Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4246
DAT Release Date 02/05/2003
Threats Detected 64034
New Detections 147
Enhanced Detections 180

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Internet Worm (1)
  P2P Worm (1)
    W32/Gemel.worm
Malware (2)
  Exploit (1)
    Exploit-PhpBB
  Trojan (1)
    PWS-Likun
Program (39)
   (7)
    WVTool/twi
    WVtool/tha
    WVTool/see
    WVTool/mat
    FormatD
    Spy-RedSpider
    Crack-Invircible
  Dialer (1)
    PornDial-144
  Malware Tool (20)
    VTool/scv1
    Vtool/zzz2
    VTool/zzz1
    VTool/zom2
    VTool/zco
    VTool/xxx
    VTool/scv3
    VTool/scv2
    VTool/rag
    VTool/mag4
    VTool/fly
    VTool/av8
    VTool/asm1
    PWCrack-M2
    VTool/mya
    VTool/inv
    VTool/jed
    VTool/hig
    VTool/dpm
    VTool/att
  PornDialer (1)
    PornDial-143
  Tool (4)
    Tool-Addbyte
    Tool-IconHnt
    Tool-IPScan
    Tool-Check4C
  Win32 (6)
    WVTool/tra
    WVTool/epr2
    WVTool/epr1
    WVTool/ede
    SRScanner
    Calphys
Trojan (67)
   (5)
    Pricol
    KillCMOS.e
    Provrout
    Dekodolo
    Ansibomb.g
  - (2)
    Renamer.c
    IRC/Flood.bi
  Application extension (4)
    BackDoor-APO.dll
    Keylog-Cyanure.dll
    BackDoor-ALI.dll
    BackDoor-AED.dll
  Configuration settings (1)
    HackerDefender.ini
  Configurator (1)
    PWS-Likun.cfg
  Dialer (1)
    QDial5
  Dropper (2)
    MultiDropper-FI
    MultiDropper-FH
  Exploit (2)
    Exploit-IIS.Sunx
    UNIX/Exploit-PHPBB
  File deleting (2)
    QDel369
    QDel370
  Flooder (1)
    FDoS-MSNCrash
  Internet Relay Chat (6)
    IRC/Demfire
    IRC/Flood.bo
    IRC/Flood.bm
    IRC-ScnBot
    IRC/Flood.bp
    IRC/Flood.bn
  Java Applet (2)
    JV/PublicEnemy
    JV/Consume
  Keylogger (1)
    Keylog-Cyanure
  Macro (2)
    X97M/Darra
    W97M/Lumumba
  Malware Tool (3)
    Spam-Jbomber
    Spam-SMS.Chello
    Nuke-KillWin
  Password (1)
    Keylog-Razytimer
  Process (1)
    ProcKill-Z
  Remote Access (7)
    BackDoor-APO
    BackDoor-APR
    BackDoor-APN
    BackDoor-APL
    BackDoor-APS
    BackDoor-APM
    BackDoor-AMS.rmv
  Script (13)
    VBS/ShareEnable
    Bat/qd26
    Bat/fll2
    Bat/dt17
    Bat/adm
    JS/Nezew
    Bat/qd28
    Bat/hwi
    Bat/fll1
    Bat/dt15
    Bat/shd
    Bat/sag
    Bat/qd27
  Server (1)
    BackDoor-WF.svr.rmv
  Tool (1)
    Tool-Faceless
  Win32 (8)
    IRC-Sahgra
    HackerDefender
    TransGhost
    Spy-BBrother
    Retribution
    BePrepared
    SMSFlood-Fusion
    DoS-Shockwave
Virus (38)
   (11)
    Frizer.328
    BootDr238
    BootDr237
    BootDr236
    BootDr235
    Xany.220
    Kusys.1637
    Inf.dd.418
    Holzner
    Roseanne.244
    PE
  Damaged (1)
    Fist.514.dam
  Dropper (5)
    Westmont.dr
    Leprosy.dr
    Roseanne.dr
    Involuntary.dr
    Fate.dr
  E-mail worm (1)
    W32/Bibrog.a@MM
  File Infector (1)
    W32/Valla.b
  Heuristic (1)
    New MSVB P2P worm
  Intended (1)
    VBS/Bowlgy.intd
  Macro (1)
    W97M/Wisefool
  P2P Worm (3)
    VBS/Sludge.worm
    W32/Winur.worm.a
    W32/Winur.worm.b
  Script (3)
    Bat/pot
    W32/Repah@MM.vbs
    W32/Rads.vbs
  Win32 (5)
    W32/Valla
    W32/Ipamor.b
    W32/Ipamor.a
    W32/Rads
    W32/Lamirc
  Worm (5)
    VBS/Waterworks.worm
    W32/Drib.worm
    W32/Bored.worm.a
    W32/Bored.worm.b
    W32/Titog.worm.f

Enhanced Detections:

