[rlug] Re: Virusi care trec de ClamAV

Fri, 26 Nov 2004 07:14:24 -0800 

On Fri, 2004-11-26 at 16:10 +0200, Mircea MITU wrote:
> On Fri, 2004-11-26 at 15:35 +0200, it wrote:
> > in ultima juma' de ora mi-au intrat 4 mesaje pe mail cu attachment virusi
> > 
> > am clamav pe mail server, updat-at la juma' de ora, e cu baza de date 
> > semnaturi la zi:
> > 
> > ClamAV update process started at Fri Nov 26 15:00:01 2004
> > main.cvd is up to date (version: 28, sigs: 26630, f-level: 3, builder: 
> > tomek)
> > daily.cvd is up to date (version: 605, sigs: 900, f-level: 3, builder: trog)
> > 
> > 
> > problema e ca nu vede ca virusate attachment-urile alea ( Details.zip  
> > Part-2.zip  - asa se numesc 2 din ele)
> > 
> > care aveti antivirusuri comerciale, tot asa patiti ? 
> > sau cum se cheama virusul asta si ce face ?, daca aveti AV-uri desthepte 
> > si sunt in stare sa il detecteze ?
> > 
> Da un mail cu atasamentele alea catre [EMAIL PROTECTED] si o sa'ti
> dau copy-paste din log-ul BitDefender-ului de acolo pentru a vedea cum
> se comporta.
> 
Iata ce zice log-ul de BitDefender for Postfix:

[11/26/2004 16:37:08][BDPostfix] Virus: MAIL FROM:
<[EMAIL PROTECTED]>, RCPT TO: <[EMAIL PROTECTED]> (From:  it
<[EMAIL PROTECTED]>, To:  [EMAIL PROTECTED], Subject:
virusii nevazutzi de ClamAV)
Object: /opt/BitDefender/var/tmp/BDSMTPDmSm6Vd_0.body=>[Subject: virusii
nevazutzi de ClamAV][Date: Fri, 26 Nov 2004 16:36:33 +0200]=>(MIME
part)=>Details.zip=>Details.txt                                                 
                                               .exe=>(ASPack 2.11x), State: 
Infected, Virus name: [EMAIL PROTECTED], Action: Quarantined



-- Attached file included as plaintext by Ecartis --
-- File: signature.asc
-- Desc: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQBBp0BZKEjkOr48ZKoRAvJuAJ4+4xrG52DiOqHQeVTbjyNadkCHPACggr4q
QiJ1j8ou6GoSo/apRHK84qI=
=Ba5H
-----END PGP SIGNATURE-----



-- Attached file included as plaintext by Ecartis --
-- File: BitDefender.txt

-- 
This message was scanned for spam and viruses by BitDefender
For more information please visit http://www.bitdefender.com/



--- 
Detalii despre listele noastre de mail: http://www.lug.ro/

Raspunde prin e-mail lui