McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4605
DAT Release Date	10/14/2005
Threats Detected	153352
New Detections	32
Enhanced Detections	282

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (4)

Tool (4)

Trojan (21)

(6)

SymbOS/Cardblock

QHosts-46!hosts

Generic AdClicker.h

SymbOS/Cardtrap

Generic AdClicker.i

Dropper (1)

Downloader-IJ.dr

Exploit (2)

Linux/Exploit-dobrk

Flooder (1)

Generic Worm (1)

W32/Sdbot.worm.gen.ax

PDA Device (1)

SymbOS/Commwarrior.C

Proxy (1)

Remote Access (1)

Script (1)

Win32 (6)

Generic Proxy.d

Generic Proxy.c

Generic Proxy.b

Generic AdClicker.j

Virus (7)

(4)

SymbOS/Skulls.cd!sis

SymbOS/Skulls.cc!sis

SymbOS/Commwarrior.c!exe

SymbOS/Commwarrior.c!sis

Email (1)

W32/Mytob.gg@MM

Generic Worm (1)

W32/Sdbot.worm.gen.aw

Win32 (1)

Enhanced Detections:

Internet Worm (1)

E-mail (1)

W32/Mytob.bk@MM

Program (54)

- (1)

Iroffer

Adware (3)

Adware-CashSaver

Adware-abetterintrnt

Application extension (1)

Adware-Softomate.dll

Dialer (1)

Dropper (1)

Tool (47)

Trojan (95)

(4)

Generic BackDoor.d

Rover

Malformed Archive

Application extension (1)

Downloader (4)

PWS-Banker.dldr

Dropper (1)

BackDoor-CKB.dr

Exploit (46)

Exploit-DcomRpc

Linux/Exploit-SendMail

Linux/Exploit-Bind

Linux/Exploit-Cgiexp

Linux/Exploit-Kerio

Linux/Exploit-Shellcode

Linux/Exploit-Freeze

Linux/Exploit-Sqlexp

Linux/Exploit-Adminer

Linux/Exploit-Ciscer

Linux/Exploit-Mulexp

Linux/Exploit-BOrifice

Linux/Exploit-Httpd

Linux/Exploit-Gdslock

Linux/Exploit-TearDrop

Linux/Exploit-OpenSSH

Linux/Exploit-Nhttpd

Linux/Exploit-Modgz

Linux/Exploit-SSPing

Linux/Exploit-Openssl

Linux/Exploit-Imspd

Linux/Exploit-Rsync

Linux/Exploit-Apache

Linux/Exploit-Gildo

Linux/Exploit-Su

Linux/Exploit-Vertex

Linux/Exploit-Racezion

Linux/Exploit-Proftpd

Linux/Exploit-Snuq

Linux/Exploit-Niprint

Linux/Exploit-Ptrace

Linux/Exploit-Bonk

Linux/Exploit-Linuxconf

Exploit-WebDav.d

Exploit-ObscuredHtml

Linux/Exploit-Race

Linux/Exploit-Maxload

Linux/Exploit-Race30

Linux/Exploit-Mmap

Linux/Exploit-Bysin

Linux/Exploit-Moos

Linux/Exploit-Nios

Linux/Exploit-Teso

Linux/Exploit-Ghost

Linux/Exploit-Odm

Linux/Exploit-Ftpd

Generic (10)

Generic Downloader.gen.be

Proxy-Agent.k.gen

PWS-Banker.gen.ba

PWS-Banker.gen.bb

PWS-Banker.gen.b

PWS-Banker.gen.l

PWS-Banker.gen.i

PWS-Banker.gen.o

JS/Exploit-BO.gen

PWS-Banker.gen.f

Heuristic (3)

Internet Relay Chat (1)

Password (1)

Password Stealer (4)

Remote Access (5)

Backdoor-FK.svr

Server (1)

BackDoor-ARR.svr

Tool (1)

Win32 (13)

Generic Downloader.a

Generic Downloader.c

Generic BackDoor.be

Generic Downloader.u

Swizzor

Generic AdClicker.a

Generic Downloader.ab

Generic Downloader.h

Virus (131)

(7)

SymbOS/Skulls.bz!sis

SymbOS/Commwarrior.b!exe

SymbOS/Commwarrior.a!exe

SymbOS/Commwarrior!ezboot

SymbOS/Commwarrior.b!sis

SymbOS/Commwarrior.a!sis

SymbOS/Skulls.by!sis

Damaged Worm (1)

W32/Sdbot.worm.dam

Dropper Email (1)

