Scanner will help you determine if any of your files are infected by known and unknown 68k viruses. It is important that you read the enclosed information by selecting 'Help...' from the  menu before you attempt to use this program!
------------------------------------------------------
### Calculating directory size...  (-. to cancel)
### Analysing 68k code in file <
Graphics Accelerator> using heuristics... (-. to cancel)
<
Graphics Accelerator>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'INIT' of id=33 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 9/12/1998-21:6:21
### Analysing 68k code in file <Sevendust-A> using heuristics... (-. to cancel)
<Sevendust-A>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MDEF' of id=666 accesses suspicious resources with the call: "GetResource('MDEF',666)", at offset=$0058. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=666 accesses suspicious resources with the call: "Get1Resource('INIT',666)", at offset=$0020. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=666 accesses suspicious resources with the call: "Get1Resource('INIT',666)", at offset=$0122. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=666 accesses suspicious resources with the call: "Get1Resource('MDEF',666)", at offset=$01BC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=666 contains the call: "AddResource('INIT',666)", which alters/adds resources, at offset=$0142. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=666 contains the call: "AddResource('MDEF',666)", which alters/adds resources, at offset=$0268. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=666 contains the call: "ChangedResource('MENU',x)", which alters/adds resources, at offset=$0298. This is very suspicious. (Flag probability=High)
### Last Modification Date: 5/20/1998-21:13:33
### Analysing 68k code in file <Sevendust-B> using heuristics... (-. to cancel)
<Sevendust-B>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MDEF' of id=666 accesses suspicious resources with the call: "GetResource('MDEF',666)", at offset=$0058. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=666 accesses suspicious resources with the call: "Get1Resource('INIT',666)", at offset=$0020. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=666 accesses suspicious resources with the call: "Get1Resource('INIT',666)", at offset=$0154. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=666 accesses suspicious resources with the call: "Get1Resource('MDEF',666)", at offset=$01EE. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=666 contains the call: "AddResource('INIT',666)", which alters/adds resources, at offset=$0174. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=666 contains the call: "AddResource('MDEF',666)", which alters/adds resources, at offset=$029A. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=666 contains the call: "ChangedResource('MENU',x)", which alters/adds resources, at offset=$02CA. This is very suspicious. (Flag probability=High)
### Last Modification Date: 5/20/1998-21:20:22
### Analysing 68k code in file <Sevendust-C> using heuristics... (-. to cancel)
<Sevendust-C>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MDEF' of id=107 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 5/22/1998-19:20:12
### Analysing 68k code in file <Sevendust-D> using heuristics... (-. to cancel)
<Sevendust-D>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MDEF' of id=236 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 5/24/1998-1:13:49
### Analysing 68k code in file <AIDS> using heuristics... (-. to cancel)
<AIDS>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'AIDS' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'AIDS' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'AIDS' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'AIDS' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'AIDS' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'AIDS' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 3/17/1989-11:55:52
### Analysing 68k code in file <ANTI A> using heuristics... (-. to cancel)
<ANTI A>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',0)", at offset=$01CA. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',1)", at offset=$01F0. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Last Modification Date: 2/16/1989-23:3:5
### Analysing 68k code in file <ANTI A Variant> using heuristics... (-. to cancel)
<ANTI A Variant>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',0)", at offset=$01CA. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',1)", at offset=$01F0. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Last Modification Date: 10/15/1990-11:26:17
### Analysing 68k code in file <ANTI B> using heuristics... (-. to cancel)
<ANTI B>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',0)", at offset=$01B2. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',1)", at offset=$01D8. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Last Modification Date: 10/1/1990-11:56:57
### Analysing 68k code in file <Desktop> using heuristics... (-. to cancel)
<Desktop>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CDEF' of id=1 accesses suspicious resources with the call: "GetResource('CDEF',1)", at offset=$0130. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CDEF' of id=1 accesses suspicious resources with the call: "GetResource('CDEF',1)", at offset=$01D0. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CDEF' of id=1 accesses suspicious resources with the call: "Get1Resource('CDEF',1)", at offset=$0196. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CDEF' of id=1 contains the call: "AddResource('CDEF',1)", which alters/adds resources, at offset=$01AE. This is very suspicious. (Flag probability=High)
### Last Modification Date: 1/2/1999-2:27:4
### Analysing 68k code in file <Desktop.1> using heuristics... (-. to cancel)
<Desktop.1>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'WDEF' of id=0 contains the call: "AddResource('WDEF',0)", which alters/adds resources, at offset=$01CE. This is very suspicious. (Flag probability=High)
### Resource type 'WDEF' of id=0 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 1/2/1999-2:27:26
### Analysing 68k code in file <Déjà Vu> using heuristics... (-. to cancel)
<Déjà Vu>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'nVIR' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nVIR' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nVIR' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nVIR' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nVIR' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'nVIR' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=10 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=1 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 9/3/1989-16:8:44
