McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4711
DAT Release Date	03/06/2006
Threats Detected	181555
New Detections	7
Enhanced Detections	318

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Trojan (6)

Exploit (2)

Perl/Exploit-Slsniff

Perl/Exploit-Sami

Password Stealer (1)

PWS-Banker.gen.z

Source code (2)

Exploit-Score.src

Exploit-Oracle.src

Tool (1)

Virus (1)

Email (1)

Enhanced Detections:

- (1)

- (1)

Malware (1)

Exploit (1)

Exploit-CodeBase

Program (12)

(1)

Adware (6)

Adware-SearchAid

Adware-KeenValue

Adware-RelatedLinks

Adware-ClickSpring

Application extension Droppe (1)

StartPage-DU.dll.dr

Downloader (1)

Adware-SearchAid.dldr

Dropper (1)

Adware-IEToolBar.dr

Joke (1)

Script (1)

Trojan (113)

(2)

Generic BackDoor.bb

- (2)

Adware (1)

Application extension (1)

Demonstration (2)

Exploit-IframeBO.demo

Exploit-HCPRemoteExe.demo

Downloader (5)

JS/Cisp

Dropper (2)

Exploit-HTML.dropper

Dropper Generic (1)

W32/Sdbot.dr.gen

E-mail (1)

Exploit (13)

Exploit-ObjectData

Exploit-URLSpoof

Exploit-HelpInject

Exploit-MS03-007

Exploit-IIS.cmd

Exploit-HelpOverflow

Exploit-IframeBO!shellcode

Exploit-ZoneSpoof

Exploit-NotFound

Exploit-MS02-061

Exploit-HCPRemoteExe

Generic (21)

VBS/IEstart.gen.f

JS/IEstart.gen.d

Exploit-MhtRedir.gen

Exploit-URLSpoof.gen

Generic Downloader.gen.bd

Generic Downloader.gen.be

JS/Seeker.gen.e

JS/Seeker.gen.m

JS/Seeker.gen.g

JS/Seeker.gen.f

JS/Seeker.gen.b

JS/Seeker.gen.c

JS/Seeker.gen.h

Exploit-ObjectData.gen

JS/IEstart.gen.c

PWS-Banker.gen.bb

Spam-Mailbot.gen

Exploit-MS06-004.gen

JS/Seeker.gen.a

Heuristic (6)

HTML (2)

HTML/Ebscam.eml

JavaScript (1)

Password (5)

Spy-Peep

PWS-JI

Password Stealer (3)

PWS-Banker.gen.ba

PWS-Banker.gen.i

PWS-JD

Proxy (2)

Remote Access (5)

Generic BackDoor.l

Generic BackDoor.k

Script (21)

JS/AdClicker-AF

VBS/DDoS-iFrameNet

Source code (1)

Exploit-Imap.src

VbScript (1)

Win32 (15)

Generic Downloader.a

Puper

Generic BackDoor.bd

Generic Downloader.y

Generic QLowZones.a

Generic Downloader.ab

Druogna

Generic Downloader.e

Virus (190)

Application extension (1)

Damaged (2)

Defaced document Worm (1)

W32/CodeRed.worm.a.defaced

Dropper Worm (1)

W32/Kelvir.worm.dr

E-mail (5)

W32/Mytob.bh@MM

W32/Mytob.gr@MM

Email (104)

