First IA64 Windows Virus Released

NinjaPablo writes "W64.RugRat.3344 has been released as a proof of concept virus. It is the first virus which will only run on Windows on the IA64 platform, and uses APIs from 3 native DLLs to avoid crashing applications. It infects files that are in the same folder as the virus and in all subfolders. The author of the virus has also written other concept virii in the past."

A toast...

[BJZQ8]

Here's to a long and fruitful future for Win64 viruses...

somebody has to say it..

[hp46168]

I for one, welcome our new IA64 Win32 Script Kiddy overlords.

so...

[pb]

Now we hunt him down and execute him, right?

Re:so...

[MrRuslan]

No. We make him write a virus for a 286 and see if that will fly.

Re:so...

[Midnight Thunder]

Now we hunt him down and execute him, right?

Or maybe would could execute the virus. Hmm, on the other hand that's not want we want to do :-/

Critique of the virus

[prostoalex]

1) The virus uses native DLLs - it should've used .NET managed code to avoid common memory leaks and other mistakes
2) The virus does not run on 32-bit platform - so no chance of getting "Windows XP Compatible" logo.
3) The virus does not take advantage of the latest Longhorn, Avalon and Indigo features.

Overall, the work is impressive, but I am waiting for more robust and efficient viruses.

Re:Critique of the virus

[Guy Harris]

There's also

4) The virus doesn't also support x86-64, so it's not as CPU-independent as 64-bit Windows is.

Re:Critique of the virus

[W2k]

In other words, us happy AMD owners are safe. Yay! Unfortunately, IA-64 is so unpopular among consumer users (the ones who are likely to be sloppy with their anti-virus protections and fall victim to this sort of thing) that future viruses for 64-bit Windows will likely be targeting the x86-64.

Re:Critique of the virus

[PetoskeyGuy]

2) The virus does not run on 32-bit platform - so no chance of getting "Windows XP Compatible" logo.

To bad about the logo, but it can work on 32bits...

From the Article

Note: A true 64 bit machine is not required for this virus, as it can be run on a 32 bit machine using 64 bit simulation software.

So just get your 64 bit emulator running and you too can enjoy tomorrows viruses today!

I'mii soii gladii Iii runii Linuxii

[King of the Trolls]

Iii neverii getii anyii virii. Itii mustii beii painfulii toii runii windowii.

Does that mean

[gsfprez]

that 64 bit viruses are twice as powerful as 32-bit ones?

Re:Does that mean

[Ctrl-Z]

No, they just spread twice as fast.

Re:Does that mean

[moZer]

No, they are 4294967296 times better.

Re:Does that mean

[Adriax]

Not so weak, it's 4294967296 times as powerful!

Re:Does that mean

[leerpm]

They are 4,294,967,296 times more powerful.

So by RIAA math logic, this means that the virus writers are really causing $429,496,729,600,000,000 worth of damage!

Re:Does that mean

[whovian]

Or 4,000,000,000 times more powerful, according to hard drive manufacturers.

Re:Does that mean

[dan_sdot]

that 64 bit viruses are twice as powerful as 32-bit ones?

???
Twice as fast?
(2^32)*2 = 2^64

Not really.

Re:Does that mean

[Dman33]

Did you flunk reading comp?

And what moronic mods rated this Informative????

Re:Does that mean

[Fuzzums]

No. They require twice the amount of memory and processingpower.

Virii/Viruses

[Anonymous Coward]

Argh.

To try to stall everyone's almost certain flamewars regarding the correct plural form of virus, let me propose a new word.

Virusesii.

There, now everyone can use it, okay?

Re:Virii/Viruses

[Jugalator]

Hmm... You come from the KiB camp, right? ;-)

It's the second, not the first.

[WillAJ]

IA64 Windows was the first. (Someone had to say it)

Doesn't this blow...

[Flashpot]

a hole in the "people write virii for it because it's the biggest target" argument for the proliferation of Windows virii?

Re:Doesn't this blow...

[gandalphthegreen]

That's why it's called a proof of concept. It simply proves that something can be done and is not concerned with doing lots of damage.

Re:Doesn't this blow...

[Jeff DeMaagd]

I dunno, someone made a trojan for OS X as a proof of concept. There were a couple programs for Linux that had a vaguely virus-like nature, but people that ran Linux at the time mostly knew how to operate their systems properly.

