McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4380
DAT Release Date	07/21/2004
Threats Detected	94340
New Detections	221
Enhanced Detections	342

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
W32/Atak.b@MM	Low-Profiled	Low-Profiled

New Detections:

Program (8)

(1)

Dialer (1)

Downloader (1)

Tool (1)

Win32 (4)

RemAdm-WinUpNet

FPipe

Trojan (44)

(3)

AdClicker-AU!hosts

Application extension (3)

AdClicker-AU.dll

BackDoor-CGU.dll

StartPage-EF.dll

Application extension Generi (1)

PWS-Bancban.dll.gen

Downloader (4)

Dropper (7)

PWS-WebMoney.dr.a

IRC/Flood.el.dr

MultiDropper-KW

MultiDropper-KU

MultiDropper-KV

Exploit (3)

Linux/Exploit-Gildo

Linux/Exploit-A

File deleting (1)

Internet Relay Chat (1)

Proxy (1)

Remote Access (5)

Linux/BackDoor-Promptte

Linux/BackDoor-Oboy

Script (10)

Bat/ftpd

BackDoor-CGW.bat

Bat/chic

Bat/ank

StartPage (2)

Win32 (3)

Tutto

Del-456

Virus (169)

(129)

Xany.314

Wormsign

Piz.2036

Piz.1176

Exun

Evul.805

Delta

Andy

Yard.448

XRCE.822

VCM.364

Second Half.333

Rake.975

PP.2344

Pick.843

Kim.1000

Jura

Jet.544

DV.1895

Black-Daddy.1321.b

AntiCachacha.400

ADT.1778

ADT.1126

A2KM/Lea

Omsk

LLO.281

IOS.1290

Abdo.307

PP1

Gu.1594

Drava

Black-Daddy.1321.a

Beda.609

Atom.580

ADT.1765

ADT.1107

Aardwolf

YD.1961

Piz.2025

Orinoco

Iam

ARCV.330

Yoni.659

XRF

TTQ.1009

Quiz.494

Nympho

Nady

Mehr.786

Knave

Boot (1)

Spyryted

Boot dropper (2)

Damaged (3)

Wormsign.1710.dam

Downloader (1)

Dropper (4)

WinCE/Duts.1520.dr

E-mail worm (1)

Email (2)

Email Generic (1)

W32/Atak.gen@MM

Generic (2)

W32/Bagle!eml.gen

Won.GR

Generic Worm (1)

W32/Gorm.worm.gen

Linux (2)

Macro (1)

W97M/VGV

Parasitic (2)

WinCE/Duts.1520

Script (5)

Bat/Tiba

Win32 (8)

W32/Sober.g!zip.eml

Worm (4)

W32/Randon.worm.bc

W32/Korgo.worm.ab

W32/Randon.worm.bb

W32/Korgo.worm.aa

Enhanced Detections:

Internet Worm (9)

E-mail worm (6)

W32/Netsky.i@MM

W32/Netsky.b@MM

W32/Netsky.t@MM

W32/Netsky.s@MM

W32/Netsky.c@MM

W32/Netsky.a@MM

VbScript (1)

Win32 (1)

Worm (1)

W32/Polybot.gen!irc

Malware (1)

Exploit (1)

Exploit-CodeBase

Program (11)

(4)

VObj10

VObj9

VObj8

VObj7

Dialer (1)

Dialer-Generic.b

Downloader (1)

PosX

PornDialer (1)

Remote Access (1)

Win32 (3)

RemAdm-RemoteAdmin

Trojan (118)

(5)

Sunset

Plasming

Generic Keylogger

Generic Downloader.e

- (1)

Application extension (1)

PWS-LDPinch.dll

Configurator (2)

MultiDropper.cfg

MultiDropper-JG.cfg

Demonstration (1)

JS/Exploit-DialogArg.a.demo

Denial Of Svc (1)

DOS (1)

Downloader (4)

AdClicker-AF.dldr

JS/Keylog-Briss.ldr

Dropper (3)

Downloader-AE.dr

Exploit (31)

Exploit-ByteVerify

Linux/Exploit-SendMail

Linux/Exploit-Bind

Linux/Exploit-Cgiexp

Linux/Exploit-Kerio

Linux/Exploit-Shellcode

Linux/Exploit-Freeze

Linux/Exploit-Sqlexp

Linux/Exploit-Adminer

Linux/Exploit-Ciscer

Linux/Exploit-Mulexp

Linux/Exploit-BOrifice

Linux/Exploit-Httpd

Linux/Exploit-Gdslock

Linux/Exploit-TearDrop

Linux/Exploit-OpenSSH

Linux/Exploit-Nhttpd

Linux/Exploit-Modgz

Linux/Exploit-SSPing

Linux/Exploit-Openssl

Linux/Exploit-Imspd

Linux/Exploit-Rsync

Linux/Exploit-Apache

Exploit-MhtRedir.gen

Linux/Exploit-Su

Exploit-MS03-007

Linux/Exploit-Vertex

Exploit-Utilman

JS/Exploit-DialogArg.b

JS/Exploit-DialogArg.a

File deleting (1)

QDel365

Generic (9)

