Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

Clamscan found infected file at Nagios server

https://support.nagios.com/forum/viewtopic.php?t=38778

Page 1 of 1

Clamscan found infected file at Nagios server

Posted: Wed Jun 08, 2016 3:25 am
by inas.labib
Hi,

We use Nagios XI (Version:5.2.2) and everyday clamscan runs (Antivirus) @ the nagios server which found that the below file as infected.
Please advice , whether we need to exclude the file from clamav scan or we can delete the file.

Note: This file available only at the nagios server.

# cat /var/log/clamav/clamscan.log
Wed Jun 8 04:34:02 GST 2016
File name : /usr/local/nsis/share/nsis/Stubs/bzip2_solid : Win.Adware.Agent-1355074 FOUND

Re: Clamscan found infected file at Nagios server

Posted: Wed Jun 08, 2016 9:14 am
by tmcdonald
That is used to help build installers for Windows-based monitoring agents. It was probably marked as adware because it can be used to package code up as a distributable format, something malware does a lot. It's perfectly normal to have in XI.

Re: Clamscan found infected file at Nagios server

Posted: Wed Jun 08, 2016 11:18 am
by inas.labib
Thanks for the update. We will be excluding this file from Antivirus scanning.

Re: Clamscan found infected file at Nagios server

Posted: Wed Jun 08, 2016 11:21 am
by tmcdonald
No problem. Mind if we lock this up?

Re: Clamscan found infected file at Nagios server

Posted: Sun Jun 19, 2016 12:45 pm
by inas.labib
Yes please
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited