| Description:
|
Details
Meihua.1488
These are not dangerous memory resident parasitic partly encrypted viruses. They hook INT 2Fh, and on INT 2Fh call Command Install Check (AX=AE00h) the viruses get the name of the file that is executing. Because there is available only the name of that file, but not extension, the virus tries to infect FileName.COM, and then FileName.EXE files. These viruses write themselves to the end of the file, and do not infect the COMMAND.COM file.
Being infected with any other virus "Meihua" viruses try to clean it, and leave the file in the form that is infected only with "Meihua".
While executing SCAN.EXE file the viruses decrypts and displays:
AntiVirus
If your software has been
inflected by other viruses,
run your software, then the
virus will be cleaned !
THANK YOU!
--Mr. MeiHua-- |
