Details
Kurt.704

This is a dangerous non-memory resident parasitic virus. It searches for COM files, then writes itself to the end of the file. The virus deletes the CHKLIST.MS and ANTI-VIR.DAT files. On the 5th of April, the virus creates the A:\LEER.ME file, writes the text string into there, and displays the same string:
KURT COBAIN Virus v0.3 pre_ß testing
1994(w) TruchoSoftware - Argentina

The virus also contains the text strings:
chklist.ms anti-vir.dat
A:\LEER.ME A:

Details
Killme.1972

It is a dangerous memory resident encrypted parasitic virus. It hooks INT 21h and writes itself to the end of COM and EXE files that are executed. On 13 of July the virus erases all executing files. On 15 of July it displays the text:
The KillMe Virus Ver 1.0 199?. By Noh.K.S.

Details
Killer.964

It is a very dangerous memory resident parasitic virus. It traces and hooks INT 21h, then it writes itself to the beginning of .COM files that are executed. On opening the files with the extensions INI, SFP, SFL, LOD, WID, FON, CDR, MEM, PRG, DBT, FRM the virus deletes them. The virus also contains the text string:
Data Base Killer Version 1.0 (C) CopyRight 1992 By Virus Development Incorporated. All Rights Reserved.

Details
Kill.578

It is a dangerous nonmemory resident parasitic virus. It searches for .EXE files, then writes itself to the end of the file. The virus does not check internal file format and corrupts COM files that have .EXE extension. The virus performs Novell Netware CREATE BINDERY OBJECT call (to increase its security level?), the name of object is “KILL”.

Details
Kiev.2048

This is a memory resident virus which infects Boot-sector of drive C: and every 3th .EXE-file being started. When starting the infector creates file ‘.SYS 2048 bytes longer in root directory of drive C: and writes virus’ body and original Boot-sector of C: drive into this file. The file ‘.SYS have a SYS-format. Then this file marked as deleted (the record in Root directory sector marked as deleted), but really not removed from disk. Into Boot-sector an is writing a program which during booting “restored” file ‘.SYS and appends to start of the file C:\CONFIG.SYS the string “device=’.sys”. After installation from file ‘.SYS the virus restores the file CONFIG.SYS (removes the record “device=’.sys”) and marks as deleted the file ‘.SYS.
The infector stays resident only from installation from infected Boot-drive. It contains a strings: “NUL”, “KIEV”, “c:\’.sys”,”CONFIG SYS”,”device=’.sys”. The virus play very well the anthem of formed USSR, don’t work with >32M drives, hooks INT 8, 21h.

Details
Kid.256

These are not dangerous nonmemory resident parasitic viruses. They search for .COM files and write themselves to the end of the file. They contain the text strings:
(c)1992littleKid!
SNA*.* \ *.com

“Kid.393″ displays “face” letter (ASCII 01). “Kid.434″ on November, 11th deletes the host files.

Details
Kicsit.592

It is not a dangerous memory resident parasitic virus. It hooks INT 21h and writes itself to the end of .COM-files that are executed. At midday the virus displays the message:
Ebédszünet! - Pihenj egy kicsit!

The virus also contains the text string:
Hello! I’m living in your PC! - Goodbye.

Details
Ki.962

It is not a dangerous memory resident parasitic virus. It hooks INT 21h and writes itself to the beginning of COM files that are executed. While infecting the virus searches in the file for the area that contains constant bytes, overwrites that area with the original file beginning, and then overwrites the file beginning with the virus copy. As a result the file length does not grow. This virus contains the ID-word “Ki” written backward (”iK”). It also hooks INT 1Ch (timer) and sometimes plays a tune.

Details
Khrusha.1505

It is not a dangerous memory resident parasitic virus. It hooks INT 21h and writes itself to the end of EXE files that are executed. In some cases it displays the message in Russian. It also contains the text string:
Khrusha

Details
Khizhnjak.306

These are nonmemory resident parasitic viruses. They search for .COM file(s) of current directory and write themselves to the end of the file. Some of these viruses search for the files of current directory of A: and C: drives.
These viruses are the results of the publication of the book “Writing virus and anti-virus” by mr.Khizhnjak. He published the commented listing of nonmemory resident COM virus, and the viruses of “Khizhnjak” family are the modifications of that virus.
They manifest themselves by different manners: some of them are harmless, other display the messages or/and erase CMOS, disk sectors and files.
The messages are:
“Khizhnjak.834″: Mason Hardkiller (C) 1995. (XAPïAHOB-âÇä)all
“Khizhnjak.ASV”: Alexander S. Virus ! “SUKA ver 1.0
“Khizhnjak.Genesis”: !!!GENESIS THE BEST BAND IN THE WORLD!!!
“Khizhnjak.Hallo”: Hallo! I have got a virus for you!
“Khizhnjak.Happy”: “Don`t worry,be happy!”

