[clamav-users] Virus-Datebase-Updates?

Joel Esler (jesler) jesler at cisco.com
Tue Jan 19 17:11:28 EST 2016


When you see “Added: No” in a virus report, 99x out of 100, that means its detected by something else.  For example, the second one there, it has been submitted by 10 different entities, it must have been submitted (again) recently, and was detected by a signature that we’ve pulled. (it was a false positive).  Meaning, someone submitted a false positive for a file against a signature we’ve pulled a long time ago (years ago).


Which actually means that someone hasn’t updated their virus definitions in that long.  Those are things we can’t help.  We can recommend Freshclam though.
--
Joel Esler
Manager, Threat Intelligence Team & Open Source
Talos Group
http://www.talosintel.com




On Jan 17, 2016, at 11:45 PM, Walter H. <Walter.H at mathemainzel.info<mailto:Walter.H at mathemainzel.info>> wrote:

Hello,

I want an explanation, why not adding?
(as this would bring ClamAV into a total wrong view: "A Antivirus detecting only wanted Threats and not any")

"ClamAV database updated (17 Jan 2016 19-07 -0500): daily.cvd
Version: 21274

Submission-ID: 5023165
Sender: Virus Total
Sender: John Golden
Sender: Anonymous
Added: No

Submission-ID: 9572364
Sender: Virus Total
Sender: Jamie Cox
Sender: VirScan.org<http://virscan.org>
Sender: ShadowServer
Sender: Tom Garman
Sender: Juergen Kosel
Sender: Anonymous
Sender: ELETTROCASA
Sender: Bruce Kohl
Sender: Sergio
Sender: Marco
Added: No

Submission-ID: 15935626
Sender: Virus Total
Sender: Sunbelt
Sender: Anonymous
Sender: OC
Sender: Gary Myers
Added: No

Submission-ID: 18712580
Sender: Virus Total
Sender: VirScan.org<http://virscan.org>
Sender: Anonymous
Sender: Paul Olejniczak
Sender: Brad Blake
Added: No

Submission-ID: 20896459
Sender: Virus Total
Sender: Immunet
Sender: tones
Sender: Anonymous
Sender: Constantinos Simserides
Sender: Edwin Parker
Sender: Simon Whittam
Sender: max
Added: No

Submission-ID: 25541582
Sender: Virus Total
Sender: VirScan.org<http://virscan.org>
Sender: Tom Garman
Sender: Anonymous
Sender: Robert Gierzinger
Sender: Nicolas Ouellette
Added: No

Submission-ID: 26892363
Sender: Virus Total
Sender: Jamie Cox
Sender: Anonymous
Sender: Derik Vega
Sender: Brad Blake
Added: No

Submission-ID: 33258905
Sender: Virus Total
Sender: Anonymous
Sender: Andreas Wetzel
Added: No

Submission-ID: 33736781
Sender: Virus Total
Sender: Anonymous
Sender: Michael Burns
Added: No

Submission-ID: 9415744
Sender: Virus Total
Sender: VirScan.org<http://virscan.org>
Sender: ShadowServer
Sender: SonicWALL
Sender: Sunbelt
Sender: Anonymous
Sender: Brad Blake
Added: No

Submission-ID: 40032907
Sender: Anonymous
Sender: Comodo
Added: No

Submission-ID: 40032929
Sender: Virus Total
Sender: Anonymous
Sender: Comodo
Added: No

Submission-ID: 40032940
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033026
Sender: Virus Total
Added: No

Submission-ID: 40033066
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033092
Sender: Virus Total
Added: No

Submission-ID: 40033099
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033107
Sender: Anonymous
Added: No

Submission-ID: 40033114
Sender: Virus Total
Added: No

Submission-ID: 40033116
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033152
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033231
Sender: Virus Total
Added: No

Submission-ID: 40033244
Sender: Virus Total
Sender: Sunbelt
Sender: Anonymous
Added: No

Submission-ID: 40033245
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033258
Sender: Virus Total
Added: No

Submission-ID: 40033294
Sender: Virus Total
Sender: Sunbelt
Sender: Anonymous
Added: No

Submission-ID: 40033297
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033317
Sender: Virus Total
Added: No

Submission-ID: 40033398
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033593
Sender: Virus Total
Sender: Anonymous
Sender: Comodo
Added: No

Submission-ID: 40033603
Sender: Virus Total
Added: No

Submission-ID: 40033655
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033700
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40033738
Sender: Anonymous
Added: No

Submission-ID: 40033763
Sender: Anonymous
Sender: Comodo
Added: No

Submission-ID: 40033779
Sender: Anonymous
Added: No

Submission-ID: 40033942
Sender: Virus Total
Sender: Anonymous
Sender: Comodo
Added: No

Submission-ID: 40033952
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40034010
Sender: Anonymous
Added: No

Submission-ID: 40034015
Sender: Virus Total
Added: No

Submission-ID: 40034171
Sender: Anonymous
Added: No

Submission-ID: 40034199
Sender: Anonymous
Added: No

Submission-ID: 40034243
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40034360
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40034456
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40034501
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40034544
Sender: Virus Total
Added: No

Submission-ID: 40034579
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40034704
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40034734
Sender: Anonymous
Added: No

Submission-ID: 40034883
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40034940
Sender: Virus Total
Sender: ShadowServer
Added: No

Submission-ID: 40034961
Sender: Virus Total
Added: No

Submission-ID: 40035060
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40035061
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40035105
Sender: Virus Total
Added: No

Submission-ID: 40035187
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40035226
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40035312
Sender: Virus Total
Sender: Sunbelt
Added: No

Submission-ID: 40035313
Sender: Virus Total
Added: No

Submission-ID: 40035492
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40035582
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40035597
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40035703
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40035704
Sender: Virus Total
Sender: Sunbelt
Added: No

Submission-ID: 40035722
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40035805
Sender: Virus Total
Added: No

Submission-ID: 40036074
Sender: Virus Total
Added: No

Submission-ID: 40036107
Sender: Anonymous
Added: No

Submission-ID: 40036139
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40036167
Sender: Virus Total
Sender: Anonymous
Added: No

Submission-ID: 40036194
Sender: Virus Total
Added: No

Submission-ID: 40036213
Sender: Anonymous
Added: No

Submission-ID: 40036549
Sender: Jotti
Sender: Virus Total
Sender: Anonymous
Added: No"


Thanks,
Walter


_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml



More information about the clamav-users mailing list