Hi there,
On Thu, 1 Oct 2020, Victor Miriti [ICT Security] wrote:
... I worked on your idea and ... voila!
It wasn't really my idea. :)
Just some more questions:
1. How do I automate these scheduled scans?
This is general Unix system administration, not specific to ClamAV.
Most people
Hi there,
On Thu, 1 Oct 2020, Dave Sill via clamav-users wrote:
It looks like my point was lost in the noise ...
Sorry, I guess it was late and I was in a hurry to get to bed. :(
The cache only saved a little over a minute on a 24 minute scan.
I tried something similar here on a
Hi there,
On Wed, 30 Sep 2020, Dave Sill via clamav-users wrote:
... you could have just said that the cache is internal to each
invocation of clamscan, but that helps.
There was a bit more to it than that but I'm glad it helped.
The problem with clamdscan is that it runs into permissions
Hi there,
On Thu, 17 Sep 2020, Jeff Koch wrote:
The freshclam logs show daily.cvd signature file version 25930 is installed
but simscan: clamscan currently shows version 25920 being used. How do I get
clamscan to use the latest version downloaded?
First take a look through the output of
Hi there,
On Fri, 2 Oct 2020, G.W. Haywood wrote:
Trying a bigger directory, this is going to take a while...
Doesn't look like telling us anything this side of Christmas so I've
killed the process. Time to think a bit harder. Stay tuned.
--
73,
Ged.
Hello again,
On Sat, 3 Oct 2020, G.W. Haywood via clamav-users wrote:
Stay tuned.
Perhaps try enabling libclamav debug logging.
During your scans I suspect that ClamAV may be reaching some limit(s)
which is causing caching to be disabled. The limits are mostly
tunable (in some cases
Hi there,
On Sat, 3 Oct 2020, Matthew Campbell via clamav-users wrote:
I've had this problem since I started using Debian Linux months ago. I'm using
Debian Linux 10.6.
/var/local/clamav # freshclam -v --debug -F --user clamav
ERROR: Can't open /var/local/clamav/freshclam.log in append mode
Hi there,
On Sun, 4 Oct 2020, iulian stan via clamav-users wrote:
For the safety reasons I've decided to reject all exec files from all known
archives(that clamav supports) when emails are sent or received. Today i saw
that one just went trough and when i've started to debug. Apparently if
Hi there,
On Sat, 3 Oct 2020, Andrew C Aitchison via clamav-users wrote:
On Sat, 3 Oct 2020, Mat via clamav-users wrote:
This removal(post infection) I am talking about on Linux platforms.
To the best of my knowledge, ClamAV does not *remove* any malware.
It is usually used to detect
Hi there,
On Thu, 28 May 2020, David Beecher via clamav-users wrote:
... [sendmail milter] for ... keyword in a subject line ...
As Mr. Beecher wrote, you can do this without a milter, if you're
prepared to wrestle with Sendmail's configuration and syntax.
I was going to set up milter but
Hi there,
On Fri, 29 May 2020, Chirculescu Horia wrote:
Is there any possibility to get a statically linked clamdscan executable?
This question should really have gone to the users' list.
Tried $ ./configure --enable-static ( as in
https://www.clamav.net/documents/clamav-development ) but
Hi there,
On Fri, 29 May 2020, John Robison wrote:
We use a client/server setup where clamd runs on one server and exposes a
port, and other servers connect to it using TCPAddr in their configuration.
I see that on the clamd server I can use something like `VirusEvent `echo
"Virus detected:
Hi there,
On Wed, 16 Sep 2020, Cyril AECK via lists.clamav.net wrote:
Is there a reason why the Emotet detection rate is very low for ClamAV?
The macro in the attachment is heavily disguised. See for example
https://blog.malwarebytes.com/trojans/2020/07/long-dreaded-emotet-has-returned/
Hi there,
On Wed, 16 Sep 2020, Joel Esler (jesler) via clamav-users wrote:
Can you provide the SHA256 hash of a couple of the files?
If you want something quickly I've already submitted examples in the
last couple of days.
--
73,
Ged.
___
Hi there,
On Wed, 16 Sep 2020, Brent Clark via clamav-users wrote:
Did you submit to Sanesecurity too?
If not. Can you please consider submitting there too.
