Brian Morrison wrote:
> > > Seems like any other sort of trojan to me, I can't see why > > > the signature > > > would be different because the zombie is using the ISP's smarthost > > > for outgoing mail. Of course ClamAV will be able to detect such a > > > thing... > > > > Wow.. I guess I was *really* unclear.. Lemme try again... > > The article suggests that this virus/trojan is already in the wild. > > Does anyone know which one the article is talking about? And does > > ClamAV already have a signature for it? > > > > You could scan through the added signatures in the clamav-virusdb list > and see what's there. I have not done so myself but there have been a > fair few updates in the last few days. Not meaning to be contrary, but that advice would require that someone actually tell the gentleman which trojan it is :) Matt _______________________________________________ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users