Revision as of 16:42, 3 January 2013 (edit) Mshinn (Talk | contribs) (Created page with "{{Infobox |header1= Rule 52502 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Virus detected }} = Description = clamav has detected a virus on the system....") Newer edit →

---

Revision as of 16:42, 3 January 2013

Rule 52502
Status	Active
Alert Message	Virus detected

Contents 1 Description 2 Troubleshooting 2.1 False Positives 2.2 Tuning Guidance 3 Additional Information 3.1 Similar Rules 3.2 Knowledge Base Articles 3.3 Outside References 3.4 Notes

Description

clamav has detected a virus on the system. There are two primary types of detection that may occur. Via the upload scanner, or via the real time scanner.

Real time scanner example:

server clamd[10987]: Clamuko: /protected_directory/eicar.com: Eicar-Test-Signature FOUND

Upload scanner example:

server clamd[10987]: /directory/eicar.com: Eicar-Test-Signature FOUND

Troubleshooting

False Positives

If you believe the file is not malware, please send the file to support. Please make sure you put a password on the file to prevent any antivirus software from preventing you from sending it to us.

Tuning Guidance

None.

Additional Information

Similar Rules

None.

Knowledge Base Articles

None.

Outside References

None.

Notes