McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4489
DAT Release Date	05/11/2005
Threats Detected	126019
New Detections	96
Enhanced Detections	342

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (34)

Adware (22)

Adware-SurfBuddy

Adware-SpeedBar

Adware-SimpleBar

Adware-SearchFast

Adware-RiverSoft

JS/Adware-PurityScan

Adware-StaticBuys

Adware-Powerreg

Adware-NaviHelper

Adware-MediaTickets

Adware-MakeShortcut

Adware-NeoToolbar

Adware-Megasearch

Adware-MarketDart

Adware-LookNSearch

Application extension (4)

Adware-SurfSideKick.dll

Adware-Softomate.dll

Adware-Ro2cn.dll

Adware-OpenSite.dll

Dropper (5)

Adware-SrchEnh.dr

Adware-SpySpotter.dr

Adware-Slotch.dr

Adware-Redalert.dr

Joke (1)

Win32 (2)

RageDNS

PortScan-Petmar

Trojan (15)

Application extension (2)

BackDoor-CQK.dll

Client (1)

BackDoor-CRV.cli

Configurator (1)

BackDoor-CRU.cfg

Demonstration (2)

JS/Exploit-Favi.demo

Exploit-MS05-024.demo

Downloader (2)

Generic (1)

PWS-Banker.gen.r

Malware Tool (1)

Remote Access (2)

Script (1)

VBS/Zard

Win32 (2)

Puper

Generic Dropper.m

Virus (47)

(27)

YD.2449

Vienna.Windsor.1881a

MPC.848

OC/Revenger.512

Boot dropper (1)

Companion (1)

Damaged (6)

Tentatrickle.dam

Dropper (8)

Olya.dr

Email (1)

Parasitic (1)

Win32 (1)

Worm (1)

W32/Kelvir.worm.bg

Enhanced Detections:

- (1)

- (1)

Internet Worm (1)

Win32 (1)

Program (34)

(2)

VObj9

VObj18

Adware (25)

Adware-PortalScan

Adware-SubSearch

Adware-MemWatcher

Adware-SAHAgent

Adware-SideSearch

Adware-SafeSearch

Adware-PurityScan

Adware-SearchAid

Adware-Nsupdate

Adware-SearchSquire

Adware-OpenSite

Adware-Redalert

Adware-ShopprReports

Adware-SurfSideKick

Adware-Softomate

Adware-BroadCastPC

Downloader (1)

Adware-SAHAgent.dldr

Dropper (3)

Adware-SAHAgent.dr

Adware-BroadCastPC.dr

Adware-Softomate.dr

Spyware (1)

Spyware-RemoteSpy

Tool (1)

HideRun

Win32 (1)

Trojan (65)

(3)

Generic BackDoor.d

Yam

- (1)

Application extension (4)

BackDoor-BAE.dll

BackDoor-CQM.dll

BackDoor-ASB.c.dll

Configurator (2)

Downloader-GG.cfg

MultiDropper-HN.cfg

Denial Of Svc (1)

Downloader (1)

PWS-Banker.a.dldr

Dropper (4)

Adware-SubSearch.dr

VBS/Inor

MultiDropper-HN

Downloader-JF.dr

Exploit (1)

Generic (4)

PWS-Banker.gen.a

HackerDefender.gen.c

PWS-Banker.gen.i

PWS-Banker.gen.o

Heuristic (2)

Password (1)

Password Stealer (2)

Proxy (2)

Remote Access (19)

Generic BackDoor.l

Generic BackDoor.n

Win32 (18)

Generic BackDoor.b

Generic BackDoor.h

Generic BackDoor.f

HackerDefender.sys

Generic BackDoor.g

Generic Downloader.p

SpoofDNS

Generic BackDoor.r

Spyre

Generic QLowZones.a

Generic BackDoor.u

Generic Downloader.ab

Virus (241)

(107)

