AVAST SUSPICIOUS!

I was writing about that few times… but still Internet Mail agent does not catch NetSky viruses and just marks SUSPICIOUS. But when I save that file… I got NetSky virus reported on disk.

Here’s message source part:

Return-Path: <proluckyday2003@netscape.net>
X-Original-To: mailer-daemon@pingu.ii.uj.edu.pl
Delivered-To: root@pingu.ii.uj.edu.pl
Received: from pingu.ii.uj.edu.pl (unknown [81.219.224.2])
   by pingu.ii.uj.edu.pl (Postfix) with SMTP id 096741B7B8
   for <mailer-daemon@pingu.ii.uj.edu.pl>; Tue,  6 Apr 2004 22:01:23 +0200 (CEST)
From: proluckyday2003@netscape.net
To: mailer-daemon@pingu.ii.uj.edu.pl
Subject: [avast! - SUSPICIOUS]   unknown
Date: Tue, 6 Apr 2004 21:59:29 +0200
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="23051703"
Message-Id: <20040406200123.096741B7B8@pingu.ii.uj.edu.pl>
X-junkfilter: 20020519
X-Spammer: 1: unsafe email attachment: "dinner.htm.exe"
X-Antivirus: avast! (VPS 0403-19, 2004-03-26), Inbound message
X-Antivirus-Status: Clean

--23051703
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

something is going wrong

--23051703
Content-Type: application/octet-stream; name="dinner.htm.exe"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="dinner.htm.exe"
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And one thing I would appriciate is when i press [Delete] button which is now displaying popup how to delete file… is to set somehow default option answer… for that.

3rd… would you sometime fix link background issue I was writing on this forum. Because it’s not fixed in beta builds… but it’s good for you and Avast! to look ok on all WinXP systems.

Regards,

Could you send me the source by mail ?
Thank you.

I think this is a feature of the Professional version, where you can set the default actions with viruses (not only one, but a sequence of the actions that must be done if the first one fails).

I the Home (free) version, you can select ‘Silent action’ and the answer ‘No’ in the Advanced tab of the provider settings. This will automatically send the infected files to Chest. :wink:

Sure… I’ve sent you sample. That one is reported only when I’m going to save e-mail on the disk.

Regards,