Selected viruses, spyware, and other threats: sorted alphabetically

Xeram is a non-resident, encrypted, parasitic direct action COM and EXE infector. If an infected file is executed on Friday 13th the virus, depending on setting of the national environment and on time, overwrites 255 sectors on the first hard disk. When the virus attempts to infect files it temporary turns off the resident protection Vsafe and, just to be sure, also the keyboard.
When the virus is activated it attacks only one type of files (either COM or EXE) depending on the system timer. It tries to delete files NAV_._NO, CHLIST.MS and SCANVAL.VAL. In its encrypted body are the following strings:

N-XERAM_ \NCDTREE\NAV_._NO \CHKLIST.MS_ \SCANVAL.VAL

© 1992-2004 Eset s.r.o. All rights reserved. No part of this Encyclopedia may be reproduced, transmitted or used in any other way in any form or by any means without the prior permission.