home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
Software Vault: The Diamond Collection
/
The Diamond Collection (Software Vault)(Digital Impact).ISO
/
cdr29
/
dfb16b.zip
/
VIRII.NEW
< prev
Wrap
Text File
|
1995-01-30
|
11KB
|
326 lines
Robin Nest's updated virus communique. (aka the Hack Report)
-----------------------------------------------------------------------------
SIM2DOX.ZIP (Sim City 2000 dox) 05-29-94
TBAV reports (ceg) that the file 4PM.COM 5905 12-24-93
is an infected dropper of the ASStral_Zeuss virus
*(KASS-ELU.ZIP (elder scroll update)
Scan v117 reports that this ZIP file
...contains the Whisper virus
INSTALL.EXE 27615 06-28-94 INFECTED [whis]
*KPNGT401.ZIP (gametools v4.01 by KPN)
Scan v117 reports that this archive
...contains the 2358 virus
G4.EXE 60406 12-31-93 INFECTED [2358]
G4X.EXE 61126 12-31-93 INFECTED [2358]
TSRCRACK.COM 15192 12-31-93 INFECTED [2358]
UP.EXE 13674 12-31-93 INFECTED [2358]
*NE-WW2MA.ZIP (12+ PATCH for WW II Midway from DOMARK)
Scan v117 reports that this archive
...contains the Whisper virus
NE-WW2MA.EXE 59526 08-10-94 INFECTED [whis]
*SKN-DQW.ZIP (DISKQWIK 1.2-HD SPEED UP UTIL-REG)
Scan v117 reports that this archive
...contains the Whisper Virus
4DRVUTIL.EXE 13128 08-24-94 (file is compressed with PKLITE
and is INFECTED [Whis] externally.
4_SPEED.EXE 57226 08-24-94 (file is compressed with PKLITE
and is INFECTED [Whis] externally.
DBOWLDEM.EXE 12543 08-24-94 (file is compressed with PKLITE
and is INFECTED [Whis] externally.
*Scan v117 reports that the zip archive LCY-GC16.zip
Graphic Editor v2.3 according to the file_id.diz, or possibly
Graphic Editor v1.6 as the ZIP filename appears to indicate)
...contains the Whisper [Whis] Virus
*Thunderbyte antivirus v6.22 reports the same zip archive LCY-GE16.ZIP
is INFECTED with the Tai-Pan virus
VISION.EXE 18446 09-18-94 12:38 INFECTED [Whis] virus = Scan v117
VISION.EXE 18466 09-18-94 12:38 INFECTED by TAI-PAN = Tbav v622
*Scan v117 reports that the zip archive LCY-HEID.ZIP (Story of HEIDE)
...contains the Whisper [Whis] Virus
*Thunderbyte antivirus v6.22 reports the same zip archive LCY-HEID.ZIP
...is INFECTED with the Tai-Pan virus
VISION.EXE 18446 09-18-94 12:38 INFECTED [Whis] virus = Scan v117
VISION.EXE 18446 09-18-94 12:38 INFECTED by TAI-PAN = Tbav v622
*Scan v117 reports that the zip archive REG-3D11.ZIP
Nitemare 3D House of Horrors v1.1)
...contains the Whisper [Whis] Virus
VISION.EXE 18446 09-17-94 17:09 INFECTED [Whis] virus
*Scan v117 reports that the zip archive RGE-XERI.ZIP (Xerix v1.3 arcade)
...contains the Whisper [Whis] virus
VISION.EXE 18446 09-17-94 17:09 INFECTED [Whis] virus
* ...it appears as if someone is adding a file called VISION.EXE
(sometimes there is also a file included, called VISION.DOC)
at random to various ZIP files.
...it also seems evident that if the files VISON.EXE and VISION.DOC are
removed/deleted from the zip file, then the original archive should be
ok to run. But I recommend that you scan it again, afterwards,
just in case, with several of the latest integrity/anti virus packages.
*virus warning rumors indicate that
LS-MK2PB.ZIP (Mortal Combat Pinball ][)
INSTALL.* contains DUMie virus
*a Virus Warning appeared on various boards concerning the following file(s)
A30!PWA.ZIP August 8th 1994...
(supposed to be ARJ v30 release...probably fake!)
