--- Begin Message ---
|
Subject: |
3852709 - Ann |
|
Date: |
Tue, 10 Jul 2007 05:49:46 -0700 |
AVERT Labs - Beaverton
Current Scan Engine Version:5100.0194
Current DAT Version:5070.0000
Thank you for your submission.
Analysis ID: 3852709
File Name Findings Detection
Type Extra
--------------------|------------------------------|----------------------------|------------|-----
jane.zip |current detection |w32/bagle.fc!pwdzip
|Virus |no
tozijxhywl.gif |no password |
| |no
no password [tozijxhywl.gif]
A sample did not arrive in a password-protected ZIP file. To ensure the
sample was not
cleaned in transit it is necessary to put all samples in password protected ZIP
files
(password - infected). There may be an infection on your system but we are
unable to
make a conclusive analysis without a sample being sent in this fashion.
Please make sure your engine and DAT files are up to date and then resend the
files in
question if you feel that you do have an infection that is not present in this
sample.
If you are unsure on how to password protect the files with your archiving
software,
please review the help documentation included with the product or visit their
technical support sites.
current detection [jane.zip]
The file received is infected and can be detected and removed with our
current DAT
files and engine. It is recommended that you update your DAT and engine files
and scan
your computer again.
If you are not seeing this with the product you are using, please speak with
technical
support so that they can help you determine the cause of this discrepancy.
To find detailed information about viruses and other malware, please review
AVERTs
Virus Information Library:
http://vil.mcafeesecurity.com
In order to get the fastest possible response, you may wish to submit future
virus-samples to:
https://www.webimmune.net/default.asp
In most cases it can respond almost instantly with a solution. This may also be
the
best option if you are having a problem with gateway scanners stripping your
sample
submission.
If you believe your computer is infected, but are unsure which files should be
submitted to AVERT for review, please visit:
http://vil.mcafeesecurity.com/vil/submit-sample.aspx
For other virus-related information, please review the AVERT homepage at:
http://www.mcafee.com/us/threat_center/default.asp
Support
Virus Research accepts file-samples for analysis and possible inclusion into AV
signature DAT sets. We are also prepared to answer general virus questions. All
product-related questions and comments can be addressed through technical
support and
customer service, including:
* Product installation and update questions
* Product usage questions
* Specific operating system/version questions
* Assistance with detection and cleaning or removal of viruses or trojans
Use the following link to update your DAT and scan engine to the most current
version:
http://www.mcafee.com/apps/downloads/security_updates/dat.asp
Use the following links to reach online technical support for McAfee products -
Corporate Customers:
http://www.mcafeesecurity.com/us/support/
Single User/Retail Customers:
http://www.mcafeehelp.com
Note
Due to the prevalence of network gateway AV products, it is important that all
submissions be zipped and the zip file password-protected (password -
infected). Some
products will reject an email that contains a virus that is not sent in this
way. In
addition, often we receive a file that appears not to have been infected, to
find
later that the file was infected when it left the sender, and was cleaned
somewhere
along the line.
Regards,
McAfee AVERT tm
A division of McAfee, Inc
--- End Message ---
--- Begin Message ---
|
Subject: |
confirm 2f88d492f06dfebb0a6dc0d4aacca5178e0a89f7 |
If you reply to this message, keeping the Subject: header intact,
Mailman will discard the held message. Do this if the message is
spam. If you reply to this message and include an Approved: header
with the list password in it, the message will be approved for posting
to the list. The Approved: header can also appear in the first line
of the body of the reply.
--- End Message ---