Blazer.1000
Description Blazer.1000
It is a very dangerous nonmemory resident encrypted parasitic virus. It searches for the C:COMMAND.COM file, then for .COM files of the current directory, then writes itself to the end of the file. Before return to the host program the virus checks the system date and time. If the day number is the same as the month number, and the hour is equal to the minutes, the virus deletes all files of the current directory and displays the message:
///////////////////// CSEG:OFFS OPCODE PSEUDO INSTR. /
/ 1F47:0103 90 NOP 1F47:0104 0000 ADD [BX+SI],AL /
/ 1F47:0106 E80000 CALL 0109 1F47:0109 5D POP BP /
/ 1F47:010A 81ED0901 SUB BP,0109 /////////////////////
-=_ßL/�_R_=- (c)'1994
The virus also contains the text string:
*.com c:command.com *.*
Check other viruses! Be aware! Use Antiviral Software
Macro.Word.KillDLL
Description Macro.Word.KillDLL
This is a very dangerous virus. It contains only one macro: AutoOpen. On opening a file the virus infects the system, if the file is infected. Otherwise the virus infects this file. The virus then deletes all *.D?? files in the C:WINDOWSSYSTEM directory.
Macro.Word.KillDos
Description Macro.Word.KillDos
This is a Chinese macro virus. It contains only one macro AutoOpen and replicates on opening documents. On the first day of any month it displays InputBox in Chinese. In case of incorrect input it then deletes all files in the C:DOS directory.
|