dominiquec
September 17th, 2009, 07:36 PM
Just a question out there to the guys who use ClamAV: how effective is it? I tried it just now on a known infected file (from Windows) and the outcome was nil. Full details here (http://ubuntuliving.blogspot.com/2009/09/clamav-fail.html), but the essentials:
I ran the scan using the command-line tool clamscan, using the virus definitions main.cvd (released ver. 51 released on 14 May 2009 10:28 :0400) and daily.cvd (ver. 9814 released on 17 Sep 2009 13:17 :0400)
Result:
----------- SCAN SUMMARY -----------
Known viruses: 623483
Engine version: 0.95.2
Scanned directories: 8
Scanned files: 37
Infected files: 0
Data scanned: 50.70 MB
Data read: 88.91 MB (ratio 0.57:1)
Time: 9.567 sec (0 m 9 s)
However, I'm certain the files were infected with Backdoor:Win32/FlyAgent.F (based on the signatures from this ThreatExpert entry. (http://www.threatexpert.com/report.aspx?md5=aaf390e08873a12b0dc1c5a9a468f233)
Any suggestions?
I ran the scan using the command-line tool clamscan, using the virus definitions main.cvd (released ver. 51 released on 14 May 2009 10:28 :0400) and daily.cvd (ver. 9814 released on 17 Sep 2009 13:17 :0400)
Result:
----------- SCAN SUMMARY -----------
Known viruses: 623483
Engine version: 0.95.2
Scanned directories: 8
Scanned files: 37
Infected files: 0
Data scanned: 50.70 MB
Data read: 88.91 MB (ratio 0.57:1)
Time: 9.567 sec (0 m 9 s)
However, I'm certain the files were infected with Backdoor:Win32/FlyAgent.F (based on the signatures from this ThreatExpert entry. (http://www.threatexpert.com/report.aspx?md5=aaf390e08873a12b0dc1c5a9a468f233)
Any suggestions?