Re: Re: Unix.Trojan.Vali-6606621-0 FOUND

2018-07-16 Thread Gyorgy Fekete
It’s 99% false positive from ClamAV, because I found this on one of my servers, so I ordered a fresh new one and after distro updates I only installed ClamAV and did a full scan and it reported systemd-mount being infected.

Re: Unix.Trojan.Vali-6606621-0 FOUND

2018-07-14 Thread tomas
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sat, Jul 14, 2018 at 05:50:19PM +0200, Hubert Hauser wrote: > Hello! > > Here's my /etc/apt/sources.list: [...] > I don't download anything outside from above lists. Then debsum's your friend (if you trust Debian, that is). Cheers - -- tomás --

Re: Unix.Trojan.Vali-6606621-0 FOUND

2018-07-14 Thread Ric Moore
On 07/14/2018 11:50 AM, Hubert Hauser wrote: Hello! Please don't top post. Ric -- My father, Victor Moore (Vic) used to say: "There are two Great Sins in the world... ..the Sin of Ignorance, and the Sin of Stupidity. Only the former may be overcome." R.I.P. Dad. http://linuxcounter.net/user/4

Re: Unix.Trojan.Vali-6606621-0 FOUND

2018-07-14 Thread Hubert Hauser
Hi! I would like to include results from VirusTotal: https://www.virustotal.com/#/file/3a17685ad710bcec4cb19238a60cc48675f1af5526e3b254dc092e8404f33e4f/detection https://www.virustotal.com/#/file/939f9091292841910b59ba626a17070c0d2b823b6915ae3fbdbfabdc12eb1f06/detection Only ClamAV detects viru

Re: Unix.Trojan.Vali-6606621-0 FOUND

2018-07-14 Thread Hubert Hauser
Hello! Here's my /etc/apt/sources.list: deb http://deb.debian.org/debian stable main deb-src http://deb.debian.org/debian stable main deb http://deb.debian.org/debian stable-updates main deb-src http://deb.debian.org/debian stable-updates main deb http://security.debian.org/ stable/updates main

Re: Unix.Trojan.Vali-6606621-0 FOUND

2018-07-14 Thread Ben Oliver
On 18-07-14 16:52:50, Hubert Hauser wrote: /usr/bin/messages.mailutils: Unix.Trojan.Vali-6606621-0 FOUND /usr/bin/systemd-mount: Unix.Trojan.Vali-6606621-0 FOUND For what it's worth, this has also come up on the Arch Mailing List. I've also seen it on Gentoo [0] and Linux Questions [1]. The pa

Re: Unix.Trojan.Vali-6606621-0 FOUND

2018-07-14 Thread tomas
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sat, Jul 14, 2018 at 04:52:50PM +0200, Hubert Hauser wrote: > Hello! > > I have recently received a following mail from root > : > > Please see the log file attached. > > clamav-2018-07-14.log > > /usr/bin/messages.mailutils: Unix.Trojan.Vali-66

Re: Unix.Trojan.Vali-6606621-0 FOUND

2018-07-14 Thread Hans
Am Samstag, 14. Juli 2018, 16:52:50 CEST schrieb Hubert Hauser: Hi Hubert, it is not sure, this is really a virus. A virusscanner just looks at singantures, which look like a virus. However, you may check for differences between the original package and your installed binaries. If there are n