Khizhnjak.Areg
These are not dangerous viruses. With the probability 1/8 they display the text message in Russian. They also contain the text string:
(C) 1993 AREG Soft

Khizhnjak.DeathLord
These are dangerous viruses. Depending on the current time and date they erase the screen, hook INT 1Ch and delay on every timer tick, delete the files. These viruses display the messages:
“Khizhnjak.DeathLord.752″: Death Lord.So I dub thee Unforgiven.
“Khizhnjak.DeathLord.933″: Created by Death Lord

Details
Khai.1835

It is not a dangerous memory resident parasitic virus. It hooks INT 9, 1Ch, 21h and writes itself to the end of COM files that are accessed. It displays the messages in Russian.

Details
KGK.1020

It is not a dangerous memory resident encrypted parasitic virus. It hooks INT 21h and writes itself to the beginning of COM and to the end of EXE files that are executed. Depending on the system time the virus plays a tune and displays the message:
I am KILLER & MONSTR !
You must say good-bye your computer !

The virus also contains the text:
V2 KGKSoft 1997

Details
Keypress.Ufo

It’s a not dangerous memory resident multipartite virus. It hooks INT 13h, 1Ch, 21h. By hooking INT 21h this virus writes itself at the end of COM- and EXE-files are accessed. On infection of any file the virus tries to infect COMMAND.COM file. By hooking INT 13h it hits boot sectors of floppy disks. By hooking INT 1Ch this virus manifests itself by a video effect: it decrypts and displays the messages:
The U F O Club
UFO-4 By Faisal-Andre-Akhmad Klp Gading Jakarta Utara

Details
KeyPress.935

There are memory-resident dangerous parasitic viruses. They hook INT 1Ch, 21h and write themselves to the end of COM and EXE files that are executed or opened. In COM files the virus overwrites the the first 16 bytes of the beginning with Jmp-Virus routine. The viruses periodically call INT 9 (keyboard).
“Keypress.935,1000″ erase the disk sectors, and contain the text strings:
“Keypress.935″: Chaos&Amber
“Keypress.1000″: King worm

“Keypress.1199″ hooks INT 1Ch and depending on its internal counter reboots the computer.
“Keypress.1216.b,ß” do not call INT 9, they display:
SAMSOFT

“Keypress.1216.d” hooks INT 1Ch and sometimes displays symbol FFh (ASCII). It contains the text strings:
FRED
FREDDY_SOFT FREDDY_SOFT FREDDY_SOFT FREDDY_SOFT FREDDY_SOFT FREDDY_SOFT

“Keypress.1236″ displays:
SADDAM, the inferiority of the chaos

“Keypress.1250,1479″ display:
Mubark is caw

“Keypress.1600″ hooks INT 09h, 1Ch, 21h. Depending on its internal counters it displays the messages:
HELLO SHSHTAYY
GODBYE AMIN
00 ZAGAZIG UNIVER

Keypress.BBS.1258
It intercepts Open File function (INT 21h, AH=3Dh) and if the file name is USER.BBS, the virus writes to that file login information about new user, and gives maximum privileges to that user. The text strings (register information) are:
User.Bbs
Platon Potapov
SPb
311-63-83
Alfred

Details
KeyKapture.1071

These are not dangerous memory resident companion stealth viruses. They hook INT 9, 13h, 21h and create companion .COM files on accessing to .EXE files. By hooking INT 9 they store whole keyboard input and save it to the file KKV.90. The virus saves that date when new drive is selected (INT 21h, AH=0Eh). By hooking INT 13h they realize stealth algorithm. They contain the text strings:
KKV.90
KeyKapture Virus v0.90 [Hellspawn-II] (c) 1994 by Stormbringer [P/S]