home *** CD-ROM | disk | FTP | other *** search
/ PC User 2003 September / Australian PC User - September 2003 (CD1).iso / resource / tools / files / nav2003.exe / VirusDef / WHATSNEW.TXT < prev    next >
Encoding:
Text File  |  2002-12-18  |  24.3 KB  |  403 lines
  1. **********************************************************************
  2. **                                                                  **
  3. **  What's New in the NAV Virus Definitions Files      WHATSNEW.TXT **
  4. **                                                                  **
  5. **  Symantec Security Response                    December 18, 2002 **
  6. **                                                                  **
  7. **********************************************************************
  8.  
  9. This document contains the following topics:
  10.  
  11.  * Virus Alerts
  12.  * New Technologies
  13.  * Changes Incorporated Into This Update
  14.  * Additional Information
  15.  
  16.  
  17. **********************************************************************
  18. ** Virus Alerts                                                     **
  19. **********************************************************************
  20.  
  21. The ten most commonly reported viruses, worldwide:
  22.  
  23.     1  W32.Bugbear@mm
  24.     2  W32.Klez.H@mm
  25.     3  W32.Opaserv.Worm
  26.     4  Trojan Horse
  27.     5  W95.Hybris.worm
  28.     6  W32.Datom.Worm
  29.     7  W95.Spaces.1445
  30.     8  W32.Klez.E@mm
  31.     9  W32.Yaha.F@mm
  32.    10  W95.CIH
  33.  
  34.  
  35. **********************************************************************
  36. ** New Technologies                                                 **
  37. **********************************************************************
  38.  
  39. DATE         Technologies Added
  40. ----         ------------------
  41.  
  42. 08/02/01   * Engine Update 08/02/01
  43.            * All products that use the NAVEX 1.5 architecture 
  44.              (in other words, most major Symantec products released over 
  45.              the last 3 - 4 years) will receive the new functionality.
  46.            * This enhanced technology provides improved script scanning 
  47.              as well as more proactive detection of unknown script-based 
  48.              threats. 
  49.              
  50.  
  51. **********************************************************************
  52. ** Changes Incorporated Into This Virus Definitions Update          **
  53. **********************************************************************
  54.  
  55. DATE
  56. ----
  57.  
  58. New virus definitions (sorted by Virus Name):
  59.  
  60.         Virus Name                Infection Type          Date added
  61.         ----------                --------------          ---------        
  62.         AA.716                    File infector            12/18/02
  63.         Aardwolf.448              File infector            12/18/02
  64.         Alaper.b.ow               File infector            12/16/02
  65.         Backdoor.Backage          File infector            12/17/02
  66.         Backdoor.Hatckel          File infector            12/05/02
  67.         Backdoor.Hethat           File infector            12/16/02
  68.         Backdoor.Lanfiltrator     File infector            12/11/02
  69.         Backdoor.Lolok            File infector            12/05/02
  70.         Backdoor.Mapsy            File infector            12/06/02
  71.         Backdoor.Miranda          File infector            12/09/02
  72.         Backdoor.Remohak.16       File infector            12/17/02
  73.         Backdoor.Revrs.Client     File infector            12/13/02
  74.         Backdoor.Skun             File infector            12/05/02
  75.         Backdoor.StealthEye       File infector            12/05/02
  76.         Backdoor.Theef.C          File infector            12/09/02
  77.         Backdoor.VB.CH            File infector            12/11/02
  78.         Backdoor.Vmz              File infector            12/18/02
  79.         Carbuncle.623             File infector            12/06/02
  80.         DVT.294                   File infector            12/06/02
  81.         DVT.295                   File infector            12/06/02
  82.         Dutch_Tiny.245.int        File infector            12/17/02
  83.         Fanatik.1089              File infector            12/06/02
  84.         Fanatik.2085              File infector            12/06/02
  85.         Fanatik.2540              File infector            12/11/02
  86.         HLLC.IOCOM.5371           File infector            12/11/02
  87.         HLLC.Rider.6000.a         File infector            12/11/02
  88.         HLLC.Rider.6000.b         File infector            12/11/02
  89.         HLLO.Gala.7216            File infector            12/13/02
  90.         HLLO.Gotov.5488           File infector            12/11/02
  91.         HLLO.Yes.4864             File infector            12/13/02
  92.         HLLO.Zero.6368            File infector            12/13/02