Our automated system routinely submits to Sansecurity. Unfortunately
this outbreak occurred while we're in the throes of big
Hi there,
On Fri, 18 Sep 2020, Ralf Hildebrandt via clamav-users wrote:
In my log I'm seeing a lot of:
Sep 18 11:27:34 proxy-cbf-1 clamd[791]: LibClamAV Error:
pdf_find_and_extract_objs: Timeout reached in the PDF parser while extracting
objects.
...
What is the timeout value?
Can it be
Hi there,
On Sun, 20 Sep 2020, Dismas Axel (Thomas) via clamav-users wrote:
Today I got a spam email, containing .xz file in its attachment. I
downloaded it, and unzipped it, then I found .exe file inside ...
If a malicious attachment is not currently detected you could submit
it to the
Hi there,
On Tue, 20 Oct 2020, Pablo Murillo wrote:
I have LogVerbose and Debug with yes on clamd.conf, but I don't see any of
the messages from libclamav
Have you used the LogFile directive in clamd.conf? Some messages are
probably going to stderr (and maybe from there to /dev/null). You
Hi there,
On Fri, 23 Oct 2020, Marcy Rogers via clamav-users wrote:
Good Morning,
Good evening. :)
I have Clamav on Windows Servers. I am running clamd.exe in powershell
with this command, .\clamd.exe
Do you need to put the config file in there for clamd.exe to read it? I
understood
Hello again,
On Fri, 23 Oct 2020, Marcy Rogers via clamav-users wrote:
...
I followed the instructions for installing Clamav for Windows and placed
the clamd.conf file in the c:\program files\clamav.
...
In the config file, you will see this.
...
ExcludePath "C:\Windows"
There are two
Hi there,
On Mon, 10 Aug 2020, Paul via clamav-users wrote:
Can anybody explain why when "PhishingScanURLs no " I get Loaded 9042923
signatures in logs and when "PhishingScanURLs yes" I get Loaded 11256306
signatures
I would have expected the difference to be the count of urls in
Hi there,
On Wed, 12 Aug 2020, Silver Surfer via clamav-users wrote:
I have installed current version of ClamAV from repos to Fedora 32.
Please always specify the exact version, because "current" might mean
the current version in the repo, or it might mean a different version
currently
Hi there,
On Wed, 12 Aug 2020, Marian Galbavy via clamav-users wrote:
... what does error 3 mean. ...
It isn't very informative I'm afraid, as Micah said in his reply.
If you want to look at the code it's defined in an 'enum' in
clamonacc/inotif/inotif.c
like this:
/* return codes */
Hi there,
On Sun, 9 Aug 2020, Zvi Kave via clamav-users wrote:
I get a crash - Memory fault(coredump) - when scanning clamav 0.102.4 test
directory. Other files pass OK.
I found that the crash is caused by each one of the 6 files:
clam.ea05.exe, clam.ea06.exe, clam_IScab_ext.exe,
Hi there,
On Wed, 12 Aug 2020, Steven Spuler via clamav-users wrote:
Will your ClamAV software work on this platform below?
Process Architecture is POWER9 ppc64le ...
Kernel Version 4.14.0 ... ppc64le GNU/Linux
... Red Hat Enterprise Linux Server release 7.6
I believe ClamAV is available
Hi there,
On Tue, 4 Aug 2020, Marian Galbavy via clamav-users wrote:
I have problem with on-access scan of /media folder in Ubuntu. I would like
to have on-access scan for connected removable devices but it doesn't work.
In log I have find this line:
ERROR: ClamInotif: could not watch path
Hi there,
On Tue, 11 Aug 2020, Gary R. Schmidt wrote:
On 11/08/2020 00:53, Paul via clamav-users wrote:
[SNIP]
Further digging has led me to find that when 'PhishingScanURLs no" is set
the signatures in safebrowsing.cld are not loaded by clamd.
Well, there's a win for plain and simple
Hi there,
On Mon, 6 Jul 2020, Eric van Rheenen via clamav-users wrote:
I'm running clamav 0.102.3 on RedHat 7.8 servers.
When i use OnAccessMountPath ...
[...]
Please tell me what i'm doing wrong ?
It is not clear to me that you are doing anything wrong, at least in
part because it is not
Hi there,
On Mon, 6 Jul 2020, Michel GALLE wrote:
it's my first post here.
Welcome. :)
I try to get information about "Xls.Malware.Madeba-8019734-0".
