|
PureBytes Links
Trading Reference Links
|
Greetings, RealTraders@xxxxxxxxxxxxxx
I thought you would be interested in knowing about this computer virus...
Virus Name: W32.cih.spacefiller
Virus Characteristics:
This family of viruses, written in South-East Asia, first appeared in June
1998. Currently there are three known variants; and at least two of these
have been found `in the wild'. The viruses infect Windows 95 files in PE
format.
Win32/CIH viruses are able to split up the body of the virus code and
place it within unused parts of the infected file (PE files usually
contain lots of unused space).
The viruses contain a very dangerous payload, which triggers on the 26th
of any month. On this date, they attempt to overwrite the flash-BIOS. If
the flash-BIOS is write-enabled (and this is the case in most modern
computers with a flash-BIOS) this renders the machine unusable because it
will no longer boot. At the same time, they also overwrite the hard disk
with garbage.
The viruses contain the following (unencrypted) strings:<br>
.a variant: <b>CIH v1.2 TTIT, .EXE
To check your system for this virus, and to learn how to protect yourself
from computer viruses, visit the McAfee PC Clinic at
http://clinic.mcafee.com.
This email was sent to you by Richard Chehovin
|