WaxfordSqueers
May 16th, 2004, 19:44
Hi,
I know there are certain signatures in files that set of a viruschecker. There are several in the RCE-CD contents. One I just came across is in SEHALL.ZIP.The virus refered to is VIRTOOL.WIN32.TRACER and it's in ring32.exe of the zip file OWL-SEH.zip.
I know OWL is a good guy and I've come across this situation before. But I find references to pseudo-viruses like VIRTOOL.WIN32.Tracer on the net as if they are real viruses (Virii). How do I tell the difference between a malicious virus and one that just happens to have the signature of a virus?
I've used the search engine extensively to find answers to this but don't see anything.
I know there are certain signatures in files that set of a viruschecker. There are several in the RCE-CD contents. One I just came across is in SEHALL.ZIP.The virus refered to is VIRTOOL.WIN32.TRACER and it's in ring32.exe of the zip file OWL-SEH.zip.
I know OWL is a good guy and I've come across this situation before. But I find references to pseudo-viruses like VIRTOOL.WIN32.Tracer on the net as if they are real viruses (Virii). How do I tell the difference between a malicious virus and one that just happens to have the signature of a virus?
I've used the search engine extensively to find answers to this but don't see anything.