On Fri, Jul 11, 2014 at 03:48 PM, Gene Heskett wrote:
home/gene/NookColor/wrar420.exe: Win.Trojan.Small-10237 FOUND
--- SCAN SUMMARY ---
Known viruses: 3871705
Engine version: 0.98.1
Scanned directories: 16196
Scanned files: 191633
Infected files: 1
Total errors: 1
On 29/07/2010 13:22, Eduardo wrote:
Hi, im my e-mail server, has arived many files with a new virus that clamav not
remove
Clamav have any e-mail that i can send this files?
So, I see some files was a mutant virus, and many computer is infected.
in wait
http://cgi.clamav.net/sendvirus.cgi
On 2010-04-09 12:01, Eric Mink wrote:
Hello ,
There is a new virus mail around with a zip file called open.zip
The text in the mail says :
Dear Customer,
This e-mail was send by mechatrac.nl to notify you that we have
temporanly prevented access to your account.
We have reasons to
Hi Thomas,
I grabbed the latest McAfee SuperDAT and extracted it. I ran scan.exe
from the command line like this:
scan c:\ /all /sub /clean /log c:\vscan.log
It reported no viruses.
Every time I try to install McAfee on the machine, I get an error saying
The Windows Installer Service
Hi Thomas,
I grabbed the latest McAfee SuperDAT and extracted it. I ran scan.exe
from the command line like this:
scan c:\ /all /sub /clean /log c:\vscan.log
It reported no viruses.
Every time I try to install McAfee on the machine, I get an error saying
The Windows Installer Service
You shouldn't be allowing .exe's anyway ... Its common knowledge that
.exe .com .bat .pif .scr are all not normal file transmissions. I would
never ever allow a file extension from the listed above to ever be
accepted as a attachment to a e-mail ... It should automaticly be denied
at the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
You shouldn't be allowing .exe's anyway ... Its common knowledge that
.exe .com .bat .pif .scr are all not normal file transmissions. I would
never ever allow a file extension from the listed above to ever be
accepted as a attachment to a e-mail
Does Clam AV block .exe by default?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jeffrey Kroll
Sent: Thursday, March 31, 2005 10:58 AM
To: ClamAV users ML
Subject: RE: [Clamav-users] New Virus?
You shouldn't be allowing .exe's anyway ... Its common
: [Clamav-users] New Virus?
Does Clam AV block .exe by default?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jeffrey Kroll
Sent: Thursday, March 31, 2005 10:58 AM
To: ClamAV users ML
Subject: RE: [Clamav-users] New Virus?
You shouldn't be allowing
On 3/31/2005 8:58 PM +0100, Jeffrey Kroll wrote:
You shouldn't be allowing .exe's anyway ... Its common knowledge that
.exe .com .bat .pif .scr are all not normal file transmissions. I would
never ever allow a file extension from the listed above to ever be
accepted as a attachment to a e-mail ...
Niek wrote:
On 3/31/2005 8:58 PM +0100, Jeffrey Kroll wrote:
You shouldn't be allowing .exe's anyway ... Its common knowledge that
.exe .com .bat .pif .scr
Headers from your mail:
X-MimeOLE: Produced By Microsoft Exchange V6.0.6249.0
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic:
On Friday 29 October 2004 14:40, Fajar A. Nugraha wrote:
Again, thanks for the quick response and db updates.
(wonder whether McAfee already detect this particular variant?)
I agree that the Clamav people did a great job. We're running several AV
products, commercial and Clamav.
Clamav was
On Fri, 29 Oct 2004 18:08:29 +0700
Fajar A. Nugraha [EMAIL PROTECTED] wrote:
The first three lines usually followed by a notie saying *.MyDoom.*
virus found, but not in this case, so obviously this one slipped from
ClamAV 0.80/560/Fri Oct 29 14:32:46 2004. So, My question :
The latest
Diego d'Ambra wrote:
(Where did clamav-virusdb messages for 560 and 561 go anyway?
Slow delivery?)
No, sorry - but I'm working my way through the huge amount of
submissions.
Great!
An announcement will be done once I'm sure that ClamAV detects possibly
variants (and dropped files).