### Analysing 68k code in file <ExtensionConflict> using heuristics... (-. to cancel)
<ExtensionConflict>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1Resource('proc',x)", at offset=$0ABC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1IndResource('MDEF',x)", at offset=$0B0E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'proc' of id=128 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'proc' of id=129 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'proc' of id=130 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'proc' of id=131 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'proc' of id=132 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 10/1/1998-13:53:49
### Analysing 68k code in file <f__k> using heuristics... (-. to cancel)
<f__k>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'fuck' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'fuck' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'fuck' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'fuck' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'fuck' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'fuck' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 1/22/1990-12:9:30
### Analysing 68k code in file <Hpat> using heuristics... (-. to cancel)
<Hpat>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'Hpat' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'Hpat' of id=7 accesses suspicious resources with the call: "GetResource('CODE',255)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'Hpat' of id=7 accesses suspicious resources with the call: "GetResource('CODE',255)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'Hpat' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'Hpat' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'Hpat' of id=7 contains the call: "AddResource('CODE',255)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=2 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 1/1/1989-18:51:1
### Analysing 68k code in file <INIT 29> using heuristics... (-. to cancel)
<INIT 29>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "GetResource('INIT',-134)", at offset=$008E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$016E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$01B8. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('INIT',-578)", at offset=$024A. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 contains the call: "AddResource('INIT',-220)", which alters/adds resources, at offset=$00E6. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=4 contains the call: "AddResource('INIT',-664)", which alters/adds resources, at offset=$02A2. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=4 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00EA. (0=System). (Flag probability=Medium/High)
### Resource type 'CODE' of id=4 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00FA. (0=System). (Flag probability=Medium/High)
### Last Modification Date: 2/8/1989-11:48:18
### Analysing 68k code in file <INIT 29_C> using heuristics... (-. to cancel)
<INIT 29_C>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "GetResource('INIT',-134)", at offset=$008E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$016E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$01B8. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('INIT',-578)", at offset=$024A. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 contains the call: "AddResource('INIT',-220)", which alters/adds resources, at offset=$00E6. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=4 contains the call: "AddResource('INIT',-664)", which alters/adds resources, at offset=$02A2. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=4 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00EA. (0=System). (Flag probability=Medium/High)
### Resource type 'CODE' of id=4 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00FA. (0=System). (Flag probability=Medium/High)
### Last Modification Date: 4/29/1997-22:34:31
### Analysing 68k code in file <INIT 29_D> using heuristics... (-. to cancel)
<INIT 29_D>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "GetResource('INIT',-134)", at offset=$008E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$016E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$01B8. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',-578)", at offset=$024A. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 contains the call: "AddResource('cdev',-220)", which alters/adds resources, at offset=$00E6. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=4 contains the call: "AddResource('CODE',-664)", which alters/adds resources, at offset=$02A2. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=4 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00EA. (0=System). (Flag probability=Medium/High)
### Resource type 'CODE' of id=4 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00FA. (0=System). (Flag probability=Medium/High)
### Last Modification Date: 7/29/1997-22:47:59
### Analysing 68k code in file <INIT 29_E> using heuristics... (-. to cancel)
<INIT 29_E>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "GetResource('INIT',-134)", at offset=$008E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$016E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$01B8. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 accesses suspicious resources with the call: "Get1Resource('CODE',-578)", at offset=$024A. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=4 contains the call: "AddResource('CODE',-664)", which alters/adds resources, at offset=$02A2. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=4 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00EA. (0=System). (Flag probability=Medium/High)
### Resource type 'CODE' of id=4 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00FA. (0=System). (Flag probability=Medium/High)
### Last Modification Date: 7/29/1997-22:49:21
### Analysing 68k code in file <Jude> using heuristics... (-. to cancel)
<Jude>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'Jude' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'Jude' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'Jude' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'Jude' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'Jude' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'Jude' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 11/28/1989-16:45:38
