nVIR Resources Result from Infection by nVIR Virus (43790)
This article was previously published under Q43790
SUMMARY
The nVIR resource (viewable in ResEdit) is created by the nVIR virus.
It is believed that this virus works by first attacking the System.
Once the System is infected, it proceeds to attack applications. Every
time an application [such as QuickBASIC (b) or (d)] is launched, nVIR
will insert a new resource of type nVIR with a new ID number into the
application's resource fork. The symptoms are not apparent until the
application has been launched many times and many nVIR resources have
been added. As the virus multiplies, the application begins to run
poorly and eventually produces system bombs.
Vaccine(TM) Version 1.01 does not detect or remove nVIR.
Interferon(TM) Version 3.1 does detect and remove nVIR.
| Modification Type: |
Minor |
Last Reviewed: |
1/8/2003 |
| Keywords: |
KB43790 |
|