> > the actual file name is Xerox_doc.exe > > i have submitted this on the clam website several times but there seems to > be no update on this > > Could somebody check this out and help please.
Just to add that Sanesecurity signatures from phish.ndb should be catching that one already... add in rogue.hdb (for mass spammed exe's updated hourly) and also winnow's winnow_malware.hdb should help a little. More info: http://sanesecurity.co.uk/download_scripts_linux.htm http://sanesecurity.co.uk/databases.htm Cheers, Steve Sanesecurity _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
