Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4558
DAT Release Date 08/15/2005
Threats Detected 143027
New Detections 41
Enhanced Detections 157

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (8)
   (1)
    VSource/cold
  Adware (1)
    Adware-SpywareWall
  Malware Tool (2)
    VTool/pws
    VTool/Kcap
  Script (3)
    Tool/fmt21
    Tool/fmt19
    Tool/fmt20
  Win32 (1)
    PortScan-ScanLine
Trojan (21)
   (8)
    Raregazz
    Keytrap4
    Flooder
    Spoofer
    Kirdik
    Flooder2
    Email Bomb
    Phish-Fraud.Opodo.eml
  Application extension (1)
    Downloader-AEC.dll
  Downloader (2)
    Downloader-AEC
    JS/Downloader-AED
  Malware Tool (1)
    Spam-NoFouY
  Script (9)
    Bat/qz153
    Bat/qd319
    Bat/qd318
    Bat/qd317
    Bat/klw22
    Bat/klw21
    Bat/uqor
    Bat/dt151
    Bat/dt150
Virus (12)
   (3)
    GPTNM
    BCIH
    Justrel.9735
  Dropper (1)
    MG3.dr
  Generic Worm (2)
    W32/Zotob.worm.gen
    W32/Sdbot.worm.gen.as
  Internet Worm (3)
    W32/Zotob.worm
    W32/Sdbot.worm!MS05-039
    W32/Zotob.worm.b
  Script (1)
    VBS/Bigli
  Worm (2)
    HLLW.10464
    W32/Kelvir.worm.eo

Enhanced Detections:

Internet Worm (1)
  E-mail (1)
    W32/Bagle.gen@MM
Malware (1)
  Exploit (1)
    Exploit-CodeBase
Program (26)
  - (1)
    IMIServer.download
  Adware (9)
    Adware-Websearch
    Adware-CWS
    Adware-Wink
    Adware-Lop
    Adware-WinAd
    Adware-Softomate
    Adware-abetterintrnt
    Adware-Qoolaid
    Adware-SurfAccuracy
  Application extension (2)
    Adware-RBlast.dll
    Spyware-Realtime-Spy.dll
  Downloader (2)
    Adware-Lop.dldr
    Adware-Websearch.dldr
  Generic (1)
    Dialer-RAS.dd.gen
  Malware Tool (2)
    PWCrack-AsterWin
    VTool/fake
  PornDialer (1)
    Dialer-Generic
  Registry (5)
    Reg-DetectKeys21
    Reg-DetectNames1
    Reg-DetectNames13
    Reg-DetectKeys18
    Reg-DetectKeys17
  Spyware (1)
    Spyware-Realtime-Spy
  Win32 (2)
    Generic Adware.a
    RemAdm-RemoteAdmin
Trojan (63)
   (9)
    Generic BackDoor.d
    QSD4
    Generic component
    Phish-Fraud.TCom.eml
    Phish-Fraud.Postb.eml
    Phish-Fraud.eml.a
    Phish-Fraud.Otto.eml
    Generic BackDoor.bb
    Phish-BankFraud.eml.b
  - (1)
    W32/Bagle.dll.dr
  Application extension (3)
    PWS-Legmir.dll
    PWS-Iyus.dll
    Spy-ActualSpy.dll
  Application extension Generi (1)
    BackDoor-AXJ.dll.gen
  Configurator (1)
    BackDoor-CEP.cfg
  Denial Of Svc (1)
    IRC/Flood.y
  Downloader (4)
    Downloader-AE
    Downloader-AAP
    Downloader-XN
    Downloader-TB
  Dropper (3)
    Generic BackDoor.dr
    Adware-Wink.dr
    BackDoor-CEP.dr
  Exploit (4)
    Exploit-ByteVerify
    Exploit-MhtRedir.gen
    JS/Exploit-Google
    Exploit-DFind
  Generic (7)
    BackDoor-AGS.gen
    PWS-Banker.gen.ba
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-Banker.gen.g
    PWS-Banker.gen.d
    JS/Exploit-BO.gen
  Heuristic (1)
    New Malware.h
  Keylogger (1)
    Keylog-Elt
  Partition (1)
    Rewrit.a
  Password (1)
    PWS-LegMir
  Password Stealer (1)
    Generic PWS.a
  Proxy (1)
    Proxy-FBSR
  Remote Access (6)
    BackDoor-ACH
    BackDoor-AXJ
    BackDoor-AED
    BackDoor-AMS
    BackDoor-CKA
    BackDoor-CEP
  Script (1)
    Bat/dt999
  StartPage (1)
    StartPage-HS
  Win32 (15)
    HackerDefender
    Generic Downloader.c
    Generic Dropper.l
    DesktopHijack
    Oleloa
    Generic BackDoor.bd
    Generic BackDoor.ba
    Spy-Agent.d
    Spy-ActualSpy
    Generic Downloader.q
    Generic PWS.o
    Generic Dropper.i
    Generic Downloader.ab
    Druogna
    AdClicker-BA
Virus (66)
  Damaged Dropper (1)
    W32/Pate.dr.dam
  Damaged Worm (1)
    W32/Spybot.worm.dam
  Dropper (2)
    TMC.dr
    W32/Pate.dr
  Dropper Worm (1)
    W32/Kelvir.worm.dr
  Generic Worm (20)
    W32/Spybot.worm.gen.e
    W32/Spybot.worm.gen.bj
    W32/Sdbot.worm.gen.ar
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.i
    W32/Sdbot.worm.gen.x
    W32/Sdbot.worm.gen.bk
    W32/Kelvir.worm.gen
    W32/Spybot.worm.gen.j
    W32/Sdbot.worm.gen.ag
    W32/Spybot.worm.gen.o
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.bw
    W32/Tongbot.worm.gen
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.ac
    W32/Gaobot.worm.gen.s
  Internet Worm (2)
    W32/Kelvir.worm.bh
    W32/Kelvir.worm.f
  Script (1)
    Univ.script/99a
  Win32 (3)
    W32/Bagif
    New Win32
    W32/Implinker
  Worm (35)
    W32/Kelvir.worm.al
    W32/Kelvir.worm.ap
    W32/Kelvir.worm.an
    W32/Kelvir.worm.ao
    W32/Kelvir.worm.am
    W32/Kelvir.worm.ec
    W32/Kelvir.worm.ax
    W32/Kelvir.worm.az
    W32/Kelvir.worm.ba
    W32/Kelvir.worm.ay
    W32/Kelvir.worm.bg
    W32/Kelvir.worm.e
    W32/Kelvir.worm.ca
    W32/Kelvir.worm.ci
    W32/Kelvir.worm.i
    W32/Kelvir.worm.o
    W32/Kelvir.worm.p
    W32/Kelvir.worm.l
    W32/Kelvir.worm.ch
    W32/Kelvir.worm.q
    W32/Kelvir.worm.w
    W32/Kelvir.worm.cu
    W32/Kelvir.worm.da
    W32/Kelvir.worm.cz
    W32/Kelvir.worm.dd
    W32/Kelvir.worm.cq
    W32/Kelvir.worm.cv
    W32/Kelvir.worm.cx
    W32/Kelvir.worm.cy
    W32/Kelvir.worm.ac
    W32/Kelvir.worm.aj
    W32/Kelvir.worm.ai
    W32/Kelvir.worm.db
    W32/Sdbot.worm!ftp
    W32/Kelvir.worm.dy