HEADS UP - viruses in password protected zip files
Admin Team
sysadmins at ENHTECH.COM
Wed Mar 3 15:56:58 GMT 2004
At 12:58 PM 3/1/2004, Raymond Dijkxhoorn wrote:
>Hi!
>
> > > >>> Its in our top10 of today:
> > > >>>
> > > >>> 4747 W32/Netsky.B at mm
> > > >>> 1275 W32/Swen.A at mm
> > > >>> 404 W32/Sober.C at mm
> > > >>> 337 W32/Mydoom.A at mm
> > > >>> 200 W32/Netsky.C at mm
> > > >>> 126 W32/Bugbear.B at mm
> > > >>> 96 W32/Bagle.F at mm
> > > >>> 57 W32/Bagle.E at mm
> > > >>> 49 W32/Mydoom.E at mm
> > > >>> 19 W32/Mimail.J at mm
>
> > I am not peter or raymond, but...
> >
> > grep "Virus '.*' found" /PATH/TO/YOUR/SYSLOG | sed "s/[^']*//" | sed
> > "s/found.*//" | sort | uniq -c | sort -n -r
>
>You might want to do this a little smarter :) We for example parse around
>1.5 GB logfiles, your disk wont be happy if you grep those all over from
>the start again and again :) We update every 5 minutes now and have
>around 5-6 seconds parsing time on that :)
>
>Bye,
>Raymond.
Raymond,
How is it that you are detecting these viruses in the password protected
archives? They just fly past sophos on my mailscanner
Errol Neal
More information about the MailScanner
mailing list