Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4547
DAT Release Date 08/01/2005
Threats Detected 139788
New Detections 29
Enhanced Detections 184

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (4)
  Adware (1)
    Adware-Oemji
  Malware Tool (1)
    VTool/Neron
  Tool (1)
    Tool-Xkill
  Win32 (1)
    RemAdm-VSA
Trojan (21)
   (3)
    Nupoeh
    Generic.h
    Generic BackDoor.bf
  Application extension (3)
    Generic.da.dll
    Downloader-ADT.dll
    PWS-Banker.ae.dll
  Downloader (3)
    Downloader-ADU
    Downloader-ADT
    Downloader-ADS
  Exploit (1)
    Linux/Exploit-Bonk
  Generic (1)
    Oleloa.gen
  Heuristic (1)
    New Malware.n
  Malware Tool (1)
    Bat/gvb.kit
  Password Stealer (1)
    PWS-Banker.ad
  PDA Device (1)
    SymbOS/Skulls.CB
  Remote Access (2)
    BackDoor-CTU
    Linux/BackDoor-Batamhack
  Script (3)
    Bat/qd315
    Bat/qd314
    Bat/nosh11
  Win32 (1)
    Oleloa
Virus (4)
  Generic Worm (1)
    W32/Sdbot.worm.gen.ar
  Win32 (1)
    W32/Dumaru.bq
  Worm (2)
    W32/Kelvir.worm.ee
    W32/Bropia.worm.bw

Enhanced Detections:

