Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4269
DAT Release Date 06/04/2003
Threats Detected 73905
New Detections 244
Enhanced Detections 51

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
JS/Fortnight.c@M Low-Profiled Low-Profiled
W32/Auric@MM Low-Profiled Low-Profiled

New Detections:

- (1)
  Adware (1)
    Adware-RVP
Internet Worm (1)
  Worm (1)
    W32/Auric@MM
Malware (1)
  Downloader (1)
    PornDial-177.dldr
Program (18)
   (3)
    Picture-Terminal
    Picture-IllComm
    Picture-Dojo
  Adware (4)
    Adware-ISTbar.b
    Adware-SSF
    Adware-Whazit
    Adware-PeoplePal
  Joke (5)
    FakeFormat.e joke
    FakeFormat.d joke
    FakeFormat.c joke
    FakeFormat.b joke
    Burper joke
  Keylogger (2)
    Keylog-Ardamax
    Keylog-HomeKey
  Malware Tool (1)
    Kit-Sixzone
  Win32 (3)
    Remote Command
    NTServiceLoader
    Sniff-Listen
Trojan (86)
   (2)
    ABAP/Cadabra
    Nuravo
  - (1)
    QDial6
  Client (1)
    BackDoor-AUP.cli
  Configurator (4)
    MultiDropper-GA.cfg
    MultiDropper-FD.cfg
    MultiDropper-GD.cfg
    PWS-AIMFake.cfg
  Disk erasing (1)
    QZap253
  Downloader (4)
    Downloader-CP
    Downloader-CN
    Downloader-CQ
    Downloader-CO
  Dropper (13)
    Multidropper-GE
    BackDoor-AVC.dr
    MultiDropper-GF
    MultiDropper-GD
    MultiDropper-GC
    MultiDropper-GG
    MultiDropper-GA
    MultiDropper-FZ
    BackDoor-AUT.dr
    IRC/Flood.ch.dr
    IRC/Flood.cf.dr
    IRC/Flood.ce.dr
    IRC/Flood.cd.dr
  File deleting (3)
    QDel338
    QDel389
    QDel388
  Flooder (8)
    FDoS-IRCSpam
    FDoS-Xeno
    FDoS-HLife
    FDoS-Bnet
    FDoS-NetDem
    FDoS-DarkDB
    FDoS-Fofeet
    FDoS-Raptof
  Generic (7)
    ProcKill-Z.gen
    FDoS-Yahoo.gen
    BackDoor-AVH.gen
    BackDoor-XV.gen
    BackDoor-ATP.gen
    BackDoor-RB.gen
    BackDoor-IV.gen
  Internet Relay Chat (5)
    IRC/Flood.cg
    IRC/Flood.ch
    IRC/Flood.ch.hidewin
    IRC/Flood.cf
    IRC/Flood.ce
  Keylogger (1)
    KeyLog-GhostSpy
  Malware Tool (10)
    Spam-EBomb
    Spam-XYN
    Spam-MegaM
    Spam-Sheker
    Spam-Grad
    Spam-Aneg
    Spam-Bombita
    Kit-RRRACC
    Kit-Mutant
    Kit-Falckon
  mIRC client (1)
    IRC/Flood.cf.mirc
  Password Stealer (1)
    PWS-Dummy
  Remote Access (10)
    BackDoor-AUZ
    BackDoor-AVC
    BackDoor-AVB
    BackDoor-AUX
    BackDoor-AUT
    BackDoor-AVA
    BackDoor-AUY
    BackDoor-AUW
    BackDoor-AUV
    BackDoor-AUU
  Script (4)
    JS/Seeker.ab
    JS/Seeker.aa
    W32/Vifiter.bat
    QZap253.bat
  Server (3)
    BackDoor-AUF.svr
    BackDoor-NM.svr
    BackDoor-AUP.svr
  Spyware (1)
    Mxsender
  Win32 (6)
    Sniff-ICQip
    SMSFlood-Mehm
    QKey5
    DDoS-Gcomm
    DDoS-NeNet
    DDoS-FTrack
Virus (137)
   (7)
    Mutagen.v10.Test
    MG3
    MG1
    Dark Avenger.1160
    MG2
    Memlapse
    Maddas
  Dropper (1)
    W32/Chiton.k.dr
  E-mail worm (1)
    JS/Fortnight.c@M
  Email (3)
    W32/Mepog@MM
    JS/Netdex@M
    W32/Naco.e@MM
  Email Generic (1)
    W32/Naco.gen@MM
  Intended (1)
    W95/Roma.c.intd
  Internet Worm (1)
    W32/Naco.d@MM
  Macro (2)
    W97M/Poppo
    W97M/Toot
  Script (2)
    VBS/Loveletter.cy
    Bat/Interor
  Win32 (3)
    W32/Wohar
    W32/Chiton.k
    W32/BleBla
  Worm (115)
    W32/Spybot.worm.e
    W32/Spybot.worm.dk
    W32/Spybot.worm.ak
    W32/Spybot.worm.ba
    W32/Spybot.worm.av
    W32/Spybot.worm.at
    W32/Spybot.worm.ap
    W32/Spybot.worm.an
    W32/Spybot.worm.ad
    W32/Spybot.worm.ab
    W32/Spybot.worm.w
    W32/Spybot.worm.u
    W32/Spybot.worm.n
    W32/Spybot.worm.k
    W32/Spybot.worm.g
    BAT/Mumu.worm
    W32/Spybot.worm.by
    W32/Spybot.worm.ay
    W32/Spybot.worm.aw
    W32/Spybot.worm.aq
    W32/Spybot.worm.t
    W32/Spybot.worm.bu
    W32/Spybot.worm.bt
    W32/Spybot.worm.cl
    W32/Spybot.worm.ci
    W32/Spybot.worm.c
    W32/Spybot.worm.bw
    W32/Spybot.worm.ai
    W32/Spybot.worm.ac
    W32/Spybot.worm.aa
    W32/Spybot.worm.y
    W32/Spybot.worm.ax
    W32/Spybot.worm.as
    W32/Spybot.worm.aj
    W32/Spybot.worm.r
    W32/Spybot.worm.dl
    W32/Spybot.worm.di
    W32/Spybot.worm.df
    W32/Spybot.worm.db
    W32/Spybot.worm.cz
    W32/Spybot.worm.cx
    W32/Spybot.worm.ct
    W32/Spybot.worm.cr
    W32/Spybot.worm.cp
    W32/Spybot.worm.cv
    W32/Spybot.worm.cj
    W32/Spybot.worm.ch
    W32/Spybot.worm.cf
    W32/Spybot.worm.cd
    W32/Spybot.worm.bz
    W32/Spybot.worm.bx
    W32/Spybot.worm.bq
    W32/Spybot.worm.bo
    W32/Spybot.worm.bm
    W32/Spybot.worm.bk
    W32/Spybot.worm.bf
    W32/Spybot.worm.bd
    W32/Spybot.worm.bb
    W32/Spybot.worm.az
    W32/Spybot.worm.au
    W32/Spybot.worm.ar
    W32/Spybot.worm.ao
    W32/Spybot.worm.am
    W32/Spybot.worm.ah
    W32/Spybot.worm.af
    W32/Spybot.worm.ae
    W32/Spybot.worm.v
    W32/Spybot.worm.l
    W32/Spybot.worm.j
    W32/Spybot.worm.f
    W32/Spybot.worm.a
    W32/Vifiter.worm
    W32/Spybot.worm.bv
    W32/Spybot.worm.x
    W32/Spybot.worm.d
    W32/Spybot.worm.z
    W32/Spybot.worm.m
    W32/Spybot.worm.h
    W32/Spybot.worm.q
    W32/Spybot.worm.p
    W32/Spybot.worm.o
    W32/Spybot.worm.cb
    W32/Spybot.worm.ag
    W32/Spybot.worm.s
    W32/Spybot.worm.i
    W32/Spybot.worm.b
    W32/Spybot.worm.cn
    W32/Spybot.worm.dm
    W32/Spybot.worm.dj
    W32/Spybot.worm.dh
    W32/Spybot.worm.dc
    W32/Spybot.worm.da
    W32/Spybot.worm.cy
    W32/Spybot.worm.cw
    W32/Spybot.worm.cu
    W32/Spybot.worm.cs
    W32/Spybot.worm.cq
    W32/Spybot.worm.co
    W32/Spybot.worm.cm
    W32/Spybot.worm.ck
    W32/Spybot.worm.cg
    W32/Spybot.worm.ce
    W32/Spybot.worm.ca
    W32/Spybot.worm.bs
    W32/Spybot.worm.bp
    W32/Spybot.worm.bn
    W32/Spybot.worm.bl
    W32/Spybot.worm.bj
    W32/Spybot.worm.bi
    W32/Spybot.worm.bh
    W32/Spybot.worm.bg
    W32/Spybot.worm.be
    W32/Spybot.worm.bc
    W32/Sddrop.worm.h
    W32/MouseLoco.worm

