Win.Twitch
Description Win.Twitch
It is a harmless(?) nonmemory resident companion virus. It searches for NewEXE files, renames them with OVL extension and replases original files with the virus code. The virus contains the partly encrypted strings:
BOOT SHELL SYSTEM.INI PATH TEMP OVL CHKLIST.CPS *.EXE
NETWARE FILEMAN SCRNSAVE WINPRINT WINDOWS
DeviceSelectedTimeout
LOAD .EXE SYSTEM SYSEDIT.EXE NWPOPUP.EXE
Check other viruses! Be aware! Use Antiviral Software
Nik.442
Description Nik.442
These are memory resident parasitic viruses. They hook INT 1Ch, 21h and write themselves to the beginning of COM files that are executed. The viruses contain the text:
NIK
"Nik.442" is a dangerous virus, depending on its counter it corrupts the CMOS. "Nik.546" slowly turns off the screen by using the VGA features.
Nikki.3133
Description Nikki.3133
It is a harmless memory resident parasitic polymorphic virus. It hooks INT 21h and writes itself to the end of COM and EXE (except COMMAND.COM) files that are executed, opened, renamed or when file attributes are accessed. The virus sets read-only attribute for infected files. The virus does not infect the programs: VIR*, CLEAN, DEBUG, SCAN, NAV. The virus deletes the anti-virus data files CHKLIST.*.
The virus contains the text strings:
TO Nikki Edval ng TorOntCan.FROM Putoksa Kawayan.
Kathang-isip sa Metro Manila, Philippines
|