Virus Database

Hiperion.154

Description Hiperion.154

These are harmless memory resident parasitic viruses. When an infected file is executed, the viruses copy themselves into DOS data area at address 0060:0000 and hook INT 21h. Then they write themselves to the end of .COM files that are executed or loaded as overlays. "Hiperion.249" contains the text string "C:COMMAND.COM" and infects this file while installing into the memory.

Check other viruses! Be aware! Use Antiviral Software

Pro-Alife.3423

Description Pro-Alife.3423

It is a dangerous memory resident parasitic virus. It hooks INT 21h and writes itself to the end of EXE files that are executed. When a program is terminated, it displays one of the messages:
Kill an evil satanic ANTI-VIRAL product for Jesus today!
Stop Disinfectants NOW!
Ain't aLife A Beautiful Choice?
And God Said, "Let There Be Life!", and there wasall..
Save the Viruses! They're People Too!!!!
PRO-aLIFE and PROUD! STOP THE VIRUS KILLERS! HALT THE AV!
STORM THE COMPU-CLINICS! DON'T LET THEM KILL THE VIRUSES!!!
Operation Rescue-II, Save the HELPLESS UNBORN Viruses!!!

When the anti-virus programs are executed:
F-PROT.EXE TBSCAN.EXE TBAV.EXE TBCLEAN.EXE SCAN.EXE CLEAN.EXE VIRSTOP.EXE
MSAV.EXE VSAFE.EXE CPAV.EXE FSP.EXE VDEFEND.EXE

the virus overwrites them with the trojan program that displays being executed:
Eddie Lives, Somewhere in time! ____________ 1704 Jerusalem
Casino :( ;( =( Smeg off! _____ ____ Frodo Lives! APRIL FOOLS!
Get a late pass! Datacrime _______________ Brain Void-Poem
Your PC is now STONED! __ OO _____ O _ Copy me, I want to travel!
1,000,000,000 Viruses DIED Today!
And yesterday, and more will die tomorrow!
_/\_STOP THE KILLING!_/\_
Look What You're Doing To Them!
Below is an aborted virus... Support PRO-aLIFE Activism!
This program has been TERMINATED by the Virus Survival Underground Movement.
It had long stood as a horrible BABY VIRUS KILLER, and had to be removed.
Life, What a Beautiful Choice (tm).
--==___[OPERATION RESCUE II - SAVING THE BABY VIRUSES!]___==--
Thank you for choosing life over destruction.
Have a Nice Day (tm).

"Pro-Alife.3423.b" displays the messages:
THE PREDATOR presents the J.TTPOG Virus (c) 1996 SWEDEN!!!!!
THE PREDATOR presents the _ _ _
J.TTPOG VIRUS (c) 1996/03/15 _ _ _
SWEDEN _____ _
And says _ _ _ _ _ _

Probe.2140

Description Probe.2140

It is a very dangerous memory resident parasitic virus. It hooks INT 21h and writes itself to the end of .COM and .EXE files (except COMMAND.COM) that are executed. The virus also infects the files on the current disk:
DOSSMARTDRV.EXE WINDOWSSMARTDRV.EXE DOSDOSKEY.COM DOSKEYB.COM

In December from 1st to 5th the virus displays the message:
Please wait, Smartdrive is checking your disk structure.
Warning, interrupting this task could cause disk damage !

then erases the hard drive sectors, and then displays:
Oh, you are using MS-DOS. Now you see what you have got !
Greetings from Bill Gates all

The virus also contains the text strings:
.EXE.COMCOMMAND.COMMSDOS
Imperial Probe V 1.09

Home