Windows, Razno.192, paya
(8.192) Uto 13/02/1996 00:49, 4519 chr, (MR)
Odgovor na 8.181, maksa, Ned 11/02/1996 00:17
> Tipujem da je ipak reΦ o virusu samoraspakujuµoj arhivi, odn. da je
> stvar ubaΦena u self-extract exe, a da je ovo samo nesreµna formulacija
> koja ostavlja prostor za senzacionalisanje.
Windows 95 Customer Advisory
"Boza" Virus
Microsoft has learned that Windows 95 is the target of a new computer
virus called the "Boza" virus. The virus is not contained within the
Windows 95 product. Although the virus is not widespread, Windows 95
customers should be aware that they may encounter this virus by
downloading and running an infected program from the Internet, an
electronic bulletin board, or an online service, or by running a
program from a floppy disk that contains the virus.
To reduce the spread of the virus, Microsoft is working closely with
anti-virus software vendors such as Symantec and McAfee Associates to
provide protection as soon as possible. McAfee has posted an antivirus
update to address this virus, and Symantec will do so shortly.
Running an infected program can infect up to three Win32 programs in
the current directory. When an infected program is executed, it
occasionally displays a dialog box with a message from the authors of
the virus. Apparently, the virus copies itself to other programs only
for the purpose of displaying this message.
Microsoft recommends that customers take the following steps:
1. Do not run unknown programs that are downloaded or copied from a
floppy disk.
2. If unknown files have been executed on your computer, or if you
don't know whether your computer might contain infected files,
obtain a current virus scanner from an anti-virus software vendor
and periodically check your computer for infections.
-------------------------------------------------------------------
FIRST WIN 95 VIRUS IDENTIFIED IN LABS
By Margaret Kane
_________________________________________________________________
Boza, the first virus aimed specifically at Windows 95, has been
identified by anti-virus companies but to date has only been spotted
in their labs.
The virus does not appear to damage any files. If an infected program
is run, a dialog window may pop up with a message from the virus
authors, said Colleen Lacter, a spokeswoman for Microsoft Corp., of
Redmond, Wash.
Lacter said Microsoft is working with anti-virus companies McAfee
Associates Inc., of Santa Clara, Calif., and Symantec Corp., of
Cupertino, Calif., to stop the spread of the virus.
McAfee spokesman Mark Coker said the company has not received any
confirmed reports of infection by Boza.
"Users know it's not a security concern this time, but we are
receiving calls from users who are concerned," Coker said.
The virus is not intentionally harmful, said Germain Ward, Symantec
director of product management.
3
When an infected file is run, the virus loads itself and begins
searching up the directory tree for executable files to infect. On the
30th of every month, the virus will display a message from the authors
saying in part, "The taste of fame just got tastier; VLAD Australia
does it again with the world's first Win 95 virus; From the old school
to the new."
Ward said the virus is called Biztach in the message. She said there
is speculation that Boza was an earlier name for the virus, which was
somehow released before the authors intended.
While the virus doesn't do any harm, Coker said it does bring up the
issue of how safe other 32-bit applications are.
"It raises questions about vulnerability of Windows NT and Unix," he
said. "The anti-virus research community has always been worried about
upcoming threats before they materialize."
The virus is not on Windows 95, but users can be infected when they
download software, Lacter said. The company is advising users to take
precautions when loading new programs onto their computers.
McAfee has already posted a software patch to its bulletin-board
service and to its World-Wide Web site. McAfee's BBS can be reached at
(408)988-4004 or at www.mcafee.com. Ward said Symantec is currently
testing a detection file and expects to have it ready today or
tomorrow.
Odgovori u 8.195