Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4494
DAT Release Date 05/18/2005
Threats Detected 127136
New Detections 74
Enhanced Detections 212

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (17)
  Adware (13)
    Adware-RXBar
    Adware-RedHotNet
    Adware-RelatedLinks
    Adware-MWS
    Adware-FriendlyName
    Adware-eMusic
    Adware-EasySearch
    Adware-DNSProxy
    Adware-Atlas
    Adware-AdPopper
    Adware-GigexAgent
    Adware-Applinaria
    Adware-404Search
  Dropper (3)
    Adware-Henbang.dr
    Adware-Multiple.dr
    Fizzle.dr
  Joke (1)
    Joke-MSEA
Trojan (47)
   (4)
    Killboot
    B2C/qd3
    Autorun
    Bulka
  Application extension (1)
    BackDoor-CSA.dll
  Disk erasing (1)
    QZap371
  Downloader (1)
    Downloader-AAR
  Generic (1)
    PWS-Banker.gen.ba
  ICQ Messaging (1)
    ICQ-Patch
  Keylogger (1)
    Keylog-lttlogger
  Remote Access (3)
    BackDoor-CSB.sys
    BackDoor-CSB
    BackDoor-CSA
  Script (32)
    Bat/twunk
    Bat/systerm
    Bat/svchost
    Bat/reg6
    Bat/reg4
    Bat/reg
    Bat/qd295
    Bat/qd293
    Bat/nosh8
    Bat/netst2
    Bat/netst1
    Bat/net4
    Bat/kerfu
    Bat/fdae3
    Bat/fdae1
    Bat/avk59
    Bat/avk57
    Bat/tikan
    Bat/sysrep
    Bat/revenge
    Bat/reg5
    Bat/reg3
    Bat/qd296
    Bat/qd294
    Bat/nt1
    Bat/noitc
    Bat/lock
    Bat/fdae4
    Bat/fdae2
    Bat/banish
    Bat/avk58
    Bat/antiboot
  Win32 (2)
    Generic.e
    QHosts-31
Virus (10)
   (1)
    Khizhnjak.457
  Boot (1)
    Nero
  Boot dropper (1)
    BtDr.Nero
  Damaged (1)
    W32/Netsky.dam!zip
  Generic Worm (1)
    W32/Gaobot.worm.gen.bf
  Parasitic (1)
    HLLP.6736
  Peer To Peer (1)
    W32/Pemal!p2p
  Script (3)
    Bat/mella
    Perl/TocToc
    Perl/Servidor

Enhanced Detections:

