Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4229
DAT Release Date 10/16/2002
Threats Detected 61878
New Detections 158
Enhanced Detections 320

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
Unix/Backdoor-ADM Low-Profiled Low-Profiled

New Detections:

Joke (1)
  Display (1)
    Othello joke
Program (6)
  Dialer (4)
    PornDial-93
    PornDial-92
    PornDial-91
    PornDial-90
  Keylogger (1)
    Keylog-2Spy
  Tool (1)
    Tool-SweetTalker
Trojan (30)
   (3)
    MyLove
    Filebomb.pkt
    Filebomb
  - (2)
    IRC/Flood.bc
    Unix/Backdoor-ADM
  Configurator Dropper (1)
    QZap227.dr.cfg
  Disk erasing (3)
    QZap234
    QZap235
    QZap233
  Dropper (2)
    IRC/Flood.bc.dr
    IRC/Flood.bd.dr
  File deleting (5)
    QDel295
    QDel294
    QDel293
    QDel292
    QDel291
  Flooder (1)
    FDoS-Deface
  Internet Relay Chat (3)
    IRC-Grob
    IRC-Gekt
    IRC/Flood.bd
  mIRC client (2)
    IRC/Flood.bd.mirc
    IRC/Flood.bc.mirc
  Password (1)
    PWS-Logmod
  Remote Access (1)
    BackDoor-ALJ
  Script (1)
    JS/FormatC
  Win32 (5)
    Heised
    Diskfill-E
    Blingping
    AVKill-F.cln
    Ajim
Virus (121)
   (27)
    YD.1712a
    YD.837
    VICE.4000
    VCL.Mut.2563a
    BootDr222
    Andryushka
    QDrag.1084
    Novsev.1006
    Nopzes.2037
    Murphy.Goblin dr
    Awdeidd.477
    TSQL/JoGama.a
    YD.1712b
    YD.1210
    VCL.Mut.2563b
    Pixel.i
    Zielona.2576
    Maverick.3584
    TSQL/JoGama.b
    BootDr221
    Apocalypse.1414
    Springfield
    Proto-T.Lockjaw
    Novsev.1007
    Mururoa.2529
    Hallo.743
    Evils
  Companion (1)
    HLL.cmp.8752
  Damaged (9)
    Apocalypse.1414.dam
    Vienna.Beast.dam
    Xany.160.dam
    Kukac.469.dam
    Friday13.dam
    Fichv.897.dam
    Zielona.2576.dam
    Mutagen.1465.dam
    Awdeidd.477.dam
  Dropper (24)
    Vienna.645d.dr
    MPC.410.dr
    Anticad.dr
    Ambulance.dr
    Vienna.638b.dr
    Trident.T.dr
    MPC.McWhale.dr
    MPC.771.dr
    MPC.753.dr
    MPC.570.dr
    Red Devil.830a.dr
    Patoruzu.931b.dr
    Murphy.Locker.dr
    Murphy.BadTaste.dr
    Boke.dr
    MPC.dr
    Flu.dr
    Xany.dr
    Wordswap.dr
    Raubkopie.dr
    Novsev.dr
    Mirrorx.dr
    Literatura.dr
    Friday13.dr
  Dropper multipartite (1)
    Lithium.mp.dr
  Email (13)
    W32/Hunch.j@MM
    W32/Nimda.p@MM
    W32/Nimda.o@MM
    W32/Hobbit.d@MM
    W32/TopSec@MM
    W32/Netav.c@MM
    W32/Netav.a@MM
    W32/Recerv@MM
    W32/Netav.d@MM
    W32/Hunch.i@MM
    W32/Zhangpo.a@MM
    W32/Netav.b@MM
    W32/Alcarys.e@MM
  Email Generic (1)
    W32/Onamu.gen@MM
  Floppy Worm (1)
    W32/Gaga.worm
  Intended (3)
    W32/Seppuku.intd
    VBS/Reality.intd
    X97M/Julie.intd
  Internet Worm (1)
    W32/Tufast.worm
  Macro (7)
    XM/Teign
    W97M/Wazzu.gt
    W97M/Wazzu.gp
    W97M/Wazzu.hh
    W97M/Minimal.bm
    W97M/Azrael.i
    W97M/Azrael.f
  multipartite (1)
    Hungarian.mp.485
  P2P Worm (1)
    W32/Veedna.worm
  Password Stealer (1)
    W32/Porex.pws
  Remote Access (1)
    Linux/Backdoor-Btrq
  Script (2)
    VBS/Trepen
    VBS/Monopoly
  Win31 (1)
    miscompiled
  Win32 (10)
    W32/Rammstein.14531.a
    W32/Porex
    W32/Small.736
    W32/Small.690
    W32/Rammstein.14531.b
    W32/NGVCK.a.8809
    W32/Frethem.t
    W32/Expio
    W32/Ipamor
    W32/Appix.d
  Win9x (3)
    W95/Iced.2168
    W95/Iced.2116
    W95/Poshkill.1445
  Worm (13)
    W32/Appix.e@MM
    W32/Appix.c@MM
    W32/STD.d.worm
    W32/Ultimax.worm.d
    W32/Ultimax.worm.b
    W32/Sytro.worm.al
    W32/Sytro.worm.ak
    W32/Lovit.worm
    W32/Osapex.worm
    W32/EnerKaz.worm.i
    W32/Ultimax.worm.e
    W32/Ultimax.worm.c
    W32/Ultimax.worm.a

