Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4535
DAT Release Date 07/14/2005
Threats Detected 137472
New Detections 17
Enhanced Detections 201

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
  Adware (1)
    Adware-Shorty
Trojan (8)
  Application extension (1)
    PWS-Kyth.dll
  Downloader (2)
    Downloader-ACW
    Downloader-ACV
  Dropper (1)
    PWS-Kyth.dr
  Password Stealer (1)
    PWS-Kyth
  Remote Access (1)
    BackDoor-CTK
  Tool (1)
    Tool-PsShutdown
  Win32 (1)
    Generic AdClicker.d
Virus (8)
   (3)
    SymbOS/Cabir!aif
    SymbOS/Cabir.aa
    SymbOS/Cabir!ezboot.aa
  Email (4)
    W32/Mytob.er@MM
    W32/Mytob.es@MM
    W32/Mytob.eq@MM
    W32/Kalel.d@MM
  Generic (1)
    SymbOS/Cabir!aif.gen

Enhanced Detections:

Internet Worm (1)
  E-mail (1)
    W32/Mytob.bk@MM
Malware (1)
  Exploit (1)
    Exploit-CodeBase
Program (11)
  - (1)
    Iroffer
  Adware (4)
    Adware-SaveNow
    Adware-CWS
    Adware-BB
    Adware-RXBar
  Application extension (1)
    Adware-Apropos.dll
  Registry (3)
    Reg-DetectNames11
    Reg-DetectKeys12
    Reg-DetectNames13
  Spyware (1)
    Spyware-SpyAgent
  Win32 (1)
    SrvAny
Trojan (37)
  Application extension (4)
    PWS-Legmir.dll
    BackDoor-CNM.dll
    BackDoor-CKB.dll
    PWS-Lineage.dll
  Configurator (1)
    MultiDropper-GK.cfg
  Downloader (3)
    Downloader-VS
    Downloader-ABE
    Downloader-ACX
  Dropper (1)
    IRC/Flood.as.dr
  Exploit (1)
    Exploit-1Table
  Generic (6)
    PWS-LegMir.gen
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    SymbOS/Locknut.gen
    PWS-Banker.gen.i
    PWS-Banker.gen.g
  Heuristic (1)
    New Malware.f
  Internet Relay Chat (1)
    IRC/Flood.as
  Password (1)
    PWS-LDPinch
  Password Stealer (3)
    PWS-Gorgs
    PWS-Lineage
    PWS-Mifeng
  PDA Device (1)
    SymbOS/Skulls.a
  Proxy (1)
    Proxy-FBSR
  Remote Access (9)
    BackDoor-CGX
    BackDoor-ANC
    BackDoor-YW
    BackDoor-FS
    BackDoor-CNM
    BackDoor-CSB
    BackDoor-CNW
    BackDoor-CKA
    BackDoor-CMI
  Win32 (4)
    Generic Downloader.c
    Puper
    Generic BackDoor.u
    Generic.k
Virus (151)
   (39)
    SymbOS/Cabir.x
    SymbOS/Cabir!lasco
    SymbOS/Skulls.f
    SymbOS/Skulls.e
    SymbOS/Cabir.v
    SymbOS/Cabir!ezboot.v
    SymbOS/Cabir.y
    SymbOS/Cabir!ezboot.y
    SymbOS/Cabir.z
    SymbOS/Cabir!ezboot.w
    SymbOS/Cabir.w
    SymbOS/Skulls.g
    SymbOS/Skulls.h
    SymbOS/Skulls.i
    SymbOS/Cabir!ezboot.e
    SymbOS/Cabir!ezboot.d
    SymbOS/Cabir!ezboot.c
    SymbOS/Cabir!ezboot
    SymbOS/Cabir!ezboot.x
    SymbOS/Cabir!ezboot.s
    SymbOS/Cabir!ezboot.o
    SymbOS/Cabir!ezboot.k
    SymbOS/Cabir!ezboot.f
    SymbOS/Onehop.a!sis
    SymbOS/Skulls.c
