Piz.2025
Description Piz.2025
It is a dangerous memory resident parasitic encrypted virus. It hooks INT 1Ch, 21h, and writes itself to the end of COM and EXE files that are accessed. Under debugger the virus erases the CMOS. Sometimes it displays the message:
+---++ + +-+ ++ +--+ + +
| || ++ -++ ++| +-- | |
+ ++--+++---+++-+++---++---++
npuxogum He3aMemHo all. >-E
Check other viruses! Be aware! Use Antiviral Software
Ryazan.512
Description Ryazan.512
This is a harmless memory resident encrypted parasitic virus. It copies itself to the Interrupt Vectors Table at the address 0000:0200, hooks INT 21h and then writes itself to the end of the EXE files that are executed or opened. It contains the text:
Ryazan
Rycho Family
Description Rycho Family
These are not dangerous parasitic viruses. They search for EXE files and writes themselves to the end of the file.
"Rycho.1024.a" and "Rycho.1536.a" are nonmemory resident viruses. "Rycho.1024.b" and "Rycho.1536.b" are memory resident ones, they hook INT 1Ch, 21h and search for .EXE files when any program is executed.
"Rycho.1024.b" changes the video fonts so that the characters stays invisible. "Rycho.1536.a,b" display the messages:
"Rycho.1536.a": A.N.F. WalczyallPunx not dead...!!! #VIR v1.41
"Rycho.1536.b":
+----> UWAGA - wirus `ASIULA` <---+
¦ Marry Christmas and Happy New ¦
¦ Year. Ha,Ha my friends. RYCHO G.¦
+---------------------------------+
Rycho.Babol.2048
It is a harmless memory resident parasitic virus. It hooks INT 13h, 21h.
While selecting new disk the virus searches for EXE files, and writes
itself to the end of the file. The virus contains several routines that are
never called. The virus contains the text strings:
(C) Dj.Babol
*Made in Poland *Greetings to M.Sell
*Beda z ciebie ludzie ..sie smiali!*.COM Äis safe!
You are death*Pozdrowienia dla w.wirusowcow!
*.EXE
|