Hi altogether,
thanks so much for your answers. :-)
It´s quite a relief to get a confirmation by you that the files I was
referring to were false positives indeed.
Thanks a lot.
@Al:
> This was a false positive as discussed much earlier today on this
very same list
Oh, I missed that. So
Hi there,
On Sat, 25 Jun 2022, Christian wrote:
...
Archive.Test.Agent2-9953724-0 FOUND/
...
A false positive, as it turns out this is a signature which should never have
been published:
https://lists.clamav.net/pipermail/clamav-users/2022-June/012731.html
It should go away on the next dat
This was a false positive as discussed much earlier today on this very same
list. It was corrected by a signature update over seven hours ago. Simply run
freshclam and your curiosity will be history.
-Al-
> On Jun 25, 2022, at 5:40 AM, Christian wrote:
>
> Hello altogether, :-)
>
>
> perhap
Hello altogether, :-)
perhaps there´s someone here who can help me with a curious phenomenon.
Every now and then I scan the directory where all the firefox-related
files reside.
This is my command:
clamscan -i -r
/media/rosika/f14a27c2-0b49-4607-94ea-2e56bbf76fe1/DATEN-PARTITION/Dokumente/
Mark,
Worm.Bagle.F-zippwd-6 had been in our signature database for 7 years and
had been performing well. It is definitely preferable for us to receive an
FP report along with the file(s) that are causing the suspected
FP. Nevertheless, I have dropped Worm.Bagle.F-zippwd-6 as of now, and will
relea
Alain (and others),
A month later and I am experiencing similar problems.
Worm.Bagle.F-zippwd-6 instead of -7.
The 'sigtool' output for both -6 and -7 appears to be identical minus a
single ^M at the end of a line., but my take on it is, surely the
presence of the word 'pass' followed by an encr
Mark,
Sorry for the longer than usual turn-around. I will look into your FP
submission and get back to you in the next few hours.
-Alain
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
Hi there,
On Fri, 24 Aug 2012, Mark Foster wrote:
First time poster, please indulge me as I get to grips with how
this group works
Read all the docs that you can find, especially
http://www.clamav.net/doc/latest/clamdoc.pdf
and
http://www.clamav.net/doc/latest/signatures.pdf
although
On 8/23/12 8:30 PM, "Mark Foster" wrote:
>
> Hi folks
> First time poster, please indulge me as I get to grips with how this
> group works
>
> I have had a case recently where a customer of my mail platform
> (protected with Clam) received an encrypted zip attachment.
> The body of the mess
Hi folks
First time poster, please indulge me as I get to grips with how this
group works
I have had a case recently where a customer of my mail platform
(protected with Clam) received an encrypted zip attachment.
The body of the message immediately prior to the Base64 encoded
attachment cont
George Geller wrote:
> Recently, the scan has been giving me:
>
> sda1/Program Files/Microsoft Office/Office12/EXCEL.EXE:
> W32.Virut.Gen.D-163 FOUND
> sda1/Program Files/Microsoft Office/Office12/excelcnv.exe:
> W32.Virut.Gen.D-163 FOUND
> sda1/WINDOWS/SoftwareDistribution/Download/754e3b95d1b56
Recently, the scan has been giving me:
sda1/Program Files/Microsoft Office/Office12/EXCEL.EXE:
W32.Virut.Gen.D-163 FOUND
sda1/Program Files/Microsoft Office/Office12/excelcnv.exe:
W32.Virut.Gen.D-163 FOUND
sda1/WINDOWS/SoftwareDistribution/Download/754e3b95d1b56e045c85bd49529d92b4/xlconv.cab:
12 matches
Mail list logo
