Hi, Thought I'd follow up with the response from Malwarepatrol:
"The classification of a sample hosted on that domain, according to MBL# 17713260 (MD5: 88a1265b2f954a1fb06b6a67f198645e9617007e), is backed by 12 anti-virus products. Therefore, this is not a false positive. There is no reason to believe that the Google infrastructure doesn't host malware. In case you still don't want or can't block such domain, we advise you to whitelist it before applying our block lists." On Tue, Oct 23, 2018 at 8:00 PM Alex <mysqlstud...@gmail.com> wrote: > > Another malwarepatrol fp for docs.google.com > > # sigtool --find-sigs MBL_17713260 |sigtool --decode-sigs > VIRUS NAME: MBL_17713260 > TARGET TYPE: ANY FILE > OFFSET: * > DECODED SIGNATURE: > https://docs.google.com > > I don't even know what to do anymore. Is it worth it to keep malwarepatrol? > > Also, my apologies if this was already reported recently - gmail > disabled my list subscription because somehow there were too many > bounces... How does that even happen!? _______________________________________________ clamav-users mailing list clamav-users@lists.clamav.net http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml