"den Zuk" Virus

 


             *********************************************

             ***   Reports collected and collated by   ***

             ***            PC-Virus Index             ***

             ***      with full acknowledgements       ***

             ***            to the authors             ***

             *********************************************




====== Computer Virus Catalog 1.2: "den Zuk" Virus (15-Feb-90) =======


Entry.................. den Zuk (B)

Alias(es).............. Venezuelan, "The Search"


Strain................. den Zuk

Detected: when......... ---

          where........ ---

Classification......... System (Boot) virus, RAM resident

Length of Virus........ 1 boot sector and 9 sectors on track 40


----------------------- Preconditions --------------------------------


Operating System(s).... MS/PC-DOS

Version/Release........

Computer models........ All IBM PC and AT compatibles.


----------------------- Attributes -----------------------------------


Easy identification.... The label on an infected disk will read:

                             "Y.C.1.E.R.P", where the "." is the F9h

                             character.


Type of infection...... System: the virus resides on the boot sector

                             and at track 40, head 0, sectors 1 - 9.

                             If an infected disk is booted, the virus

                             will load itself into the top of memory.

                             From there it will infect any floppy

                             that is written to.


Infection trigger...... Will infect at any time.


Media affected......... Only floppies. The virus does not identify

                             other types of floppies larger than

                             360kb.  This means that, for instance,

                             the track 40 of a 1,2kb disk will be

                             overwritten, and data can be lost, if

                             these sectors were in use.


Interrupts hooked...... Int 13h, Int 9


Damage................. A graphical "DEN ZUK" will stream in from

                             the sides on CGA and EGA screens.

                             (nice effect!)


Damage trigger......... The graphics will appear on every Ctrl-

                             Alt-Delete (reset).


Particularities........ Den Zuk - B will replace an occurance of

                             den Zuk - A (Ohio) as well as the Brain

                             strains of viruses.

                             The virus will mascarade a clean boot

                             sector.


Similarities........... It is a slightly improved version of

                             den Zuk - A.


---------------------------- Agents-----------------------------------


Countermeasures........ ---


 - ditto - successful.. ---


Standard Means......... Boot from a clean disk and use SYS to over-

                             write the infected boot sector. It is,

                             however, always better to format the

                             disk.


----------------------- Acknowledgements------------------------------

Location............... Virus Test Center, University of Hamburg, FRG

Classification by...... Morton Swimmer

Documentation by....... Morton Swimmer

Date................... 15-Feb-1990

Information source..... ---



======================= End of den Zuk (B) Virus =====================


  ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

  ++++++++++++++++++++++++++ end of reports ++++++++++++++++++++++++

  ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++



Comments

Post a Comment

Popular posts from this blog

BOTTOM LIVE script

                                  BOTTOM                                   ======                     by Adrian Edmondson and Rik Mayall                                 Bottom Live                                 ===========                               Richie  Rik Mayall                                Eddie  Adrian Edmondson Introduction ------------ [Opening shot of theatre, with huge pictures of Richie and Eddie. Caption: "Live fro...
Read more

Evidence supporting quantum information processing in animals

              Evidence supporting quantum            information processing in animals                    James A. Donald                    1068 Fulton Av                    Sunnyvale, CA 94089-1505                    USA I show that quantum systems can rapidly solve some problems for which finite state machines require a non- polynomially large time. This class of problems is closely related to the class of problems that animals can solve rapidly and effortlessly, but are intractable for computers by all known algorithms. 1. Introduction      Animals, including very simple animals, can rapidly and effortlessly perceive objects, whereas computers take nonpolynomial time to do this by all...
Read more

ARMIES OF CHAOS

                          ARMIES OF CHAOS -      Before anyone proposes more gun control, he or she should know  about a simple, deadly weapon 4 times as powerful as Dirty Harry's  legendary .44 Magnum -- and at least twice as concealable -- that  _can't_ controlled.        This simple, deadly weapon can be made by anyone -- even a  child -- with unpowered hand tools in an hour's time using $5 worth  of materials, most of which are available around the house anyway.   In traditional form it's reusable an unlimited number of times, and  modern plastics have rendered its disposable version electronically  undetectable.  You can clear a room with such a weapon (more of a  hand-held directional grenade than a gun -- sort of a recycleable  Claymore mine) and it's just one of hundreds of similar time-proven  designs. ...
Read more