INFO note: the file REMOVE.ZIP put out by Corion may be
able to remove the Trojan/Virus hidden in the fake ARJ release!
*Mortal Combat Pong is also rumoured to be infected by a virus!
*Latest FAKE file listing: includes the following...
MFONT-1.Zip Magic Fonts (MicroSolutions) 1/5 FAKE!
MFONT-2.Zip 2/5
MFONT-3.Zip 3/5
MFONT-4.Zip 4/5
MFONT-5.Zip 5/5
*DV310Q71.Zip Desqview 386 v3.1 & QEMMv7.10 [1/1] FAKE!
*FPROT v.2.13 reports that the file DSZ.COM 54276 04-14-94 16:18
within the zip archive DSZ4RSE!.ZIP (DSZ 14-04-94 -=CRACKED=- )
is INFECTED with possibly a new variant of the Dark_Apocalypse virus!
*Scan v117 reports that the ZIP archive KASS-HYD.ZIP
(Hyper-Disk v8.49 + REG. FIX) is INFECTED in the REG.COM file with
the 1701 [1701F] Virus...
REG.COM 23830 02-20-92 12:07 INFECTED [1701F] Virus
*there is a report circulating on various boards that
ECRPPL20.ZIP IS A FAKE/TROJAN
oct 2nd '94: found the following...
MANUALS.ZIP (Manuals for HM-CARD hypertext authoring utility for Windows)
the files... VISION.EXE 18446 09-19-94
VISION.NFO 3823 09-19-94
are reported by Scan v117 to be infected
with the Whisper [whis} virus.
OSC-DFWG.ZIP (Trio DataFAx v.4.1wg for WIndows for Workgroups) could be
a FAKE!
the files... VISION.EXE 18446 09-19-94
VISION.NFO 3823 09-19-94
INSTALL.EXE 55478 02-28-94
are reported by SCan v117 to be infected with the whisper
[whis] virus. Plus Clean v117 reports that the install.exe
file can't be cleaned without destroying the file...therefore
I suspect that this ZIP upgrade could be a hoax!
oct 5th '94:
SCAN v.2.1.1.e reports that DOD-MMTR.ZIP infected with 1226B-DR virus
(Micro Machines [+7] Trainer VGA loader/Pop-Up Menu)
DOD!MMTR.EXE 24168 09-27-94 INFECTED 1226B-DR virus.
oct 15'94
GANJA35.ZIP (LSD info's). Scan v117 found whisper virus
in the file GANJA.EXE 13920 08-10-94
file is compressed with PKLITE and infected externally...
oct 16th '94
TUSYK9FK.ZIP Syndicate ][ fake warning by The Underground Team
of the InterNet 1994
scan v117 reports the whisper virus is in the
file TDF-COOL.EXE 3974 10-15-94
when deleted this archive seems otherwise safe
since the TDF-COOL.EXE was extraneous to the
alleged text infos in the ZIP file...
nov '94
PICPACK1.ZIP (4 zips of Penthouse add on graphics)
Thunderbyte reports that the file LONGBE4.YOU
contains a polymorphic drop virus.
simply deleting the file LONGBE4.YOU seems to
safely remove the virus.
nov '94
UC-NOCRK.ZIP (Lock Master anti-cracker utility v9.0 with anti-trace)
Thunderbyte reports that the file LM9-DEMO.COM is
probably infected by an unknown virus.
dec 1 '94
PNX-DL35.ZIP (DiaLOCK v3.5 (c) COM&DIA L.L.C.)
Thunderbyte 6.26 reports a POSSIBLE polymorphic virus
in the file DBWHO.COM.
dec 2 '94
SPORTV34.ZIP (Sportster V.FC/v.34 command set/S-register additions)
Thunderbyte 6.26 reports possible polymorphic code in the
file _-ACE-_.COM by an unknown virus.
deleting _-ACE-_.COM seems to safely remove the virus.
dec 3 '94
ASMPK1.ZIP (assembler programming pak v1.0)
McAfee Viruscan v.2.1.3 for DOS reports the [VLAMIX.1] virus
found in the file TASM.EXE 148082 11-29-94.
aka TASMX.EXE 148082 11-29-94.