### Analysing 68k code in file <kOOL> using heuristics... (-. to cancel)
<kOOL>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'kOOL' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'kOOL' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'kOOL' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'kOOL' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'kOOL' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'kOOL' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 8/5/1997-21:50:13
### Analysing 68k code in file <MBDF> using heuristics... (-. to cancel)
<MBDF>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MBDF' of id=0 accesses suspicious resources with the call: "GetResource('MBDF',1)", at offset=$00C4. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MBDF' of id=0 accesses suspicious resources with the call: "GetResource('MBDF',1)", at offset=$0220. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MBDF' of id=0 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$015A. (0=System). (Flag probability=Medium/High)
### Resource type 'ICON' of id=128 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 11/24/1992-12:0:0
### Analysing 68k code in file <MBDF B> using heuristics... (-. to cancel)
<MBDF B>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MBDF' of id=0 accesses suspicious resources with the call: "GetResource('MBDF',1)", at offset=$00C8. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MBDF' of id=0 accesses suspicious resources with the call: "GetResource('MBDF',1)", at offset=$0224. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MBDF' of id=0 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$015E. (0=System). (Flag probability=Medium/High)
### Resource type 'DATA' of id=0 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'ZERO' of id=0 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=2 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=3 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=4 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=5 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=6 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=7 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=9 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=11 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=12 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=13 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=14 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=15 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=16 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=17 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=1 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=0 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=18 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'INIT' of id=1001 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'LDEF' of id=1041 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CDEF' of id=1000 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'Dcmp' of id=1004 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'Dcmp' of id=1005 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'ICON' of id=1030 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'DRVR' of id=1001 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'XCMD' of id=128 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'XCMc' of id=129 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'XCMc' of id=130 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'XCMc' of id=131 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'GLST' of id=1000 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'GLST' of id=1001 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 7/4/1997-0:14:39
### Analysing 68k code in file <MDEF A> using heuristics... (-. to cancel)
<MDEF A>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('PACK',6)", at offset=$0020. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('DRVR',2)", at offset=$0080. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',5378)", at offset=$0050. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',5378)", at offset=$00B4. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$00A2. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$00FE. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00A6. (0=System). (Flag probability=Medium/High)
### Resource type 'CODE' of id=1 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=2 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=6 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=7 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=8 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 5/16/1990-20:32:12
### Analysing 68k code in file <MDEF B> using heuristics... (-. to cancel)
<MDEF B>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',8573)", at offset=$00EC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',8573)", at offset=$014E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$013C. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$01A2. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$01D0. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$0140. (0=System). (Flag probability=Medium/High)
### Resource type 'ICON' of id=128 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 8/14/1990-14:31:16
### Analysing 68k code in file <MDEF C> using heuristics... (-. to cancel)
<MDEF C>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',6982)", at offset=$00D6. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',6982)", at offset=$017A. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$0168. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$01CA. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$01F8. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$016C. (0=System). (Flag probability=Medium/High)
### Resource type 'ICON' of id=128 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 10/22/1990-15:35:33
### Analysing 68k code in file <MDEF D> using heuristics... (-. to cancel)
<MDEF D>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MDEF' of id=8375 accesses suspicious resources with the call: "GetResource('MDEF',8375)", at offset=$00C4. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=8375 accesses suspicious resources with the call: "Get1Resource('MDEF',8375)", at offset=$0162. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=8375 contains the call: "AddResource('MDEF',8375)", which alters/adds resources, at offset=$017E. This is very suspicious. (Flag probability=High)
