bolug bonner linux user group
news about wissen files archive hilfe suchen  

 

archive :: SchAN-User

druckfassung

SchAN-User

[Schan-user] Locky Trojaner

To: "'Schulen ans Netz - Anwender'" <schan-user@xxxxxxxxxxxxxxxxx>
Subject: [Schan-user] Locky Trojaner
From: "Miroslaw Wilczak" <wilczakm@xxxxxxxxxxxxxxxx>
Date: Mon, 6 Jun 2016 00:27:03 +0200
 
Hallo,

ich hatte Windows 7 HDD an Arktur als USB angeschlossen
und mit der neuesten Avira prüfen lassen.

Capella:~/bin # ./virscan /mnt/hd &
[1] 9885
Capella:~/bin # ============= ClamAV =============
LibClamAV Warning: cli_loadldb: logical signature for Win.Trojan.ssid18332-1 
uses
PCREs but support is disabled, skipping
LibClamAV Warning: cli_loadldb: logical signature for Win.Ransomware.Locky-4 
uses
PCREs but support is disabled, skipping
LibClamAV Warning: cli_loadldb: logical signature for 
Html.Exploit.CVE_2016_0184-1
uses PCREs but support is disabled, skipping

Die gleichen Meldungen  hatte freshclam geschrieben:

Capella:~/bin # freshclam
ClamAV update process started at Mon Jun  6 00:08:19 2016
WARNING: [LibClamAV] cl_cvdhead: Can't read CVD header in main.cvd
WARNING: getfile: Unknown response from database.clamav.net (IP: 78.46.82.212)
WARNING: Can't download main.cvd from database.clamav.net
Trying again in 5 secs...
ClamAV update process started at Mon Jun  6 00:08:24 2016
WARNING: [LibClamAV] cl_cvdhead: Can't read CVD header in main.cvd
Downloading main.cvd [100%]
main.cvd updated (version: 57, sigs: 4218790, f-level: 60, builder: amishhammer)
WARNING: [LibClamAV] cl_cvdhead: Can't read CVD header in daily.cvd
Downloading daily.cvd [100%]
[LibClamAV] cli_loadldb: logical signature for Win.Trojan.ssid18332-1 uses PCREs
but support is disa                       bled, skipping
[LibClamAV] cli_loadldb: logical signature for Win.Ransomware.Locky-4 uses PCREs
but support is disa                       bled, skipping
[LibClamAV] cli_loadldb: logical signature for Html.Exploit.CVE_2016_0184-1 uses
PCREs but support i                       s disabled, skipping
daily.cvd updated (version: 21677, sigs: 236479, f-level: 63, builder: neo)
bytecode.cvd is up to date (version: 277, sigs: 47, f-level: 63, builder: neo)
Database updated (4455316 signatures) from database.clamav.net (IP: 
64.6.100.177)



Was soll ich davon halten?

Viele Grüße
Mirek



_______________________________________________
schan-user mailing list
schan-user@xxxxxxxxxxxxxxxxx
http://www.heise.de/ct/schan

 

seitenanfang


 

news about wissen files archive hilfe suchen  
kontakt letzte änderung: 06.06.2016