This is a virus detection. Viruses are programs that self-replicate recursively, meaning that infected systems spread the virus to other systems, which then propagate the virus further. While many viruses contain a destructive payload, it's quite common for viruses to do nothing more than spread from one system to another.
4178 (2001-12-26)Updated DAT
This threat is detected as VBS/Zync. When the infected VBScript is executed, the virus will copy itself as the following:
The following registry keys will be added:
On the 1, 5, 10, 13, 15, 20 or 25th day of any month, the following registry keys will be added:
Executing the infected VBScript.
Use current engine and DAT files for detection and removal.
Using File Filtering with WebShield SMTP for WindowsNT(not applicable for Solaris):
Within the Configuration console select content filtering.
Add a Description for the content filter rule such as VBSBlock.
Select Filter on Attachment File name.
Filter on .vbs
* Outlook as an email attachment security update
* Exchange 5.5 post SP3 Information Store Patch 5.5.2652.42 - this patch corrects detection issues with GroupShield
For a list of attachments blocked by the Outlook patch and a general FAQ, visit this link.
Additionally, Network Administrators can configure this update using an available tool - visit this link for more information.