Re:Doesn't this blow...

[happyfrogcow]

It will always be easier to destroy than create. I see no coolness in destruction.

ahh young grasshopper... except for when you are asked to destroy that which you created.

ah, me

[abscondment]

A true 64 bit machine is not required for this virus, as it can be run on a 32 bit machine using 64 bit simulation software.

Yes! You're no longer limited to slowing your computer by simulating an architecture you don't have--you can run their viruses, too!

What are the legal implications?

[ZosX]

So what are the legal implications of writing viruses?

Could the DMCA be evoked in such a case?

Or is it only illegal when they are executed and allowed to spread to the wild?

Just some questions.

Feel free to respond, thanks.

Re:What are the legal implications?

[stephenisu]

In order for this to be a breach of the DCMA, he would have had to break a digital security measure.

Seeing as this is Windows, it was less of a security measure and more of an invitation.

Re:What are the legal implications?

[cpghost]

So what are the legal implications of writing viruses?

Legal implications? C'mon, this is the real world, not the mirror and smoke universe of regulators and lawyers.

It would be fun to see a virus/worm attacking the legal system itself. Kind of SCO. DDoSing courts, generating silly and contradictory jurisprudence and prompting for even more dumb laws and regulations until the judicial system comes to a grinding halt.

How would you reboot Justice then? Would we need a foreign power to invade us and pr

Re:What are the legal implications?

[prat393]

Umm... the DMCA doesn't really have anything to do with this; no copy-protection procedures have been circumvented, so no copyright violations have occurred here. In point of fact, the virus author hasn't broken any laws by writing and releasing this virus, assuming he hasn't been using it to damage any systems out there (besides his own).

Of course, if he actually were to try and damage someone's box with this virus he might have a hard time of it, since all it does is spread itself throughout the system... you get a minor to major slowdown and increase in file sizes, which can cause other things to break, but it's not very likely.

Wow, on the ball. Maybe MS should hire these guys.

[CarrionBird]

Then that 64 bit OS might actually get out the door sometime this decade.

Re:Wow, on the ball. Maybe MS should hire these gu

[prat393]

Actually, 64-bit Windows XP is already out there and available for purchase, but only for the IA64 architecture (itanium) - support for AMD's 64 bit chips is still in beta (although relatively stable, from what I hear).

New Virus?!?!

[twofidyKidd]

We should have him executed, and collect the $1million+ he's worth.

In other news....

[mikael]

Virus researchers have just announced that they developed a proof-of-concept virus that can spread on an 256-bit operating system that has as yet to be designed.

According to spokesperson who didn't wish to be identified, he claimed that this had been the most infectious virus that he had seen in the twenty years of his career and had also proved to be worst to remove. He also recommended that all users should immediately buy the latest version of Anti-Virus-Sponge-Sentinel which would mop up all traces of the virus before it reached the system.

Re:In other news....

[rlafflick]

does it cost $699.00 ?

Virii

[NinjaPablo]

I apologize for my horrid use of the word 'virii', and accept the standard and proper word, 'viruses'.

Must not have had enough coffee when I submitted that...

Pendantic

[Patrick]

You were using common slang in an informal forum, pendants seeking to impose their notion of linguistic orthodoxy notwithstanding.

A pendant is jewelry. You meant pedant, which is what I am being by responding. Like virii, your use of pendant is wrong. Not slang, just wrong.

If I referred to your sentence as "high-falutin'," that is slang. If I referred to it as "retartid," that is simply an incorrect spelling.

The English language isn't evolving new Latin-esque plurals. It's not slang. It's just ignorant pretension, which is the worst kind of pretension.

... as the actual poster admitted. Sheesh. Don't defend usage that the poster admitted was "horrid."

wow--oldskool

[Anonymous Coward]

This looks pretty oldschool... no stupid RPC nonsense or VBScript, it's a virus that infects other programs, and is spread by copying infected executables around. Just like the old days with MS-DOS viruses passed around on BBS's.

Incidentally, you could probably limit your vulnerability if the program was installed by an Administrator but only run by users without write permission, or if you removed write permission from programs that you run in your own folders.

The really cool thing is that it's written in IA64 assembly code. That sounds like quite an impressive feat. From what I hear that is far worse even than the PPC64 assembly code I usually write.