  93.         Havji.492                 File infector            12/18/02
  94.         JS.Reven@mm               File infector            12/09/02
  95.         Kusys.1637                File infector            12/17/02
  96.         Lexotran.int              File infector            12/17/02
  97.         Lucky.a.int               File infector            12/17/02
  98.         Nomad.1212                File infector            12/16/02
  99.         Nomad.1293                File infector            12/16/02
  100.         Nomad.884                 File infector            12/16/02
  101.         Nomad.962                 File infector            12/16/02
  102.         Odessa.664                File infector            12/18/02
  103.         PHP.Invoc                 File infector            12/05/02
  104.         PWSteal.Fender            File infector            12/09/02
  105.         Silly.81.ow               File infector            12/17/02
  106.         SillyC.192.b              File infector            12/17/02
  107.         SillyC.193.C              File infector            12/17/02
  108.         SillyC.240.e              File infector            12/17/02
  109.         SillyC.241.b              File infector            12/17/02
  110.         Tiny.412                  File infector            12/10/02
  111.         Trinidad.1104             File infector            12/05/02
  112.         Trinidad.355              File infector            12/05/02
  113.         Trivial.Worf              File infector            12/10/02
  114.         Trojan.Downloader.Cile    File infector            12/13/02
  115.         Trojan.Nuke.Readme        File infector            12/05/02
  116.         Trojan.PSW.LionDumper     File infector            12/13/02
  117.         Trojan.Poldo              File infector            12/18/02
  118.         Trojan.TEF                File infector            12/05/02
  119.         VBS.Pica@m                File infector            12/10/02
  120.         VBS.Pipped.Irc            File infector            12/11/02
  121.         VBS.Scape@mm              File infector            12/11/02
  122.         VBS.Snow@mm               File infector            12/09/02
  123.         W32.Achoo.2987            File infector            12/05/02
  124.         W32.Appix.H.Worm          File infector            12/17/02
  125.         W32.Cicho                 File infector            12/11/02
  126.         W32.HLLC.Nasus            File infector            12/06/02
  127.         W32.HLLC.Warray           File infector            12/18/02
  128.         W32.HLLW.Disager          File infector            12/11/02
  129.         W32.HLLW.Lioten           File infector            12/17/02
  130.         W32.HLLW.Shower           File infector            12/05/02
  131.         W32.Heovin@mm             File infector            12/06/02
  132.         W32.Holar.C@mm            File infector            12/05/02
  133.         W32.Lamin                 File infector            12/09/02
  134.         W32.Notfam@mm             File infector            12/09/02
  135.         W32.Opaserv(win.ini)      File infector            12/09/02
  136.         W32.Titog.Worm            File infector            12/17/02
  137.         W32.Tulu                  File infector            12/16/02
  138.         W32.Wahwah@mm             File infector            12/05/02
  139.         W32.Xilon.Trojan          File infector            12/18/02
  140.         W32.Yaha.H@mm             File infector            12/16/02
  141.         W32.Yaha.J@mm             File infector            12/16/02
  142.         W97M.Aida.B               File infector            12/05/02
  143.         W97M.HungrySys            File infector            12/16/02
  144.         W97M.Killhack.B           File infector            12/16/02
  145.         W97M.Maverick.int         File infector            12/17/02
  146.         W97M.Minimal.M.int        File infector            12/05/02
  147.         W97M.Oldguy.C.int         File infector            12/05/02
  148.         W97M.PGPSteal.Trojan      File infector            12/05/02
  149.         W97M.QWERTY               File infector            12/16/02
  150.         W97M.Quiet.int            File infector            12/17/02
  151.         W97M.Surlaw               File infector            12/05/02
  152.         W97M.Tulu                 File infector            12/16/02
  153.         W97M.Ump.int              File infector            12/05/02
  154.         X97M.Delta.int            File infector            12/05/02
  155.         X97M.Feng.A.Trojan        File infector            12/09/02
  156.         X97M.Laroux.WM            File infector            12/18/02
  157.         X97M.Taign.int            File infector            12/05/02
  158.         Zorm.408(x)               File infector            12/05/02
  159.         Zorm.459                  File infector            12/06/02
  160.         Zorm.509                  File infector            12/06/02
  161.         Zorm.535                  File infector            12/06/02
  162.  
