Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4609
DAT Release Date 10/20/2005
Threats Detected 154302
New Detections 21
Enhanced Detections 209

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (8)
  Adware (3)
    Adware-Kudd
    Adware-GoldCas.lnk
    Adware-abetterintrnt.lnk
  Keylogger (1)
    Keylog-Ultra
  Registry (2)
    Zquest
    Searchforit
  Tool (1)
    HTool-nts6
  Win32 (1)
    ErrorGuard
Trojan (11)
  Application extension (2)
    BackDoor-CSN.dll
    BackDoor-CMI.dll
  Downloader (2)
    Downloader-AGE
    Downloader-AGD
  Dropper (2)
    UnRealIRC.dr
    BackDoor-CEB.dr
  Dropper Malware Tool (1)
    Bat/bvm.kit.b.dr
  Internet Relay Chat (1)
    UnRealIRC.txt
  Keylogger (1)
    Keylog-Turtuk
  Remote Access (2)
    BackDoor-CVD
    BackDoor-AWT
Virus (2)
  E-mail (1)
    W32/Mytob.gr@MM
  Worm (1)
    W32/Bozori.worm.i

Enhanced Detections:

Program (28)
   (2)
    Generic Adware.c
    UnRealIRC
  Adware (12)
    Adware-PromulGate
    Adware-SafeSurf
    Adware-CWS
    Adware-BB
    Adware-SearchAid
    Adware-Starware
    Adware-FlashTrack
    Adware-WUpd
    Adware-WinAd
    Adware-INetspeak
    Adware-SurfSideKick
    Adware-abetterintrnt
  Application extension (1)
    Adware-Apropos.dll
  Downloader (3)
    Adware-SearchAid.dldr
    Adware-WUpd.ldr
    Adware-WinAd.dldr
  Dropper (4)
    Adware-Starware.dr
    Adware-WinAd.dr
    Adware-Ezula.dr
    Adware-abetterintrnt.dr
  Generic (2)
    Dialer-RAS.d.gen
    Dialer-256.gen
  Password (1)
    PWDump
  Registry (1)
    TightVNC
  StartPage (1)
    StartPage-IG
  Win32 (1)
    iGetNet
Trojan (68)
   (3)
    Generic component
    Generic.ca
    Generic BackDoor.bb
  - (2)
    IRC/Flood.mirc
    AdClicker-AJ
  Application extension (1)
    BackDoor-AWQ.b.dll
  Configuration settings (1)
    HackerDefender.ini
  Configurator (1)
    BackDoor-AWT.cfg
  Demonstration (1)
    JS/Exploit-DialogArg.a.demo
  DOS (1)
    Unsafe COM
  Downloader (3)
    Downloader-AE
    Downloader-AAP
    PWS-LegMir.dldr
  Dropper (1)
    PWS-Legmir.dr
  Exploit (3)
    JS/Exploit-FFox
    JS/Exploit-DialogArg.b
    JS/Exploit-DialogArg.a
  Generic (9)
    Generic Downloader.gen.bd
    Generic Downloader.gen.be
    PWS-Banker.gen.ba
    Swizzor.gen
    PWS-Banker.gen.bb
    PWS-Banker.gen.b
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    JS/Exploit-DialogArg.gen
  Heuristic (2)
    New Malware.n
    New Malware.j
  Keylogger (1)
    Keylog-Midgard
  Malware Tool (3)
    PWS-QQSender.kit
    Bat/bvm.kit.a
    Bat/bvm.kit.b
  Password (1)
    PWS-LegMir
  Password Stealer (3)
    PWS-QQSender
    PWS-QQTen
    PWS-Passview
  Proxy (1)
    Proxy-Agent.a
  Remote Access (19)
    BackDoor-ABM
    BackDoor-AMQ
    BackDoor-AWQ.b
    BackDoor-AVW
    BackDoor-ALC
    BackDoor-CEB
    BackDoor-AOZ
    Linux/BackDoor-GMM
    BackDoor-CEB.f.sys
    BackDoor-COC
    BackDoor-TT
    BackDoor-CSN
    BackDoor-CPX
    BackDoor-CEB.b.sys
    Generic BackDoor.l
    BackDoor-CEB.c.sys
    BackDoor-CMI
    Generic BackDoor.k
    BackDoor-CKB
  Server (1)
    BackDoor-AWT.svr
  Win32 (11)
    AdClicker-V
    Generic Downloader.a
    HackerDefender
    Generic Proxy.a
    Generic AdClicker.f
    Generic Del
    Generic Downloader.s
    Generic BackDoor.bc
    Generic PWS.o
    Druogna
    Generic PWS.s
Virus (113)
  Damaged (1)
    W32/Mytob.dam
  Damaged Dropper (1)
    W32/Pate.dr.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Downloader Worm (1)
    W32/Bropia.worm.dldr
  Dropper (1)
    W32/Pate.dr
  Email (62)
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.fa@MM
    W32/Mytob.ft@MM
    W32/Mytob.fs@MM
    W32/Mytob.aw@MM
    W32/Mytob.fr@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.fu@MM
    W32/Mytob.fw@MM
    W32/Mytob.fv@MM
    W32/Mytob.ge@MM
    W32/Mytob.go@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.fz@MM
    W32/Mytob.gf@MM
    W32/Mytob.gn@MM
    W32/Mytob.gp@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.gm@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.de@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.eg@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Floppy (1)
    W32/Generic!floppy
  Generic (2)
    W32/Randex.gen
    W32/Poebot.gen
  Generic Worm (17)
    W32/Bozori.worm.gen
    W32/Sdbot.worm.gen.br
    W32/Sdbot.worm.gen.bg
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.ay
    W32/Sdbot.worm.gen.ag
    W32/Sdbot.worm.gen.aw
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.ac
    W32/Sdbot.worm.gen.q
  Internet Worm (3)
    W32/Bozori.worm.b
    W32/Bropia.worm.gen
    W32/Bropia.worm.d
  Win32 (7)
    W32/Randex.a
    W32/Randex.b
    W32/Randex.d
    W32/Randex.f
    W32/Generic.d
    W32/Generic!im
    W32/Generic.m
  Worm (15)
    W32/Bozori.worm.d
    W32/Bozori.worm.e
    W32/Bozori.worm.g
    W32/Bropia.worm.e
    W32/Bropia.worm.ap
    W32/Bropia.worm.m
    W32/Bropia.worm.ac
    W32/Bropia.worm.bn
    W32/Bropia.worm.ag
    W32/Bropia.worm.af
    W32/Bropia.worm.bo
    W32/Bropia.worm.b
    W32/Bropia.worm.a
    W32/Bropia.worm.c
    W32/Bropia.worm.bt