Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4653
DAT Release Date 12/19/2005
Threats Detected 166543
New Detections 18
Enhanced Detections 192

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (2)
  Dropper (1)
    Adware-Virtumundo.dr
  Keylogger (1)
    Keylog-Fingerprints
Trojan (13)
  Downloader (1)
    Downloader-ASJ
  Dropper (2)
    Downloader-ASJ.dr
    JS/Multidropper-PN
  Exploit (1)
    Exploit-MS05-039
  Script (2)
    Bat/qz158
    Bat/qd332
  Spam (2)
    Spam-Skull.dll
    Spam-Skull.dr
  Win32 (5)
    AdClicker-DX
    Zap-337
    Del-492
    AdClicker-DW
    AdClicker-DY
Virus (3)
  Email Generic (1)
    W32/Mytob.gen@MM!1922
  Parasitic (1)
    W32/HLLP.12280
  Win32 (1)
    W32/Goli

Enhanced Detections:

Internet Worm (1)
  E-mail (1)
    W32/Bagle.gen@MM
Program (15)
  - (1)
    PrcView
  Adware (4)
    Adware-ISTBar
    Adware-Exactsearch
    Adware-DropSpam
    Adware-Spyaxe
  Application extension (1)
    KeyHook.dll
  Downloader (1)
    Adware-ZangoSA.dldr
  Dropper (1)
    Adware-StarAE.dr
  Generic (1)
    Dialer-RAS.dv.gen
  Keylogger (2)
    Keylog-AllinOne
    Keylog-Ardamax
  Registry (1)
    Qoolaid
  Spyware (1)
    Spyware-Skin
  Win32 (2)
    Virtual Bouncer
    Favadd
Trojan (107)
   (4)
    Spy-Agent.u
    Generic BackDoor.bb
    Generic Downloader.v
    Generic.cb
  Application extension (2)
    BackDoor-AWQ.dll
    PWS-Lineage.dll
  Configurator (1)
    BackDoor-CEP.cfg
  Downloader (2)
    PWS-Banker.dldr
    Downloader-ABU
  Dropper (2)
    PWS-Cuti.dr
    BackDoor-CEP.dr
  Exploit (50)
    Linux/Exploit-SendMail
    Linux/Exploit-Bind
    Linux/Exploit-Cgiexp
    Linux/Exploit-Kerio
    Linux/Exploit-Shellcode
    Linux/Exploit-Freeze
    Linux/Exploit-Sqlexp
    Linux/Exploit-Adminer
    Linux/Exploit-Ciscer
    Linux/Exploit-Mulexp
    Linux/Exploit-BOrifice
    Linux/Exploit-Httpd
    Linux/Exploit-Gdslock
    Linux/Exploit-TearDrop
    Linux/Exploit-OpenSSH
    Linux/Exploit-Nhttpd
    Linux/Exploit-Modgz
    Linux/Exploit-SSPing
    Linux/Exploit-Openssl
    Linux/Exploit-Imspd
    Linux/Exploit-Rsync
    Linux/Exploit-Apache
    Linux/Exploit-Gildo
    Linux/Exploit-Su
    Linux/Exploit-Vertex
    Linux/Exploit-Racezion
    Linux/Exploit-Proftpd
    Linux/Exploit-Snuq
    Linux/Exploit-Niprint
    Linux/Exploit-Ptrace
    Linux/Exploit-Bonk
    Linux/Exploit-Linuxconf
    Linux/Exploit-Race
    Linux/Exploit-Maxload
    Linux/Exploit-dobrk
    Linux/Exploit-fstring
    Exploit-MS03-037
    Linux/Exploit-Race30
    Exploit-OleData
    Linux/Exploit-Mmap
    Linux/Exploit-Bysin
    Linux/Exploit-Moos
    Linux/Exploit-Nios
    Linux/Exploit-Bluez
    Linux/Exploit-Lizard
    Linux/Exploit-Teso
    Linux/Exploit-Ghost
    Linux/Exploit-Odm
    Linux/Exploit-Ftpd
    Exploit-1Table
  File deleting (1)
    QDel183
