Îïèñàíèÿ âèðóñîâ
ñèñòåìó, ëèáî âûâîäÿò íà ýêðàí ñîîáùåíèå, ïðèìåðíî, ñëåäóþùåãî âèäà:
Âíèìàíèå:
Îáíàðóæåí âèðóñ CDV 3.3 (Civil Defence Virus)
Íåèçëå÷èì. Äëÿ óñòðàíåíèÿ èñïîëüçóéòå óòèëèòó FORMAT.COM
èëè:
Âíèìàíèå:
Îáíàðóæåí âèðóñ CDV 3.9 (Civil Defence Virus)
Íåèçëå÷èì. Äëÿ óñòðàíåíèÿ èñïîëüçóéòå óòèëèòó PREFOR.COM
ïîñëå ÷åãî îñòàíàâëèâàþò ðàáîòó Aidstest è ïðîèçâîäÿò âûõîä â DOS.
EXE-ôàéëû âèðóñ çàðàæàåò òîëüêî íà äèñêå A: èëè B: ïðè èõ ïîèñêå
(f.4Eh,4Fh INT 21h). Ôàéëû ìåíüøå 8000 áàéò íå çàðàæàþòñÿ. Ïðîâåðêó
çàùèùåííîñòè äèñêåòû îò çàïèñè âèðóñû ïðîâåðÿþò ïîñðåäñòâîì ÷òåíèÿ è
çàïèñè ëîãè÷åñêîãî ñåêòîðà äèñêà INT 25h, INT 26h. Ïðè ïå÷àòè íà
ïðèíòåð ìîãóò âûâîäèòü íåöåíçóðíóþ áðàíü. Ñîäåðæàò òåêñòû:
(c) 1992 Íîâîñèáèðñê,
Öåíòð ïðîãðàììèðîâàíèÿ íîâîñèáèðñêîãî ôýí-êëóáà Ãðàæäàíñêîé Îáîðîíû.
ÃÐÀÆÄÀÍÑÊÀß ÎÁÎÐÎÍÀ - ÂÑÅÍÀÐÎÄÍÎÅ ÄÅËÎ!!! Õ Î É !!!
CivilDefence.33 -
Òîâàðèù ëîçèíñêèé! CDV íåïîáåäèì - âû çðÿ òðàòèòå âðåìÿ,
ïûòàÿñü âûëå÷èòü ñðàíûå êîìïüþòåðû.
Âàñ Ïðèâåòñòâóåò Civil Defence Virus ( CDV ver 3.3 )
CivilDefence.38 -
Punk not dead!
Ò. ëOçèíñêèé! Ïîçäðàâëÿåì âac c ócïeøíoé cmeíoé âAØEÉ ôamèëèè íà áîëåå
ëàòèíñêóþ.,
See you later...
Âàñ Ïðèâåòñòâóåò Civil Defence Virus ( CDV ver 3.8 )
CivilDefence.39 -
(c) 1993 Modified by Civilizator. 38.43.93 ã
Fuck to Ëozèíckié. Happy changing name. Is it get you down? Yeah!
Isn't it?
Punk not dead!
Âàñ Ïðèâåòñòâóåò Civil Defence Virus ( CDV ver 3.9 )
CivilDefence.3A -
(c) 1993 Modified by Civilizator.
Fuck to Ëozèíckié. Happy changing name. Is it get you down? Yeah!
Isn't it?
Punk not dead!
Âàñ Ïðèâåòñòâóåò Civil Defence Virus ( CDV ver 3.A )
CivilDefence.3B -
(c) 1993 Modified by Civilizator.
Âàñ Ïðèâåòñòâóåò Civil Defence Virus ( CDV ver 3.B )
Claudia.8772
Íåîïàñíûé ðåçèäåíòíûé øèôðîâàííûé âèðóñ. Ïîñëå 25 àâãóñòà âûâîäèò íà
ýêðàí òåêñò:
Das ist ClaudiaSchiffer virus by OS
Sometimes when U stroling down the
Avenue the way U walk it makes men
Thinkof HAVING U when U walking
Down the street everybody stops
& turns 2 stare at U! (IrM)
Hope 2 meet U...somewhere in time
 ëåâîì íèæíåì óãëó ýêðàíà òàêæå íàõîäèòñÿ ôîòîãðàôèÿ Êëàóäèè Øèôôåð.