  163. New virus definitions (sorted by Date added):
  164.         
  165.         Virus Name                Infection Type          Date added
  166.         ----------                --------------          ----------
  167.         AA.716                    File infector            12/18/02
  168.         Aardwolf.448              File infector            12/18/02
  169.         Backdoor.Vmz              File infector            12/18/02
  170.         Havji.492                 File infector            12/18/02
  171.         Odessa.664                File infector            12/18/02
  172.         Trojan.Poldo              File infector            12/18/02
  173.         W32.HLLC.Warray           File infector            12/18/02
  174.         W32.Xilon.Trojan          File infector            12/18/02
  175.         X97M.Laroux.WM            File infector            12/18/02
  176.         Backdoor.Backage          File infector            12/17/02
  177.         Backdoor.Remohak.16       File infector            12/17/02
  178.         Dutch_Tiny.245.int        File infector            12/17/02
  179.         Kusys.1637                File infector            12/17/02
  180.         Lexotran.int              File infector            12/17/02
  181.         Lucky.a.int               File infector            12/17/02
  182.         Silly.81.ow               File infector            12/17/02
  183.         SillyC.192.b              File infector            12/17/02
  184.         SillyC.193.C              File infector            12/17/02
  185.         SillyC.240.e              File infector            12/17/02
  186.         SillyC.241.b              File infector            12/17/02
  187.         W32.Appix.H.Worm          File infector            12/17/02
  188.         W32.HLLW.Lioten           File infector            12/17/02
  189.         W32.Titog.Worm            File infector            12/17/02
  190.         W97M.Maverick.int         File infector            12/17/02
  191.         W97M.Quiet.int            File infector            12/17/02
  192.         Alaper.b.ow               File infector            12/16/02
  193.         Backdoor.Hethat           File infector            12/16/02
  194.         Nomad.1212                File infector            12/16/02
  195.         Nomad.1293                File infector            12/16/02
  196.         Nomad.884                 File infector            12/16/02
  197.         Nomad.962                 File infector            12/16/02
  198.         W32.Tulu                  File infector            12/16/02
  199.         W32.Yaha.H@mm             File infector            12/16/02
  200.         W32.Yaha.J@mm             File infector            12/16/02
  201.         W97M.HungrySys            File infector            12/16/02
  202.         W97M.Killhack.B           File infector            12/16/02
  203.         W97M.QWERTY               File infector            12/16/02
  204.         W97M.Tulu                 File infector            12/16/02
  205.         Backdoor.Revrs.Client     File infector            12/13/02
  206.         HLLO.Gala.7216            File infector            12/13/02
  207.         HLLO.Yes.4864             File infector            12/13/02
  208.         HLLO.Zero.6368            File infector            12/13/02
  209.         Trojan.Downloader.Cile    File infector            12/13/02
  210.         Trojan.PSW.LionDumper     File infector            12/13/02
  211.         Backdoor.Lanfiltrator     File infector            12/11/02
  212.         Backdoor.VB.CH            File infector            12/11/02
  213.         Fanatik.2540              File infector            12/11/02
  214.         HLLC.IOCOM.5371           File infector            12/11/02
  215.         HLLC.Rider.6000.a         File infector            12/11/02
  216.         HLLC.Rider.6000.b         File infector            12/11/02
  217.         HLLO.Gotov.5488           File infector            12/11/02
  218.         VBS.Pipped.Irc            File infector            12/11/02
  219.         VBS.Scape@mm              File infector            12/11/02
  220.         W32.Cicho                 File infector            12/11/02
