I'm getting LOTS of unknown viruses with Subject lines that look like W32/[EMAIL PROTECTED]
<http://vil.nai.com/vil/content/v_101083.htm>http://vil.nai.com/vil/content/v_101083.htm
McAfee does not yet have DAT 4335 released. Netsky.J likes to use *.pif files.
The "Unknown virus" will occur when a virus is detected, but the AV program doesn't know the name of it. This normally happens either if the scanner doesn't report the name in a way that Declude Virus can find it (in which case it will affect all viruses that are detected), or if heuristics are used to detect the virus (in which case it will just catch one specific new virus, or several new viruses).
Question: The new vulnerability tests for *.pif files, how do we expect them to appear?
If an invalid .PIF file arrives, it should appear as "[Invalid PIF Vulnerability]".
-Scott
---
Declude JunkMail: The advanced anti-spam solution for IMail mailservers since 2000.
Declude Virus: Catches known viruses and is the leader in mailserver vulnerability detection.
Find out what you've been missing: Ask for a free 30-day evaluation.
--- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
--- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com.
