Jump to content

Eliza (computer virus)

From Wikipedia, the free encyclopedia
Eliza
Technical nameEliza
TypeDOS
ClassificationVirus
FamilyFile Replicator
OriginUnknown
AuthorsUnknown

Eliza is a computer virus discovered in December 1991.[1] It infects COM files including COMMAND.COM. It has been reported that it is defective, yet destroys the .EXE files it creates.[2] The .COM files are not deleted. To avoid detection, it does not alter the dates of files it infects, but increases their length by 1,193 or 1,194 bytes. It is also found in later versions of Windows.

DOS Strain

[edit]

One of the forms of Eliza attacks the MS-DOS operating system by reproducing itself into COM and .EXE files. However, the virus has a bug that causes it to delete only .EXE files. Because it is defective and easy to track, it has been considered a minimal threat.

Windows NT/2000/XP/Vista/7 Strain

[edit]

It is unknown whether the same person developed the Windows strain, which is much more damaging and is considered a legitimate threat. One site reports that it does the following:

  • Remotely controls the computer
  • Wastes system resources and CPU usage
  • Tracks Internet activity and keystrokes, allowing the hacker to record/steal passwords, credit card numbers, etc.

The virus can be removed with an antivirus program, or by rebooting in Safe Mode and manually removing the infected files.

References

[edit]
  1. ^ "Eliza Virus". VSUM. Retrieved 13 February 2013.
  2. ^ "Eliza Description | F-Secure Labs". www.f-secure.com. Retrieved 2020-07-05.