Is MS Forefront Add-in for Exchange server detecting HTML/Redirector.C incorrectly?

Posted by rhart on Server Fault See other posts from Server Fault or by rhart
Published on 2010-09-28T20:36:15Z Indexed on 2011/03/08 0:12 UTC
Read the original article Hit count: 500

Filed under:

exchange

|

antivirus

|

Forefront

Users of a website hosted by our organization occasionally send complaints that our registration confirmation emails are infected with HTML/Redirector.C. They are always using an MS Exchange Server with the MS Forefront for Exchange AV add-in. The thing is, I don't think the detection is legitimate. I think the issue is that the link in the email we send causes a redirect. I should point out that this is done for a legitimate purpose. :) Has anybody run into this before?

Naturally, Microsoft provides absolutely no good information on this one: http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Trojan%3aHTML%2fRedirector.C&ThreatID=-2147358338

I can't find any other explanation of HTML/Redirector.C on the Internet either. If anyone knows of a real description for this virus that would be greatly appreciated as well.

© Server Fault or respective owner

Related posts about exchange

Upgrade Exchange 2003 to Exchange 2010 – Part II

as seen on Simple Talk - Search for 'Simple Talk'
In Jaap's second article on upgrading straight from Exchange Server 2003 to 2010, he explains how to move the various services from Exchange Server 2003 to Exchange Server 2010 and fully decommission the Exchange Server 2003 servers. >>> More
Upgrade Exchange 2003 to Exchange 2010

as seen on Simple Talk - Search for 'Simple Talk'
In this article, the first of two in which Jaap describes how to move from Exchange Server 2003 straight to Exchange Server 2010, he shows what is required before moving mailboxes from Exchange Server 2003 to Exchange Server 2010. He shows how to upgrade Active Directory, install both Exchange Server… >>> More
exchange server 2010 Outlook Web Access - Exchange Control Panel WEB Interface

as seen on Server Fault - Search for 'Server Fault'
from what i can gather the mailbox bit of the web interface works fine.. when any of the users go to options (top right) and try to use some of the features such as the Organise Mail Delivery Reports to find messages etc... it comes up with a message .. "An item with the same key has already been… >>> More
Backup multiple Exchange Accounts without direct access to exchange server

as seen on Server Fault - Search for 'Server Fault'
For e-mail, we use Microsoft Exchange and it is hosted by 1and1.com. We have about 30 Exchange accounts that I would like to backup to a PST file. That is, for each account that we have (all 30), I would like to create a single PST file (1.pst thru 30.pst). I do not have direct access to the Exchange… >>> More
when using exchange 2010 it complains of not talking to Information Store service on exchange 2007

as seen on Server Fault - Search for 'Server Fault'
I am attempting to do an upgrade in my org from exchange 2007 to exchange 2010. I moved all the mailboxes and made sure my certificates were setup in exchange 2010. I then changed my ip forwarding rules to forward mail to my exchange 2010 box. I can receive email. I then powered off my exchange 2007… >>> More

Related posts about antivirus

Antivirus Free Antivirus Download

as seen on Dot net Slackers - Search for 'Dot net Slackers'
Many computer problems are caused by viruses and malware on your computer. The best and easiest way to correct this is to use a recognized antivirus and keep it updated. Antivirus free download at: http://antivirus-freedownloads.blogspot.com Links Web Content: http://antivirus-freedownloads.blogspot… >>> More
How to Use An Antivirus Boot Disc or USB Drive to Ensure Your Computer is Clean

as seen on How to geek - Search for 'How to geek'
If your computer is infected with malware, running an antivirus within Windows may not be enough to remove it. If your computer has a rootkit, the malware may be able to hide itself from your antivirus software. This is where bootable antivirus solutions come in. They can clean malware from outside… >>> More
Download Free Norton Antivirus 2012 with 6 months subscription

as seen on Tech Dreams - Search for 'Tech Dreams'
Norton, one of the most popular antivirus software Antivirus is now available as a free download with 6 months of subscription. Thanks to Facebook for teaming up with Symantec and providing Norton Antivirus 2012 for free to all its users. To grab your copy of Free antivirus, point your browser to… >>> More
How to get infected with Antivirus 2010

as seen on Super User - Search for 'Super User'
I know that this is the exact oposite of the question most people ask as it is a royal pain to remove. I hope this isn't flagged as me wanting to infect other people. I know my mom almost installed it but it was running firefox so she unknowingly downloaded it 10 times but didn't install it. I… >>> More
Why do I need an antivirus?

as seen on Super User - Search for 'Super User'
I am computer literate I don't run executables from untrusted sources I don't connect to media (USB, CD-ROM, etc) from untrusted sources I receive and see emails with non-executable attachments (graphics, videos, etc) I keep up with windows updates I have a firewall with strict definitions I don't… >>> More