Hi all,
I am running clamav on a bsd box to scan USB drives, I have two questions, now
that it found the virus is there a way to "clean or quarentine " the infected
file"?
also it gave an "OK" result to menekrug.exe see below
/mnt/usb/ISPRED/Desktop.ini: Trojan.Agent-155358 FOUND
o, please submit to:
> http://www.clamav.net/lang/en/sendvirus/
>
> -Alain
>
> On Fri, May 14, 2010 at 11:03 AM, Jean-Paul natola
> wrote:
> >
> > Hi all,
> >
> >
> >
> > I am running clamav on a bsd box to scan USB drives, I have two quest
for that file and paste it here.
>
> Thanks,
>
> -Alain
>
> On Fri, May 14, 2010 at 12:13 PM, Jean-Paul natola
> wrote:
> >
> > yes it is, see link
> >
> > http://threatinfo.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_PALEVO.SMBF&VS
20 PM
> To: ClamAV users ML
> Subject: Re: [Clamav-users] menekrug not detected/ Clean/quarentine virus
>
> If you can, please generate the MD5 checksum for that file and paste it here.
>
> Thanks,
>
> -Alain
>
> On Fri, May 14, 2010 at 12:13 PM, Jean-Paul natola
gt; [mailto:clamav-users-boun...@lists.clamav.net] On Behalf Of Alain Zidouemba
> > Sent: Friday, May 14, 2010 12:20 PM
> > To: ClamAV users ML
> > Subject: Re: [Clamav-users] menekrug not detected/ Clean/quarentine virus
> >
> > If you can, please generate the MD5 checks
t any mass storage
> devices.
>
> Marshall
>
> Jean-Paul natola wrote:
> > correction: I DO NOT ALLOW any mass storage devices on our windows machines
> >
> >
> >> From: jnat...@hotmail.com
> >> To: clamav-users@lists.clamav.net
> >> Date:
Hi everyone,
I upgraded today and all hell broke loose- at first nothing at all was
coming through
and i was getting these errors
malware acl condition: clamd: ClamAV returned
/var/spool/exim/scan/1HRsSv-0006G8-Em: lstat() failed. ERROR
i then unistalled - cleaned - reinstalled - 3 times
I updated my ports and when when I install clamav it only brings me to 90_3
and upon running freshclam- it tells me to upgrade to 90.1
Why wont 90.1 install?
I did
from /usr/ports/security/clamav
make deinstall
then
make install clean
and still i wind up on 90_3
what am i missing?
bsd 5.4
t;
Reply-To: ClamAV users ML
To: clamav-users@lists.clamav.net
Subject: [Clamav-users] Re: cannot upgrade to 90.1
Date: Thu, 15 Mar 2007 14:30:07 -0400
On Thursday March 15, 2007 at 02:25:59 (PM) jean-paul natola wrote:
> I updated my ports and when when I install clamav it only brings me t
i did the same steps i've been doing for the last year-
cvsup
portupgrade
make deinstall
make install clean
From: [EMAIL PROTECTED]
Reply-To: ClamAV users ML
To: ClamAV users ML
Subject: Re: [Clamav-users] cannot upgrade to 90.1
Date: Thu, 15 Mar 2007 12:44:05 -0600
jean-paul n
From: Chuck Swiger <[EMAIL PROTECTED]>
Reply-To: ClamAV users ML
To: ClamAV users ML
Subject: Re: [Clamav-users] cannot upgrade to 90.1
Date: Thu, 15 Mar 2007 11:46:37 -0700
On Mar 15, 2007, at 11:25 AM, jean-paul natola wrote:
I updated my ports and when when I install clamav it only
:
Hi everyone,
I upgraded today and all hell broke loose- at first nothing at all was
coming through
and i was getting these errors
malware acl condition: clamd: ClamAV returned
/var/spool/exim/scan/1HRsSv-0006G8-Em: lstat() failed. ERROR
Make sure that you've enabled the supplimentary gro
On Thursday March 15, 2007 at 04:09:50 (PM) Rob MacGregor wrote:
> Further testing shows that, for FreeBSD 5.4 at least, the use of -lthr
> (1:1 Threading Library) the result is instability. The second I added
> that to the configure argument clamd started crashing.
