I appreciate this is probably down to my misunderstanding of this virus, but we have one user who is being sent an html file
As soon as the email is clicked on, the attachment is attempted to be opened by Outlook. Then Officescan flags up that there is a file in the users temp internet folder with Klez, and it is the same filename as the html attachment, but the html has changed to exe For instance, today he has an email with revisions1.html attached. When he selects the email, it attempts to open the attachment, and Officescan quarantines the file revisions1.exe from the temp internet folder. I thought that Klez attachments had double extensions, like revisions1.html.exe Why wouldn't scanmail be stopping this file? I havent in the past considered that we should be blocking htm and html, but should we? I've checked this PC with Officescan and Symantecs tool, and it shows no traces of Klez Thanks Nik _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