### Last Modification Date: 1/30/1991-19:42:58
### Analysing 68k code in file <MDEF_G> using heuristics... (-. to cancel)
<MDEF_G>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('PACK',6)", at offset=$0020. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('DRVR',2)", at offset=$0080. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',5378)", at offset=$0050. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',5378)", at offset=$00B4. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$00A2. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$00FE. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00A6. (0=System). (Flag probability=Medium/High)
### Resource type 'CODE' of id=1 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=2 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=6 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=7 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=8 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 7/29/1997-19:14:34
### Analysing 68k code in file <mdev.b> using heuristics... (-. to cancel)
<mdev.b>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',8573)", at offset=$00EC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 accesses suspicious resources with the call: "GetResource('MDEF',8573)", at offset=$014E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$013C. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$01A2. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$01D0. This is very suspicious. (Flag probability=High)
### Resource type 'MDEF' of id=0 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$0140. (0=System). (Flag probability=Medium/High)
### Resource type 'ICON' of id=128 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 8/14/1990-14:31:16
### Analysing 68k code in file <MEV#> using heuristics... (-. to cancel)
<MEV#>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$005E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MEV#' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MEV#' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MEV#' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MEV#' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MEV#' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'MEV#' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Resource type 'DATA' of id=0 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=2 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 4/14/1989-16:27:0
### Analysing 68k code in file <nFLU> using heuristics... (-. to cancel)
<nFLU>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'nFLU' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nFLU' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nFLU' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nFLU' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nFLU' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'nFLU' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 8/2/1989-22:36:14
### Analysing 68k code in file <nVIR A> using heuristics... (-. to cancel)
<nVIR A>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('PACK',6)", at offset=$0020. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('DRVR',2)", at offset=$0080. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nVIR' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01F6. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nVIR' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0224. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nVIR' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$023A. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nVIR' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0254. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nVIR' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$03D2. This is very suspicious. (Flag probability=High)
### Resource type 'nVIR' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0434. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=1 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=2 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=6 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=7 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=8 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 11/3/1988-13:36:14
### Analysing 68k code in file <nVIR Variant (420)> using heuristics... (-. to cancel)
<nVIR Variant (420)>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type '4:20' of id=132 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type '4:20' of id=132 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type '4:20' of id=132 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type '4:20' of id=132 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type '4:20' of id=132 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type '4:20' of id=132 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=9 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=66 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 12/4/1997-19:18:11
### Analysing 68k code in file <nVIR Variant (sHIT)> using heuristics... (-. to cancel)
<nVIR Variant (sHIT)>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'sHIT' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'sHIT' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'sHIT' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'sHIT' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'sHIT' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'sHIT' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=9 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=66 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 8/7/1997-11:18:47
### Analysing 68k code in file <nVIR_B (MARK)> using heuristics... (-. to cancel)
<nVIR_B (MARK)>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MARK' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MARK' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MARK' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MARK' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MARK' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'MARK' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 4/23/1998-22:3:58