Âèäèìî, î÷åíü ëþáèò ÷åëîâåê èç Ñåðïóõîâà Êëàóäèþ... Ìîæåò áûòü îíè,
äåéñòâèòåëüíî, êîãäà-íèáóäü âñòðåòÿòñÿ...
Cli.1313
Îïàñíûé ðåçèäåíòíûé âèðóñ. 2 ôåâðàëÿ óíè÷òîæàåò MBR ïåðâîãî äèñêà.
Cli&Hlt.1345
Íåîïàñíûé ðåçèäåíòíûé øèôðîâàííûé âèðóñ. Âûçûâàåò INT 02, ìåíÿåò öâåòà
ñèìâîëîâ íà ýêðàíå. Ñîäåðæèò òåêñò "** (C) CLI&HLT Hackers Group **".
Click.329,375
Èçäàþò çâóêîâîé ñèãíàë ïðè çàðàæåíèè êàæäîãî ôàéëà.
CLME-âèðóñû
CLME (Crazy Lord Mutation Engine) - ïîëèìîðôíûé ãåíåðàòîð âèðóñíûõ
øèôðîâùèêîâ è ðàñøèôðîâùèêîâ. Ñîçäàí âèðóñîïèñàòåëåì ïî "êëè÷êå" Crazy
Lord.
CLME.Ming.1528
Ïîëèìîðôíûé íåðåçèäåíòíûé âèðóñ. Åñëè çíà÷åíèå ñåêóíä âî âðåìÿ ñòàðòà
çàðàæåííîãî ôàéëà - 2, òî âèðóñ âûâîäèò íà ýêðàí òåêñò:
Written by Crazy Lord (Ming)...Using CLME v0.61
Ñîäåðæèò òàêæå ñòðîêó "CLME V0.61".
CLME.Ming.1952
Îïàñíûé ïîëèìîðôíûé âèðóñ. Ñîäåðæèò èíñòðóêöèè i386. Ïðè íåîñòîðîæíîé
òðàññèðîâêå âèðóñíîãî êîäà ìîæåò óíè÷òîæèòü 34 ïåðâûõ ñåêòîðîâ âñåõ
äîñòóïíûõ ôèçè÷åñêèõ äèñêîâ. Íå çàðàæàåò ôàéëû îêàí÷èâàþùèåñÿ íà AN,
OT, 86, PY, EG. Èíîãäà âûâîäèò ñîîáùåíèå:
*Amoeba v1.00*
Written by Crazy Lord (Ming)
Made in Hong Kong
Òàêæå ñîäåðæèò ñòðîêè "Amoef", "CLME V0.62".
CloneWar.261
Ñîäåðæèò ñòðîêó "CloneWar V1.0".
CloneWar.546
Ñîäåðæèò òåêñò:
Beyond
The rim of the star-light
My love
Is wand'ring in star-flight
I know
He'll find in star-clustered reaches
Love
Strange love a star woman teaches.
I know
His journey ends never
His star trek
Will go on forever.
But tell him
While he wanders his starry sea
Remember, remember me.
[TrekWar] *.EXE COM
CloneWar.923 (2)
 çàâèñèìîñòè îò ñèñòåìíîãî òàéìåðà, ëèáî ïðîèçâîäèò ïîèñê *.EXE-ôàéëîâ
è ñîçäàåò âèðóñû-ñïóòíèêè ñ ðàñøèðåíèåì COM äëÿ ýòèõ EXE-ôàéëîâ, ëèáî
ïðîèçâîäèò èñïîëíåíèå íåêîòîðîé ìóçûêè (åñëè ýòî ìîæíî íàçâàòü ìóçûêîé)
è "çàöèêëèâàåò" íà ýòîì ñèñòåìó.
