Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4656
DAT Release Date 12/22/2005
Threats Detected 167436
New Detections 13
Enhanced Detections 193

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (3)
  Adware (1)
    Adware-Littlehelper
  Dialer (1)
    Dialer-295
  Spyware (1)
    Spyware-PCAcme.lnk
Trojan (5)
  Generic (3)
    PWS-Banker.gen.w
    PWS-Banker.gen.v
    W97M/Boring.gen
  Macro (1)
    W97M/Boring.a
  Remote Access (1)
    BackDoor-CWR
Virus (5)
  E-mail (1)
    W32/Bagle.gen!F7B43CAC
  Win32 (1)
    W32/Censor
  Worm (3)
    W32/Bropia.worm.cb
    W32/Bropia.worm.ca
    W32/Retomo.worm

Enhanced Detections:

Program (25)
  - (2)
    Iroffer
    SkServer
  Adware (12)
    ClearSearch.dldr
    Adware-PromulGate
    Adware-Apropos
    Adware-DogPile
    Adware-ISTBar
    Adware-DigInk
    Adware-MySearch
    Adware-AdStart
    Adware-CasClient
    Adware-SearchPaga
    Adware-ClickSpring
    Adware-abetterintrnt
  Application extension (3)
    Clearsearch.dll
    Adware-PromulGate.dll
    Keylog-Ardamax.dll
  Downloader (1)
    Adware-abetterintrnt.dldr
  Dropper (1)
    Adware-FlashTrack.dr
  Keylogger (1)
    Keylog-Ardamax.dr
  PornDialer (1)
    Dialer-Generic
  Registry (1)
    Qoolaid
  Spyware (1)
    Spyware-PALKeyLogger
  Win32 (2)
    Clipsvr
    Spy-Looxee
Trojan (64)
   (6)
    Generic BackDoor.d
    Generic component
    Generic BackDoor.bb
    SymbOS/Cardtrap
    Generic.dc
    Generic.cb
  Application extension (3)
    PWS-Legmir.dll
    BackDoor-WB.dll
    PWS-Vipgsm.dll
  Configurator (2)
    Generic PWS.b.cfg
    BackDoor-CEP.cfg
  Downloader (6)
    Downloader-XM
    PWS-Banker.dldr
    W32/Bagle.dk
    Downloader-ABU
    Downloader-AGP
    Downloader-ARW
  Dropper (5)
    VBS/Inor
    BackDoor-AVW.dr
    BackDoor-CKB.dr
    BackDoor-CEP.dr
    PWS-Banker.dr.a
  Exploit (1)
    Exploit-DcomRpc
  Generic (8)
    Generic Downloader.gen.bd
    Generic Downloader.gen.be
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    HackerDefender.gen.c
    PWS-Banker.gen.i
    PWS-Banker.gen.g
    PWS-Banker.gen.t
  Heuristic (2)
    New Malware.q
    New Malware.j
  Password (2)
    PWS-QQ.gen.b
    PWS-LegMir
  Password Stealer (7)
    Generic PWS.b
    PWS-Banker.ae
    PWS-QQRob
    PWS-JA
    PWS-Reox
    PWS-Lineage
    PWS-Goldun
  Proxy (1)
    Proxy-Agent.s
  Remote Access (5)
    BackDoor-AWQ.b
    BackDoor-BAC
    Generic BackDoor.l
    BackDoor-CRK
    BackDoor-CEP
  StartPage (1)
    StartPage-HS
  Win32 (15)
    Generic Downloader.a
    HackerDefender
    Generic BackDoor.f
    HackerDefender.sys
    Generic Downloader.j
    AdClicker-CG
    Generic Downloader.y
    Generic PWS.o
    AdClicker-CM
    Generic BackDoor.u
    Generic.k
    Druogna
    Generic Packed
    Generic Downloader.g
    DDoS-Boxed
Virus (104)
  Application extension (1)
    W32/Bagle.dk.dll
  Damaged (1)
    W32/Netsky.dam
  E-mail (6)
    W32/Mytob.bw@MM
    W32/Mytob.cc@MM
    W32/Mytob.cv@MM
    W32/Mytob.da@MM
    W32/Mytob.el@MM
    W32/Mytob.eu@MM
  Email (37)
    W32/Mytob.fm@MM
    W32/Mytob.as@MM
    W32/Mytob.ap@MM
    W32/Mytob.fb@MM
    W32/Mydoom.bj@MM
    W32/Mytob.gh@MM
    W32/Mytob.cp@MM
    W32/Mytob.cn@MM
    W32/Mytob.cj@MM
    W32/Mytob.bm@MM
    W32/Mydoom.bm@MM
    W32/Mytob.p@MM
    W32/Mytob.c@MM
    W32/Mytob.m@MM
    W32/Mytob.cm@MM
    W32/Mytob.bz@MM
    W32/Mytob.q@MM
    W32/Mytob.h@MM
    W32/Mytob.u@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.w@MM
    W32/Mytob.co@MM
    W32/Mydoom.br@MM
    W32/Mytob.ee@MM
    W32/Mytob.ab@MM
    W32/Mytob.af@MM
    W32/Mytob.dp@MM
    W32/Mytob.dx@MM
    W32/Mytob.ec@MM
    W32/Mytob.ed@MM
    W32/Mytob.ek@MM
    W32/Mytob.hf@MM
    W32/Mytob.gz@MM
    W32/Mytob.hl@MM
    W32/Mytob.hb@MM
    W32/Mytob.et@MM
  Email Generic (2)
    W32/Mydoom.gen@MM
    W32/Mytob.gen@MM
  Floppy (1)
    W32/Generic!floppy
  Generic (2)
    W32/Faker.gen
    W32/Bagle.gen
  Generic Worm (10)
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.i
    W32/Sdbot.worm.gen.x
    W32/Sdbot.worm.gen.bq
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.ac
  Intended (1)
    W32/Faker.intd
  Internet Worm (3)
    W32/Bropia.worm.g
    W32/Bropia.worm.q
    W32/Bropia.worm.n
  Win32 (15)
    New Win32.s
    New Poly Win32
    W32/Faker.g
    W32/Faker.f
    W32/Faker.e
    W32/Faker.d
    W32/Faker.b
    W32/Generic.d
    W32/Generic.e
    W32/Generic.j
    W32/Generic.n
    W32/Generic!im
    W32/Generic.m
    W32/Generic.Delphi.c
    W32/Generic.Delphi.a
  Worm (25)
    W32/Morph.worm
    W32/Bropia.worm.r
    W32/Bropia.worm.s
    W32/Bropia.worm.by
    W32/Bropia.worm.f
    W32/Bropia.worm.aq
    W32/Bropia.worm.av
    W32/Bropia.worm.at
    W32/Bropia.worm.w
    W32/Bropia.worm.v
    W32/Bropia.worm.u
    W32/Bropia.worm.k
    W32/Bropia.worm.i
    W32/Bropia.worm.l
    W32/Bropia.worm.j
    W32/Bropia.worm.h
    W32/Bropia.worm.o
    W32/Bropia.worm.y
    W32/Bropia.worm.p
    W32/Bropia.worm.t
    W32/Bropia.worm.ab
    W32/Bropia.worm.z
    W32/Bropia.worm.bm
    W32/Bropia.worm.ag
    W32/Bropia.worm.bq