Clamav informed me a previously clean (or supposedly to be clean) xls file is
in fact infected by Xls.Malware.Madeba-8019734-0.
The file
Hi there,
On Thu, 18 Jun 2020, Kazunori Ohki wrote:
I'm wondering if clamdscan can scan petabyte-size storage.
The filesystem limits are up to your operating system. What is it?
It's also up to the filesystem utilities etc. to make data available
to ClamAV so that ClamAV can scan them in
Hi there,
On Fri, 19 Jun 2020, Alberto Matxain wrote:
I'm trying to install the latest version of clamav (0.102.3) on
Ubuntu 20.04. I'm configuring clamav following the steps explained
in
http://www.clamav.net/documents/installation-on-debian-and-ubuntu-linux-distributions.
To be fair to
Hi there,
On Sun, 28 Jun 2020, Alberto Matxain via clamav-users wrote:
... I've installed Clamav properly. I've configured clamd.conf and
freshclam.conf; I've configured on-access scanning on clamd.conf;
I've programmed automatic scans with crontab (clamdscan command); I
did a little script to
Hi there,
On Wed, 3 Jun 2020, Stefan Bauer via clamav-users wrote:
Am Mi., 3. Juni 2020 schrieb Jesus Arnaiz via clamav-users
> It normally works fine, but, apparently it is crashing everyday more
> than once, meaning a manual restart is needed once or twice per day.
>
> I don't see anything
Hi there,
On Wed, 6 Jan 2021, Zvi Kave via clamav-users wrote:
Can you send link to your posts about root directory scan?
https://marc.info/?l=clamav-users=1=2
--
73,
Ged.
___
clamav-users mailing list
clamav-users@lists.clamav.net
Hi there,
On Wed, 6 Jan 2021, Luca Sironi via clamav-users wrote:
How can i crosscheck a .ldb file like the one published from Red Eye
with the content of the cvd files i download from clamav?
Please define "crosscheck". If you mean that you want to check that
two different types of
Hi there,
On Thu, 7 Jan 2021, Kevin Faber via clamav-users wrote:
We are using c-icap to interface with ClamAV 0.103.0 and seeing the following
error in the clamd.scan log file when scanning large files.
The RHEL host has 8gb of ram and is attempting to scan a 9gb file. Are there
any
Hi there,
On Fri, 27 Nov 2020, Alejandro Hernández via clamav-users wrote:
while I run a scan in 'portable clamwin', Microsoft Defender detects
this (.tmp) file as a virus:
1. The 'portable clamwin' product is not ClamAV, although I believe it
does use a scanning engine based on ClamAV's
Hi there,
On Fri, 27 Nov 2020, Micah Snyder (micasnyd) via clamav-users wrote:
On Fri, 27 Nov 2020, ron ron via clamav-users wrote:
> What is severe damage?
Presumably it was added as an exaggeration to discourage people from
setting it too high and then complaining about undefined behavior.
Hi there,
On Wed, 25 Nov 2020, Will Watters via clamav-users wrote:
I'm using Ansible role
(https://github.com/geerlingguy/ansible-role-clamav) to install Clamav
Please explain why you think this is needed.
For something like ClamAV I would generally recommend installing from
source if it's
Hi there,
On Wed, 25 Nov 2020, Alex via clamav-users wrote:
I'm attempting to use the clamsbsync and clamsbywrite Google
safebrowsing utils and having some issues.
...
I haven't seen much discussion on this list about safebrowsing, but
you have changed that recently (and almost
Hi there,
On Thu, 26 Nov 2020, Will Watters via clamav-users wrote:
Is there anywhere to get clamd freshclam file to run as a daemon for
Centos 6 please, so the service can be stopped and started, etc.
Yes of course there is. There are several ways to do such a trivial
administrative task,
Hi there,
On Tue, 8 Dec 2020, Gal Cohen wrote:
I'm serving cvd files from a local server, when I run freshclam on my
server it takes some runes until the daily.cvd is updated even though the
remote version was updated a while ago.
