Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4521
DAT Release Date 06/24/2005
Threats Detected 133386
New Detections 13
Enhanced Detections 179

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name
There are no noteworthy threats in this release
Corporate Risk Assessment
There are no noteworthy threats in this release
Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (5)
  Adware (1)
    Adware-FasterXP
  Application extension (1)
    Adware-FasterXP.dll
  Dropper (1)
    Keylog-Refog.dr
  Spyware (2)
    Spyware-Buddy
    Spyware-EasyKeylog
Trojan (5)
   (1)
    HackerDefender.sys!xor
  Heuristic (1)
    New Malware!bot
  Keylogger (1)
    Keylog-HackBear
  Remote Access (1)
    BackDoor-CTA
  Win32 (1)
    QLowZones-23
Virus (3)
  Win32 (2)
    W32/Polybot.dd
    W32/Polybot.de
  Worm (1)
    W32/Realbot.worm

Enhanced Detections:

Internet Worm (1)
  Worm (1)
    W32/Polybot.gen!irc
Program (15)
  - (1)
    Proxy-OSS
  Adware (7)
    Adware-SaveNow
    Adware-180SA
    Adware-Look2Me
    Adware-ISTBar
    Adware-MediaTickets
    Adware-Pacimedia
    Adware-BroadCastPC
  Dialer (2)
    Dialer-267
    Dialer-RAS.de
  Dropper (2)
    Adware-BroadCastPC.dr
    Adware-BkdSpace.dr
  Generic (1)
    Dialer-RAS.du.gen
  Keylogger (2)
    Keylog-Keyspy
    Keylog-Refog
Trojan (34)
   (2)
    Generic BackDoor.d
    Generic.f
  - (1)
    IRC-Stinx
  Application extension (2)
    PWS-Hooker.dll
    BackDoor-CSY.dll
  Client (1)
    BackDoor-Sub7.cli
  Configurator (1)
    BackDoor-Sub7.cfg
  Downloader (1)
    PWS-LegMir.dldr
  Dropper (4)
    PWS-LegMir.dr
    IRC-Sdbot.dr
    BackDoor-Sub7.dr
    StartPage-FW.dr
  Dropper Generic (1)
    IRC-Sdbot.dr.gen
  Exploit (2)
    Exploit-ByteVerify
    Exploit-1Table
  Generic (1)
    Keylog.gen
  mIRC client (1)
    IRC/Flood.bt.mirc
  Password (1)
    PWS-LegMir
  Password Stealer (2)
    PWS-Lineage!chm
    PWS-LegMir!chm
  Plugin component (1)
    BackDoor-Sub7.plugin
  Remote Access (3)
    BackDoor-Sub7
    QLowZones-21
    BackDoor-CFG
  Script (1)
    IIS/BackDoor-ACE
  StartPage (1)
    StartPage-DU
  Win32 (8)
    Generic VB
    Generic Delphi
    AdClicker-C
    Generic VB.b
    Generic Dropper.l
    Puper
    Generic Downloader.ab
    Generic QHosts.a
Virus (129)
  Damaged (1)
    W32/Polybot.dam
  Damaged Dropper (1)
    W32/Pate.dr.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Dropper (2)
    W32/Pate.dr
    W32/Polybot.dr
  Email (1)
    W32/Polybot@MM
  Generic (1)
    W32/Opanki.gen
  Generic Worm (15)
    W32/Sdbot.worm.gen
    W32/Sdbot.worm.gen.w
    W32/Sdbot.worm.gen.e
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.d
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.i
    W32/Spybot.worm.gen.j
    W32/Sdbot.worm.gen.ai
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.z
    W32/Sdbot.worm.gen.t
    W32/Sdbot.worm.gen.q
  Internet Worm (2)
    W32/Sdbot.worm
    W32/Polybot.l!irc
  Script (1)
    Univ.bat/a
  Win32 (103)
    W32/Polybot.bw
    W32/Polybot.bu
    W32/Polybot.bx
    W32/Polybot.bv
    W32/Polybot.bt
    W32/Polybot.ag
    W32/Polybot.v
    W32/Polybot.t
    W32/Polybot.s
    W32/Polybot.r
    W32/Polybot.q
    W32/Polybot.o
    W32/Polybot.n
    W32/Polybot.m
    W32/Polybot.k
    W32/Polybot.j
    W32/Polybot.i
    W32/Polybot.h
    W32/Polybot.g
    W32/Polybot.f
    W32/Polybot.e
    W32/Polybot.c
    W32/Polybot.a
    W32/Polybot.u
    W32/Polybot.d
    W32/Polybot.b
    W32/Polybot.ae
    W32/Polybot.ac
    W32/Polybot.aa
    W32/Polybot.y
    W32/Polybot.w
    W32/Polybot.ad
    W32/Polybot.ab
    W32/Polybot.z
    W32/Polybot.x
    W32/Polybot.af
    W32/Polybot.am
    W32/Polybot.aj
    W32/Polybot.an
    W32/Polybot.al
    W32/Polybot.ai
    W32/Polybot.cg
    W32/Polybot.cu
    W32/Polybot.cs
    W32/Polybot.cv
    W32/Polybot.ct
    W32/Polybot.cx
    W32/Polybot.cw
    W32/Polybot.cf
    W32/Polybot.cj
    W32/Polybot.ch
    W32/Polybot.cl
    W32/Polybot.ci
    W32/Polybot.cy
    W32/Polybot.cn
    W32/Polybot.co
    W32/Polybot.cr
    W32/Polybot.cb
    W32/Polybot.cm
    W32/Polybot.cp
    W32/Polybot.da
    W32/Polybot.db
    W32/Polybot.cz
    W32/Polybot.cq
    W32/Polybot.dc
    W32/Polybot.bz
    W32/Polybot.by
    W32/Polybot.cc
    W32/Generic.m
    W32/Polybot.ce
    W32/Polybot.cd
    W32/Polybot.bs
    W32/Polybot.bo
    W32/Polybot.bn
    W32/Polybot.bm
    W32/Polybot.bl
    W32/Polybot.bk
    W32/Polybot.bf
    W32/Polybot.bq
    W32/Polybot.bp
    W32/Polybot.br
    W32/Polybot.bb
    W32/Polybot.ba
    W32/Polybot.bg
    W32/Polybot.be
    W32/Polybot.bd
    W32/Polybot.bc
    W32/Polybot.bh
    W32/Polybot.bj
    W32/Polybot.bi
    W32/Polybot.az
    W32/Polybot.ay
    W32/Polybot.ax
    W32/Polybot.ca
    W32/Polybot.av
    W32/Polybot.aw
    W32/Polybot.au
    W32/Polybot.as
    W32/Polybot.aq
    W32/Polybot.ao
    W32/Polybot.at
    W32/Polybot.ar
    W32/Polybot.ap
  Worm (1)
    W32/Generic.worm.b