Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4584
DAT Release Date 09/19/2005
Threats Detected 149212
New Detections 43
Enhanced Detections 233

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (17)
  Adware (4)
    Adware-AZESearch.lnk
    Adware-Pushtoolbar
    Adware-EZSearch!hosts
    Adware-Look2Me!hosts
  Cookie (3)
    Cookie-CommonName
    Cookie-HoroScope
    Cookie-AFAEnhance
  Downloader (1)
    Downloader-AFD
  Dropper (3)
    Adware-AppsTraka.dr
    Keygen-TheBat.dr
    Adware-AtomicLog.dr
  Malware Tool (1)
    PWCrack-MPass
  Registry (3)
    Reg-DetectNames
    Reg-DetectKeys
    Reg-DetectKeys24
  Win32 (2)
    AltPayments
    Keygen-TheBat
Trojan (14)
   (3)
    SymbOS/Blankfont.b!sis
    SymbOS/Blankfont.c!sis
    QHosts-42
  Downloader (1)
    W32/Bagle.ci
  Dropper (1)
    PWS-Cuti.dr
  Malware Tool (1)
    NTRootkit-O
  Password Stealer (2)
    PWS-JA
    PWS-Cuti
  ProcKill (1)
    ProcKill-CW
  Tool (1)
    Tool-TRCL
  Win32 (4)
    QLowZones-33
    Generic StartPage.m
    AdSquash
    Generic Downloader.am
Virus (12)
   (1)
    PP5
  Application extension (1)
    W32/Alemod.g.dll
  Damaged (1)
    W32/Theals.dam
  Email (1)
    W32/Bagle.ci@MM
  Generic (1)
    W32/P2Load!p2p.gen
  Generic Worm (1)
    W32/Sdbot.worm.gen.av
  Parasitic (1)
    W32/HLLP.19968
  Win32 (4)
    W32/Jeff
    W32/Theals!hosts
    W32/Theals
    W32/Diarot
  Worm (1)
    W32/Bropia.worm.by

Enhanced Detections:

