|
Direc
| Joined: 08 Apr 2008 |
| Posts: 0 |
|
|
|
 Posted: Tue Apr 08, 2008 2:16 pm |
|
 |
 |
|
|
Hi
I just noticed, that using Ubuntu and ClamTk, which uses Clamav, when I try to scan Windows Vista install partition, I get "false positives" as it recognizes multiple Office-releated HXS (some sort of compiled help files) as Broken.Executable files. Example filenames include excel.hxs onenote.hxs and winword.hxs.
A quick forum search didn't return anything, so I thought I should make a new thread.
Oh, and the versions are (as reported by ClamTk): ClamAV 0.92.1, signatures 247349 08 Apr 2008
--
Matti Viljanen
|
|
|
|
b0ne
| Joined: 26 Oct 2006 |
| Posts: 0 |
|
|
|
| Posted: Tue Apr 08, 2008 3:07 pm |
|
|
|
|
|
fyi: ClamWin is the GUI front-end and windows port ClamAV. They don't support the engine or the signatures. (see www.clamav.net for that)
Having encountered questions of this type before, (searching before asking is always a polite thing to do...) the following posts should shed some light on your concern:
https://forums.clamwin.com/viewtopic.php?t=791
https://forums.clamwin.com/viewtopic.php?t=709
|
|
|
|
alch
Site Admin
| Joined: 27 Nov 2005 |
| Posts: 0 |
|
|
|
| Posted: Tue Apr 08, 2008 3:08 pm |
|
|
|
|
|
clamwin does not enable --detect-broken by default as it does indeed yield too many false positives and provides little benefit outside of a mail-server usage scenario.
Please note that this forum is not for ClamTk or ClamAV - it is for ClamWin only.
|
|
|