W32/Mytob.ak@MM

W32/Mytob.am@MM

W32/Mytob.ar@MM

W32/Mytob.aq@MM

W32/Mytob.ao@MM

W32/Mytob.al@MM

W32/Mytob.ew@MM

W32/Mytob.ex@MM

W32/Mytob.fa@MM

W32/Mytob.ft@MM

W32/Mytob.fs@MM

W32/Mytob.aw@MM

W32/Mytob.fr@MM

W32/Mytob.ba@MM

W32/Mytob.bc@MM

W32/Mytob.bb@MM

W32/Mytob.bd@MM

W32/Mytob.fu@MM

W32/Mytob.fw@MM

W32/Mytob.fv@MM

W32/Mytob.ge@MM

W32/Mytob.gk@MM

W32/Mytob.go@MM

W32/Mytob.bu@MM

W32/Mytob.bq@MM

W32/Mytob.by@MM

W32/Mytob.cq@MM

W32/Mytob.ck@MM

W32/Mytob.fz@MM

W32/Mytob.gf@MM

W32/Mytob.gn@MM

W32/Mytob.gp@MM

W32/Mytob.cu@MM

W32/Mytob.ce@MM

W32/Mytob.cw@MM

W32/Mytob.dg@MM

W32/Mytob.dc@MM

W32/Mytob.gm@MM

W32/Mytob.gs@MM

W32/Mytob.bs@MM

W32/Mytob.di@MM

W32/Mytob.df@MM

W32/Mytob.de@MM

W32/Mytob.dj@MM

W32/Mytob.cb@MM

W32/Mytob.do@MM

W32/Mytob.dl@MM

W32/Mytob.cr@MM

W32/Mytob.cl@MM

W32/Mytob.ci@MM

W32/Mytob.cx@MM

W32/Mytob.cz@MM

W32/Mytob.cy@MM

W32/Mytob.dm@MM

W32/Mytob.dn@MM

W32/Mytob.ei@MM

W32/Mytob.aa@MM

W32/Mytob.ad@MM

W32/Mytob.ah@MM

W32/Mytob.dq@MM

W32/Mytob.dt@MM

W32/Mytob.dw@MM

W32/Mytob.dv@MM

W32/Mytob.du@MM

W32/Mytob.aj@MM

W32/Mytob.ag@MM

W32/Mytob.an@MM

W32/Mytob.hq@MM

W32/Mytob.ec@MM

W32/Mytob.ef@MM

W32/Mytob.eg@MM

W32/Mytob.ho@MM

W32/Mytob.hn@MM

W32/Mytob.hk@MM

W32/Mytob.hm@MM

W32/Mytob.hj@MM

W32/Mytob.ha@MM

W32/Mytob.em@MM

W32/Mytob.en@MM

W32/Mytob.eo@MM

W32/Mytob.er@MM

W32/Mytob.ep@MM

Email Generic (1)

W32/Mytob.gen@MM

Email Worm (1)

Exploit (1)

Exploit-AdobeReader

Generic (1)

Generic Worm (13)

W32/IRCbot.worm.gen

W32/CodeRed.worm.gen

W32/Opanki.worm.gen

W32/Sdbot.worm.gen.l

W32/Kelvir.worm.gen

W32/Sdbot.worm.gen.bs

W32/Sdbot.worm.gen.ag

W32/Sdbot.worm.gen.bh

W32/Sdbot.worm.gen.by

W32/Sdbot.worm.gen.bj

W32/Sdbot.worm.gen.ac

W32/Sdbot.worm.gen.t

W32/Bobax.worm.gen

Internet Worm (2)

W32/Kelvir.worm.bh

W32/Kelvir.worm.f

JavaScript (2)

JS/Dismissed.gen

Win32 (3)

W32/Generic.Delphi.a

Worm (52)

W32/Kelvir.worm.eo

W32/Kelvir.worm.ex

W32/CodeGreen.worm

W32/Beavuh.worm

W32/CodeRed.worm.f

W32/CodeRed.worm.a

W32/Bobax.worm.j

W32/Bobax.worm.h

W32/Bobax.worm.f

W32/Kelvir.worm.al

W32/Kelvir.worm.ap

W32/Kelvir.worm.an

W32/Kelvir.worm.ao

W32/Kelvir.worm.am

W32/Kelvir.worm.ec

W32/Kelvir.worm.ax

W32/Kelvir.worm.az

W32/CodeRed.worm.c

W32/CodeRed.worm.d

W32/CodeRed.worm.b

W32/Bobax.worm.i

W32/Bobax.worm.g

W32/Kelvir.worm.ba

W32/Kelvir.worm.ay

W32/Kelvir.worm.bg

W32/Kelvir.worm.e

W32/Kelvir.worm.ca

W32/Kelvir.worm.ci

W32/Kelvir.worm.i

W32/Kelvir.worm.o

W32/Kelvir.worm.p

W32/Kelvir.worm.l

W32/Kelvir.worm.ch

W32/Kelvir.worm.q

W32/Kelvir.worm.w

W32/Kelvir.worm.cu

W32/Kelvir.worm.da

W32/Kelvir.worm.cz

W32/Kelvir.worm.dd

W32/Kelvir.worm.cq

W32/Kelvir.worm.cv

W32/Kelvir.worm.cx

W32/Kelvir.worm.cy

W32/Kelvir.worm.ac

W32/Kelvir.worm.aj

W32/Kelvir.worm.ai

W32/Opanki.worm

W32/Kelvir.worm.db

W32/Kelvir.worm.gc

W32/Bobax.worm.e

W32/Kelvir.worm.dy

Vulnerability (1)

Exploit (1)

Exploit-IframeBO