  Generic (8)
    Exploit-MhtRedir.gen
    Generic Downloader.gen.bd
    BackDoor-EE.gen
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.h
    PWS-Banker.gen.g
    ServU-Daemon.gen.ba
  Heuristic (1)
    New Malware.j
  Keylogger (1)
    Keylog-Logit
  Password Stealer (4)
    Generic PWS.g
    PWS-MMThief
    PWS-Lineage!chm
    PWS-Lineage
  Proxy (1)
    Proxy-FBSR
  Remote Access (8)
    BackDoor-CBE
    BackDoor-AWQ.b
    BackDoor-CEB
    Generic BackDoor.l
    BackDoor-CRK
    BackDoor-CWD
    BackDoor-CWD.sys
    BackDoor-CEP
  Spam (2)
    Downloader-DI
    Spam-YFakeAccount
  StartPage (1)
    StartPage-HX
  Win32 (19)
    HackerDefender
    Generic Downloader.c
    Generic MSVC
    Generic VB.b
    Generic Downloader.p
    Generic BackDoor.ba
    Generic Proxy.d
    Generic Downloader.u
    Generic PWS.o
    Generic QLowZones.a
    Generic Dropper.i
    Generic MSVC.b
    Generic BackDoor.u
    Generic Downloader.ab
    Generic.k
    Generic PWS.r
    Generic StartPage.c
    DDoS-Boxed
    Generic BackDoor.i
Virus (69)
  Application extension (1)
    W32/Loosky.dll
  Companion (1)
    W32/NGVCK.8192.cmp
  Damaged (1)
    W32/Netsky.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Dropper (3)
    W32/NGVCK.dr
    W32/NGVCK.b.dr
    W32/Loosky.dr
  Dropper Generic (1)
    W32/NGVCK.gen.dr
  Email (1)
    W32/Loosky.e@MM
  Email Generic (18)
    W32/Mytob.gen@MM!1870
    W32/Mytob.gen@MM!615f
    W32/Mytob.gen@MM!7796
    W32/Mytob.gen@MM!7af7
    W32/Mytob.gen@MM!49d0
    W32/Mytob.gen@MM!2f1b
    W32/Mytob.gen@MM
    W32/Mytob.gen@MM!7050
    W32/Loosky.gen@MM
    W32/Mytob.gen@MM!2c2b
    W32/Mytob.gen@MM!7cb8
    W32/Mytob.gen@MM!5479
    W32/Mytob.gen@MM!53be
    W32/Mytob.gen@MM!1f1a
    W32/Mytob.gen@MM!35d3
    W32/Mytob.gen@MM!98a
    W32/Mytob.gen@MM!663a
    W32/Mytob.gen@MM!7cdb
  Floppy (1)
    W32/Generic!floppy
  Generic (1)
    W32/IRCbot.gen.c
  Generic Worm (13)
    W32/Gaobot.worm.gen.c
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.h
    W32/Spybot.worm.gen.o
    W32/Sdbot.worm.gen.bd
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Dasher.worm.gen
    W32/Sdbot.worm.gen.ac
    W32/Sdbot.worm.gen.t
    W32/Spybot.worm.gen.n
  Heuristic (1)
    New Malware.b
  Intended (1)
    W32/NGVCK.intd
  Win32 (24)
    W32/NGVCK
    W32/NGVCK.2389dr
    W32/NGVCK.1365dr
    W32/NGVCK.3072dr
    W32/NGVCK.53x
    W32/NGVCK.1107dr
    W32/NGVCK.1988dr
    W32/NGVCK.2092dr
    W32/NGVCK.3146dr
    W32/NGVCK.3250dr
    W32/NGVCK.3400dr
    W32/NGVCK.1364dr
    W32/NGVCK.2296dr
    W32/NGVCK.1352dr
    W32/NGVCK.919dr
    W32/NGVCK.1840dr
    W32/Generic.d
    Generic BackDoor.bf
    W32/Generic!im
    W32/Loosky!pws
    W32/Loosky!proxy
    W32/Loosky!backdoor
    W32/Generic.Delphi.b
    W32/Generic.Delphi.a
  Worm (1)
    W32/Dasher.worm