Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4679
DAT Release Date 01/20/2006
Threats Detected 172110
New Detections 27
Enhanced Detections 361

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (3)
  Adware (1)
    Adware-PestTrap
  Dialer (1)
    Dialer-298
  Win32 (1)
    Crack-CamStudio
Trojan (17)
   (4)
    Kangen!dam
    Spy-Agent.ak
    Kangen!txt
    Kangen!bmp
  Application extension (1)
    BackDoor-CXE.dll
  Dialer (1)
    Dialer-298.lnk
  Downloader (1)
    Downloader-ATM
  Dropper (1)
    Qoolaid.dr
  Dropper Generic (1)
    AdClicker-C.gen.dr
  Exploit (1)
    Linux/Exploit-Lambida
  Generic (1)
    Linux/Nuke.gen
  Linux (1)
    Linux/DDoS-Trinity
  Malware Tool (1)
    VBS/Rahc.kit1
  Malware Tool Plugin componen (1)
    VBS/Rahc.kit1.plugin
  Remote Access (1)
    BackDoor-CWE
  StartPage (1)
    StartPage-IQ
  Win32 (1)
    Loader-B
Virus (7)
  Email (2)
    W32/Bagz.ah@MM
    W32/MyWife.e@MM
  Email Generic (2)
    JS/Kmax.gen.b@MM
    JS/Kmax.gen.a@MM
  Generic Worm (1)
    W32/Sdbot.worm.gen.az
  Worm (2)
    W32/Combra.worm
    W32/Bropia.worm.da

Enhanced Detections:

Program (17)
   (2)
    Generic PUP.b
    SFGProtect
  Adware (6)
    Adware-SaveNow
    Adware-Huntbar
    Adware-HotBar
    Adware-BB
    Adware-Zeno
    Adware-EliteBar
  Dialer (2)
    Dialer-211
    Dialer-251
  Dropper (2)
    Adware-Isearch.dr
    Adware-Softomate.dr
  Keylogger (1)
    Keylog-Ardamax.dr
  Registry (2)
    Reg-DetectKeys25
    Qoolaid
  Win32 (2)
    Virtual Bouncer
    Winfixer
Trojan (203)
   (1)
    Generic component
  - (1)
    IRC/Flood.mirc
  Adware (1)
    AdClicker-DI
  Application extension (5)
    BackDoor-AWQ.dll
    Puper.dll
    PWS-Goldun.dll
    PWS-Banker.ar.dll
    Downloader-EA.dll
  Configurator (1)
    BackDoor-CEK.cfg
  Downloader (5)
    Downloader-CY
    Downloader-XR
    Downloader-YO
    Downloader-YZ
    Downloader-RH
  Dropper (1)
    BackDoor-AWQ.dr
  Exploit (53)
    Linux/Exploit-SendMail
    Linux/Exploit-Bind
    Linux/Exploit-Cgiexp
    Linux/Exploit-Kerio
    Linux/Exploit-Shellcode
    Linux/Exploit-Freeze
    Linux/Exploit-Sqlexp
    Linux/Exploit-Adminer
    Linux/Exploit-Ciscer
    Linux/Exploit-Mulexp
    Linux/Exploit-BOrifice
    Linux/Exploit-Httpd
    Linux/Exploit-Gdslock
    Linux/Exploit-TearDrop
    Linux/Exploit-OpenSSH
    Linux/Exploit-Nhttpd
    Linux/Exploit-Modgz
    Linux/Exploit-SSPing
    Linux/Exploit-Openssl
    Linux/Exploit-Imspd
    Linux/Exploit-Rsync
    Linux/Exploit-Apache
    Linux/Exploit-Gildo
    Linux/Exploit-Su
    Linux/Exploit-Vertex
    Linux/Exploit-Racezion
    JS/Exploit-CrossSite
    Linux/Exploit-Proftpd
    Linux/Exploit-Snuq
    Linux/Exploit-Niprint
    Linux/Exploit-Ptrace
    Linux/Exploit-Bonk
    Linux/Exploit-Linuxconf
    Linux/Exploit-Race
    Linux/Exploit-Maxload
    Linux/Exploit-dobrk
    Linux/Exploit-fstring
    Linux/Exploit-Race30
    Linux/Exploit-Mmap
    Linux/Exploit-Bysin
    Linux/Exploit-Moos
    Linux/Exploit-Nios
    Linux/Exploit-Bluez
    Linux/Exploit-Abrox
    Linux/Exploit-Holob
    Exploit-QtPICT!dam
    Exploit-QtPICT