Enhanced Detections:

Trojan (7)
  Client (1)
    Backdoor-JA.cli
  Dropper (2)
    QZap227.dr
    BackDoor-AFL.dr
  Remote Access (3)
    BackDoor-ALI
    BackDoor-ABH
    BackDoor-AFL
  Server (1)
    Backdoor-JA.svr
Virus (313)
   (154)
    GrnCat.8224
    SmallME
    Die-Hard.3000
    Andromeda.1536c
    Andromeda.1024.b
    Horse.1610
    Andryushka.3536
    Andromeda.1024.a
    Ingene.1782
    Hymn.2144.b
    Dark Avenger.1687dr
    Dark Avenger.1803
    Dark Avenger.1687
    Dark Avenger.1459
    Cmosdens.807
    Hymn.2144.c
    Hymn.2144.a
    Dark Avenger.1459dr
    HLL.8240
    HLL.7538
    HLL.Team
    HLL.7072
    HLL.6915
    VICE.5.One13th
    VICE.4.One13th
    VICE.3b.Firec
    VICE1
    VCL.Texas.1222a
    VCL.Texas.1221a
    VCL.NED.Mutator
    VCL.Mut.455
    VCL.Eddie.1019b
    VCL.Eddie.1018
    Uruguay.8
    TPE.Kela.4664
    SMEG.V3
    SMEG.Queeg.b
    SMEG.Pathgen.b
    PCBB.1129
    PCBB.1141
    MTE.Destructor.b
    Media.869
    Kukac
    Zherkov.2435
    ZhenZhou.2370
    VICE.5.One13b
    VICE.4.One13b
    VICE.3.One13th
    VICE.4b.Firec
    VICE.2b.Firec
    VCL.Texas.1222b
    VCL.Texas.1221b
    VCL.Mut.512
    VCL.Mut.342
    VCL.Eddie.1019a
    VCL.846.b
    VCL.846.a
    Uruguay.9
    Uruguay.7
    TVED.Test.b
    TPE.WildLick
    SMEG.Tri
    SMEG.Queeg.c
    SMEG.Queeg.a
    SMEG.Pathgen.a
    PCBB.3072e
    PCBB.3072b
    PCBB.3072a
    PCBB.3072d
    PCBB.3072c
    PCBB.1800b
    PCBB.1800a
    PCBB.1656
    PCBB.1675
    PCBB.1718
    PCBB.1658
    PCBB.1845
    PCBB.1273
    PCBB.833
    MTE.Destructor.c
    MTE.Destructor.a
    Amoeba
    Zorm
    TVED.Test.a
    MIPT.748
    Caramon.402
    Boke.1068
    Blazer.1000
    Artic.1152
    Anarchy.6503
    HLL.8283
    HLL.Deadbyte
    HLL.Deadbyte.7328
    HLL.6272
    HLL.6157
    HLL.6080
    HLL.5584
    HLL.5230
    HLL.5228
    HLL.5213
    Frog
    Yankee Doodle.2930
    Yankee Doodle.3243
    Yankee Doodle.2977b
    Yankee Doodle.2977a
    Yankee Doodle.2897
    Yankee Doodle.2881.j
    Yankee Doodle.2881.i
    Yankee Doodle.2881.x
    Yankee Doodle.2881.k
    Yankee Doodle.2881.h
    Yankee Doodle.2881.g
    Yankee Doodle.2881.f
    Yankee Doodle.2881.e
    Yankee Doodle.2881.d
    Yankee Doodle.2881.c
    Yankee Doodle.2881.b
    Yankee Doodle.2881.a
    Yankee Doodle.2993b
    Yankee Doodle.2993a
    Yankee Doodle.2932b
    Yankee Doodle.2932a
    Yankee Doodle.2772
    Yankee Doodle.2756c
    Yankee Doodle.2756b
    Yankee Doodle.2756a
    Yankee Doodle.1905
    Yankee Doodle.1624
    Yankee Doodle.2720
    Yankee Doodle.25760
    Yankee Doodle.1371
    Yankee Doodle.1256
    Yankee Doodle.1223
    Yankee Doodle.1210
    Yankee Doodle.1049
    Yankee Doodle.1049.d
    Yankee Doodle.1049.a
    Npox.a
    IVP.4893.b
    Cvex4.5120.c
    Yankee Doodle.1049.e
    Yankee Doodle.1049.c
    Yankee Doodle.1049.b
    Jeru.Wanderer.1653.e
    IVP.4893.a
    Cvex5.5120
    Cvex4.5120.b
    Cvex4.5120.a
    Cvex3.5120
    Andromeda.1024.d
    Andromeda.1024.c
    Westmont.660
    RTP.4838dr
    FF.1536
  Client (1)
    W32/Begemot.cli
  Companion (15)
    HLL.cmp.6608
    HLL.cmp.8897
    HLL.cmp.8464
    HLL.cmp.6610
