McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4412
DAT Release Date	12/08/2004
Threats Detected	109850
New Detections	58
Enhanced Detections	315

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (11)

(1)

CRH3c

Application extension (1)

Keylog-Refog.dll

Dialer (1)

Joke (1)

Keylogger (1)

ProcKill (1)

ProcKill-PMaster

Tool (4)

Win32 (1)

Trojan (36)

(2)

Application extension (3)

Keylog-Spycorpse.dll

Keylog-Darto.dll

Configurator (1)

Keylog-Spycorpse.cfg

Downloader (4)

Dropper (4)

Keylog-Darto.dr

BackDoor-BAC.dr

AdClicker-BS.dr

Exploit (4)

Exploit-MS04-019

Linux/Exploit-Bysin

Linux/Exploit-Moos

Linux/Exploit-Nios

Generic (2)

BackDoor-CLO.gen

BackDoor-CEO.gen

Internet Relay Chat (1)

Keylogger (3)

Keylog-Spycorpse

Remote Access (5)

BackDoor-CJK!txt

Script (1)

Win32 (6)

QPass-A

QFav-2

BanBlock

Generic Dropper.f

Virus (11)

Application extension Generi (1)

W32/Maslan.dll.gen

Email (4)

W32/Maslan.b@MM

W32/Maslan.a@MM

W32/Maslan.c@MM

W32/Hobbit.g@MM

Email Generic (1)

W32/Maslan.gen@MM

Generic Worm (1)

W32/Gaobot.worm.gen.t

Intended Worm (1)

Internet Relay Chat (1)

Win32 (1)

Worm (1)

W32/Banwor.worm

Enhanced Detections:

- (1)

Adware (1)

Internet Worm (2)

P2P Worm (1)

W32/Generic.worm!p2p

Win32 (1)

Malware (1)

Exploit (1)

Exploit-CodeBase

Program (109)

(3)

CRH3b

- (1)

Adware (26)

Adware-KeenValue

Adware-RBlast.dldr

Adware-MemWatcher

Adware-Superbar

Adware-180Solutions

Adware-Websearch

Adware-SideSearch

Adware-PurityScan

Adware-Verticity

Adware-PopMonster

Adware-Nsupdate

Adware-WhenUSearch

Adware-ClickTrack

Dialer (2)

Downloader (6)

Adware-XPlugin.dldr

Adware-SRNG.dldr

Adware-Lop.dldr

Adware-Ezula.dldr

Adware-Websearch.dldr

Dropper (6)

Adware-NetPals.dr

Adware-RBlast.dr

Adware-XPlugin.dr

Adware-FreeComm.dr

Adware-Pribi.dr

Generic (2)

Dialer-RAS.cw.gen

ServU-Daemon.gen

Password (1)

Winspy

PornDialer (1)

Remote Access (1)

Settings Change (1)

Spam (1)

Spyware (1)

Spyware-DCToolbar

Tool (56)

Win32 (1)

LaSta

Trojan (104)

(13)

BDLogger

Generic BackDoor.d

Phish-BankFraud.eml

Generic Downloader.e

- (1)

Application extension (3)

Exploit-DcomRpc.dll

BackDoor-BAC.dll

Demonstration (1)

Exploit-MS04-028.demo

Downloader (7)

JS/Exploit-MhtRedir.ldr

PWS-Bancban.dldr

Dropper (9)

Bat/tenej.b2.dr

Bat/tenej.b1.dr

Downloader-SU.dr

AdClicker-AS.dr

MultiDropper-BF

BackDoor-CLO.dr

Exploit (5)

Exploit-DcomRpc

Exploit-MhtRedir.gen

Exploit-MS04-011

JS/Exploit-MhtRedir

Exploit-MS04-028

Generic (6)

Exploit-CodeBase.gen

JS/IEstart.gen.d

BackDoor-AMU.gen

BackDoor-BAC.gen

HackerDefender.gen

BackDoor-BAC.gen.b

Internet Relay Chat (2)

Keylogger (1)

Linux (1)

Linux/Fakepatch-A

Malware Tool (1)

Linux/Rootkit-D

Password (3)

PWS-WebMoney.gen

Password Stealer (2)

Proxy (1)

Remote Access (9)

Script (2)

Spyware (1)

Keylog-Perfect.dr

Win32 (36)

Generic Downloader.a

Generic BackDoor.b

Generic Downloader.c

Generic Downloader.k

ZapChast

Generic Downloader.g

Generic Downloader.f

Generic Keylogger.c

Generic BackDoor.k

Generic BackDoor.j

Generic Downloader.h

Generic BackDoor.o

Generic BackDoor.n

Virus (98)

(3)

Application extension (1)

Application extension Generi (1)

W32/Bagle.dll.gen

Boot (2)

Int.40

Int.C1

Damaged (1)

Damaged Worm (2)

W32/Gaobot.worm.dam

W32/Sdbot.worm.dam

Dropper (1)

E-mail (2)

W32/Dumaru.ad@MM

E-mail worm (5)

W32/Generic.a@MM

W32/Dumaru.y@MM

W32/Hobbit.c@MM

W32/Hobbit.b@MM

Email (19)

W32/Dumaru.aa@MM

W32/Dumaru.z@MM

W32/Hobbit.e@MM

W32/Hobbit.f@MM

W32/Hobbit.d@MM

W32/Dumaru.af@MM

W32/Dumaru.ab@MM

W32/Dumaru.ag@MM

W32/Dumaru.ae@MM

W32/Dumaru.ah@MM

W32/Dumaru.av@MM

W32/Dumaru.al@MM

W32/Dumaru.ak@MM

W32/Dumaru.aj@MM

W32/Dumaru.ai@MM

Email Generic (1)

W32/Atak.gen@MM

File Infector (1)

Generic

Floppy Worm (1)

W32/Rackum.worm

Generic Worm (20)

W32/Sdbot.worm.gen

W32/Gaobot.worm.gen.g

W32/Gaobot.worm.gen.f

W32/Gaobot.worm.gen.e

W32/Sdbot.worm.gen.w

W32/Spybot.worm.gen.f

W32/Gaobot.worm.gen.l

W32/Sdbot.worm.gen.n

W32/Sdbot.worm.gen.l

W32/Sdbot.worm.gen.j

W32/Sdbot.worm.gen.h

W32/Sdbot.worm.gen.m

W32/Sdbot.worm.gen.k

W32/Sdbot.worm.gen.i

W32/Sdbot.worm.gen.g

W32/Sdbot.worm.gen.x

W32/Eyeveg.worm.gen

W32/Sdbot.worm.gen.y

W32/Sdbot.worm.gen.t

W32/Gaobot.worm.gen.h

Heuristic (2)

New AOL

Intended (1)

W32/Hobbit.intd

Internet Worm (5)

W32/Hobbit.a@MM

W32/Gaobot.worm.ali

W32/Gaobot.worm.gen.q

MS Office Suite (1)

VBA/Generic.src

Parasitic (5)

W32/HLLP.Philis.d

W32/HLLP.Philis.c

W32/HLLP.Philis.f

W32/HLLP.Philis.b

W32/HLLP.Philis.a

Peer To Peer (1)

W32/Generic.c!p2p

Peer To Peer Worm (1)

W32/PMX.worm!p2p

VbScript (1)

Win32 (18)

Worm (3)

W32/Hobbit.worm

W32/Dedler.worm

W32/Sdbot.worm!ftp