StealthBomber
Description StealthBomber
It is not a dangerous memory resident encrypted parasitic virus. It traces and hooks INT 21h - the virus overwrites the code of original INT 21h handler with 10 bytes of routine that passes the control to the virus body. On INT 21h calls the virus restores patched code, and then patches it again. To do that the virus also hooks INT 1, 1Ch, 20h.
The virus and writes itself to the beginning of .COM-files that are accessed. On 31st od August the virus displays the message:
! I AM THE STEALTH BOMBER !
+-------------------------+
¦ I BELONG TO THE NEW ¦
¦ GENERATION OF COMPUTER ¦
¦VIRUSES. LIKE THE STEALTH¦
¦ BOMBER, I GO UNDETECTED ¦
¦ BY ENEMY RADAR ¦
+-------------------------+
!!! DO NOT PANIC !!!
I AM JUST SHOWING OFF HOW
EASY I CAN EVADE YOUR ANTI
VIRUS SYSTEM - I DO NO HARM
Check other viruses! Be aware! Use Antiviral Software
Macro.Word.Cc
Description Macro.Word.Cc
This German specific Word virus contains five macros: wss, AutoExec, AutoOpen, DateiSpeichern, DateiSpeichernUnter. It replicates on the document opening or closing (AutoOpen, DateiSpeichern). Starting from 4th of any month on saving a document with new name the virus sets for it the "cc" password.
Macro.Word.Cebu
Description Macro.Word.Cebu
This is an encrypted macro virus. It contains four macros: AutoExec, AutoOpen, AutoClose, MsRun. It infects the global macro area on AutoOpen and writes itself to documents on AutoOpen and AutoClose. Depending on the system time it replaces the word "Asian" with "Cebu" in current document.
|
Home
Viruses from A to Z
0-9
A
B
Ñ
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z
Venita Produkter
J.l BetonghÅltagning Ab
Bil O Motor Werksta'n, HolmsjÖ
StÄdskrubben I LuleÅ Ab
StÄdfirman Trasan
|