Discussion:
Bacros Virus...
(too old to reply)
Dave Laird
2004-10-19 04:49:35 UTC
Permalink
Good evening, everyone...

Let Windows users beware!

The Bacros Virus is already making its rounds, and although very much in
its infancy, has been determined to be a very dangerous threat.

In the days before botnets and phishing scams, many malicious programs
were designed to wreak havoc on a specific date--often a date with
significance to the virus creator.

According to several international anti-virus distributors, Bacros has
several trigger dates, including the following:

* 2nd of the month: Makes a copy of itself with the name of every TXT
file it finds on the machine's local drives

* 1st of the month: Replaces all GIF files it finds on the machine's
local drives with a GIF file containing the Finnish text "Kuole Jehova"

* 6th of December (Finland's Independence Day): Replaces the system's
background with a small picture of Finland's flag.

* 25th of December (Christmas day): Deletes all files on the machine's
local drives

The trickiest part is that the virus remains dormant and largely invisible
until one of those dates. Nice, huh?

Dave
--
Dave Laird (***@kharma.net)
The Used Kharma Lot / The Phoenix Project
Web Page: http://www.kharma.net updated 10/08/2004
Usenet News server: news.kharma.net

An automatic & random thought For the Minute:
A rolling disk gathers no MOS.
Conster
2004-10-19 05:32:11 UTC
Permalink
Hello Dave,
Post by Dave Laird
Good evening, everyone...
Let Windows users beware!
The Bacros Virus is already making its rounds, and although very much in
its infancy, has been determined to be a very dangerous threat.
* 25th of December (Christmas day): Deletes all files on the machine's
local drives
After not to long ago, hooking up my virgin laptop only to get something
like 23 Trojans and other goodies in 24 hours, when I read about the
Christmas day one, I sat here with this vision. The teen of the house
has been begging for a computer and the folks spent a fair chunk of
change to set up a high speed modem and also receive the computer, so
he/she could get on line right away, only to be hit with something like
that. Talk about a bummer. That's worse than driving through McDonald's
(If I got through Drive-Thru's I avoid McD's like the Bubonic plague
here in Moses Lake. They get the order wrong (always lacking, never
extra) approximately 95% of the time. It's so annoying to have to sit
there with people behind you waiting impatiently, but out of experience
you check through the bags and sure enough, they forgot one Quarter
Pounder or some such thing.

Life's little lessons.

Conster
Post by Dave Laird
The trickiest part is that the virus remains dormant and largely invisible
until one of those dates. Nice, huh?
Dave
"The way to defeat fear: decide on a course of conduct and follow it. Keep so busy and work so hard that you forget about being afraid." - Dale Carnegie
James Vahn
2004-10-19 12:55:27 UTC
Permalink
Post by Dave Laird
Let Windows users beware!
One of them complains thusly:

The thing is, I realize now that most of my enjoyment of windows
came from installing and playing around with anti-virus and anti-
trojan programs, getting the updates, reading about the latest
versions, etc.; but with linux, Guarddog was installed, and I
installed f-prot, and at this point, I have nothing to do.

Mind boggling, eh?


--
Dave Laird
2004-10-19 13:13:29 UTC
Permalink
Good morning, James!
Post by James Vahn
Post by Dave Laird
Let Windows users beware!
The thing is, I realize now that most of my enjoyment of windows
came from installing and playing around with anti-virus and anti-
trojan programs, getting the updates, reading about the latest
versions, etc.; but with linux, Guarddog was installed, and I
installed f-prot, and at this point, I have nothing to do.
Mind boggling, eh?
<Dave Googles to Guarddog and f-prot and does a hurried job of reading up
on things> <SNORT!> I've been doing some research into how Macintosh
computers get infected with viruses, particularly interested in this
because OS/X is nearly 100% FreeBSD unix/linux. Upon further research, I
find that f-prot apparently comes unconfigured, but fully-installed on the
latest distributions of OS/X, a fact I find most uniquely interesting.

The *only* things left in OS/X that the viruses can attack, it seems, are
Macintosh users who still run improperly-secured Samba shares,
particularly those with VFAT and FAT32 file partitions. Say, where do I
recognize those from, anyway? 8-) Even then, f-prot stops the viruses in
their tracks, at least according to my very preliminary sources. 8-)

Dave
--
Dave Laird (***@kharma.net)
The Used Kharma Lot / The Phoenix Project
Web Page: http://www.kharma.net updated 10/08/2004
Usenet News server: news.kharma.net

An automatic & random thought For the Minute:
A citizen of America will cross the ocean to fight for democracy, but
won't cross the street to vote in a national election.
-- Bill Vaughan
Loading...