McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4267
DAT Release Date	05/28/2003
Threats Detected	73409
New Detections	163
Enhanced Detections	93

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
W32/Fakerr@MM	Low-Profiled	Low-Profiled
W32/Vote.k@MM	Low-Profiled	Low-Profiled
W32/Cayam.worm!p2p	Low-Profiled	Low-Profiled

New Detections:

Internet Worm (2)

E-mail worm (1)

W32/Cayam.worm!p2p

P2P Worm (1)

W32/Generic.worm!p2p

Program (38)

(5)

Picture-Atmosphere

Adware (2)

Adware-PornKings

Demonstration (1)

Downloader (1)

Adware-SRNG.dldr

Dropper (1)

Adware-RBlast.dr

Joke (1)

Malware Tool (4)

PWCrack-NTCrack

PWCrack-Abel.rmv

PornDialer (1)

Settings Change (1)

Delshare

Spam (1)

Tool (8)

HideRun

CPUhog

Crack-DTNetscan

Tool-RemoteProcess

Tool-RemoteKill

Tool-AppToService

Win32 (12)

PortScan-SQL.Debug

PortScan-FireBall

PortScan-BThreads

BackOrifice.rmv

Portscan-BOPinger

Trojan (59)

(1)

ASP/Raph

- (1)

Application extension (1)

BackDoor-AUN.dll

Damaged (1)

Demonstration (1)

Kit-Revert.demo

Disk erasing (1)

QZap252

Downloader (1)

Dropper (4)

JS/Startpage-K.dr

Keylog-Spider.dr

BackDoor-AUQ.dr

Exploit (3)

UNIX/Exploit-IEHK

Exploit-FrameZone

File deleting (2)

QDel387

QDel386

Flooder (3)

FDoS-PacketStorm

Generic (1)

BackDoor-AUO.gen

ICQ Messaging (1)

ICQ-Vize

Internet Relay Chat (3)

IRC-Neds

IRC-Xen

JavaScript (1)

JS/StartPage.dr

Malware Tool (6)

Kit-MBC

Kit-G2

mIRC client (1)

IRC/Flood.cd.mirc

Password Stealer (2)

Remote Access (9)

BackDoor-ATM.gen

Unix/BackDoor-Ping

Backdoor-Sub7.finder

Script (1)

VBS/DDoS-iFrameNet.c

Source code (1)

Unix/BackDoor-Ping.src

Source code Worm (1)

Linux/Adore.worm.src

StartPage (1)

VbScript (1)

Win31 (2)

Proscrol

Win32 (9)

Fup

Virus (64)

(1)

Freza

Application extension Worm (1)

W32/Lastas.worm.dll

Configuration settings (1)

W32/Menthol.ini

Dropper (2)

W95/Navrhar.12888.dr

E-mail worm (4)

W32/Duksten.o@MM

Email (19)

W32/Zokrim.r@MM

W32/Zokrim.q@MM

W32/Zokrim.c@MM

W32/Zokrim.b@MM

W32/Zokrim.a@MM

W32/Fourseman.f@MM

W32/Fourseman.e@MM

W32/Fourseman.d@MM

W32/Fourseman.c@MM

W32/Fourseman.b@MM

W32/Fourseman.a@MM

Email Generic (2)

W32/Zokrim.gen@MM

W32/Wangy.gen@MM

Email Generic Worm (1)

W32/Zokrim.worm.gen@MM

Generic (1)

Internet Worm (3)

W32/HLLP.Vampore.worm

Macro (2)

Overwriting (1)

P2P Worm (1)

Parasitic (2)

W32/HLLP.Porner

Script (5)

JS/Damar

VbScript (1)

Win32 (5)

Win9x (1)

Worm (11)

W32/Randon.worm.n

W32/GenericP2P.worm

W32/Vampore.worm

W32/Titog.worm.i

W32/Sddrop.worm.g

W32/Nilit.l.worm

W32/Lastas.worm

W32/Fasong.worm

Enhanced Detections:

Program (7)

Keylogger (1)

Win32 (6)

SQL-Ping

Trojan (16)

(1)

CleanBK

- (1)

Adware (1)

AdwareDropper-A

Configurator (3)

IRC-Contact.cfg

MultiDropper-FN.cfg

Downloader-AE.cfg

Dropper (2)

MultiDropper-DN

MultiDropper-FW

Exploit (1)

Exploit-FbsdHack

File deleting (2)

QDel336

QDel382

Flooder (1)

Malware Tool (1)

Nuke-WinTCPKill

Remote Access (2)

BackDoor-Sub7.PwdCh

Win32 (1)

Virus (70)

(19)

YD.1049

Xany.162

VP.333

UVC.596

UVC.589

UVC.559

UVC.552

UVC.512

Tron.514

Damaged (3)

W32/Fosforo.dam

Anti-Pascal.dam

Dropper (1)

W32/Lamebyte.dr

E-mail (1)

Email (6)

W32/MyPower.b@MM

W32/MyPower.a@MM

Generic (1)

W32/Moridin.gen

Internet Worm (3)

W32/Supova.worm

JS/Fortnight.b@M

W32/Nymph.gen@MM

Macro (1)

Parasitic (2)

Script (1)

Win32 (20)

W95/Rainsong.3891

W32/Henky.Sanaz.1624

W32/Henky.Sanaz.1652

FakeN

Win9x (10)

W95/RainSong.3925.a

W95/RainSong.4036

W95/RainSong.4386

W95/RainSong.3956.b

W95/RainSong.3956.a

W95/RainSong.3925.b

W95/RainSong.4262.b

W95/RainSong.4262.a

Worm (2)

W32/GenericIRC.worm

W32/Howeem.worm