Likely not. I would bet that there are some poorly written yara sigs in your
environment.
Sent from my iPhone
> On Jan 4, 2019, at 07:28, Kaushal Shriyan wrote:
>
> Hi,
>
> I have the below details
>
> [root@ clamav]# clamscan --version
> ClamAV 0.100.2/25267/Fri Jan 4 06:17:25 2019
Hi,
I have the below details
[root@ clamav]# clamscan --version
*ClamAV 0.100.2/25267/Fri Jan 4 06:17:25 2019*
[root@ clamav]# rpm -qa | grep clamav
clamav-filesystem-0.100.2-2.el7.noarch
clamav-update-0.100.2-2.el7.x86_64
clamav-0.100.2-2.el7.x86_64
clamav-lib-0.100.2-2.el7.x86_64
[root@
Do not run clamscan over your entire filesystem.
It's a bad idea.
In your case clamscan found something looking like a virus in its own
signatures, which is hardly surprising and certainly not a sign of an
infection.
Am 04.01.19 um 13:28 schrieb Kaushal Shriyan:
>
> when i am running clamscan
Yara rules are generally plain-text, meaning that if you scan a Yara rule file
using that Yara rule, it may very well alert on itself. If you're going to use
yara rules, you don't want to scan your database directory. Doesn't mean it's
necessarily a poorly written Yara rule, only that
> Date: Friday, January 04, 2019 17:58:52 +0530
> From: Kaushal Shriyan
>
> I have the below details
>
> Is the CentOS Linux release 7.3.1611 (Core) server infected with
> Malware? Please suggest. Thanks in Advance.
Slightly off topic, but related to your overall system security, it
appears
