Virus Database

VCode Family

Description VCode Family

VCode.1633
It is a harmless memory resident parasitic virus. It hooks INT 9, 21h and writes itself to the end of EXE files that are accessed. While installing memory resident the virus opens CONFIG.SYS file, searches for "SHELL" and "COMSPEC=" strings and infects the command interpreter. When Alt-Ctrl-Del keys are pressed it scans Environment area and also infects command interpreter. The virus contains the strings:
COMMAND.COM
SHELL
Program made in UV januar 93
CONFIG.SYS
COMSPEC=

VCode.1886,2540
These are dangerous nonmemory resident parasitic viruses. They search for .EXE files and write themselves to the end of the file. Depending on the current date they erase the disk sectors. They contain the text strings:
"VCode.1886": .93 all.........[[[ S C A N N E R ]]]
"VCode.2540": COMMAND.COM X:CONFIG.SYS

VCode.2246,2262
These are not dangerous memory resident parasitic viruses. They hook INT 21h and write themselves to the end of COM and EXE files that are accessed. While installing memory resident they open CONFIG.SYS file, search for "SHELL" string and infect the command interpreter. Depending on their internal counters these viruses hook INT 8 (timer) and sometimes change the keyboard flags.

Check other viruses! Be aware! Use Antiviral Software

NextGen.2304

Description NextGen.2304

It is a harmless memory resident parasitic stealth virus. It hooks INT 21h, 2Fh and writes itself to the end of EXE files that are accessed. It contains the text strings:
The NextGen Stealth Virus
IL USA, 6-93all(Revision)

Ng.695

Description Ng.695

These are harmless memory resident parasitic viruses. They hook INT 13h, 28h and on INT 28h calls search for COM files of the current directory and write themselves to the beginning of the file. They contain the encrypted text strings:
"Ng.695,706": New Generation v.2.1 (NG-2.1 Ukr) *.COM
"Ng.914": NG-2.2 Ukr *.COM
"Ng.1036": NG-2.3 Ukr

"Ng.695,706" also displays the message:
Bad command or file name

Home