Please clarify that the daily.cvd file which you are talking
Hi there,
On Tue, 24 Nov 2020, Will Watters via clamav-users wrote:
I have a number of questions regarding usage of ClamAV to
investigate to ensure it meets our security, alerting and incident
requirements for use in our AMI builds and greatly appreciate
feedback on this:
* How virus
Hi there,
On Wed, 9 Dec 2020, Micah Snyder (micasnyd) via clamav-users wrote:
This message:
“*The daily.cvd database downloaded from https://database.clamav.net
is one version older than advertised in the DNS TXT record.”
is a verbose-level message from freshclam but is not an error to
Hi there,
On Wed, 9 Dec 2020, Ttito Concha, Darwin via clamav-users wrote:
On 09/12/20 18:53, "Andrew C Aitchison" wrote:
On Wed, 9 Dec 2020, Ttito Concha, Darwin via clamav-users wrote:
> ...openSUSE...zypper install clamav, which ask to install 27 dependencies.
> I would like to know if
Hi there,
On Wed, 9 Dec 2020, Gal Cohen wrote:
5. here are the full logs of the latest update failure (26011 ->
26012),freshclam run takes 19 sec
Tue Dec 8 22:00:02 2020 -> ClamAV update process started at Tue Dec 8
22:00:02 2020
...
Tue Dec 8 22:00:02 2020 ->
Hi there,
On Tue, 8 Dec 2020, David García via clamav-users wrote:
Hi, i'm having problems installing ClamAV following the method shown in:
https://www.clamav.net/documents/installation-on-debian-and-ubuntu-linux-distributions
...
I got scared by the last message (Unable to locate
Hi there,
On Sat, 28 Nov 2020, Alejandro Hernández via clamav-users wrote:
On Fri, 27 Nov 2020, G.W. Haywood worte:
> 3. To which (.tmp) file do you refer?
There was an image attached with the name. :D
No, I don't think so. :(
But FWIW AFAICT you did not, as seemingly claimed by Mr. Walter
Hi there,
On Wed, 2 Dec 2020, Joe Acquisto-j4 wrote:
Comparing headers of varioius email, I suspect a virus is being
detected but not "scored". Probably a simple configuration issue,
Below is what I see in headers of scanned (?) messages that suggest
malware detected, those suspected to be
Hi there,
On Fri, 4 Dec 2020, Laurent S. via clamav-users wrote:
I had yesterday a false positive ...
The place to report these is
https://www.clamav.net/reports/fp
--
73,
Ged.
___
clamav-users mailing list
clamav-users@lists.clamav.net
Hi there,
On Sat, 28 Nov 2020, Andrew C Aitchison via clamav-users wrote:
On Sat, 28 Nov 2020, G.W. Haywood via clamav-users wrote:
But FWIW AFAICT you did not, as seemingly claimed by Mr. Walter H,
send 40MBytes of attachments to this mailing list. :)
I received a message matching
Hi there,
On Sat, 28 Nov 2020, Will Watters via clamav-users wrote:
When the clamd daemon is running and automatically detects a virus -
Nothing is "automatically detected". The daemon will scan something
when you tell it to. How you do that is up to you. Read the manual
about 'clamdscan'
Hi there,
On Sat, 28 Nov 2020, Will Watters via clamav-users wrote:
Please advise if ClamAV performs monitoring of traffic, including encrypted
traffic?
Not unless you tell it to. I use it to scan mail traffic. To do that
I wrote a milter. The milter interfaces with the Mail Transfer
Hi there,
On Sat, 28 Nov 2020, Alejandro Hernández via clamav-users wrote:
The 'clamav tmp file' detected by M-Defender was:
file:
C:\Users\Alejandro\AppData\Local\Temp\ClamWinPortableTemp\clamav-04c260ec0d7bc2675378f5ead51c44d0.1648.clamtmp
Detected: Trojan:Win32/Wacatac.C!ml
Now I
Hi there,
On Tue, 1 Dec 2020, Pascal De Meerleer via clamav-users wrote:
I have a question concerning the exclusion statement in clamd.conf
# clamconf | grep Exclude
ExcludePath = "^/run/", "^/dev/", "^/sys/", "^/proc/"
...
When I issue the same command but starting at the root /, I see a
lot
Hi there,
On Tue, 1 Dec 2020, Pappas, Shaun S via clamav-users wrote:
We are getting error 127 when we run the clamscan command in an AWS Lambda
written in Java
From the logs the command we are running is :
/var/task/clamscan --database=/tmp/antivirus-data/
Hi there,
On Tue, 1 Dec 2020, Pascal De Meerleer via clamav-users wrote:
Tried all your suggestions but all with the same outcome ...
No great surprise I'm afraid.
