A banner on the worlds most popular website, MySpace, has caused quite a headache for many users. The banner ad discovered by security firm iDefense was posted by a site called deckoutyourdeck.com has caused several spyware and adware problems to millions of MySpace users. The banner, when clicked, is able to exploit a flaw in Microsoft’s Internet Explorer downloads a Trojan Horse which causes many pop-up ads and monitors the users online activity. It is unknown how the banner got onto the MySpace website but users are warned to be aware.

Details
Bward.1024

It is a very dangerous memory resident parasitic virus. It hooks INT 9, 21h and writes itself to the end of EXE files that are executed. Depending on the installed BIOS the virus displays the message:
Üdv!

On each 4000th keyboard entry the virus erases random selected disk sectors. The virus contains the text string:
Bward07/25/87

Details
BVM.831

It is a very dangerous nonmemory resident encrypted parasitic virus. It writes itself to the end of .COM files. Being executed the virus searches for COMMAND.COM file by scanning Environment area for the COMSPEC= string, then it searches for *.COM files and infects them. On July 1st the virus erases the FAT of the C: drive. Depending on the system time it displays the message:
This program requires Microsoft Windows.

and returns the control to DOS instead of the host program. The virus also contains the strings:
*.COM COMSPEC=
Made by BVM

Details
Buttugly.552

PS-MPC family. It’s a not dangerous not memory resident parasitic encrypted virus. It searches for .COM-files of subdirectories pointed in PATH string and writes itself at their ends. Sometimes it appends to the files the text string:
Fool. Dolt. Fuck You! HaHah. You Limp Cock! Damn! Your Butt-Ugly.

It contains the internal text strings also:
*.COM
PATH=
by Primal Fury

Details
Burma Family

These are dangerous not memory resident overwriting viruses. They search for first .EXE- and first .COM-file of current and \DOS directories and overwrite them. On infection these viruses (except “Burma.409″) manifest themselves by a video effect, then they display the messages:
“Burma.442″: [Tempest - _]
“Burma.563,756″: Reading system configuration, please wait.
SwizzleStyxx!

The viruses contain the internal texts also:
“Burma.442″: Rangoon, Burma
“Burma.563,756″: D_a_r_k_A_v_e_n_g_e_r

“Burma.409″ hits files with extension *.COM, *.EXE, *.ZIP, *.DAT, *.SYS, *.OVL. It erases the disk sectors, it also contains the internal text string:
Tempest - _ Of LuxemburgVaginal Discharge

[Note: "_" = high-ASCII chars, cannot be displayed in simple HTML]

Details
Burglar family

These are not dangerous memory resident parasitic viruses. “Burglar.1365″ is an encrypted virus. They hook INT 21h and write themselves to the end of EXE files that are accessed. The viruses check the name of the file, and do not infect the file if its name contains “V” or “S” symbols, or begins with: “CL”, “HW”, “TB”, “F-”, “WC”, or “TK”, according to the string (two letters per name):
CLHWTBF-WCTK

Several versions (”Burglar.1150,1365″) also search for EXE files and infect them when DOS functions GetDiskSpace or DeleteFCB (AH=13h,36h) are called. The viruses search for EXE files in the current directory only.
“Burglar.1365″ also drops a silly nonmemory resident overwriting virus “SillyOC.100″.
The viruses depending on the system timer display the messages:
“Burglar.820″: BURGLAR
“Burglar.824″: BURGLAR!
“Burglar.833″: BURGLAR/Type D
“Burglar.877″: BURGLAR/Type E
“Burglar.1004″: BURGLAR/Type F
“Burglar.1050″: BURGLAR/G by SVS
“Burglar.1150″: Burglar/H
“Burglar.1365″: Burglar/I

The viruses also contain the text strings:
“Burglar.777″: Burglar
“Burglar.1004″: [_THE KNIGHT OF A DOLL - PART I_]
“Burglar.1050″: [Yally livesallsomewhere in Mind]
“Burglar.1150″: AT THE GRAVE OF GRANDMA…
“Burglar.1365″:
Burglar VIRUS (Type I/Last Ver) with Miny1.100 9192/3/12-4/1
by Corean Virus’ leader : KOV (Knight Of Virus).

Details
Burger.Pirates.609

This is a dangerous, non-memory resident parasitic overwriting virus. It writes itself to the beginning of COM files of the current drive.
It erases the disk sectors and formats the disks. It contains the internal text string:
1989 / 1990 Software Pirates - Fast Serial - Portugal *.com *

Details
Burger.560.h

This is a dangerous, non-memory resident parasitic overwriting virus. It writes itself to the beginning of COM files of the current drive.
It can erase the sectors of disks with random numbers. Some of the viruses contain the string: “Function not supported by network’Required system component n”.
It contains the internal text “RB2 - LiquidCode “.

