Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4277
DAT Release Date 07/16/2003
Threats Detected 76586
New Detections 252
Enhanced Detections 110

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
Proxy-Migmaf Low-Profiled Low-Profiled
Downloader-DI Low-Profiled Low-Profiled

New Detections:

Joke (1)
  Win32 (1)
    Bluescreen.b joke
Malware (1)
  Win32 (1)
    Proxy-Migmaf
Program (15)
   (1)
    Chathack
  Adware (2)
    Adware-DFC
    Adware-RBlast.dldr
  Generic (1)
    Dialer-RAS.at.gen
  Joke (1)
    Lamicho joke
  Malware Tool (7)
    VTool/cha
    VTool/buster
    VTool/assp
    HTool/nord
    VTool/bbg
    HTool/pfr
    HTool/hpad
  Unix (1)
    Unix/shttpd
  Win32 (2)
    Renamed mIRC Client
    Packed mIRC Client
Trojan (100)
   (8)
    Waft
    Morfeus
    Kela17
    Blanker2
    KGB
    Brio
    BBS.Dextron
    Alasantos
  - (1)
    QDial12
  Application extension (7)
    AFXrootkit.dll
    BackDoor-AXJ.dll
    BackDoor-AWQ.dll
    Spy-Antaz.dll
    PWS-Wexd.dll
    BackDoor-AWW.dll
    PWS-Pasorot.dll
  Client (1)
    MSNLogThief.cli
  Configurator (3)
    Downloader-CZ.cfg
    MSNLogThief.cfg
    BackDoor-AWT.cfg
  Dialer (1)
    Dial-12
  Downloader (8)
    Downloader-GF
    Downloader-DB
    Downloader-DA
    Downloader-DC
    Downloader-DF
    Downloader-DD
    Downloader-CZ
    Downloader-BW.g
  Dropper (11)
    MultiDropper-GP
    AFXrootkit.dr
    MultiDropper-GQ
    BackDoor-AWQ.dr
    MultiDropper-GR
    PWS-QQcv.dr
    PWS-Pasorot.dr
    PWS-HackSoft.dr
    PWS-QQCave.dr
    IRC/Flood.cp.dr
    IRC/Flood.cq.dr
  Flooder (1)
    FDoS-Atho.f
  Generic (5)
    PWS-QQCave.gen
    BackDoor-WB.gen
    JV/IEStart.gen
    Proxy-Migmaf.gen
    BackDoor-AWX.gen
  Internet Relay Chat (4)
    IRC/BackDoor.i
    IRC/Flood.cq
    IRC/Flood.cp
    IRC/Flood.bc.hidewin
  Malware Tool (2)
    Nuke-Ebeg
    Nuke-Acid
  mIRC client (1)
    IRC/Flood.bz.mirc
  Password (3)
    PWS-LegMir
    PWS-QQNum
    PWS-Wexd
  Password Stealer (6)
    PWS-QQDrag
    PWS-QQcv
    PWS-Cslam
    PWS-QQHack
    PWS-Organer
    PWS-Kitspy
  ProcKill (1)
    ProcKill-AK
  Remote Access (14)
    BackDoor-AXJ
    Lockme
    BackDoor-AXC
    BackDoor-AWW
    BackDoor-AWQ
    BackDoor-AXD
    BackDoor-AXB
    BackDoor-AWY
    BackDoor-AWV
    BackDoor-AWS
    BackDoor-AWZ
    BackDoor-AWU
    BackDoor-AWT.srv
    BackDoor-AWR
  Script (8)
    Bat/sdel
    Bat/zz9.blue
    Bat/dt42
    Bat/dt41
    Bat/dak
    Bat/conf
    Bat/adm2
    JS/Seeker.ac
  Server (1)
    MSNLogThief.svr
  Spam (1)
    Downloader-DI
  StartPage (2)
    StartPage-P
    StartPage-O
  Unix (2)
    UNIX/Sorso
    UNIX/Sorso.sh
  Win32 (9)
    Generic VB
    Spy-Antaz
    Del-401
    Del-340
    Generic MSVC
    DRevenge
    Del-400
    Ickboy
    Belnow.d
Virus (135)
   (18)
    Akuku.1111a
    OC/sst
