Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4572
DAT Release Date 09/01/2005
Threats Detected 146076
New Detections 29
Enhanced Detections 181

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (8)
  Configuration settings (1)
    Adware-Isearch.ini
  Generic (1)
    Dialer-RAS.dw.gen
  Registry (2)
    Reg-DetectKeys23
    Reg-DetectNames14
  Spyware (1)
    Spyware-KeenSense
  Win32 (3)
    WinFixer
    ICCRus
    BlackSoft
Trojan (8)
  Downloader (1)
    Downloader-AER
  Dropper (1)
    MultiDropper-OD
  Exploit (4)
    Exploit-Awstats
    Exploit-Shoutcast
    Exploit-IIS.Pyroo
    Linux/Exploit-Race
  Remote Access (1)
    BackDoor-CUG
  StartPage (1)
    StartPage-HV
Virus (13)
  Dropper (4)
    W95/Proby.240.dr
    W95/Proby.180.dr
    W95/Proby.234.dr
    W95/Proby.222.dr
  Email Generic (2)
    W32/Mytob.gen@MM!2adb
    W32/Savage.gen@MM
  Email Worm (2)
    W32/Bobax.worm.ab@MM
    W32/Bobax.worm.ac@MM
  Win9x (4)
    W95/Proby.240
    W95/Proby.222
    W95/Proby.234
    W95/Proby.180
  Worm (1)
    W32/Antinny.worm.r

Enhanced Detections:

