Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4532
DAT Release Date 07/11/2005
Threats Detected 136560
New Detections 32
Enhanced Detections 133

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
  Joke (1)
    Joke-Justakiss
Trojan (16)
   (1)
    B2E/shutdown
  Exploit (1)
    Exploit-MS05-017
  Malware Tool (1)
    Spam-SPM
  PDA Device (1)
    SymbOS/Mabtal.A
  Remote Access (1)
    BackDoor-CTJ
  Script (7)
    QDir5
    Bat/wint
    Bat/qz152
    Bat/qz151
    Bat/qz150
    Bat/qd305dr
    Bat/nosh10
  Win32 (4)
    UnSecure
    Spy-Agent.j
    Lizenbo
    Generic AdClicker.c
Virus (15)
   (3)
    SymbOS/Onehop.a!sis
    SymbOS/Mabtal.a!sis
    SymbOS/Bootton.a!sis
  E-mail (1)
    W32/Mytob.el@MM
  Email (1)
    W32/BackZat.v@MM
  Email Generic (1)
    W32/Kebede.gen@MM
  Generic (6)
    SymbOS/Onehop.gen!sis
    SymbOS/Mabtal.gen!sis
    SymbOS/Bootton.gen!sis
    W32/Nopir.gen
    W32/HLLP.Gabri.gen
    W32/Emar.gen
  Generic Worm (1)
    W32/Drefir.worm.gen
  Parasitic (1)
    W32/HLLP.Kvex
  Worm (1)
    W32/Salie.worm

Enhanced Detections:

Program (1)
   (1)
    DeleteDir
Trojan (56)
   (2)
    Diskfill
    Phish-BankFraud.eml.b
  - (1)
    Proxy-Hino
  Application extension (3)
    BackDoor-WB.dll
    Puper.dll
    BackDoor-ASB.c.dll
  Configuration settings (1)
    ServU.ini
  Downloader (4)
    Proxy-Hino.ldr
    Proxy-Hino.dldr
    Downloader-ACT
    Downloader-ACR
  Dropper (2)
    MultiDropper-BN
    Proxy-Hino.dr
  Exploit (1)
    Exploit-MS04-011
  File deleting (2)
    QDel371
    QDel372
  Generic (7)
    BackDoor-WB.gen
    Proxy-Mitglieder.gen
    BackDoor-WB.gen.b
    PWS-Banker.gen.ba
    PWS-Banker.gen.j
    PWS-Banker.gen.i
    ServU-Daemon.gen.ba
  Heuristic (5)
    New Malware.i
    New Malware.f
    New Malware.g
    New Malware.h
    New Malware.l
  JavaScript (1)
    JS/CardStealer
  Password (1)
    PWS-WebMoney.gen
  Password Stealer (2)
    PWS-Reox
    PWS-Lineage
  Proxy (1)
    Proxy-FBSR
  Remote Access (11)
    BackDoor-ABM
    BackDoor-ASB
    BackDoor-AVY
    BackDoor-ARR
    BackDoor-WB
    BackDoor-AMQ
    BackDoor-CCL
    BackDoor-CEB
    Backdoor-EE
    BackDoor-AXG
    BackDoor-CQG
  Trojan (1)
    HotWorld
  Win32 (11)
    Generic VB
    Generic Downloader.b
    Generic Downloader.a
    Generic BackDoor.b
    Generic Downloader.c
    OptixKiller
    Dwonloader-AAU
    Generic Downloader.ab
    Generic.k
    Generic Downloader.g
    Generic Downloader.f
Virus (76)
  Damaged (1)
    W32/Magistr.dam
  Damaged Worm (2)
    W32/Gaobot.worm.dam
    W32/Sdbot.worm.dam
  E-mail (5)
    W32/Mytob.bh@MM
    W32/Mytob.bw@MM
    W32/Mytob.cc@MM
    W32/Mytob.cv@MM
    W32/Mytob.da@MM
  Email (48)
    W32/Mytob.ak@MM
    W32/Mytob.am@MM
    W32/Mytob.ar@MM
    W32/Mytob.aq@MM
    W32/Mytob.as@MM
    W32/Mytob.ap@MM
    W32/Mytob.cp@MM
    W32/Mytob.cn@MM
    W32/Mytob.cj@MM
    W32/Mytob.bm@MM
    W32/Mytob.cu@MM
    W32/Mytob.ce@MM
    W32/Mytob.dg@MM
    W32/Mytob.dc@MM
    W32/Mytob.p@MM
    W32/Mytob.r@MM
    W32/Mytob.c@MM
    W32/Mytob.m@MM
    W32/Mytob.cm@MM
    W32/Mytob.di@MM
    W32/Mytob.df@MM
    W32/Mytob.bz@MM
    W32/Mytob.dj@MM
    W32/Mytob.q@MM
    W32/Mytob.h@MM
    W32/Mytob.v@MM
    W32/Mytob.u@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.w@MM
    W32/Mytob.y@MM
    W32/Mytob.co@MM
    W32/Mytob.cz@MM
    W32/Mytob.dm@MM
    W32/Mytob.ee@MM
    W32/Mytob.ab@MM
    W32/Mytob.ah@MM
    W32/Mytob.af@MM
    W32/Mytob.dq@MM
    W32/Mytob.dp@MM
    W32/Mytob.dt@MM
    W32/Mytob.dx@MM
    W32/Mytob.ag@MM
    W32/Mytob.an@MM
    W32/Mytob.ec@MM
    W32/Mytob.ef@MM
    W32/Mytob.ed@MM
    W32/Mytob.ek@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  File Infector (1)
    W32/Magistr.b@MM
  Generic Worm (10)
    W32/Gaobot.worm.gen.l
    W32/Sdbot.worm.gen.bg
    W32/Gaobot.worm.gen.bj
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.i
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.t
  mIRC Worm (1)
    MIRC/Generic
  Win32 (6)
    W32/Generic.d
    W32/Generic.e
    W32/Generic!im
    W32/Generic.m
    W32/Generic.Delphi.b
    W32/Generic.Delphi.a
  Worm (1)
    W32/Magistr.a@MM