McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4638
DAT Release Date	11/28/2005
Threats Detected	161754
New Detections	22
Enhanced Detections	652

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (2)

Adware (1)

Adware-Pcadprotector

Dialer (1)

Trojan (11)

Application extension (1)

PWS-Banker.as.dll

Downloader (2)

Dropper (2)

MultiDropper-PJ

MultiDropper-PI

Password (1)

ProcKill (2)

Remote Access (1)

Win32 (2)

Generic Dropper.u

Virus (9)

(3)

Fist.pvb

OC/ac

Companion (1)

Damaged (1)

Win32 (2)

W32/Sober!eml!M681

W32/Rays

Worm (2)

W32/Bropia.worm.bz

Enhanced Detections:

Internet Worm (1)

E-mail (1)

W32/Bagle.gen@MM

Program (9)

Adware (5)

Adware-abetterintrnt

Dialer (1)

Dialer-Generic.e

Downloader (2)

Adware-WinAd.dldr

Uploader-R.dldr

Dropper (1)

Trojan (179)

(12)

Generic BackDoor.d

Generic component

Generic BackDoor.bb

Generic AdClicker.h

Generic Downloader.w

APStrojan.ti.ocx

- (5)

Adshow

Adware (1)

AOL Password (5)

Application extension (4)

AdClicker-AU.dll

AdClicker-AF.dll

Configurator (2)

BackDoor-CEP.cfg

Downloader (6)

Anita

Downloader Generic (1)

Dropper (11)

AdClicker-BA.dr

IRC/Flood.co.dr

MultiDropper-OH

PWS-Banker.dr.i

BackDoor-CEP.dr

AdClicker-AF.dr

APStrojan.st.dr

Dropper Worm (1)

W32/Sdbot.worm.dr

Exploit (1)

Exploit-DcomRpc

Generic (21)

APStrojan.gen18

Generic Downloader.gen.be

AdClicker-C.gen

APStrojan.gen3b

PWS-Banker.gen.ba

PWS-Banker.gen.bb

PWS-Banker.gen.b

PWS-Banker.gen.l

PWS-Banker.gen.i

PWS-Banker.gen.h

PWS-Banker.gen.o

PWS-Banker.gen.g

PWS-Banker.gen.t

APStrojan.gen5c

PWS-Banker.gen.f

AFXrootkit.gen.c

APStrojan.gen5b

Generic Worm (1)

W32/Sdbot.worm.gen.ax

Heuristic (1)

Internet Relay Chat (1)

Macro (3)

W97M/War

Malware Tool (2)

W97M/MakMaker.Kit

Password (3)

Avid

Password Stealer (1)

Proxy (3)

Remote Access (4)

Server (1)

Spam (1)

StartPage (1)

Win31 (2)

Win32 (85)

Lolaweb

W32/Bagle.x!proxy

Generic BackDoor.f

Generic Downloader.c

Ajim

AltNadel

Amber

Alerta

Andum

Ashcan

APCrack

Adietr

Generic Downloader.bb

Generic BackDoor.be

Generic BackDoor.bd

Generic BackDoor.ba

AntiAVG

Generic Downloader.u

Generic Downloader.y

Generic AdClicker.a

Generic Downloader.ab

Generic AdClicker.k

Generic BackDoor.w

Awoi

Advice

Azzip

Generic AdClicker.c

Virus (463)

Boot (1)

Client (1)

W32/Moridin.cli

Damaged (3)

W97M/Minimal.dam

Linux/Etap.d.dam

W97M/Tamago.c.dam

Damaged Worm (1)

W32/Spybot.worm.dam

Dropper (5)

Dropper Email (1)

W97M/Melissa.u.dr@MM

Dropper Worm (1)

W32/Kelvir.worm.dr

E-mail (5)

W32/Bagle.bf@MM

W32/Bagle.ad@MM

E-mail worm (5)

Email (14)

W32/Alcarys.d@MM

W32/Alcarys.c@MM

W32/Alcarys.b@MM

W32/Alcarys.e@MM

W32/Alcarys.f@MM

W32/Bagle.cc@MM

W32/Bagle.ar@MM

W32/Stopin.a@MM

W32/Stopin.d@MM

W32/Stopin.c@MM

W32/Stopin.b@MM

File Infector (4)

Sentinel

Smiley

Floppy (1)

W32/Generic!floppy

Generic (18)

W97M/Swlabs.gen

W97M/Minimal.gen

W32/PetTick.ab.gen

W97M/Panther.gen

W97M/ColdApe.gen

W97M/Opey.a.gen

W97M/Proverb.gen

W97M/Mxfile.gen

Generic Malware Tool (1)

W97M/HMVC.Kit.gen

Generic Self-extracting arch (3)

APStrojan.sfx.gen11

APStrojan.sfx.gen9

APStrojan.sfx.gen8

Generic Worm (31)

