Another example why it's a good idea to block all .scr, .bat, .pif, .com, .exe etc. etc. attachments. There is almost always a window of vulnerability and blocking the worst attachments helps to narrow it down.
Dan On Thursday 29 November 2001 01:44 am, you wrote: > Hi, > > we caught hundreds for BadTrans each day this week - but finally ONE > customer sent me an .SCR attachment that got PAST McAfee. It had the same > length and name as other attachments that McAfee had CAUGHT. > > I then tried my desktop scanner - and it did not detect a virus, either. > However, when sending it to McAfee for inspection - it bounced - because > THEY already were testing an update. > > You need to get TODAY'S updated > engine 4.1.60 and > DAT 4173 files. > > Only THEN will the desktop and the command line scanner detect this > variant. > > Best Regards > Andy Schmidt > > H&M Systems Software, Inc. > 600 East Crescent Avenue > Suite 203 > Upper Saddle River, NJ 07458-1846 > > Phone: +1 201 934-3414 x20 (Business) > Fax: +1 201 934-9206 > > http://www.hm-software.com/ > > > Please visit http://www.ipswitch.com/support/mailing-lists.html > to be removed from this list. > > An Archive of this list is available at: > http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