SME

DGME

TPE.1.4.Cofshop.a

TPE.1.4.Girafe.f

TPE.1.4.Girafe.d

TPE.1.4.Girafe.b

TPE.1.4.Poetcode

SMEG.V3

TPE.1.4.WildLick

TPE.1.4.Cofshop.b

TPE.1.4.Girafe.g

TPE.1.4.Girafe.e

TPE.1.4.Girafe.c

TPE.1.4.Girafe.a

SMEG.Tri

Lucky

Jeru.Yellow.1363

Tiny-DI

Len.702

Vienna.Windsor.1881

Mini.e

Phil

Application extension Generi (1)

W32/Bagle.dll.gen

Boot (1)

Damaged (5)

Sodo.dam

Damaged Worm (2)

W32/Gaobot.worm.dam

W32/Sdbot.worm.dam

Demonstration (1)

Downloader Worm (1)

W32/Bropia.worm.dldr

Dropper (10)

VCL.dr

Suriv.dr

Jeru.dr

NRLG.dr

E-mail (1)

W32/Netsky.z@MM

Email (26)

W32/Mytob.ao@MM

W32/Mytob.al@MM

W32/Mytob.as@MM

W32/Mytob.ap@MM

W32/Mytob.ab@MM

W32/Mytob.aa@MM

W32/Mytob.ad@MM

W32/Mytob.af@MM

W32/Mytob.aj@MM

Email Generic (1)

W32/Mytob.gen@MM

File Infector (2)

ECW.570

NPox

Generic Worm (25)

W32/Sdbot.worm.gen

W32/Gaobot.worm.gen.e

W32/Spybot.worm.gen.f

W32/Sdbot.worm.gen.bg

W32/Gaobot.worm.gen.bj

W32/Spybot.worm.gen.bj

W32/Gaobot.worm.gen.j

W32/Sdbot.worm.gen.n

W32/Sdbot.worm.gen.j

W32/Sdbot.worm.gen.h

W32/Sdbot.worm.gen.m

W32/Sdbot.worm.gen.i

W32/Sdbot.worm.gen.g

W32/Kelvir.worm.gen

W32/Sdbot.worm.gen.bd

W32/Gaobot.worm.gen.bc

W32/Gaobot.worm.gen.bw

W32/Sdbot.worm.gen.bh

W32/Sdbot.worm.gen.by

W32/Sdbot.worm.gen.bj

W32/Sdbot.worm.gen.bw

W32/Gaobot.worm.gen.bh

W32/Gaobot.worm.gen.bi

W32/Gaobot.worm.gen.by

W32/Sdbot.worm.gen.y

Heuristic (1)

Internet Worm (5)

W32/Kelvir.worm.c

W32/Kelvir.worm.b

W32/Kelvir.worm.f

W32/Bropia.worm.gen

W32/Bropia.worm.d

Malware Tool (2)

VCL.kit

BW.kit

multipartite (7)

Parasitic (1)

NMSG.cav

Universal (1)

Univ/j

Win32 (1)

Worm (40)

W32/Bropia.worm.e

W32/Kelvir.worm.al

W32/Kelvir.worm.ap

W32/Kelvir.worm.an

W32/Kelvir.worm.ao

W32/Kelvir.worm.am

W32/Kelvir.worm.ax

W32/Kelvir.worm.az

W32/Bropia.worm.ap

W32/Dedler.worm

W32/Kelvir.worm.ba

W32/Kelvir.worm.ay

W32/Kelvir.worm.e

W32/Kelvir.worm.d

W32/Kelvir.worm.g

W32/Kelvir.worm.i

W32/Kelvir.worm.k

W32/Kelvir.worm.j

W32/Bropia.worm.m

W32/Kelvir.worm.a

W32/Kelvir.worm.o

W32/Kelvir.worm.n

W32/Kelvir.worm.p

W32/Kelvir.worm.s

W32/Kelvir.worm.l

W32/Kelvir.worm.m

W32/Kelvir.worm.t

W32/Kelvir.worm.q

W32/Bropia.worm.ac

W32/Kelvir.worm.w

W32/Kelvir.worm.ak

W32/Kelvir.worm.ab

W32/Bropia.worm.ag

W32/Kelvir.worm.ac

W32/Bropia.worm.af

W32/Kelvir.worm.aj

W32/Kelvir.worm.ai

W32/Bropia.worm.b

W32/Bropia.worm.a

W32/Bropia.worm.c