Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4589
DAT Release Date 09/23/2005
Threats Detected 150340
New Detections 29
Enhanced Detections 128

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (3)
  Dropper Generic (1)
    Adware-BHO.gen.dr
  Malware Tool (1)
    PWCrack-Oracle
  Win32 (1)
    AdwareDropper-F
Trojan (21)
   (3)
    AdClicker-DH
    Generic Component.a
    Generic AdClicker.g
  Application extension (1)
    BackDoor-CUR.dll
  Downloader (1)
    Downloader-AFH
  Dropper (1)
    BackDoor-CKB.dr!chm
  Exploit (1)
    Exploit-IIS.Base
  Macro (1)
    X97M/Viki
  Malware Tool (1)
    Nuke-Ventboom
  Password Stealer (2)
    PWS-Poezja
    PWS-JB
  PDA Device (4)
    SymbOS/MultiDropper.H
    SymbOS/MultiDropper.I
    SymbOS/MultiDropper.J
    SymbOS/MultiDropper.K
  Remote Access (1)
    BackDoor-CUR
  Server (1)
    BackDoor-CUR.svr
  Source code (1)
    Nuke-Ventboom.src
  Tool (1)
    Hacktool-ShadowAdmin
  Win32 (2)
    HBScanner
    WinKrootkit
Virus (5)
  Floppy (1)
    W32/Generic!floppy
  Generic (1)
    W32/Mutot.gen
  Generic Worm (1)
    W32/IRCbot.worm.gen.b
  Intended (1)
    W32/Karza.intd
  Worm (1)
    W32/Kelvir.worm.fg

Enhanced Detections:

Program (35)
  - (1)
    FTapp
  Adware (18)
    Adware-TopMoxie
    Adware-Virtumundo
    ClearSearch.dldr
    Adware-PurityScan
    Adware-BHO.gen
    Adware-SearchAid
    Adware-Findemnow
    Adware-Xupiter
    Adware-IEDriver
    Adware-HitHopper
    Adware-Lop
    Adware-DNSErr
    Adware-17Lele
    Adware-Bazookabar
    Adware-CasOnline
    Adware-Getup
    Adware-TopRebates
    Adware-ClickSpring
  Application extension (2)
    Adware-Apropos.dll
    Clearsearch.dll
  Downloader (2)
    Adware-SearchAid.dldr
    Adware-IstBar.dldr
  Dropper (5)
    Adware-SAHAgent.dr
    Adware-SideSearch.dr
    Adware-AZESearch.dr
    Adware-Beginto.dr
    Uploader-R.dr
  Malware Tool (1)
    PWCrack-MPass
  Spyware (1)
    Keylog-Perfect
  Tool (1)
    Tool-Tapion
  Win32 (4)
    PortScan-ScanLine
    FPipe
    Clearsearch
    Generic HTool.a
Trojan (49)
   (9)
    Generic BackDoor.d
    SymbOS/Multidropper.a!sis
    SymbOS/Multidropper.e!sis
    SymbOS/Multidropper.c!sis
    SymbOS/Multidropper.g!sis
    Generic.ca
    SymbOS/Multidropper.b!sis
    SymbOS/Multidropper.f!sis
    SymbOS/Multidropper.d!sis
  - (2)
    Bedrill
    AdClicker-AJ
  Application extension (2)
    CoreFlood.dll
    Spy-Agent.k.dll
  Configurator (1)
    BackDoor-CEP.cfg
  Dropper (1)
    BackDoor-CEP.dr
  Exploit (4)
    Exploit-MhtRedir.gen
    Exploit-IIS.Print
    Exploit-WebDav.e
    Exploit-ObscuredHtml
  Generic (1)
    PWS-Banker.gen.i
  Generic Worm (1)
    W32/Sdbot.worm.gen.bx
  Heuristic (2)
    New Malware.j
    New Malware.f
  Parasitic (1)
    Qhosts.apd
  Password (1)
    PWS-LDPinch
  Password Stealer (3)
    Generic PWS.a
    Generic PWS.g
    PWS-JA
  Proxy (1)
    Proxy-Agent.a
  Remote Access (10)
    IRC-BBot
    BackDoor-CKB.sys
    BackDoor-CUQ
    BackDoor-CUI
    BackDoor-CTA
    QLowZones-21
    Generic BackDoor.l
    BackDoor-CKA
    BackDoor-CKB
    BackDoor-CEP
  Spyware (1)
    Keylog-Perfect.dr
  Win32 (9)
    Generic VB
    Generic FDoS
    Puper
    Generic PWS.o
    Druogna
    Generic Downloader.g
    DDoS-Boxed
    Generic Downloader.e
    Spy-Agent.k
Virus (44)
  Damaged Worm (1)
    W32/Kelvir.worm.dam
  Generic (1)
    W32/Mytob.gen!eml
  Generic Worm (18)
    W32/Sdbot.worm.gen
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.w
    W32/Sdbot.worm.gen.e
    W32/Sdbot.worm.gen.bg
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.i
    W32/Sdbot.worm.gen.bl
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.bd
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Gaobot.worm.gen.by
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.ac
  Internet Relay Chat (1)
    W32/IRCbot.worm!MS05-039
  Internet Worm (2)
    W32/Kelvir.worm.c
    W32/NoChod@MM
  Open Share Worm (1)
    W32/Hilin.worm
  VbScript (1)
    New Script
  Win32 (6)
    W32/Generic.d
    W32/Bugbear.b!data
    W32/Generic.e
    W32/Generic.j
    W32/Generic!im
    W32/Generic.m
  Worm (13)
    W32/Morph.worm
    W32/Kelvir.worm.ev
    W32/Kelvir.worm
    W32/Kelvir.worm.ee
    W32/Kelvir.worm.eg
    W32/Kelvir.worm.eh
    W32/Kelvir.worm.ey
    W32/Kelvir.worm.ef
    W32/Kelvir.worm.d
    W32/Kelvir.worm.j
    W32/Kelvir.worm.r
    W32/Kelvir.worm.ak
    W32/Kelvir.worm.dx