Enhanced Detections:

Program (1)
  Dialer (1)
    PornDial-134
Trojan (18)
  Configurator (1)
    MultiDropper-FT.cfg
  Demonstration (1)
    Exploit-WinHelp.demo
  Dropper (7)
    MultiDropper-BC
    Reboot-S.dr
    Zendown.dr
    MultiDropper-FK
    MultiDropper-FT
    PWS-Shub.dr
    BackDoor-ATU.dr
  Internet Relay Chat (1)
    IRC/Flood.ac
  Password Stealer (1)
    PWS-Shub
  Remote Access (7)
    BackDoor-AVH
    BackDoor-ASI
    BackDoor-ALT
    BackDoor-XH
    BackDoor-RB
    BackDoor-AUF
    BackDoor-DE
Virus (31)
   (3)
    Mutagen.v12.Test
    Mutagen.v20.Test
    Griss
  Damaged (2)
    W32/Etap.dam
    W32/Lirva.dam
  Dropper (5)
    W32/Chiton.f.dr
    W32/Chiton.i.dr
    W32/Chiton.h.dr
    W32/Chiton.g.dr
    W32/Chiton.j.dr
  E-mail worm (1)
    W32/Duksten.o@MM
  Email (4)
    W95/Babylonia@M
    W32/Duksten.j@MM
    W32/Duksten.m@MM
    W32/Entangle@MM
  Generic (1)
    W32/Etap.gen
  Intended (1)
    W95/Babylonia.intd
  Internet Worm (2)
    W32/HLLP.Vampore.worm
    W95/MTX.gen@M
  P2P Worm (1)
    W32/Veedna.worm
  Parasitic (1)
    W32/HLLP.Hantaner
  Win32 (8)
    W32/Chiton.f
    W32/Zexam
    W32/Chiton.e
    W32/Chiton.i
    W32/Chiton.h
    W32/Chiton.g
    W32/Etap.d
    W32/Chiton.j
  Win9x (2)
    W95/CTX.10853
    W95/CTX.6886
Vulnerability (1)
  Exploit (1)
    Exploit-WinHelp