Malware (1)
  Exploit (1)
    Exploit-SQLhuc
Program (1)
  Malware Tool (1)
    VTool/zom
Trojan (26)
   (4)
    ICQPager-I
    BootDr172
    BootDr167
    BootDr124
  Application extension (1)
    BackDoor-AJX.dll
  Configurator (1)
    MultiPager-B.cfg
  Denial Of Svc (1)
    Crackerbox
  Downloader (1)
    Downloader-BQ
  Exploit (1)
    Exploit-Zephyrus
  Flooder (1)
    FDoS-Gichty
  Internet Relay Chat (1)
    IRC/Flood.t
  Malware Tool (1)
    RBTG.kit
  Password Stealer (2)
    PWS-Chalex
    PWS-Nevar
  Remote Access (3)
    BackDoor-AGV
    BackDoor-AIQ
    BackDoor-JJ
  Script (7)
    Bat/aag
    RBTG.bat
    VBS/Motumbo
    Bat/aaq
    Bat/aac
    Bat/aai
    Bat/aad
  Win32 (2)
    OptixPager
    MultiPager-B
Virus (152)
   (65)
    BootDr211
    BootDr215
    BootDr80
    Nostar.3584.n
    Nostar.3584.j
    Nostar.3584.h
    Nostar.3584.f
    Nostar.3584.d
    Nostar.3584.b
    Frizer.a
    BootDr151
    BootDr150
    BootDr133
    BootDr129
    BootDr127
    BootDr125
    BootDr123
    Nostar.3584.mad
    Nostar.3584.m
    Nostar.3584.l
    Nostar.3584.k
    Nostar.3584.i
    Nostar.3584.g
    Nostar.3584.e
    Nostar.3584.c
    Nostar.3584.a
    Frizer.b
    BootDr217
    BootDr214
    BootDr213
    BootDr210
    BootDr201
    BootDr200
    BootDr193
    BootDr187
    BootDr186
    BootDr185
    BootDr181
    BootDr179
    BootDr178
    BootDr177
    BootDr175
    BootDr159
    BootDr154
    BootDr148
    BootDr134
    BootDr130
    BootDr128
    BootDr126
    BootDr122
    BootDr121
    BootDr119
    BootDr113
    BootDr111
    BootDr110
    BootDr103
    BootDr120
    BootDr87
    Twister
    Involuntary.1403
    BootDr86
    Involuntary.1349
    Flip dr
    Babol.2048
    Babol.2056
  Boot (1)
    Disk Killer
  Companion (2)
    Twin.cmp
    W32/HLL.cmp.8192
  Configuration settings multi (1)
    W32/Orochi.mp.ini
  Damaged multipartite (1)
    Fatty.mp.3008.dam
  Dropper (2)
    GWar.dr.2778
    GWar.dr
  Dropper multipartite (4)
    One-Half.mp.dr
    Harrier.mp.4602.dr
    Emperor.mp.dr
    Blackhack.mp.dr
  E-mail worm (1)
    VBS/Gaggle@MM
  Email Generic (1)
    VBS/VBSWG2.gen@MM
  File Infector (2)
    Lazy
    Sopron.937
  HTML document multipartite (1)
    W32/Orochi.mp.html
  multipartite (51)
    GWar.mp.2778
    GWar.mp
    Digress.mp
    AreThree.mp
    Anticad.mp.4096.o
    Hemlock.mp.3168
    Harrier.mp.4602
    Grave Lion.mp.2250
    Godoy.mp.1792
    Fowl.mp.3072
    FitW.mp.7953.b
    FitW.mp.7953.a
    Fantom.mp.962
    Eightball.mp.a
    Dreamspace.mp.1024
    Destage.mp.1200
    Delwin.mp.1199
    Delaut.mp.296
    Deflo.mp.5608
    Hemlock.mp.3183
    Fatty.mp.3008
    Eightball.mp.b
    Dr Demon.mp.4634
    Deflo.mp.6592
    Deflo.mp.5791
    Crusher.mp
    Crusade.mp.3072
    Crusade.mp.3030
    Crusade.mp.3000
    Crepate.mp.2910
    Crepate.mp.1944
    Coup.mp.2260
    Blackhack.mp.2681
    Babol.mp.3072c
    Babol.mp.3072b
    Babol.mp.3072a
    Blackhack.mp.2641
    Bap.mp.1536
    Aust.mp.1024b
    Aus-Term.mp.3490
    Arya.mp.4616
    Arianna.mp.3426
    Anticad.mp.4096.n
    Andropinis.mp
    Alla.mp.1325
    Harrier.mp
    Alfa.mp.3072
    Arianna.mp.3375
    Alla.mp.1407
    Alla.mp.1281
    Alar.mp.6047
  multipartite Overwriting (1)
    E-Nine.mp.ow
  multipartite Parasitic (1)
    ATCorp.mp.cav.321
  Script (15)
    VBS/Resreg
    Angela.bat
    Bat/dc.850
    Bat/dc.360
    Bat/dc.267dr
    Bat/db
    Bat/cx.615
    Bat/cv.228
    Bat/cv.165
    Angela.vbs
    Bat/aab
    Bat/dc.367
    Bat/dc.351
    Bat/dc.267
    Bat/cx.614
  Win9x (2)
    W95/Suk.8044dr
    W95/Suk.8039dr
  Worm (1)
    W32/QQPass.worm