PPC64 assembly

[RAMMS+EIN]

Is PPC64 assembly that bad? I am just getting started on PPC, but it looks like decent ISA to me, much unlike crufty old x86, or new-cruft-on-old-cruft x86-64.

Re:wow--oldskool

[RAMMS+EIN]

Wow, yeah. And the even cooler thing is that this the old techniques work perfectly fine on your average GNU/Linux or BSD system. (make install, .deb/RPM install scripts, etc.) I wonder when we'll move on to something better, like ZeroInstall.

This isn't a big deal

[Anonymous Coward]

Read the details, there's nothing special to see here. This isn't a worm, it doesn't gain root/admin access and it doesn't exploit any vunerabilities of the platform. It requires "direct execution" (i.e. the user has to run it manually). It's just a good old fashioned virus that inserts code into an exe. The proof of concept is that Windows leaves exes writable by default. You can prevent it by not making your application folders writable from userland, which is what any good admin should be doing anyway.

"The file infection routine is standard. The last section of the executable is marked as executable, the virus body is inserted into the
last section and a random number of bytes are appended to the end of the virus body."

What's the point?

[Jugalator]

Showing that you can write viruses for 64-bit system?

Oh my god, I would never have thought that was possible! How can it be!? Mind boggling indeed! But it's great virus writers develop concept viruses to show us these amazing tasks that was previously thought impossible can actually be done!!

Where is the Open Source Virus?

[BigFire]

I'm still waiting for the fabled Open Source Cross Platform Virus [bbspot.com] that can be deliever to all mail system. Sure it require the recipient to uncompress and compile the virus, but it can hit ALL platforms.

Re:Where is the Open Source Virus?

[Pxtl]

Fsck that, just code it in Java or Python or some other interpreted language that most people already have the interpreter for.

Actually, a Python e-mail worm might not even be hard to code: batteries included + low linguistic security = evil, evil fun.

Re:Where is the Open Source Virus?

[lpangelrob2]

And people say Macs are hard to get viruses onto...

bash-2.03$ tar -xf oscpv.tar
./configure
Remove home directory? (Y/N) Y
Enable spam zombie module? (Y/N) Y
Install keylogger? (Y/N) Y
Profit? (Y/N) N
bash-2.03$ make install
bash-2.03$ make

Must release this and take over the world!!! Latest version of make required.

Gee, thanks! With friends like these...

[Saeed al-Sahaf]

So is this how virus writers get away with it, just call it a "proof of concept"? Gee, thanks, but I really don't think there was any question at all that it could be done...

Let me guess....

[teslatug]

The release is followed by a proof of concept jail sentence ;)

Those 5 people must be pissed!!

[Anonymous Coward]

Of course I'm referring to total amount of Itanium users out there.

This may be knit picking...

[AmishSlayer]

W64.Rugrat is a fairly simple proof-of-concept virus. However, it is the first known virus to attack 64-bit Windows executables on IA64 systems intentionally, and it does so successfully. The virus uses a handful of Win64 API-s from 3 different libraries, NTDLL.DLL, SFC_OS.DLL and KERNEL32 respectively.

From NTDLL.DLL the viruses uses the following 3 functions LdrGetDllHandle(), RtlAddVectoredExceptionHandler() and RtlRemoveVectoredExceptionHandler(). The virus supports vectored exception handling to avoid crashing during infections.

Yes, the virus uses three DLLs. It also uses a routine to avoid crashing itself while infecting the machine... it does not look like the virus cares about crashing other applications.

The thing to pay attention to here is that this is a fault tolerant virus. I have seen more and more effort lately (Sasser for example avoids shutdowns to help it propagate) from authors trying to make their creation survive.

Re:This may be knit picking...

[advance512]

Oh, and by the way...

[i]Nitpick[/i], the removal of lice eggs, came to mean detailed and precise criticism.

Not knit pick :)

IA64 = Itanium or AMD's x86-64?

[stratjakt]

And why is it a shock that a virus can be written for either?

When palladium comes out and someone writes a virus that can escape it's sandbox, infect executables (which I'd imagine would involve resigning them) and spread, I'll be impressed.

so when will win64 be released?

