Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4513
DAT Release Date 06/14/2005
Threats Detected 130844
New Detections 26
Enhanced Detections 272

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (8)
  Adware (5)
    Adware-Zango
    Adware-Softomate!chm
    Adware-P2PNet
    Adware-MySearch
    Adware-HalfLemon
  Damaged (1)
    Adware-GAIN.dam
  Downloader (1)
    Downloader-ABV
  Tool (1)
    Tool-Areg
Trojan (6)
  - (1)
    IRC-Stinx
  Configurator (1)
    Downloader-AAT.cfg
  Downloader (2)
    Downloader-ABW
    Downloader-ABX
  Password Stealer (1)
    PWS-Screen
  Win32 (1)
    QReg-14
Virus (12)
   (1)
    SymbOS/Cabir.z
  E-mail (1)
    W32/Mytob.cv@MM
  Email (1)
    W32/Mytob.cu@MM
  Generic Worm (1)
    W32/Harwig.worm.gen
  Internet Relay Chat (1)
    W32/Xark!irc
  Win32 (1)
    W32/Bagle.az
  Worm (6)
    W32/Kelvir.worm.cm
    W32/Kelvir.worm.ck
    W32/Kelvir.worm.cj
    W32/Bropia.worm
    W32/Bropia.worm.bg
    W32/Bobax.worm.q

Enhanced Detections:

- (1)
  - (1)
    Adware-DirectIP
Internet Worm (7)
  E-mail worm (6)
    W32/Netsky.i@MM
    W32/Netsky.b@MM
    W32/Netsky.t@MM
    W32/Netsky.s@MM
    W32/Netsky.c@MM
    W32/Netsky.a@MM
  P2P Worm (1)
    W32/Generic.worm!p2p
Malware (1)
  Exploit (1)
    Exploit-CodeBase
Program (41)
   (2)
    IMIServer
    UnRealIRC
  - (4)
    Iroffer
    PrcView
    RemAdm-PSKill
    IMIServer.download
  Adware (17)
    Adware-SaveNow
    Adware-ISTbar.b
    Adware-180Solutions
    Adware-Look2Me
    Adware-HotBar
    Adware-Websearch
    Adware-BB
    Adware-Gain
    Adware-Lop
    Adware-Altnet
    Adware-NaviPromo
    Adware-IEBar
    Adware-Bluemedia
    Adware-ShopprReports
    Adware-Web3000
    Adware-CashFiesta
    Adware-ClickSpring
  Application extension (1)
    Adware-Softomate.dll
  Dialer (1)
    Dialer-Generic.b
  Downloader (3)
    Adware-ISTBar.dldr
    IMIServer.dldr
    Adware-Websearch.dldr
  Dropper (1)
    IMIServ.dr
  Malware Tool (5)
    PWCrack-NTPass
    PWCrack-MailBRu
    PWCrack-WWWHack
    PWCrack-Chanserv
    PWCrack-Hotmail
  Remote Access (1)
    ServU-Daemon
  Spyware (3)
    Spyware-eBlaster
    Spyware-XPCSpy
    Spyware-Webhancer
  Tool (1)
    Tool-TrayURL
  Win32 (2)
    Fport
    RemAdm-RemoteAdmin
Trojan (39)
   (2)
    Generic component
    Phish-BankFraud.eml.f
  Application extension (4)
    CoreFlood.dll
    BackDoor-AWQ.dll
    BackDoor-GQ.dll
    W32/Dumaru.dll
  Configurator (1)
    MultiDropper.cfg