### Analysing 68k code in file <nVIR_B (MODM)> using heuristics... (-. to cancel)
<nVIR_B (MODM)>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MODM' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MODM' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MODM' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MODM' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'MODM' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'MODM' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 4/23/1998-21:29:23
### Analysing 68k code in file <nVIR_B (nCAM)> using heuristics... (-. to cancel)
<nVIR_B (nCAM)>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'nCAM' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nCAM' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nCAM' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nCAM' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'nCAM' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'nCAM' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 4/20/1998-17:56:21
### Analysing 68k code in file <nVIR_B (prod)> using heuristics... (-. to cancel)
<nVIR_B (prod)>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'prod' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'prod' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'prod' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'prod' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'prod' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'prod' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 4/23/1998-21:49:22
### Analysing 68k code in file <nVIR_B (zero)> using heuristics... (-. to cancel)
<nVIR_B (zero)>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'zero' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$01FC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'zero' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0336. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'zero' of id=7 accesses suspicious resources with the call: "GetResource('CODE',256)", at offset=$0352. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'zero' of id=7 accesses suspicious resources with the call: "GetResource('INIT',32)", at offset=$0474. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'zero' of id=7 contains the call: "AddResource('INIT',32)", which alters/adds resources, at offset=$05F2. This is very suspicious. (Flag probability=High)
### Resource type 'zero' of id=7 contains the call: "AddResource('CODE',256)", which alters/adds resources, at offset=$0654. This is very suspicious. (Flag probability=High)
### Last Modification Date: 4/23/1998-21:54:26
### Analysing 68k code in file <NVP> using heuristics... (-. to cancel)
<NVP>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=2 accesses suspicious resources with the call: "GetResource('INIT',5)", at offset=$0028. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=2 accesses suspicious resources with the call: "GetResource('PTCH',128)", at offset=$0048. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'INIT' of id=5 accesses suspicious resources with the call: "Get1Resource('PTCH',x)", at offset=$0118. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'INIT' of id=5 accesses suspicious resources with the call: "Get1Resource('PTCH',x)", at offset=$019E. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=2 contains the call: "AddResource('INIT',5)", which alters/adds resources, at offset=$0072. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=2 contains the call: "AddResource('PTCH',128)", which alters/adds resources, at offset=$0096. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=2 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$00A6. (0=System). (Flag probability=Medium/High)
### Last Modification Date: 11/1/1994-17:51:26
### Analysing 68k code in file <Scores> using heuristics... (-. to cancel)
<Scores>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=28 accesses suspicious resources with the call: "GetResource('INIT',6)", at offset=$0576. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=28 accesses suspicious resources with the call: "GetResource('INIT',17)", at offset=$0644. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=28 accesses suspicious resources with the call: "GetResource('INIT',10)", at offset=$0714. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=28 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$14C6. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=28 accesses suspicious resources with the call: "GetResource('CODE',13)", at offset=$15B6. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=28 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$17D2. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=28 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$011E. (0=System). (Flag probability=Medium/High)
### Resource type 'CODE' of id=1 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 11/16/1988-19:9:46
### Analysing 68k code in file <WDEF A> using heuristics... (-. to cancel)
<WDEF A>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'WDEF' of id=0 contains the call: "AddResource('WDEF',0)", which alters/adds resources, at offset=$01CE. This is very suspicious. (Flag probability=High)
### Resource type 'WDEF' of id=0 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 12/5/1989-19:14:22
### Analysing 68k code in file <WDEF B> using heuristics... (-. to cancel)
<WDEF B>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'WDEF' of id=0 contains the call: "AddResource('WDEF',0)", which alters/adds resources, at offset=$01D4. This is very suspicious. (Flag probability=High)
### Resource type 'WDEF' of id=0 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 6/15/1990-10:56:10
### Analysing 68k code in file <ZUC A> using heuristics... (-. to cancel)
<ZUC A>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1Resource('CODE',1)", at offset=$1064. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1Resource('CODE',1)", at offset=$124A. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 11/4/1989-18:20:13
### Analysing 68k code in file <ZUC B> using heuristics... (-. to cancel)
<ZUC B>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1Resource('FKEY',x)", at offset=$0ABC. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1Resource('FKEY',x)", at offset=$0BE4. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1Resource('CODE',1)", at offset=$4630. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1Resource('CODE',1)", at offset=$4816. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1IndResource('FKEY',x)", at offset=$0FC2. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'FKLR' of id=2021 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=1 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 12/7/1989-9:30:2
