Aliases: Win95.Lud.Yel.1886,  Virus.Win9x.Lud.Yel.1886, W95/Yel.b, W95.Lud.Yel, W95/Yel-A
Variants: Win95/Jezebel.1886.B, PE_YEL.1886, W32/Jezebel.1942, Win95:Whost, Win32/Yel.1886.B

Classification: Malware
Category: Computer Virus

Status: Active & Spreading
Spreading: Slow
Geographical info: Asia, North and South America, and some parts of Europe and Australia
Removal: Easy
Platform: W32
Discovered: 19 Nov 1998
Damage: Low

Characteristics: The virus named as the W95.Lud.Yel is a Window 95 infector of direct files that will attempt to infect Win32 .exe files.

More details about W95.Lud.Yel

The virus does not work in Windows Me. Windows 98, Windows NT, Windows 2000, or Windows XP. This virus has solid coded API function addresses. As an outcome, it will infect only a particular version of Windows 95, and it will not multiply in nearly all versions of a specific operating system. To remove this virus the user must run Live Update to check that the user have the most current virus definitions. The first step on how to remove this virus is to initiate Norton Anti Virus, and check that the Norton Anti Virus is configured to search every file. For directions on how to perform this, examine the document How to configure NAV to scan all files. Next is to run a complete scan on the system.

The detected files W95.Lud.Yel should be erased and replaced with uncontaminated backup copies. The infection length of this virus extends to 1,886 bytes. The wild level is classified as low. The number of infections ranges from 0 to 49. The number of sites ranges from 0 to 2. The threat is classified as easy to contain. The most recent updates of this virus was last April 15, 2002. This virus has several names and the companies that are responsible to the detection and naming of W95.Lud.Yel includes Kaspersky Lab, McAfee, Symantec, Sophos, RAV, Trend Micro, FRISK, ALWIL, Grisoft, SOFTWIN, Panda and Eset.