Threat Description

INT_CE

Details

Aliases:INT_CE, INTCE, INT-CE, Shiftpar
Category:Malware
Type:Virus
Platform: W32

Summary



The INTCE virus is a diskette and Master Boot Record infector. It is only able to infect a hard disk when you try to boot the machine from an infected diskette. At this time INT_CE infects the Main Boot Record, and after that it will go resident to memory during every boot-up from the hard disk.



Removal


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.

More

You may wish to refer to the Support Community for further assistance. You also may also refer to General Removal Instructions for a general guide on alternative disinfection actions.



Technical Details



Once INT_CE gets resident to memory, it will infect practicly all non-writeprotected diskettes used in the machine. It uses interrupt CEh, hence the name.

INT_CE modifies the partition data so that the machine is not able to boot from a floppy any more - only from the hard drive. To boot such a machine, use an IBM PC-DOS 7.x floppy or MS-DOS 3.3 floppy.

It can also cause compatibility problems. It can cause a machine fail to boot.





Description Created: Mikko Hypponen, F-Secure


SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More