This article is more than 1 year old
NT security busted by new virus threat
Lives in your memory, monkeys around with your apps
Worried systems managers are facing what is thought to be the first virus to integrate with NT's security protocols. Found in the wild, it is called WinNT.Infis and acts as a system driver. It resides in the memory and will infect files in systems running NT4 with the following services packs – 2, 3, 4, 5, and 6. Although not particularly destructive, WinNT.Infis will corrupt programs and invokes a series of NT application error messages. MSPAINT.EXE, CALC.EXE, and CDPLAYER.EXE are all likely to be rendered inoperable by the virus which will install the file INF.SYS in the /WinNT/System32/Drivers folder. The virus was spotted by two anti-virus companies – Kaspersky Lab and Central Control. A fix for the virus is available by clicking here. ®