McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4385
DAT Release Date	08/11/2004
Threats Detected	97156
New Detections	181
Enhanced Detections	521

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (60)

(14)

VMag48

VMag40

VMag38

VMag46

VMag44

VMag42

VMag47

VMag45

VMag43

VMag41

VMag39

Dialer (1)

Generic (1)

Dialer-RAS.dl.gen

Malware Tool (32)

PWCrack-MailBRu

PWCrack-WWWHack

PWCrack-Chanserv

PWCrack-Hotmail

Script (5)

Tool/dzd

Tool/cln

Tool/des

Tool/bwu

Tool (6)

Win32 (1)

PortScan-ScannersToy

Trojan (80)

(3)

Coff

B2E/nul

Application extension (2)

BackDoor-CHJ.dll

Configurator (3)

BackDoor-CDC.cfg

Disk erasing (2)

QZap365

QZap364

Downloader (3)

Dropper (3)

SymbOS/QDial26.dr

BackDoor-BDV.dr

Exploit (7)

Exploit-Messenger

Exploit-Orenosv

Exploit-IIS.Ida

Exploit-Locator

Flooder (2)

HTML (1)

HTML/Ebscam.eml

Internet Relay Chat (2)

Keylogger (2)

Malware Tool (10)

Kit-Mht

Password Stealer (2)

PWS-Msl

PDA Device (1)

Proxy (1)

Remote Access (17)

WinCE/BackDoor-CHK

VBS/BackDoor-BDM

Linux/BackDoor-Regile

Bat/BackDoor-BDM

Script (12)

Bat/ping

Bat/pass

BAT/Noxi

StartPage (3)

Win32 (4)

Regger

Virus (41)

(10)

PP2

HLL.3936

SEEG.458

Companion (1)

Companion Dropper (1)

HLL.cmp.666.drp

Downloader (1)

Downloader Worm (1)

W32/Myfip.worm.ldr

Dropper (2)

Cesspool.kod.drpd

E-mail (1)

Email (7)

W32/Mydoom.r@MM!zip

W32/Evaman.b@MM

W32/Evaman.a@MM

W32/Plexus.e@MM

Email Generic (1)

W32/Evaman.gen@MM

Generic (1)

Script (2)

VBS/Yeno

Win32 (4)

Worm (9)

HLLW.Codex.36011

HLLW.Cesspool.10560

HLLW.Cesspool.5296

W32/Randon.worm.bf

W32/Randon.worm.be

W32/Stewon.worm

Enhanced Detections:

Internet Worm (3)

- (1)

W32/Mydoom.p@MM

SQL worm (1)

W32/SQLSlammer.worm

VbScript (1)

Malware (3)

Denial Of Svc (1)

Exploit (1)

Exploit-CodeBase

Win32 (1)

Program (88)

(36)

VSource

VMag32

VMag30

VMag28

VMag26

VMag24

VMag20

VMag18

VMag15

VMag14

VMag12

VMag10

VMag5

VMag31

VMag29

VMag25

VMag23

VMag21

VMag19

VMag17

VMag13

VMag11

VMag9

VMag4

Simulated Virus

VMag37

VMag35

VMag33

VMag36

VMag34

VMag8

VMag6

Vmag2

VMag1

VMag7

VMag3

Adware (1)

Adware-Holistyc

Dialer (1)

Downloader (1)

PosX

Generic (1)

Dialer-RAS.by.gen

Joke (1)

Malware Tool (7)

PornDialer (1)

Remote Access (1)

Script (1)

VMag16

Tool (32)

Win32 (5)

iGetNet

SrvAny

RemAdm-RemoteAdmin

Trojan (295)

(3)

Generic BackDoor.d

- (3)

Application extension (6)

StartPage-EF.dll

BackDoor-ACH.dll

Application extension Droppe (1)

W32/Bagle.dll.dr

Application extension Generi (1)

BackDoor-AXJ.dll.gen

Configurator (3)

PWS-AIMFake.cfg

Damaged (1)

BackDoor-CA.dam

Demonstration (1)

JS/Exploit-DialogArg.a.demo

Downloader (6)

Dropper (9)

VBS/Inor

BackDoor-ACH.dr

IRC/Flood.cl.dr

MultiDropper-IM

W97M/PWS-Hooker.dr

MultiDropper-KR

BackDoor-ASB.dr

Dropper Generic (1)

IRC-Sdbot.dr.gen

Exploit (11)

Exploit-MS03-043

Exploit-ByteVerify

Exploit-Dameware

Exploit-MS04-007

Exploit-MhtRedir.gen

Exploit-IIS.Print

Exploit-IIS.SSLBuff

JS/Exploit-DialogArg.b

JS/Exploit-DialogArg.a

File deleting (1)

QDel366

Flooder (62)

FDoS-P2k

FDoS-DAP

FDoS-STU

FDoS-MK3

FDoS-GCS

Generic (10)

