Eliza (computer virus)

Eliza is a computer virus discovered in December 1991.[1] It infects COM files including COMMAND.COM. It has been reported that it is defective, yet destroys the .EXE files it creates.[2] The .COM files are not deleted. To avoid detection, it does not alter the dates of files it infects, but increases their length by 1,193 or 1,194 bytes. It is also found in later versions of Windows.

Eliza
Common nameEliza
Technical nameEliza
FamilyFile Replicator
ClassificationVirus
TypeDOS
IsolationDecember 1991
Point of isolationUnknown
Point of originUnknown
Author(s)Unknown

DOS Strain

One of the forms of Eliza attacks the MS-DOS operating system by reproducing itself into COM and .EXE files. However, the virus has a bug that causes it to delete only .EXE files. Because it is defective and easy to track, it has been considered a minimal threat.

Windows NT/2000/XP/Vista/7 Strain

It is unknown whether the same person developed the Windows strain, which is much more damaging and is considered a legitimate threat. One site reports that it does the following:

  • Remotely controls the computer
  • Wastes system resources and CPU usage
  • Tracks Internet activity and keystrokes, allowing the hacker to record/steal passwords, credit card numbers, etc.

The virus can be removed with an antivirus program, or by rebooting in Safe Mode and manually removing the infected files.

References

  1. "Eliza Virus". VSUM. Retrieved 13 February 2013.
  2. "Eliza Description | F-Secure Labs". www.f-secure.com. Retrieved 2020-07-05.
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.