    Linux/Exploit-Epoll
    Linux/Exploit-Lizard
    Linux/Exploit-Teso
    Linux/Exploit-Ghost
    Linux/Exploit-Odm
    Linux/Exploit-Ftpd
  Flooder (2)
    FDoS-SMSBomb
    Linux/FDoS-A
  Generic (34)
    BackDoor-AHM.gen
    BackDoor-ABF.gen
    BackDoor-MD.gen
    BackDoor-BT.gen
    BackDoor-EE.gen
    BackDoor-QT.gen
    BackDoor-ANG.gen
    BackDoor-AMZ.gen
    BackDoor-AOC.gen
    BackDoor-AOA.gen
    BackDoor-AOI.gen
    BackDoor-AOY.gen
    BackDoor-ABT.gen
    BackDoor-PB.gen
    BackDoor-AQG.gen
    BackDoor-AQR.gen
    BackDoor-AQY.gen
    BackDoor-AQU.gen
    BackDoor-ARU.gen
    BackDoor-ASB.gen
    BackDoor-ATF.gen
    BackDoor-AMU.gen
    BackDoor-ABZ.gen
    BackDoor-AUO.gen
    BackDoor-XV.gen
    BackDoor-ATP.gen
    BackDoor-IV.gen
    BackDoor-MQ.gen
    BackDoor-AXW.gen
    Oleloa.gen
    PWS-Banker.gen.p
    PWS-Banker.gen.l
    PWS-Banker.gen.i
    PWS-Banker.gen.g
  Generic Server (1)
    BackDoor-CUC.svr.gen
  Heuristic (3)
    New Malware.u
    New Malware.ab
    New Malware.k
  Malware Tool (2)
    VBS/Rahc.kit
    Linux/Rootkit-T
  Password (2)
    PWS-QQPass
    PWS-LDPinch
  Password Stealer (7)
    Generic PWS.a
    PWS-GinaStub
    PWS-QQRob
    PWS-JA
    PWS-JD
    PWS-Reox
    PWS-Lineage
  ProcKill (1)
    ProcKill-AK
  Proxy (1)
    Proxy-Inspir
  Remote Access (64)
    BackDoor-ATM.gen
    BackDoor-ASE
    BackDoor-AMQ
    BackDoor-AWQ.b
    Linux/BackDoor-Cym
    Linux/BackDoor-Note.b
    Linux/BackDoor-Note.a
    Linux/BackDoor-Small
    BackDoor-AXI
    BackDoor-AWQ
    Linux/BackDoor-Promptte
    BackDoor-AKD
    BackDoor-CCB
    BackDoor-HV
    BackDoor-AQX
    BackDoor-ARD
    BackDoor-ASO
    BackDoor-AST
    Linux/BackDoor-Caca
    BackDoor-AWC
    BackDoor-AWU
    BackDoor-AQQ
    BackDoor-AYB
    BackDoor-AZB
    BackDoor-AZZ
    Linux/BackDoor-Iboyz
    BackDoor-CRN
    Linux/BackDoor-Longueur
    Linux/BackDoor-Sckit
    Linux/BackDoor-Parasite
    Linux/BackDoor-Gbkdor
    Linux/BackDoor-Bouncer
    Linux/BackDoor-Batamhack
    BackDoor-CCO
    BackDoor-CDD
    BackDoor-ABF
    BackDoor-CDE
    BackDoor-CEK.srv
    Linux/BackDoor-Regile
    BackDoor-CKT
    BackDoor-COU
    BackDoor-CUW
    BackDoor-CUY
    BackDoor-CPB
    Linux/BackDoor-Rev.b
    BackDoor-CVC
    BackDoor-CSU
    Linux/BackDoor-Login
    Linux/BackDoor-Rev
    BackDoor-CHP
    BackDoor-CHS
    BackDoor-CRM
    Linux/BackDoor-Rooted
    Linux/BackDoor-Livthe
    Linux/BackDoor-Hid3
    BackDoor-CWW
    BackDoor-CWY
    BackDoor-CIF
    BackDoor-CKH
    BackDoor-ACR
    Linux/BackDoor-Oboy
    Generic BackDoor.k
    BackDoor-CES
    Linux/BackDoor-Pulamea
  Spyware (1)
    Keylog-SCLog
  StartPage (2)
    StartPage-HR
    StartPage-BN
  Win32 (15)
    Generic.i
    Generic Downloader.am
    Generic Downloader.p
    Puper
    Generic Dropper.m
    Kangen
    Generic Downloader.k
    Generic Downloader.u
    Generic Downloader.q
    Generic Downloader.ab
    Druogna
    Generic.b
    W32/Kmax!rootkit
    Generic BackDoor.j
    Generic AdClicker.c
Virus (141)
  Application extension Worm (2)
    W32/Gaobot.worm.dll
