> I meant that the other day there was a URL in the body of an email > that passed through as ham when in fact it ended in 'ecard.exe' and, > should the recipient download it, would be shown to be a trojan. > Doesn't clamav block stuff like this, I thought?
Hi Alex, If you still have a copy of the headers & body, could you send me a sample: samples AT sanesecurity DOT me DOT uk I'll run it against the dbs I've got here. Cheers, Steve Sanesecurity _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
