Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4641
DAT Release Date 12/01/2005
Threats Detected 162775
New Detections 10
Enhanced Detections 174

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (4)
  - (1)
    Viewpoint
  Dropper (1)
    Viewpoint.dr
  Win32 (2)
    UnSpyPC
    Spy-Looxee
Trojan (6)
  Application extension (1)
    PWS-WoW.dll
  Dialer (1)
    QDial-36
  Downloader (2)
    Downloader-ARR
    Downloader-ARQ
  Password Stealer (1)
    PWS-WoW
  Remote Access (1)
    BackDoor-CEB!bat

Enhanced Detections:

Internet Worm (1)
  E-mail (1)
    W32/Mytob.bk@MM
Program (25)
   (1)
    Generic PUP.a
  Adware (12)
    Adware-DFC
    Adware-RBlast.dldr
    Adware-Virtumundo
    Adware-Apropos
    Adware-ISTBar
    Adware-Serch
    Adware-NDotNet
    Adware-Accoona
    Adware-ClickSpring
    Adware-abetterintrnt
    Adware-BkdSpace
    Adware-FFinder
  Application extension (1)
    Keylog-Refog.dll
  Damaged (1)
    Adware-NDotNet.dam
  Dialer (1)
    Dialer-216
  Downloader (1)
    Adware-abetterintrnt.dldr
  Dropper (2)
    Adware-Starware.dr
    Adware-Accoona.dr
  Keylogger (1)
    Keylog-Ardamax.dr
  Registry (2)
    Reg-DetectKeys25
    Reg-DetectNames14
  Tool (1)
    Tool-SRunner
  Win32 (2)
    Tool-WGet
    Winfixer
Trojan (60)
   (7)
    Generic.ca
    Generic Downloader.t
    Generic BackDoor.bb
    Generic BackDoor.t
    Generic.dc
    Generic.cb
    BotSpeedometer
  Application extension (1)
    BackDoor-TW.dll
  Configuration settings (1)
    ServU.ini
  Configurator (1)
    ServU.cfg
  Downloader (8)
    Downloader-DC
    ServU.ldr
    Downloader-JK
    Downloader-HI
    Downloader-NF
    Downloader-ABU
    Downloader-ARO
    Downloader-ADA
  Dropper (2)
    ServU.dr
    BackDoor-CKB.dr
  Dropper Worm (1)
    W32/Sdbot.worm.dr
  Exploit (2)
    JS/Exploit-DDay
    Exploit-MS03-037
  Generic (6)
    Generic Downloader.gen.be
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.i
    PWS-Banker.gen.o
    PWS-Banker.gen.g
  Heuristic (2)
    New Malware.n
    New Malware.j
  Malware Tool (1)
    NTRootKit-K
  Remote Access (9)
    BackDoor-CEB
    BackDoor-BO
    BackDoor-PN
    BackDoor-FS
    BackDoor-CSL
    BackDoor-CEB.b
    BackDoor-ABV
    Generic BackDoor.k
    BackDoor-CTK
  Server (1)
    Orifice2K.svr
  StartPage (1)
    StartPage-EQ
  Win32 (17)
    ServU-Daemon
    Generic Downloader.c
    Generic Downloader.ba
    Generic BackDoor.bg
    Generic BackDoor.c
    Generic Downloader.n
    Generic Dropper.a
    Generic BackDoor.bc
    Spy-Agent.d
    Generic PWS.o
    DNSChanger.a
    Generic BackDoor.u
    Generic Downloader.ab
    ServU
    Generic StartPage.e
    Generic Dropper.t
    AdClicker-DS
Virus (88)
  Dropper (1)
    W32/Valla.dr
  Dropper Email (1)
    W32/Mytob.dr@MM
  E-mail (9)
    W32/Mytob.be@MM
    W32/Mytob.bi@MM
    W32/Mytob.bj@MM
    W32/Mytob.bo@MM
    W32/Mytob.bl@MM
    W32/Mytob.br@MM
    W32/Mytob.bf@MM
    W32/Mytob.cg@MM
    W32/Mytob.ch@MM
  Email (57)
    W32/Mytob.b@MM
    W32/Mytob.a@MM
    W32/Mytob.ev@MM
    W32/Mytob.at@MM
    W32/Mytob.av@MM
    W32/Mytob.au@MM
    W32/Mytob.fy@MM
    W32/Mytob.fw@MM
    W32/Mytob.fx@MM
    W32/Mytob.gg@MM
    W32/Mytob.gl@MM
    W32/Mytob.gj@MM
    W32/Mytob.gi@MM
    W32/Mytob.bg@MM
    W32/Mytob.bx@MM
    W32/Mytob.cd@MM
    W32/Mytob.gd@MM
    W32/Mytob.gc@MM
    W32/Mytob.gb@MM
    W32/Mytob.ga@MM
    W32/Mytob.gf@MM
    W32/Mytob.gp@MM
    W32/Mytob.gq@MM
    W32/Mytob.bn@MM
    W32/Mytob.dh@MM
    W32/Mytob.r@MM
    W32/Mytob.e@MM
    W32/Mytob.c@MM
    W32/Mytob.gt@MM
    W32/Mytob.g@MM
    W32/Mytob.bt@MM
    W32/Mytob.bp@MM
    W32/Mytob.ct@MM
    W32/Mytob.cf@MM
    W32/Mytob.dd@MM
    W32/Mytob.ca@MM
    W32/Mytob.n@MM
    W32/Mytob.f@MM
    W32/Mytob.d@MM
    W32/Mytob.t@MM
    W32/Mytob.cs@MM
    W32/Mytob.dk@MM
    W32/Mytob.dz@MM
    W32/Mytob.eb@MM
    W32/Mytob.ds@MM
    W32/Mytob.ea@MM
    W32/Mytob.gu@MM
    W32/Mytob.gx@MM
    W32/Mytob.ej@MM
    W32/Mytob.gy@MM
    W32/Mytob.hf@MM
    W32/Mytob.gw@MM
    W32/Mytob.gz@MM
    W32/Mytob.gv@MM
    W32/Mytob.he@MM
    W32/Mytob.es@MM
    W32/Mytob.eq@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Generic Worm (11)
    W32/IRCbot.worm.gen
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.i
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.bp
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.z
  Heuristic (1)
    New Malware.b
  Internet Worm (1)
    W32/Sdbot.worm!MS05-039
  MS-DOS Batch (1)
    New Bat
  Peer To Peer (1)
    W32/Kazaar!p2p
  Win32 (3)
    W32/Generic.n
    W32/Generic.m
    W32/Generic.Delphi.a
  Worm (1)
    W32/Mytob.worm!im