------------------------
Amiga Virus Encyclopedia
Gyros Virus
------------------------
======== Computer Virus Catalog 1.2: GYROS Virus (5-June-1990) ========
Entry...............: GYROS Virus
Alias(es)...........: --
Virus Strain........: --
Virus detected when.: December 1988
where.: Elmshorn, FRG
Classification......: system virus (bootblock), resident
Length of Virus.....: 1. length on storage medium: 1024 byte
2. length in RAM : 1024 byte
--------------------- Preconditions -----------------------------------
Operating System(s).: AMIGA-DOS
Version/Release.....: 1.2/33.180
Computer model(s)...: AMIGA 500, AMIGA 1000
(without any memory expansions)
--------------------- Attributes --------------------------------------
Easy Identification.: typical text: 'Dear Arnd! Your Amiga is fucked
from a nice GYROS. Many greetings to you from
Goeblodiel!!'
Type of infection...: self-identification method: string 'DOS' and
hex. $0 at memory location $0007EC00
system infection: RAM resident, reset resident,
bootblock
Infection Trigger...: reset (CONTROL + Left-AMIGA + RIGHT-AMIGA)
Storage media affected: only floppy disks (3.5" and 5.25")
Interrupts hooked...: ---
Damage..............: permanent damage: overwriting bootblock,
blocking system reboot after some time, system
has to be turned off; this seems to be a
prerelease of a virus, blitter data is
included in the virus, but not used.
transient damage: screen buffer manipulation:
screen becomes black, boot operation will be
blocked after some time; animated graphic is
not shown (see above).
Damage Trigger......: permanent damage: reset
others: unknown yet
transient damage: after 10th infection, action
part (animated blitter graphics) is not
executed.
Particularities.....: resident programs using the CoolCaptureVector are
shut down
Similarities........: ---
--------------------- Agents ------------------------------------------
Countermeasures.....: Names of tested products of Category 1-6:
Category 1: .2 Monitoring System Vectors:
'CHECKVECTORS 2.2'
.3 Monitoring System Areas:
'CHECKVECTORS 2.2','GUARDIAN 1.2',
'VIRUSX 4.0'
Category 2: Alteration Detection: ---
Category 3: Eradication: 'CHECKVECTORS 2.2',
'VIRUSX 4.0'
Category 4: Vaccine: ---
Category 5: Hardware Methods: ---
Category 6: Cryptographic Methods: ---
Countermeasures successful: 'CHECKVECTORS 2.2', 'GUARDIAN 1.2',
'VIRUSX 4.0'
Standard means......: 'CHECKVECTORS 2.2'
--------------------- Acknowledgement ---------------------------------
Location............: Virus Test Center, University Hamburg, FRG
Classification by...: Wolfram Schmidt
Documentation by....: Alfred Manthey Rojas
Date................: 5-June-1990
Information Source..: ---
===================== End of GYROS-Virus ==============================
Antivirus removal...: Kickstart 1.2 & 1.3 : VT-Schutz v3.17
Kickstart all others: VirusZ III with Xvs.library installed
Ascii of Gyros virus:
