On 5/7/12 5:35 PM, "Pepijn Schmitz" <cla...@pepsoft.org> wrote:
> On 07-05-12 20:44, Al Varnell wrote: >>> And is there no place where I can find more information about the trojan >>> ClamAV thinks it is detecting? Surely there is more information than a >>> hex string, somewhere? >> The only one that might know something about it is the member of the >> signature team that published it (Alain Zidouemba) who probably isn't going >> to remember what he did back on 19 April unless he took good notes: > I must say the lack of transparency is bothering me a little. I'm used > to antivirus programs giving me access to a detailed database with > information about the threats they claim to detect, so I can make my own > determination of how likely something is to be an actual threat and what > it does and how dangerous it is, or whether it is just a theoretical > threat, or a likely false positive. > I assume you are trying to compare a developer made up of volunteers who give their product away and rely on users like you and I for all their samples with commercial developers who can afford to man a 24/7 watch center and laboratory to collect and analyze malware because they make a ton of money selling their software. That strikes me as being a bit unfair. I suspect if you can assemble a team of volunteers to prepare such detailed analysis and offered to provide that information to clamav, they would welcome you with open arms. -Al- -- Al Varnell Mountain View, CA _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