  221.         W32.HLLW.Disager          File infector            12/11/02
  222.         Tiny.412                  File infector            12/10/02
  223.         Trivial.Worf              File infector            12/10/02
  224.         VBS.Pica@m                File infector            12/10/02
  225.         Backdoor.Miranda          File infector            12/09/02
  226.         Backdoor.Theef.C          File infector            12/09/02
  227.         JS.Reven@mm               File infector            12/09/02
  228.         PWSteal.Fender            File infector            12/09/02
  229.         VBS.Snow@mm               File infector            12/09/02
  230.         W32.Lamin                 File infector            12/09/02
  231.         W32.Notfam@mm             File infector            12/09/02
  232.         W32.Opaserv(win.ini)      File infector            12/09/02
  233.         X97M.Feng.A.Trojan        File infector            12/09/02
  234.         Backdoor.Mapsy            File infector            12/06/02
  235.         Carbuncle.623             File infector            12/06/02
  236.         DVT.294                   File infector            12/06/02
  237.         DVT.295                   File infector            12/06/02
  238.         Fanatik.1089              File infector            12/06/02
  239.         Fanatik.2085              File infector            12/06/02
  240.         W32.HLLC.Nasus            File infector            12/06/02
  241.         W32.Heovin@mm             File infector            12/06/02
  242.         Zorm.459                  File infector            12/06/02
  243.         Zorm.509                  File infector            12/06/02
  244.         Zorm.535                  File infector            12/06/02
  245.         Backdoor.Hatckel          File infector            12/05/02
  246.         Backdoor.Lolok            File infector            12/05/02
  247.         Backdoor.Skun             File infector            12/05/02
  248.         Backdoor.StealthEye       File infector            12/05/02
  249.         PHP.Invoc                 File infector            12/05/02
  250.         Trinidad.1104             File infector            12/05/02
  251.         Trinidad.355              File infector            12/05/02
  252.         Trojan.Nuke.Readme        File infector            12/05/02
  253.         Trojan.TEF                File infector            12/05/02
  254.         W32.Achoo.2987            File infector            12/05/02
  255.         W32.HLLW.Shower           File infector            12/05/02
  256.         W32.Holar.C@mm            File infector            12/05/02
  257.         W32.Wahwah@mm             File infector            12/05/02
  258.         W97M.Aida.B               File infector            12/05/02
  259.         W97M.Minimal.M.int        File infector            12/05/02
  260.         W97M.Oldguy.C.int         File infector            12/05/02
  261.         W97M.PGPSteal.Trojan      File infector            12/05/02
  262.         W97M.Surlaw               File infector            12/05/02
  263.         W97M.Ump.int              File infector            12/05/02
  264.         X97M.Delta.int            File infector            12/05/02
  265.         X97M.Taign.int            File infector            12/05/02
  266.         Zorm.408(x)               File infector            12/05/02
  267.         
  268. Name Changes (sorted by Old Virus Name):
  269.  
  270.         Old Virus Name            New Virus Name          Date changed
  271.         --------------            --------------          ------------
  272.         BAT.Junkboat@mm        to W32.Enerlam.2774         12/05/02
  273.         Backdoor.Dumba         to Trojan.Dumba             09/23/02
  274.         Backdoor.Floodnet      to Backdoor.Endool          11/13/02
  275.         Bin.Auto.AZL           to PS-MPC.535.B             09/13/02
  276.         Cruiser.1120           to Cruiser.1120.Int         11/26/02
  277.         Dik.1393               to Dik.1393.Int             11/26/02
  278.         HLLC.HappyFlowers      to W32.HLLC.Happylow        09/11/02
  279.         IRC.Pelic.Worm         to VBS.Pelic.Worm           10/02/02
