Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4627
DAT Release Date 11/14/2005
Threats Detected 158727
New Detections 19
Enhanced Detections 135

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (6)
   (2)
    VText.101
    VText.100
  Dropper (1)
    Adware-NaviHelper.dr
  Generic (2)
    Adware-abetterintrnt.gen.a
    Dialer-RAS.dx.gen
  Win32 (1)
    PortScan-PxScan
Trojan (7)
  Application extension (1)
    BackDoor-CVN.dll
  Downloader (1)
    Downloader-ARE
  Dropper (3)
    MultiDropper-PF
    MultiDropper-PE
    MultiDropper-PD
  Remote Access (1)
    BackDoor-CVO
  StartPage (1)
    StartPage-IN
Virus (6)
   (2)
    Joiner
    Goyim
  Dropper (1)
    Uracil.dr
  Email (1)
    W32/Sober.t@MM
  Script (1)
    Bat/rnd
  Worm (1)
    W32/Kelvir.worm.fn

Enhanced Detections:

Internet Worm (3)
  E-mail (3)
    W32/Sober.e@MM
    W32/Bagle.gen@MM
    W32/Sober.j@MM
Program (22)
   (1)
    Generic PUP.a
  Adware (10)
    Adware-Look2Me
    Adware-HotBar
    Adware-SearchAid
    Adware-Apropos
    Adware-2Search
    Adware-Altnet
    Adware-EliteBar
    Adware-abetterintrnt
    Adware-Qoolaid
    Adware-BkdSpace
  Application extension (2)
    Adware-EliteBar.dll
    Adware-2Search.dll
  Dialer (1)
    Dialer-RAS.as
  Downloader (2)
    Downloader-BR
    Downloader-FL
  Dropper (1)
    Adware-EliteBar.dr
  Generic (1)
    Dialer-RAS.dv.gen
  Joke (1)
    Joke-OpenCloseCD
  Win32 (3)
    iGetNet
    PortScan-PxGrab
    Favadd
Trojan (60)
   (5)
    Generic.ca
    Generic BackDoor.bb
    SymbOS/Dampig
    Generic.dc
    Generic.cb
  - (1)
    Exploit-MS05-053
  Application extension (3)
    Downloader-DA.dll
    BackDoor-CDF.dll
    Puper.dll
  Configurator (1)
    Downloader-GC.cfg
  Downloader (12)
    Downloader-GC
    Downloader-IQ
    Downloader-IF
    PWS-Banker.dldr
    W32/Bagle.dl
    W32/Bagle.dn
    Downloader-ABU
    Downloader-ABS
    W32/Bagle.dm
    Downloader-AGR
    Downloader-TA.dll
    Downloader-LE
  Downloader Generic (1)
    W32/Bagle.dldr
  Dropper (1)
    IRC/Flood.dz.dr
  Email (1)
    W32/Sober.q
  Exploit (1)
    Exploit-ObscuredHtml
  Generic (5)
    Generic Downloader.gen.be
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PHP/BackDoor.gen
    JS/Exploit-BO.gen
  Heuristic (1)
    New Malware.d
  Remote Access (4)
    BackDoor-ACH
    BackDoor-CTQ
    Generic BackDoor.k
    BackDoor-CES
  Win32 (24)
    Generic Downloader.b
    Generic Downloader.a
    W32/Bagle.x!proxy
    Generic BackDoor.b
    Generic Dropper.l
    Generic Downloader.s
    Generic Downloader.bb
    Generic BackDoor.bd
    Generic BackDoor.bc
    Generic Downloader.k
    Generic Downloader.u
    Generic Downloader.y
    Generic Downloader.q
    Generic Downloader.x
    Generic Downloader.aa
    Generic PWS.o
    Generic Dropper.i
    Generic Downloader.ab
    Generic AdClicker.l
    Generic Downloader.g
    Generic Downloader.f
    DDoS-Boxed
    Generic BackDoor.i
    Generic Downloader.h
Virus (50)
  Damaged (1)
    W32/Sober.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Dropper (3)
    Univ/b.dr
    HLLW.5680.drp
    W32/Sober.dr
  E-mail (7)
    W32/Sober.c@MM
    W32/Sober.d@MM
    W32/Bagle.b@MM
    W32/Sober.p@MM
    W32/Sober.o@MM!M414
    W32/Bagle.ad@MM
    W32/Sober.g@MM
  E-mail worm (8)
    W32/Sober.f@MM
    W32/Sober.b@MM
    W32/Bagle.q@MM
    W32/Bagle.t@MM
    W32/Bagle.u@MM
    W32/Bagle.r@MM
    W32/Bagle.s@MM
    W32/Sober.l@MM
  Email (4)
    W32/Bagle.cc@MM
    W32/Bagle.a@MM
    W32/Sober.m@MM
    W32/Sober.s@MM
  Email Generic (1)
    W32/Rontokbro.gen@MM
  Email Worm (1)
    W32/Sober.k@MM
  Generic Worm (15)
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.br
    W32/Sdbot.worm.gen.bg
    W32/Sdbot.worm.gen.bs
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.bp
    W32/Spybot.worm.gen.o
    W32/Sdbot.worm.gen.bd
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.bw
    W32/Gaobot.worm.gen.bh
    W32/Sdbot.worm.gen.t
  Heuristic (1)
    New Win32.g4
  Internet Worm (2)
    W32/Sober.a@MM
    W32/NoChod@MM
  multipartite (2)
    Natas.mp.4826
    Natas.mp.4788
  Overwriting (1)
    HLL.ow
  Script (1)
    Univ.script/99a
  Win32 (2)
    W32/IRCbot
    W32/Brepibot