>
> Using the alternative -
On 3/15/07, jean-paul natola <[EMAIL PROTECTED]> wrote:
is this the entry you are referring to?
# Initialize supplementary group access (clamd must be started by root).
# Default: no
AllowSupplementaryGroups yes
Yes
Still crashing due the 5.4 incompatablilty- ANY IDEAS AT ALL-
sh
On 3/15/07, jean-paul natola <[EMAIL PROTECTED]> wrote:
So now that I have already upgraded to 90.1 ( on freebsd 5.4) what can I
do
get this working?
As I said in my second email (that you quoted :>), you need to *not*
use -lthr and use -lpthread instead. The simplest way is
From: "Török Edvin" <[EMAIL PROTECTED]>
Reply-To: ClamAV users ML
To: "ClamAV users ML"
Subject: Re: [Clamav-users] 90 disasters- revert to .88
Date: Thu, 15 Mar 2007 23:10:36 +0200
On 3/15/07, jean-paul natola <[EMAIL PROTECTED]> wrote:
>On 3/15/07,
From: "jean-paul natola" <[EMAIL PROTECTED]>
Reply-To: ClamAV users ML
To: clamav-users@lists.clamav.net
Subject: Re: [Clamav-users] 90 disasters- revert to .88
Date: Thu, 15 Mar 2007 17:38:32 -0400
From: "Török Edvin" <[EMAIL PROTECTED]>
Reply-To: ClamA
Hi everyone,
My clamava seems to be disconnecting quite often- and my paniclog is full of
timed out entries-
how can I get the clamlog to give me more detail- and timestamp the entries-
here's a portion of my clamlog
/var/spool/exim/scan/1HTHbI-0003XF-LE/1HTHbI-0003XF-LE.eml:
HTML.Phishing.
Hi everyone,
I recieved a word document with an embedded "object" which was an executable,
Symantec nor Clam detected anything
is there someway to submit this?
_
Hotmail to go? Get your Hotmail, news, sports and much more! Chec
Hi everyone,
I'm having a bit of a problem with clamav on my server-
I'm getting about 3 to 4 of these per hour- and I dont know why its
happening
"malware acl condition: clamd: unable to read from socket (Operation timed
out)"
and yes mail is still coming in- and clamd is running
if this
jean-paul natola wrote:
Hi everyone,
Hello.
I'm having a bit of a problem with clamav on my server-
I'm getting about 3 to 4 of these per hour- and I dont know why its
happening
"malware acl condition: clamd: unable to read from socket (Operation
timed out)"
a
jean-paul natola wrote:
Hi everyone,
Hello.
I'm having a bit of a problem with clamav on my server-
I'm getting about 3 to 4 of these per hour- and I dont know why its
happening
"malware acl condition: clamd: unable to read from socket (Operation
timed out)"
a
jean-paul natola wrote:
Saw your other message, you probably want to enable time stamping to
correlate
(with the exim log) what is going on.
How do I enable timestamping ?
and again it happened with the same type of message
/var/spool/exim/scan/1GvHgK-000AQG-Eo/1GvHgK-000AQG-Eo.eml
> How do I enable timestamping ?
In /etc/clamd.conf, around line 34 :
# Log time with each message.
# Default: no
LogTime yes
was not happy with that
Starting clamav_clamd.
ERROR: Parse error at line 34: Option LogTime doesn't support arguments (got
'yes').
ERROR: Can't open/parse the con
> How do I enable timestamping ?
In /etc/clamd.conf, around line 34 :
# Log time with each message.
# Default: no
LogTime yes
was not happy with that
Starting clamav_clamd.
ERROR: Parse error at line 34: Option LogTime doesn't support arguments
(got 'yes').
ERROR: Can't open/parse the
jean-paul natola wrote:
> I'm running;
> Freebsd 5.4 clamav 88.7 SA 3.1.7
>
> In the paniclog /var/log/exim/paniclog is where I 'm seeing these
entries
> I did check the 'messages' log and there are no entries-
>
> It seems that clamav is timin
26 matches
Mail list logo