  Downloader (2)
    Proxy-Mitglieder
    Downloader-AAT
  Downloader Generic (1)
    Proxy-FBSR.gen.dldr
  Dropper (4)
    CoreFlood.dr
    VBS/Inor
    PWS-Banker.dr.h
    PWS-Banker.dr.c
  Exploit (2)
    JS/Exploit-HelpXSite
    Exploit-MhtRedir!chm
  Generic (5)
    Proxy-FBSR.gen
    PWS-Banker.gen.bb
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    Downloader-MP.gen
  Heuristic (2)
    New Malware.j
    New Malware.f
  Internet Relay Chat (1)
    IRC/Flood.c
  Proxy (2)
    Proxy-FBSR
    Proxy-Fireby
  Remote Access (5)
    BackDoor-GQ
    BackDoor-AOZ
    BackDoor-CGZ
    BackDoor-CSS
    BackDoor-CQG
  Win32 (8)
    Generic VB
    Generic Downloader.a
    Generic Delphi
    Generic Downloader.c
    Flystudio
    SpoofDNS
    Generic Dropper.i
    Generic VB.c
Virus (183)
   (29)
    SymbOS/Cabir.x
    SymbOS/Cabir!lasco
    SymbOS/Cabir.v
    SymbOS/Cabir!ezboot.v
    SymbOS/Cabir.y
    SymbOS/Cabir!ezboot.y
    SymbOS/Cabir!ezboot.w
    SymbOS/Cabir.w
    SymbOS/Cabir!ezboot.e
    SymbOS/Cabir!ezboot.d
    SymbOS/Cabir!ezboot.c
    SymbOS/Cabir!ezboot
    SymbOS/Cabir!ezboot.x
    SymbOS/Cabir!ezboot.s
    SymbOS/Cabir!ezboot.o
    SymbOS/Cabir!ezboot.k
    SymbOS/Cabir!ezboot.f
    SymbOS/Cabir.g
    SymbOS/Cabir.f
    SymbOS/Cabir.b
    SymbOS/Cabir.a
    SymbOS/Cabir!ezboot.t
    SymbOS/Cabir!ezboot.r
    SymbOS/Cabir.m
    SymbOS/Cabir.k
    SymbOS/Cabir!ezboot.q
    SymbOS/Cabir!ezboot.p
    SymbOS/Cabir!ezboot.n
    SymbOS/Cabir.u
  Damaged (4)
    W32/Netsky.q.dam
    W32/Netsky.c.dam
    W32/Netsky.p.dam
    W32/Netsky.d.dam
  E-mail (13)
    W32/Netsky.w@MM
    W32/Netsky.q@MM
    W32/Netsky.u@MM
    W32/Netsky.g@MM
    W32/Netsky.l@MM
    W32/Netsky.k@MM
    W32/NetSky.h@MM
    W32/Netsky.v@MM
    W32/Netsky.y@MM
    W32/Netsky.z@MM
    W32/Netsky.ab@MM
    W32/Mytob.bh@MM
    W32/Netsky.ag@MM
  E-mail worm (8)
    W32/Netsky.n@MM
    W32/Netsky.j@MM
    W32/Netsky.o@MM
    W32/Netsky.x@MM
    W32/Netsky.e@MM
    W32/Netsky.f@MM
    W32/Netsky.d@MM
    W32/Netsky.ac@MM
  Email (25)
    W32/Askar@MM
    W32/Mytob.ak@MM
    W32/Mytob.am@MM
    W32/Mytob.ar@MM
    W32/Mytob.aq@MM
    W32/Netsky.ad@MM
    W32/Kipis.f@MM
    W32/Kipis.m@MM
    W32/Kipis.p@MM
    W32/Kipis.o@MM
    W32/Kipis.n@MM
    W32/Mytob.ce@MM
    W32/Kipis.u@MM
    W32/Mytob.r@MM
    W32/Mytob.v@MM
    W32/Mytob.u@MM
    W32/Mytob.t@MM
    W32/Mytob.y@MM
    W32/Mytob.ah@MM
    W32/Mytob.ag@MM
    W32/Mytob.an@MM
    W32/Netsky.ai@MM
