Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4590
DAT Release Date 09/26/2005
Threats Detected 150764
New Detections 38
Enhanced Detections 234

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (11)
  Adware (1)
    Adware-Miamore
  Cookie (6)
    Cookie-OfferOptimize
    Cookie-Cliks
    Cookie-abetterintrnt
    Cookie-Yieldmanager
    Cookie-MxTargeting
    Cookie-Btgrab
  Dropper (1)
    Adware-CWS.dr
  Malware Tool (1)
    VTool/mem
  Tool (2)
    Htool-HScan
    Tool-Evid
Trojan (20)
  Downloader (1)
    Downloader-FI
  Dropper (1)
    Multidropper-OH
  Exploit (1)
    Exploit-IECrash
  Generic (1)
    PWS-QQPass.gen
  Heuristic (1)
    New Malware.t
  Password Stealer (2)
    PWS-Banker.am.sys
    PWS-Banker.am
  Remote Access (1)
    BackDoor-CUS!php
  Script (11)
    Bat/ir
    Bat/wusys
    Bat/idiot2
    Bat/Hidefile
    Bat/pnpext
    Bat/partner
    Bat/killer
    Bat/patch2
    Bat/nosh15
    Bat/Hidefile2
    Bat/catroot
  Win32 (1)
    Findor
Virus (7)
   (2)
    Tern
    OC.499
  Damaged (1)
    Zynto.1704.dam
  Email (3)
    W32/Suclove@MM
    W32/Zafi.e@MM
    W32/Mytob.fr@MM
  Generic Worm (1)
    W32/Sdbot.worm.gen.bs

Enhanced Detections:

