This is an encrypted virus which contains antidebug-tricks. Hidenowt stays resident in memory and infects COM and EXE files when they are executed. Virus infects C:\COMMAND.COM on the first run.
Hidenowt contains no activation routines. It uses text 'Yx' as infection marker.
Hidenowt has been reported to be in the wild.
Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.
More scanning & removal options
More information on scanning or removal options is available in the documentation for your F-Secure security product on the Downloads section of our Home - Global site.
You may also refer to the Knowledge Base on the F-Secure Community site for more information.
Description Details: Mikko Hypponen, F-Secure