[clamav-win32] common text in all (non-phish) virus, worms,…

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
 
 
Attachments:
Message as email
+ (text/plain)
Delete this message
Reply to this message
Author: Rob McEwen
Date:  
To: clamav-win32
Subject: [clamav-win32] common text in all (non-phish) virus, worms, exploits
RE: common text in all (non-phish) virus, worms, exploits

QUESTION:

Would it be safe to say that the term "filename" and/or "iframe" is going to
always appear in plain text in ALL (non-phish) virus, worms, exploits?

This is certainly the case with several days' worth of "catches" from my
ClamAV runs. But I wonder if it is really always true?

Are there ever any exceptions to this rule? Or, can the word "filename"
and/or "iframe" ever hidden in Base64 encoded text?

Thanks!

Rob McEwen
PowerView Systems

(478) 475-9032 


_______________________________________________
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-win32


This message was posted to the following mailing lists:
clamav-win32
Mailing List Info | Nearby Messages		<-Re: [clamav-win32] Spyware detection...[clamav-win32] Version 0.87 tar.gz->
ClamAV Mailing List Archive administrated by Luca GibelliLurker (version 2.1)