Where/how can I check on the status of a submission? I'm cleaning a server
that got badly infected, and while doing so discovered what I believe to be
a PHP exploit that maldet and clamav don't have definitions for. Virustotal
also has 0 hits on it. However, I'm sure it's malicious because the main
Here, but you need to supply the MD5 of the sample in order for it to be found.
To get feedback as to if and when a signature has been issued, you must be
subscribed to the clamav-virusdb list. You would then need to search the daily
for your name.
There is also a signature program that allows
> I'm cleaning a server
> that got badly infected,
I know this doesn't answer the OP, but destroy the server and treat all data as
compromised.
Rebuild for a fresh trusted base and attempt to clean the data away from the
original server..
-- ant
> On 6 Feb 2016, at 23:41, Jesse Nicholson wro
@ant indeed, this is what I'm doing. Original server is gone, new server
was built from the ground up but the xferred required user files (web root)
is quarantined while I go through it and lean up. There's a really nasty
php injection that appears to intercept, proxy requests to various IPs that
c
