Hi ETM, On Tuesday, February 26, 2002 at 03:55:13 [GMT -0500], you wrote: E> "eTrust EZ Antivirus real-time protection has found that E> C:/windows/temp/bat1020.tmp is infected with HTML.MimeExploit Virus."
I'd say the name seems to indicate a virus/worm which exploits a security hole in Outlook (Express), possibly via a malformed MIME header. I don't know if eTrust has a virus database, but you could try to get more information from them. I tried Symantec's database, but they probably have a different naming scheme and I couldn't find anything about this virus. E> What is this? I have trashed, compressed mail, deleted the tmp file E> and it appears to re-create itself and then the warning results in a E> newly numbered tmp file. E> Can anyone give me an explanation of what is going on? As long as you have the virus in your mailbox, it will always reappear. When The Bat downloads mail, it does so by storing the messages in temp files first and importing them together into your message base. So every time you try to download mail, TB creates a new and infected temp file. Your virus scanner blocks access to this file, so TB can't import it into its message base. That's why it never gets deleted, because it couldn't be imported. Try deleting the responsible message with your mail dispatcher (hint: it's a message which is in your mailbox but not in your local message base). E> The new warning just indicated the bat tmp file is now 5020!! The number has nothing to do with the problem, it's not incrementing but a (pseudo-)random number. -- Regards, Lars The Bat! 1.54 Beta/43 on Windows XP 5.1 Build 2600 ____________________________________________________________ | Lars Geiger | <mailto:[EMAIL PROTECTED]> | -- ________________________________________________________ Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Unsubscribe: mailto:[EMAIL PROTECTED] Latest Vers: 1.53d FAQ : http://faq.thebat.dutaint.com
