Hello.
After i had to fiddle a bit with ScPup64's devx, i was able to compile clamav-0.103.0 recently.
I started a basic scan of a backup drive and clamav reports a match:
/mnt/sdb2/slacko64-632/initrd.gz: Unix.Trojan.Mirai-7640640-0 FOUND
In the old forum i have read about Mirai infecting busybox, but when i expanded initrd.gz and scanned it, it doesn't report busybox to be infected but:
Code: Select all
# clamscan -i -o -r initrd-expanded/
/root/initrd-expanded/bin/fusermount: Unix.Trojan.Mirai-7640640-0 FOUND
/root/initrd-expanded/bin/modprobe: Unix.Trojan.Mirai-7640640-0 FOUND
/root/initrd-expanded/bin/hotplug2stdout_notimeout: Unix.Trojan.Mirai-7640640-0
FOUND
/root/initrd-expanded/bin/grep: Unix.Trojan.Mirai-7640640-0 FOUND
/root/initrd-expanded/bin/modinfo: Unix.Trojan.Mirai-7640640-0 FOUND
/root/initrd-expanded/bin/waitmax: Unix.Trojan.Mirai-7640640-0 FOUND
/root/initrd-expanded/bin/disktype: Unix.Trojan.Mirai-7640640-0 FOUND
/root/initrd-expanded/bin/lsmod: Unix.Trojan.Mirai-7640640-0 FOUND
/root/initrd-expanded/bin/cp: Unix.Trojan.Mirai-7640640-0 FOUND
/root/initrd-expanded/bin/elspci: Unix.Trojan.Mirai-7640640-0 FOUND
----------- SCAN SUMMARY -----------
Known viruses: 8881905
Engine version: 0.103.0
Scanned directories: 45
Scanned files: 82
Infected files: 10
Data scanned: 5.89 MB
Data read: 5.21 MB (ratio 1.13:1)
Time: 27.041 sec (0 m 27 s)
Start Date: 2020:12:23 17:08:40
End Date: 2020:12:23 17:09:07
#
I have used this frugal install for at least one year.
Do i have to be worried about it?