Macro.Excel.Soldier
Description Macro.Excel.Soldier
This is a polymorphic macro virus. It contains four actual function: Auto_Open, Auto_Close, Delay, Poly, as well as random number of junk functions with random names.
On closing an infected file the virus searches and infects files in the current directory. While infecting the virus depending on system random counter inserts into the top of its code functions with random name and random contents (polymorphic).
On opening an infected file the virus erases menu items Format/Sheet/Hide and Format/Sheet/Unhideall (stealth).
Depending on random counter the virus displays to the Excel caption the running line:
Microsoft Excel
Check other viruses! Be aware! Use Antiviral Software
Lamego.722
Description Lamego.722
These are relatively harmless memory resident parasitic viruses. They hook INT 21h, and write themselves to the end of COM files that are executed. While installing into the system memory, the viruses also infect the C:COMMAND.COM file. In August, the viruses decrypt and display the following message:
(C) Virús LAMEGO 1.0
Cópia de virús ilegal all
The viruses also contain the text strings:
C:COMMAND.COM
*LAMEGO*
Lamento.2690
Description Lamento.2690
It is a very dangerous memory resident encrypted parasitic virus. It hooks INT 21h and writes itself to the end of COM and EXE files that are accessed. While installing the virus also infects the C:COMMAND.COM and C:DOSMODE.COM files. The virus checks the file name, and does not infect the files that begin with any of the strings:
PCVIR CENTINEL SCAN CLEAN VSHIELD ATM TB CPAV MSAV TNT FINDVIR VC VREMOVE
VSMENU VSCHK MM. KEYB.
On January 21st the virus sets the system date to January, 20th, then deletes C:AUTOEXEC.BAT and C:CONFIG.SYS files, renames to the random names all the files in subdirectories of C: drive:
DOS MSDOS SYS DRDOS IBMDOS
WINDOWS WIN WIN3 WIN30 WIN31 WIN311
While processing Windows' directories the virus looks also for SYSTEM subdirectory. Then the virus displays the messages:
Lamento tener que comunicarle que hoy es 21 de Enero all
... ha sido una cortes¡a de Woi
|
Home
Viruses from A to Z
0-9
A
B
Ñ
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z
|