    W32/Belod.cmp.8192.b
    W32/Belod.cmp.8192.a
    W32/Borges.cmp
    HLL.cmp.5728
    Worm3.cmp.16412
    Viorica.cmp.5968
    Pullet.cmp.5792
    Protipus.cmp.5472
    Pinoy.cmp.5728
    Fat Duck.cmp
    Crawly.cmp.6624
  Damaged (5)
    Univ/l.dam
    W16/Winvir.961.dam
    W32/Kriz.dam
    W32/Gibe.dam
    W32/CryptoLab.dam
  Demonstration (2)
    SMEG.Demo.d
    TPE.Demo.1760
  Dropper (20)
    Univ/q.dr.b
    Univ/q.dr.a
    Ash.dr
    Voices.dr
    Perfume.dr
    Backform.dr
    TVED.Test.dr.b
    Cryptor.dr
    Havoc.dr
    TVED.Test.dr.a
    W32/Begemot.dr
    W32/Aldebar.dr
    W95/Adson.dr.1734
    W95/Adson.dr.1703a
    W95/Angriff.dr
    W95/Adson.dr
    W95/Adson.dr.1703b
    Terminator One.44.dr
    Squatter.dr.9742
    Black Monday.1055.dr
  Dropper Parasitic (1)
    Funk.cav.692.dr
  Email (16)
    W32/WinExt@MM
    VBS/Peachy@MM
    VBS/Monopoly.c@MM
    VBS/Monopoly.b@MM
    VBS/Monopoly.a@MM
    W32/Wasap@MM
    W32/LastScene.e@MM
    W32/Navidad.g@M
    W32/Navidad.e@M
    W32/Taz@MM
    W32/Sysid@MM
    W32/Navidad.f@M
    W32/LoftStory@MM
    W32/Lara@M
    W32/Eliz@MM
    W32/Zhangpo@MM
  File Infector (3)
    Loki
    Yankee Doodle
    Arara
  Generic (21)
    ParInt.GR
    W95/Sab.gen
    WHLP/Pluma.gen
    W32/Parvo.gen
    W32/Nahata.d.gen
    W32/Nahata.a.gen
    W95/Adson.gen
    Univ/e.GR
    Pixel.gen.h
    Pixel.gen.f
    Pixel.gen.d
    Pixel.gen.b
    Pixel.gen.j
    Pixel.gen.g
    Pixel.gen.e
    Pixel.gen.c
    Pixel.gen.a
    Riot.Multiflu.GR
    GhostDog.gen
    Bashme.gen
    Stoned.gen
  Generic multipartite (1)
    Shin.mp.gen
  Heuristic (1)
    New BackDoor3
  Intended (3)
    W32/Wolk.intd.b
    W32/Wolk.intd.a
    W95/Beef.intd
  Internet Worm (1)
    W32/Cazinat.worm.a
  Macro (4)
    W97M/Azrael
    W97M/Azrael.b
    W97M/Azrael.c
    W97M/Azrael.a
  Malware Tool (1)
    GhostDog.kit
  multipartite (1)
    Hungarian.mp
  Open Share Worm (1)
    W32/Msinit.worm
  Overwriting (3)
    Univ.ow/c
    VCL.Texas.ow.596
    VCL.Eddie.ow.512
  Overwriting Script (1)
    W32/HLL.ow.9728.vbs
  Script (3)
    W32/Wally.reg
    VBS/Antinap
    MadMan.bat
  Universal (10)
    Univ/s
    Univ/k
    Univ/e
    Univ/e.943b
    Univ/e.906
    Univ/e.822
    Univ/e.901
    Univ/e.636
    Univ/e.605
    Univ/e.510
  Unpacked (1)
    HLL.8283.unp
  VbScript (1)
    VBS/Monopoly@MM
  Win32 (21)
    W32/Wit.b
    W32/Wit.a
    W32/Nahata.g
    W32/Nahata.f
    W32/Mock.1120
    W32/Mental
    W32/Temir
    W32/Svk
    W32/Sloc
    W32/Nahata.c
    W32/Litar
    W32/Dislex
    W32/Benny.3354a
    W32/Benny.3223a
    W32/Benny.3219a
    W32/Appix.b
    W32/Benny.3354b
    W32/Benny.3223b
    W32/Benny.3219b
    W32/Aris
    W32/Wanhope.1892
  Win9x (6)
    W95/PME
    W95/Opera
    W95/CIH.776
    W95/Kala
    W95/CIHKiller.1373
    W95/Altar
  Worm (16)
    W32/Blinkom
    W32/Juegos.worm
    W32/Taripox.worm
    W32/Cazinat.worm
    W32/Wass.worm
    IRC/Missy.worm
    W32/MsInit.worm.e
    W32/MsInit.worm.a
    W32/Randir.worm.a
    W95/Sos.worm
    W32/Randir.worm.b
    W32/MsInit.worm.b
    W32/Lunatik.worm
    W32/Linda.worm
    W32/Filk.worm
    W32/Adult.worm