CMOSDead.3618, 3622, 3710, 5154
Îïàñíûå ðåçèäåíòíûå øèôðîâàííûå âèðóñû. Ïðèìåðíî ÷åðåç ãîä ïîñëå
ïîïàäàíèÿ íà îïðåäåëåííûé êîìïüþòåð, âèðóñû óíè÷òîæàþò ñîäåðæèìîå CMOS-
ïàìÿòè è âûâîäÿò òåêñò:
ÛÛÛÛÛÛÛ ÛÛÛ ÛÛÛ ÛÛÛÛÛÛÛ ÛÛÛÛÛÛÛ
ÛÛ ÛÛ ÛÛ Û Û ÛÛ ÛÛ ÛÛ ÛÛ
ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ ÛÛÛÛÛÛÛ
ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ
ÛÛÛÛÛÛÛ ÛÛ ÛÛ ÛÛÛÛÛÛÛ ÛÛÛÛÛÛÛ
Your computer will be need a psychiatrist...
GRISOFT(c) SOFTWARE 1989,96
ÛÛÛÛÛ ÛÛÛÛÛÛÛ ÛÛÛÛÛÛÛ ÛÛÛÛÛ
ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ
ÛÛ ÛÛ ÛÛÛÛÛÛ ÛÛÛÛÛÛÛ ÛÛ ÛÛ
ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ ÛÛ
ÛÛÛÛÛ ÛÛÛÛÛÛÛ ÛÛ ÛÛ ÛÛÛÛÛ
CmosDead.5154 òàêæå óíè÷òîæàåò MBR æåñòêîãî äèñêà, çàïèñûâàÿ â íåãî
êîä, êîòîðûé âûâîäèò òåêñò "CMOS-DEAD: DATA DESTROYED !". Íå çàðàæàþò
ôàéëû, ñîäåðæàùèå â ñâîåì èìåíè áóêâîñî÷åòàíèÿ AVG, AVGW, AVGSYS, SCAN,
CLEAN, ASTA, VSAFE, MSAV, TURBO, WIN, BP, TRAP, TBAV, TBDRIVER, VCOP,
GUARD, VS, 286, 386, CHKDSK. Ñîäåðæàò òåêñò "� I love MS-DOS ! �" èëè
"Hello Mr. Odehnal !".
CMOSDense.807
Îïàñíûé âèðóñ. Ïåðèîäè÷åñêè ñòðàííûì îáðàçîì èçìåíÿåò íåêîòîðûå îïöèè
CMOS-ïàìÿòè.
CNTV.2630
Îïàñíûé ðåçèäåíòíûé âèðóñ. Ðàçìåùàåò ñâîþ ðåçèäåíòíóþ êîïèþ â ñèñòåìíûõ
áóôåðàõ DOS. ×àñòü îáðàáîò÷èêà INT 21h - â ïåðâîì ïðîãðàììíîì PSP
(Program Segment Prefix). Ïðè çàïóñêå ïðîãðàììû, âèðóñ çàãðóæàåò åå â
ïàìÿòü ñ ïîìîùüþ f.4B01h Int 21h (çàãðóçèòü áåç âûïîëíåíèÿ), òðàññèðóåò
ñòàðòîâûé êîä ïðîãðàììû è âíåäðÿåò ñâîé ðàñøèôðîâùèê ïî àäðåñó 100-îé
èíñòðóêöèè. Îñíîâíîé âèðóñíûé êîä çàøèôðîâûâàåòñÿ è çàïèñûâàåòñÿ â
êîíåö ôàéëà. Èç-çà îøèáîê âèðóñ ìîæåò èñïîðòèòü çàðàæàåìûé ôàéë. Èíîãäà
âèðóñ ìîæåò âûâåñòè ñîîáùåíèå: "í A CuBaN NeW TeChNoLoGy ViRuS By
SoMeBoDy !".
Cock.512
Ïðè çàðàæåíèè êàæäîãî 15 ôàéëà âûâîäèò ðóãàòåëüñòâî íà àíãëèéñêîì
ÿçûêå. Ñîäåðæèò ñòðîêó "Smart Cock".
CodeDa.1289
Îïàñíûé ðåçèäåíòíûé âèðóñ. Ïåðâûì äåëîì ïûòàåòñÿ çàðàçèòü êîìàíäíûé
ïðîöåññîð (COMMAND.COM), óêàçàííûé â ïåðåìåííîé COMSPEC. ×åðåç 7 äíåé
ïîñëå çàðàæåíèÿ ôàéëà áëîêèðóåò íàæàòèÿ êëàâèø ESC è "`". Ñâîå íàçâàíèå
ïîëó÷èë çà âûçîâ ôóíêöèè AX=CODE INT 21h äëÿ ïðîâåðêè ñâîåãî íàõîæäåíèÿ
â ïàìÿòè è îòâåòà AL=DA.