    Morose
    Mag.239
    BootDr252
    BootDr250
    HLLT.Inna.6928
    HLLT.Inna.6648b
    HLLT.Inna.6648a
    HLLT.Inna.5283
    Alabama.1560.e
    Union.1531
    Mnemonix.416
    Gunia.836a
    BootDr251
    Baphos
    HLLT.Inna.7360
    HLLT.Weed.3263g
  Boot (1)
    Lostman
  Companion (2)
    W32/Warray.cmp.a
    W32/Corn.cmp
  Damaged (1)
    W32/Highway.dam
  Dropper (14)
    PHB.dr
    BW.dr
    BitAddict.dr
    Baphos.dr
    HLLT.Weed.dr
    Bat/zzq.dr
    Bat/falk.dr
    W95/Ylang.dr
    Gotcha.dr
    PFL.dr
    OC/f.dr
    Black-Jec.dr
    W32/Wratch.dr
    W32/Opdoc.dr
  Dropper multipartite (2)
    Ontario.mp.dr
    Max.mp.dr
  Dropper Parasitic (1)
    W95/Noise.cav.dr
  Email (7)
    W32/Rine.c@MM
    W32/Rine.a@MM
    W32/Nool@M.b
    W32/Rine.b@MM
    W32/Pluto.c@MM
    W32/Nool@M.a
    Arica@MM
  Generic (3)
    VBS/Happy.gen
    W32/Velost.gen
    W32/Graps.gen
  Generic Overwriting (1)
    W32/Swog.ow.gen
  Generic Worm (3)
    W32/Warpi.worm.gen
    W32/Gool.worm.gen
    W32/EnerKaz.worm.gen
  Internet Worm (1)
    W32/Warpi.worm.b
  multipartite (1)
    Flip.mp.2343a
  Parasitic (4)
    Snooty.cav
    HLLP.5667b
    HLLP.5667a
    W95/Noise.cav.399
  Partition (1)
    Sooty
  Script (4)
    PHP/Zodar
    VBS/Silba
    VBS/Daygre
    Bat/zzq
  Unpacked (4)
    HLLP.5667b.unp
    HLLP.5667a.unp
    HLLT.Inna.5283.unp
    HLLP.5668.unp
  Win32 (15)
    W32/Wratch
    W32/Voodoo.7045j
    W32/Vcell.3041
    W32/Snowmoon.b
    W32/Slaman
    W32/Rous.d
    W32/Opdoc
    W32/NGVCK.a.3146
    W32/NGVCK.3146dr
    W32/Snowmoon.a
    W32/NGVCK.a.1991
    W32/Kespy
    W32/Idyll.1597
    W32/Hortiga.b
    W32/Hortiga.a
  Win9x (4)
    W95/Yildiz.416
    W95/Yildiz.446
    W95/Sadon.867
    W95/Sadon.900
  Worm (48)
    W32/Spybot.worm.ji
    W32/Spybot.worm.kg
    W32/Spybot.worm.kd
    W32/Spybot.worm.kb
    W32/Spybot.worm.jw
    W32/Spybot.worm.jt
    W32/Spybot.worm.jr
    W32/Spybot.worm.jl
    W32/Spybot.worm.jj
    W32/Spybot.worm.je
    W32/Spybot.worm.jg
    W32/Spybot.worm.jf
    W32/Spybot.worm.jd
    W32/Spybot.worm.jb
    W32/Spybot.worm.kh
    W32/Spybot.worm.kf
    W32/Spybot.worm.kc
    W32/Spybot.worm.ka
    W32/Spybot.worm.jz
    W32/Spybot.worm.jx
    W32/Spybot.worm.ju
    W32/Spybot.worm.js
    W32/Spybot.worm.jq
    W32/Spybot.worm.jn
    W32/Spybot.worm.jk
    W32/Spybot.worm.jh
    W32/Spybot.worm.jc
    W32/Spybot.worm.jp
    Bat/Primad.worm
    W32/Spear.worm.k
    W32/Nilit.n.worm
    W32/Mua.worm.c
    W32/Theug.worm
    W32/Stinbot.worm
    W32/Sever.worm
    W32/Ronoper.worm.p
    W32/Pwned.worm
    W32/Nilit.m.worm
    W32/Nessy.worm
    W32/Mua.worm.b
    W32/Melder.worm
    W32/MagicCall.worm
    W32/Logex.worm
    W32/Grandspot.worm
    W32/Gosock.worm
    W32/DataRape.worm
    W32/Mua.worm.a
    W32/Losiram.worm

