McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4252
DAT Release Date	03/12/2003
Threats Detected	67330
New Detections	196
Enhanced Detections	352

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
W32/Deloder.worm	Low-Profiled	Low-Profiled
W32/Bibrog.c@MM	Low-Profiled	Low-Profiled
W32/Nicehello@MM	Low-Profiled	Low-Profiled

New Detections:

Program (24)

- (2)

PrcView

MotherboardMonitor

Dialer (2)

Malware Tool (12)

Tool (1)

Win32 (7)

NetSpy

Trojan (85)

(1)

Tef/Dcp

Client (1)

BackDoor-AQQ.cli

Configurator (3)

DDoS-Prodex.cfg

DDoS-DDoSer.cfg

BackDoor-AQQ.cfg

Disk erasing (1)

QZap311

Downloader (1)

Dropper (5)

BackDoor-ARG.dr

MultiDropper-FL

MultiDropper-FM

Exploit (2)

UNIX/Exploit-Typo

UNIX/Exploit-DSR

Flooder (7)

Generic (3)

W32/Stealth.gen

PWS-MSNFake.gen

BackDoor-AQR.gen

Malware Tool (10)

Nuke-WinTCPKill

Nuke-TSKNuke.irc

Nuke-QQ

Nuke-AIC

Kit-JSG

Password Stealer (3)

Process (2)

Remote Access (16)

BackDoor-ALI.sys.b

Linux/Backdoor-ssl

Unix/BackDoor-Gloomy.b

Unix/BackDoor-Gloomy.a

Script (25)

Bat/kru

Bat/dt23

Bat/dt21

Bat/tbo

Bat/scw

Bat/qz20

Bat/qz19

Bat/qz18

Bat/qd54

Bat/qd52

Bat/qd51

Bat/qd44

Bat/qd43

Bat/qd41

Bat/qd40

Bat/oem2

Bat/oem1

Bat/dt99

Bat/dt22

Bat/bel

Server (1)

BackDoor-AQQ.svr

Spyware (1)

VbScript (1)

Win32 (2)

Virus (87)

(19)

SSR.1520

Kusys

VCL.Dome

Jeru.Sunday.1647

Terror

Application extension (1)

W32/Lovgate.dll

Companion (1)

Damaged (3)

Dropper (5)

Lorenzo.9214.dr

Nutcracker.2620.dr

W32/DeadBear.dr

Dropper Worm (2)

W32/SQLSlammer.worm.dr

W32/Gool.worm.dr

E-mail worm (3)

W32/Jantic.a@MM

W32/Nicehello@MM

Email (1)

Email Generic (1)

W32/Bibrog.gen@MM

Generic (1)

Generic Worm (1)

W32/Fantast.worm.gen

Intended (3)

W32/DeadBear.intd

W95/Boza.g.intd

W95/Babylonia.intd

Internet Worm (4)

W32/Sddrop.worm

W32/Bibrog.c@MM

W32/Bibrog.b@MM

W32/AimVen.worm

Linux (1)

Malware Tool (1)

Overwriting (1)

Parasitic (1)

W32/HLLP.18431c

Script (2)

Bat/pwo

Unix (3)

Win32 (4)

W32/Isis

Win9x (2)

Worm (27)

W32/Deloder.worm

W32/Opaserv.worm.u

W32/Opaserv.worm.s

W32/Amazex.k.worm

W32/Opaserv.worm.v

W32/Opaserv.worm.t

W32/Sunelo.worm.b

W32/Loxar.worm.h

W32/Loxar.worm.g

W32/Fantast.worm.e

W32/Fantast.worm.c

W32/EnerKaz.worm.q

W32/CodeRed.worm.f

VBS/FVBSWG.worm

W32/Zokrim.worm.b

W32/Zokrim.worm.a

W32/Zackfoo.worm.c

W32/Zackfoo.worm.b

W32/Zackfoo.worm.a

W32/Sunelo.worm.a

W32/Speedup.d.worm

W32/Shakirapics.worm

W32/Nimrod.worm

W32/Iglamer.worm

W32/Fantast.worm.d

W32/CodeRed.worm

Enhanced Detections:

Joke (2)

Process (1)

Settings Change (1)

Program (178)

(3)

WVSource

VBSource

Downloader (1)

