VBScript.777
Description VBScript.777
This is a very dangerous parasitic virus written in Windows Script language. When an infected script takes control, the virus searches for other scripts (.VBS files) and infects them in the current and Windows directories, then in the Windows directories:
ProfilesAll UsersDesktop
ProfilesAdministratorDesktop
Desktop
While infecting the virus shifts files down and writes its code to the beginning of the file. As a result the original contents of affected files is not damages. The virus detects already infected scripts by the "'VBSv777" identification string that is placed at the top of virus code.
On 2nd of each month from 9:00 till 10:00 if the virus is activated, it searches for all .DOC and .TXT files on the C: and D: drives and overwrites them with the picture:
_ _
|_| |_|
| | /^^^ | |
_| |_ (| %o% |) _| |_
| | | | _ (_---_) _ | | | |_
| | | | |' | _| |_ | `| | | | |
| | / | |
/ / /(. .) /
/ / / | . | /
/ / ||Y|| / /
\__/ || || \__/
() ()
|| ||
ooO Ooo
Greetings From CTRL-ALT-DEL /CB + AVM
- http://www.codebreakers.org -
The virus then displays the MessageBox:
Greetings From CTRL-ALT-DEL /CB + AVM
- http://www.codebreakers.org -
Check other viruses! Be aware! Use Antiviral Software
Net-Worm.Win32.Slammer
Description Net-Worm.Win32.Slammer
Helkern (aka Helkern, aka Sapphire) is an extremely small (just 376 bytes) Internet worm that affects Microsoft SQL Server 2000. To get into victim machines the worm exploits a buffer overrun vulnerability (see below). When the worm code gets into a vulnerable SQL server it gains control (by usingall
NetBios.4340
Description NetBios.4340
It is a dangerous memory resident parasitic virus. It hooks INT 21h and writes itself to the end of COM and EXE files that are accessed. When an infected file is executed, the virus disinfects it. The virus overwrites some EXE files with a trojan program that erases CMOS, disk sectors and manifests itself with some video effect. This virus contains the text string:
Retix PC-21 NETBIOS
|