Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4644
DAT Release Date 12/06/2005
Threats Detected 163504
New Detections 25
Enhanced Detections 236

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
  Win32 (1)
    VSP-Poker
Trojan (6)
   (1)
    Spy-Agent.z
  Exploit (1)
    Exploit-MSJet!BAE
  Heuristic (1)
    New Malware.v
  Password Stealer (1)
    PWS-Banker.at
  Remote Access (1)
    BackDoor-CWB
  Win32 (1)
    Spy-Agent.y
Virus (18)
   (6)
    SymbOS/PBstealer.c!app
    SymbOS/PBstealer.a!app
    SymbOS/PBstealer.c!sis
    SymbOS/PBstealer.a!sis
    SymbOS/PBstealer.b!app
    SymbOS/PBstealer.b!sis
  Email (1)
    W32/Mytob.hi@MM
  Generic (2)
    SymbOS/PBstealer.gen!app
    SymbOS/PBstealer.gen!sis
  Win32 (9)
    W32/Theals.a
    W32/Mkar.m
    W32/Mkar.k
    W32/Mkar.i
    W32/Mkar.g
    W32/Theals.b
    W32/Mkar.l
    W32/Mkar.j
    W32/Mkar.h

Enhanced Detections:

Internet Worm (4)
  - (1)
    W32/Mydoom.p@MM
  E-mail (3)
    W32/Mytob.bk@MM
    W32/Mydoom.u@MM
    W32/Mydoom.v@MM
Program (29)
   (1)
    Generic Adware.c
  - (1)
    Proxy-Daemonize
  Adware (16)
    Adware-180SA
    Adware-CWS
    Adware-MWS
    Adware-BB
    Adware-SearchAid
    Adware-Apropos
    Adware-NaviPromo
    Adware-MyWebSearch
    Adware-NDotNet
    Adware-Pacimedia
    Adware-TSADB
    Uploader-R
    Adware-SideStep
    Adware-Ilookup
    Adware-iGetNet
    Adware-BroadCastPC
  Application extension (1)
    Adware-Apropos.dll
  Damaged (1)
    Adware-NDotNet.dam
  Dialer (2)
    Dialer-Generic.e
    Dialer-238
  Downloader (1)
    Adware-EliteBar.dldr
  Registry (3)
    BargainBuddy
    AdClicker-CI
    XXXToolbar
  Win32 (3)
    AdwareDropper-H
    Winfixer
    UnSpyPC
Trojan (73)
   (6)
    Generic Keylogger
    Generic BackDoor.bb
    Phish-BankFraud.eml.a
    Generic.dc
    Generic PWS.q
    Generic.cb
  Application extension (6)
    BackDoor-BAE.dll
    PWS-Legmir.dll
    PWS-Banker.ar.dll
    MailSkinner.dll
    PWS-Lineage.dll
    PWS-Banker.d.dll
  Configurator (1)
    BackDoor-CEP.cfg
  Downloader (7)
    Downloader-AAI
    Downloader-YO
    Downloader-ABU
    Downloader-ZQ
    Downloader-ARL
    Downloader-ARP
    Downloader-QZ
  Dropper (2)
    MultiDropper-IM
    BackDoor-CEP.dr
  Generic (9)
    Generic Downloader.gen.be
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.p
    PWS-Banker.gen.j
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    RemAdm-RemoteAdmin.gen.ba
    PWS-LDPinch.gen.b
  Heuristic (2)
    New Malware.n
    New Malware.j
  Internet Relay Chat (1)
    IRC/Flood.c
  Password Stealer (5)
    Generic PWS.a
    Generic PWS.g
    PWS-JA
    PWS-Banker.ar
    PWS-Lineage
  Proxy (1)
    Proxy-FBSR
  Remote Access (8)
    BackDoor-AWQ.b
    BackDoor-COC
    Generic BackDoor.l
    BackDoor-CSY
    BackDoor-CTB
    BackDoor-CMI
    BackDoor-CKB
    BackDoor-CEP
  Spam (1)
    Spam-Maxy
  StartPage (1)
    StartPage-IC
  Win32 (23)
    Generic VB.b
    Generic Downloader.d
    W32/Theals
    Generic Downloader.s
    Generic Downloader.bb
    Generic BackDoor.be
    Generic BackDoor.bc
    Generic BackDoor.ba
    Spy-Agent.d
    Generic Downloader.y
    Generic PWS.o
    DNSChanger.a
