×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
splunkuser444
New Member
Member since: ‎05-08-2025
‎05-12-2025
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎05-08-2025
View All

Re: ClamAV detects Unix.Trojan.Gitpaste-9787170-0 ...

by in All Apps and Add-ons
‎05-12-2025 09:59 AM
‎05-12-2025 09:59 AM
Thanks for the suggestion PickleRick, I've also submitted a false positive report at https://www.clamav.net/reports/fp. ... View more

ClamAV detects Unix.Trojan.Gitpaste-9787170-0 in f...

by in All Apps and Add-ons
‎05-08-2025 09:06 AM
‎05-08-2025 09:06 AM
Hello all, ClamAV detected Unix.Trojan.Gitpaste-9787170-0 in file Splunk_Research_detections.json. This file appears to be a large repository of security research information and we'd like to verify if this detection is a true concern or if it is a false positive. Threat detection file location: /opt/splunk/etc/apps/Splunk_Security_Essentials/appserver/static/vendor/splunk/Splunk_Research_detections.json Splunk version: 9.4.0 Splunk Security Essentials version: 3.8.1 ClamAV detection: Unix.Trojan.Gitpaste-9787170-0 ClamAV version: 1.4.1/27629 ClamAV definition dates: April 24, 2025 through May 05, 2025 Security Essentials was installed on April 25, 2025 and ClamAV detections began immediately during the first scan following the install. ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎05-12-2025 09:56 AM