Quote:
will it be worst than the I Love You virus?
before msblast, and sobig.f, swen and the netsky, mydoom, bagle.. there was Klez/elkern it made "I love you" look like a flash in the pan..
Printable View
Quote:
will it be worst than the I Love You virus?
before msblast, and sobig.f, swen and the netsky, mydoom, bagle.. there was Klez/elkern it made "I love you" look like a flash in the pan..
Hey theHorse, how exactly is he making it polymorphic? Does it just add more code to the end of itself after each copy? If you know any more info about his proof of concept I would love to hear it. If not then just make something up and make sure that it involves at least one of the three below:
1.) magic beans
2.) wizards
3.) more of Undertakers below the belt comments on Bill Gates
http://vx.netlux.org/lib/static/vdat/pviripd.htm
Thats a nice little read...take a look.
I like the comment at the end of the document in your link Cybr1d...
Ain't it the truth.. more than ever..Quote:
We believe that neither harsh legislation nor emphasis on responsible computing can stop virus development, although they may slow it down. It is necessary to take matters into your own hands and protect your computers adequately.
to me the current worms are beating around the "the Door", add polymorphism, and a few other old tricks.. attack the real door. and POW..
Cheers
3800 lines of assembly? Holy crap!! I'd pity 'him' for writing all that if it weren't for the fact that the thing will raise more hell online than I'd care to think about. But seriously, what possesses someone to create something that will only wreak havoc?Quote:
It is written in ASM and is about 3800 lines of code
alpha
Many things can drive a person through all that...I can name Anger, Jealosy, Spite, Malice, Curiosity, Sense of achievement, experiment, and also just because he can.
Hi,
http://www.runtimeware.com
"Sentinel" is a reasonable integrity checker
http://digilander.libero.it/zancart
"Winsonar" checks for new processes launching in the background, and can be set to prevent new executables being launched when you have an internet connection open.
http://www.winpatrol.com
http://www.diamondcs.co.au (RegistryProt)
If you haven't already got them
:D
Every little helps?
EDIT: http://www.f-secure.com/v-descs/magistr.shtml
I know it is three years old, but was along the same lines as what is being discussed here?