Enhanced Detections:

Trojan (29)
   (1)
    BBS.Kisel
  Configurator (1)
    MultiDropper-FK.cfg
  Dropper (3)
    Bat/rat.dr
    IRC/Flood.bz.dr
    Mxsender.dr
  File deleting (1)
    QDel140
  Internet Relay Chat (4)
    IRC/Flood.j
    IRC/Flood.f
    IRC/Flood.bz
    IRC/Flood.cj
  Keylogger (1)
    Keylog-Tiberius
  Malware Tool (2)
    THM.kit
    Spam-DBomber
  mIRC client (1)
    IRC/Flood.bc.mirc
  Parasitic (1)
    Bat/rat.apd
  Password Stealer (2)
    PWS-OverG
    PWS-Hearty
  Remote Access (3)
    BackDoor-AUZ
    BackDoor-ASG
    BackDoor-ABS
  Script (6)
    Bat/v
    Bat/rat
    Bat/adm
    Bat/rat.sub
    Bat/crs
    Bat/zz9
  Server (1)
    BackDoor-AEZ.svr
  Win32 (2)
    IRC-Sahgra
    CGIPager-A
Virus (81)
   (32)
    HLLT.5283a
    Weed
    HLL.8224
    Lucretia.2563
    OC/eh
    OC/dt
    Varna.450
    Crunch
    OC/el
    OC/ei
    OC/ef
    EOCB
    OC/ej
    OC/eg
    OC/ed
    OC/ea
    OC/dy
    OC/dw
    OC/dv
    OC/du
    OC/ds
    OC/dr
    OC/dp
    OC/bo
    OC/ee
    OC/ec
    OC/dx
    OC/dq
    OC/aw
    OC/o
    Gunia.836
    OC/av
  Application extension Worm (1)
    W32/MoFei.worm.dll
  Boot (1)
    Michelangelo.Sebek
  Companion (1)
    W32/Warray.cmp
  Configuration settings (1)
    Bat/a.ini
  Damaged (1)
    Weed.dam
  Dropper (5)
    Rape.dr
    AntiLame.dr
    Bat/a.dr
    Honi.dr
    Bat/a.drp
  Dropper multipartite (1)
    Ithaqua.mp.dr
  E-mail worm (1)
    W32/Colevo@MM
  Email (1)
    VBS/Kivi@M
  File Infector (1)
    Viper
  Generic (3)
    W32/Savior.gen
    VBS/Pica.gen
    W32/Highway.gen
  Intended (4)
    W32/Voodoo.d.intd
    W32/Voodoo.b.intd
    W32/Voodoo.c.intd
    W32/Voodoo.a.intd
  Malware Tool (1)
    OC/ed.kit
  mIRC Worm (1)
    VBS/Aphex
  multipartite (6)
    Flip.mp.2343
    Tea.mp.1024
    Ontario.mp.2043
    Ontario.mp.2052a
    Ontario.mp.2052b
    Ontario.mp.2048
  multipartite Overwriting (1)
    Kitana.mp.ow
  Script (4)
    Bat/CopyBat
    Bat/de.1638
    Bat/ks
    Bat/de.1620
  Unpacked (1)
    HLLT.5283a.unp
  Win32 (12)
    W32/Maya.4153dr
    W32/Maya.2256
    W32/Maya.2247
    W32/Maya.2251
    W32/Voodoo.7045f
    W32/Voodoo.7045c
    W32/Voodoo.7045d
    W32/Vcell.3468
    W32/Voodoo.7045i
    W32/Voodoo.7045b
    W32/Voodoo.7045a
    W32/Vcell.3504
  Win9x (2)
    W95/Yildiz.331
    W95/Yildiz.323