TIP: Click on subject to list as thread!

ANSI

echo:	virus_info
to:	DAVID DESROSIERS
from:	RICK COLLINS
date:	1997-03-06 17:03:00
subject:	GIFS and Viruses
-=> Quoting David Desrosiers to Rick Collins <=- -=> FidoMail to 1:163/215, please.-=< DD> @MSGID: 1:320/2600.0 331d10f4 -=> Quoting Rick Collins to David Desrosiers <=- dd> What if the virus is tailored to look for a specific jump dd> sequence in a specific viewing program, and then "load" based on dd> that, and use the jump as a "wave" to ride upon, completing the dd> execution sequence? Wouldn't that work? rc> If the virus is "looking for a specifc jump sequence" then the rc> virus is _already_ loaded, and executing. Now: How did the rc> virus get loaded? dd> Ok, let's change that. Let's say the "virus" is not executable, Then it isn't a "virus", but carry on. dd> but as it sits in memory, the viewer (which this "virus" is dd> specifically tailored to work with) sees it as a part of itself, Why would the viewer "see it as part of itself"? dd> like two parts of a whole, or like a plug-in for a browser dd> looking for a stub or jump. It runs that, instead of the one on dd> disk, or the one built into the executable later on. Now, the The viewer would have to be written to do that - and they're not. You're expecting the viewer to recognize some code snippet in memory "as part of itself" - but why should the viewer search memory for "part of itself"? That's not the way programs function. dd> "virus" isn't really running, but the program that "sees" the dd> viral code as part of itself is running it. I think this could dd> be possible, if viruses were tailored more specifically to dd> specific programs. With the advent of the net, these programs dd> (like mIRC, Netscape, IE, and so on) are being proliferated all dd> over the place, and these intelligent "designer viruses" could dd> then become the rage. No. Your ponderings would have meaning only if the viewer program was written to do the things your "virus" requires that program to do. And that leads to the programmers who write the viewer writing it to specifically function with some "virus" - and why would they do that? TTFN. Rick. Ottawa, ON 6 Mar 17:09 --- Blue Wave/DOS v2.20 --------------- * Origin: BitByters BBS, Rockland ON, Can. (613)446-7773 v34, (1:163/215)
SOURCE: echomail via exec-pc

Email questions or comments to sysop@ipingthereforeiam.com
All parts of this website painstakingly hand-crafted in the U.S.A.!
IPTIA BBS/MUD/Terminal/Game Server List, © 2025 IPTIA Consulting™.