    Generic QLowZones.a
    Generic BackDoor.u
    Generic Downloader.ab
    Druogna
    Generic.b
    Qoolaid
    Generic Downloader.g
    DDoS-Boxed
    Generic BackDoor.j
    Generic Downloader.h
    Galapoper
Virus (130)
  Application extension (1)
    W32/Monikey.dll
  Damaged (2)
    W32/Mydoom.dam
    W32/Theals.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Dropper Email (1)
    W32/Mytob.dr@MM
  E-mail (14)
    W32/Mydoom.b@MM
    W32/Mydoom.h@MM
    W32/Mydoom.e@MM
    W32/Mydoom.o@MM
    W32/Mytob.be@MM
    W32/Mytob.bi@MM
    W32/Mytob.bj@MM
    W32/Mytob.bo@MM
    W32/Mytob.bl@MM
    W32/Mytob.br@MM
    W32/Mytob.bf@MM
    W32/Mytob.cg@MM
    W32/Mytob.ch@MM
    W32/Mydoom.k@MM
  E-mail worm (4)
    W32/Mydoom.g@MM
    W32/Mydoom.f@MM
    W32/Mydoom.z@MM
    W32/Mydoom.ab@MM
  Email (67)
    W32/Mydoom.i@MM
    W32/Mydoom.a@MM
    W32/Mydoom.j@MM
    W32/Mytob.b@MM
    W32/Mytob.a@MM
    W32/Mytob.ev@MM
    W32/Mytob.at@MM
    W32/Mytob.av@MM
    W32/Mytob.au@MM
    W32/Mytob.fy@MM
    W32/Mytob.fw@MM
    W32/Mytob.fx@MM
    W32/Mytob.gg@MM
    W32/Mytob.gl@MM
    W32/Mytob.gj@MM
    W32/Mytob.gi@MM
    W32/Mytob.bg@MM
    W32/Mytob.bx@MM
    W32/Mytob.cd@MM
    W32/Mytob.gd@MM
    W32/Mytob.gc@MM
    W32/Mytob.gb@MM
    W32/Mytob.ga@MM
    W32/Mytob.gf@MM
    W32/Mytob.gp@MM
    W32/Mytob.gq@MM
    W32/Mydoom.by@MM
    W32/Mytob.bn@MM
    W32/Mytob.dh@MM
    W32/Mytob.r@MM
    W32/Mytob.e@MM
    W32/Mytob.c@MM
    W32/Mytob.gt@MM
    W32/Mytob.g@MM
    W32/Mytob.bt@MM
    W32/Mytob.bp@MM
    W32/Mytob.ct@MM
    W32/Mytob.cf@MM
    W32/Mytob.dd@MM
    W32/Mytob.ca@MM
    W32/Mytob.n@MM
    W32/Mytob.f@MM
    W32/Mytob.d@MM
    W32/Mytob.cs@MM
    W32/Mytob.dk@MM
    W32/Mytob.dz@MM
    W32/Mytob.eb@MM
    W32/Mytob.ds@MM
    W32/Mytob.ea@MM
    W32/Mytob.gu@MM
    W32/Mytob.gx@MM
    W32/Mytob.ej@MM
    W32/Mydoom.bs@MM
    W32/Mytob.gy@MM
    W32/Mytob.hf@MM
    W32/Mytob.gw@MM
    W32/Mytob.gz@MM
    W32/Mytob.hg@MM
    W32/Mytob.hh@MM
    W32/Mydoom.x@MM
    W32/Mydoom.w@MM
    W32/Mytob.gv@MM
    W32/Mytob.he@MM
    W32/Mydoom.m@MM
    W32/Mydoom.l@MM
    W32/Mytob.es@MM
    W32/Mytob.eq@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Email Worm (1)
    W32/Mydoom.r@MM
  Generic (1)
    W32/Monikey.gen
  Generic Worm (26)
    W32/Sdbot.worm.gen
    W32/Sdbot.worm.gen.as
    W32/Sdbot.worm.gen.bu
    W32/Spybot.worm.gen.bx
    W32/Sdbot.worm.gen.bg
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.bl
    W32/Sdbot.worm.gen.bk
    W32/Spybot.worm.gen.by
    W32/Spybot.worm.gen.j
    W32/Sdbot.worm.gen.bs
    W32/Gaobot.worm.gen.u
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.ag
    W32/Sdbot.worm.gen.aw
    W32/Sdbot.worm.gen.bd
    W32/Gaobot.worm.gen.bw
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.bw
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.ac
    W32/Sdbot.worm.gen.q
  Internet Worm (1)
    W32/Mydoom.s@MM
  VbScript (1)
    VBS/Loveletter@MM
  Win32 (5)
    New Win32.g1
    New Win32
    Generic BackDoor.bf
    W32/Generic.m
    W32/Generic.Delphi.a
  Worm (4)
    W32/Generic.worm.b
    W32/Mytob.worm!im
    W32/Opanki.worm
    W32/Mydoom.t@MM