Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4315
DAT Release Date 01/16/2004
Threats Detected 84550
New Detections 226
Enhanced Detections 86

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
Downloader-GN Low-Profiled Low-Profiled
W32/Zar@MM Low-Profiled Low-Profiled

New Detections:

Program (23)
   (9)
    VSource.Robocop
    VSource/pas6
    VSource/pas4
    VSource/pas2
    VSource.Laroux
    VSource.Appder
    VSource/pas5
    VSource/pas3
    VSource/pas1
  Adware (5)
    Adware-Holistyc
    Adware-CNBar
    Adware-Nsupdate
    Adware-FreeComm
    Adware-DDM
  Downloader (1)
    Adware-FreeComm.dldr
  Dropper (2)
    Adware-SAHAgent.dr
    Adware-EZSearch.dr
  Generic (2)
    Dialer-RAS.cq.gen
    VSource.Gravity
  Joke (2)
    Monica joke
    Fire joke
  Malware Tool (1)
    HTool/cpc
  Win32 (1)
    Aldscan
Trojan (28)
  Application extension (3)
    StartPage-AT.dll
    Xombe.dll
    Downloader-DA.dll
  Configurator (1)
    Downloader-GG.cfg
  Downloader (1)
    Downloader-GN
  Exploit (11)
    Linux/Exploit-BOrifice
    Linux/Exploit-Httpd
    Linux/Exploit-Gdslock
    Linux/Exploit-TearDrop
    Linux/Exploit-OpenSSH
    Linux/Exploit-Nhttpd
    Linux/Exploit-Modgz
    Linux/Exploit-SSPing
    Linux/Exploit-Openssl
    Linux/Exploit-Imspd
    Linux/Exploit-Rsync
  Generic (1)
    Downloader-GG.gen
  Linux (2)
    Linux/Hacktop
    Linux/DoS-Halflife
  Password Stealer (1)
    PWS-Ainder
  ProcKill (1)
    ProcKill-BJ
  Script (2)
    Bat/Attrib
    JS/AdClicker-AF
  Win32 (5)
    Tuoraw
    Seb
    Narat
    DiskFill-M
    Arty
Virus (26)
  Dropper (2)
    Miny.dr
    Pixel.Hydra.dr
  E-mail worm (1)
    W32/Zar@MM
  Email (1)
    W32/Mimail.a@MM
  Generic Worm (1)
    W32/Gaobot.worm.gr
  Script (2)
    JS/Cassan
    VBS/Riosys
  Worm (19)
    W32/Gaobot.worm.gw
    W32/Spybot.worm.ym
    W32/Spybot.worm.yk
    W32/Alcop.bg.worm
    W32/Generic.worm.b
    W32/Spybot.worm.yl
    W32/Gaobot.worm.gx
    W32/Gaobot.worm.gu
    W32/Gaobot.worm.gs
    W32/Gaobot.worm.gq
    W32/Gaobot.worm.gk
    W32/Gaobot.worm.gh
    W32/Gaobot.worm.ha
    W32/Gaobot.worm.gv
    W32/Gaobot.worm.gt
    W32/Gaobot.worm.gl
    W32/Gaobot.worm.gj
    W32/Gaobot.worm.gg
    W32/Spybot.worm.yn

Enhanced Detections:

Program (1)
  Unix (1)
    Unix/shttpd
Trojan (18)
  Dropper (5)
    MultiDropper-CP
    MultiDropper-GL
    MultiDropper-GQ
    BackDoor-AYH.dr
    BackDoor-AVC.dr
  Linux (4)
    Linux/DoS-Arang
    SunOS/DDoS-Tfn
    DDoS-Ris
    Linux/DDoS-Mstream
  Password Stealer (2)
    Linux/PWS-Lala
    PWS-Pirt
  Remote Access (7)
    BackDoor-AYH
    BackDoor-AXP
    BackDoor-AVC
    Unix/BackDoor-Ping
    Unix/BackDoor-Ldoor
    Unix/BackDoor-BS
    Unix/BackDoor-BFishy
Virus (47)
   (3)
    Gidra
    Logic.b
    Logic.a
  Application extension Email (1)
    W32/Hybris.dll@MM
  Auto CAD (1)
    ACAD/Star
  Damaged Parasitic (1)
    W95/Apop.cav.dam
  Dropper (6)
    Tumen.dr
    Alabama.dr
    Red Devil.dr
    W95/Poshkill.dr
    PetTick.dr
    Tequila.dr
  Dropper Intended (1)
    W95/Iced.dr.intd
  Email (2)
    W32/Grifout@MM
    VBS/Genarn@MM
  Email Plugin component (1)
    W32/Hybris.plugin@MM
  Generic (1)
    IRC/Drimwa.gen
  Generic Parasitic (1)
    W95/Federal.cav.gen
  Intended (1)
    VBS/Pookins.intd
  JavaScript (1)
    JS/Dismissed.gen
  Macro (2)
    W97M/Drewet
    X97M/Neg.i
  Malware Tool (1)
    Bat/phe.kit
  multipartite (1)
    W32/Orochi.mp
  Parasitic (3)
    W95/Sill.cav
    W95/Federal.cav.b
    W95/Federal.cav.a
  Script (4)
    Bat/BackZat
    W32/Danvee.bat
    VBS/VBSWG.as
    VBS/VBSWG.at
  Server (1)
    W95/MTX.svr
  Win32 (3)
    W32/Freefall
    W32/RemExp
    W32/Plex
  Win9x (10)
    W95/Markj.b
    W95/Libertine
    W95/Iced.2168
    W95/Iced.2116
    W95/Iced.1376
    W95/Iced.1344
    W95/Iced.1412
    W95/Markj.a
    W95/Iced.1617
    W95/Iced.2112
  Worm (2)
    IRC/Projax.worm
    Linux/Adm.worm