'Re: [clamav-users] [clamav-virusdb] Signatures Published daily - 21467'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       clamav-users
Subject:    Re: [clamav-users] [clamav-virusdb] Signatures Published daily - 21467
From:       Al Varnell <alvarnell () mac ! com>
Date:       2016-03-19 9:05:32
Message-ID: B6DCFD45-5EBB-497B-AB0A-96F909C85DFA () mac ! com
[Download RAW message or body]

[Attachment #2 (multipart/signed)]


FYI, if I ignore "Win.Trojan.Trojan-476" ([main.hdb] \
aa15bcf478d165efd2065190eb473bcb:544) all of the test files below are identified as \
"Clamav.Test.File-6" ([daily.hdb] aa15bcf478d165efd2065190eb473bcb:544).

-Al-

On Fri, Mar 18, 2016 at 07:40 PM, Al Varnell wrote:
> 
> Not sure exactly what this update was about (suspect a test), and perhaps I don't \
> have the correct Clamav.Text.File (s) but scanning the 0.99.1 source file I am \
> still getting the following: 
> > File Name	Infection Name	Status
> > /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam_cache_emax.tgz	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.ea05.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.bin-be.cpio	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-aspack.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-mew.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.exe.rtf	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.pdf	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clamjol.iso	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.chm	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.odc.cpio	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.ole.doc	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.impl.zip	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-nsis.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.zip	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.ppt	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-v3.rar	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.tar.gz	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.exe.mbox.uu	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.ea06.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam_IScab_int.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.sis	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-fsg.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-pespin.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-petite.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-upack.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-upx.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-v2.rar	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-wwpack.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam-yc.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.7z	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.arj	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.bin-le.cpio	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.bz2.zip	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.cab	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.d64.zip	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.exe.binhex	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.exe.bz2	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.exe.html	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.exe.mbox.base64	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.exe.szdd	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.iso	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.mail	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.newc.cpio	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam.tnef	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam_IScab_ext.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam_ISmsi_ext.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/clam_ISmsi_int.exe	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/.split/split.clam.isoaa	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/.split/split.clam_IScab_ext.exeaa	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/.split/split.clam_IScab_int.exeaa	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/test/.split/split.clamjol.isoaa	Win.Trojan.Trojan-476	
> >  /Users/avarnell/Downloads/2016-03-02/clamav-0.99.1/unit_tests/clam-phish-exe	Win.Trojan.Trojan-476	
> > 
> 
> Can this be fixed or do I need to submit all fifty-five test files as FP's?
> 
> -Al-
> 
> > Begin forwarded message:
> > 
> > From: noreply@sourcefire.com
> > Subject: [clamav-virusdb] Signatures Published daily - 21467
> > Date: March 18, 2016 at 5:23:36 PM PDT
> > To: clamav-virusdb@lists.clamav.net
> > 
> > 
> > ClamAV Signature Publishing Notice
> > 
> > Datefile:       daily
> > Version:        21467
> > Publisher:       
> > New Sigs:       3
> > Dropped Sigs:   0
> > Ignored Sigs:   0
> > 
> > 
> > New Detection Signatures:
> > 
> > 
> > * Clamav.Test.File-6
> > 
> > * Clamav.Test.File-7
> > 
> > * Win.Trojan.Agent-1393459
> > 
> > 
> > Dropped Detection Signatures:
> > 
> > 
> > 
> > Ignored Detection Signatures:

-Al-
-- 
Al Varnell
Mountain View, CA


["smime.p7s" (smime.p7s)]

