|
Malware type: File Infector
Aliases: W32.FunLove.4099(Symantec), W32/Flcss(Sophos), Email-Worm.Win32.NetSky.q(Kaspersky), W32/Funlove(Avira), W32/FunLove.4099(F-Prot), W32/FunLove.gen(McAfee)
In the wild: Yes
Destructive: No
Language: English
Platform: Windows 95, 98, ME, NT, 2000, XP, Server 2003
Encrypted: No
|
|
|
Description:
This memory-resident, entry-point obscuring virus infects all Win32 files in local drives and shared network drives, with the following extensions:
On NT-based systems (Windows NT, 2000, XP, and Server 2003), the virus patches the critical system files, NTLDR and NTOSKRNL.EXE, weakening system security. These patches are aimed at disabling the integrity checking for NTOSKRNL.EXE and disabling access rights checking for all files in local drives.
It works on Windows 95, 98, ME, NT, 2000, XP, and Server 2003.
For additional information about this threat, see:
Solution
Technical Details
Description created: Apr. 26, 2001 3:57:55 PM GMT -0800
Description updated: Nov. 4, 2002 7:24:31 AM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
