You'll get your Mac news here from now on...

Help TMO Grow

Subscriber Login

Advertising Info
The Mac Observer Express Daily Newsletter


More Info

Site Navigation

Home
News
Tips
Columns & Editorials
Reviews
Reports
Archives
Search
Forums
Links
Mac Links
Software
Reports
Contact

February 24th, 2000

[9:00 AM] Czech Mac User Group Discovers What Could Be New Mac Viruses
by Staff

The Czechs got it going on, if you'll pardon the vernacular. HOnza Koudelka reports finding what may be some new viruses that he says Virex does not yet recognize. Mr. Koudelka is President of KPPM - The Czech Mac User Group. He has notified Network Associates, the makers of Virex, and sent us the letter he sent them. According to Mr. Koudelka: [Warning: Some file names listed in this letter include language some may consider offensive.]

Hello!

I would like to inform you that we have caught new Macintosh trojan horses which are not covered by your latest definitions.

The files were uploaded onto our pubic FTP/Hotline server within the last 15 hours. The person who uploaded them was using several IP addresses from the range 212.174.160.0 - 212.174.160.255 (seems like PPP connection).

The trojan horses were uploaded with the following names:

NetBarrier_1.6 updater
*Teen_Fuck.mpeg
LolitaFuck.mpeg
Virex 6.1 patch
Hotmail.com_Hack [!]

They are all installers that install several system extensions. The extensions are masked as OpenTransport libraries so laic user mostly will not consider them unusual.

Our technical specialist debugged the installers and also the extensions installed by them and discovered that at least one of them may be destructive because it's using low level Device Manager calls very often.

If you want the files to do your own research, please let me know and I'll send them to you.

I will also greatly appreciate if you can help me with finding the distributor and performing a legal action against him. I can give you exact times when he was on-line and what IP addresses he was using. I guess the clues may be still hot enough to catch this virus distributor, so your quick assistance can help significantly.

Regards,

HOnza Koudelka

Thanks to Mr. Koudelka for finding and acting on this information. If you see files with these names, beware.

The Mac Observer Spin: Hopefully this will turn out to be a false alarm, but none of those files listed should be installing system extensions. If they do turn out to be viruses or other destructive files, we can hope that Mr. Koudelka's information on where these files were uploaded from can be used to visit some form of legal punishment to the creators.

KPPM


Today's Mac Headlines

[Podcast]Podcast - Apple Weekly Report #135: Apple Lawsuits, Banned iPhone Ad, Green MacBook Ad

We also offer Today's News On One Page!

Yesterday's News

 

[Podcast]Podcast - Mac Geek Gab #178: Batch Permission Changes, Encrypting Follow-up, Re-Enabling AirPort, and GigE speeds

We also offer Yesterday's News On One Page!

Mac Products Guide
New Arrivals
New and updated products added to the Guide.

Hot Deals
Great prices on hot selling Mac products from your favorite Macintosh resellers.

Special Offers
Promotions and offers direct from Macintosh developers and magazines.

Software
Browse the software section for over 17,000 Macintosh applications and software titles.

Hardware
Over 4,000 peripherals and accessories such as cameras, printers, scanners, keyboards, mice and more.

© All information presented on this site is copyrighted by The Mac Observer except where otherwise noted. No portion of this site may be copied without express written consent. Other sites are invited to link to any aspect of this site provided that all content is presented in its original form and is not placed within another .