Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4611
DAT Release Date 10/24/2005
Threats Detected 154522
New Detections 30
Enhanced Detections 197

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (9)
  Adware (2)
    Adware-EliteBar.xml
    Adware-AdBlock
  Application extension (1)
    Adware-2Search.dll
  Cookie (5)
    Cookie-Tradedoubler
    Cookie-Statcounter
    Cookie-Goclick
    Cookie-Enhance
    Cookie-Monstermarket
  Joke (1)
    Joke-Europrint
Trojan (14)
  Dropper (3)
    MultiDropper-OZ
    StartPage-IJ.dr
    BackDoor-CSB.dr
  Generic (1)
    PWS-Banker.gen.t
  Password Stealer (1)
    PWS-Vassay
  ProcKill (1)
    ProcKill-DD
  Proxy (2)
    Proxy-Wiper
    Proxy-PMapper
  Remote Access (2)
    BackDoor-CVF
    BackDoor-CVE
  StartPage (1)
    StartPage-IJ
  Win32 (3)
    Wincrash
    YIM-Flood
    Generic StartPage.o
Virus (7)
  Dropper (1)
    AM/Supersonic.dr
  Email (2)
    W32/Mytob.gs@MM
    W32/Loosky@MM
  Generic Worm (1)
    W32/SpyBot.worm.gen.q
  Internet Worm (1)
    IRC-Mocbot
  Worm (2)
    W32/Kelvir.worm.fm
    W32/Kelvir.worm.fl

Enhanced Detections:

Program (33)
   (2)
    Generic Adware.c
    WareOut
  Adware (18)
    Adware-Adtomi
    Adware-BrowserAid
    Adware-180SA
    Adware-SideSearch
    Adware-CWS
    Adware-BB
    Adware-SearchAid
    Adware-2Search
    Adware-ZSearch
    Adware-WUpd
    Adware-SBSoft
    Adware-AdStart
    Adware-Kudd
    Adware-CasClient
    Adware-ISearch
    Adware-ExtaCaps
    Adware-NewtonKnows
    Adware-DCToolbar
  Application extension (1)
    ILookup.dll
  Configuration settings (1)
    Adware-EliteBar.ini
  Downloader (2)
    Adware-IstBar.dldr
    Adware-WinAd.dldr
  Dropper (3)
    Spyware-Buddy.dr
    Adware-180SA.dr
    Keylog-Ardamax.dr
  PornDialer (1)
    Dialer-Generic
  Registry (1)
    Reg-DetectKeys25
  Remote Access (1)
    ServU-Daemon
  Win32 (3)
    Remote Command
    Packed mIRC Client
    DumpWin
Trojan (61)
   (4)
    Generic component
    Generic BackDoor.bb
    Generic AdClicker.h
    Spy-Agent.h
  Application extension (5)
    PWS-Gina.dll
    BackDoor-CQL.dll
    PWS-Banker.dll
    Keylog-PP.dll
    Spy-Agent.k.dll
  Downloader (7)
    Downloader-DC
    Downloader-AEU
    Downloader-AFW
    Downloader-XC
    Downloader-AGF
    Downloader-ABS
    Downloader-YN
  Dropper (2)
    VBS/Inor
    W32/Sdbot.dr
  Exploit (2)
    Exploit-ObscuredHtml
    Exploit-DVBBS
  Generic (7)
    Generic Downloader.gen.bd
    BackDoor-EE.gen
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-Banker.gen.g
  Heuristic (1)
    New Malware.j
  Password Stealer (2)
    Generic PWS.b
    Generic PWS.g
  ProcKill (1)
    ProcKill-CZ
  Remote Access (6)
    AFXrootkit
    BackDoor-AWQ.b
    BackDoor-CTV
    BackDoor-CHH
    BackDoor-CSB
    BackDoor-CDC
  Script (1)
    JS/Wonka
  Spam (1)
    AIM-Lowdown
  Spyware (1)
    Keylog-Perfect.dr
  StartPage (1)
    StartPage-HS
  Win32 (20)
    Generic VB
    HackerDefender
    Generic AdClicker.e
    HackerDefender.sys
    Generic MSVC
    Generic Dropper.l
    DesktopHijack
    Generic Downloader.am
    Generic Downloader.d
    Generic Downloader.s
    Generic BackDoor.bc
    Generic Downloader.k
    Generic StartPage.k
    Generic AdClicker.b
    Generic Downloader.aa
    Generic PWS.o
    Generic QLowZones.a
    Generic Downloader.ab
    DDoS-Boxed
    Generic Downloader.e
Virus (103)
  - (1)
    W32/Zexam.dam
  Damaged (1)
    W32/Mytob.dam
  Damaged Worm (2)
    W32/Kelvir.worm.dam
    W32/Sdbot.worm.dam
  Dropper (2)
    AM/Supersonic.dr.b
    AM/Supersonic.dr.a
  E-mail (1)
    W32/Mytob.gr@MM
  Email (62)
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.fa@MM
    W32/Mytob.ft@MM
    W32/Mytob.fs@MM
    W32/Mytob.aw@MM
    W32/Mytob.fr@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.fu@MM
    W32/Mytob.fw@MM
    W32/Mytob.fv@MM
    W32/Mytob.ge@MM
    W32/Mytob.go@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.fz@MM
    W32/Mytob.gf@MM
    W32/Mytob.gn@MM
    W32/Mytob.gp@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.gm@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.de@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.eg@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
  Email Generic (2)
    W32/Rontokbro.gen@MM
    W32/Mytob.gen@MM
  Generic (1)
    W32/P2Load!p2p.gen
  Generic Worm (15)
    W32/Sdbot.worm.gen.bg
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.m
    W32/Sdbot.worm.gen.bs
    W32/Sdbot.worm.gen.aw
    W32/Spybot.worm.gen.o
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.ac
    W32/Sdbot.worm.gen.t
  Internet Worm (1)
    W32/Kelvir.worm.c
  Win32 (1)
    W32/Generic.Delphi.b
  Worm (14)
    W32/Kelvir.worm.ev
    W32/Kelvir.worm
    W32/Kelvir.worm.ee
    W32/Kelvir.worm.eg
    W32/Kelvir.worm.eh
    W32/Kelvir.worm.ey
    W32/Kelvir.worm.fg
    W32/Kelvir.worm.ef
    W32/Kelvir.worm.d
    W32/Kelvir.worm.j
    W32/Kelvir.worm.r
    W32/Kelvir.worm.ak
    W32/Opanki.worm
    W32/Kelvir.worm.dx