W32/Mytob.dr@MM

Dropper Worm (1)

W32/Kelvir.worm.dr

E-mail (11)

W32/Reatle.f@MM

W32/Mytob.be@MM

W32/Mytob.bi@MM

W32/Mytob.bj@MM

W32/Mytob.bo@MM

W32/Mytob.bl@MM

W32/Mytob.br@MM

W32/Mytob.bf@MM

W32/Mytob.cg@MM

W32/Mytob.ch@MM

W32/Reatle.gen@MM

Email (41)

W32/Mytob.ev@MM

W32/Mytob.at@MM

W32/Mytob.av@MM

W32/Mytob.au@MM

W32/Mytob.fy@MM

W32/Mytob.fw@MM

W32/Mytob.fx@MM

W32/Mytob.bg@MM

W32/Mytob.bx@MM

W32/Mytob.cd@MM

W32/Mytob.gd@MM

W32/Mytob.gc@MM

W32/Mytob.gb@MM

W32/Mytob.ga@MM

W32/Mytob.gf@MM

W32/Mytob.bn@MM

W32/Mytob.dh@MM

W32/Mytob.bt@MM

W32/Mytob.bp@MM

W32/Mytob.ct@MM

W32/Mytob.cf@MM

W32/Mytob.dd@MM

W32/Mytob.ca@MM

W32/Mytob.cs@MM

W32/Mytob.dk@MM

W32/Mytob.dz@MM

W32/Mytob.eb@MM

W32/Mytob.ds@MM

W32/Mytob.ea@MM

W32/Mytob.ej@MM

W32/Mytob.es@MM

W32/Mytob.eq@MM

Email Generic (2)

W32/Rontokbro.gen@MM

W32/Mytob.gen@MM

Generic (2)

SymbOS/Commwarrior.gen

SymbOS/Commwarrior.gen!sis

Generic Worm (22)

W32/Sdbot.worm.gen

W32/Sdbot.worm.gen.au

W32/Opanki.worm.gen

W32/Sdbot.worm.gen.ar

W32/Sdbot.worm.gen.n

W32/Sdbot.worm.gen.l

W32/Sdbot.worm.gen.j

W32/Sdbot.worm.gen.h

W32/Sdbot.worm.gen.m

W32/Sdbot.worm.gen.k

W32/Sdbot.worm.gen.i

W32/Sdbot.worm.gen.x

W32/Spybot.worm.gen.by

W32/Kelvir.worm.gen

W32/Gaobot.worm.gen.u

W32/Gaobot.worm.gen.bw

W32/Sdbot.worm.gen.bh

W32/Sdbot.worm.gen.by

W32/Sdbot.worm.gen.bj

W32/Sdbot.worm.gen.ac

W32/Sdbot.worm.gen.t

W32/Bobax.worm.gen

Internet Worm (2)

W32/Kelvir.worm.bh

W32/Kelvir.worm.f

Win32 (3)

W32/Generic.Delphi.c

W32/Generic.Delphi.b

W32/Generic.Delphi.a

Worm (38)

W32/Kelvir.worm.eo

W32/Kelvir.worm.ex

W32/Kelvir.worm.al

W32/Kelvir.worm.ap

W32/Kelvir.worm.an

W32/Kelvir.worm.ao

W32/Kelvir.worm.am

W32/Kelvir.worm.ec

W32/Kelvir.worm.ax

W32/Kelvir.worm.az

W32/Kelvir.worm.ba

W32/Kelvir.worm.ay

W32/Kelvir.worm.bg

W32/Kelvir.worm.e

W32/Kelvir.worm.ca

W32/Kelvir.worm.ci

W32/Kelvir.worm.i

W32/Mytob.worm!im

W32/Kelvir.worm.o

W32/Kelvir.worm.p

W32/Kelvir.worm.l

W32/Kelvir.worm.ch

W32/Kelvir.worm.q

W32/Kelvir.worm.w

W32/Kelvir.worm.cu

W32/Kelvir.worm.da

W32/Kelvir.worm.cz

W32/Kelvir.worm.dd

W32/Kelvir.worm.cq

W32/Kelvir.worm.cv

W32/Kelvir.worm.cx

W32/Kelvir.worm.cy

W32/Kelvir.worm.ac

W32/Kelvir.worm.aj

W32/Kelvir.worm.ai

W32/Opanki.worm

W32/Kelvir.worm.db

W32/Kelvir.worm.dy

Vulnerability (1)

Exploit (1)

Exploit-IframeBO