    W32/Kipis.e@MM
    W32/Kipis.d@MM
    W32/Netsky.af@MM
  Email Generic (2)
    W32/Mytob.gen@MM
    W32/Kipis.gen@MM
  Email Worm (1)
    W32/Netsky.aa@MM
  Generic (3)
    W32/Kipis.gen
    W32/Poebot.gen
    SymbOS/Cabir.gen
  Generic Worm (14)
    W32/Spybot.worm.gen.f
    W32/Sdbot.worm.gen.bg
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.h
    W32/Kelvir.worm.gen
    W32/Gaobot.worm.gen.u
    W32/Sdbot.worm.gen.ai
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Gaobot.worm.gen.by
    W32/Sdbot.worm.gen.t
    W32/Gaobot.worm.gen.s
    W32/Bobax.worm.gen
  Internet Worm (7)
    W32/Kelvir.worm.c
    W32/Kelvir.worm.b
    W32/Kelvir.worm.bh
    W32/Kelvir.worm.f
    W32/Bobax.worm.o
    W32/Bropia.worm.aj
    W32/Bobax.worm.a
  PDA Device (14)
    SymbOS/Cabir.e
    SymbOS/Cabir.c
    SymbOS/Cabir.h
    SymbOS/Cabir.d
    SymbOS/Cabir.t
    SymbOS/Cabir.r
    SymbOS/Cabir.p
    SymbOS/Cabir.n
    SymbOS/Cabir.l
    SymbOS/Cabir.s
    SymbOS/Cabir.q
    SymbOS/Cabir.o
    SymbOS/Cabir.i
    SymbOS/Cabir.j
  Win32 (5)
    New Win32
    W32/Netsky
    W32/Generic.e
    W32/Generic.j
    W32/Generic.Delphi.a
  Worm (58)
    W32/Kelvir.worm.al
    W32/Kelvir.worm.ap
    W32/Kelvir.worm.an
    W32/Bropia.worm.al
    W32/Bropia.worm.ak
    W32/Kelvir.worm.ao
    W32/Kelvir.worm.am
    W32/Bropia.worm.am
    W32/Kelvir.worm.ax
    W32/Bropia.worm.ao
    W32/Bropia.worm.an
    W32/Kelvir.worm.az
    W32/Bobax.worm.k
    W32/Kelvir.worm.ba
    W32/Kelvir.worm.ay
    W32/Bropia.worm.ar
    W32/Kelvir.worm.bg
    W32/Kelvir.worm.e
    W32/Bropia.worm.ba
    W32/Bropia.worm.az
    W32/Bropia.worm.ay
    W32/Bropia.worm.ax
    W32/Kelvir.worm.d
    W32/Bropia.worm.bb
    W32/Bobax.worm.l
    W32/Bobax.worm.m
    W32/Kelvir.worm.ca
    W32/Bropia.worm.bd
    W32/Kelvir.worm.ci
    W32/Kelvir.worm.g
    W32/Kelvir.worm.i
    W32/Kelvir.worm.k
    W32/Kelvir.worm.j
    W32/Bropia.worm.m
    W32/Kelvir.worm.a
    W32/Kelvir.worm.o
    W32/Kelvir.worm.n
    W32/Kelvir.worm.p
    W32/Kelvir.worm.s
    W32/Kelvir.worm.l
    W32/Kelvir.worm.m
    W32/Kelvir.worm.t
    W32/Bobax.worm.p
    W32/Kelvir.worm.ch
    W32/Bropia.worm.be
    W32/Kelvir.worm.q
    W32/Kelvir.worm.w
    W32/Kelvir.worm.ak
    W32/Kelvir.worm.ab
    W32/Bropia.worm.ag
    W32/Kelvir.worm.ac
    W32/Kelvir.worm.aj
    W32/Kelvir.worm.ai
    W32/Bropia.worm.ah
    W32/Bropia.worm.ai
    W32/Bobax.worm.d
    W32/Bobax.worm.b
    W32/Bobax.worm.c