Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!swrinde!zaphod.mps.ohio-state.edu!ub!dsinc!netnews.upenn.edu!vax1.cc.lehigh.edu!cert.sei.cmu.edu!krvw
From: pjd@hpuxa.ircc.ohio-state.edu (Peter J. Dotzauer)
Newsgroups: comp.virus
Subject: '12 Tricks Trojan' virus question (PC)
Message-ID: <0007.9008131823.AA10141@ubu.cert.sei.cmu.edu>
Date: 11 Aug 90 19:43:25 GMT
Sender: Virus Discussion List <VIRUS-L@LEHIIBM1>
Lines: 19
Approved: krvw@sei.cmu.edu

Recently, I discovered that the public domain utility 'superdir.com'
contains the '12 Tricks Trojan' virus.

Although I have used it several times before I discovered this, it
apparently did not infect anything else. I also determined that the
virus was already in the version that I downloaded from a local BBS,
instead of entering the utility later on my system.

What does this virus do? It cannot be removed from the utility, and
I have not found an uninfected version of it on a local BBS.

Is it safe to run the infected utility from a floppy that has nothing
else on it, while temporarily write-protecting the hard disk with
another utility?
- -=-
Peter Dotzauer, Analyt.Cart.& GIS, Dept.of Geogr., OSU, Columbus, OH 43210-1361
    TEL +1 614 292 1357  FAX +1 614 292 6213  FIDO 1:226/330  CCnet mapvxa::pjd
      INTERNET pjd+@osu.edu |ace for rent...this space for rent...this space f|
        BITNET pjd@ohstvmb       UUCP ...!osu-cis!hpuxa.ircc.ohio-state.edu!pjd