Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4672
DAT Release Date 01/11/2006
Threats Detected 170320
New Detections 18
Enhanced Detections 228

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
   (1)
    VMag75
Trojan (8)
   (1)
    Spy-Agent.aj
  Downloader (2)
    Downloader-ATI
    Downloader-ATH
  Generic (1)
    HackerDefender.gen.d
  Proxy (1)
    Proxy-Agent.am
  Script (3)
    Bat/qz159
    Bat/qd335
    Bat/qd334
Virus (9)
  Dropper (5)
    Jeru.cc.dr
    Wolfman.dr
    Virus-101.dr
    Mix.dr
    W32/Generic.e.dr
  Win32 (3)
    W32/Radalatan
    W32/Karachun
    W32/Katchem
  Worm (1)
    W32/Mytob.worm!7f00

Enhanced Detections:

Internet Worm (1)
  E-mail (1)
    W32/Mytob.bk@MM
Program (8)
  Adware (3)
    Adware-SaveNow
    Adware-Cometsys
    Adware-abetterintrnt
  Dialer (1)
    Dialer-RAS.as
  Dropper (1)
    Adware-StatBlaster.dr
  Generic (1)
    Adware-Url.gen
  Keylogger (1)
    Keylog-Ardamax.dr
  Plugin component (1)
    Tool-Xscan.plugin
Trojan (78)
   (3)
    Generic.ca
    Generic BackDoor.bb
    Spyaxe
  - (1)
    AdClicker-AJ
  Application extension (6)
    PWS-LDPinch.dll
    Puper.dll
    PWS-Goldun.dll
    Downloader-AAP.dll
    PWS-Lineage.dll
    Downloader-LG.dll
  Damaged (1)
    Exploit-MS04-032!gdi.dam
  Downloader (14)
    BackDoor-AWQ.b.dldr
    Downloader-IQ
    W32/Bagle.cj
    Downloader-IO
    Downloader-AAP
    Downloader-AFW
    Downloader-PS!chm
    Downloader-XC
    Downloader-ABU
    Downloader-YN
    Downloader-ASN
    Downloader-AQW
    Downloader-ASL
    PWS-LegMir.dldr
  Downloader Generic (1)
    W32/Bagle.dldr
  Dropper (3)
    PWS-Legmir.dr
    ProcKill-CO.dr
    IRC/Flood.dv.dr
  Dropper Worm (1)
    W32/Sdbot.worm.dr
  Exploit (3)
    JS/Exploit-CrossSite
    Exploit-WMF
    Exploit-MS04-032!gdi
  Generic (9)
    Generic Downloader.gen.bd
    Generic Downloader.gen.be
    AdClicker-C.gen
    PWS-MSNFake.gen
    PWS-Banker.gen.ba
    PWS-Banker.gen.bb
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-Banker.gen.t
  Heuristic (2)
    New RootKit
    New Malware.k
  Password (2)
    PWS-LegMir
    PWS-LDPinch
  Password Stealer (5)
    Generic PWS.a
    PWS-QQRob
    PWS-JA
    PWS-Raven
    PWS-Lineage
  Proxy (2)
    Proxy-FBSR
    Proxy-Fireby
  Remote Access (7)
    BackDoor-ACH
    BackDoor-ARR
    BackDoor-AWQ.b
    BackDoor-COC
    BackDoor-CPX
    Generic BackDoor.l
    BackDoor-CKB
  StartPage (3)
    StartPage-HP
    StartPage-HR
    StartPage-IH
  Win32 (15)
    Generic Downloader.c
    HackerDefender.sys
    Generic BackDoor.c
    Generic Downloader.ak
    Generic VB.b
    Puper
    Generic Downloader.y
    Generic PWS.o
    Generic Downloader.ab
    Spy-Agent.g
    Generic Dropper.k
    Vundo
    Generic StartPage.q
    Generic BackDoor.w
    QHosts-17
Virus (141)
  Damaged Worm (2)
    W32/Spybot.worm.dam
    W32/Sdbot.worm.dam
  Downloader (4)
    W32/Bagle.ci
    W32/Bagle.ck