0€	*†H†÷
 €0€10	+0€	*†H†÷
 ‚>0‚:0‚" Ý¡=’XMQÅ-Ù¿ã[É0
	*†H†÷
0›10	UGB10UGreater Manchester10USalford10U
COMODO CA Limited1A0?U8COMODO SHA-256 Client Authentication and Secure Email \
CA0 160220000000Z
170219235959Z0"1 0	*†H†÷
	alvarnell@mac.com0‚"0
	*†H†÷
‚0‚
‚—ŽxX¼îF/JS¸j£ÿ]a‹f¨‡\jYþÇHê—X¤“E°ÍM3A} \
ª7–ïÛ_Ë>=£å>„gµrzã!TS0Ä(¸¬–4;þu!¾d2ÿØ·©qÈSß…¹ó ¬xäû_4$(âÜ* \
!èæïV&½ŠŸK‘'°©Ì¢iöÒÎÑÌñtÊ¾ÖtZ¥Aƒ‰/ÚÊIÄ{Ýäø"œìMY´˜9ÁÓŒÓ´•šsàq)† \
jŒ©Ü¤‚'!ícÕ÷Ìu¼\nñp©@Úè«Dh=©Zÿ¨èÇšˆP{ \
®Ø<Û·›…«¤ËÝÇˆ¯ü²zËXë£‚ï0‚ë0U#0€’ak‚á¢ ªOìgñ \
£÷´€Áì0U|ðŒ|zA‚•ÁEÅ&ÏÄð£,0Uÿ 0Uÿ00 \
U%0++²10	`†H†øB 0FU \
?0=0;+²10+0)+https://secure.comodo.net/CPS0]UV0T0R P \
N†Lhttp://crl.comodoca.com/COMODOSHA256ClientAuthenticationandSecureEmailCA.crl0+ \
ƒ0€0X+0†Lhttp://crt.comodoca.com/COMODOSHA256ClientAuthenticationandS \
ecureEmailCA.crt0$+0†http://ocsp.comodoca.com0U0alvarnell@mac.com0 \
	*†H†÷ ‚4|=ÍoŸf°ä3`Jkß7ª³Ð©ôò·?üI'‚À¯R1ú—"ëÝ‹™bð-¼s(*b/äHA~´=ÖE"u¶V \
?¨I.ŸÊèÍŽLÔQpIâát*Ö¢Ëd2¡;$4]¦fdÜ`xÕ/U°Ï÷—°žynU8!ô‡‚qœ¨.ÁÞoàøï¨ÐmM|,f=¥ÃkŒ[?s“	éÈ\^ïºm%Ë \
"ÿ´9‘H‹ðÊ‰ª£3;Aþ"qßàÚÍ†µjŒµÍãÛx¬™¤è3Ù†æ›Í¤l>¯”0^ËSW,ûë’N‚4— \
|	ª¹GôŽ˜Ç^ÀÚ1‚Æ0‚ 0±0›10	UGB10UGreater \
Manchester10USalford10U COMODO CA Limited1A0?U8COMODO SHA-256 \
Client Authentication and Secure Email CAÝ¡=’XMQÅ-Ù¿ã[É0	+ ‚é0	*†H†÷ \
	1	*†H†÷ 0	*†H†÷
	1
160319090533Z0#	*†H†÷
	1f¥ºVvZ3úÏzGìCkØzà0 	+‚71´0±0›10	UGB10UGreater \
Manchester10USalford10U COMODO CA Limited1A0?U8COMODO SHA-256 \
Client Authentication and Secure Email CAÝ¡=’XMQÅ-Ù¿ã[É0Ä*†H†÷ 	1´ \
±0›10	UGB10UGreater Manchester10USalford10U COMODO CA \
Limited1A0?U8COMODO SHA-256 Client Authentication and Secure Email \
CAÝ¡=’XMQÅ-Ù¿ã[É0 	*†H†÷
‚{P…‚Š·ÁB'SÕ…!ÖïCPKbQ/JËÜ@ÙÎ	+a²Ä[£âYvC~è•ÿŠüRŸ^¸ÆgIÁNTµ_ÌÇâ+ªZ›ÃŸ”%ÌBÇæåŠ¿Ø?¨s™ÜñskÜ½Ãª„óiáòIZÐ"¤o(x]†$å®
 Ø‚Ú8M;¤Y«¡»^ò–q…Äè5‰ÛÒd”3ÒŒÀÄP¿é%`×ƒ£íM•dId9J÷ƒ‰ÐºY”äÚç9ÍÝÅ3°¦Îÿk(¯@_ü6[…¬äLî™{"W¦kx’²«øªgä¦ \
Þ§Û\· um\vôð«w%yìL



_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic