅读(1057)  评论(0)    收藏  举报

导航