Follow up on information I have observed: This is forging the from address. So far, it looks like it is changing the >From address to the To address. It is probably recommended to add this to the list of FORGINGVIRUS and SKIPIFVIRUSNAMEHAS.
It appears the virus is in the body itself using the Outlook MIME header Vulnerability. It appears there is no attachment. F-Prot is catching it as Bridex. Scott, should we also add Braid and Brid to the FORGINGVIRUS and SKIPIFVIRUSNAMEHAS lines? John Tolmachoff MCSE, CSSA IT Manager, Network Engineer RelianceSoft, Inc. La Habra, CA 90631 www.reliancesoft.com --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com.
