ble?
>
> Best regards,
> Toshiyuki Honda
>
> ___
>
> clamav-users mailing list
> clamav-users@lists.clamav.net
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://
My best guess is that it is false-positive, as this filesystem is
> totally isolated from any interactive user access.
> >
> > But where can i find the details behind this alert ?
> >
> > Google has no match on this.
>
> ___
>
> clamav-users mai
; +-> OFFSET: ANY
> +-> SIGMOD: NONE
> +-> DECODED SUBSIGNATURE:
> bo
> * SUBSIG ID 4
> +-> OFFSET: ANY
> +-> SIGMOD: NONE
> +-> DECODED SUBSIGNATURE:
> blake
>
>
> -Al-
> --
> Al Varnell
> ClamXAV user
>
>
>
>
> __________
AR string, and the message certainly wasn't 68 bytes
> long.
>
> For reference, clamscan does not detect EICAR in these messages, and
> rightly so.
>
> ___
> clamav-users mailing list
> clamav-users@lists.clamav.net
> http:/
> clamav-users@lists.clamav.net
> http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
--
Matthew Molyett
Malware Researcher
riteInfoCom
> ___
> clamav-users mailing list
> clamav-users@lists.clamav.net
> http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> h
> > >>
> > >> http://www.clamav.net/contact.html#ml
> > >>
> > > ___
> > > clamav-users mailing list
> > > clamav-users@lists.clamav.net
> > > http://lists.clamav.net/cgi-bin/mailman/listin
pes
> you should read signatures.pdf
> <https://github.com/vrtadmin/clamav-devel/blob/master/docs/signatures.pdf
> >.
>
> -Al-
PS: Sharp eyed readers may have noticed the Unicode homoglyphs being used
in the decoded signature and discussion. That was done to prevent the text
of these