Virus Database

RedCode.1513

Description RedCode.1513

It is not a dangerous memory resident encrypted parasitic stealth virus. It hooks INT 21h and writes itself to the end of COM files that are closed. On opening or debugging infected files the virus disinfects them. On January 1st the virus displays the messages, runs a video effect and halts the computer:
Viral RedCode Implant
Today's contest between
Big Butt Gasso and Himmler Fewster
BIIIIIIG BUTT GASSSOOOOall WINSSSSS !!!
FEWSTER BANSSSSS GASSSSOOOOOOOO !!!

The virus also contains the text strings:
The RedCode virus by Wintermute/29A; yeah, not a kickass at all,
but with a funny payload, don't you agree ?
Watch the payload !

Check other viruses! Be aware! Use Antiviral Software

AntiEta.5315

Description AntiEta.5315

It is not a dangerous memory resident parasitic polymorphic virus. It writes itself to the end of COM and EXE files and uses several level of encryption in infected files and its TSR copy. On July 12th the virus displays an image of a palm and the text: "ANTI-ETA". The virus also contains the text:
<< ANTI-ETA ViRuS Bio.Coded By GriYo / 29A >>

When an infected file is executed, the virus hooks INT 21h and stays memory resident. It then intercepts file execution and opening, stores their names and infects them when they are closed or program is terminated. The virus checks the file names and does not infect TBAV, SCAN, WIN and COMMAND.COM. On changing current directory the virus depending on its random counter drops a random named infected COM file. The virus also deletes the anti-virus data files, if they exist: ANTI-VIR.DAT, CHKLIST.MS.

AntiEXE.a

Description AntiEXE.a

These are very dangerous, memory-resident boot viruses. They hook INT 13h, and infect the MBR of the hard drive and the boot sectors of the floppy disks. They check the accessed sectors for an EXE header (MZ/ZM stamp), and corrupt some EXE files that are executed or while reading/writing from/to these files.

Home