Thank you - I have an old install that's being picked up in my path. $ clamscan --version clamscan / ClamAV version 0.60
$ /home/clamav/bin/clamscan --version clamscan / ClamAV version 0.74 $ /home/clamav/bin/clamscan /tmp/cur/MoreInfo.zip /tmp/cur/MoreInfo.zip: Worm.Bagle.Gen-zippwd FOUND But please still enlighten me, if the email attachment is zipped and is password protected how does clamav detect it? Does clamav have most know Zip passwords in the database? Or is it not even necessary to have the password. Thanks Zack -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tomasz Kojm Sent: Tuesday, July 27, 2004 1:56 PM To: [EMAIL PROTECTED] Subject: Re: [Clamav-users] sigtool outout very large On Tue, 27 Jul 2004 12:48:55 -0700 "zbuckholz" <[EMAIL PROTECTED]> wrote: > My basic question is why will clamscan not detect this Bagle , and if I'm sure your version is older than 0.70. -- oo ..... Tomasz Kojm <[EMAIL PROTECTED]> (\/)\......... http://www.ClamAV.net/gpg/tkojm.gpg \..........._ 0DCA5A08407D5288279DB43454822DC8985A444B //\ /\ Tue Jul 27 22:55:14 CEST 2004 ------------------------------------------------------- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=4721&alloc_id=10040&op=click _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users