On Thu, 24 Mar 2005, Sean Franklin wrote: > http://www.testvirus.org/ > Anyway, #14 got thru this time: > Test #14: Eicar virus sent in a Microsoft TNEF file (winmail.dat)
I noticed the same thing this week. I believe, as Nigel mentioned, that the winmail.dat file is corrupt and cannot be read. I tried a number of different TNEF unpackers and none of them could open the file. I've contacted the site directly about the issue. The first message was ignored and the second one generated the following useless response: > The person who sent you this email sent it from Microsoft Outlook using > Rich Text format. Rich Text is a Microsoft proprietary format that can > only be opened by other Microsoft email programs. This person will need > to resend the email to you using HTML or Plain Text by changing their > option under Outlook^s ^Format^ menu while composing a new email. If you have a spare moment, maybe you could try contacting them as well, so they know it's not just one person asking. It is possible that the file can be read by some versions of Outlook, so I think it's worth following up on this. It could be that the file is intentionally corrupt, because Outlook can open it, but other unpackers can't, similar to the zip trick a while ago. Or it could just be a mistake at testvirus.org I'm happy to see that someone else is experiencing this problem, though. Well, I mean...you know what I mean. Jeffrey Moskot System Administrator [EMAIL PROTECTED] _______________________________________________ http://lurker.clamav.net/list/clamav-users.html
