Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4646
DAT Release Date 12/08/2005
Threats Detected 164225
New Detections 20
Enhanced Detections 168

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (2)
  Downloader (1)
    Downloader-AGT
  Tool (1)
    Htool-9xRX.vxd
Trojan (16)
   (1)
    Generic Trojan
  - (1)
    Spam-Mailbot
  Application extension (1)
    PWS-QQGame.dll
  Downloader (1)
    Downloader-ARW
  Dropper (2)
    PWS-QQGame.dr
    MultiDropper-PM
  Exploit (1)
    Exploit-Nextgenss
  Password Stealer (3)
    PWS-JF
    PWS-Banker.au
    PWS-QQGame
  Proxy (1)
    Proxy-Agent.ah
  Remote Access (2)
    BackDoor-CWD
    BackDoor-CWD.sys
  Win32 (3)
    Vapre
    Generic StartPage.r
    QLowZones-37
Virus (2)
  Parasitic (2)
    W32/HLLP.62128.a
    W32/HLLP.62128.b

Enhanced Detections:

Program (23)
   (1)
    Generic Adware.c
  - (1)
    PrcView
  Adware (7)
    Adware-MWS
    Adware-SearchAid
    Adware-CNBar
    Adware-LinkMaker
    Adware-NaviPromo
    Adware-Oemji
    Adware-Spyaxe
  Application extension (2)
    Proxy-OSS.dll
    Adware-CommonName.dll
  Dialer (2)
    Dialer-Generic
    Dialer-257
  Dropper (2)
    Generic Adware.dr
    Accoona.dr
  Keylogger (1)
    Keylog-Ardamax.dr
  Registry (2)
    HideWindow
    Rpcxss
  Tool (1)
    Tool-NetCat
  Win32 (4)
    HiddenRun
    Packed mIRC Client
    Expiorerwz
    QHosts-52
Trojan (63)
   (5)
    Generic BackDoor.d
    Generic component
    Generic.ca
    Generic.dc
    Generic.cb
  - (1)
    QHosts-53
  Application extension (1)
    Spabot.dll
  Configurator (1)
    BackDoor-CEP.cfg
  Downloader (2)
    Downloader-ABU
    Downloader-ACH
  Dropper (4)
    PWS-Cuti.dr
    BackDoor-CKB.dr
    MultiDropper-OP
    BackDoor-CEP.dr
  Dropper Worm (1)
    W32/Sdbot.worm.dr
  Exploit (4)
    JS/Exploit-DragDrop
    Exploit-ObscuredHtml
    Exploit-PNGfile
    Exploit-OleData
  Generic (10)
    Generic Downloader.gen.be
    BackDoor-BAC.gen
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-Banker.gen.t
    Downloader-AQV.gen
    ServU-Daemon.gen.bb
    JS/Exploit-BO.gen
  Generic Worm (1)
    W32/Sdbot.worm.gen.ax
  Heuristic (4)
    New Malware.d
    New Malware.q
    New Malware.n
    New Malware.j
  HTML (1)
    JS/Winbomb
  Internet Relay Chat (1)
    IRC/Flood.c
  Password (1)
    PWS-LegMir
  Password Stealer (1)
    PWS-JA
  Proxy (1)
    Proxy-FBSR
  Remote Access (7)
    BackDoor-ARR
    BackDoor-AWQ.b
    BackDoor-AOZ
    BackDoor-CSL
    BackDoor-CKB
    BackDoor-CEP
    BackDoor-CTK
  StartPage (1)
    StartPage-IH
  Win32 (16)
    Generic Downloader.b
    Generic Downloader.a
    Generic Delphi
    Generic Downloader.c
    AdSquash
    Generic Downloader.s
    Generic Proxy.c
    Generic Downloader.y
    Generic RootKit
    Generic BackDoor.u
    Generic Downloader.ab
    Generic.k
    Generic.b
    Generic Downloader.g
    DDoS-Boxed
    Generic BackDoor.i
Virus (82)
   (6)
    SymbOS/PBstealer.c!app
    SymbOS/PBstealer.a!app
    SymbOS/PBstealer.c!sis
    SymbOS/PBstealer.a!sis
    SymbOS/PBstealer.b!app
    SymbOS/PBstealer.b!sis
  Damaged Worm (1)
    W32/Spybot.worm.dam
  E-mail (6)
    W32/Mytob.bw@MM
    W32/Mytob.cc@MM
    W32/Mytob.cv@MM
    W32/Mytob.da@MM
    W32/Mytob.el@MM
    W32/Mytob.eu@MM
  Email (33)
    W32/Mytob.fm@MM
    W32/Mytob.as@MM
    W32/Mytob.ap@MM
    W32/Mytob.fb@MM
    W32/Mytob.gh@MM
    W32/Mytob.cp@MM
    W32/Mytob.cn@MM
    W32/Mytob.cj@MM
    W32/Mytob.bm@MM
    W32/Mytob.p@MM
    W32/Mytob.c@MM
    W32/Mytob.m@MM
    W32/Mytob.cm@MM
    W32/Mytob.bz@MM
    W32/Mytob.q@MM
    W32/Mytob.h@MM
    W32/Mytob.u@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.w@MM
    W32/Mytob.co@MM
    W32/Mytob.ee@MM
    W32/Mytob.ab@MM
    W32/Mytob.af@MM
    W32/Mytob.dp@MM
    W32/Mytob.dx@MM
    W32/Mytob.ec@MM
    W32/Mytob.ed@MM
    W32/Mytob.ek@MM
    W32/Mytob.hf@MM
    W32/Mytob.gz@MM
    W32/Mytob.hb@MM
    W32/Mytob.et@MM
  Email Generic (3)
    W32/Rontokbro.gen@MM
    W32/Mytob.gen@MM
    W32/Savage.gen@MM
  Generic (3)
    SymbOS/PBstealer.gen!app
    SymbOS/PBstealer.gen!sis
    W32/IRCbot.gen.b
  Generic Worm (19)
    W32/Sdbot.worm.gen.a
    W32/Sdbot.worm.gen
    W32/Spybot.worm.gen.e
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.as
    W32/Sdbot.worm.gen.bg
    W32/Sdbot.worm.gen.d
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.x
    W32/Gaobot.worm.gen.v
    W32/Sdbot.worm.gen.ai
    W32/Sdbot.worm.gen.bz
    W32/Spybot.worm.gen.o
    W32/Sdbot.worm.gen.ah
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.z
    W32/Bobax.worm.gen
  Internet Worm (2)
    W32/Sdbot.worm
    W32/Sdbot.worm!MS05-039
  MS Office Suite (1)
    VBA/Generic.src
  Win32 (2)
    W32/Generic.j
    W32/Generic.Delphi.b
  Worm (6)
    W32/Bobax.worm.j
    W32/Bobax.worm.h
    W32/Bobax.worm.f
    W32/Bobax.worm.i
    W32/Bobax.worm.g
    W32/Bobax.worm.e