VBS/IEstart.gen.e

VBS/IEstart.gen.f

PWS-Bancban.gen.b

Exploit-ObjectData.gen

W32/Sdbot.gen.r

PWS-LegMir.gen.e

Malware Tool (1)

PWS-QQSender.kit

Parasitic (1)

Password (6)

PWS-WebMoney.gen

Password Stealer (2)

Proxy (1)

Remote Access (14)

BackDoor-UK.gen

Linux/BackDoor-Cym

Linux/BackDoor-Note.b

Linux/BackDoor-Note.a

Linux/BackDoor-Small

BackDoor-CAK.eml

Script (3)

Univ.script/99a

Spam (1)

StartPage (1)

Win32 (28)

Generic Downloader.a

Generic BackDoor.b

Generic BackDoor.h

DDoS-Asm

Generic BackDoor.c

QHosts-9

Kaland

Generic BackDoor.j

Generic QHosts.a

Virus (203)

(13)

OC/vcl

MPC

MtE

Light

Lesson

YD.1905

Spanska

Paraguay

WS

Application extension (1)

W32/Finaldo.dll

Damaged (5)

W32/Netsky.q.dam

W32/Lovgate.dam

W32/Netsky.c.dam

W32/Polybot.dam

W32/Lovgate.x.dam

Damaged Worm (3)

W32/Spybot.worm.dam

W32/Gaobot.worm.dam

W32/Sdbot.worm.dam

Defaced document Worm (1)

W32/CodeRed.worm.a.defaced

Dropper (5)

Suriv.dr

Rael.dr

E-mail (12)

W32/Netsky.w@MM

W32/Netsky.q@MM

W32/Netsky.u@MM

W32/Netsky.g@MM

W32/Netsky.l@MM

W32/Netsky.k@MM

W32/NetSky.h@MM

W32/Netsky.v@MM

W32/Netsky.y@MM

W32/Netsky.z@MM

W32/Netsky.ab@MM

W32/Lovgate.ah@MM

E-mail worm (13)

W32/Lovgate.f@M

W32/Netsky.n@MM

W32/Netsky.j@MM

W32/Netsky.o@MM

W32/Netsky.x@MM

W32/Netsky.e@MM

W32/Netsky.f@MM

W32/Netsky.d@MM

W32/Netsky.ac@MM

W32/Lovgate.ad@MM

W32/Lovgate.af@MM

W32/Lovgate.aj@MM

W32/Lovgate.ab@MM

Email (17)

W32/Lovgate.b@M

W32/Lovgate.g@M

W32/Lovgate.m@M

W32/Lovgate.n@M

W32/Lovgate.q@MM

W32/Lovgate.p@MM

W32/Lovgate.v@M

W32/Lovgate.t@MM

W32/Lovgate.u@MM

W32/Lovgate.w@M

W32/Netsky.ad@MM

W32/Lovgate.aa@MM

W32/Lovgate.ac@MM

W32/Lovgate.v@MM

W32/Lovgate.ae@MM

W32/Netsky.af@MM

Email Worm (3)

W32/Netsky.aa@MM

W32/Lovgate.ai@MM

W32/Lovgate.ag@MM

File Infector (5)

Ionkin

Deicide

Sistor

Generic (2)

X97M/Laroux.au.gen

Generic Worm (25)

W32/Sdbot.worm.gen

W32/Spybot.worm.gen.e

W32/Gaobot.worm.gen.k

W32/Gaobot.worm.gen.g

W32/Gaobot.worm.gen.f

W32/Gaobot.worm.gen.e

W32/CodeRed.worm.gen

W32/Spybot.worm.gen.i

W32/Spybot.worm.gen.a

W32/Gaobot.worm.gen.l

W32/Tumbi.worm.gen.b

W32/Sdbot.worm.gen.n

W32/Sdbot.worm.gen.l

W32/Sdbot.worm.gen.j

W32/Sdbot.worm.gen.h

W32/Sdbot.worm.gen.o

W32/Sdbot.worm.gen.m

W32/Sdbot.worm.gen.k

W32/Sdbot.worm.gen.i

W32/Sdbot.worm.gen.g

W32/Sdbot.worm.gen.u

W32/Sdbot.worm.gen.t

W32/Sdbot.worm.gen.p

W32/Sdbot.worm.gen.q

W32/Gaobot.worm.gen.h

Internet Worm (5)

W32/Polybot.l!irc

W32/Gaobot.worm.ali

W32/Gaobot.worm.gen.q

mIRC Worm (1)

W32/Protoride.worm

MS Office Suite (1)

VBA/Generic.src

Script (1)

Bat/flm

Universal (3)

Univ/b

Univ/a

Univ/j

VbScript (1)

Win32 (73)

W32/Paps

Worm (13)

W32/Lovgate.l@M

W32/Lovgate.a@M

W32/Lovgate.c@M

W32/Lovgate.s@MM

W32/Lovgate.x@MM

W32/CodeRed.worm.f

W32/CodeRed.worm.a

W32/CodeRed.worm.c

W32/CodeRed.worm.d

W32/CodeRed.worm.b

W32/Dedler.worm

W32/Lemoor.worm

W32/Yesenio.worm