RE: [Declude.Virus] Encoded viruses...worried

Andrew, the output ended up being 255 characters long and then wrapping. How do I do this so each find is on a separate line for reading? John T eServices For You Seek, and ye shall find! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On

RE: [Declude.Virus] Encoded viruses...worried

for grep and epreg on windows machines use the switch -U to have correct line wraps Markus From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John T (Lists)Sent: Wednesday, February 01, 2006 10:35 AMTo: Declude.Virus@declude.comSubject: RE: [Declude.Virus]

Re: [Declude.Virus] Encoded viruses...worried

You know, I was going to ask if you would do a search, but I figured you might do it anyway :) You did leave out the ".uue" extension, but I doubt that would have changed your results. I suppose that if these extensions aren't hardly ever used anymore, it might be prudent enough to just watch

RE: [Declude.Virus] Encoded viruses...worried

I've grep'ed trough the logfiles for the last 7 days on my servers 2981 lines has sources of "\.BHX|\.HQX|\.B64|\.UU|\.MIM|\.MME" (ignoring double counts for the second av scanner) After filtering out all lines containing "Kapser" and "Mywife" there remains the following 4 lines

Re: [Declude.Virus] Encoded viruses...worried

Off list - what grep do you use or which is the best for a W32 box? Wednesday, February 1, 2006, 8:40:19 AM, Markus Gufler [EMAIL PROTECTED] wrote: MG MG MG I've grep'ed trough the logfiles for the last 7 days on my servers MG MG   MG MG 2981 lines has sources of

RE: [Declude.Virus] Encoded viruses...worried

There is a free version of Windows based Baregrep at http://www.baremetalsoft.com/baregrep/. Runs through the logs pretty fast. John C -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Don Brown Sent: Wednesday, February 01, 2006 9:24 AM To: Markus

RE: [Declude.Virus] Encoded viruses...worried

Don: I don't know about the best but the de facto standard works great. Get a bunch of *nix tools that have been ported to W32 here: http://unxutils.sourceforge.net/ And get the up-to-date version of wget here: http://xoomer.virgilio.it/hherold/#Files With these, you don't need to run

Re: [Declude.Virus] Encoded viruses...worried topic change - to Bill Landry

With these, you don't need to run CygWin ports or the Microsoft Windows Services for Unix. Bill Landry put the Declude and Message Sniffer mailing list users on to these a long time ago, and I'm still grateful to him. Well I am grateful and frustrated at times- because it can do so

Re: [Declude.Virus] Encoded viruses...worried topic change - to Bill Landry

Excellent. Thanks Bill - -Nick Bill Landry wrote: Nick, I put this together quite some time ago and have sent it to people upon request. Hopefully posting it here will make it more widely accessible. At least it can point you to some tutorials and give you a sampling of how

RE: [Declude.Virus] Encoded viruses...worried

Did a search on all logs for January. Found 337 hits, all HQX files. All but 2 were viruses, and those 2 had suspicious looking from addresses and I am assuming were unviable corrupt versions of viruses. John T eServices For You Seek, and ye shall find! -Original