EDV Boot Virus

 


             *********************************************

             ***   Reports collected and collated by   ***

             ***            PC-Virus Index             ***

             ***      with full acknowledgements       ***

             ***            to the authors             ***

             *********************************************




  EDV Boot Virus

  ==============


  This is a forward from John McAfee:


  =================================================================


  Dave Chess (of IBM) sent us another new virus that uses "creative"

  techniques to avoid detection from scanning type programs.  Dave

  calls it the EDV virus.  The virus infects boot sectors of floppy

  diskettes and the partition table (master boot record) of hard disks

  -- similar to the STONED virus.  It saves the original boot sector

  and if any program attempts to read the boot sector, the virus

  intercepts the read and retrieves the original boot sector instead.

  Thus the system will appear normal even if infected.  This technique

  is not new.  The Pakistani BRAIN was the first virus to use this

  avoidance technique.  What is new about this virus is that it also

  avoids detection from a memory scan.  The virus accomplishes this

  feat by intercepting the clock tic and at each tic the virus

  interrogates ES and DS to determine if anyone is looking at the

  virus code.  If someone is looking, the virus hangs the system.


  All these new detection avoidance techniques can of course be

  circumvented.  They do require development time, however, and are

  becoming a nuisance.  We have opted in SCAN not to block the timer

  interrupt (the obvious bypass to circumvent this virus) due to

  potential problems with time dependent background code.  Instead,

  we've chosen to outrun the virus using our own "creative" memory

  scan.  Seems to work so far and will be included in V58 of SCAN - -

  due out Feb 15th -- if beta testing goes well.


  John McAfee  ...................


  ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

  ++++++++++++++++++++++++++ end of reports ++++++++++++++++++++++++

  ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++








Comments

Post a Comment

Popular posts from this blog

BOTTOM LIVE script

                                  BOTTOM                                   ======                     by Adrian Edmondson and Rik Mayall                                 Bottom Live                                 ===========                               Richie  Rik Mayall                                Eddie  Adrian Edmondson Introduction ------------ [Opening shot of theatre, with huge pictures of Richie and Eddie. Caption: "Live from the Mayflower Theatre, Southampton".] Vox Pop 1:  So I'm hoping that this is a lot ruder than the TV, because             they can get away with it. [Cut to Ade's dressing-room door. It opens to reveal a clothes rail, its only contents a brown jacket.] Vox Pop 2:  I just think they're ace, you know, absolutely excellent. [Cut to dressing-gown, pan across a pair of glasses and a revolver.] Vox Pop 3:  It couldn't be too rude, I mean that's what young people want. [Rik's dressing-room door.]
Read more

Fawlty Towers script for "A Touch of Class"

Fawlty Towers A Touch of Class Written by John Cleese and Connie Booth First of first series, first broadcast on September 19, 1975 on BBC2 Transcribed by Jason R. Heimbaugh (jrh@uiuc.edu) on October 10, 1993 Basil Fawlty  John Cleese Sybil Fawlty  Prunella Scales Manuel        Andrew Sachs Polly         Connie Booth Major Gowen   Ballard Berkeley Miss Tibbs    Gilly Flower Miss Gatsby   Renee Roberts Lord Melbury  Michael Gwynn Danny Brown   Robin Ellis Sir Richard   Morris Martin Wyldeck Mr Watson     Lionel Wheeler Mr Wareing    Terence Conoley Mr Mackenzie  David Simeon               [The Fawlty Towers reception lobby. The main entrance is at the               back, with the stairs to the right. The entrance to the dining               room is in the right wall; on the left, the reception desk               running along the left wall, with the entrance to the office               behind it. The entrance to the bar is beyond the desk.] Basil         [on th
Read more