  280.         Lonig.INT              to Lonig.Kit                11/26/02
  281.         Syst.1665              to AOD.385.B                10/28/02
  282.         TAVC.Jazva             to Jazva.686                11/26/02
  283.         Trojan.Imiserv         to Backdoor.Imiserv         09/19/02
  284.         Trojan.PWS.QQPass.gKb6 to Trojan.PWS.QQPass.C      10/18/02
  285.         VBS.Likun@mm           to VBS.Likun                11/05/02
  286.         VBS.Pica@m             to VBS.Pica@mm              12/11/02
  287.         VBS.Thambl             to VBS.Lavra.B.Worm         09/12/02
  288.         W32.Alcarys.H          to W32.HLLP.Flate           09/11/02
  289.         W32.Alcatap.Worm       to W32.Hobble.F@mm          11/08/02
  290.         W32.Alpoor.6144        to W32.HLLP.Alpoor          09/20/02
  291.         W32.Appix.H.Worm       to Backdoor.OptixPro.10.b   12/18/02
  292.         W32.Efno.Worm          to W32.HLLW.Efno            09/16/02
  293.         W32.Fanta.B.Worm       to Fanta.Trojan.Dr          11/06/02
  294.         W32.Fanta.worm         to Fanta.Trojan             11/06/02
  295.         W32.Gezak              to W32.Prodvin              11/06/02
  296.         W32.HLLO.Mario         to W32.HLLO.Marion          11/08/02
  297.         W32.HLLO.Samand        to W32.HLLC.Samand          10/10/02
  298.         W32.HLLP.Alpoor        to W32.HLLP.Flate.C         09/25/02
  299.         W32.HLLW.Smilex        to W32.Stupid.D             11/08/02
  300.         W32.Holar.C@mm         to W32.Galil@mm             12/05/02
  301.         W32.Jonbarr.B@mm       to W32.Jonbarr.C@mm         11/12/02
  302.         W32.Manex.Worm         to W32.HLLW.Manex           11/12/02
  303.         W32.Protex.Worm        to W32.Duksten.B@mm         10/24/02
  304.         W32.Seesix.Worm        to W32.HLLP.VB.14336.C      11/04/02
  305.         W32.Topsec.Worm        to W32.Topsec               10/14/02
  306.         W32.Tossed@mm          to HLLW.Tossed@mm           11/06/02
  307.         W32.Walcomp            to W32.HLLC.Happylow        09/13/02
  308.         W32.Wun.Irc            to W32.Wuno.Irc             11/08/02
  309.         W95.CIH.1094           to W95.CIH.1106             11/20/02
  310.         W95.Sleepyhead         to W95.Sleepyhead.5632      10/22/02
  311.         W97M.QWERTY            to W97M.WERTY               12/17/02
  312.         W97M.Swatch            to W97M.Spwatch             12/04/02
  313.         W97M.Thus.bi           to W97M.Thus.BI             11/19/02
  314.  
  315. Name Changes (sorted by Date changed):
  316.  
  317.         Old Virus Name            New Virus Name          Date changed
  318.         --------------            --------------          ------------
  319.         W32.Appix.H.Worm       to Backdoor.OptixPro.10.b   12/18/02
  320.         W97M.QWERTY            to W97M.WERTY               12/17/02
  321.         VBS.Pica@m             to VBS.Pica@mm              12/11/02
  322.         BAT.Junkboat@mm        to W32.Enerlam.2774         12/05/02
  323.         W32.Holar.C@mm         to W32.Galil@mm             12/05/02
  324.         W97M.Swatch            to W97M.Spwatch             12/04/02
  325.         Cruiser.1120           to Cruiser.1120.Int         11/26/02
  326.         Dik.1393               to Dik.1393.Int             11/26/02
  327.         Lonig.INT              to Lonig.Kit                11/26/02
  328.         TAVC.Jazva             to Jazva.686                11/26/02
  329.         W95.CIH.1094           to W95.CIH.1106             11/20/02
  330.         W97M.Thus.bi           to W97M.Thus.BI             11/19/02
  331.         Backdoor.Floodnet      to Backdoor.Endool          11/13/02
  332.         W32.Jonbarr.B@mm       to W32.Jonbarr.C@mm         11/12/02
  333.         W32.Manex.Worm         to W32.HLLW.Manex           11/12/02
  334.         W32.Alcatap.Worm       to W32.Hobble.F@mm          11/08/02
  335.         W32.HLLO.Mario         to W32.HLLO.Marion          11/08/02
  336.         W32.HLLW.Smilex        to W32.Stupid.D             11/08/02
  337.         W32.Wun.Irc            to W32.Wuno.Irc             11/08/02
  338.         W32.Fanta.B.Worm       to Fanta.Trojan.Dr          11/06/02