Daily
* Fajar A. Nugraha ([EMAIL PROTECTED]) wrote:
Again, thanks for the quick response and db updates.
(wonder whether McAfee already detect this particular variant?)
Symantec surely doesn't (at least this morning...haven't checked for any
updates yet).
hth,
Michele
signature.asc
Description:
On 10/29/2004 2:43 PM +0200, Michele Baldessari wrote:
* Fajar A. Nugraha ([EMAIL PROTECTED]) wrote:
Again, thanks for the quick response and db updates.
(wonder whether McAfee already detect this particular variant?)
Symantec surely doesn't (at least this morning...haven't checked for any
Norton does
- Original Message -
From: Niek [EMAIL PROTECTED]
To: ClamAV users ML [EMAIL PROTECTED]
Sent: Friday, October 29, 2004 2:50 PM
Subject: Re: [Clamav-users] New virus undetected by clamav?
On 10/29/2004 2:43 PM +0200, Michele Baldessari wrote:
* Fajar A. Nugraha ([EMAIL
Yep!
- Original Message -
From: Michael Brennen [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday, August 09, 2004 12:58 PM
Subject: [Clamav-users] New virus/worm ???
Just in the last few minutes I've started getting hit with several
copies of a a zip packaged exe file from
On Mon, 9 Aug 2004 12:58:52 -0500 (CDT)
Michael Brennen [EMAIL PROTECTED] wrote:
Just in the last few minutes I've started getting hit with several
copies of a a zip packaged exe file from widely varying sources. The
The database has been updated on 17.00 GMT.
names are of the form
On Monday, August 9, 2004, 7:58:52 PM, Michael Brennen wrote:
MB Just in the last few minutes I've started getting hit with several
MB copies of a a zip packaged exe file from widely varying sources. The
MB names are of the form 'price.*\.zip'. I've submitted a copy online
MB and it was
Just in the last few minutes I've started getting hit with several
copies of a a zip packaged exe file from widely varying sources. The
names are of the form 'price.*\.zip'. I've submitted a copy online and
it was accepted. Anyone else seeing this?
We were seeing a bunch, however, new
At 10:58 AM 8/9/2004, Michael Brennen wrote:
Just in the last few minutes I've started getting hit with several
copies of a a zip packaged exe file from widely varying sources. The
names are of the form 'price.*\.zip'. I've submitted a copy online
and it was accepted. Anyone else seeing this?
On Mon, Aug 09, 2004 at 12:58:52PM -0500, Michael Brennen said:
Just in the last few minutes I've started getting hit with several
copies of a a zip packaged exe file from widely varying sources. The
names are of the form 'price.*\.zip'. I've submitted a copy online
and it was accepted.
Michael Brennen said the following on 8/9/2004 7:58 PM GMT+2:
Just in the last few minutes I've started getting hit with several
copies of a a zip packaged exe file from widely varying sources. The
names are of the form 'price.*\.zip'. I've submitted a copy online
and it was accepted. Anyone
On Mon, 9 Aug 2004, Tomasz Kojm wrote:
On Mon, 9 Aug 2004 12:58:52 -0500 (CDT)
Michael Brennen [EMAIL PROTECTED] wrote:
Just in the last few minutes I've started getting hit with several
copies of a a zip packaged exe file from widely varying sources. The
The database has been
- Original Message -
From: Michael Brennen [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday, August 09, 2004 1:58 PM
Subject: [Clamav-users] New virus/worm ???
Just in the last few minutes I've started getting hit with several
copies of a a zip packaged exe file from widely
Mitch (WebCob) wrote:
For one thing, the web interface for uploading could be A LOT MORE USEFUL by
stating it's current clamscan version, what it detects the upload as,
selected options/config, and signature database - just allowing easier
confirmation of relavent settings.
