Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4283
DAT Release Date 08/06/2003
Threats Detected 77927
New Detections 185
Enhanced Detections 87

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
Downloader-DM Low-Profiled Low-Profiled
W32/Lovsan.worm.d Low-Profiled Low-Profiled

New Detections:

- (1)
  Trojan (1)
    Haher
Program (16)
  Dialer (1)
    Dialer-RAS.az
  Downloader (1)
    Dialer-RAS.az.dldr
  Dropper (1)
    Dialer-RAS.ax.dr
  Generic (4)
    Dialer-RAS.bb.gen
    Dialer-RAS.bd.gen
    Dialer-RAS.ba.gen
    Dialer-RAS.bc.gen
  Joke (3)
    Errore joke
    Molesto joke
    Austral joke
  Malware Tool (4)
    VTool/ivl2
    HTool/sam
    HTool/nts4
    HTool/nts3
  Win32 (2)
    Virtual Bouncer
    NetCat
Trojan (47)
   (1)
    FakeGina
  - (2)
    Folding.bat
    Stealther
  Application extension (1)
    PWS-Likun.dll
  Client (1)
    BackDoor-AXV.cli
  Configurator (2)
    MultiDropper-GY.cfg
    MultiDropper-CY.cfg
  Dialer (1)
    QDial13
  Disk erasing (1)
    QZap329
  Downloader (1)
    Downloader-DL
  Dropper (11)
    MultiDropper-GY
    Downloader-DM
    Gaslide.dr
    Folding.dr
    MultiDropper-GZ
    MultiDropper-GX
    MultiDropper-GW
    PWS-Mir.dr
    MultiDropper-GV
    IRC/Flood.cu.dr
    IRC/Flood.ct.dr
  Exploit (1)
    JS/Exploit-Yamic
  File deleting (1)
    QDel340
  Flooder (1)
    IRC/FDoS-Galaxy
  Generic (1)
    Downloader-DE.gen
  Internet Relay Chat (5)
    IRC/Flood.cw
    IRC/Flood.cu
    IRC/Flood.ct
    IRC-Mutin
    IRC/Flood.cv
  Keylogger (1)
    Keylog-Toxicity
  Malware Tool (1)
    Linux/Rootkit-I
  Password Stealer (4)
    PWS-Hotfake
    PWS-QQMusic
    PWS-Zensor
    PWS-MSNPhuk
  Remote Access (2)
    BackDoor-AXW
    BackDoor-AXT
  Script (2)
    Bat/Raily
    VBS/EjectCD
  Server (1)
    BackDoor-AXV.svr
  Win32 (6)
    Disabler
    ICQlock
    Lulugren
    Kittex
    Zulu
    Gaslide
Virus (121)
   (25)
    Taiwan.752
    Taiwan.743
    Taiwan.708
    Jeru.2048
    Jeru.1808d
    Jeru.1705a
    Jeru.1636a
    Fu-Manchu.2080r
    V2PX.y
    ShiftObj.760b
    BootDr255
    Anticad.3004d
    Taiwan.677
    Jeru.1808.k
    Jeru.1812
    Jeru.1705b
    Jeru.1636b
    Ultimate.487b
    Requires
    Raubkopie.1888h
    Jeru.1238
    Vbasic.5120.r
    ShiftObj.760a
    Anticad.3012c
    Phemy
  Application extension Worm (1)
    W32/Sinis.worm.dll
  Companion Dropper (3)
    Clonewar.cmp.dr
    Lockjaw.cmp.dr
    Baby.cmp.b.dr
  Dropper (37)
    Nov17.dr
    Cruncher.dr.4800a
    Cruncher.dr.4000f
    Cruncher.dr.4000d
    Cruncher.dr.3955
    Cruncher.dr.2092
    VCCa.dr
    Trakia.dr
    Stealthboot.dr
    Riot.MMIR.dr
    Pollute.dr
    OC/u.dr
    MG3.dr
    Empire Monkey.dr
    Attitude.dr
    Crusade.dr
    Cruncher.dr.4000b
    Psychosis.dr
    Proto-T.dr
    MPS-OPC.dr
    Cruncher.dr.4800b
    Cruncher.dr.4006
    Cruncher.dr.4000e
    Cruncher.dr.4000c
    Cruncher.dr.4000a
    Cruncher.dr.3664
    Xany.345.dr
    VComm.dr
    PrS.dr
    Pixel.h.dr
    PHX.1015.dr
    Ninja.dr
    Lowercase.864.dr
    Krad.dr
    Dead.dr
    Asm.dr
    Amazon.dr
  Dropper multipartite (6)
    Ginger.Orsam.mp.dr
    Ginger.mp.dr
    Andropinis.mp.dr
    TPVO.mp.dr
    Smile.mp.dr
    MMIR.mp.dr
  Dropper Overwriting (2)
    Univ.ow/c.dr
    Shhs.ow.dr
  Dropper Parasitic (3)
    Skid.cav.dr
    Grog.cav.512.dr
    Funked.cav.dr
  E-mail (1)
    W32/Syney@MM
  E-mail worm (1)
    W32/Enegg@MM
  Email (2)
    W32/Pkasa.c@MM
    W32/Earlybird@MM
  Generic Peer To Peer Worm (1)
    W32/Mua.worm.gen!p2p
  Generic Worm (3)
    W32/Wotron.worm.gen
    W32/Nilit.worm.gen
    IRC/Fruit.worm.gen
  HTML document (1)
    VBS/Zulu.htm.g
  Intended (1)
    W32/Dropbox.intd
  Internet Relay Chat (1)
    IRC/Muzik.d
  Internet Relay Chat Worm (1)
    Dmsetup.worm!irc
  Internet Worm (7)
    W32/Tzet.worm
    W32/Lovsan.worm.e
    W32/Gaobot.worm.y
    W32/Gaobot.worm.z
    BAT/Mumu.worm.c
    W32/Lovsan.worm.f
    W32/Lovsan.worm.d
  JavaScript (1)
    JS/Dismissed
  Macro (1)
    WM/NJ-WMVCK2
  multipartite (2)
    Anticad.mp.4096.t
    Anticad.mp.4096.s
  Overwriting (1)
    W16/Dedivan.ow
  P2P Worm (1)
    W32/Habrack.worm!p2p
  Parasitic (2)
    W32/HLLP.Nity.a
    W32/HLLP.Nity.b
  Peer To Peer Worm (1)
    W32/Milcan.worm!p2p
  Script (7)
    Bat/Disom
    Bat/tee
    Bat/cbt5
    W32/Aops.bat
    VBS/Varin
    VBS/Funtas
    Bat/paw
  Win32 (4)
    W32/NGVCK.b.3400
    W32/Lestat
    W32/NGVCK.3400dr
    W32/Aops
  Worm (5)
    W32/Spybot.worm.kr
    W32/Spybot.worm.kp
    W32/Spybot.worm.kq
    W32/Adwa.worm
    W32/Sinis.worm

