|
|
The virus is comparatively harmless, as it does nothing wrong except replicating and re-sending itself on the massive scale, causing general traffic congestions and irritating computer users.
The Doctor Web virus base has got an Aliz signature included as early, as 19 November 2001. For the virus to be detected and disabled "on the fly" one has to have SpIDer Guard monitor enabled. Please make sure you have installed the latest "hot" virus database add-on which will be, as usual, included into the next, 9th regular add-on for version 4.26.
E-mail messages sent by this virus employ a known MS Internet Explorer vulnerability ("loophole"), which allows an unauthorized automatic launch of the attached to the message virus program when viewed in MS Outlook and MS Outlook Express e-mail clients.
Upon being launched the virus sends itself to all local Address book e-mail addresses and, finally, self-destructs. This way neither actual computer infecting happens nor any destructive actions take place.
Please find a detailed information about the MS Internet Explorer "loopholes"
used by the virus as well as an appropriate patch to eliminate those holes on
http://www.microsoft.com/technet/security/bulletin/MS01-020.asp
|
Some other interesting viruses |