McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4432
DAT Release Date	02/23/2005
Threats Detected	117143
New Detections	193
Enhanced Detections	268

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (85)

(72)

Cookie-Valueclick

Cookie-Targetnet

Cookie-Sageanalyst

Cookie-Roiservice

Cookie-Questionmarke

Cookie-Mgnetwork

Cookie-Liveperson

Cookie-Imrworldwide

Cookie-Humanclick

Cookie-Exitexchange

Cookie-Doubleclick

Cookie-Customcoupon

Cookie-Clicktracks

Cookie-Centrport

Cookie-Bluestreak

Cookie-Belointeract

Cookie-Azcentral

Cookie-Adserver

Cookie-Adknowledge

Hacker's Choice

Cookie-Versiontrack

Cookie-Tribalfusion

Cookie-Trafficmp

Cookie-Rightmedia

Cookie-Netshelter

Cookie-Nandomedia

Cookie-Mediaturf

Cookie-Insightexpres

Cookie-Fastclick

Cookie-Euniverseads

Cookie-Cybermonitor

Cookie-Clickedyclick

Cookie-Casalemedia

Cookie-Bravenet

Cookie-Audiencematch

Cookie-Adrevolver

Cookie-Ad-logics

Cookie-Addesktop

Cookie-247realmedia

Cookie-Telegraph

Cookie-Independent

Cookie-Affiliatefuel

Adware (2)

Adware-IEToolBar

Adware-HotSearchBar

Application extension (1)

Adware-IEToolBar.dll

Dialer (1)

Dropper (2)

Adware-IEToolBar.dr

Adware-Beginto.dr

Heuristic (1)

ICQ Messaging (1)

Malware Tool (2)

Self-extracting archive (1)

Tool (1)

Win32 (1)

ServNift

Trojan (52)

(7)

FSF

BadExe

B2C/rd1

Generic component

Adware (1)

Adware-Globosearch

Application extension (3)

PWS-GhettoGina.dll

BackDoor-COH.dll

BackDoor-AOP.dll

Configurator (1)

Disk erasing (1)

QZap370

Downloader (4)

Dropper (6)

MultiDropper-MJ

PWS-Banker.k.dr

BackDoor-COG.dr

BackDoor-COD.dr

BackDoor-AXU.dr

Exploit (1)

Exploit-SQL.UDF

Generic (2)

PWS-Banker.k.gen

HackerDefender.gen.c

Malware Tool (1)

Password Stealer (2)

PWS-IJ

Proxy (1)

Remote Access (6)

BackDoor-AOP.txt

Script (9)

Bat/vms

Bat/siln

Bat/init

BackDoor-COG.reg

StartPage (2)

Tool (1)

Win32 (4)

Del-467

Virus (56)

(25)

SRCG

Wonko

Piper

Nucleii

Crenko

Cranko

Clunko

Clonko

Clanko

Chinko

Chenko

Clinko

Companion (4)

Offspring.cmp.1150

Companion Dropper (2)

Offspring.cmp.1150.dr

Offspring.cmp.1142.dr

Damaged (1)

Dropper (5)

Nomad.dr

E-mail (1)

W32/Mydoom.bf@MM

Email (3)

W32/Bagz.e@MM!zip

W32/Mydoom.bf@MM!zip

Generic (1)

W32/Mydoom.gen!zip

Internet Worm (1)

W32/Bropia.worm.q

Overwriting (2)

Quesi.ow

Parasitic (2)

Win32 (1)

Generic!Morphine

Worm (8)

W32/Generic.worm.h

W32/Bropia.worm.r

W32/Doxpar.worm

W32/Bropia.worm.s

W32/Radebot.worm

Enhanced Detections:

Internet Worm (4)

E-mail (2)

W32/Mydoom.u@MM

W32/Mydoom.v@MM

Open Share Worm (1)

W32/Maddis.worm

P2P Worm (1)

W32/Generic.worm!p2p

Program (21)

(3)

VText.2d

Cookie-DomSponor

- (1)

PrcView

Adware (5)

Adware-BetterInet

Adware-Searchcentrix

Application extension (1)

Dialer-Generic.dll

Dropper (2)

Adware-BetterInet.dr

Joke (1)

Malware Tool (2)

PWCrack-HTTPBrute

PornDialer (1)