[RelliK]

aha! So that's what delayed the release of windows for amd64: it was not compatible with old viruses. Now that this obstacle has been overcome, how long until the release?

someone must have mistyped

[musikit]

"Train employees not to open attachments unless they are expecting them. Also, do not execute software that is downloaded from the Internet unless it has been scanned for viruses. Simply visiting a compromised Web site can cause infection if certain browser vulnerabilities are not patched."

someone must have mistyped that from this...

"Train employees not to open attachments unless they are expecting them. Also, do not execute software that is downloaded from the Internet unless it has been scanned for viruses. Simply visiting a compromised Web site can cause infection if a certain browser's vulnerabilities are not patched.

*goes for the funny**

[CdBee]

I would like to protest that although this is technically a 64-bit virus, it does not run on the more common and widely accepted Powermac G5, instead choosing to support only a badly cludged extended win32 API.
Does anyone know of a 64-bit version of Bochs or VirtualPC which ould let me run this new and interesting piece of code in emulation?

Flame Central

[gillbates]

Okay, just to collect all of the Microsoft trolls in one thread:

How can Windows ever be secure when exploits are released before the OS is available?!

It seems to me that Microsoft can't design a secure OS. After talking about security for more than 2 years, their latest incarnation is even less secure on its release date than Windows 95!

Microsoft: the Day Zero Exploit(tm) company

Re:A matter of perspective...

[ClosedSource]

I was merely trying to make the point that there is no secure OS's if you consider a single exploit sufficient to disqualify it as you were.

I'm not going to attempt to refute all of your arguments (and perhaps I can't anyway), but I think your analysis lacks a bit of perspective as well.

For example, IBM's mainframes for most of their existence were not connected to anything outside of IBM so if there were buffer overruns etc, they could not be exploited. Even today, it's likely that most mainframes are no

Windows/IA64

[RAMMS+EIN]

Wait a minute - I thought MS wasn't going to release a version for IA64? Is this some kind of joke or have I been making love too much to hear the news?

Proof of concept viruses not terrible

[crawdaddy]

To all those saying that a proof-of-concept virus is still a virus and that this guy is doing a disservice to the world by writing one, I'd like to give an alternate way of viewing it. Writing proof of concepts that aren't spread in the wild (like the other viruses mentioned in the second link) help anti-virus groups in advancing knowledge on current/new techniques that may not have been known about or considered in the past.

IANAVWOAVG, though (I Am Not A Virus Writer Or Anti-Virus Guy)

How is this a virus?

[dioscaido]

People seem to be missing a major point here. This file doesn't do anything fancy, it just reads files and 'infects them'. There are no indications that this 'virus' is bypassing any kind of system security.

From the article:
"The SfcIsFileProtected() function of SFC_OS.DLL is used to avoid infecting executables that are protected by SFC (the System File Checker)."

Any sensible XP64 installation would not allow system files to be write accessible to anyone but the Administrator.

It's as if I wrote a c program that used fopen() and write() to destroy files, then declared I wrote a virus for linux. Whoo hoo.

Re:Viruses, not virii!

[Waffle Iron]

I'm surprised that this tiresome topic wasn't raised before the third post.

Re:Viruses, not virii!

[Celandine]

The plural of penis ought to be penes, if you were sticking to Latin plurals. Fortunately we aren't, and it isn't.

Re:There's no such word as "virii"

[Anonymous Coward]

Linguistic evolution is an ongoing process which can 't be controlled by an "official" standard for a word. Virii is the next step in this evolution, like it or not. You should find a job with the Quebec language police...who enforce a variant of French that has many "incorrect" features in comparison to "real" French. Neither variants is less legitimate than the other, or Cajun French for that matter. I suppose Chaucer's English should still exist. It doesn't. Get over it.

*barf*

[Anonymous Coward]

"l33+5p34k" is not acceptable and should not carry over into the official language just because a bunch of basement dwelling morons think so.

Re:There's no such word as "virii"

[Vampo]

Evolution indeed. As Darwin would say, once there was a virus, then it started reproducing, evolving, mutating, whatever you want to call it. The result? A number of viruses here, a number of virii there...

Re:There's no such word as "virii"

[kzinti]

But when linguistic evolution is driven by clueless people trying to show how "smart" they are ("Oh, look, I can make this word plural in a way that makes me look like I studied Latin"), then it should be smashed flat with a large-type edition of the Oxford English Dictionary. People invent words, sometimes because there's a true need for a new word, and sometimes because they're ignorant of the correct word. People who invent out of ignorance should be shunned. And the virii they rode in on...

