McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4302
DAT Release Date	11/05/2003
Threats Detected	82187
New Detections	219
Enhanced Detections	165

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (36)

(1)

Generator.GCAE2

- (1)

Adware (8)

Adware-BetterInet

Adware-CommonName

Adware-eUniverse

Adware-UCSearch

Adware-TradeExit

Application extension (1)

Generic Dialer.dll

Dropper (1)

Adware-XPlugin.dr

Malware Tool (14)

Process (1)

Script (1)

Spyware (1)

Spyware-DCToolbar

Tool (2)

Win32 (5)

Morphine-Encrypted

RSBG

Trojan (63)

(4)

B2C.QD1

Hang

Ansibomb.creator

Application extension (4)

ProcKill-AT.dll

BackDoor-BBN.dll

BackDoor-BBL.dll

BackDoor-BAZ.dll

Configuration settings (1)

Configurator (1)

Downloader-FD.cfg

Downloader (7)

BackDoor-BBG.dldr

Downloader-CY.b

Dropper (5)

BackDoor-BBD.dr

IRC/Flood.dm.dr

MultiDropper-IG

MultiDropper-IF

MultiDropper-ID

Exploit (1)

UNIX/Exploit-GeekLog

Generic (1)

PWS-NetMail.gen

HTML (1)

Internet Relay Chat (4)

IRC/Flood.dm.iroffer

Keylogger (1)

Password Stealer (3)

PWS-IP

ProcKill (2)

Remote Access (13)

Script (4)

Bat/foyn

Bat/qz58

JV/GoPlanet.reg

IRC/Flood.bat.f

Server (1)

BackDoor-QQ.svr

StartPage (3)

Win31 (1)

Moulard

Win32 (6)

Del-412

Del-411

Zayan

Del-410

Virus (120)

(37)

UniTula

OC/bls

Maradona

Tudor

Kwlud

Ender

Crazy-Imp.1402a

Clau

Bass.c

Bass.a

Emmie

Tush.932

Tron

Jumpy

Green Dragon.878

Cramp

Bass.b

Boot (4)

LeapYear

Cripes

Floopy

Chinque

Companion (2)

Damaged (1)

Dropper (16)

PHX.dr

YD.dr

Murphy.David.dr

Mike.dr

Civil War.901.dr

W32/Sankey.c.dr

MultiDropper-IE

Dropper multipartite (1)

Plagiarist.mp.dr

Email (6)

W32/Mimail.h@MM

W32/Mimail.g@MM

W32/Mimail.f@MM

W32/Mimail.d@MM

W32/Mimail.b@MM

Email Generic (1)

W32/MyPower.gen@MM

Generic (2)

Generic Worm (1)

W32/Sexer.worm.gen

Internet Relay Chat (2)

Linux (1)

P2P Worm (1)

W32/Bereb.worm!p2p

Parasitic (1)

Peer To Peer (2)

Script (5)

JS/Sinop

Win32 (7)

Win9x (3)

Worm (27)

W32/Spybot.worm.qz

W32/Spybot.worm.qw

W32/Spybot.worm.qv

W32/Spybot.worm.rl

W32/Spybot.worm.rj

W32/Spybot.worm.rg

W32/Spybot.worm.re

W32/Gaobot.worm.bf

W32/Israz.worm.b

W32/Israz.worm.a

W32/Remabl.worm

W32/Spybot.worm.rn

W32/Spybot.worm.rm

W32/Spybot.worm.rc

W32/Spybot.worm.qx

W32/Spybot.worm.rk

W32/Spybot.worm.rf

W32/Spybot.worm.rd

W32/Spybot.worm.rb

W32/Spybot.worm.ra

W32/Spybot.worm.qy

W32/Spybot.worm.ri

W32/Nogard.worm

W32/Marjor.worm

W32/Bebars.worm.b

W32/Bebars.worm.a

Enhanced Detections:

Internet Worm (1)

Win32 (1)

W32/Benjamin.worm

Program (3)

(1)

Quarantine Message

Malware Tool (2)

Trojan (21)

- (1)

Client (1)

MacOS/BackDoor-Sub7.cli

Configurator (1)

MacOS/BackDoor-Sub7.cfg

Downloader (1)

Exploit (1)

Linux/Exploit-SSL

File deleting (1)

QDel351

Generic (1)

Downloader-DN.gen

Password (1)

Password Stealer (1)

PWS-DOB

Remote Access (8)

BackDoor-ATM.gen

BackDoor-Sub7.cgi

Script (1)

Server (2)

BackDoor-NM.svr

MacOS/BackDoor-Sub7.svr

StartPage (1)

Virus (140)

(46)

Andryushka.3568

Murphy.Goblin dr

Crazy Imp.1445b

Crazy Imp.1445a

Crazy Imp.1402a

Crazy Imp.1402b

V2PX.y

Renho

MPS-OPC

DSME.Connie.2800

Zombie/b

MPC.1022

BootDr3

RA.1574

MPC.665

TV.730

Supervisor.2906

BootDr1

Application extension (1)

Companion (2)

W32/HLL.cmp.169472

Configuration file (1)

Damaged (2)

Damaged Worm (1)

W32/Randex.worm.c.dam

Demonstration (1)

HPE.Demo

Dropper (18)

SMEG.dr

Trurl.dr

Nov17.dr

DSME.Connie.2800.dr

MDA.dr

Proto.dr

Dropper Intended (1)

W32/NGVCK.d.dr.intd

Dropper multipartite (1)

Dropper Overwriting (1)

E-mail worm (2)

Email (4)

Email Generic (2)

W32/Bibrog.gen@MM

W32/Naco.gen@MM

Email Generic Worm (1)

W32/Zokrim.worm.gen@MM

File Infector (5)

Pinworm

Vor

TV

Generic (6)

W95/Ylang.1536.gen

W32/Bolzano.gen.b

MPC.GR3

Wasp.GR

Generic Peer To Peer Worm (1)

W32/Gemel.worm.gen!p2p

Generic Worm (1)

W32/STD.worm.gen

Internet Worm (3)

W32/InvalidSSL@MM

Linux (3)

Linux/Spork.4096

Macro (1)

W97M/Minimal.bq

Malware Tool (2)

Pofu.Kit

multipartite (2)

Plagiarist.mp.2051

Plagiarist.mp.2014

Peer To Peer (1)

W32/HLLP.Savno!p2p

Peer To Peer Worm (2)

W32/Gammes.worm!p2p

W32/Duload.worm.c!p2p

Script (2)

VBS/Yova

Yoyo.bat

VbScript (1)

Win32 (14)

W32/Whitebait.gen@MM

W32/NGVCK.d.3072

W32/NGVCK.d.3587

W32/NGVCK.d.3582

Win9x (6)

W95/Ylang.1536dr

Worm (6)

W32/Bored.worm.a

W32/Bored.worm.b

W32/Sysdil.worm

W32/Randex.worm.c