    W32/Sdbot.worm.dll
  Damaged (1)
    W32/MyWife.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  E-mail (7)
    W32/Mytob.bw@MM
    W32/Mytob.cc@MM
    W32/Mytob.cv@MM
    W32/Mytob.da@MM
    W32/MyWife.d@MM
    W32/Mytob.el@MM
    W32/Mytob.eu@MM
  E-mail worm (3)
    W32/Kmax.gen@MM
    W32/Bagz.d@MM
    W32/Bagz.e@MM
  Email (40)
    W32/Mytob.fm@MM
    W32/Mytob.as@MM
    W32/Mytob.ap@MM
    W32/Mytob.fb@MM
    W32/Bagz.g@MM
    W32/Bagz.aa@MM
    W32/Mytob.gh@MM
    W32/Mytob.cp@MM
    W32/Mytob.cn@MM
    W32/Mytob.cj@MM
    W32/Mytob.bm@MM
    W32/Mytob.p@MM
    W32/Mytob.c@MM
    W32/Mytob.m@MM
    W32/Mytob.cm@MM
    W32/Mytob.bz@MM
    W32/Mytob.q@MM
    W32/Mytob.h@MM
    W32/Mytob.u@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.w@MM
    W32/Mytob.co@MM
    W32/Mytob.ee@MM
    W32/Mytob.ab@MM
    W32/Mytob.af@MM
    W32/Mytob.dp@MM
    W32/Mytob.dx@MM
    W32/Mytob.ec@MM
    W32/Mytob.ed@MM
    W32/Mytob.ek@MM
    W32/Mytob.hf@MM
    W32/Mytob.gz@MM
    W32/Bagz.f@MM
    W32/Mytob.hl@MM
    W32/Bagz.a@MM
    W32/Mytob.hb@MM
    W32/Bagz.c@MM
    W32/Bagz.b@MM
    W32/Mytob.et@MM
  Email Generic (3)
    W32/Mytob.gen@MM
    JS/Kmax.gen@MM
    W32/Bagz.gen@MM
  Generic Worm (10)
    W32/Sdbot.worm.gen.as
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.g
    W32/Kelvir.worm.gen
    W32/Sdbot.worm.gen.ai
    W32/Combra.worm.gen
    W32/Sdbot.worm.gen.t
  Internet Worm (6)
    W32/Bropia.worm.g
    W32/Bropia.worm.q
    W32/Kelvir.worm.c
    W32/Kelvir.worm.b
    W32/Bropia.worm.n
    W32/Kelvir.worm.dq
  Script (1)
    VBS/Generic
  Win32 (1)
    New Win32.s
  Worm (66)
    W32/MoFei.worm
    W32/Kelvir.worm.ew
    W32/Kelvir.worm.ea
    W32/Bropia.worm.r
    W32/Bropia.worm.s
    W32/Bropia.worm.by
    W32/Kelvir.worm.ff
    W32/Bropia.worm.f
    W32/Bropia.worm.aq
    W32/Kelvir.worm.bg
    W32/Bropia.worm.av
    W32/Bropia.worm.at
    W32/Bropia.worm.w
    W32/Bropia.worm.v
    W32/Bropia.worm.u
    W32/Kelvir.worm.d
    W32/Kelvir.worm.fk
    W32/Kelvir.worm.fj
    W32/Kelvir.worm.fh
    W32/Kelvir.worm.fi
    W32/Bropia.worm.k
    W32/Bropia.worm.i
    W32/Bropia.worm.l
    W32/Bropia.worm.j
    W32/Bropia.worm.h
    W32/Bropia.worm.o
    W32/Kelvir.worm.g
    W32/Bropia.worm.y
    W32/Kelvir.worm.k
    W32/Kelvir.worm.j
    W32/Bropia.worm.p
    W32/Kelvir.worm.a
    W32/Bropia.worm.t
    W32/Kelvir.worm.cm
    W32/Kelvir.worm.ck
    W32/Kelvir.worm.cj
    W32/Kelvir.worm.o
    W32/Kelvir.worm.n
    W32/Bropia.worm.ab
    W32/Bropia.worm.z
    W32/Kelvir.worm.s
    W32/Kelvir.worm.l
    W32/Kelvir.worm.m
    W32/Kelvir.worm.t
    VBS/Crazy.worm
    W32/Kelvir.worm.cn
    W32/Kelvir.worm.cw
    W32/Kelvir.worm.cz
    W32/Kelvir.worm.ak
    W32/Kelvir.worm.co
    W32/Bropia.worm.bm
    W32/Kelvir.worm.cx
    W32/Kelvir.worm.ab
    W32/Bropia.worm.ag
    W32/Opanki.worm
    W32/Kelvir.worm.dc
    W32/Kelvir.worm.dg
    W32/Kelvir.worm.dv
    W32/Bropia.worm.bq
    W32/Kelvir.worm.dj
    W32/Kelvir.worm.fu
    W32/Kelvir.worm.fs
    W32/Bropia.worm.cb
    W32/Bropia.worm.ca
    W32/Kelvir.worm.ft
    W32/Kelvir.worm.dz