Re: [clamav-users] IPv6 servers having problems?

2016-02-22 Thread James Brown
Yeah, I’ve been getting this for a few days: main.cvd is up to date (version: 55, sigs: 2424225, f-level: 60, builder: neo) WARNING: getpatch: Can't download daily-21398.cdiff from db.JP.clamav.net WARNING: getpatch: Can't download daily-21398.cdiff from db.JP.clamav.net ERROR: getpatch: Can't

Re: [clamav-users] IPv6 servers having problems?

2016-02-22 Thread Joel Esler (jesler)
Jay, I’ve forwarded the email over to our Ops Team. -- Joel Esler Manager, Talos Group On Feb 22, 2016, at 4:06 PM, Jay Clubb > wrote: Starting to see more and more of this: ERROR: getpatch: Can't download daily-21400.cdiff from

[clamav-users] IPv6 servers having problems?

2016-02-22 Thread Jay Clubb
Starting to see more and more of this: ERROR: getpatch: Can't download daily-21400.cdiff from db.us.ipv6.clamav.net ERROR: Can't download daily.cvd from db.us.ipv6.clamav.net This weekend I was able to ping one of the ipv6 addresses but now neither one responds. TIA Jay

Re: [clamav-users] clamd server '/var/run/clamd.amavisd/clamd.sock' gave '' response

2016-02-22 Thread Alex
Hi, On Mon, Feb 22, 2016 at 1:57 PM, Joel Esler (jesler) wrote: > Gentlemen. We get the point. We’re working on it. I had a conversation > with the malware lead > last week to see what we can do here. Can you help with my original question about: clamd server

Re: [clamav-users] clamd server '/var/run/clamd.amavisd/clamd.sock' gave '' response

2016-02-22 Thread Dennis Peterson
# grep FOUND /var/log/clamav/clamd.log* |grep -c UNOFFICIAL 80 # grep FOUND /var/log/clamav/clamd.log* |grep -v -c UNOFFICIAL 0 # grep FOUND /var/log/clamav/clamd.log* |grep -c -i sanesecurity 38 # grep FOUND /var/log/clamav/clamd.log* |grep -c -i winnow 42 My logs go back only to January, but

Re: [clamav-users] Another submission of the JavaScript virus

2016-02-22 Thread Gerald Venzl
Hi Joel, Yes, I have submitted all the files and just send four more. This is what I just got back from the systems, looks fine again: Submission completed! *cache_20160222-19-127g1ao.php* has been successfully sent to the virusdb maintainer team... On Mon, Feb 22, 2016 at 7:01 AM, Joel Esler

Re: [clamav-users] Another submission of the JavaScript virus

2016-02-22 Thread Joel Esler (jesler)
Are you able to submit this file to us via ClamAV.net? -- Joel Esler Manager, Talos Group On Feb 19, 2016, at 8:39 PM, Gerald Venzl > wrote: Hi, I haven't heard anything back yet from my submission and as I'm new to

Re: [clamav-users] clamd server '/var/run/clamd.amavisd/clamd.sock' gave '' response

2016-02-22 Thread Groach
FWIW, if I may offer opinion: I would agree with Alex with the need to source out better unofficial databases (such as sanesecurity, securiteinfo etc): clam definitions are inherently slow on the uptake of new threats, taking a day or more (at best) and in some cases never (ive demonstrated

Re: [clamav-users] clamd server '/var/run/clamd.amavisd/clamd.sock' gave '' response

2016-02-22 Thread Alex
Hi, > Can’t be of much help with your primary issue, but to answer one or your > questions, the official ClamAV database is a bit over 4 million. I can’t > conceive of a situation where you would need every conceivable unofficial > database, but then I have no idea what you are doing with