Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4579
DAT Release Date 09/12/2005
Threats Detected 147828
New Detections 27
Enhanced Detections 231

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (13)
   (1)
    Tool/fmt22
  Adware (3)
    Adware-WhileUSurf
    Adware-Puper
    Adware-HitHopper
  Dropper (2)
    Spyware-SpyMyPC.dr
    Adware-Kazoom.dr
  Keylogger (1)
    Keylog-AllinOne
  Spyware (1)
    Spyware-SpyMyPC
  Tool (2)
    HTool-AIMInvade
    HTool-WebCracker
  Win32 (3)
    Generic HTool.bb
    Spy-Ex
    GoldLoyalty
Trojan (10)
   (3)
    Derd
    B2C/Porno
    QHosts-39!host
  Damaged (1)
    BackDoor-CMI.dam
  Password Stealer (1)
    PWS-Banker.ak
  Script (1)
    Bat/Porno
  Win32 (4)
    Generic MultiDropper.k
    Generic AdClicker.f
    Generic MultiDropper.l
    DDoS-Roh
Virus (4)
   (1)
    Shkar.319
  Script (2)
    Bat/Necro
    Bat/Lifo
  Worm (1)
    W32/Spybot.worm

Enhanced Detections:

Program (61)
  Adware (15)
    Adware-TopMoxie
    Adware-Cydoor
    Adware-CWS
    Adware-BB
    Adware-Apropos
    Adware-Starware
    Adware-IEDriver
    Adware-Lop
    Adware-GogoTools
    Adware-Megasearch
    Adware-PsGuard
    Adware-Pribi
    Adware-abetterintrnt
    Adware-Qoolaid
    Adware-BkdSpace
  Application extension (5)
    Clearsearch.dll
    ILookup.dll
    Dialer-RAS.de.dll
    Tool-ByShell.dll
    Adware-CWS.dll
  Cookie (20)
    Cookie-Paypopup
    Cookie-2o7
    Cookie-Belnk
    Cookie-247realmedia
    Cookie-ultramercial
    Cookie-overture
    Cookie-spinbox
    Cookie-pointroll
    Cookie-maxserving
    Cookie-paycounter
    Cookie-viewpoint
    Cookie-realmedia
    Cookie-mediaplex
    Cookie-hitbox
    Cookie-cjt1
    Cookie-adviva
    Cookie-advertising
    Cookie-sextracker
    Cookie-xxxtoolbar
    Cookie-free6
  Dialer (2)
    Dialer-Generic.e
    Dialer-RAS.de
  Downloader (3)
    Downloader-EAccel
    Adware-abetterintrnt.dldr
    Downloader-KL
  Dropper (3)
    Adware-Starware.dr
    Adware-abetterintrnt.dr
    Adware-Pribi.dr
  Generic (2)
    Dialer-RAS.gen.aa
    Adware-BHO.gen.b
  Keylogger (1)
    Keylog-Absolute
  Registry (3)
    Reg-DetectKeys23
    Reg-DetectNames14
    Reg-DetectKeys3
  Tool (4)
    HideRun
    Tool-PSList
    Tool-TrayURL
    Tool-ByShell
  Win32 (3)
    SRScanner
    Generic Adware.a
    Generic HTool.b
Trojan (57)
   (3)
    Generic BackDoor.d
    Generic BackDoor.bb
    HideProc
  Application extension (3)
    BackDoor-BAC.dll
    PWS-Banker.ae.dll
    PWS-Banker.j.dll
  Configurator (1)
    BackDoor-CEP.cfg
  Damaged (1)
    MultiDropper-DC.dam
  Downloader (3)
    Downloader-AAP
    Downloader-ABU
    Downloader-ACS
  Dropper (3)
    MultiDropper-DC
    IRC/Flood.dz.dr
    BackDoor-CEP.dr
  Exploit (1)
    Exploit-MS05-036
  Generic (3)
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.g
  Generic Worm (1)
    W32/Sdbot.worm.gen.bx
  Heuristic (1)
    New Malware.j
  Password (3)
    PWS-LegMir
    PWS-QQPass
    PWS-RedNeck
  Password Stealer (2)
    PWS-Banker.j
    PWS-Vipgsm
  Proxy (1)
    Proxy-FBSR
  Remote Access (9)
    BackDoor-ARR
    Backdoor-TW
    BackDoor-AWQ.b
    Netbus.svr
    BackDoor-CTS
    BackDoor-CCH
    BackDoor-CSS
    BackDoor-CMI
    BackDoor-CEP
  StartPage (3)
    StartPage-FN
    StartPage-EX
    StartPage-EC
  Win32 (19)
    Generic BackDoor.b
    HackerDefender
    Generic BackDoor.h
    Generic BackDoor.e
    Generic BackDoor.bg
    Generic VB.b
    Puper
    Generic BackDoor.be
    Generic BackDoor.ba
    Spyre
    Generic Downloader.q
    Generic Downloader.aa
    Generic PWS.o
    Generic AdClicker.a
    Generic Downloader.ab
    Druogna
    QLowZones-2
    AdClicker-BW
    DDoS-Boxed
Virus (113)
   (1)
    Uruguay.6
  Damaged (1)
    W32/Mytob.dam
  Damaged Worm (1)
    W32/Gaobot.worm.dam
  E-mail (6)
    W32/Mytob.bw@MM
    W32/Mytob.cc@MM
    W32/Mytob.cv@MM
    W32/Mytob.da@MM
    W32/Mytob.el@MM
    W32/Mytob.eu@MM
  Email (73)
    W32/Mytob.fm@MM
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.as@MM
    W32/Mytob.ap@MM
    W32/Mytob.fa@MM
    W32/Mytob.fb@MM
    W32/Mytob.aw@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cp@MM
    W32/Mytob.cn@MM
    W32/Mytob.cj@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.bm@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.c@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.cm@MM
    W32/Mytob.de@MM
    W32/Mytob.bz@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.q@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.u@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.w@MM
    W32/Mytob.y@MM
    W32/Mytob.co@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ee@MM
    W32/Mytob.ei@MM
    W32/Mytob.ab@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.af@MM
    W32/Mytob.dp@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.dx@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.ec@MM
    W32/Mytob.ed@MM
    W32/Mytob.eg@MM
    W32/Mytob.ek@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
    W32/Mytob.et@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Generic (2)
    Generic Downloader.gen.be
    W32/Randex.gen
  Generic Worm (20)
    W32/Gaobot.worm.gen.e
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.w
    W32/Spybot.worm.gen.f
    W32/Sdbot.worm.gen.bg
    W32/Gaobot.worm.gen.bj
    W32/Spybot.worm.gen.bj
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.g
    W32/Sdbot.worm.gen.bl
    W32/Sdbot.worm.gen.bk
    W32/Sdbot.worm.gen.ai
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.bw
    W32/Sdbot.worm.gen.ak
    W32/Sdbot.worm.gen.ac
    W32/Bobax.worm.gen
  Internet Relay Chat (1)
    W32/IRCbot.worm!MS05-039
  Script (1)
    Univ.script/99a
  Win32 (4)
    W32/Randex.a
    W32/Randex.b
    W32/Randex.d
    W32/Randex.f
  Worm (2)
    W32/Morph.worm
    W32/Opanki.worm