I just wonder if all other excluded filesystems are scanned or not,
anyway no trace of that.
You can always put an EICAR
Hi there,
On Mon, 14 Dec 2020, Aitor Serra Martín wrote:
El 13/12/2020 a las 12:41, G.W. Haywood via clamav-users escribió:
(a) your version of ClamAV:
Version 0.103.0.
OK.
(b) how and when it was installed:
was installing using custombuild scripts from Directa Admin control panel
Hi there,
On Mon, 14 Dec 2020, Aitor Serra Martín wrote:
- It's update daily. I did it mannually now:
ClamAV update process started at Mon Dec 14 16:14:53 2020
daily database available for update (local version: 26016 ...
This does not appear to update the rfxn databases.
How are _they_
Hi there,
On Thu, 10 Dec 2020, Joel Esler (jesler) via clamav-users wrote:
I think the way to fix this is, freshclam, if it receives an "I'm
behind" error from the PoP, to do a sleep for awhile and then try
again. ...
Maybe the workaround is simpler than that.
The document at
Hi there,
On Sat, 12 Dec 2020, Hanspeter Gosteli via clamav-users wrote:
I propose to remove PidFile-Handling from ClamAV and handing it to the init
system as it seems already to be the case in most deployments. Please have
a look at the following PR and let me know if you oppose or need
Hi there,
On Sun, 13 Dec 2020, Aitor Serra Martín wrote:
I'm getting this error all the time with complete scans:
LibClamAV Error: [scan_biff_for_xlm_macros] Unexpected state value 4
...
NAME="CloudLinux"
...
This message is emitted by the function scan_biff_for_xlm_macros() in
Hi there,
On Mon, 21 Dec 2020, eric-l...@truenet.com wrote:
I can however scrub the raws and send a few of those as well.
If you could zip up a few complete emails for me to look at I'd be
most grateful. If you need to sanitize content in the bodies that's
fine but it would be best for me
Hi there,
On Wed, 23 Dec 2020, Chris via clamav-users wrote:
I'm using ClamAV version 0.103.0 and recently whenever I try to
update ClamAV with freshclam, for some reason it ...
WARNING: Message: SSL peer certificate or SSH remote key was not OK
Is there a firewall or a proxy or something
Hi there,
On Tue, 22 Dec 2020, Alessandro Vesely via clamav-users wrote:
Is there anything to do about encrypted viruses?
Yes, indeed there is and it isn't too difficult.
today I received a message with an encrypted zip attachment. I saved the
attachment and loaded it to VirusTotal,
Hi there,
On Tue, 22 Dec 2020, Joe Acquisto-j4 wrote:
... "Please open" sort of messages.
These are extremely common. They aren't all xlsm attachments but it's
quite ususal for them to contain malicious macros - generally aimed at
Windows boxes, but you must never be complacent even on
Hi there,
On Tue, 22 Dec 2020, G.W. Haywood via clamav-users wrote:
If you try to stop evrything with signatures etc.
Something went wrong with the connection between my brain and my
keyboard there, sorry. I meant to write ...
If you try to stop everything with signatures etc. you'll spend
Hi there,
On Mon, 14 Dec 2020, Sandeep Talla wrote:
... *fireeye.ldb* file under the directory /var/lib/clamav/ ...
... Clamscam is not picking up the *fireeye.ldb* file when
Clamscam. I like that. :)
we verify the Freshclam.log and clamav.log files.
Freshclam will not update the
Hi there,
On Mon, 9 Nov 2020, Roy Ward via clamav-users wrote:
I would like confirmation whether or not clamav can be used on Ubuntu 18.04
running kernel version 5.7.x.
https://packages.ubuntu.com/search?suite=all=any=names=clamav
--
73,
Ged.
Hi there,
On Wed, 11 Nov 2020, Mickey Williams via clamav-users wrote:
I'm trying and failing to understand the debug output ...
You're not alone. Perhaps this extract from .../libclamav/regex_list.c
will shed some light. The last paragraph is particularly amusing. :/
...
Hi there,
On Thu, 12 Nov 2020, valaquarus via clamav-users wrote:
how to get the full path of a file moved by clamscan --move = DIRECTORY
to restore it to its place if it is a false positive?
Because false positives are so common I feel that the --move option is
dangerous and I would never
Hi there,
On Mon, 16 Nov 2020, Alex via clamav-users wrote:
...
