Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4588
DAT Release Date 09/22/2005
Threats Detected 150104
New Detections 19
Enhanced Detections 181

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (6)
  Adware (2)
    Adware-SSF!Hosts
    Adware-Quickbar
  Cookie (3)
    Cookie-ShopAtHome
    Cookie-eMarketers
    Cookie-QSrch
  Joke (1)
    Joke-ZortBomb
Trojan (12)
   (2)
    SymbOS/Multidropper.g!sis
    SymbOS/Multidropper.b!sis
  Application extension (1)
    Keylog-Lica.dll
  Configurator (1)
    BackDoor-CUQ.cfg
  Downloader (1)
    Downloader-AFG
  Dropper (2)
    Keylog-Lica.dr
    StartPage-GX.dr
  Exploit (1)
    UNIX/Exploit-HomeFTP
  Remote Access (2)
    BackDoor-CUQ
    BackDoor-CUP
  Win32 (2)
    Spy-Agent.t
    Generic Delphi.b
Virus (1)
  Email Generic (1)
    W32/Inforyou.gen@MM

Enhanced Detections:

Internet Worm (1)
  E-mail (1)
    W32/Mytob.bk@MM
Program (20)
  - (1)
    KeyHook.dll
  Adware (12)
    Adware-NavHelper
    Adware-CommonName
    Adware-SearchAid
    Adware-DogPile
    Adware-MBKWBar
    Adware-BDSearch
    Adware-RxToolBar
    Adware-YSKKeylog
    Adware-Dashbar
    Adware-Serch!chm
    Adware-NeoToolbar
    Adware-LoggerBuddy
  Downloader (1)
    Adware-Xupiter.dldr
  Dropper (2)
    WinVNC.dr
    Uploader-R.dr
  Keylogger (1)
    Spyware-YSKKeylog
  Registry (1)
    Reg-DetectKeys24
  Spyware (1)
    Spyware-DeskScout
  Win32 (1)
    TrueActive
Trojan (38)
   (8)
    Generic BackDoor.d
    Cafeda
    Generic component
    SymbOS/Multidropper.a!sis
    SymbOS/Multidropper.e!sis
    SymbOS/Multidropper.c!sis
    SymbOS/Multidropper.f!sis
    SymbOS/Multidropper.d!sis
  - (1)
    AdClicker-AJ
  Configurator (1)
    BackDoor-CEP.cfg
  Downloader (3)
    Downloader-ABS
    Downloader-QQ
    Downloader-UE
  Dropper (3)
    Generic BackDoor.dr
    PWS-Banker.dr.h
    BackDoor-CEP.dr
  Generic Worm (1)
    W32/Sdbot.worm.gen.bx
  Heuristic (1)
    New Malware.f
  Parasitic (1)
    Qhosts.apd
  Password Stealer (2)
    PWS-Banker.ad
    Generic PWS.f
  Remote Access (4)
    BackDoor-AWQ.b
    Generic BackDoor.l
    BackDoor-CEO
    BackDoor-CEP
  StartPage (2)
    StartPage-HK
    StartPage-DU
  Win32 (11)
    Generic VB
    Generic BackDoor.e
    Generic Downloader.s
    Generic BackDoor.bd
    Generic PWS.o
    Generic Del.c
    Generic Downloader.ab
    Kakkeys
    AdClicker-BA
    QLowZones-3
    DDoS-Boxed
Virus (122)
  Damaged (1)
    W32/Mytob.dam
  Damaged Worm (2)
    W32/Spybot.worm.dam
    W32/Sdbot.worm.dam
  Dropper Email (1)
    W32/Mytob.dr@MM
  E-mail (9)
    W32/Mytob.be@MM
    W32/Mytob.bi@MM
    W32/Mytob.bj@MM
    W32/Mytob.bo@MM
    W32/Mytob.bl@MM
    W32/Mytob.br@MM
    W32/Mytob.bf@MM
    W32/Mytob.cg@MM
    W32/Mytob.ch@MM
  Email (81)
    W32/Mytob.b@MM
    W32/Mytob.a@MM
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ev@MM
    W32/Mytob.ew@MM
    W32/Mytob.at@MM
    W32/Mytob.fa@MM
    W32/Mytob.aw@MM
    W32/Mytob.av@MM
    W32/Mytob.au@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.bg@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.bx@MM
    W32/Mytob.cd@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.bn@MM
    W32/Mytob.cw@MM
    W32/Mytob.dh@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.e@MM
    W32/Mytob.c@MM
    W32/Mytob.m@MM
    W32/Mytob.g@MM
    W32/Mytob.bs@MM
    W32/Mytob.bt@MM
    W32/Mytob.bp@MM
    W32/Mytob.ct@MM
    W32/Mytob.cf@MM
    W32/Mytob.de@MM
    W32/Mytob.dd@MM
    W32/Mytob.ca@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.n@MM
    W32/Mytob.f@MM
    W32/Mytob.d@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cs@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.dk@MM
    W32/Mytob.dz@MM
    W32/Mytob.eb@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.ds@MM
    W32/Mytob.du@MM
    W32/Mytob.ea@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.eg@MM
    W32/Mytob.ej@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
    W32/Mytob.es@MM
    W32/Mytob.eq@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Generic (2)
    W32/Bagle.gen
    W32/Nopir.gen
  Generic Worm (21)
    W32/Spybot.worm.gen.e
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.au
    W32/Spybot.worm.gen.f
    W32/Sdbot.worm.gen.bg
    W32/Gaobot.worm.gen.bj
    W32/Spybot.worm.gen.bj
    W32/Sdbot.worm.gen.ar
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.bk
    W32/Spybot.worm.gen.by
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Gaobot.worm.gen.by
    W32/Harwig.worm.gen.ba
    W32/Sdbot.worm.gen.ac
    W32/Sdbot.worm.gen.q
  Internet Relay Chat (1)
    W32/IRCbot.worm!MS05-039
  Script (1)
    JS/Cada
  Worm (2)
    W32/Mytob.worm!im
    W32/Spybot.worm