McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4516
DAT Release Date	06/17/2005
Threats Detected	131489
New Detections	16
Enhanced Detections	560

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)

Joke (1)

Joke-CrazyTyping

Trojan (7)

(1)

Downloader (2)

Remote Access (1)

StartPage (1)

Win32 (2)

Virus (8)

(1)

Email (6)

W32/Mytob.do@MM

W32/Mytob.dl@MM

W32/Mytob.dm@MM

W32/Mytob.dn@MM

W32/Mytob.dk@MM

Win32 (1)

Enhanced Detections:

Internet Worm (2)

E-mail (1)

W32/Mytob.bk@MM

Worm (1)

W32/Polybot.gen!irc

Malware (1)

Exploit (1)

Exploit-CodeBase

Program (19)

(8)

Reg-DetectKeys7

Reg-DetectKeys2

Reg-DetectNames5

Reg-DetectNames11

Reg-DetectNames7

Reg-DetectKeys15

Reg-DetectKeys11

Reg-DetectKeys10

Adware (7)

Adware-SearchSquire

Adware-BonziBuddy

Application extension (1)

Adware-SAHAgent.dll

Downloader (1)

Adware-180Solutions.ldr

Keylogger (1)

PornDialer (1)

Trojan (104)

(3)

Generic component

Phish-BankFraud.eml.b

Application extension (1)

Downloader (1)

Dropper (6)

VBS/MultiDropper-DZ

JS/Startpage-K.dr

BackDoor-BCB.dr

BackDoor-CKA.dr

Exploit (4)

Exploit-MhtRedir.gen

Exploit-DirTraversal

Generic (5)

VBS/Satanik.gen

HackerDefender.gen.c

VBS/Sunflower.gen

PWS-Banker.gen.i

PWS-Banker.gen.g

Heuristic (2)

HTML (1)

Intended (1)

VBS/Splatflat.intd

Internet Relay Chat (5)

IRC/Sarz

Java Applet (1)

MAPI (1)

VBS/Freelink@MM

mIRC Worm (1)

IRC/Bat

Password (1)

Password Stealer (2)

Proxy (2)

Remote Access (13)

Generic BackDoor.l

BackDoor-BCB!chm

Script (34)

JS/CardStealer.lnk

VBS/Rots

VBS/Acid

JS/Spam

Bat/Fck

VBS/Winform.bat

VBS/Driveformat

VBS/Cryp

VBS/Rak

Unix (2)

VbScript (2)

Win32 (16)

Generic BackDoor.b

Generic StartPage.f

Generic Downloader.j

Generic Downloader.s

Generic Downloader.af

Spyre

Generic QLowZones.a

Generic BackDoor.u

Generic Downloader.ab

Generic Keylogger.c

Virus (434)

(6)

SymbOS/Fontal.a!app

SymbOS/Fontal.b!app

SymbOS/Fontal.a!sis

SymbOS/Fontal.a!aif

Configuration file (2)

Configuration settings (1)

Damaged (3)

W32/Polybot.dam

Damaged Dropper (1)

W32/Pate.dr.dam

Damaged Worm (1)

W32/Sdbot.worm.dam

Dropper (9)

VBS/NoMercy.c.dr

VBS/NoMercy.a.dr

VBS/TripleSix.dr

VBS/NoMercy.b.dr

E-mail (10)

W32/Mytob.bh@MM

W32/Mytob.be@MM

W32/Mytob.bi@MM

W32/Mytob.bj@MM

W32/Mytob.bo@MM

W32/Mytob.bl@MM

W32/Mytob.br@MM

W32/Mytob.bf@MM

W32/Mytob.cg@MM

W32/Mytob.ch@MM

Email (98)

