记号........
您的位置:VeryCD > 教育 > 计算机
liangduanle
momomo5175
stephen_jazz007
showming34
shenyongqin
riverskyworld
/thumb.jpg)
/thumb.jpg "[2005/01/23 17:08:12]资源更新 共1个文件 8MB")
/thumb.jpg "Image[2005/06/07 19:21:46]资源更新 共1个文件 662.65MB")
/thumb.jpg "PDF[2011/01/05 02:05:58]资源更新 共1个文件 180.12MB")
/thumb.jpg "[2008/05/01 15:48:00]资源更新 共1个文件 157.85MB")
/thumb.jpg "[2007/04/17 22:35:38]资源更新 共1个文件 432.33MB")
/thumb.jpg "RMVB[2006/09/04 20:44:02]资源更新 共1个文件 389.48MB")
/thumb.jpg "PDF[2010/08/22 23:52:39]资源更新 共1个文件 21.23MB")
/thumb.jpg "PDF[2010/08/26 20:32:38]资源更新 共1个文件 4.52MB")
/thumb.jpg "PDF[2010/01/01 17:26:40]资源更新 共1个文件 10.84MB")
/thumb.jpg "Image[2005/01/02 16:58:40]资源更新 共2个文件 833.76MB")
关于我们
| 诚聘英才
| 著作权声明
| 合作信息
| 广告事务
| 天地英雄
| 盛世三国
| 神仙道
| 反馈意见
网络文化经营许可证 文网文[2010]150号 | 增值电信业务经营许可证 沪B2-20100067 | 广播电视节目制作经营许可证 (沪)字第416号
沪ICP备05001009号 | 信息网络传播视听节目许可证 0911625号
©2003 - 2012
Some Rights Reserved. 上海隐志网络科技有限公司
网络文化经营许可证 文网文[2010]150号 | 增值电信业务经营许可证 沪B2-20100067 | 广播电视节目制作经营许可证 (沪)字第416号
沪ICP备05001009号 | 信息网络传播视听节目许可证 0911625号
©2003 - 2012
Some Rights Reserved. 上海隐志网络科技有限公司
foxking
2007/12/21 01:38:17 1楼
举报
warning。。。f-secure client secruity 7.01 build 104提示有如下病毒
"Virus.MSWord.Thus.ew”
F-Secure Virus Descriptions : Thus
NAME: Thus
ALIAS: Thursday
Thus is a Word 97 macro virus that has a destructive payload.
Many Thus variants activate their payload at December 13th. Then the virus deletes all files from the root of "C:" drive and from all its subdirectories, but it does not delete directories themselves. Only files with system, read-only or hidden attribute set are left. After deletion the system cannot be restarted any more. Files may be still recoverable with a suitable recovery software. However, if the system has been used since the activation, then it is likely that files have been already overwritten. In that case files should be restored from backups.
VARIANT: Thus.A
When an infected document is opened, W97M/Thus.A will infect the global template as well as every currently open document in Word. After that every document that is created, opened or closed will be infected.
The virus detects already-infected documents by looking for this marker:
Thus_001
This is why the virus was named "Thus". The virus is also known by the alias "Thursday".
The virus activates its payload at December 13th, when it deletes most of the files from the root of "C:" drive and from all its subdirectories. Only files with system, read-only or hidden attribute set are left. After deletion the system cannot be restarted any more.
The virus is not visible in any way. It has been reported in the wild globally during September 1999.
VARIANT: Thus.B
This variant is functionally identical with W97M/Thus.A. The only difference between these two are that this variant has a few apostrophe style commented empty lines at the end of its code.
VARIANT: Thus.J
W97M/Thus.J is a modified variant of W97M/Thus.A - the payload is different. This variant activates its payload at November 3rd, when the virus attempts to create a plain text file, "C:\000_new\Thus_100.txt".