robert at schetterer
Jul 23, 2012, 6:15 AM
Post #7 of 7
(597 views)
Permalink
|
Am 20.07.2012 22:53, schrieb Robert Schetterer:
> Am 20.07.2012 22:44, schrieb Robert Schetterer:
>> Am 20.07.2012 18:02, schrieb Joel Esler:
>>> On Jul 20, 2012, at 11:22 AM, Robert Schetterer <robert [at] schetterer> wrote:
>>>
>>>> Hi, just was informed that some mails with
>>>> ZIP/Bredolab.A!Camelot
>>>>
>>>> slipped through up2date clamav gateway , detected by
>>>> Microsoft Forefront
>>>>
>>>> the sender is deutschepost.de
>>>> ever
>>>>
>>>> someone an idea to that ?
>>>
>>> If you have the files, can you upload them to ClamAV.net and then send the md5s back to the list so we can take a look?
>>
>> sorry i dont quarantaine with milter, and have got no example
>> from Forefront
>>
>> perhaps i will hold them until flood goes on
>
> no more further mails such kind were logged
> latest all got rejected by rbls
> but i contact the exchange admin to upload a sample here
>
> http://cgi.clamav.net/sendvirus.cgi
>>
>>>
>>> --
>>> Joel Esler
>>> Senior Research Engineer, VRT
>>> OpenSource Community Manager
>>> Sourcefire
>>> _______________________________________________
>>> Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
>>> http://www.clamav.net/support/ml
>>>
>>
>>
>
>
Hi , it seems its got detected now
as Suspect.Trojan.Generic.FD-1
--
Best Regards
MfG Robert Schetterer
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
|
