Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4591
DAT Release Date 09/27/2005
Threats Detected 150974
New Detections 30
Enhanced Detections 124

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (12)
  Adware (4)
    Adware-ActivShop
    Adware-PerfectSrch
    Adware-IEBar.inf
    Adware-123mania.inf
  Dropper (1)
    Adware-MBKWBar.dr
  Keylogger (1)
    Keylog-Spytector
  Proxy (1)
    Proxy-Candy
  StartPage (3)
    Startpage-YBM
    StartPage-Raze
    StartPage-HZ
  Win32 (2)
    AdwareDropper-G
    PortScan-IPEye
Trojan (16)
   (7)
    SymbOS/Multidropper.k!sis
    SymbOS/Multidropper.j!sis
    SymbOS/Multidropper.i!sis
    SymbOS/Multidropper.h!sis
    Spy-Agent.u
    WSockHook
    Suspicious GIF
  Application extension (1)
    Zapchast.dll
  Dropper (1)
    MultiDropper-OI
  Keylogger (1)
    Keylog-Lica
  Password Stealer (2)
    PWS-Predator
    PWS-JC
  Source code (1)
    Exploit-Mercury.src
  StartPage (2)
    StartPage-HY
    StartPage-HX
  Win32 (1)
    APStrojan.tx
Virus (2)
  Email (1)
    W32/Bagz.aa@MM
  Win32 (1)
    MSIL/InfPatch

Enhanced Detections:

Program (30)
  - (1)
    HideWindow
  Adware (14)
    Adware-Huntbar
    Adware-PurityScan
    Adware-Virtumondo
    Adware-Lop
    Adware-UCMore
    Adware-BDSearch
    Adware-SpeedBar
    Adware-Favman
    Adware-MediaTickets
    Adware-7FaSSt
    Adware-AdPopper
    Adware-EliteBar
    Adware-123mania
    Adware-abetterintrnt
  Dialer (1)
    Dialer-211
  Downloader (2)
    PosX.dldr
    Adware-Lop.dldr
  Dropper (3)
    Adware-Lop.dr
    Adware-UCMore.dr
    Adware-Softomate.dr
  Generic (2)
    Dialer-RAS.bm.gen
    Adware-Url.gen
  Keylogger (1)
    Keylog-Family
  Malware Tool (1)
    PWCrack-NetPass
  Process (1)
    ProcKill-Term
  StartPage (1)
    StartPage-CWS
  Tool (1)
    HTool-Exp-MS04-020
  Win32 (2)
    BookmarkExpress
    HideOut
Trojan (66)
   (10)
    Generic component
    SymbOS/Multidropper.a!sis
    SymbOS/Multidropper.e!sis
    SymbOS/Multidropper.c!sis
    SymbOS/Multidropper.g!sis
    SymbOS/Multidropper.b!sis
    SymbOS/Multidropper.f!sis
    SymbOS/Multidropper.d!sis
    Spy-Agent.c
    Generic BackDoor.bb
  Application extension (4)
    BackDoor-CKB.dll
    PWS-Lineage.dll
    PWS-Banker.dll
    Spy-Agent.k.dll
  Configurator (1)
    BackDoor-CEP.cfg
  DOS (1)
    Unsafe COM
  Downloader (1)
    Downloader-XZ
  Dropper (3)
    BackDoor-CKB.dr
    BackDoor-AWQ.b.dr
    BackDoor-CEP.dr
  Exploit (1)
    VBS/Psyme
  Generic (6)
    PWS-QQPass.gen
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.b
    PWS-Banker.gen.i
    ServU-Daemon.gen.ba
  Heuristic (3)
    New Malware.p
    New Malware.r
    New Malware.j
  Internet Relay Chat (1)
    IRC-Lambot
  Password (1)
    PWS-LDPinch
  Password Stealer (4)
    PWS-IZ
    Generic PWS.f
    PWS-JB
    PWS-Lineage
  Proxy (1)
    Proxy-FBSR
  Remote Access (8)
    BackDoor-CAC
    BackDoor-CCL
    BackDoor-CCH
    BackDoor-CEO
    BackDoor-CMR
    BackDoor-CMI
    BackDoor-CKB
    BackDoor-CEP
  Spyware (1)
    Keylog-Perfect.dr
  StartPage (2)
    StartPage-HS
    StartPage-EX
  Win32 (18)
    Generic BackDoor.b
    SennaSpy2001
    NTServiceLoader
    Generic VB.b
    AdSquash
    Oleloa
    Generic Downloader.s
    Generic PWS.n
    Generic BackDoor.ba
    Spy-Agent.d
    Generic Downloader.aa
    Generic PWS.o
    Generic QLowZones.a
    Generic Downloader.ab
    Druogna
    Generic PWS.s
    Generic Downloader.g
    Generic AdClicker.d
Virus (28)
  E-mail worm (2)
    W32/Bagz.d@MM
    W32/Bagz.e@MM
  Email (5)
    W32/Bagz.g@MM
    W32/Bagz.f@MM
    W32/Bagz.a@MM
    W32/Bagz.c@MM
    W32/Bagz.b@MM
  Email Generic (1)
    W32/Bagz.gen@MM
  Floppy (1)
    W32/Generic!floppy
  Generic (1)
    W32/IRCbot.gen
  Generic Worm (11)
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.w
    W32/Sdbot.worm.gen.bg
    W32/Spybot.worm.gen.bj
    W32/Sdbot.worm.gen.m
    W32/Spybot.worm.gen.o
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.ac
  Heuristic (1)
    New Malware.b
  Internet Relay Chat (1)
    W32/IRCbot.worm!MS05-039
  Script (1)
    W32/Sdbot.bat
  Win32 (2)
    W32/Generic.d
    W32/Generic!im
  Worm (2)
    W32/Opanki.worm
    W32/Sdbot.worm!ftp