VBS/Monopoly.c@MM

VBS/Monopoly.b@MM

VBS/Monopoly.a@MM

VBS/Renalo.b@MM

VBS/Stages.27356@MM

VBS/Stages.14559@MM

VBS/Stages.2543@MM

VBS/LoveLetter.be@MM

W32/Mytob.ak@MM

W32/Mytob.am@MM

W32/Mytob.ar@MM

W32/Mytob.aq@MM

W32/Mytob.ao@MM

W32/Mytob.al@MM

W32/Mytob.at@MM

W32/Mytob.aw@MM

W32/Mytob.av@MM

W32/Mytob.au@MM

W32/Mytob.ba@MM

W32/Mytob.bc@MM

W32/Mytob.bb@MM

W32/Mytob.bd@MM

W32/Mytob.bg@MM

W32/Mytob.bu@MM

W32/Mytob.bq@MM

W32/Mytob.by@MM

W32/Mytob.bx@MM

W32/Mytob.cd@MM

W32/Mytob.cq@MM

W32/Mytob.ck@MM

W32/Mytob.cu@MM

W32/Mytob.bn@MM

W32/Mytob.ce@MM

W32/Mytob.cw@MM

W32/Mytob.dg@MM

W32/Mytob.dc@MM

W32/Mytob.dh@MM

VBS/Stages.b@MM

W32/Mytob.bs@MM

W32/Mytob.bt@MM

W32/Mytob.bp@MM

W32/Mytob.ct@MM

W32/Mytob.cf@MM

W32/Mytob.di@MM

W32/Mytob.df@MM

W32/Mytob.de@MM

W32/Mytob.dd@MM

W32/Mytob.ca@MM

W32/Mytob.dj@MM

W32/Mytob.cb@MM

W32/Mytob.cr@MM

W32/Mytob.cl@MM

W32/Mytob.ci@MM

W32/Mytob.cs@MM

W32/Mytob.cx@MM

W32/Mytob.cz@MM

W32/Mytob.cy@MM

VBS/Bumerang@MM

W32/Mytob.aa@MM

W32/Mytob.ad@MM

W32/Mytob.ah@MM

W32/Mytob.aj@MM

W32/Mytob.ag@MM

W32/Mytob.an@MM

Email Generic (4)

VBS/VBSWG2.gen@MM

VBS/Stages.gen@MM

W32/Mytob.gen@MM

Email Script (1)

VBS/Cobbes.bat@MM

File Infector (1)

Generic (11)

VBS/Dismissed.gen

VBS/Devolve.gen

VBS/SCdropper.gen

JS/Dedicated.gen

Generic Worm (14)

W32/Sdbot.worm.gen

W32/Sdbot.worm.gen.w

W32/Sdbot.worm.gen.l

W32/Sdbot.worm.gen.j

W32/Sdbot.worm.gen.h

W32/Sdbot.worm.gen.i

W32/Spybot.worm.gen.j

W32/Gaobot.worm.gen.v

W32/Gaobot.worm.gen.u

W32/Gaobot.worm.gen.t

IRC/Theme.worm.gen

W32/Sdbot.worm.gen.y

W32/Sdbot.worm.gen.z

W32/Sdbot.worm.gen.q

Heuristic (2)

HTML document (8)

Intended (7)

VBS/Reality.intd

VBS/Nuravo.intd

VBS/Redlof.intd

VBS/Coldplay.intd

Internet Relay Chat (11)

Internet Worm (2)

W32/Polybot.l!irc

Macro (1)

mIRC Worm (1)

Overwriting (1)

Script (85)

VBS/Pleo

JS/Lowle

VBS/Cray

VBS/Yova

VBS/Bian

VBS/Babe

VBS/Jome

VBS/Gum

VBS/Mita

Bat/Tezu

JS/Sinop

JS/Plait

JS/Optiz

JS/JVD

PHP/Wsx

VBS/Volv

VBS/Eduk

PHP/Arachnophiliac

VBS/Nyar

Source code (1)

Unix (25)

UNIX/Bud

UNIX/Overwrite.a

UNIX/Overwrite.b

VbScript (11)

VBS/Zeha

VBS/Loveletter@MM

VBS/SWVK.ow.gen

VBScript worm (2)

VBS/Carnival@mm

Vulnerability (1)

JS/Wiretap.demo

Win32 (104)

Generic!Morphine

W32/Qeds

W32/Qeds!keylog

Worm (10)

VBS/Netlog.worm

W32/Dedler.worm

W32/Mytob.worm!im

IRC/Theme.worm.b

VBS/Lucky2000.worm

IRC/Theme.worm.a