David, I met it. ClamAV on Solaris 9 & 10 SPARC versions. Tried with 0.97, 0.96.5 & 0.96.4 . I used binaries from Citrus IT & sunfreeware. Same result - clamd crashes - nothing in logs.
I found out that clamd ( as well as clamscan ) crashes when it tries to scan some specific .exe file. McAffee detects this .exe file as infected. I uploaded it to VirusTotal - it is not recognized by ClamAV. http://www.virustotal.com/file-scan/report.html?id=7de229cf3050bff42daae135b65c53f348e6d53ba1d68720c9fd808de5e9dc22-1301235904 Linux ClamAV versions ( 0.96.5 & 0.97 on Debian & RHEL ) do not crash, but they also do not detect malware in this file. After further testing I managed to make clamscan succesfully scan this file without crash. It worked when I scanned it just after installation, before running freshclam. After database update clamascan is again crashing when scanning this file. But even if I use package databases with default configuration and freshclam turned off clamd still crashes. So I guess older db just made these crashes less frequent. br, Kamil Raczynski -----Original Message----- From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-boun...@lists.clamav.net] On Behalf Of David Alix Sent: Monday, April 04, 2011 6:26 AM To: clamav-users@lists.clamav.net Subject: [clamav-users] clamd abending I'm running clamav 0.97/12943 on Solaris 9. Twice today, clamd has abended. I can find no error message in the log files indicating the problem. Is anyone else seeing this, or have any suggestions on how to troubleshoot this? Thanks ___________________________________ David Alix Information Systems and Computing david.a...@isc.ucsb.edu (805)893-4456 _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
