HIDS 52502

From Atomicorp Wiki
Revision as of 15:42, 3 January 2013 by Mshinn (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
Rule 52502
Status Active
Alert Message Virus detected

Contents

Description

clamav has detected a virus on the system. There are two primary types of detection that may occur. Via the upload scanner, or via the real time scanner.

Real time scanner example: 

server clamd[10987]: Clamuko: /protected_directory/eicar.com: Eicar-Test-Signature FOUND

Upload scanner example: 

server clamd[10987]: /directory/eicar.com: Eicar-Test-Signature FOUND

Troubleshooting

False Positives

If you believe the file is not malware, please send the file to support. Please make sure you put a password on the file to prevent any antivirus software from preventing you from sending it to us.

Tuning Guidance

None.

Additional Information

Similar Rules

None.

Knowledge Base Articles

None.

Outside References

None.

Notes

Retrieved from "https://wiki.atomicorp.com/wiki/index.php?title=HIDS_52502&oldid=3083"
Personal tools