What are the most serious computer viruses in history?
1.CIH (1998) This computer virus belongs to W32 family and infects the feasibility file with **E suffix in Window* 95/98. Extremely destructive, you can rewrite the BIOS to make it useless (as long as the microprocessor of the computer is Pentium Intel 430TX). The user's computer cannot be started. The only solution is to replace the original chip of the system. The computer virus broke out on April 26th, and it will also destroy all the information in the computer hard disk. This computer virus will not affect MS/DOS, Windows 3.x and Windows NT operating systems. CIH can be disseminated by all possible means: floppy disk, CD-ROM, Internet, FTP download, e-mail, etc. It is considered as one of the most dangerous and destructive computer viruses in history. 1998 broke out in Taiwan Province province, China in June, resulting in a global loss of $20-80 million. 2.Melissa (1999) is a virus specifically targeting Microsoft email server and email sending and receiving software. It is hidden in a file in Word97 format and spread as an attachment by e-mail. Good at attacking computers with Word97 or Word2000. You can attack the registrar of Word97, modify its macro virus prevention security settings, and make the macro virus early warning function of infected files invalid. Within a few hours after the Melissa virus was discovered, it infected millions of computers and tens of thousands of servers around the world through the Internet, and the Internet was paralyzed in many places. 1999 broke out on March 26th, infecting 15%-20% of commercial PCs, which caused a loss of $300-600 million worldwide. 3. I Love You (2000) broke out in Hongkong, China on May 3rd, 2000. It is a virus written in VBScript and can be spread by email. The infected computer platform is mainly Win95/98/2000. It has brought losses of $654.38+0 billion-$654.38+0.5 billion to the world. 4. Code Red (200 1): The virus can spread quickly, and it will slow down or even block access in a wide range. This virus usually attacks the server of the computer network first, and the attacked server will send a large amount of data to the government website according to the instructions of the virus, which eventually leads to the paralysis of the website. The damage it causes is mainly tampering with web pages, and there are signs that this worm has the ability to modify files. 2001July 13 broke out, bringing a loss of $2.6 billion to the world. 5.SQL Slammer (2003) This virus uses the buffer overflow vulnerability of the parsing port 1434 of SQL SERVER 2000 to attack its services. On June 25th, 2003, 65438+ broke out, and a total of 500,000 servers around the world were attacked, but the economic loss was small. 6. When Blaster (2003) virus is running, it will constantly use IP scanning technology to find computers with Win2K or XP on the network, and then use DCOM RPC buffer vulnerabilities to attack the system. Once the attack is successful, the virus will spread to the other computer for infection, making the system run abnormally, constantly restarting, and even causing the system to crash. In addition, the virus will also conduct a denial-of-service attack on an upgraded website of Microsoft, resulting in the website being blocked and users unable to upgrade their systems through the website. In the summer of 2003, hundreds of thousands of computers were infected, resulting in a global loss of $2 billion to $654.38 billion. 7. Big commitment. F(Sobig。 F, 2003) Sobig.f is a virus that spreads through the Internet. When its program is executed, it will send itself as an e-mail to all the e-mail addresses it finds from the infected computer. After being executed, Sobig.f virus sends itself as an attachment to all email addresses it finds from infected computers, and it uses its own SMTP engine to set the information it sends. The directory of the worm in the infected system is c: \ winnt \ WINPPR32.EXE. In August, 2003, 19 broke out, which was a variant of Sobig before, and brought a loss of $5 billion-10 billion to the world. 8.Bagle (2004) virus spreads by email. After running, it generated its own copy in the system directory and modified the registry key value. Viruses also have the ability of a back door. In 2004, 65438+1October 18 broke out, which brought tens of millions of dollars of losses to the world. 9.MyDoom (2004) MyDoom is a virus spread through email attachments and P2P network Kazaa. When the user opens and runs the virus program in the attachment, the virus will target the email address in the user's mailbox, forge the source address of the email, send a large number of emails with virus attachments, and leave a back door on the user's host to upload and execute arbitrary code (TCP 3 127 to 365438). On October 26th, 2004, 65438 broke out. During the peak period, the network loading time slowed down by more than 50%. 10.Sasser (2004) This virus is a worm spread by using the Lsass buffer overflow vulnerability (MS04-01vulnerability information) of Microsoft operating system. Because the worm will launch a large number of scans during its spread, it will have a great impact on the use of individual users and network operation. It broke out on April 30, 2004, bringing tens of millions of dollars in losses to the world.