Malware (1)
  Exploit (1)
    Exploit-CodeBase
Program (52)
  Adware (24)
    Adware-SaveNow
    Adware-TVMedia
    Adware-180SA
    Adware-BDE
    Adware-Gohip
    Adware-BB
    Adware-Adsincontext
    Adware-SearchAid
    Adware-Findemnow
    Adware-Apropos
    Adware-Ezula.lnk
    Adware-Adroar
    Adware-AFAEnhance
    Adware-BDEProjector
    Adware-AtomicLog
    Adware-AppsTraka
    Adware-Alexa
    Adware-AdultLinks
    Adware-AdBreak
    Adware-AdBlaster
    Adware-AccesMembre
    Adware-TopRebates
    Adware-Simbar
    Adware-BkdSpace
  Application extension (3)
    Adware-Apropos.dll
    Clearsearch.dll
    Keylog-Ardamax.dll
  Dialer (1)
    Dialer-272
  Downloader (2)
    Adware-POP.dldr
    Adware-SearchAid.dldr
  Dropper (4)
    Adware-BkdSpace.dr
    Keylog-Ardamax.dr
    Adware-Softomate.dr
    Adware-Adroar.dr
  Generic (2)
    Adware-LNK.gen
    Adware-Url.gen
  Keylogger (2)
    Keylog-Advanced
    Keylog-Ardamax
  Malware Tool (1)
    PWCrack-MailPassView
  Password (1)
    Keylog-Hoddle
  Registry (7)
    Reg-DetectKeys23
    Reg-DetectNames14
    Reg-DetectKeys10
    Reg-DetectNames3
    Reg-DetectKeys3
    Reg-DetectKeys18
    BackOrifice
  Remote Access (1)
    ServU-Daemon
  Spam (1)
    Adware-Ezula
  Win32 (3)
    Virtual Bouncer
    Generic Adware.a
    MPass
Trojan (63)
   (5)
    SymbOS/Blankfont.a!sis
    Qhost
    Generic component
    Generic.ca
    Generic PWS.q
  Application extension (3)
    PWS-Progent.dll
    PWS-Hook.dll
    AdClicker-BA.dll
  Configurator (1)
    BackDoor-CEP.cfg
  Downloader (5)
    Downloader-EU
    PWS-Banker.a.dldr
    Downloader-PH
    PWS-LegMir.dldr
    Downloader-ACV
  Dropper (5)
    PWS-Legmir.dr
    MultiDropper-BN
    Floid.dr
    BackDoor-CEP.dr
    Downloader-TP.dr
  Dropper Worm (1)
    W32/Sdbot.worm.dr
  Exploit (2)
    Exploit-ObscuredHtml
    JS/Exploit-HelpXSite
  Generic (3)
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.i
  Generic Worm (1)
    W32/Sdbot.worm.gen.bx
  Password (2)
    PWS-LegMir
    PWS-LDPinch
  Password Stealer (8)
    Generic PWS.e
    PWS-Progent
    PWS-Watcher
    Generic PWS.g
    Generic PWS.i
    PWS-Hook
    PWS-Banker.a
    PWS-Passview
  Proxy (1)
    Proxy-FBSR
  Registry (1)
    E2Give
  Remote Access (10)
    BackDoor-ARR
    BackDoor-AWQ.b
    BackDoor-AVW
    BackDoor-CCT
    BackDoor-CPI
    BackDoor-CLF
    BackDoor-CLC
    Generic BackDoor.m
    Generic BackDoor.o
    BackDoor-CEP
  Server (1)
    BackDoor-ARR.svr
  Spyware (2)
    Unone
    Floid.dll
  StartPage (2)
    StartPage-HS
    StartPage-HP
  Win32 (10)
    Generic Downloader.c
    Generic BackDoor.c
    Generic VB.b
    AgentHacker
    Generic Dropper.n
    Generic FDoS.h
    Generic PWS.o
    Generic Dropper.i
    Druogna
    AdClicker-BA
Virus (117)
   (1)
    PP2
  Downloader Generic (1)
    W32/Bagle.dldr.gen
  Downloader Worm (1)
    W32/Bropia.worm.dldr
  Dropper Worm (1)
    W32/Licu.worm.dr
  E-mail worm (2)
    W32/Bagz.d@MM
    W32/Bagz.e@MM
  Email (10)
    W32/Bagle.cd@MM
    W32/Bagz.y@MM
    W32/Bagz.g@MM
    W32/Bagz.k@MM
    W32/Bagz.j@MM
    W32/Bagz.r@MM
    W32/Bagz.f@MM
    W32/Bagz.a@MM
    W32/Bagz.c@MM
    W32/Bagz.b@MM
  Email Generic (3)
    W32/Dumaru.gen@MM
    W32/Savage.gen@MM
    W32/Bagz.gen@MM
  Generic (1)
    W32/IRCbot.gen
  Generic Worm (19)
    W32/Sdbot.worm.gen.a
    W32/Sdbot.worm.gen.at
    W32/Sdbot.worm.gen.w
    W32/Sdbot.worm.gen.au
    W32/Sdbot.worm.gen.bg
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.i
    W32/Kelvir.worm.gen
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.bw
    W32/Gaobot.worm.gen.bh
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.z
    W32/Sdbot.worm.gen.ac
    W32/Sdbot.worm.gen.t
  Internet Worm (9)
    W32/Sdbot.worm!MS05-039
    W32/Bropia.worm.g
    W32/Bropia.worm.q
    W32/Kelvir.worm.c
    W32/Kelvir.worm.b
    W32/Bropia.worm.n
    W32/Kelvir.worm.dq
    W32/Bropia.worm.gen
    W32/Bropia.worm.d
  Win32 (5)
    W32/Generic.e
    W32/Bagle.bz
    W32/Bagle.ca
    W32/Generic.Delphi.b
    W32/Bagz!proxy
  Worm (64)
    W32/Kelvir.worm.ew
    W32/Bropia.worm.e
    W32/Kelvir.worm.ea
    W32/Generic.worm.h
    W32/Bropia.worm.r
    W32/Bropia.worm.s
    W32/Bropia.worm.ap
    W32/Bropia.worm.f
    W32/Bropia.worm.aq
    W32/Kelvir.worm.bg
    W32/Bropia.worm.av
    W32/Bropia.worm.at
    W32/Bropia.worm.w
    W32/Bropia.worm.v
    W32/Bropia.worm.u
    W32/Kelvir.worm.d
    W32/Bropia.worm.k
    W32/Bropia.worm.i
    W32/Bropia.worm.l
    W32/Bropia.worm.j
    W32/Bropia.worm.h
    W32/Bropia.worm.o
    W32/Kelvir.worm.g
    W32/Bropia.worm.y
    W32/Kelvir.worm.k
    W32/Kelvir.worm.j
    W32/Bropia.worm.m
    W32/Bropia.worm.p
    W32/Kelvir.worm.a
    W32/Bropia.worm.t
    W32/Kelvir.worm.cm
    W32/Kelvir.worm.ck
    W32/Kelvir.worm.cj
    W32/Kelvir.worm.o
    W32/Kelvir.worm.n
    W32/Bropia.worm.ab
    W32/Bropia.worm.z
    W32/Kelvir.worm.s
    W32/Kelvir.worm.l
    W32/Kelvir.worm.m
    W32/Kelvir.worm.t
    W32/Bropia.worm.ac
    W32/Kelvir.worm.cn
    W32/Kelvir.worm.cw
    W32/Kelvir.worm.cz
    W32/Kelvir.worm.ak
    W32/Kelvir.worm.co
    W32/Bropia.worm.bn
    W32/Bropia.worm.bm
    W32/Kelvir.worm.cx
    W32/Kelvir.worm.ab
    W32/Bropia.worm.ag
    W32/Bropia.worm.af
    W32/Kelvir.worm.dc
    W32/Kelvir.worm.dg
    W32/Kelvir.worm.dv
    W32/Bropia.worm.bq
    W32/Kelvir.worm.dj
    W32/Bropia.worm.bo
    W32/Bropia.worm.b
    W32/Bropia.worm.a
    W32/Bropia.worm.c
    W32/Bropia.worm.bt
    W32/Kelvir.worm.dz