### Analysing 68k code in file <CODE 32767> using heuristics... (-. to cancel)
<CODE 32767>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=32767 accesses suspicious resources with the call: "GetResource('CODE',32767)", at offset=$090C. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=32767 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$065A. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=32767 accesses suspicious resources with the call: "Get1Resource('CODE',32767)", at offset=$0674. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=32767 accesses suspicious resources with the call: "Get1Resource('CODE',32767)", at offset=$0A34. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=32767 accesses suspicious resources with the call: "Get1Resource('CODE',x)", at offset=$0B00. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=32767 contains the call: "AddResource('CODE',32767)", which alters/adds resources, at offset=$0A1C. This is very suspicious. (Flag probability=High)
### Last Modification Date: 9/21/1998-21:6:14
### Analysing 68k code in file <T4-D> using heuristics... (-. to cancel)
<T4-D>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1IndResource('CODE',x)", at offset=$09E6. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1IndResource('CODE',x)", at offset=$0B50. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1IndResource('CODE',x)", at offset=$10B8. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 contains the call: "ChangedResource('CODE',x)", which alters/adds resources, at offset=$12B4. This is very suspicious. (Flag probability=High)
### Last Modification Date: 11/7/1996-12:1:32
### Analysing 68k code in file <MDEF-E> using heuristics... (-. to cancel)
<MDEF-E>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'MDEF' of id=0 contains the call: "AddResource('MDEF',0)", which alters/adds resources, at offset=$154C. This is very suspicious. (Flag probability=High)
### Last Modification Date: 9/21/1998-21:2:24
### Analysing 68k code in file <flag> using heuristics... (-. to cancel)
<flag>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'WDEF' of id=0 contains the call: "AddResource('WDEF',0)", which alters/adds resources, at offset=$134C. This is very suspicious. (Flag probability=High)
### Resource type 'WDEF' of id=0 contains the call: "AddResource('WDEF',0)", which alters/adds resources, at offset=$1462. This is very suspicious. (Flag probability=High)
### Resource type 'WDEF' of id=0 appears to be writing to the System resource file using the call "UpdateResFile(0)", at offset=$1432. (0=System). (Flag probability=Medium/High)
### Last Modification Date: 2/4/1997-11:3:5
### Calculating directory size...  (-. to cancel)
### Analysing 68k code in file <CODE9811.payload> using heuristics... (-. to cancel)
<CODE9811.payload>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$0360. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$0426. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1IndResource('CODE',x)", at offset=$0DA4. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 contains the call: "AddResource('CODE',x)", which alters/adds resources, at offset=$1584. This is very suspicious. (Flag probability=High)
### Last Modification Date: 14-01-99/15:19:14
### Analysing 68k code in file <Icon
> using heuristics... (-. to cancel)
### Analysing 68k code in file <NoCookie 1.0> using heuristics... (-. to cancel)
<NoCookie 1.0>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$0360. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$0426. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CDEF' of id=928 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CDEF' of id=930 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CDEF' of id=389 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CDEF' of id=1220 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CDEF' of id=967 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'XFCN' of id=165 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 24-12-98/14:14:42
### Analysing 68k code in file <NoCookie 1.0 installer> using heuristics... (-. to cancel)
<NoCookie 1.0 installer>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=5 accesses suspicious resources with the call: "Get1IndResource('CODE',x)", at offset=$366A. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=5 contains the call: "AddResource('INIT',1001)", which alters/adds resources, at offset=$0610. This is very suspicious. (Flag probability=High)
### Resource type 'CODE' of id=2 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=3 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Resource type 'CODE' of id=5 appears to either be encrypted code or to be using encryption routines. (Flag probability=Medium)
### Last Modification Date: 22-12-98/10:49:23
### Analysing 68k code in file <NoCookie 1.0 with C 9811 Virus!> using heuristics... (-. to cancel)
<NoCookie 1.0 with C 9811 Virus!>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$0360. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$0426. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1IndResource('CODE',x)", at offset=$0DA4. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 contains the call: "AddResource('CODE',x)", which alters/adds resources, at offset=$1584. This is very suspicious. (Flag probability=High)
### Last Modification Date: 13-12-98/00:37:36
### Analysing 68k code in file <NoCookie 1.0.vir> using heuristics... (-. to cancel)
<NoCookie 1.0.vir>
### file is suspicious. Analysis follows. Please re-scan using a professional Anti-Virus program.
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$0360. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "GetResource('CODE',x)", at offset=$0426. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 accesses suspicious resources with the call: "Get1IndResource('CODE',x)", at offset=$0DA4. This is not necessarilly a virus, but suspicious nevertheless. (Flag probability=Low)
### Resource type 'CODE' of id=1 contains the call: "AddResource('CODE',x)", which alters/adds resources, at offset=$1584. This is very suspicious. (Flag probability=High)
### Last Modification Date: 15-01-99/00:12:56
<Viruses>
### Suspicious files were found!