Re:There's no such word as "virii"

[Karamchand]

Just like hacker doesn't (only) mean hacker anymore but (also) means cracker. So stop the moaning about it, that's how language works, as the parent explained.

Re:There's no such word as "virii"

[Durandal64]

Socially inept nerds making up (what they think to be) cool-sounding plural forms does not count as a valid step in the evolution of the English language. The plural for "virus" existed long before computers did, and there is absolutely no reason to change it when it refers to a computer virus. You can use the word "virii" if you want, but don't be surprised when people think that you're a fucking retard for doing so.

Re:There's no such word as "virii"

[Mycroft_VIII]

Actually language is simply what people use to communicate verbally and writen and is defined by said usage.
What determines what is a word is NOT some definition of correctness. Useage is what defines the language. So if enough people were to use virii as the plural of virus it would be so.
This is pretty much a summation of the statement a language expert and senior editor of a well known, dictionary (who's name escapes me), said during an NPR interview a few months ago.
I'm shure if you looked ar

Re:Who's the retard?

[Finuvir]

As long as meaning is conveyed between the people doing the communicating, which word you use is irrelevant.

no dowt you can figur aut what this sentance is ment to meen two but that doesnt meen its not ridled with tyops. It's irritating to have to translate someone's text into English before I can read it (more accurately as I read it). If you want to communicate you should make every reasonable effort to achieve correctness of language. If you want to argue the descriptive-vs-prescriptive nature of dicti

the medium is the message

[Doc Ruby]

Who cares about the dictionary, in and of itself? When we speak or write language you made up, especially when it's redundant, our listeners/readers will be confused bu, and/or disrespectful of, your meaning. Do you prefer your message to be the subject at hand, or your identification with a subgroup? Sometimes you must choose.

Re:There's no such word as "virii"

[Cereal Box]

If you think "virii" is annoying, ponder this. I had a friend who insisted that not only was "virii" the plural form of "virus", but that it was pronounced "ver-il-eye".

Re:There's no such word as "virii"

[Anonymous Coward]

You're right, there's no such word as "virii." There are also no such words as "boxen," "*nix," "sysadmin," "interweb," and "teevee." "Awesome" means "awe-inspiring," "cool" refers to a temperature, "radical" is what we call a nutjob, and, to my knowledge, no one has ever gotten "jiggy" with anything. Purists would even say that using "google" as a verb is wrong. These are the same people who had a problem with "surfing" the "web."

It's called slang, and it's evolving and changing all the time. Were these people to use "virii" in an official capacity, such as in a company-wide memo, or an academic paper, there would be a problem. But this is Slashdot, for crying out loud. Get over yourself and have a little fun.

Re:There's no such word as "virii"

[Profane MuthaFucka]

"radical" is what we call a nutjob

A nutjob might be radical to you and those who use the fake word 'virii'.

To those who use the word 'viruses', getting a nutjob is commonplace. Women really like a man who can speak English properly.

Re:There's no such word as "virii"

[yecrom2]

Sure. Next you'll tell me that the plural of box isn't boxen. It has to be. English is a totally consistent language and the plural of VAX is VAXen.

It is well known that the pluralizing of nouns in english is well defined:

ouse -> ice.
eg. house -> hice.
ata -> atabase.
eg. data -> database.
ink -> egnancy.
eg. drink -> pregnancy.
That one is a little tricky because it requires a change in the base word.

outer -> 0,000
cisco router -> $450,000
See previous example.

Just a thought.

Re:There's no such word as "virii"

[FattMattP]

Maybe you should update your crusade links. The Perl.com and Merriam-Webster links didn't work.

Re:There's no such word as "virii"

[Mournblade]

We need a "-1, Pedantic" moderation category.

Re:There's no such word as "virii"

[Hythlodaeus]

Of course, languages never evolve over time.

Re:There's no such word as "virii"

[TheRealMindChild]

Well, we can prove this a simple way... here [reference.com]

virus ( P ) Pronunciation Key (vrs) n.

pl. viruses 1. 1. Any of various simple submicroscopic parasites of plants, animals, and bacteria that often cause disease and that consist essentially of a core of RNA or DNA surrounded by a protein coat. Unable to replicate without a host cell, viruses are typically not considered living organisms. 2. A disease caused by a virus. 2. Something that poisons one's soul or mind: the pernicious virus of racism. 3. Computer Science. A computer virus.