Malware Tool (172)

Tool (1)

Tool-DLL_Injector

Win32 (1)

Trojan (49)

(2)

Nutcracker.2620.dd

Client (1)

BackDoor-UO.cli

Configurator (1)

BackDoor-UO.cfg

Dropper (2)

MultiDropper-CO

Exploit (1)

Exploit-CT/Calendar

File deleting (1)

QDel101

File Deletion (1)

QDel104

HTML (1)

Internet Relay Chat (1)

Malware Tool (1)

Password (1)

Password Stealer (1)

Remote Access (4)

Script (27)

Bat/abr

Bat/dw

Bat/dt20

Bat/vo

Bat/ue

Bat/rx

Bat/loo2

Bat/loo1

Bat/aaz

Bat/aay

Bat/aax

Bat/aap

Bat/zw

Bat/zt

Bat/zn

Bat/zm

Bat/zj

Bat/wx

Bat/wl

Bat/wi

Bat/wb

Bat/vt

Bat/vs

Bat/uf

Bat/sk

Bat/rr

Server (1)

BackDoor-UO.svr

Win32 (3)

Tetris

Piduts

Virus (123)

(40)

ADI

Jeru.Sunday.1728c

Jeru.Sunday.1728a

Jeru.Sunday.1682

Jeru.Sunday.1631e

Jeru.Sunday.1631c

Jeru.Sunday.1631a

Jeru.Sunday.1728b

Jeru.Sunday.1689

Jeru.Sunday.1639

Jeru.Sunday.1631f

Jeru.Sunday.1631d

Jeru.Sunday.1631b

Jeru.Sunday.1624

Jeru.Sunday.1633a

Jeru.Sunday.1633b

Jeru.Sunday.1633d

Jeru.Sunday.1633c

7thSon

Slowly

Dir-II

BootDr65

Zyr

Worker

Public Enemy.429

Nekorb.805.auto.tro

Irate

Leo

Companion (1)

VCL.cmp

Damaged (1)

Linux/Etap.d.dam

Dropper (5)

Trout.dr

Pofu.dr

Email (1)

Email Worm (5)

W32/Sytro.worm.ad@MM

W32/Sytro.worm.ab@MM

W32/Sytro.worm.ac@MM

W32/Sytro.worm.aa@MM

W32/Sytro.worm.am@MM

File Infector (2)

Kela

Generic (5)

X97M/Laroux.nw.gen

W95/Anxiety.gen

Generic Worm (1)

W32/Lich.worm.gen

Intended (1)

W32/Triplix.intd

Linux (1)

multipartite (2)

Kiev.mp

Parasitic (2)

Pure.cav

Unix (2)

UNIX/Kru

Win32 (1)

Win9x (6)

W95/MSpawn.4608

Worm (47)

W32/Sytro.worm.al

W32/Sytro.worm.ak

W32/Sytro.worm.aj

W32/Sytro.worm.ah

W32/Sytro.worm.ag

W32/Sytro.worm.af

W32/Sytro.worm.z

W32/Sytro.worm.ai

W32/Sytro.worm.ae

W32/Sytro.worm.y

W32/Sytro.worm.x

W32/Sytro.worm.w

W32/Sytro.worm.u

W32/Sytro.worm.s

W32/Sytro.worm.q

W32/Sytro.worm.o

W32/Sytro.worm.m

W32/Sytro.worm.k

W32/Sytro.worm.i

W32/Sytro.worm.g

W32/Sytro.worm.e

W32/Sytro.worm.c

W32/Sytro.worm.a

W32/Sytro.worm.v

W32/Sytro.worm.t

W32/Sytro.worm.r

W32/Sytro.worm.p

W32/Sytro.worm.n

W32/Sytro.worm.l

W32/Sytro.worm.j

W32/Sytro.worm.h

W32/Sytro.worm.f

W32/Sytro.worm.d

W32/Sytro.worm.b

W32/Sytro.worm.as

W32/Sytro.worm.ar

W32/Sytro.worm.aq

W32/Sytro.worm.ap

W32/Sytro.worm.ao

W32/Sytro.worm.an

W32/Sytro.worm.at

W32/Sytro.worm.au

W32/Sytro.worm.aw

W32/Sytro.worm.av

W32/Fantast.worm.b

W32/Steph.c.worm