Here You have output from clamscan under Windows:
D:\temp>clamscan d:\virtest --bell d:\virtest/clam at very
long.txt: ClamAV-Test-File FOUND d:\virtest/clam.zip: OK d:\virtest/clam2.exe: OK d:\virtest/eicar2.exe: Eicar-Test-Signature FOUND d:\virtest/eicar3.exe: Eicar-Test-Signature FOUND d:\virtest/eicard3.exe: Eicar-Test-Signature FOUND d:\virtest/eicard3.zip: Eicar-Test-Signature FOUND d:\virtest/wzorzec.uc: OK
----------- SCAN SUMMARY ----------- Known viruses: 27412 Scanned directories: 1 Scanned files: 8 Infected files: 5 Data scanned: 0.96 MB I/O buffer size: 131072 bytes Time: 1.421 sec (0 m 1 s) (~0.96 MB/s)
D:\temp>
Look at the first position in report.Clamav test signature detected in file with looong filename and changed extension.
Hope, this helps.
Best Regards Boguslaw Brandys
However You could have broken ZIP file with padded filename longer that OS limit , which is probably unusable so any antivir cannot extract and scan this file. What OS You are using ?
What about just try to exctract this file and look if it will be really extracted (not as empty file).
Regards Boguslaw Brandys _______________________________________________ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
