Hi
We are getting what are considered FP's on some PDF attachments which
are locked for editing .
These PDF's can be read but not edited without a password. Due to the
contents being private I cannot submit a sample.
I do have the output of clamscan --debug if this may help resolve a
Hi,
Since this event is triggered by a heuristic check (dependent on your
settings) and not a signature, that makes this a potential issue with the
code. It would be great if you could submit a bug (please include your
OS+arch, version of clam, and method of installation alongside your
report),
[Heuristics.Encrypted.PDF(e555f48bc6539cac03976b450b3a33e0:114630)]
hits also non-enrycpted PDF attachemnts andno i can't report the sample
because it contains private informations of a 3rd party
___
clamav-users mailing list
5.5 CLAMAV_JNK ClamAV detected malware/phishing/junk
[Heuristics.Encrypted.PDF(4b0c49140b7e9ca11c82f24d02a125a2:233495)]
bad enough that you can't distinct in the config between encrypted zip
arhgcives and encrypted PDF attachments but fact is that
Heuristics.Encrypted.PDF hits on ordinary PDF
Am 15.04.2017 um 16:51 schrieb Dino Edwards:
We seem to be getting a lot of false positives with the following message:
INFECTED, message contains virus: Heuristics.Encrypted.PDF
The reason I know they are false positives is because when looking at the
attached PDFs, there is no passwords
We seem to be getting a lot of false positives with the following message:
INFECTED, message contains virus: Heuristics.Encrypted.PDF
The reason I know they are false positives is because when looking at the
attached PDFs, there is no passwords set on them. The simple answer would be to
simply
