赛门铁克安全响应术语表[5]

A virus that has the ability to change its byte pattern when it replicates thereby avoiding detection by simple string scanning techniques.
Ports
端口
这指出恶意程序有可能使用的TCP/IP端口。
This field indicates the TCP/IP ports that the threat might attempt to use.
Releases confidential information
释放机密信息
这个有效载荷会试图获得访问储存在电脑上的重要数据的权限，例如就像信用卡帐号。
This payload might attempt to gain access to important data stored on the computer such as credit card numbers.
Removal
移动
这说明了需要从一台电脑中移走恶意程序的技术级别。移动有时包含删除文件和修改注册表入口。有三个级别：困难（需要一个有经验的技术人员），中等（需要一些专门技术），和简单（需要一点或者不需要技术）。
This measures the skill level needed to remove the threat from a given computer. Removal sometimes involves deleting files and modifying registry entries. The three levels are difficult (requires an experienced technician), moderate (requires some expertise), and easy (requires little or no expertise).
Retrovirus
反转录病毒
一种可以活跃地攻击一个反病毒程序或者其他程序而达到防止被软件所发现的病毒。
A computer virus that actively attacks an anti-virus program or programs in an effort to prevent detection.
Sequence number
次序号
次序号只被用于Norton AntiVirus集团的产品，并且表现最新病毒定义或者必需的病毒定义的日期的预备方法。序号总是以积累的形式添加到病毒特征代码设置上。更高次序号的病毒特征代码设往往要替代低的。
Sequence numbers are used only by the Norton AntiVirus Corporate products, and are an alternate method of representing the date of the latest definitions or required definitions. Sequence numbers are assigned to signature sets sequentially, and they are always cumulative. A signature set with a higher sequence number supersedes a signature set with a lower sequence number.
Shared drives
共享驱动器
这指出是否该恶意程序会尝试通过映射驱动器或其他的可能能鉴别用户的服务器卷标来复制它自己。
This field indicates whether or not the threat will attempt to replicate itself through mapped drives or other server volumes to which the user might be authenticated.
Size of attachment
附件大小
这指附加在被感染邮件的文件大小。
This field indicates the size of the file that is attached to the infected email.
Subject of email
E-mail标题
一些蠕虫的扩散是通过发送电子邮件发传送其他用户的。这指出被蠕虫发送的电子邮件标题。
Some worms spread by sending themselves to other people through email. This field indicates the subject of the email that is sent by the worm.
Target of infection
感染对象
这指出可能会被病毒感染的文件类型。
This field indicates the types of files that might be infected by the virus.
Technical description
技术描述
这部分描述明确的感染的详细资料，像注册表入口修改和被病毒修改的文件
This section describes the specific details of the infection such as registry entry modifications and files that are manipulated by the virus.
Threat assessment
预计损失
这是一个严格的病毒、蠕虫或木马的等级，它包括这恶意程序导致的损失，扩散到其他电脑上时它会有多快（分布状态），和已知的感染有多广泛（野外）。
This is a severity rating of the virus, worm or Trojan horse. It includes the damage that this threat causes, how quickly it can spread to other computers (distribution), and how widespread the infections are known to be (wild).
Threat containment
恶意程序的控制
这测量了当前的反病毒技术能多好的阻止这恶意程序的传播。作为一个常规的标准，更久的病毒技术通常被很好地被包含；新的恶意程序类型或者非常复杂的病毒能被更难来包含，并且相对的更多的恶意程序出现在社会上。该测量有高（该恶意程序被很好的包含），中（该恶意程序部分被包含），和低（该恶意程序没有被包含）。