Hi!
I would like to include results from VirusTotal:
https://www.virustotal.com/#/file/3a17685ad710bcec4cb19238a60cc48675f1af5526e3b254dc092e8404f33e4f/detection
https://www.virustotal.com/#/file/939f9091292841910b59ba626a17070c0d2b823b6915ae3fbdbfabdc12eb1f06/detection
Only ClamAV detects virus. It seems for me like false positive. Is
ClamAV enough good antivirus at the days?
--
Best wishes,
Hubert Hauser.
On 14/07/18 17:50, Hubert Hauser wrote:
Hello!
Here's my /etc/apt/sources.list:
deb http://deb.debian.org/debian stable main
deb-src http://deb.debian.org/debian stable main
deb http://deb.debian.org/debian stable-updates main
deb-src http://deb.debian.org/debian stable-updates main
deb http://security.debian.org/ stable/updates main
deb-src https://security.debian.org/ stable/updates main
I don't download anything outside from above lists.
--
Best regards,
Hubert Hauser.
On 14/07/18 17:41, tomas@tuxteam.de
wrote:
On Sat, Jul 14, 2018 at 04:52:50PM +0200,
Hubert Hauser wrote:
> Hello!
> I have recently received a following mail from root
> <clamav-daily@autisticstory.net>:
> Please see the log file attached.
> clamav-2018-07-14.log
> /usr/bin/messages.mailutils: Unix.Trojan.Vali-6606621-0
FOUND
> /usr/bin/systemd-mount: Unix.Trojan.Vali-6606621-0 FOUND
Hm. Throwing that into a search engine of my trust (no, not
Google)
turns up lots of strange-looking websites.
If you have installed all your packages from a trusted source
(what's
in your /etc/apt/sources.list?), you might want to double-check
with
debsums whether those files mentioned by clamav have changed
from the
original.
With dpkg -S you can find out which package those files came
with.
Cheers
-- tomás
>
|