Univ.ow/e

This page shows details and results of our analysis on the malware Univ.ow/e

Overview

This is a virus detection. Viruses are programs that self-replicate recursively, meaning that infected systems spread the virus to other systems, which then propagate the virus further. While many viruses contain a destructive payload, it's quite common for viruses to do nothing more than spread from one system to another.


Minimum DAT

N/A

Updated DAT

5745 (2009-09-18)

Minimum Engine

5400.1158

File Length

Varies

Description Added

2004-06-02

Description Modified

2008-05-29

Malware Proliferation

Characteristics

This is a generic detection for several hundred DOS viruses.

These DOS viruses share one key feature in common - the files that they "infect" are in fact overwritten by the virus completely, leaving nothing of the original files to be recovered.

As such, the repair action for this virus is to delete any file identified as being infected with any of this family of viruses.

Symptoms

Files overwritten by the virus

Method of Infection

DOS viruses are generally spread by users sharing floppy disks, or by sharing files across a network.

These viruses generally do not spread across network shares - only working on the local drive, although some may additionally work on mapped network drives.

Removal

All Users:
Use current engine and DAT files for detection and removal.

Modifications made to the system Registry and/or INI files for the purposes of hooking system startup, will be successfully removed if cleaning with the recommended engine and DAT combination (or higher).

Variants