Enhanced Detections:

Internet Worm (1)
  mIRC Worm (1)
    IRC/Dmsetup
Program (5)
   (1)
    Generated.CPE
  Adware (1)
    Adware-HelpExpress
  Dialer (1)
    Dialer-RAS.as
  Malware Tool (1)
    HTool/RNK
  Win32 (1)
    Hiddukel
Trojan (27)
   (1)
    NoDOS
  Application extension (2)
    Spy-Hidukel.dll
    PWS-Rimd.dll
  Configurator (2)
    Downloader-CC.cfg
    MultiDropper-GA.cfg
  Downloader (1)
    Downloader-DE
  Dropper (6)
    MultiDropper-DO
    MultiDropper-GA
    BackDoor-ASV.dr
    IRC/Flood.cq.dr
    PWS-Rimd.dr
    IRC/Flood.cs.dr
  Generic (2)
    VB-BackDoor1.gen
    VB-BackDoor2.gen
  Internet Relay Chat (2)
    IRC/Flood.v
    IRC/Flood.cf
  Password (2)
    PWS-Rimd
    FakeGina.dll
  Remote Access (5)
    BackDoor-YT
    BackDoor-ASU
    BackDoor-TI
    BackDoor-AWY
    BackDoor-AXN
  Script (3)
    Bat/kb
    JS/Exploit
    JS/Seeker.t
  Win32 (1)
    AIM-Watch
Virus (54)
   (16)
    Simbioz
    ShiftObj.760
    Nov17.864
    Nov17.855a
    Nov17.800c
    Nov17.800b
    Nov17.706a
    Nov17.880
    Nov17.855b
    Nov17.800a
    Nov17.706b
    Nov17.690
    Coprite
    BootDr29
    Zherkov.a
    Vanitas
  Archive (1)
    Bat/sh.Zip16
  Com file (1)
    Cybesh.com
  Companion (1)
    Lockjaw.cmp.512
  Damaged (1)
    Danish Tiny.163.dam
  Dropper (5)
    Univ/o.dr
    Zherkov.a.dr
    NRLG.dr
    TMC.dr
    Kampana.dr
  File Infector (1)
    Gotcha
  Generic (1)
    JS/TheFly.gen
  HTML document (1)
    Cybesh.html
  Internet Relay Chat (1)
    IRC/Julie
  mIRC Worm (1)
    Elspy.worm
  multipartite (13)
    Anticad.mp.4096.j
    Anticad.mp.4096.e
    Anticad.mp.4096.d
    Anticad.mp.4096.f
    Anticad.mp.4096.l
    Anticad.mp.4096.h
    Anticad.mp.4096.g
    Anticad.mp.4096.a
    Anticad.mp.4096.i
    Anticad.mp.4096.k
    Anticad.mp.4096.m
    Anticad.mp.4096.b
    Anticad.mp.4096.c
  Script (6)
    JS/TheFly
    Apuli.bat
    Apuli.vbs
    W32/Scrambler.bat
    VBS/Ddeo
    VBS/Bother
  Win32 (3)
    W32/NGVCK.b.3072
    W32/NGVCK.b.4096a
    W32/NGVCK.b.4096b
  Worm (2)
    W32/Traitor.worm
    Elspy.worm.b