|
A macro is an instruction that carries out program commands automatically. Many common applications (e.g. word processing, spreadsheet, and slide presentation applications) make use of macros. Macro viruses are macros that self-replicate. If a user accesses a document containing a viral macro and unwittingly executes this macro virus, it can then copy itself into that application's startup files. The computer is now infected--a copy of the macro virus resides on the machine.
The latest Macro Viruses,you could get the information from the description,AV company,Screen shot,Manual Removal and Removal tool
A macro virus is a piece of self-replicating code written in an application's macro language.
The DMV (Demonstration Macro Virus) virus was originally described in the paper "Document Macro Viruses" by Joel McNamara who conveniently infected the document containing the paper with the virus so the reader could experience it first hand.
The Excel version of the DMV macro virus works the same as the Word version but uses the Visual Basic for Applications language built into Excel.
The Concept macro (alias Prank) is similar to the DMV macro virus in that it is a demonstration that a macro virus can be created.
A document infected with the Nuclear macro virus contains nine macros:
AutoExec AutoOpen DropSuriv
FileExit FilePrint FilePrintDefault
FileSaveAs InsertPayload Payload
A document infected with the Colors virus contains the following eight macros:
AutoClose AutoExec AutoOpen
FileExit FileNew FileSave
FileSaveAs ToolsMacro
The FormatC macro virus consists of a single macro named AutoOpen. Opening an infected document causes this macro to run and the macro copies itself to the global macro file. If the viruses payload is activated, it attempts to format the C: drive.
A new Word macro virus just appeared in the wild named Wordmacro/Hot and it is destructive. The Wordmacro/Hot virus attaches itself like the others, adding macros to documents and to the "normal.dot" global macro file. New documents are infected when they are saved. After about 14 days, the virus deletes the contents of any document as you open it and does a save which effectively wipes out the document. It is unlikely that you will be able to recover the contents of a file deleted in this way unless you have Make Backup turned on. Don't start opening the backup copies before cleaning the virus, because it will clear the contents of every document you open while it is active.
|
