Path: utzoo!attcan!uunet!husc6!ukma!mailrus!ncar!umigw!umbio!twan
From: twan@umbio.MIAMI.EDU (Tat Wan)
Newsgroups: comp.sys.mac
Subject: Re: Virii at the U of I
Message-ID: <629@umbio.MIAMI.EDU>
Date: 24 Sep 88 17:08:21 GMT
References: <20200005@uxh.cso.uiuc.edu>
Lines: 47

in article <20200005@uxh.cso.uiuc.edu>, crouse@uxh.cso.uiuc.edu says:
>   At the University of Illinois we are having a major virus outbreak
>   at this time. As of Friday (09-16-88) we have been plagued by 
>   a new virus nVIR. At this time most of the Mac labs w/hard drives
>   have been infected. Now we are finding this virus as well as Sneak and
>   Scores in offices all over the campus. The Sneak virus attacks Laser
>   Prep,Laser Writer,and Image Writer files. This is a major problem we
>   are having to deal with across the campus. Any information about
>   Sneak or nVIR would be helpful. We are looking for a program that
>   can be installed on the system to check a disk for virii 
>   every time one is inserted into the machine.
>      Any info would be helpful.
> 
> 
> 					       James Crouse
> 					       Mgr Union Micro Lab
> 
> Send replies to crouse@uxh.cso.uiuc.edu


We have just discovered the SCORES virus on our Mac IIs HDs a
few days ago. I also have the Interferon 3.0 program, which
detects some common viruses (Scores, nVir, ...) but I don't have the
documentation, so you'll have to get it from somewhere else; 
and Apple's Rx (which does not do much, in my opinion). 
We also have Vaccinne, which detects a virus's attempt 
to infect a file, but I'm not sure if that is 100% effective. 
It has shown virus infection attempts but I guess quite a few 
get by without being noticed. (either that or some user granted 
permission for the program to be infected)


T.C. Wan
c/o Univ of Miami
Computing Facilities
Coral Gables, FL


******* I was trying to email the response to you, but
the mailer kept on bouncing it back, so I guess I'll just have
to post. I'm not sure how I could send the programs over, though
since the only sure way (?) would be over the news service...
-- 
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
= twan@umbio.MIAMI.EDU  <> <- should reach??            =
= p758z49z@miavax.miami.edu <- other acct.                        =
= Disclaimer: I don't claim to represent anyone except myself :-) =