[clamav-users] Win.Trojan.Zwangi-432 / Osx.Exploit.CVE_2006_0848 / PHP.Shell-29

DUCARROZ Birgit birgit.ducarroz at unifr.ch
Tue Jul 8 05:11:25 EDT 2014


Hi Alain,

Just some questions about the form:
Platform: You mean the platform where clamav is installed, not the 
platform the virus is for, just?
What do you mean I must attach with "raw message"? The output of the 
virus-scan? Or the file containing the virus (or false positive)?

- Birgit


On 07. 07. 14 15:20 , Alain Zidouemba wrote:
> Birgit,
>
> Let us know when you've uploaded those files.
>
> Thanks,
>
> - Alain
>
>
> On Mon, Jul 7, 2014 at 6:13 AM, DUCARROZ Birgit <birgit.ducarroz at unifr.ch>
> wrote:
>
>> No, since I did not know this form. I will do it ...
>> - Birgit
>>
>>
>> On 07. 07. 14 12:11 , Al Varnell wrote:
>>
>>> Have you already uploaded the files to <http://www.clamav.net/sendvirus/>
>>> using the “Send a false positive report” form?
>>>
>>> -Al-
>>>
>>> On Jul 7, 2014, at 3:04 AM, DUCARROZ Birgit <birgit.ducarroz at unifr.ch>
>>> wrote:
>>>
>>>> I beleave those are false positives.
>>>> Please would you check the md5 hashes?
>>>> Thank you a lot!
>>>> Regards,
>>>> Birgit
>>>>
>>>> Win.Trojan.Zwangi-432 FOUND --> md5 --> 9052a26074751a4a3668764ddfac0b55
>>>> Osx.Exploit.CVE_2006_0848 FOUND --> md5 -->
>>>> 92fdafd02acc4f968d897dc861decb7c
>>>> PHP.Shell-29 FOUND --> md5 --> b4a09911a5b23e00b55abe546ded691c
>>>> Osx.Exploit.CVE_2006_0848 FOUND --> md5 -->
>>>> 6434722cffeb95b95e32efd6f5523636
>>>> Osx.Exploit.CVE_2006_0848 FOUND --> md5 -->
>>>> f3ce0e00c7277c60903156c7b349e92d
>>>>
>>>>
>>>> ----------- SCAN SUMMARY -----------
>>>> Known viruses: 3493754
>>>> Engine version: 0.97.8
>>>> Infected files: 5
>>>>




More information about the clamav-users mailing list