    W32/Bagle.cl
    W32/Bagle.cn
  Dropper (12)
    Univ/g.dr
    Tequila.dr
    Dark Avenger.dr
    Minsk.dr
    Haifa.dr
    Murphy.dr
    Anticad.dr
    Oldyank.dr
    Jeru.dr
    Hymn.dr
    VComm.dr
    Nomenklatura.dr
  Dropper Email (1)
    W32/Mytob.dr@MM
  E-mail (9)
    W32/Mytob.be@MM
    W32/Mytob.bi@MM
    W32/Mytob.bj@MM
    W32/Mytob.bo@MM
    W32/Mytob.bl@MM
    W32/Mytob.br@MM
    W32/Mytob.bf@MM
    W32/Mytob.cg@MM
    W32/Mytob.ch@MM
  Email (60)
    W32/Bagle.cd@MM
    W32/Mytob.b@MM
    W32/Mytob.a@MM
    W32/Mytob.ev@MM
    W32/Mytob.at@MM
    W32/Mytob.av@MM
    W32/Mytob.au@MM
    W32/Mytob.fy@MM
    W32/Mytob.fw@MM
    W32/Mytob.fx@MM
    W32/Mytob.gg@MM
    W32/Mytob.gl@MM
    W32/Mytob.gj@MM
    W32/Mytob.gi@MM
    W32/Mytob.bg@MM
    W32/Mytob.bx@MM
    W32/Mytob.cd@MM
    W32/Mytob.gd@MM
    W32/Mytob.gc@MM
    W32/Mytob.gb@MM
    W32/Mytob.ga@MM
    W32/Mytob.gf@MM
    W32/Mytob.gp@MM
    W32/Mytob.gq@MM
    W32/Mytob.bn@MM
    W32/Mytob.dh@MM
    W32/Mytob.r@MM
    W32/Mytob.e@MM
    W32/Mytob.c@MM
    W32/Mytob.gt@MM
    W32/Mytob.g@MM
    W32/Mytob.bt@MM
    W32/Mytob.bp@MM
    W32/Mytob.ct@MM
    W32/Mytob.cf@MM
    W32/Mytob.dd@MM
    W32/Mytob.ca@MM
    W32/Mytob.n@MM
    W32/Mytob.f@MM
    W32/Mytob.d@MM
    W32/Mytob.cs@MM
    W32/Mytob.dk@MM
    W32/Mytob.dz@MM
    W32/Mytob.eb@MM
    W32/Mytob.ds@MM
    W32/Mytob.ea@MM
    W32/Mytob.gu@MM
    W32/Mytob.gx@MM
    W32/Mytob.ej@MM
    W32/Mytob.gy@MM
    W32/Mytob.hf@MM
    W32/Mytob.gw@MM
    W32/Mytob.gz@MM
    W32/Mytob.hg@MM
    W32/Mytob.hh@MM
    W32/Mytob.hi@MM
    W32/Mytob.gv@MM
    W32/Mytob.he@MM
    W32/Mytob.es@MM
    W32/Mytob.eq@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Floppy (1)
    W32/Generic!floppy
  Generic (3)
    W32/Brepibot.gen
    W32/Loosky.gen
    W32/Bagle.gen
  Generic Worm (26)
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.as
    W32/Sdbot.worm.gen.w
    W32/Sdbot.worm.gen.e
    W32/Gaobot.worm.gen.bj
    W32/Sdbot.worm.gen.ar
    W32/Spybot.worm.gen.g
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.k
    W32/Sdbot.worm.gen.g
    W32/Sdbot.worm.gen.bk
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.ag
    W32/Sdbot.worm.gen.bq
    W32/Spybot.worm.gen.o
    W32/Sdbot.worm.gen.ah
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.z
    W32/Sdbot.worm.gen.ac
    W32/Sdbot.worm.gen.t
    W32/Sdbot.worm.gen.q
  Internet Worm (1)
    W32/Sdbot.worm!MS05-039
  Script (1)
    Univ.script/99a
  Win32 (8)
    W32/Generic.d
    W32/Bagle.cp
    W32/Bagle.cq
    W32/Bagle.co
    W32/Bagle.cm
    W32/Bagle.dd
    W32/Bagle.dc
    W32/Generic!im
  Worm (12)
    W32/Mytob.worm
    W32/Mytob.worm!747d
    W32/Mytob.worm!212f
    W32/Mytob.worm!5b00
    W32/Mytob.worm!1a8f
    W32/Mytob.worm!1c40
    W32/Mytob.worm!1068
    W32/Mytob.worm!1e
    W32/Mytob.worm!5de2
    W32/Mytob.worm!im
    W32/Mytob.worm!3cae
    W32/Mytob.worm!62b6