Virus Database

Victor.2442

Description Victor.2442

This is a very dangerous memory resident parasitic virus. It hooks INT 21h and writes itself to the end of .COM and .EXE files. At 9am, 11am, 1pm and 3pm by the system timer it deletes the randomly selected files. The virus contains the texts:
*.*
COMEXE
Victor V1.0 The Incredible High Performance Virus
Enhanced versions available soon.
This program was imported from USSR. Thanks to Ivan.

Check other viruses! Be aware! Use Antiviral Software

Lucas.1871

Description Lucas.1871

It is not a dangerous nonmemory resident encrypted parasitic virus. It searches for COM-files, then writes the decryption routine to the file beginning, encrypts itself and writes the encrypted code to the end of the file. Before return to the host program the virus displays the picture and the messages:
[Picture cannot be displayed in WWW version.]
It is a time of Civil War. Using fear and intimidation, the Empire seeks to
impose a New Order on the galaxy. Only the Rebel Alliance stands in the way
of their evil plans. Not yet willing to confront the Empire directly, the
Rebels are marshalling their forces in secrecy. Even now a group of their
prized Calamari Cruisers is being intercepted by a squadron of Imperial
Star Destroyers. The Rebel Fleet is outnumbered but, they have a
surpriseall the X-Wing Starfighter!

Luce.4628

Description Luce.4628

This is a very dangerous memory resident parasitic polymorphic virus. It hooks INT 1Ch (timer) and 21h, and writes itself to the end of COM and EXE files that are executed, opened, renamed or accessed by FindFirst ASCII DOS function. If the full name (including directories) of an accessed file contains one of substrings: F77 MSFORT GAMES GAME UTIL , the virus then, depending on the current day, overwrites that file with a program that displays this message when executed:
XXXXXXX XX XX XXXXXXXXX XXXXXXXX XX XX
XX XX XX XX XX XX XX XX XX
XX XX XX XX XX XX XX XXxxXX
XX XX XX XX XXXXXXX XX XX XXXX XXXX
XX XX XX XX XX XXXXXXXx XXxxXX
XX XX XX XX XX XX XX XX XX
XXXXXXX xXXx XXXXXXXXX XX XX XX XX

This program then returns to DOS. After overwriting, the virus also erases floppy drives status in CMOS (disables floppy disks). On Mondays, the virus also overwrites the MBR of the hard drive with a program that displays this message when the system is booting up:
Hard disk destroyed by mutant-virus "LUCIFER"

Depending on the system time and date, the virus manifests itself by a video effect: it shifts the screen up/down.
The virus also contains the text strings:
Virus Luce.4619 by OVER-X.
POLYMORPHIC ALGORITHM IS CREATED BY OVER-X

Home