  339.         W32.Fanta.worm         to Fanta.Trojan             11/06/02
  340.         W32.Gezak              to W32.Prodvin              11/06/02
  341.         W32.Tossed@mm          to HLLW.Tossed@mm           11/06/02
  342.         VBS.Likun@mm           to VBS.Likun                11/05/02
  343.         W32.Seesix.Worm        to W32.HLLP.VB.14336.C      11/04/02
  344.         Syst.1665              to AOD.385.B                10/28/02
  345.         W32.Protex.Worm        to W32.Duksten.B@mm         10/24/02
  346.         W95.Sleepyhead         to W95.Sleepyhead.5632      10/22/02
  347.         Trojan.PWS.QQPass.gKb6 to Trojan.PWS.QQPass.C      10/18/02
  348.         W32.Topsec.Worm        to W32.Topsec               10/14/02
  349.         W32.HLLO.Samand        to W32.HLLC.Samand          10/10/02
  350.         IRC.Pelic.Worm         to VBS.Pelic.Worm           10/02/02
  351.         W32.HLLP.Alpoor        to W32.HLLP.Flate.C         09/25/02
  352.         Backdoor.Dumba         to Trojan.Dumba             09/23/02
  353.         W32.Alpoor.6144        to W32.HLLP.Alpoor          09/20/02
  354.         Trojan.Imiserv         to Backdoor.Imiserv         09/19/02
  355.         W32.Efno.Worm          to W32.HLLW.Efno            09/16/02
  356.         Bin.Auto.AZL           to PS-MPC.535.B             09/13/02
  357.         W32.Walcomp            to W32.HLLC.Happylow        09/13/02
  358.         VBS.Thambl             to VBS.Lavra.B.Worm         09/12/02
  359.         HLLC.HappyFlowers      to W32.HLLC.Happylow        09/11/02
  360.         W32.Alcarys.H          to W32.HLLP.Flate           09/11/02
  361.  
  362. Deletions (sorted by Virus Name):
  363.  
  364.         Virus Name                Infection Type          Date removed
  365.         ----------                --------------          ------------    
  366.         BAT911.Worm               File infector            11/05/02
  367.         Bin.Auto.CAQ              File infector            12/04/02
  368.         HLLO.Gotov.5488           File infector            12/11/02
  369.         JS.WindowBomb             File infector            09/26/02
  370.         VBS.Breberka@mm           File infector            10/29/02
  371.         VBS.Draft@mm              File infector            10/29/02
  372.         VBS.Futonik@mm            File infector            10/29/02
  373.         W32.Compo                 File infector            10/21/02
  374.         W32.HLLC.Happylow         File infector            09/13/02
  375.         W32.Hotlix.Worm           File infector            11/12/02
  376.         W32.Wahwah@mm             File infector            12/09/02
  377.         W97M.Pane                 File infector            10/11/02
  378.  
  379. Deletions (sorted by Date removed):
  380.  
  381.         Virus Name                Infection Type          Date removed
  382.         ----------                --------------          ------------
  383.         HLLO.Gotov.5488           File infector            12/11/02
  384.         W32.Wahwah@mm             File infector            12/09/02
  385.         Bin.Auto.CAQ              File infector            12/04/02
  386.         W32.Hotlix.Worm           File infector            11/12/02
  387.         BAT911.Worm               File infector            11/05/02
  388.         VBS.Breberka@mm           File infector            10/29/02
  389.         VBS.Draft@mm              File infector            10/29/02
  390.         VBS.Futonik@mm            File infector            10/29/02
  391.         W32.Compo                 File infector            10/21/02
  392.         W97M.Pane                 File infector            10/11/02
  393.         JS.WindowBomb             File infector            09/26/02
  394.         W32.HLLC.Happylow         File infector            09/13/02
  395.  
  396.  
  397. **********************************************************************
  398. **    Additional Information                                        **
  399. **********************************************************************
  400. Additional information regarding this virus definitions update can be
  401. found in UPDATE.TXT and TECHNOTE.TXT.
  402.  
  403.