McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4251
DAT Release Date	03/05/2003
Threats Detected	66669
New Detections	167
Enhanced Detections	125

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
W32/Yaha.p@MM	Low-Profiled	Low-Profiled

New Detections:

Internet Worm (1)

E-mail worm (1)

Program (32)

(4)

WVSource

VBSource

Dialer (1)

Malware Tool (12)

Tool (8)

Tool-AngelsRevenge

Tool-HMH

Win32 (7)

Trojan (49)

(2)

Flood.h

Winsex.d

Application extension (1)

BackDoor-AKM.dll

Configurator (1)

Downloader-CC.cfg

Dialer (1)

Downloader (5)

Dropper (2)

Kit-SennaSpy.dr

SennaSpy2001.dr

Exploit (13)

Linux/Exploit-SendMail

PHP/Exploit-PHP

PHP/Exploit-IIS

UNIX/Exploit-Cpanel

Exploit-PoP3Trap

Exploit-SqlHack

UNIX/Exploit-Webmin

UNIX/Exploit-Sircd

UNIX/Exploit-FireRun

Exploit-NetMust

Exploit-IISUrlEnc

Flooder (4)

IRC/FDoS-DarkShark

Generic (1)

Malware Tool (5)

Password (2)

Password Stealer (2)

Remote Access (4)

Script (4)

Bat/wcl

VBS/DDoS-iFrameNet.a

IRC/Flood.ap.bat

Win32 (2)

Jzinx

Virus (85)

(6)

Krad

Goma.580

MacHC/Independance

Companion (1)

Offspring.cmp.1550

Dropper (3)

Zorm/g.1203b.dr

Zorm/g.1203a.dr

Dropper Worm (1)

Bat/hwi.worm.dr

E-mail (1)

Email (33)

W32/BleBla.d@MM

W32/Merkur.c@MM

W32/Duksten.m@MM

Email Generic (1)

W32/Chowl.gen@MM

Floppy Worm (1)

W32/Rackum.worm

Generic Worm (1)

W32/Gemel.worm.gen

Heuristic (1)

Intended (2)

W32/Triplix.intd

Internet Worm (2)

Macro (2)

Malware Tool (1)

W97M/VMPCK1.Kit

Script (2)

JS/Zeeap

Win32 (3)

Worm (24)

W32/Randon.worm

W32/Kwbot.worm.f

W32/Kwbot.worm.e

W32/Kwbot.worm.d

W32/Zokrim.worm

W32/Zackfoo.worm

W32/Rimnod.worm.b

W32/EnerKaz.worm.m

Linux/Slapper.worm

W32/Steph.c.worm

W32/Picsys.worm.a

W32/Loxar.worm.f

W32/Kwbot.worm.b

W32/Kwbot.worm.a

W32/Gemel.worm.f

W32/EnerKaz.worm.o

Linux/Slapper.worm.e

W32/Rimnod.worm.c

W32/Rimnod.worm.a

W32/Picsys.worm.b

W32/Gemel.worm.e

W32/EnerKaz.worm.p

W32/EnerKaz.worm.n

Enhanced Detections:

Trojan (23)

(5)

Winsex.b

Winsex.a

Winsex.c

Client (1)

Mac/BackDoor-Sub7.cli

Configurator (1)

Mac/BackDoor-Sub7.cfg

Denial Of Svc (1)

Dropper (1)

Dropper Malware Tool (1)

SennaSpy.kit.dr

Generic (1)

BackDoor-Senna.gen

Malware Tool (4)

Nuke-AdvancedHack

Remote Access (3)

Script (3)

Bat/hwi

Server (1)

Mac/BackDoor-Sub7.svr

Win32 (1)

Mail-DepthCharge

Virus (102)

(50)

BW

Pixel.i

Amz.802

Pixel.Rosen.131

Pixel.Hydra.472

Pixel.Hydra.371

Pixel.Hydra.1670

Pixel.j

Pixel.g

Pixel.f

Pixel.d

Pixel.b

Odessa.b

Odessa.a

Pixel.h

Pixel.e

Pixel.c

Odessa.c

Fu-Manchu.2076c

PHX

DG

Ace.1872

Goma

Companion (5)

Offspring.cmp.1681x

Offspring.cmp.1673

Offspring.cmp.1681

Offspring.cmp.1551

Dropper (3)

Dropper Parasitic (1)

W32/Compo.cav.145.dr

E-mail (1)

Email (3)

W32/Merkur.a@MM

W32/Merkur.b@MM

Email Worm (4)

W32/ExploreZip.worm.pak.e@M

W32/ExploreZip.worm.pak.d@M

W32/ExploreZip.worm.pak.b@M

W32/ExploreZip.worm.pak.a@M

File Infector (5)

Jack

Leech

Floppy Worm (1)

W32/Axatak.worm

Generic Worm (1)

Linux/Slapper.worm.gen

Intended (1)

Internet Worm (4)

Linux/Slapper.worm.a

Linux/Slapper.worm.b

Linux/Slapper.worm.c

Linux/Slapper.worm.d

Macintosh (2)

MacHC/Merryxmas

MacHC/ThreeTunes

multipartite (8)

Anthrax.mp.1024

Ginger.Orsam.mp.x

Ginger.Orsam.mp.2628

Ginger.Orsam.mp.2620b

Ginger.Orsam.mp.2616

Ginger.Orsam.mp.2624

Ginger.Orsam.mp.2620a

Autumnal.mp.3072

Overwriting (4)

UNIX/Gobleen.ow

Script (1)

Unix (1)

Win32 (1)

Worm (6)

W32/Gemel.worm.c

W32/Gemel.worm.a

W32/Gemel.worm.d

W32/Gemel.worm.b