CoffeeShop.1568
Íåîïàñíûé ðåçèäåíòíûé âèðóñ.  ïÿòíèöó, åñëè çíà÷åíèå ñåêóíä ñèñòåìíîãî
òàéìåðà ðàâíî 0 âûâîäèò èçîáðàæåíèå çåëåíîãî ëèñòà (ñì.
MtE.CoffeeShop). Ñîäåðæèò ñòðîêè "CoffeeShop", "MK '92",
"COSCCLVSNEHTTBVIRAFEMTBR".
Coito.644
Ñîäåðæèò ñòðîêó "-= COITO, ERGO SUM =-By Green Leon 1993".
Collor.878
Îïàñíûé øèôðîâàííûé âèðóñ. Â çàâèñèìîñòè îò ñèñòåìíîãî òàéìåðà ìîæåò
óíè÷òîæèòü ñîäåðæèìîå 15 ïåðâûõ ñåêòîðîâ æåñòêîãî äèñêà. Íî ïåðåä ýòèì
âûâåäåò òåêñò "Virus Collor De Mello".
CommanderBomber
Ïðè çàðàæåíèè ôàéëîâ èñïîëüçóåò äîâîëüíî ñëîæíûé ïîëèìîðôíûé àëãîðèòì.
Ñ÷èòûâàåò 4096 áàéò èç ñåðåäèíû ôàéëà-æåðòâû è çàïèñûâàåò èõ â êîíåö
ôàéëà. Â îñâîáîäèâøååñÿ ìåñòî çàïèñûâàåò ñâîé âèðóñíûé êîä. Çàòåì âèðóñ
çàïèñûâàåò íåñêîëüêî ó÷àñòêîâ ñâîåãî êîäà (ïîäïðîãðàìì) â ðàçëè÷íûå
ìåñòà ôàéëà. Ýòè ïîäïðîãðàììû ñîäåðæàò, ïðàêòè÷åñêè, âñå èíñòðóêöèè
ïðîöåññîðà 8086. Ïåðâàÿ ïîäïðîãðàììà íàõîäèòñÿ â íà÷àëå ôàéëà, à
ïîñëåäíÿÿ ïåðåäàåò óïðàâëåíèå îñíîâíîìó áëîêó âèðóñà. Ïîäïðîãðàììû
'îáùàþòñÿ' äðóã ñ äðóãîì ñ ïîìîùüþ êîìàíä ïåðåäà÷è óïðàâëåíèÿ JMP, RET,
CALL è ò.ä. Òàêèì îáðàçîì, èíôèöèðîâàííûé ôàéë ïðåäñòàâëÿåò ñîáîé
ïðîãðàììíûé êîä, êîòîðûé ñîäåðæèò â ñâîåì òåëå âèðóñíûå 'ïÿòíà'.
Ñîäåðæèò òåêñòîâûå ñòðîêè "COMMANDER BOMBER WAS HERE" è "[DAME]".
Commando (1,2)
Íåîïàñíûå ðåçèäåíòíûå âèðóñû äëèíîé 421 è 498 áàéò. Ðàçëè÷àþòñÿ òîëüêî
âèäåîýôôåêòàìè: ïåðåêëþ÷àþò âèäåîñòðàíèöû èëè "òðÿñóò" ýêðàí. Ñîäåðæàò
ñòðîêó "COMMANDO-3".
Companion.Caro
Îïàñíûé ðåçèäåíòíûé âèðóñ-ñïóòíèê.17 îêòÿáðÿ óíè÷òîæàåò ñîäåðæèìîå âñåõ
ëîãè÷åñêèõ äèñêîâ. Ïðè çàïóñêå ñ êëþ÷îì -? âèðóñ âûâîäèò òåêñò:
This virus is dedicated to Caro, the girl that under less than a period
of 5 hours changed my life drastical. Positive or negative? Who knows..
Cool.929
Íåîïàñíûé ðåçèäåíòíûé âèðóñ.  ïîëíî÷ü âûâîäèò íà ýêðàí "ìóñîð".