BackDoor-AGS.gen

VBS/IEstart.gen.e

JS/IEstart.gen.d

PWS-Bancban.gen.b

IRC/Flood.gen.b

JS/Seeker.gen.m

VBS/RunScript.gen2

BackDoor-BAC.gen

Spy-Tofger.gen.b

Heuristic (2)

HTML (1)

Internet Relay Chat (9)

IRC/Flood.cl.hidewin

JavaScript (1)

Malware Tool (66)

Spam-VDX

Spam-DMB

Nuke-QQ

Nuke-AIC

Spam-XYN

Password (8)

Password Stealer (5)

PWS-Ges

Remote Access (24)

Linux/BackDoor-Cym

Linux/BackDoor-Note.b

Linux/BackDoor-Note.a

Linux/BackDoor-Small

Linux/BackDoor-Promptte

Linux/BackDoor-Oboy

Script (7)

Univ.script/99c

Univ.script/99a

New CardStealer

VBS/Piky

VBS/Bing

JS/AdClicker-AO

Server (3)

BackDoor-WF.svr.rmv

BackDoor-WF.svr

BackDoor-CA.svr

Settings Change (2)

Source code (1)

MultiDropper-LB.src

Spyware (1)

StartPage (30)

VbScript (1)

Win32 (15)

Reboot-Z

Generic BackDoor.b

Generic BackDoor.e

Smith

FillMem

QUrl-2

Virus (132)

(5)

needs more cleaning

HLL

Monster

Companion (2)

HLL.cmp

Damaged (2)

Damaged Worm (2)

W32/Gaobot.worm.dam

W32/Sdbot.worm.dam

Downloader (1)

Dropper (2)

Dropper Worm (1)

W32/SQLSlammer.worm.dr

E-mail (12)

W32/Mydoom.b@MM

W32/Mydoom.h@MM

W32/Mydoom.e@MM

W32/Dumaru.ad@MM

W32/Mydoom.o@MM

W32/Evaman.c@MM

W32/Bagle.af@MM

W32/Bagle.ai@MM

W32/Bagle.ad@MM

W32/Mydoom.k@MM

E-mail worm (14)

W32/Dumaru.y@MM

W32/Mydoom.g@MM

W32/Mydoom.f@MM

W32/Bagle.aa@MM

W32/Bagle.ag@MM

W32/Bagle.ah@MM

Email (27)

W32/Dumaru.aa@MM

W32/Dumaru.z@MM

W32/Mydoom.i@MM

W32/Bagle.al@MM

VBS/LoveLetter.cu@MM

W32/Dumaru.af@MM

W32/Dumaru.ab@MM

W32/Dumaru.ag@MM

W32/Dumaru.ae@MM

W32/Mydoom.j@MM

W32/Dumaru.ah@MM

W32/Lovgate.v@M

W32/Mydoom.p@MM!zip

W32/Mydoom.o@MM!zip

W32/Mydoom.a@MM

W32/Mydoom.m@MM

W32/Mydoom.l@MM

W32/Dumaru.av@MM

W32/Bagle@MM!vbs

W32/Plexus.c@MM

W32/Plexus.d@MM

W32/Plexus.b@MM

W32/Dumaru.al@MM

W32/Dumaru.ak@MM

W32/Dumaru.aj@MM

W32/Dumaru.ai@MM

Email Generic (4)

VBS/Haptime.gen@MM

W32/Mydoom.gen@MM

W32/Bagle.gen@MM!pwdzip

W32/Plexus.gen@MM

Email Worm (1)

W32/Mydoom.r@MM

File Infector (1)

Generic (6)

VBS/Dismissed.gen

VBS/LoveLetter.gen

VBS/PIRCHdropper.gen

VBS/MIRCdropper.gen

W32/Sdbot.gen.r

Generic Worm (14)

W32/Gaobot.worm.gen.g

W32/Gaobot.worm.gen.f

W32/Gorm.worm.gen

W32/Sdbot.worm.gen.w

W32/Gaobot.worm.gen.l

W32/Sdbot.worm.gen.j

W32/Sdbot.worm.gen.h

W32/Sdbot.worm.gen.o

W32/Sdbot.worm.gen.k

W32/Sdbot.worm.gen.i

W32/Sdbot.worm.gen.x

W32/Sdbot.worm.gen.u

W32/Sdbot.worm.gen.t

W32/Sdbot.worm.gen.p

Heuristic (4)

New AOL

Intended (1)

Internet Relay Chat (1)

Internet Worm (5)

W32/Plexus.a@MM

W32/Gaobot.worm.gen.q

mIRC Worm (1)

W32/Protoride.worm

Open Share Worm (1)

W32/Dedler.worm.gen

Peer To Peer (1)

W32/Generic.c!p2p

PowerPoint Macro (1)

Remote Access (1)

W32/Backdoor-CFB

Script (2)

JS/Debt

Universal (1)

Univ/j

VbScript (2)

VBS/Loveletter@MM

New VBS

Win32 (13)

W32/Bagle.o!proxy

W32/Bagle.aj!proxy

W32/Gobi

Worm (4)

W32/Generic.worm.b

W32/Frear.worm!txt

W32/Dedler.worm