Remote Access (1)

Spyware (1)

Spyware-Realtime-Spy

Win32 (3)

RemAdm-RemoteAdmin

RemAdm-ProcLaunch

Trojan (138)

(7)

Phish-BankFraud.eml.f

Phish-BankFraud.eml.b

- (2)

Application extension (6)

BackDoor-CAY.dll

PWS-Banker.k.dll

Configurator (1)

Downloader (6)

BackDoor-AXJ.dldr

Downloader-GG!chm

Dropper (6)

IRC/Flood.di.dr

MultiDropper-IY

BackDoor-AOP.dr

MultiDropper-MI

MultiDropper-LO

Dropper Generic (1)

IRC-Sdbot.dr.gen

Exploit (6)

Exploit-DcomRpc

Exploit-ByteVerify

Exploit-FileName

JS/Exploit-DragDrop

Exploit-ByteVerify.a

Exploit-ObscuredHtml

Generic (6)

PWS-Bancos.gen.c

AFXrootkit.gen.b

PWS-Bancos.gen.d

JS/Exploit-BO.gen

Internet Relay Chat (2)

Keylogger (1)

Password (4)

PWS-Iyus

Password Stealer (3)

Plugin component (1)

IRC/Flood.ak.plugin

Process (2)

ProcKill (22)

Proxy (1)

Remote Access (8)

Script (1)

Settings Change (2)

StartPage (39)

Win32 (11)

Generic BackDoor.b

Generic BackDoor.e

Generic Dropper.a

Pokey.a

Generic StartPage.e

Virus (105)

(9)

VIP

OC.666

Boot dropper (1)

BtDr.Michelangelo

Companion (2)

HLL.cmp

Offspring.cmp.1142

Damaged (1)

Damaged Worm (1)

W32/Sdbot.worm.dam

Dropper (7)

E-mail (8)

W32/Mydoom.o@MM

W32/Mydoom.be@MM

W32/Mydoom.bb@MM

W32/Mydoom.bc@MM

W32/Mydoom.bd@MM

W32/Derdero.a@MM

W32/Mydoom.ap@MM

W32/Mydoom.ae@MM

E-mail worm (4)

W32/Mimail.q@MM

W32/Mydoom.n@MM

W32/Mydoom.ab@MM

Email (17)

W32/Mydoom.d@MM

W32/Mydoom.ba@MM

W32/Mydoom.ay@MM

W32/Mydoom.az@MM

W32/Mydoom.ax@MM

W32/Mydoom.af@MM

W32/Mydoom.ad@MM

W32/Bagz.a@MM!zip

W32/Mydoom.ar@MM

W32/Mydoom.y@MM

W32/Bagz.d@MM!zip

W32/Mydoom.ac@MM

Email Generic (3)

W32/Sober.gen@MM

W32/Mydoom.gen@MM

W32/Kipis.gen@MM

Email Worm (2)

W32/Mydoom.r@MM

File Infector (1)

Vienna

Generic (3)

SRCG.gen

W32/Sdbot.gen.r

Generic Worm (13)

W32/Sdbot.worm.gen.a

W32/Sdbot.worm.gen

W32/Gaobot.worm.gen.e

W32/Sdbot.worm.gen.w

W32/Spybot.worm.gen.f

W32/Sdbot.worm.gen.h

W32/Sdbot.worm.gen.o

W32/Sdbot.worm.gen.m

W32/Sdbot.worm.gen.i

W32/Sdbot.worm.gen.ad

W32/Gaobot.worm.gen.t

W32/Sdbot.worm.gen.u

W32/Sdbot.worm.gen.p

Heuristic (1)

New AOL

Internet Worm (2)

W32/Bropia.worm.g

MS Office Suite (1)

VBA/Generic.src

Overwriting (1)

Parasitic (2)

Grog.cav

Script (2)

Bat/mos

Universal (4)

Univ/b

Univ/f

Univ/a

Win32 (7)

W32/Generic.Delphi.a

Worm (13)

W32/Dedler.worm

W32/Bropia.worm.f

W32/Bropia.worm.k

W32/Bropia.worm.i

W32/Bropia.worm.l

W32/Bropia.worm.j

W32/Bropia.worm.h

W32/Bropia.worm.o

W32/Bropia.worm.p

W32/Mydoom.t@MM