OT-Antivirova kontrola selhala na viru W32 na aliz (WHATEVER.EXE)

Pondělí Listopad 26 08:22:15 CET 2001

Zdravim,

    Sorry za opozdenu odpoved, ale bol som sluzobne mimo.

> > Otestoval som to a TNEF + AMAVIS + VScan 4 (dat 4171) to bez problemov
chyta
> > !!!
> Jak jste to otestoval? Mam par mailu s virem stale ve schrance, ale
> nedari se mi to preposlat tak, abych dosahl stejneho vysledku jako kdyz
> to posila virus. Muzete mi popsat postup, jak se toho da dosahnout?

    Ten vir sa pokusal mailom preniknut aj k nam na niektorych uzivatelov a
predpokladam ze to posielal samotny virus. Tento mail s virom bol AMAVISOM
zachyteny.


S pozdravom

                                  Contofalsky Rasto


> > > ==
> > > Subject:  Nice shit  ?!
> > > Date: Tue,20 Nov 2001 14:55:36 -0000
> > > MIME-Version: 1.0
> > > Content-Type: multipart/mixed;
> > >         boundary="bound"
> > >         X-Priority: 3
> > >         X-MSMail-Priority: Normal
> > >         X-Mailer: Microsoft Outlook Express 5.50.4522.1300
> > >         X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1300
> > > Status:
> > >
> > > This is a multi-part message in MIME format.
> > >
> > > --bound
> > > Content-Type: text/html;
> > >         charset="iso-8859-1"
> > > Content-Transfer-Encoding: quoted-printable
> > >
> > > <HTML><HEAD></HEAD><BODY><iframe src=3Dcid:SOMECID height=3D0
> > > width=3D0></iframe>
> > > <font>peace</font></BODY></HTML>
> > >
> > > --bound
> > > Content-Type: audio/x-wav;
> > >         name="whatever.exe"
> > > Content-Transfer-Encoding: base64
> > > Content-ID: <SOMECID>
> > >
> > > TVoAAAIAAAACAB4AHgAAAAACAAAAAAAAAAAAAMWnLuEOH7oOALQJ
> > > ..
> > > ..
> > > --bound--
> > > ===