McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4307
DAT Release Date	12/03/2003
Threats Detected	83138
New Detections	214
Enhanced Detections	178

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
W32/Mimail.l@MM	Low-Profiled	Low-Profiled

New Detections:

Program (44)

(2)

Tool/fmt

Cloner

Adware (6)

Adware-ToolbarCC

Adware-StatBlaster

Dialer (1)

Generic (2)

Dialer-RAS.cf.gen

Dialer-RAS.cg.gen

Internet Relay Chat (1)

Keylogger (2)

Keylog-ActiveKey

Malware Tool (11)

HTool/AOSFlooder

Script (1)

StartPage (1)

Tool (14)

Tool-PsybncScan

Win32 (3)

Nmap

Picture-Spanska

Medload

Trojan (79)

(6)

Vein

THC-TBC

Generic Dropper.b

Deshack

- (2)

StartPage-AD.dr

Bedrill

Application extension (1)

Keylog-Stawin.dll

Configuration settings (1)

Proxy-DistNet.ini

Dialer (1)

JS/Exploit-DialogExp

Disk erasing (4)

QZap349

QZap347

QZap350

QZap348

Downloader (2)

VBS/PWS-QQ.dldr

Dropper (4)

MultiDropper-IN

Proxy-DistNet.dr

Exploit (8)

JS/Exploit-Findeath

JS/Exploit-Linkiller

Exploit-WsBaseUrl

JS/Exploit-BodyRef

JS/Exploit-SaveRef

Exploit-ViaSWFurl

JS/Exploit-BadParent

JS/Exploit-AutoScan

File deleting (1)

Flooder (1)

Internet Relay Chat (1)

IRC-Ibot

JavaScript (1)

JS/AdClicker-AB

Keylogger (1)

Malware Tool (2)

THC.kit

Password (1)

Password Stealer (3)

PWS-GoldBalance

Proxy (1)

Remote Access (3)

Script (27)

Bat/blj

VBS/Noex

Bat/qz67

Bat/qz64

Bat/hid

Bat/dt66

Bat/dt65

Bat/cml

JS/Teve

Bat/qz66

Bat/qz65

Bat/qz63

Bat/msp

Bat/msk

Bat/fdae

Bat/dt67

Bat/coc

Win32 (8)

Spvr

HackerDefender.sys

Generic Dropper.a

Virus (91)

(7)

Danish Tiny.233

HLL.4432

HLL.3920

Application extension (5)

Boot dropper (1)

BtDr.Necrophilia

Companion (1)

Damaged (4)

X97M/Extras.dam

Damaged Worm (1)

W32/Spybot.worm.dam

Dropper (9)

Point.dr

VBS/Spy-Tofger.dr

E-mail (3)

W32/Mimail.m@MM

W32/Mimail.l@MM

Email (4)

W32/Sowsat.n@MM

W32/Mimail.k@MM

W32/BleBla.e@MM

Email Generic (3)

W16/Redteam.gen@MM

W32/Hunch.gen@MM

W32/Sdbot.gen@MM

Generic (1)

W95/Henky.Henze.gen

Internet Relay Chat (1)

W32/Matrixmovie!irc

Internet Worm (2)

W32/Alphx.worm.gen

W32/Lazi

Macro (11)

Overwriting (1)

Parasitic (1)

Peer To Peer (1)

Peer To Peer Worm (2)

W32/Specx.worm.e!p2p

W32/Reckus.worm.c!p2p

Script (3)

Bat/qsc

Unix (1)

Unpacked (1)

Win32 (12)

W32/Blandie!txt

Win9x (1)

Worm (15)

W32/Spybot.worm.tr

W32/Spybot.worm.tq

W32/Spybot.worm.tm

W32/Tzet.worm.e

W32/Spybot.worm.ub

W32/Spybot.worm.tp

W32/Spybot.worm.sz

W32/Propaganda.worm

W32/Niconor.worm

W32/Kuksec.worm

W32/Bolgimo.worm

W32/Xbotor.worm

W32/Cragard.worm

W32/Amivid.worm

Enhanced Detections:

Internet Worm (1)

P2P Worm (1)

Program (14)

Application extension (1)

Malware Tool (13)

Trojan (31)

(11)

THCK-TC

QRabid

Genesis

Froggie

Jan

THCK

Application extension (2)

PWS-Mirhunt.dll

Demonstration (1)

Kit-Revert.demo

Dropper (5)

MultiDropper-CE

BackDoor-AJX.dr

MultiDropper-CM

PWS-HackSoft.dr

Exploit (3)

JS/Exploit-FileProxy

JS/Exploit-Search

Exploit-HTA.Behind

File deleting (1)

QDel360

Malware Tool (2)

Password Stealer (1)

Remote Access (1)

Script (3)

Bat/dt64

Trojan (1)

Virus (132)

(7)

Generated.Spirit.b

HLL.4096

Logen

Kontragapi.2290

Kontragapi.2274

Boot (1)

Chinque

Companion (3)

Offspring.cmp.1138

Offspring.cmp.1135

Offspring.cmp.1127

Damaged (4)

W97M/Minimal.dam

Dropper (6)

Dropper Script (2)

E-mail worm (1)

W32/Nicehello@MM

Email (4)

Email Generic (1)

JS/Fortnight.gen@M

File Infector (2)

Generic (3)

W97M/Minimal.gen

Intended (3)

W97M/Minimal.bh.intd

VBS/Redlof.intd

X97M/Papa.a.intd

Internet Relay Chat (2)

IRC-Fyle

Internet Worm (2)

Macro (58)

W97M/Minimal.bu

W97M/Comical@MM

W97M/Minimal.bs

W97M/Minimal.at

W97M/Minimal.ax

W97M/Minimal.bj

W97M/Minimal.bg

W97M/Minimal.be

W97M/Minimal.bc

W97M/Minimal.ba

W97M/Minimal.ay

W97M/Minimal.an

W97M/Minimal.am

W97M/Minimal.ad

W97M/Minimal.bv

W97M/Minimal.bt

W97M/Minimal.au

W97M/Minimal.bf

W97M/Minimal.bd

W97M/Minimal.bb

W97M/Minimal.az

W97M/Minimal.ap

W97M/Minimal.ao

W97M/Minimal.al

W97M/Minimal.ak

W97M/Minimal.aa

W97M/Minimal.bm

W97M/Minimal.gv

W97M/Minimal.ch

W97M/Minimal.aw

W97M/Minimal.he

Overwriting (1)

Parasitic (1)

Peer To Peer Worm (6)

W32/Licia.worm!p2p

W32/Specx.worm.b!p2p

W32/Specx.worm.a!p2p

W32/Specx.worm.c!p2p

W32/Specx.worm.d!p2p

W32/Speedup.worm.d!p2p

Remote Access (1)

Script (3)

VBS/Rock

Trojan (1)

Futs

Unpacked (1)

Win32 (17)

Win9x (1)

W95/Henky.Henze

Worm (1)

W32/Legend.worm