(MySQLdb._exceptions.OperationalError) (2006, 'MySQL server has gone away')
...
I don't use safebrowsing and it's a long time since I've used MySQL
for anything serious, but last time I did this issue was one of the
most common
Hi there,
On Mon, 16 Nov 2020, Alex via clamav-users wrote:
It looks to have been a problem with the client host that's being addressed.
OK.
I'm also curious about your comment about not using it - is it that
you just don't have a use for it, or is there something I'm missing
about its
Hi there,
On Mon, Nov 16, 2020 at 1:16 PM Alejandro Hernández via clamav-users wrote:
everybody says it is a false positive. Could you check it and tell
me? (I've send it you before but no feedback)
I've seen nothing from you on the ClamAV Users' mailing list. Exactly
when did you first
Hi there,
On Mon, 2 Nov 2020, Paul Kosinski via clamav-users wrote:
... I still think it is a bad message that should be fixed.
+1
If you want to try a very quick and dirty tweak to get more precise
numbers, change the value of
1) CL_COUNT_PRECISION in .../libclamav/clamav.h from 4096 to 1
Hi there,
On Tue, 3 Nov 2020, Micah Snyder (micasnyd) via clamav-users wrote:
Just took a look - it seems that image001.gif is missing the final
byte, a value "0x3B" should be at the end of every GIF file.
...
I wonder if this is a common occurrence. ...
It seems to be common enough to need
Hi there,
On Fri, 30 Oct 2020, Stan DeGroff via clamav-users wrote:
In the installation process of ClamAV, It errored. But, I have no
idea why or what to do.
New to Linux and Very new to ClamAV
Welcome. You're starting on quite a journey.
./configure --enable-check
checking for g++...
Hi there,
On Fri, 30 Oct 2020, Stan DeGroff via clamav-users wrote:
Running Ubuntu 18.04
...
Ive installed from repository using copy and paste stuff I found from google
search. But how do I go find it without crutches ?
I'm not sure what you want to find. The package management tools can
Hi there,
On Sat, 31 Oct 2020, Tsutomu Oyamada wrote:
Scanning certain files will result in a memory error in clamd version 0.101.5.
That is rather an old version, released over a year ago. There have
been some significant changes since then. You should upgrade.
The platform is AIX.
Hi there,
On Sat, 31 Oct 2020, Tsutomu Oyamada wrote:
Scanning certain files will result in a memory error in clamd version 0.101.5.
In the context of virus scanning, one year old is very old indeed.
On Sat, 31 Oct 2020, G.W. Haywood wrote:
That is rather an old version, released over a
Hi there,
On Thu, 22 Oct 2020, Andrew C Aitchison via clamav-users wrote:
On Wed, 21 Oct 2020, G.W. Haywood via clamav-users wrote:
On Wed, 21 Oct 2020, Andrew C Aitchison via clamav-users wrote:
> and that using clamav's on-access scanning has the advantage of catching the
> nasties
Hi there,
On Wed, 21 Oct 2020, Andrew C Aitchison via clamav-users wrote:
I was assuming that clamav's on-access scanning used the same
mechanism as inotify.
No need to assume anything:
https://www.clamav.net/documents/on-access-scanning
It's documented there that it uses fanotify, only
Hi there,
On Tue, 20 Oct 2020, Micah Snyder (micasnyd) via clamav-users wrote:
It seems as though the new PNG graphics format/CVE checker added in
0.103 is causing trouble for you and for some others. ...
Has this been reported elsewhere? Nothing in Bugzilla AFAICT.
--
73,
Ged.
Hi there,
On Wed, 21 Oct 2020, Marcy Rogers via clamav-users wrote:
... Windows ...
I don't do much with Windows, but I'll try to help. I'm not sure what
exactly the problem is, but I can see some things on your command line
which might need fixing.
.\clamdscan.exe . --fdpass -mlv
Hi there,
On Wed, 21 Oct 2020, G.W. Haywood wrote:
... I can see some things on your command line ...
.\clamdscan.exe . --fdpass -mlv clamd.log "c:\"
Oh, I forgot to mention the lone 'dot' between exe and --fdpass, which
I don't think should be there...
--
73,
Ged.
Hi there,
On Wed, 4 Nov 2020, Shane Wise via clamav-users wrote:
I am getting the below error when I run Freshclam and haven't been able to
find any answers. I have tried both version 0.102.4 and 0.103.0 and receive
the same error. Any help would be appreciated. ...
