The Register® — Biting the hand that feeds IT

Feeds

Slovak biker spat linked to rare destructive worm

A rare example of a destructive computer worm has been spotted on the web. Zimuse-A and its variant, Zimuse-B, overwrite MBR (Master Boot Record) files on infected drives with their own data, either 40 days or 20 days respectively after infection. This malicious behaviour corrupts records and makes data recovery difficult if not …

This topic is closed for new posts.
Candy

Sometimes disguised as an IQ test...

I wonder, does it make any decisions based on the reults?

Anonymous Coward
WTF?

Overwriting the MBR

Okay, either there is something missing from this report or the destructiveness of this worm has been greatly exaggerated... Last time I checked, overwriting the MBR only made it impossible to boot from the affected drive - and all it takes to get it fixed is boot the system from a different medium and rewrite the MBR. Hell, almost every installation of Windows or Linux overwrites the Master Boot Record and in most cases no actual data is destroyed.

Anonymous Coward
Grenade
Reply Icon

other things..

its also may delete the following so more than just resetting the mbr

* C:\BOOT.INI

* C:\NTDETECT.COM

* C:\NTLDR

* C:\HYBERFILE.SYS

* C:\BOOTMGR

Nick Pettefar

Umm

Are we talking about a Windows virus here and, if so, which versions?

Talk about half an article...!

Chris N
WTF?

Bizarre

I find this all very bizarre. A virus that targets fans of a Slovakian motorcycle club? What's next - one that targets the Bournemouth Womens Institute or Milton Keynes Knitting Guild?

This topic is closed for new posts.