W32.Maldal.D: a destructive memory-resident worm that propagates by email via Microsoft Outlook. It drops a copy of itself named WIN.EXE in the System directory and deletes antivirus programs and certain files.

W32.Shoho.A aka I-Worm.Welyah:a mass-mailing worm that uses *.wab and *.mbx files to send emails using it's own SMTP engine.

W32.Maldal.C aka W32.Zacker.C - W32.Reeezak.A:a mass-mailing worm that uses Microsoft Outlook and MSN Messenger. Destructive payload. Attachment: Christmas.exe.

JS.Coolsite aka Coolsite aka JS.Exception.Exploit: a Java Script worm that send emails to all users in the Microsoft Outlook Address Book.

W32.Gokar.A aka Gokar: a combination of e-mail, IRC and IIS web worm.

W32.Goner.A aka Gone.A: a destructive, memory-resident worm. It's a Visual Basic-compiled Windows executable that propagates via email using Microsoft Outlook and through ICQ.

W32Badtrans.B aka Badtrans.B: a MAPI worm that emails itself out as one of several different file names. This worm also drops a backdoor trojan that logs keystrokes.

W32.Aliz aka Aliz.A: a very simple SMTP mass mailer worm. The worm propagates by obtaining email addresses from the Windows Address Book and sending itself to those addresses.

W32.Nimda.E aka Nimda.E: a new version of W32.Nimda.A that contains bug-fixes and other modifications, which are designed to prevent detection of this variant by antivirus programs

W32.Anset.Worm aka Ants: worm written in Delphi. It arrives as an email with the attachment "ants3set.exe". Spreads using MS Outlook, it will send itself to email addresses found in the
Outlook Address Book. This worm spreads itself under the guise of a freeware Trojan Horse
scanner known as ANTS.

W32.Toal.A aka BinLaden: a mass-mailing email worm. The worm arrives as an attachment named Binladen_brasil.exe with a random subject line that makes a reference to the current situation in Afghanistan. The subject can be in a variety of different languages. The message body will be blank.

W32.Nimda.A aka Nimda: new mass-mailing worm that utilizes email to propagate
itself. Arrives as 'readme.exe' in an email. In addition, the worm sends out probes to IIS servers attempting to spread by using the Unicode Web Traversal exploit similar to W32.BlueCode.Worm. Compromised servers may display a webpage prompting a visitor
to download an Outlook file which contains the worm as an attachment.

W32/Magistr.B aka I.Worm.Magistr.B: obtains email addresses from *.WAB, *.DBX, <br>and *.MBX files found in the infected system’s disk and then sends emails with its infected files as attachments. It may also include non-viral files such as .DOC, .GIF, and .TXT files as attachments
to the emails it sends out. This destructive variant trashes this Hard Drive and deletes certain files.

W32.Urgent.Worm aka A.Post.A: A VB Application that arrives as a readme.exe attachment to an e-mail. The e-mail asks you to to review the attachment, but once viewed the worm will activate hook your systems activation routines and then spread
itself to all persons in your address book.

Code Red.C aka W32.Bady.C: Has been called a variant of the original CodeRed Worm because
it uses the same "buffer overflow" exploit to propagate to other web servers.

VBS.Potok.A aka VBS.Stream: is a simple Visual Basic script that exploits a little-known feature of Windows NT/2000 to spread. It sends itself to the first 50 recipients in the Microsoft Outlook Address Book.

W32.Parrot.A aka Parrot.A: This non-memory-resident Windows companion virus infects .EXE files in the Windows directory.

CodeRed aka W32.Bady: The CodeRed Worm affects Microsoft Index Server 2.0 and the
Windows 2000 Indexing service on computers running Microsoft Windows NT 4.0 and Windows
2000 that run IIS 4.0 and 5.0 Web servers.

W32.Sircam.Worm aka Sircam: This worm contains its own SMTP engine, and propagate in a manner similar to the W32.Magistr.Worm.

W32.Leave.Worm aka REGSV: This worm downloads components from Web sites and contains code to accept commands from IRC.

VBS/Loveletter.CN aka Jennifer Lopez:
This is a minor variant of the LoveLetter virus family. This virus also drops the file Cih_14.exe, which is a dropper for the CIH virus, and attempts to run it.

SULFNBK.EXE Warning: This hoax warns against a virus contained in a file called SULFNBK.EXE, that arrives hidden in an email message.

VBS/VBSWG2.Z aka Mawanella: an encrypted VBScript worm that sends itself to all recipients in your Microsoft Outlook address book. It arrives as an attachment named Mawanella.vbs.

VBS/Hard.A aka Hard-A: a Visual Basic Script (VBS) worm that uses MS Outlook
Express. It arrives with an attachment named "www.symantec.com.vbs" and a subject line of "FW: Symantec Anti-Virus Warning". The intent is to imply the email originated with the Symantec AntiVirus Research Center.

VBS/VBSWG.X aka VBSWG.X aka Homepage: an encrypted VBScript worm that uses a known exploit to send itself to all recipients in an infected user's Microsoft Outlook address book. It also has the payload that opens a Web site that contains pornographic contents.

W32.Matcher aka Matcher aka I-Worm.Matcher: An executable that arrives by email. When executed, the worm will email itself to everyone in the Microsoft Outlook Address book.

W32.Badtrans aka I-Worm.Badtrans aka Badtrans: A MAPI worm that replies to all unread mails in your email message folders, and drops a backdoor Trojan.

VBS/Staple.a aka VBS/Staple.Worm aka Staple.A :
A Visual Basic Script worm. Upon execution displays a message box and then sends itself out via email to the first 50 recipients listed in the address book of the infected user.

W32/Magistr.A aka I.Worm.Magistr.A :
A virus with email worm capability. Infects all files that are not DLL system files. Sends email to addresses from the Windows Address Book, Outlook Express Sent Items file, and Netscape Address Book.

W32/naked aka NakedWife : Deletes all DLL, INI, EXE, BMP, and COM files in the Windows and system directories.

VBS/Vierika aka VBS.Vierika@mm : A mass mailer (worm) written in Visual Basic Script2.

W32.MyBabyPic.Worm aka MyBabyPic:
A worm that mails itself to all address in the Microsoft Outlook address book.

W32.Gnuman.Worm aka Mandragore ala Gnutella:
A worm that spreads using the Gnutella network (Somewhat simular to Napster).

VBS.OnTheFly aka Anna Kournikova:
VBS.OnTheFly is an e-mail worm that spreads itself using MS Outlook.

VBS/Cartolina aka VBS/Loveletter.CD:
VBS/Cartolina is an e-mail worm that spreads itself using MS Outlook.

W97.Melissa:
Returned and a new danger.