Please will you post
Hi there,
On Tue, 3 Nov 2020, Gary R. Schmidt wrote:
... I've written C code that is still in use on everything from
80286s to DEC Alphas and Power and SPARC64 and PA-RISC ...
Hehe, I wrote our invoicing, stock control and accounting suite in C
starting around 1986. Originally it ran under
Hi there,
On Thu, 31 Dec 2020, Jay A. Schoon via clamav-users wrote:
...
Here are the things I would like to do:
- Run scans that utilize multiprocessors (I believe I do have clamd
installed, I just don’t know how to use it)
The clamd daemon can run multiple threads/cores, but using clamd
Hi there,
On Tue, 5 Jan 2021, Zvi Kave via clamav-users wrote:
Seems that the parameter --max-scantime=#n aborts scan on every file after
#n ms.
But it continues to the next file, instead of clamscan termination + summary
as I need.
You can easily start another process, which sleeps
Hi there,
On Wed, 6 Jan 2021, Zvi Kave via clamav-users wrote:
My goal is to terminate scan of big number of files like '/' on CPU busy hours.
Do not scan everything under the root directory.
See my other posts in the list archives for reasons.
Seems that I have to put some code in
Hi there,
On Wed, 6 Jan 2021, Andrew C Aitchison via clamav-users wrote:
On Wed, 6 Jan 2021, Zvi Kave via clamav-users wrote:
My goal is to terminate scan of big number of files like '/' on CPU
Would it be better to *pause* the scan if/when the computer gets busy ?
There are many ways to
Hi there,
On Thu, 14 Jan 2021, 本多 俊之 wrote:
I got an error due to clamav scanning when sending an Excel document where a
password is set.
The error was as follows:
"wWDZCZvPwM-1.dat: PUA.Doc.Packed.EncryptedDoc-6563700-0 FOUND"
That is not an error. That is ClamAV correctly doing what it
Hi there,
On Thu, 14 Jan 2021, 本多 俊之 wrote:
Password-protected excels are commonly used in our customers.
I want to avoid them being identified as viruses.
If there is a category that is more suitable for password Excel than
Doc.Packed, I want to exclude it.
One of the reasons that
Hi there,
On Fri, 22 Jan 2021, Joe Acquisto-j4 wrote:
looking for how to add additional (3rd party?) database(s) to clamav install.
1. Find the desired third-party database(s) and download them. [*]
2. Place the file(s) in the same directory as the official databases.
3. Restart clamd if
Hi there,
On Fri, 22 Jan 2021, Chaminda Indrajith via clamav-users wrote:
Mainly, we get these virus via E-mail. ...
Can I assume that it's clamd which scans these emails?
OLE2BlockMacros = "yes"
There are other settings which you might want to investigate. See
for example the
Hi there,
On Fri, 22 Jan 2021, Chaminda Indrajith via clamav-users wrote:
Regularly we receive DOC files which contains virus.
There are many different ways to solve your problem, but we need a lot
more information from you. How do you receive these files?
These virus is not detected by
Hello again,
On Sat, 23 Jan 2021, Chaminda Indrajith via clamav-users wrote:
... I have the evidence that Clamd finds threats, but it cannot
detect some of the threats
As I said this is not unusual. From my experience I would say that of
all the threats that I see, ClamAV will typically
Hi there,
On Mon, 18 Jan 2021, Michael Kyriacou via clamav-users wrote:
Hello! I am using clamav version 0.102.4, on Ubuntu 20.04.
I configured the max file size and Maxscansize to be 10M. When I scan files
larger than that, it returns with an OK, telling me that it scanned.
It seems to me
Hi there,
On Wed, 27 Jan 2021, Michael Kyriacou via clamav-users wrote:
... I am using clamav version 0.102.4, on Ubuntu 20.04.
You really should be upgrading to the latest version.
I want clamd to exclude all pagefile.sys files it finds when scanning
mounted filesystems. Currently, it
Hi there,
On Sun, 31 Jan 2021, I via clamav-users wrote:
I'm new ...
Welcome. :)
ERROR: /var/log/clamav/freshclam.log is locked by another process
You probably have a freshclam daemon process running which has taken
hold of the log file. Lots of ways of avoiding this issue but right
now
301 - 400 of 889 matches
Mail list logo