Hmm, here Clam has detected several JS.FortNight.E, the mentioned IFRAME tag looks same as mine.
Are you sure you let Clam have "a go" on the e-mail? JS.FortNight.E is not an attachment, just an IFRAME HTML tag. Best regards, Diego d'Ambra -----Original Message----- From: Fajar Arief Nugraha [mailto:[EMAIL PROTECTED] Sent: 5. juni 2003 10:00 To: [EMAIL PROTECTED] Subject: Re: [clamav-users] FortNight virus Nope. Email still gets thru. Database was updated. Sent sample to [EMAIL PROTECTED] bash-2.03# grep -i fortnight viruses.db Exploit.FortNight (Clam)=3c4449563e3c494652414d45207372633d334422687474703a2f2f7777772e707 26f73746f6c2e636f6d2f6d2e68746d6c222077696474683d3344303d3230 JS.FortNight.E (Clam)=3c4449563e3c494652414d453d32300a7372633d334422687474703a2f2f77777 73030312e7570702e736f2d6e65742e6e652e6a703a33313238402536312537322536382 536352536462532452536332536462536442f6d2e3d Diego d'Ambra wrote: >There are many versions of FortNight (IFrame exploits). The one you >mention is version JS.FortNight.E - this was added to the signature >database yesterday (04-june-2003 20:45). > >Best regards, >Diego d'Ambra > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