Re:There's no such word as "virii"

[uss_valiant]

I'm on a crusade. I intend to post a comment like this one whenever I see anybody use "virii." [...] The plural of "virus" isn't "virii." There is no such word. The plural of "virus" is "viruses."

And whenever I see a /. discussion about the plural of virus I wish it was below my threshold.

What about spending your time convincing people of more important issues like [insert anything else here]?

Re:There's no such word as "virii"

[Geoff-with-a-G]

Moderators: with your help, we can wipe out "virii" in our lifetime!

Nope, you can't wipe out the word "virii". It just keeps spreading. As soon as one guy uses it around his two friends, it spreads to them. Then they each use the word around two other friends, who catch it. At this point it stops for a while, since those seven geeks don't have any other friends. But then one of them posts it online, and it spreads to hundreds of others.

Despite your efforts to stop it, the word "virii" will continue to

Re:Boxen

[Profane MuthaFucka]

Boxen is annoying too. It's fucking boxii.

Re:Boxen

[Fizzlewhiff]

Boxii is the gimp kid from BSG with the robot dog.

I am the walrus, we are the walrii

Re:Boxen

[Profane MuthaFucka]

A beowulf cluster of boxii is boxiiii. Maybe boxiv for short.

Re:Boxen

[Didion Sprague]

Um, no.

It's 'Boxi' -- second delclension plural as follows:

N: boxi
G: boxorum
D: boxis
Ac: boxum
Ab: boxis

Eunuch boxum Unix laudat.
("The eunuch praises Unix boxes.")

Something like that.

Re:Boxen

[RAMMS+EIN]

Well, using a fake latin word for fun is quite a different alley than calling people names.

Now what if I laugh _and_ you get modded as a troll?

Re:W32/Shrug

[lcsjk]

I know what ING means. What does shrug mean?

You -ing well don't know what -ing means.

[crovira]

Unless you read The Truth" [harpercollins.com]

Re:W32/Shrug

[Anonymous Coward]

Actually, it is a Latin phrase which means "You are a fucking moron".

Re:W32/Shrug

[Rupert]

Nah, it's a historical critique of the military strategy of Richard the Third.

Re:W32/Shrug

[rokzy]

indeed. Richard Of York Gave Battle In Vain.

presumably trying to fight for Windows' security is also in vain.

Re:W32/Shrug

[I confirm I'm not a]

My favourite mnemonic was "Bad Boys Ravish* Our Young Girls But Violet Goes Willingly" (Black-blue-red, etc, colour bands on resistors). Rainbows always seemed dull after electronics class...

* Why, yes, this has been changed for our new PC times.

Re:W32/Shrug

[espo812]

Bad Boys Ravish* Our Young Girls But Violet Goes Willingly

Our high school electronics teacher taught it to us as "Bad Bourbon Rots Our Young Guts But Vodka Goes Well" - although I remembered it with the first word Black (so I could remember which was black and which was blue.)

roy g biv

[RAMMS+EIN]

It looks like Gaelic or somesuch to me.

Roy g biv is the author of the virus

[Anonymous Coward]

roy g biv is the author of the worm, and is a member of the 29A VX group. The group has been responsible for Donut (first .NET virus), Winux (the first virus to infect both Linux ELF binaries and Windows executables), as well as a few others of notoriety.

29A is probably the most elite malware group out there.

Re:W32/Shrug

[Monkelectric]

There's also a tasty Boards of Canada song by that name. I doubt the author put that string in his code simple to remind us of the colors of the rainbow? Maybe he's a techno fan? :)

Re:W32/Shrug

[Anonymous Coward]

Don't say something like that. You're going to start an endless thread of "Back in my days we used [ancient technology] and liked it" ... "Yes, but when I was young, we used [even more ancient technology]!"

Re:Conga Line

[MarkGriz]

I am evil Homer.

Re:Grr

[Jugalator]

But it's so cool to say virii and it makes you look wise and better than the people who just go for the simple "viruses"! :-P

At least that's why I think so many caught on with the term...

Re:Grr

[rtaylor]

In order to continue using virii, I shall now spell virus as virius.

Damn windows virius.