I've downloaded the
On Mon, 26 Jul 2004 at 11:30:44 -0700, Mitch (WebCob) wrote:
For one thing, the web interface for uploading could be A LOT MORE USEFUL by
stating it's current clamscan version, what it detects the upload as,
selected options/config, and signature database - just allowing easier
confirmation of
On Mon, 26 Jul 2004, Mitch (WebCob) wrote:
For one thing, the web interface for uploading could be A LOT MORE USEFUL by
stating it's current clamscan version, what it detects the upload as,
selected options/config, and signature database - just allowing easier
confirmation of relavent
Damian Menscher wrote:
On Mon, 26 Jul 2004, Mitch (WebCob) wrote:
For one thing, the web interface for uploading could be A LOT MORE USEFUL by
stating it's current clamscan version, what it detects the upload as,
selected options/config, and signature database - just allowing easier
confirmation
On Mon, 26 Jul 2004 at 14:08:21 -0500, Damian Menscher wrote:
On Mon, 26 Jul 2004, Mitch (WebCob) wrote:
For one thing, the web interface for uploading could be A LOT MORE USEFUL by
stating it's current clamscan version, what it detects the upload as,
selected options/config, and
On Mon, 26 Jul 2004 at 14:08:21 -0500, Damian Menscher wrote:
On Mon, 26 Jul 2004, Mitch (WebCob) wrote:
I *THINK* it *MIGHT* be because mydoom.o has uneven linelengths in the
uuencoding. I know that bug was fixed recently, but there's no note in
the ChangeLog of _when_. So maybe only a
On Mon, 26 Jul 2004 at 14:08:21 -0500, Damian Menscher wrote:
On Mon, 26 Jul 2004, Mitch (WebCob) wrote:
I *THINK* it *MIGHT* be because mydoom.o has uneven linelengths in the
uuencoding. I know that bug was fixed recently, but there's no note in
the ChangeLog of _when_. So maybe only a
On Mon, 26 Jul 2004 at 22:16:42 +0200, Tomasz Papszun wrote:
On Mon, 26 Jul 2004 at 14:08:21 -0500, Damian Menscher wrote:
On Mon, 26 Jul 2004, Mitch (WebCob) wrote:
I *THINK* it *MIGHT* be because mydoom.o has uneven linelengths in the
uuencoding. I know that bug was fixed recently,
I just sent a message about some emails not checked.
To my previous message I would like to add that on these messages there were this
signature:
*** Mail Scanner: No Virus found
*** MYDOMAIN Anti Virus
*** http://www.mydomain.com
Where mydomain is the domain they sent the message to.
Nothing
Fajar A. Nugraha wrote:
I see some occurences of emails containing compressed attachment,
not detected by ClamAV, all claiming to be
automatically scanned for viruses using xxx
where xxx is either McAfee, Norton, or possibly other AV vendors,
complete with their logo attached.
The attachments are
-Original Message-
From: [EMAIL PROTECTED] [mailto:clamav-users-
[EMAIL PROTECTED] On Behalf Of Niek
Sent: 15. april 2004 13:36
To: [EMAIL PROTECTED]
Subject: Re: [Clamav-users] new virus (?): automatically scanned for
viruses using xxx
Fajar A. Nugraha wrote:
I see some
On Wed, 03 Mar 2004 at 12:36:56 -0500, Christopher X. Candreva wrote:
Less than an hour after our users started getting a new virus pretending to
be from their mail administrator, Clam started picking it up as
Worm.Bagle.Gen-1 Congrats !
However, there seems to be a password protected zip
On Thu, 12 Feb 2004 at 20:13:02 +0200, Nigel Kukard wrote:
How can i add my own virus definition to the clamav library?
I've tried to fiddle with CVD def files to no avail, it always wants a
signing server.
Don't fight with creating CVD. Signing server is only for developers,
that's why it's
--On Monday, May 19, 2003 1:12 PM +0200 Tomasz Kojm [EMAIL PROTECTED]
is rumoured to have written:
I've just recieved a copy of Win32.Palyh.A.Worm which is not detected by
clamscan (nor by f-prot so I had to copy it onto a Windows computer to
find out it's name - yuck).
This file is now
--On Monday, May 19, 2003 1:12 PM +0200 Tomasz Kojm [EMAIL PROTECTED]
is rumoured to have written:
I've just recieved a copy of Win32.Palyh.A.Worm which is not detected by
clamscan (nor by f-prot so I had to copy it onto a Windows computer to
find out it's name - yuck).
This file
41 matches
Mail list logo