Details
Burger.560.b

This is a dangerous, non-memory resident parasitic overwriting virus. It writes itself to the beginning of COM files of the current drive.
It displays the following messages:
MADE OUT!..
[GARDEL] VIRUS.
Cada dia infecta mejor.
By:STONE FIST & CYBER ELF
MADE OUT!..STONE FIST &CYBER ELF.[TANGO] VIRUS.Ind. Arg
and erases disk sectors.

Details
Burger.560.a

This is a dangerous, non-memory resident parasitic overwriting virus. It writes itself to the beginning of COM files of the current drive.
It can erase the sectors of disks with random numbers. Some of the viruses contain the string: “Function not supported by network’Required system component n”.

Details
Burger.1310

This is a dangerous, non-memory resident parasitic overwriting virus. It writes itself to the beginning of COM files of the current drive.
The virus types:
Welcome to Twin Peaks..Your PC now has the Twin Peaks virus.

Details
Burger Family

These are dangerous, non-memory resident parasitic or overwriting viruses. They write themselves to the beginning of .COM files of the current drive.
“Burger.1336.a” erases and doesn’t restore the file attributes and displays the following strings:
Virdem Ver.: 1.06 (Generation 1) aktive.
Copyright by R.Burger 1986,1987
Phone.: D - 05932/5451
This is a demoprogram for
computerviruses. Please put in a
number now.
If you’re right, you’ll be
able to continue.
The number is between 0 and
Sorry, you’re wrong
More luck at next try all.
Famous. You’re right.
You’ll be able to continue.
All your programs are
struck by VIRDEM.COM now.

“Burger.1336.b” types:
Virdem Ver.: 1.06 (Generation 5) aktiv.
Copyright by R.Burger 1986,1987
Tel.: 05932/5451
Dies ist ein Demoprogramm fuer
Computerviren. Geben Sie nun
bitte eine Zahl ein.
Wenn Sie richtig raten,duerfen
Sie weiterarbeiten.
Die Zahl liegt zwischen
0 und
Bedauerlicherweise war Ihre
Antwort nicht richtig.
Mehr Glueck beim naechsten Mal ….
Bravo. Richtige Antwort.
Sie duerfen weiterarbeiten.
Alle Ihre Programme sind nun infiziert.

“Burger.1336.c” contains the text:
*.com *
Virus Infestation ACTIVE
KILLER
SOMETHING WONDERFUL HAS HAPPENED !!!

In September, “Burger.301″ formats the floppy disk sectors and types:
Sad virus - 24/8/91

“Burger.560″ can erase the sectors of disks with random numbers. Some of “Burger.560″ contains the string: “Function not supported by network’Required system component n”. “Burger.560.b” displays the following messages:
MADE OUT!..
[GARDEL] VIRUS.
Cada dia infecta mejor.
By:STONE FIST & CYBER ELF
MADE OUT!..STONE FIST &CYBER ELF.[TANGO] VIRUS.Ind. Arg

and erases disk sectors. “Burger.560.h” contains the internal text “RB2 - LiquidCode “. “Burger.601″ decrypts and types “Kewl Dewdz!”, it also contains the encrypted string “Made in STL (c) ‘91″. “Burger.824″ types the text:
Datum falsch
Bitte DATE aufrufen

“Burger.1310″ types “Welcome to Twin Peaks..Your PC now has the Twin Peaks virus.”
“Burger.1542″ erases the screen by moving the color picture.
“Burger.Pirates.609″ erases the disk sectors and formats the disks. It contains the internal text string:
1989 / 1990 Software Pirates - Fast Serial - Portugal *.com *

Details
Bupt9146

It’s a harmless memory resident boot virus. It hooks INT 13h and writes itself into MBR of hard drive and boot sectors of floppies. It contains the internal text string:
Welcome to BUPT 9146,Beijing!

Details
BugsBunny
It is a very dangerous nonmemory resident overwriting virus. It searches for .COM files except COMMAND.COM, then overwrites them. Then the virus displays the message:
Datei nicht ausführbar. Neujahrsgrüße von Bugs-Bunny (ßµ_¿-ßµ¶¶í)
Bugs-Bunny Virus, Created by iRS-EB 03848

The virus also contains the text string:
BB/iRSCOMMAND*.COM

BugsBunny.497
It is a harmless memory resident parasitic virus. It hooks INT 21h and writes itself to the end of COM files (except COMMAND.COM) that are executed. The virus contains the text strings:
COMMAND.COM
BUGS BUNNY

Details
Buggeroo.1300

It is not a dangerous nonmemory resident encrypted companion virus. It searches for .COM and .EXE files in the current directory, then renames them to random names and overwrites original files with its code. When infected file is executed, it also executed its host.
Depending on the system timer the virus displays the text and halts the computer:
SPAWM