The new signature will be out in the next few releases.
If you could, please provide the md5s or sha256s of the samples that
alerted.
Thanks,
- Alain
On Wednesday, May 21, 2014, DUCARROZ Birgit
wrote:
> Thank you a lot! When will it be replaced?
> I had 317 "infected" files and now I don't kn
The new signature will be out in the next new releases.
If you could, please provide the md5s or sha256s of the samples that
alerted.
Thanks,
- Alain
On Wednesday, May 21, 2014, DUCARROZ Birgit
wrote:
> Thank you a lot! When will it be replaced?
> I had 317 "infected" files and now I don't kn
Thank you a lot! When will it be replaced?
I had 317 "infected" files and now I don't know if they are false
positives or not.
Curiously chkrootkit gave me this:
< You have 1 process hidden for readdir command
< You have 1 process hidden for ps command
< chkproc: Warning: Possible LKM
It was dropped for performance reasons. We found it be generating some
false positives, such as the one you likely had. The signature
Unix.Trojan.ElkKnot will be replaced with a better performing one.
- Alain
On Wed, May 21, 2014 at 4:07 PM, DUCARROZ Birgit
wrote:
> Why has it been dropped? Sho
Why has it been dropped? Should I believe now that I have this trojan or
not?
On 21. 05. 14 14:31 , Alain Zidouemba wrote:
The signature "Unix.Trojan.ElkKnot" has been dropped from our signature set
a few releases ago.
- Alain
On Wed, May 21, 2014 at 5:46 AM, DUCARROZ Birgit
wrote:
Sorry,
You are right that there are some under-the-hood changes in our configure.
Much of that was modularizing an 1860-line configure.ac into a 250-line
master file with sections broken out into m4 includes. I think it is the
combination of that along with how we identify and link to the new
dependencies
Am 21/05/14 21:47, schrieb MarkusGMX:
Am 20/05/14 16:53, schrieb Shawn Webb:
On Mon, May 19, 2014 at 2:52 PM, MarkusGMX wrote:
Am 16/05/14 17:57, schrieb Alexander Tampermeier:
Sadly, the libxml2-error still persists in v0.98.4-rc1.
Hope, it can be fixed soon.
[...]
:-(
I am also wait
Am 20/05/14 16:53, schrieb Shawn Webb:
On Mon, May 19, 2014 at 2:52 PM, MarkusGMX wrote:
Am 16/05/14 17:57, schrieb Alexander Tampermeier:
Sadly, the libxml2-error still persists in v0.98.4-rc1.
Hope, it can be fixed soon.
[...]
:-(
I am also waiting for a bugfix for the build process.
On Wed, May 21, 2014 at 02:41 AM, DUCARROZ Birgit wrote:
>
> Hi,
>
> as of 05/13/2014 I had suddenly a lot of older files with notification
>
> Unix.Trojan.ElkKnot FOUND
ElkKnot (aka Elknot) is apparently a Linux Trojan associated with DDOS attacks.
By coincidence, traces of it were found on
The signature "Unix.Trojan.ElkKnot" has been dropped from our signature set
a few releases ago.
- Alain
On Wed, May 21, 2014 at 5:46 AM, DUCARROZ Birgit
wrote:
> Sorry, I forgot to note my question:
>
> Does somebody know what this might be?
> When I am scanning now the same files, this message
Sorry, I forgot to note my question:
Does somebody know what this might be?
When I am scanning now the same files, this messages does not appear again.
Actual version: ClamAV 0.97.8/19011/Wed May 21 09:48:13 2014
On 21. 05. 14 11:41 , DUCARROZ Birgit wrote:
Hi,
as of 05/13/2014 I had suddenly
Hi,
as of 05/13/2014 I had suddenly a lot of older files with notification
Unix.Trojan.ElkKnot FOUND
Regards,
Birgit
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/support/ml
12 matches
Mail list logo
