Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4544
DAT Release Date 07/27/2005
Threats Detected 138996
New Detections 47
Enhanced Detections 197

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (4)
  Dialer (1)
    Dialer-274
  Dropper (1)
    Adware-SideSearch.dr
  Linux (1)
    Linux/Net3bus
  Win32 (1)
    WFPDisable
Trojan (36)
  Application extension (2)
    BackDoor-CTQ.dll
    BackDoor-ANC.dll
  Downloader (3)
    Downloader-ADN
    Downloader-ADM
    Downloader-ADI
  Dropper (3)
    MyftU.dr
    Downloader-XD.dr
    Linux/Regen2k.dr
  Exploit (6)
    Linux/Exploit-Opera
    Linux/Exploit-Estest
    Linux/Exploit-Proftpd
    Linux/Exploit-Snuq
    Linux/Exploit-Niprint
    Linux/Exploit-Ptrace
  Heuristic (1)
    New RootKit
  Linux (4)
    Linux/Spy-Alk
    Linux/LkmHide
    Linux/Linhider
    Linux/Bscantcp
  Malware Tool (2)
    Linux/Rootkit-U
    Linux/Rootkit-T
  Password Stealer (2)
    PWS-Banker.ac
    Linux/PWS-Logftp
  ProcKill (1)
    ProcKill-CV
  Proxy (1)
    Proxy-Agent.s
  Remote Access (9)
    BackDoor-CTR
    BackDoor-CTQ
    BackDoor-CTP
    Linux/BackDoor-Fpath
    Linux/BackDoor-Longueur
    Linux/BackDoor-Sckit
    Linux/BackDoor-Parasite
    Linux/BackDoor-Gbkdor
    Linux/BackDoor-Bouncer
  Win32 (2)
    MyftU
    Generic FDoS.g
Virus (7)
  Dropper (1)
    W32/Gach.dr
  Email (1)
    W32/Mytob.fa@MM
  Generic (1)
    W32/Gach.gen
  Generic Peer To Peer (1)
    W32/Saje.gen!p2p
  Peer To Peer (1)
    W32/Saje!p2p
  Win32 (1)
    W32/Gach
  Worm (1)
    W32/Mytob.worm!1e

Enhanced Detections:

Internet Worm (1)
  Trojan (1)
    Linux/Adore.worm
Program (24)
   (3)
    VText.3c
    VText.3b
    Generic Adware.inf.a
  - (1)
    CouponBar.dr
  Adware (9)
    Adware-DFC
    Adware-180SA
    Adware-HotBar
    Adware-SideSearch
    Adware-BB
    Adware-Searchcentrix
    Adware-BlogCn
    Adware-KeenValue
    Adware-abetterintrnt
  Application extension (1)
    Adware-SAHAgent.dll
  Dialer (1)
    Dialer-RAS.aj
  Dropper (1)
    Adware-abetterintrnt.dr
  Malware Tool (1)
    Nuke-Nabber
  Registry (4)
    Reg-DetectKeys19
    Reboot-AH
    Reg-DetectKeys1
    Reg-DetectNames13
  Self-extracting archive (1)
    InstallRite.sfx
  Win32 (2)
    Fport
    HideExec
Trojan (96)
   (4)
    Generic component
    Generic.ca
    Generic Downloader.w
    Generic.f
  Application extension (3)
    BackDoor-AWQ.dll
    Puper.dll
    Spy-Agent.k.dll
  Downloader (5)
    Downloader-VF
    PWS-Banker.dldr
    Downloader-ABS
    Downloader-KT
    Downloader-ACZ
  Dropper (4)
    MultiDropper-IY
    BackDoor-SP.dr
    MultiDropper-BN
    W32/Sdbot.dr
  Exploit (36)
    Linux/Exploit-SendMail
    Linux/Exploit-Bind
    Linux/Exploit-Cgiexp
    Linux/Exploit-Kerio
    Linux/Exploit-Shellcode
    Linux/Exploit-Freeze
    Linux/Exploit-Sqlexp
    Linux/Exploit-Adminer
    Linux/Exploit-Ciscer
    Linux/Exploit-Mulexp
    Linux/Exploit-BOrifice
    Linux/Exploit-Httpd
    Linux/Exploit-Gdslock
    Linux/Exploit-TearDrop
    Linux/Exploit-OpenSSH
    Linux/Exploit-Nhttpd
    Linux/Exploit-Modgz
    Linux/Exploit-SSPing
    Linux/Exploit-Openssl
    Linux/Exploit-Imspd
    Linux/Exploit-Rsync
    Linux/Exploit-Apache
    Linux/Exploit-Gildo
    Linux/Exploit-Su
    Linux/Exploit-Vertex
    Linux/Exploit-Racezion
    Linux/Exploit-Maxload
    Linux/Exploit-Race30
    Linux/Exploit-Mmap
    Linux/Exploit-Bysin
    Linux/Exploit-Moos
    Linux/Exploit-Nios
    Linux/Exploit-Teso
    Linux/Exploit-Ghost
    Linux/Exploit-Odm
    Linux/Exploit-Ftpd
  Generic (3)
    IRC/Flood.gen.b
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
  Internet Relay Chat (2)
    IRC/Flood.c
    IRC/Flood.dt
  Overwriting (1)
    Bat.ow/btg
  Password (1)
    PWS-LegMir
  Password Stealer (4)
    PWS-Banker
    PWS-Behz
    PWS-Gunbound
    PWS-Lineage
  Proxy (1)
    Proxy-Piky
  Remote Access (18)
    BackDoor-AWQ.b
    Linux/BackDoor-Cym
    Linux/BackDoor-Note.b
    Linux/BackDoor-Note.a
    Linux/BackDoor-Small
    BackDoor-CCT.dll
    Linux/BackDoor-Promptte
    Linux/BackDoor-Caca
    BackDoor-TC
    BackDoor-CTN
    BackDoor-CGZ
    Linux/BackDoor-Regile
    Linux/BackDoor-Login
    Linux/BackDoor-Rev
    Linux/BackDoor-Rooted
    Linux/BackDoor-Oboy
    Generic BackDoor.m
    Linux/BackDoor-Pulamea
  StartPage (1)
    StartPage-EB
  Vulnerability (1)
    JS/Stealus
  Win32 (12)
    HackerDefender
    Generic MSVC
    MSKILL
    DesktopHijack
    Generic BackDoor.db
    AdClicker-CG
    QLowZones-6
    Generic BackDoor.u
    DDoS-Boxed
    Generic Downloader.h
    Spy-Agent.k
    Generic.da
Virus (76)
   (4)
    VCG.a
    Nightfall.4527
    Nightfall.4518b
    Nightfall.4518a
  Damaged (2)
    Nightfall.dam
    W32/Mytob.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Dropper (4)
    W95/Adson.dr.1734
    W95/Adson.dr.1703a
    W95/Adson.dr
    W95/Adson.dr.1703b
  Email (48)
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.aw@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.de@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.eg@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Generic (2)
    W95/Adson.gen
    W32/Dumaru.w.gen
  Generic Worm (8)
    W32/Sdbot.worm.gen.w
    W32/Gaobot.worm.gen.bj
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Harwig.worm.gen.ba
  Worm (6)
    W32/Mytob.worm
    W32/Mytob.worm!212f
    W32/Mytob.worm!5b00
    W32/Mytob.worm!1a8f
    W32/Mytob.worm!1c40
    W32/Mytob.worm!1068