General > Security & Bug Fixes
SECURITY SOPHOS - reported infection - False positive??
newtusmaximus:
Have retraced steps using Fuji Si1520.
Fresh install of LL3.2 64bit from dvd iso originally downloaded 24/03/2017 MDSUM checked.. No updates installed. No additional software added by any route.
Language set to UK English and Keyboard to Fujitsu Amilo.
Sophos downloaded and updated and full scan "savscan /"
Sophos detected Virus in Lite-info. As reported above previously.
Could not do md5sum on lite-info as quarantined.
So?? False positive??
Full Terminal record available if needed.
Scott:
I submitted the file (/usr/bin/lite-info) to VirusTotal - out of 56 antivirus engines only *one* (Sophos) claims it's a problem and clicking the Sophos link doesn't yield that much information.
My scan
https://www.virustotal.com/en/file/ee61e9c7f13b355ad6c6f90a9c5153ef99b80eedc6807fdb88b581522e985fe6/analysis/1491921590/
If the above link doesn't work any longer you can create a new scan here
https://www.virustotal.com/
newtusmaximus:
Can't get at the file on the HPdc7700p as it has been quarantined by SOPHOS. Concerned about this desktop as it is used daily, and steady input/output of files to/from colleagues.
Did remove the file ( prior to your instruction to do otherwise) on family laptop fujiSi1520 (Ll3.4 64bit). Once I have recorded all the software added, Intend to reinstall from the 3.2 64bit DVD originally used, load SOPHOS and retrace steps to see if I can duplicate the problem and try an identify what triggered it??
As they say "watch this space".
Jerry:
Out of curiosity, what is the result of:
--- Code: ---md5sum /usr/bin/lite-info
--- End code ---
(providing you haven't removed that file)
newtusmaximus:
My guess woud be a lot wilder than yours :) and far less informed!!
Navigation
[0] Message Index
[#] Next page
Go to full version