    SymbOS/Cabir.g
    SymbOS/Cabir.f
    SymbOS/Skulls!aif
    SymbOS/Cabir.b
    SymbOS/Cabir.a
    SymbOS/Cabir!ezboot.t
    SymbOS/Cabir!ezboot.r
    SymbOS/Skulls.d
    SymbOS/Cabir.m
    SymbOS/Cabir.k
    SymbOS/Cabir!ezboot.q
    SymbOS/Cabir!ezboot.p
    SymbOS/Cabir!ezboot.n
    SymbOS/Cabir.u
  Damaged (1)
    W32/Plexus.dam
  Dropper Email (1)
    W32/Mytob.dr@MM
  E-mail (10)
    W32/Mytob.bh@MM
    W32/Mytob.be@MM
    W32/Mytob.bi@MM
    W32/Mytob.bj@MM
    W32/Mytob.bo@MM
    W32/Mytob.bl@MM
    W32/Mytob.br@MM
    W32/Mytob.bf@MM
    W32/Mytob.cg@MM
    W32/Mytob.ch@MM
  Email (63)
    W32/Mytob.ak@MM
    W32/Mytob.am@MM
    W32/Mytob.b@MM
    W32/Mytob.a@MM
    W32/Mytob.ar@MM
    W32/Mytob.aq@MM
    W32/Mytob.at@MM
    W32/Mytob.av@MM
    W32/Mytob.au@MM
    W32/Kalel.a@MM
    W32/Mytob.bg@MM
    W32/Mytob.bx@MM
    W32/Mytob.cd@MM
    W32/Mytob.cu@MM
    W32/Mytob.bn@MM
    W32/Mytob.ce@MM
    W32/Mytob.dg@MM
    W32/Mytob.dc@MM
    W32/Mytob.dh@MM
    W32/Mytob.r@MM
    W32/Mytob.e@MM
    W32/Mytob.c@MM
    W32/Plexus.e@MM
    W32/Mytob.g@MM
    W32/Mytob.bt@MM
    W32/Mytob.bp@MM
    W32/Kalel.b@MM
    W32/Mytob.ct@MM
    W32/Mytob.cf@MM
    W32/Mytob.di@MM
    W32/Mytob.df@MM
    W32/Mytob.dd@MM
    W32/Mytob.ca@MM
    W32/Mytob.dj@MM
    W32/Mytob.n@MM
    W32/Mytob.f@MM
    W32/Mytob.d@MM
    W32/Mytob.v@MM
    W32/Mytob.u@MM
    W32/Mytob.t@MM
    W32/Mytob.y@MM
    W32/Mytob.cs@MM
    W32/Kalel.c@MM
    W32/Mytob.cz@MM
    W32/Mytob.dm@MM
    W32/Mytob.dk@MM
    W32/Mytob.dz@MM
    W32/Mytob.eb@MM
    W32/Mytob.ah@MM
    W32/Mytob.dq@MM
    W32/Mytob.dt@MM
    W32/Mytob.ds@MM
    W32/Mytob.ea@MM
    W32/Mytob.ag@MM
    W32/Mytob.an@MM
    W32/Mytob.ec@MM
    W32/Mytob.ef@MM
    W32/Mytob.ej@MM
    W32/Plexus.c@MM
    W32/Plexus.d@MM
    W32/Plexus.b@MM
    W32/Mytob.eo@MM
    W32/Mytob.ep@MM
  Email Generic (3)
    W32/Mytob.gen@MM
    W32/Kalel.gen@MM
    W32/Plexus.gen@MM
  Generic (4)
    SymbOS/Skulls.gen
    SymbOS/Onehop.gen!sis
    SymbOS/Cabir.gen
    W32/Nopir.gen
  Generic Worm (10)
    W32/Gaobot.worm.gen.bj
    W32/Spybot.worm.gen.bj
    W32/Gaobot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.i
    W32/Gaobot.worm.gen.u
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.ak
  Internet Worm (1)
    W32/Plexus.a@MM
  Multi-Partite (1)
    W32/Demig
  PDA Device (14)
    SymbOS/Cabir.e
    SymbOS/Cabir.c
    SymbOS/Cabir.h
    SymbOS/Cabir.d
    SymbOS/Cabir.t
    SymbOS/Cabir.r
    SymbOS/Cabir.p
    SymbOS/Cabir.n
    SymbOS/Cabir.l
    SymbOS/Cabir.s
    SymbOS/Cabir.q
    SymbOS/Cabir.o
    SymbOS/Cabir.i
    SymbOS/Cabir.j
  Win32 (2)
    W32/Mental
    W32/Generic.m
  Worm (2)
    W32/Mytob.worm!im
    W32/Opanki.worm