Program (5)
   (1)
    Generic Adware.inf.a
  Adware (3)
    Adware-ISTbar.b
    Adware-180SA
    Adware-ISTBar
  Dropper (1)
    Adware-CasClient.dr
Trojan (106)
   (4)
    Generic BackDoor.d
    Generic component
    Generic.ca
    Phish-BankFraud.eml.b
  Application extension (2)
    PWS-Banker.dll
    BackDoor-AGB.dll
  Configurator (1)
    BackDoor-CEP.cfg
  Denial Of Svc (1)
    IRC/Flood.y
  Downloader (6)
    Downloader-ADP
    Downloader-AAP
    Downloader-ABU
    Downloader-ACH
    Downloader-TB
    Downloader-ACR
  Dropper (2)
    BackDoor-CEP.dr
    PWS-Banker.dr
  Exploit (41)
    Exploit-Sfind
    Linux/Exploit-SendMail
    Linux/Exploit-Bind
    Linux/Exploit-Cgiexp
    Linux/Exploit-Kerio
    Linux/Exploit-Shellcode
    Linux/Exploit-Freeze
    Linux/Exploit-Sqlexp
    Linux/Exploit-Adminer
    Linux/Exploit-Ciscer
    Linux/Exploit-Mulexp
    Linux/Exploit-BOrifice
    Linux/Exploit-Httpd
    Linux/Exploit-Gdslock
    Linux/Exploit-TearDrop
    Linux/Exploit-OpenSSH
    Linux/Exploit-Nhttpd
    Linux/Exploit-Modgz
    Linux/Exploit-SSPing
    Linux/Exploit-Openssl
    Linux/Exploit-Imspd
    Linux/Exploit-Rsync
    Linux/Exploit-Apache
    Linux/Exploit-Gildo
    Linux/Exploit-Su
    Linux/Exploit-Vertex
    Linux/Exploit-Racezion
    Linux/Exploit-Proftpd
    Linux/Exploit-Snuq
    Linux/Exploit-Niprint
    Linux/Exploit-Ptrace
    Linux/Exploit-Maxload
    Linux/Exploit-Race30
    Linux/Exploit-Mmap
    Linux/Exploit-Bysin
    Linux/Exploit-Moos
    Linux/Exploit-Nios
    Linux/Exploit-Teso
    Linux/Exploit-Ghost
    Linux/Exploit-Odm
    Linux/Exploit-Ftpd
  Generic (5)
    APStrojan.gen3b
    PWS-Banker.gen.ba
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    BackDoor-BAC.gen.b
  Generic Worm (1)
    W32/Sdbot.worm.gen.bx
  Heuristic (6)
    Unsafe Bat
    New RootKit
    New Malware.f
    New Malware.h
    New Malware.l
    New Malware.m
  HTML (1)
    HTML/Ebscam.eml
  Password (1)
    PWS-LDPinch
  Password Stealer (2)
    PWS-Banker
    PWS-Lineage
  Proxy (1)
    Proxy-FBSR
  Remote Access (21)
    Linux/BackDoor-Cym
    Linux/BackDoor-Note.b
    Linux/BackDoor-Note.a
    Linux/BackDoor-Small
    BackDoor-AGB
    Linux/BackDoor-Promptte
    Linux/BackDoor-Caca
    Linux/BackDoor-Longueur
    Linux/BackDoor-Sckit
    Linux/BackDoor-Parasite
    Linux/BackDoor-Gbkdor
    Linux/BackDoor-Bouncer
    Linux/BackDoor-Regile
    Linux/BackDoor-Login
    Linux/BackDoor-Rev
    BackDoor-CTD
    Linux/BackDoor-Rooted
    BackDoor-CKA
    Linux/BackDoor-Oboy
    Linux/BackDoor-Pulamea
    BackDoor-CEP
  Server (1)
    BackDoor-ARR.svr
  Win32 (10)
    Generic Downloader.a
    Generic BackDoor.db
    Puper
    Spy-Agent.d
    Generic AdClicker.a
    Generic BackDoor.u
    Generic.k
    Druogna
    Generic Downloader.h
    Generic.da
Virus (73)
  Damaged Worm (2)
    W32/Kelvir.worm.dam
    W32/Sdbot.worm.dam
  Dropper (1)
    W32/Bobax.dr
  E-mail (2)
    W32/Dumaru.ad@MM
    W32/Reatle.gen@MM
  E-mail worm (1)
    W32/Dumaru.y@MM
  Email (12)
    W32/Dumaru.aa@MM
    W32/Dumaru.z@MM
    W32/Dumaru.af@MM
    W32/Dumaru.ab@MM
    W32/Dumaru.ag@MM
    W32/Dumaru.ae@MM
    W32/Dumaru.ah@MM
    W32/Dumaru.av@MM
    W32/Dumaru.al@MM
    W32/Dumaru.ak@MM
    W32/Dumaru.aj@MM
    W32/Dumaru.ai@MM
  Generic Worm (9)
    W32/Sdbot.worm.gen.w
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.h
    W32/Kelvir.worm.gen
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.bw
  Internet Worm (2)
    W32/Kelvir.worm.c
    W32/Kelvir.worm.dw
  Win32 (21)
    W32/Dumaru.ax
    W32/Generic.e
    W32/Dumaru.bf
    W32/Dumaru.bg
    W32/Dumaru.bd
    W32/Dumaru.ay
    W32/Dumaru.be
    W32/Dumaru.ba
    W32/Dumaru.bc
    W32/Generic.Delphi.b
    W32/Generic.Delphi.a
    W32/Dumaru.aw
    W32/Dumaru.bb
    W32/Dumaru.au
    W32/Dumaru.as
    W32/Dumaru.ar
    W32/Dumaru.aq
    W32/Dumaru.ap
    W32/Dumaru.ao
    W32/Dumaru.an
    W32/Dumaru.am
  Worm (23)
    W32/Bropia.worm.bu
    W32/Kelvir.worm.d
    W32/Bropia.worm.x
    W32/Bropia.worm.h
    W32/Bropia.worm.aa
    W32/Kelvir.worm.j
    W32/Bropia.worm.bc
    W32/Kelvir.worm.r
    W32/Kelvir.worm.de
    W32/Kelvir.worm.ak
    W32/Kelvir.worm.ct
    W32/Bropia.worm.bn
    W32/Kelvir.worm.dn
    W32/Kelvir.worm.do
    W32/Kelvir.worm.dv
    W32/Kelvir.worm.dl
    W32/Kelvir.worm.dk
    W32/Kelvir.worm.di
    W32/Kelvir.worm.dh
    W32/Kelvir.worm.df
    W32/Kelvir.worm.dp
    W32/Spybot.worm
    W32/Kelvir.worm.dx