Program (33)
  Adware (10)
    Adware-PromulGate
    Adware-BHO.gen
    Adware-Xupiter
    Adware-Virtumondo
    Adware-Lop
    Adware-17Lele
    Adware-SpySheriff
    Adware-AZESearch
    Adware-RiverSoft
    Adware-IWantSearch
  Demonstration (4)
    Demo-LeakTest.102
    Demo-LeakTest.101
    Demo-LeakTest.12
    Demo-LeakTest.11
  Dialer (1)
    Dialer-257
  Dropper (2)
    Adware-StatBlaster.dr
    Keylog-Refog.dr
  Generic (2)
    Dialer-RAS.cq.gen
    Keylog-Perfect.gen
  Keylogger (3)
    Keylog-Refog
    Keylog-Quick
    KeyLog-GoldenKey
  Malware Tool (1)
    PWCrack-PassView
  Plugin component (1)
    Tool-Xscan.plugin
  Registry (5)
    Reg-DetectKeys21
    Reg-DetectKeys22
    Reg-DetectKeys6
    Reg-DetectNames13
    FastSearchWeb
  Remote Access (1)
    ServU-Daemon
  Spyware (1)
    Keylog-Perfect
  Tool (2)
    Tool-AppToService
    Tool-Morphine
Trojan (55)
   (2)
    Generic BackDoor.d
    Generic.ca
  Application extension (6)
    BackDoor-BAE.dll
    BackDoor-AWQ.dll
    BackDoor-YQ.dll
    BackDoor-BAC.dll
    Generic.da.dll
    BackDoor-BCB.dll
  Downloader (8)
    Downloader-ADE
    PWS-Banker.dldr
    Downloader-YD
    Downloader-ABS
    Downloader-YN
    Downloader-ZQ
    Downloader-QZ
    Keylog-Perfect.dldr
  Dropper (1)
    BackDoor-AWQ.dr
  Exploit (6)
    Exploit-MhtRedir.gen
    Exploit-Freezer
    Exploit-WinRAR
    Exploit-CrobFTP
    Exploit-Orenosv
    Exploit-SQLInj
  Generic (5)
    Generic Downloader.gen.bd
    AFXrootkit.gen.b
    BackDoor-BAC.gen
    PWS-Banker.gen.ba
    BackDoor-BAC.gen.b
  Heuristic (3)
    New Malware.q
    New Malware.n
    New Malware.j
  Internet Relay Chat (2)
    IRC/Flood.e
    IRC/Flood.er
  Password Stealer (2)
    Generic PWS.a
    PWS-IV
  Proxy (3)
    Proxy-Agent.u
    Proxy-FBSR
    Proxy-Agent.c
  Remote Access (5)
    BackDoor-AKZ
    BackDoor-AWQ
    BackDoor-BCB
    BackDoor-YQ
    BackDoor-CRS
  Server (1)
    BackDoor-ARR.svr
  StartPage (1)
    StartPage-GU
  Win32 (10)
    Generic Downloader.b
    Generic Downloader.a
    Generic Del
    Generic BackDoor.ba
    Spy-Agent.d
    Generic Downloader.x
    Generic PWS.o
    Generic Downloader.ab
    Generic VB.c
    Generic Downloader.h
Virus (93)
   (1)
    Atari/Generic
  Application extension Worm (6)
    W32/Bobax.worm.l.dll
    W32/Bobax.worm.n.dll
    W32/Bobax.worm.d.dll
    W32/Bobax.worm.b.dll
    W32/Bobax.worm.c.dll
    W32/Bobax.worm.a.dll
  Dropper Worm (1)
    W32/Kelvir.worm.dr
  E-mail (1)
    W32/Reatle.f@MM
  Email Generic (5)
    W32/Mytob.gen@MM!55e5
    W32/Mytob.gen@MM!e82
    W32/Mytob.gen@MM!15d
    W32/Mytob.gen@MM!59e8
    W32/Mytob.gen@MM!72a5
  Generic Worm (11)
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.as
    W32/Sdbot.worm.gen.w
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.ar
    W32/Kelvir.worm.gen
    W32/Sdbot.worm.gen.ag
    W32/Sdbot.worm.gen.bd
    W32/Sdbot.worm.gen.bw
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.ac
  Internet Relay Chat (1)
    W32/IRCbot.worm!MS05-039
  Internet Worm (5)
    W32/Kelvir.worm.c
    W32/Kelvir.worm.b
    W32/Kelvir.worm.bh
    W32/Kelvir.worm.f
    W32/Kelvir.worm.dq
  Peer To Peer (1)
    W32/Generic.c!p2p
  Win32 (1)
    New Win32
  Worm (60)
    W32/Kelvir.worm.eo
    W32/Kelvir.worm.ew
    W32/Kelvir.worm.ex
    W32/Kelvir.worm.al
    W32/Kelvir.worm.ap
    W32/Kelvir.worm.an
    W32/Kelvir.worm.ao
    W32/Kelvir.worm.am
    W32/Kelvir.worm.ea
    W32/Kelvir.worm.ec
    W32/Kelvir.worm.ax
    W32/Kelvir.worm.az
    W32/Kelvir.worm.ba
    W32/Kelvir.worm.ay
    W32/Kelvir.worm.bg
    W32/Kelvir.worm.e
    W32/Kelvir.worm.d
    W32/Kelvir.worm.ca
    W32/Kelvir.worm.ci
    W32/Kelvir.worm.g
    W32/Kelvir.worm.i
    W32/Kelvir.worm.k
    W32/Kelvir.worm.j
    W32/Kelvir.worm.a
    W32/Kelvir.worm.cm
    W32/Kelvir.worm.ck
    W32/Kelvir.worm.cj
    W32/Kelvir.worm.o
    W32/Kelvir.worm.n
    W32/Kelvir.worm.p
    W32/Kelvir.worm.s
    W32/Kelvir.worm.l
    W32/Kelvir.worm.m
    W32/Kelvir.worm.t
    W32/Kelvir.worm.ch
    W32/Kelvir.worm.q
    W32/Kelvir.worm.w
    W32/Kelvir.worm.cn
    W32/Kelvir.worm.cu
    W32/Kelvir.worm.cw
    W32/Kelvir.worm.da
    W32/Kelvir.worm.cz
    W32/Kelvir.worm.dd
    W32/Kelvir.worm.ak
    W32/Kelvir.worm.cq
    W32/Kelvir.worm.co
    W32/Kelvir.worm.cv
    W32/Kelvir.worm.cx
    W32/Kelvir.worm.cy
    W32/Kelvir.worm.ab
    W32/Kelvir.worm.ac
    W32/Kelvir.worm.aj
    W32/Kelvir.worm.ai
    W32/Kelvir.worm.db
    W32/Kelvir.worm.dc
    W32/Kelvir.worm.dg
    W32/Kelvir.worm.dv
    W32/Kelvir.worm.dj
    W32/Kelvir.worm.dz
    W32/Kelvir.worm.dy