Malware (1)
  Exploit (1)
    Exploit-PhpBB
Program (50)
   (2)
    YourSiteBar
    VMag69
  Adware (32)
    Adware-TVMedia
    Adware-RBlast.dldr
    Adware-180Solutions
    Adware-BDE
    Adware-Look2Me
    Adware-HotBar
    Adware-SAHAgent
    Adware-Websearch
    Adware-PromulGate
    Adware-SideSearch
    Adware-Gain
    Adware-Xupiter
    Adware-Virtumondo
    Adware-Apropos
    Adware-2020Search
    Adware-ISTBar
    Adware-Lop
    Adware-BDSearch
    Adware-Altnet
    Adware-Adpower
    Adware-AZESearch
    Adware-OMI
    Adware-Serch
    Adware-MediaTickets
    Adware-NDotNet
    Adware-WinAd
    Adware-Henbang
    Adware-SideStep
    Adware-SearchIt
    Adware-Cometsys
    Adware-TopRebates
    Adware-BkdSpace
  Application extension (1)
    Adware-Elitebar.dll
  Downloader (4)
    Adware-Ezula.dldr
    Adware-ISTBar.dldr
    Adware-SAHAgent.dldr
    Adware-Look2Me.dldr
  Dropper (4)
    Adware-Lop.dr
    Uploader-R.dr
    Adware-Ezula.dr
    Adware-abetterintrnt.dr
  Settings Change (1)
    Adware-XPlugin
  Spyware (3)
    Spyware-ActivityMon
    Spyware-Webhancer
    Spyware-Ssppyy
  Win32 (3)
    RemAdm-RemoteAdmin
    PowerScan
    Fizzle
Trojan (59)
   (2)
    Generic Downloader.o
    Generic BackDoor.txt
  Application extension (4)
    PWS-LDPinch.dll
    PWS-Banker.k.dll
    Downloader-RV.dll
    PWS-Dearis.dll
  Dialer (1)
    QDial-30
  Downloader (5)
    Downloader-AAI
    Downloader-AAS
    Downloader-ZQ
    Downloader-TZ
    Downloader-PS
  Dropper (2)
    Generic BackDoor.dr
    BackDoor-CMF.dr
  Exploit (2)
    Exploit-MhtRedir.gen
    Exploit-MS04-022
  Generic (9)
    Perl/Exploit.gen
    PWS-Mu.gen
    PWS-Banker.k.gen
    PWS-Banker.gen.b
    PWS-Banker.gen.l
    PWS-Banker.gen.i
    PWS-Banker.gen.o
    PWS-Banker.gen.g
    PWS-LegMir.gen.e
  HTML document (1)
    BackDoor-AXJ.htm
  Malware Tool (1)
    Perl/Kit-Dav
  Password (2)
    PWS-LegMir
    PWS-LDPinch
  Password Stealer (2)
    PWS-Banker.k
    PWS-Banker.s
  Proxy (2)
    Proxy-FBSR
    Proxy-Fireby
  Remote Access (6)
    CoreFlood
    BackDoor-CCT
    BackDoor-CRS
    BackDoor-CCX
    BackDoor-CMR
    BackDoor-CKB
  Script (3)
    Bat/reged
    Bat/addu2
    Bat/qd269
  Win32 (17)
    Generic VB
    HackerDefender
    Generic Downloader.c
    SennaSpy2001
    Generic BackDoor.c
    Generic VB.b
    Generic BackDoor.g
    Generic Downloader.k
    Generic BackDoor.r
    Generic QLowZones.a
    Generic BackDoor.u
    Generic Downloader.ab
    ZapChast
    QUrl-3
    Generic Packed
    DDoS-Boxed
    Generic Downloader.e
Virus (102)
   (2)
    Mad.5131
    Sjortari.398
  Damaged (1)
    W32/Mytob.dam
  Damaged Worm (2)
    W32/Spybot.worm.dam
    W32/Sdbot.worm.dam
  Dropper (8)
    Univ/a.dr
    Univ/j.dr
    Xany.dr
    Bat/mel.dr.3516
    Bat/mel.dr.x
    Bat/mel.dr.1494
    Bat/mel.dr.1873
    Mini.100.dr
  Email (45)
    W32/Netsky.q@MM!zip
    W32/Netsky.n@MM!zip
    W32/Netsky.b@MM!zip
    W32/Netsky.p@MM!zip
    W32/Netsky.c@MM!zip
    W32/Netsky.a@MM!zip
    W32/Netsky.z@MM!zip
    W32/Mytob.ak@MM
    W32/Mytob.am@MM
    W32/Mytob.ar@MM
    W32/Mytob.aq@MM
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.as@MM
    W32/Mytob.ap@MM
    W32/Mytob.aw@MM
    W32/Mytob.ba@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.c@MM
    W32/Mytob.m@MM
    W32/Mytob.q@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.v@MM
    W32/Mytob.u@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.w@MM
    W32/Mytob.y@MM
    W32/Mytob.ab@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.ah@MM
    W32/Mytob.af@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.ag@MM
    W32/Mytob.an@MM
    W32/Netsky.ai@MM!zip
    W32/Netsky.ag@MM!zip
  Email Generic (1)
    W32/Mytob.gen@MM
  Generic Worm (24)
    W32/Spybot.worm.gen.b
    W32/Spybot.worm.gen.e
    W32/Spybot.worm.gen.f
    W32/Sdbot.worm.gen.bg
    W32/Gaobot.worm.gen.bj
    W32/Opanki.worm.gen
    W32/Spybot.worm.gen.bj
    W32/Gaobot.worm.gen.j
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.i
    W32/Sdbot.worm.gen.x
    W32/Sdbot.worm.gen.bk
    W32/Gaobot.worm.gen.t
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Gaobot.worm.gen.bh
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.z
    W32/Sdbot.worm.gen.t
  Parasitic (3)
    HLLP.8460
    HLLP.Light
    HLLP.4879
  Script (10)
    Univ.script/99a
    Bat/mel.tail
    Bat/mel.3516
    Bat/mel.1811
    Bat/mel.1876
    Bat/mel.1495
    Bat/mel.1497
    Bat/mel.1494
    Bat/mel
    Bat/flm
  Universal (2)
    Univ/a
    Univ/j
  Win32 (1)
    Generic!Morphine
  Worm (3)
    W32/Generic.worm.b
    Perl/Asan.worm
    W32/Opanki.worm