Internet Worm (1)
  E-mail (1)
    W32/Mytob.bk@MM
Program (36)
   (1)
    Musrch
  Adware (16)
    Adware-Look2Me
    Adware-CommonName
    Adware-CWS
    Adware-SearchAid
    Adware-Nsupdate
    Adware-IEDriver
    Adware-ISTBar
    Adware-LinkMaker
    Adware-Chitika
    Adware-GogoTools
    Adware-Exactsearch
    Adware-Medload
    Adware-Softomate
    Adware-DRSN
    Adware-ClickSpring
    Adware-FFinder
  Application extension (1)
    Adware-CWS.dll
  Configuration settings (1)
    Adware-SAHAgent.ini
  Downloader (4)
    Adware-IAGold.dldr
    Adware-CWS.dldr
    Adware-SearchAid.dldr
    Adware-abetterintrnt.dldr
  Dropper (2)
    Adware-ExactSearch.dr
    WinSpy.dr
  Generic (1)
    Dialer-RAS.gen.aa
  Joke (1)
    Joke-BugRes
  Password (1)
    Winspy
  PornDialer (1)
    Dialer-Generic
  Registry (2)
    Reg-DetectKeys24
    Reg-DetectNames14
  Spam (1)
    Adware-Ezula
  Win32 (4)
    PortScan-ScanLine
    Generic Adware.aa
    FPipe
    RemAdm-RemoteAdmin
Trojan (55)
   (4)
    Generic BackDoor.d
    Generic Dropper.b
    Generic.ca
    Phish-BankFraud.eml.d
  Application extension (3)
    BackDoor-BAC.dll
    BackDoor-AZF.dll
    AdClicker-BA.dll
  Client (1)
    BackDoor-Sub7.cli
  Configurator (1)
    BackDoor-Sub7.cfg
  Downloader (3)
    Downloader-VC
    Downloader-ABZ
    PWS-Banker.dldr
  Dropper (3)
    BackDoor-Sub7.dr
    AdClicker-BA.dr
    Keylog-Spider.dr
  Dropper Worm (1)
    W32/Sdbot.worm.dr
  Exploit (3)
    Exploit-WebDav.e
    Exploit-ObscuredHtml
    JS/Exploit-HelpXSite
  Generic (4)
    Exploit-CodeBase.gen
    BackDoor-BAC.gen
    PWS-Banker.gen.g
    JS/Exploit-BO.gen
  Generic Worm (1)
    W32/Sdbot.worm.gen.bx
  Keylogger (2)
    Keylog-LPK
    Keylog-Logit
  Password (2)
    PWS-LegMir
    PWS-QQPass
  Password Stealer (1)
    PWS-Reox
  Plugin component (1)
    BackDoor-Sub7.plugin
  Remote Access (8)
    IRC-BBot
    Backdoor-AZF
    BackDoor-AWQ.b
    BackDoor-CEB
    BackDoor-Sub7
    BackDoor-CTV
    BackDoor-WV
    BackDoor-CDC
  Script (1)
    BackDoor-CGW.bat
  StartPage (1)
    StartPage-DU
  Win32 (15)
    Generic Downloader.a
    HackerDefender
    Generic BackDoor.bg
    Generic BackDoor.c
    AdClicker-CG
    Generic BackDoor.bd
    Generic BackDoor.bc
    Generic Downloader.u
    Generic AdClicker.b
    Stervis
    Generic.k
    AdClicker-BA
    DDoS-Boxed
    Generic AdClicker.c
    Spy-Agent.k
Virus (142)
   (1)
    Black-Monday.781
  Damaged (1)
    W32/Mytob.dam
  Damaged Worm (2)
    W32/Gaobot.worm.dam
    W32/Sdbot.worm.dam
  Dropper (6)
    Vienna.dr
    Auspar.dr
    Black Monday.dr
    Intruder.dr
    Acid.dr
    Wishes.dr
  Dropper Email (1)
    W32/Mytob.dr@MM
  E-mail (9)
    W32/Mytob.be@MM
    W32/Mytob.bi@MM
    W32/Mytob.bj@MM
    W32/Mytob.bo@MM
    W32/Mytob.bl@MM
    W32/Mytob.br@MM
    W32/Mytob.bf@MM
    W32/Mytob.cg@MM
    W32/Mytob.ch@MM
  E-mail worm (2)
    W32/Zafi.d@MM
    W32/Zafi.c@MM
  Email (89)
    W32/Bagz.y@MM
    W32/Mytob.b@MM
    W32/Mytob.a@MM
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ev@MM
    W32/Mytob.ew@MM
    W32/Mytob.at@MM
    W32/Mytob.fa@MM
    W32/Mytob.aw@MM
    W32/Mytob.av@MM
    W32/Mytob.au@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.bg@MM
    W32/Bagz.m@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.bx@MM
    W32/Mytob.cd@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.bn@MM
    W32/Mytob.cw@MM
    W32/Mytob.dh@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.e@MM
    W32/Mytob.c@MM
    W32/Mytob.m@MM
    W32/Mytob.g@MM
    W32/Mytob.bs@MM
    W32/Mytob.bt@MM
    W32/Mytob.bp@MM
    W32/Mytob.ct@MM
    W32/Mytob.cf@MM
    W32/Mytob.de@MM
    W32/Mytob.dd@MM
    W32/Mytob.ca@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.n@MM
    W32/Mytob.f@MM
    W32/Mytob.d@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cs@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.dk@MM
    W32/Mytob.dz@MM
    W32/Mytob.eb@MM
    W32/Bagz.k@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.ds@MM
    W32/Mytob.du@MM
    W32/Mytob.ea@MM
    W32/Bagz.j@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.eg@MM
    W32/Mytob.ej@MM
    W32/Bagz.r@MM
    W32/Bagz.q@MM
    W32/Zafi.a@MM
    W32/Zafi.b@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
    W32/Mytob.es@MM
    W32/Mytob.eq@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  File Infector (1)
    Black Monday
  Generic (2)
    Generic Downloader.gen.be
    W32/Zafi.gen
  Generic Worm (18)
    W32/Sdbot.worm.gen
    W32/Gaobot.worm.gen.e
    W32/Sdbot.worm.gen.br
    W32/Gaobot.worm.gen.bj
    W32/Sdbot.worm.gen.ar
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.bl
    W32/Sdbot.worm.gen.bk
    W32/Spybot.worm.gen.by
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.bo
    W32/Sdbot.worm.gen.bq
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.bw
    W32/Sdbot.worm.gen.z
    W32/Sdbot.worm.gen.t
  Heuristic (1)
    New AOL
  Internet Worm (1)
    W32/Sdbot.worm!MS05-039
  Script (1)
    Univ.script/99a
  Win32 (5)
    New Win32.s
    W32/Generic.j
    W32/Generic.Delphi.c
    W32/Qeds
    W32/Bagz!proxy
  Worm (1)
    W32/Mytob.worm!im