Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4678
DAT Release Date 01/19/2006
Threats Detected 171888
New Detections 8
Enhanced Detections 212

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Trojan (4)
  Dropper (2)
    BackDoor-CGW.dr
    Linux.Rst.b.dr
  Exploit (1)
    Linux/Exploit-Holob
  Linux (1)
    Linux.BackDoor
Virus (4)
  Application extension (1)
    W32/Theals.dll
  Damaged (1)
    W32/MyWife.dam
  Email (1)
    W32/Mytob.hn@MM
  Win32 (1)
    W32/Akbot

Enhanced Detections:

Program (16)
  Adware (12)
    Adware-RBlast.dldr
    Adware-Searchcentrix
    Adware-IEDriver
    Adware-OpenSite
    Adware-Adpower
    Adware-SearchPounder
    Adware-BonziBuddy
    Adware-SmartSearch
    Adware-DollarRevenue
    Adware-Darktech
    Adware-Dictionary
    Adware-Roings
  Downloader (2)
    Adware-Rfwnad.dldr
    Adware-SAHAgent.dldr
  Dropper (2)
    Keylog-Hothook.dr
    Spyware-WebHancer.dr
Trojan (98)
   (3)
    Generic BackDoor.d
    Generic component
    Generic.dc
  - (2)
    IRC/Flood.mirc
    WMFMaker
  Application extension (2)
    PWS-Goldun.dll
    Downloader-AAP.dll
  Configurator (2)
    Downloader-GG.cfg
    Generic PWS.b.cfg
  Downloader (4)
    Downloader-AAP
    Downloader-AAT
    Downloader-UH
    Downloader-LF
  Exploit (51)
    Linux/Exploit-SendMail
    Linux/Exploit-Bind
    Linux/Exploit-Cgiexp
    Linux/Exploit-Kerio
    Linux/Exploit-Shellcode
    Linux/Exploit-Freeze
    Linux/Exploit-Sqlexp
    Linux/Exploit-Adminer
    Linux/Exploit-Ciscer
    Linux/Exploit-Mulexp
    Linux/Exploit-BOrifice
    Linux/Exploit-Httpd
    Linux/Exploit-Gdslock
    Linux/Exploit-TearDrop
    Linux/Exploit-OpenSSH
    Linux/Exploit-Nhttpd
    Linux/Exploit-Modgz
    Linux/Exploit-SSPing
    Linux/Exploit-Openssl
    Linux/Exploit-Imspd
    Linux/Exploit-Rsync
    Linux/Exploit-Apache
    Linux/Exploit-Gildo
    Linux/Exploit-Su
    Linux/Exploit-Vertex
    Linux/Exploit-Racezion
    Linux/Exploit-Proftpd
    Linux/Exploit-Snuq
    Linux/Exploit-Niprint
    Linux/Exploit-Ptrace
    Linux/Exploit-Bonk
    Linux/Exploit-Linuxconf
    Linux/Exploit-Race
    Linux/Exploit-Maxload
    Linux/Exploit-dobrk
    Linux/Exploit-fstring
    Linux/Exploit-Race30
    Linux/Exploit-Mmap
    Linux/Exploit-Bysin
    Linux/Exploit-Moos
    Linux/Exploit-Nios
    Linux/Exploit-Bluez
    Linux/Exploit-Abrox
    Exploit-QtPICT!dam
    Exploit-QtPICT
    Linux/Exploit-Epoll
    Linux/Exploit-Lizard
    Linux/Exploit-Teso
    Linux/Exploit-Ghost
    Linux/Exploit-Odm
    Linux/Exploit-Ftpd
  Flooder (1)
    Linux/FDoS-A
  Generic (2)
    PWS-Banker.gen.i
    PWS-Banker.gen.g
  Heuristic (3)
    New Malware.n
    New Malware.j
    New Malware.ab
  Password (1)
    PWS-LDPinch
  Password Stealer (4)
    Generic PWS.b
    PWS-QQGet
    PWS-JA
    PWS-Goldun
  ProcKill (1)
    ProcKill-AK
  Remote Access (3)
    BackDoor-AMQ
    BackDoor-AWQ.b
    BackDoor-CTV
  Win31 (1)
    APStrojan
  Win32 (18)
    Generic Downloader.a
    Generic BackDoor.b
    ServU-Daemon
    Generic Delphi
    Generic Downloader.c
    Generic AdClicker.e
    Generic Downloader.ak
    Puper
    Generic Downloader.s
    Generic Dropper.n
    Generic AdClicker.a
    Generic MSVC.b
    Generic VB.c
    Generic.b
    W32/Kmax!rootkit
    AdClicker-DW
    Generic Proxy.g
    Generic Downloader.f
Virus (98)
   (3)
    Mirrorop.c
    Mirrorop.b
    Mirrorop.a
  Damaged (2)
    Mirrorop.dam
    W32/Mytob.dam
  Damaged Worm (2)
    W32/Spybot.worm.dam
    W32/Sdbot.worm.dam
  E-mail (2)
    W32/Mytob.gr@MM
    W32/MyWife.d@MM
  E-mail worm (1)
    W32/Kmax.gen@MM
  Email (67)
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.fa@MM
    W32/Mytob.ft@MM
    W32/Mytob.fs@MM
    W32/Mytob.aw@MM
    W32/Mytob.fr@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.fu@MM
    W32/Mytob.fw@MM
    W32/Mytob.fv@MM
    W32/Mytob.ge@MM
    W32/Mytob.go@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.fz@MM
    W32/Mytob.gf@MM
    W32/Mytob.gn@MM
    W32/Mytob.gp@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.gm@MM
    W32/Mytob.gs@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.de@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.eg@MM
    W32/Mytob.hk@MM
    W32/Mytob.hm@MM
    W32/Mytob.hj@MM
    W32/Mytob.ha@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Floppy (1)
    W32/Generic!floppy
  Generic Worm (15)
    W32/Spybot.worm.gen.e
    W32/Sdbot.worm.gen.as
    W32/Spybot.worm.gen.bx
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.bl
    W32/Sdbot.worm.gen.ae
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Gaobot.worm.gen.bh
    W32/Gaobot.worm.gen.by
  Script (1)
    JS/Unicle
  Win32 (3)
    W32/Generic.d
    W32/Theals
    W32/Generic!im