Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4648
DAT Release Date 12/12/2005
Threats Detected 164919
New Detections 32
Enhanced Detections 165

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (8)
   (1)
    Metasploit
  Adware (3)
    Adware-Cygo
    Adware-Exfol
    Adware-CodeClean
  Dropper (2)
    Adware-CodeClean.dr
    Adware-Altnet.dr
  Win32 (2)
    WStudio
    PMT
Trojan (16)
   (2)
    QHosts-55
    QHosts-54
  Configurator (1)
    Generic PWS.b.cfg
  Downloader (3)
    Downloader-ASD
    Downloader-ASB
    Downloader-ASC
  Dropper (1)
    Keylog-Briss.dr
  Exploit (1)
    PHP/Exploit-Mambo452
  Malware Tool (1)
    NTRootKit-S
  Password Stealer (1)
    PWS-Raven
  Remote Access (1)
    BackDoor-CEP!chm
  Script (1)
    Generic Del.d
  Win32 (4)
    Sniff-LegMir
    Generic Keylogger.g
    Generic Keylogger.f
    AdClicker-DU
Virus (8)
  Dropper (2)
    Neat.dr
    Dodo.dr
  Email (1)
    W32/Lovgate.as@MM
  Generic Worm (1)
    W32/Shellot.worm.gen
  Parasitic (1)
    W32/HLLP.104450
  Win32 (3)
    W32/Polybot.dk
    W32/Polybot.dl
    W32/Polybot.dj

Enhanced Detections:

Program (24)
   (2)
    Generic PUP.a
    Generic PUP.b
  Adware (12)
    Adware-CommonName
    Adware-SearchAid
    Adware-ISTBar
    Adware-BDSearch
    Adware-Altnet
    Adware-SpySheriff
    Adware-NaviPromo
    Adware-SmartPops
    Adware-Oemji
    Adware-EZTracks
    Adware-ShopprReports
    Adware-AdBlaster
  Application extension (1)
    Proxy-OSS.dll
  Dialer (1)
    Dialer-182
  DOS (1)
    CD20
  Dropper (2)
    Adware-Starware.dr
    Adware-AZESearch.dr
  Spyware (1)
    Spyware-eBlaster
  Win32 (4)
    Virtual Bouncer
    AdwareDropper-H
    Favadd
    Generic HTool.a
Trojan (86)
   (9)
    Generic BackDoor.d
    Generic Keylogger
    Generic component
    Generic.ca
    Generic BackDoor.bb
    Generic BackDoor.t
    Generic.dc
    Generic.cb
    Apropos
  Application extension Generi (1)
    PWS-Banker.aa.dll.gen
  Configurator (2)
    ServU.cfg
    BackDoor-CEP.cfg
  Downloader (7)
    ServU.ldr
    Downloader-AAP
    Downloader-AAP.b
    Downloader-XC
    Downloader-YO
    Downloader-ABU
    Downloader-AQT
  Dropper (4)
    MultiDropper-BN
    ServU.dr
    MultiDropper-OP
    BackDoor-CEP.dr
  Exploit (4)
    VBS/Psyme
    Exploit-ByteVerify
    Exploit-ByteVerify.a
    Exploit-ObscuredHtml
  Generic (7)
    Generic Downloader.gen.be
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.l
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-Banker.gen.t
  Generic Worm (1)
    W32/Sdbot.worm.gen.ax
  Heuristic (3)
    New BackDoor1
    New UNIX
    New Malware.j
  Password (1)
    PWS-Sagic
  Password Stealer (4)
    Generic PWS.b
    PWS-QQRob
    PWS-Hangame
    PWS-Reox
  Proxy (1)
    Proxy-Agent.a
  Remote Access (9)
    BackDoor-ABM
    Backdoor-TW
    BackDoor-CTV
    BackDoor-CLC
    Generic BackDoor.l
    Generic BackDoor.k
    BackDoor-CES
    BackDoor-CKB
    BackDoor-CEP
  Script (3)
    Bat/StopAV
    Bat/qz156
    Bat/qz150
  Server (1)
    BackDoor-CUR.svr
  Win32 (29)
    Generic Downloader.b
    ServU-Daemon
    Generic Delphi
    Generic Downloader.c
    Generic Downloader.ak
    Generic Downloader.am
    Generic Downloader.d
    W32/Theals
    Puper
    Generic Downloader.j
    Generic Downloader.s
    Generic Downloader.bb
    Generic BackDoor.be
    Generic Downloader.k
    Generic BackDoor.x
    Generic PWS.o
    Generic AdClicker.a
    Generic BackDoor.u
    Generic Downloader.ab
    ServU
    Generic.k
    Generic VB.c
    Generic Downloader.ac
    Generic.b
    Generic Downloader.g
    DDoS-Boxed
    Generic Downloader.e
    Generic Downloader.h
    Generic Del.b
Virus (55)
  Application extension (1)
    W32/Monikey.dll
  Damaged Parasitic (5)
    Darth-Vader.cav.255.e.dam
    Darth-Vader.cav.255.d.dam
    Darth-Vader.cav.255.c.dam
    Darth-Vader.cav.255.b.dam
    Darth-Vader.cav.255.a.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Dropper (3)
    Univ/r.dr
    Univ/f.dr
    Datalock.dr
  Dropper Script (1)
    Univ.script/99a.dr
  Email (5)
    W32/Bagz.m@MM
    W32/Bagz.k@MM
    W32/Bagz.r@MM
    W32/Bagz.af@MM
    W32/Bagz.q@MM
  Email Generic (2)
    W32/Rontokbro.gen@MM
    W32/Bagz.gen@MM
  Floppy (1)
    W32/Generic!floppy
  Generic (2)
    W32/Monikey.gen
    W32/Poebot.gen
  Generic Peer To Peer (1)
    W32/P2Load.gen!p2p
  Generic Worm (15)
    W32/Sdbot.worm.gen.bg
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.bk
    W32/Sdbot.worm.gen.ae
    W32/Sdbot.worm.gen.bs
    W32/Sdbot.worm.gen.ai
    W32/Sdbot.worm.gen.aw
    W32/Gaobot.worm.gen.t
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.q
  Heuristic (1)
    New Malware.b
  Internet Worm (1)
    W32/NoChod@MM
  Parasitic (6)
    Darth-Vader.cav.255.f
    Darth-Vader.cav.255.e
    Darth-Vader.cav.255.d
    Darth-Vader.cav.255.a
    Darth-Vader.cav.255.c
    Darth-Vader.cav.255.b
  Peer To Peer Worm (1)
    W32/PMX.worm!p2p
  Script (1)
    Univ.script/99a
  VbScript (1)
    New Script
  Win32 (5)
    New Win32
    W32/Generic.d
    W32/Generic!im
    W32/Generic.m
    W32/Generic.Delphi.a
  Worm (2)
    W32/Opanki.worm
    W32/Sqorm.worm