dec 05 '94
CTFSIP13.ZIP (StickIt-Pro v1.3 DEskview Version)
McAfee Scan v117 for DOS reports the Whisper [Whis] virus
found in the file STKRPRO.EXE 20758 11-23-94.
dec 12 '94
Z-HARD.ZIP (The World's Hardest Adventure-Softworks)
McAfee Scan v117 for DOS reports the Whisper [Whis] virus
found in the file ZOMBIES.EXE 3664 11-22-94.
deleting the infected ZOMBIES.EXE seems to safely
remove the virus.
dec 22 '94
UBB!-HBD.ZIP (Ultimate Body Blows) 4 zip files
TBAV v622 reports a POSSIBLE "unknown-virus" infection
found in the file CRACK.COM 1200 12-13-94.
N Wrong name extension.Extension conflicts with
program structure.
? Inconsistent EXE-header typical of virii (or a bug).
U Undocumented interrupt/DOS call, might be a virus.
K Unusuall stack. Program has suspicious stack.
Dec 24 '94
BLKHAWK.ZIP (BlackHawk Christmas Virus Pack)
This NRLG virus is easily detected by TBAV and NAV among
other antivirus programs.
The virus is in the file BLKHAWK.COM 826 10-28-94
and was distributed as the Christmas virus, supposed
to be activated on Dec 25.
Dec 28 '94
TNTV91.ZIP (Carmel TNTVIRUS v9.1r)
F-Prot reports that the file TNTVIRUS.EXE
could be a LZEXE-packed V-sign-dropper.
Jan 05 '95
PHC-PFED.ZIP (PFED many version patch) [1/1]
FPROT reports a possible variant of the S-BUG virus
found in the file FILES@MA.FIA 666 01-01-80
Jan 14 '95
TFDLXCHT.ZIP (Tie Fighter v1.0 + defender of the empire..
cracks & hd fixes...easy and simple........)
TBAV reports ( C#JGK) an unknown virus in the file
TFDLXCHT.EXE 39665 01-04-95.
Jan 22 '95
NETPEEK.ZIP (Novell Netware LOOK/PEEK utility)
SCAN v117, Scan v214e, (among other anti-virus utils)
reports the [Whis] Whisper virus infecting 7 files within
the NETPEEK.ZIP archive.
NAV reports the Tai=Pai virus in the same seven files.
The (7) seven infected files are:
SCAN NAV
LOOK.EXE 44516 10-16-94 [Whis] [Tai-Pai]
SCHLINST.EXE 15388 10-05-93 [Whis] [Tai=Pai]
SETSERIA.EXE 15388 10-05-93 [Whis] [Tai-Pai]
DRIVE.EXE 2763 10-20-92 [Whis] [Tai-Pai]
ICLAS.EXE 55034 10-20-92 [Whis] [Tai-Pai]
SKL_REM.EXE 9866 10-20-92 [Whis] [Tai-Pai]
WINOUT.EXE 3142 10-20-92 [Whis] [Tai-Pai]
Jan 27 '95
KS-CRK13.ZIP (bbs door cracking utility)
Reported as a trojan by Hans Thorwaldsen. Apparently the
trojan is a very lame batch program that replace the system
and some DOS commands. The "data" files are huge 5 mb series
of 1's and 0's.
I'd like to take this occasion to thank Hans, and
remind all users that their input is important to us
all in averting PC virus infection, trojans, and
other shit. So if you spot a virus...
share your experience with others.
Jan 29 '95
MK2DEM_*.ZIP (Mortal Kombat 2 DEMO) is reported by Demon (in a text
file MK2FAKE.ZIP) to be a fake/hack that is also infected with the
Satanbug virus.
Jan 30 '95
PBRIDGE.ZIP (Power Bridge III)
TBAV reports 7 files probably infected with an unknown virus.
PBEXAM.EXE 9662 11-09-93 (cNG O@)
PBSTAT.EXE 14126 11-09-93 (cNGUO@)
PBPUB.EXE 12467 11-09-93 (cNG O@)
NBPERF.EXE 21601 12-21-92 (cNGUO@)
ECHOSERV.EXE 19828 06-10-91 (cNGUO@)
ECHOTEST.EXE 19284 02-25-93 (cNG O@)
DATATEST.EXE 6899 09-20-91 (cNGUO@)
------------------------------------------------------------------------------
end...