Copy77
Íà÷èíàÿ ñ 77 ñâîåãî ïîêîëåíèÿ ïðè çàãðóçêå âûâîäèò òåêñò
"Copy 77 in job ...".
Cordobes.3334
Íåîïàñíûé ðåçèäåíòíûé ïîëèìîðôíûé âèðóñ. Óäàëÿåò ôàéë CHKLIST.MS.
Ïðèìåðíî ÷åðåç 4 ìåñÿöà ïîñëå çàðàæåíèÿ ôàéëà âèðóñ çàïèñûâàåò â êîíåö
ôàéëà C:\AUTOEXEC.BAT òåêñò:
@Echo Virus "EL MOSTRO CORDOBES".
@Echo No tema por sus datos. Que pase un buen dáa.
@Echo.
@Pause
Cornucopia
Íåîïàñíûé íåðåçèäåíòíûé âèðóñ-ñïóòíèê. Óïàêîâàí óòèëèòîé PKLITE 1.14.
Ïðîèçâîäèò ïîèñê è çàðàæåíèå COM è EXE-ôàéëîâ íà âñåõ äîñòóïíûõ äèñêàõ.
Ïðè çàðàæåíèè ôàéëà, ïåðåèìåíîâûâàåò îðèãèíàëüíûé ôàéë, ñîçäàâàÿ åìó
èìÿ, îòëè÷íîå îò íàñòîÿùåãî èìåíè òîëüêî ïîñëåäíèì ñèìâîëîì. Ê
ïîñëåäíåìó ñèìâîëó èìåíè ôàéëà âèðóñ ïðèáàâëÿåò åäèíèöó (äëÿ êîäà
ASCII). Íàïðèìåð, åñëè èìåíà ôàéëîâ áûëè FILE.EXE è 00000.COM, òî âèðóñ
ïåðåèìåíóåò äàííûé ôàéëû â FILF.EXE è 00001.COM ñîîòâåòñòâåííî. Ïîñëå
ýòîãî âèðóñ çàíîâî ñîçäàåò ôàéë ñ îðèãèíàëüíûìè èìåíåì è äëèíîé è
çàïèñûâàåò â íåãî ñâîé êîä. Ïî îêîí÷àíèè ñâîåé "ðàáîòû" âèðóñ ïûòàåòñÿ
çàïóñòèòü îðèãèíàëüíûé ôàéë. Åñëè äàííûé ôàéë íå áóäåò íàéäåí, òî âèðóñ
âûâîäèò ñîîáùåíèå "Unknown command", ïîñëå ÷åãî âûâîäèò èìÿ èñòèííîãî
çàðàæåííîãî ôàéëà. Ïðè òðàññèðîâêå êîäà âèðóñà, âèðóñ ìîæåò óäàëèòü
ôàéë, ñîäåðæàùèé äàííûé êîä íà äèñêå. Ñîäåðæèò òåêñòû:
C:\*.* .COM .EXE
PROT SCAN VIRU NAV MZ
This is a SIMUTATED VIRUS for testing.
Copyright Rosenthal Engineering 1991
CorpLife.1929, 1937
Íåîïàñíûå ðåçèäåíòíûå ïîëèìîðôíûå âèðóñû. Ïðè çàðàæåíèè EXE-ôàéëîâ
èñïîëüçóþò FCB-ôóíêöèè. Åñëè íà êîìïüþòåðå èìååòñÿ Sound Blaster ñî
speech-äðàéâåðîì, òî âèðóñ ïåðåäàåò ýòîìó äðàéâåðó òåêñòîâóþ ñòðîêó
"Fuck Corporat Life.". Âèðóñû òàêæå ñîäåðæàò ñòðîêó "$B -=[$$$
Corporate Life $$$]=- P$".
Cossiga.859
Îïàñíûé íåðåçèäåíòíûé âèðóñ. Ìîæåò óíè÷òîæèòü ñîäåðæèìîå ïåðâûõ 9òè
ñåêòîðîâ 39 öèëèíäðîâ ïåðâîãî æåñòêîãî äèñêà. Ïîñëå ÷åãî âûâåäåò òåêñò
"TE LO SEI PRESO NEL CULO !".
Cpsu.680
