On Sat, 11 Dec 2010, Al Varnell wrote:
The Sophos site gives three aliases for Mal/Phish-A: PHISH/CartasiFraud,
PHISH/HSBC and Trojan:JS/Cardst. Searching the clamav database I can find
one instance of cardst which is Trojan.JS.Cardst with an ASCII signature of
"nction click() { if (event.button==2) { window.moveto(0, 0)
window.moveto(1, 1) window.moveto(2, 2) window.moveto(3, 3) win" so it would
appear that clamav should be at least partially effective against this.
Thank you for the information; it is reassuring.
Regards,
Tan Bui
Montreal, Quebec, Canada
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