W32/Spybot.worm.gen.e

W32/IRCbot.worm.gen

W32/Sdbot.worm.gen.as

W32/Sdbot.worm.gen.br

W32/Spybot.worm.gen.a

W32/Sdbot.worm.gen.bg

W32/Opanki.worm.gen

W32/Sdbot.worm.gen.n

W32/Sdbot.worm.gen.l

W32/Sdbot.worm.gen.j

W32/Sdbot.worm.gen.h

W32/Sdbot.worm.gen.bl

W32/Kelvir.worm.gen

W32/Spybot.worm.gen.j

W32/Sdbot.worm.gen.bs

W32/Gaobot.worm.gen.v

W32/Gaobot.worm.gen.u

W32/Gaobot.worm.gen.bf

W32/Sdbot.worm.gen.ai

W32/Sdbot.worm.gen.aw

W32/Harwig.worm.gen

W32/SpyBot.worm.gen.q

W32/Sdbot.worm.gen.bd

W32/Sdbot.worm.gen.bh

W32/Sdbot.worm.gen.bi

W32/Sdbot.worm.gen.by

W32/Sdbot.worm.gen.bj

W32/Sdbot.worm.gen.bw

W32/Sdbot.worm.gen.y

W32/Sdbot.worm.gen.z

W32/Sdbot.worm.gen.ac

Heuristic (1)

New AOL

Intended (11)

W97M/Minimal.bh.intd

W97M/VMPCK1.ay.intd

W97M/Hope.l.intd

W97M/Walker.b.intd

W97M/Swlabs.i.intd

W97M/Walker.intd

W97M/Swlabs.r.intd

W97M/Walker.i.intd

W97M/Walker.a.intd

W97M/Swlabs.j.intd

Internet Relay Chat (2)

IRC/Etty

Internet Worm (4)

W32/Sdbot.worm!MS05-039

W32/Kelvir.worm.bh

W32/Kelvir.worm.f

W32/Bropia.worm.aj

Linux (1)

Macintosh (1)

MacOS/SevenDust

Macro (257)

W97M/Minimal.bu

W97M/Smy

W97M/Marker.gen

W97M/VMPCK1.gen

W97M/Coke.22231.a

W97M/Minimal.bs

W97M/Minimal.at

W97M/Minimal.ax

W97M/Minimal.bj

W97M/Minimal.bg

W97M/Minimal.be

W97M/Minimal.bc

W97M/Minimal.ba

W97M/Minimal.ay

W97M/Minimal.an

W97M/Minimal.am

W97M/Minimal.ad

W97M/Minimal.bv

W97M/Minimal.bt

W97M/Minimal.au

W97M/Minimal.bf

W97M/Minimal.bd

W97M/Minimal.bb

W97M/Minimal.az

W97M/Minimal.ap

W97M/Minimal.ao

W97M/Minimal.al

W97M/Minimal.ak

W97M/Minimal.aa

W97M/Minimal.bm

W97M/Minimal.gv

W97M/Minimal.ch

W97M/Minimal.aw

W97M/Minimal.he

Malware Tool (2)

W97M/MWVCKC.Kit

mIRC Worm (3)

W32/Hokilo.worm

W97M/Wally.worm

Overwriting (1)

Linux/Mixter.ow

Script (1)

Server (1)

W32/Moridin.svr

Source code (1)

W97M/Heathen.src

Win32 (17)

W32/Sober.g!zip.eml

W32/Alcarys.a@MM

W32/Generic.Delphi.b

W32/Generic.Delphi.a

Worm (65)

W32/Kelvir.worm.eo

W32/Kelvir.worm.ex

W32/MonCher.worm.a

W32/MonCher.worm.b

W32/Kergez.worm

W32/Kelvir.worm.al

W32/Kelvir.worm.ap

W32/Kelvir.worm.an

W32/Bropia.worm.al

W32/Bropia.worm.ak

W32/Kelvir.worm.ao

W32/Kelvir.worm.am

W32/Bropia.worm.am

W32/Kelvir.worm.ec

W32/Generic.worm.h

W32/Kelvir.worm.ax

W32/Bropia.worm.ao

W32/Bropia.worm.an

W32/Kelvir.worm.az

W32/Kelvir.worm.ba

W32/Kelvir.worm.ay

W32/Bropia.worm.ar

W32/Kelvir.worm.bg

W32/Kelvir.worm.e

W32/Bropia.worm.ba

W32/Bropia.worm.az

W32/Bropia.worm.ay

W32/Bropia.worm.ax

W32/Bropia.worm.bb

W32/Kelvir.worm.ca

W32/Bropia.worm.bd

W32/Kelvir.worm.ci

W32/Kelvir.worm.i

W32/Kelvir.worm.o

W32/Kelvir.worm.p

W32/Kelvir.worm.l

W32/Kelvir.worm.ch

W32/Bropia.worm.be

W32/Bropia.worm.bg

W32/Kelvir.worm.q

W32/Kelvir.worm.w

W32/Bropia.worm.bh

W32/Kelvir.worm.cu

W32/Kelvir.worm.da

W32/Kelvir.worm.cz

W32/Kelvir.worm.dd

W32/Kelvir.worm.cq

W32/Kelvir.worm.cv

W32/Kelvir.worm.cx

W32/Kelvir.worm.cy

W32/Bropia.worm.ag

W32/Kelvir.worm.ac

W32/Kelvir.worm.aj

W32/Kelvir.worm.ai

W32/Bropia.worm.ah

W32/Bropia.worm.ai

W32/Opanki.worm

W32/Kelvir.worm.db

IRC/Dbunny.worm

W32/Bropia.worm.br

W32/Kelvir.worm.dy

W32/Bropia.worm.bs