Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: ClamAV: win32

common text in all (non-phish) virus, worms, exploits

  

 
ClamAV win32 RSS feed   Index | Next | Previous | View Threaded


rob at powerviewsystems

Sep 17, 2005, 6:45 AM

Post #1 of 1 (1740 views)
Permalink
common text in all (non-phish) virus, worms, exploits
RE: common text in all (non-phish) virus, worms, exploits

QUESTION:

Would it be safe to say that the term "filename" and/or "iframe" is going to
always appear in plain text in ALL (non-phish) virus, worms, exploits?

This is certainly the case with several days' worth of "catches" from my
ClamAV runs. But I wonder if it is really always true?

Are there ever any exceptions to this rule? Or, can the word "filename"
and/or "iframe" ever hidden in Base64 encoded text?

Thanks!

Rob McEwen
PowerView Systems
Rob [at] PowerViewSystems
(478) 475-9032


_______________________________________________
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-win32

ClamAV win32 RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.