Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4713
DAT Release Date 03/08/2006
Threats Detected 181921
New Detections 20
Enhanced Detections 277

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
W32/Hotmatom.worm Low-Profiled Low-Profiled

New Detections:

Program (1)
  Win32 (1)
    PortScan-XShareZ
Trojan (9)
   (1)
    Spy-Agent.ao
  Downloader (1)
    Downloader-AVB
  Dropper (1)
    Backdoor-COC.dr
  Exploit (2)
    Exploit-Shockwave.gen
    Exploit-SWF.poc
  Generic (1)
    Exploit-SWF.gen
  Password (1)
    MultiDropper-QE
  Password Stealer (1)
    PWS-Banker.bd
  Win32 (1)
    Del-500
Virus (10)
   (3)
    SymbOS/Commwarrior.d!ezboot
    SymbOS/Commwarrior.d!exe
    SymbOS/Commwarrior.d!sis
  E-mail worm (1)
    W32/Duel@MM
  Macro (1)
    JS/Icabdi
  Overwriting (1)
    Univ.ow/f
  Peer To Peer Worm (1)
    W32/Gurdof.worm!p2p
  Win32 (2)
    W32/Generic!msn
    W32/Duel
  Worm (1)
    W32/Hotmatom.worm

Enhanced Detections:

Program (9)
  Adware (3)
    Adware-Oemji
    Adware-SideStep
    Adware-Cometsys
  Application extension (1)
    KeyHook.dll
  Downloader (1)
    Adware-SideStep.dldr
  Joke (1)
    Joke-Owned
  Spyware (1)
    Spyware-Realtime-Spy
  StartPage (1)
    StartPage-Raze
  Win32 (1)
    Winfixer
Trojan (84)
   (3)
    Generic BackDoor.d
    Generic.ca
    Generic BackDoor.bb
  - (2)
    AdClicker-AJ
    Spam-Mailbot
  Adware (1)
    AdClicker-DI
  Application extension (5)
    PWS-LDPinch.dll
    BackDoor-CUC.dll
    BackDoor-CPI.dll
    PWS-Lineage.dll
    PWS-LDPinch.dll!ldr
  Configurator (1)
    BackDoor-CEP.cfg
  Demonstration (1)
    Exploit-MSJet.demo
  Downloader (10)
    Downloader-DC
    Downloader-JK
    Downloader-AFH
    PWS-Banker.dldr
    Downloader-ABU
    Downloader-AUP
    Downloader-ATU
    BackDoor-CVM.dldr
    Downloader-PE
    Downloader-AQW
  Dropper (4)
    StartPage-CQ.dr
    MultiDropper-OG
    BackDoor-CEP.dr
    BackDoor-CVM.dr
  Exploit (8)
    Exploit-DcomRpc
    Exploit-MSJet!BCB
    JS/Exploit-Applet
    Exploit-ANIfile
    Exploit-MSJet.a
    Exploit-Gator
    Exploit-MSJet!CKB
    Exploit-MSJet!BAE
  Generic (7)
    BackDoor-AGS.gen
    Generic Downloader.gen.be
    Perl/Exploit.gen
    PWS-Banker.gen.bb
    ServU-Daemon.gen.ba
    BackDoor-BAC.gen.e
    PWS-Banker.gen.v
  Generic Worm (1)
    VBS/Pica.worm.gen
  Heuristic (3)
    New Malware.ag
    New Malware.ah
    New Malware.ac
  Internet Relay Chat (1)
    IRC/Flood.eq
  Password (3)
    PWS-LDPinch
    BackDoor-AQO
    PWS-Banker.d
  Password Stealer (8)
    PWS-JA
    PWS-AOLPhish
    PWS-Banker.gen.ba
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    Generic PWS.j
    PWS-LDPinch.sys
    PWS-Lineage
  Proxy (1)
    Proxy-Agent.af
  Remote Access (9)
    BackDoor-AWQ.b
    BackDoor-CHC
    BackDoor-CQL
    BackDoor-CHT
    BackDoor-CYC
    Generic BackDoor.k
    BackDoor-CKB
    BackDoor-CEP
    BackDoor-CTK
  Script (1)
    Generic component
  StartPage (1)
    StartPage-HD
  Win32 (14)
    Generic Downloader.a
    HackerDefender
    Generic Delphi
    Generic Downloader.ak
    Generic VB.b
    Puper
    Generic BackDoor.be
    Generic BackDoor.bd
    Generic PWS.o
    Generic Downloader.ab
    Generic VB.c
    Generic PWS.r
    Generic BackDoor.w
    DDoS-Boxed
Virus (184)
   (8)
    SymbOS/Commwarrior.b!exe
    SymbOS/Commwarrior.a!exe
    SymbOS/Commwarrior!ezboot
    SymbOS/Commwarrior.b!sis
    SymbOS/Commwarrior.a!sis
    SymbOS/Commwarrior.c!exe
    SymbOS/Commwarrior.c!sis
    OSX/Inqtana.b
  Damaged (2)
    W32/Jeefo.dam
    W32/Mytob.dam
  Damaged Worm (3)
    W32/Spybot.worm.dam
    W32/Gaobot.worm.dam
    W32/Kelvir.worm.dam
  Dropper (1)
    W32/Jeefo.dr
  E-mail (1)
    W32/Mytob.gr@MM
  Email (70)
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.fa@MM
    W32/Mytob.ft@MM
    W32/Mytob.fs@MM
    W32/Mytob.aw@MM
    W32/Mytob.fr@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.fu@MM
    W32/Mytob.fw@MM
    W32/Mytob.fv@MM
    W32/Mytob.ge@MM
    W32/Mytob.go@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.fz@MM
    W32/Mytob.gf@MM
    W32/Mytob.gn@MM
    W32/Mytob.gp@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.gm@MM
    W32/Mytob.gs@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.de@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.hq@MM
    W32/Mytob.eg@MM
    W32/Mytob.ho@MM
    W32/Mytob.hn@MM
    W32/Mytob.hk@MM
    W32/Mytob.hm@MM
    W32/Mytob.hj@MM
    W32/Mytob.ha@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
  Email Generic (4)
    W32/Dumaru.gen@MM
    W32/Rontokbro.gen@MM
    W32/Mytob.gen@MM
    W32/Feebs.gen@MM
  Floppy (1)
    W32/Generic!floppy
  Generic (2)
    SymbOS/Commwarrior.gen
    SymbOS/Commwarrior.gen!sis
  Generic Worm (20)
    W32/Spybot.worm.gen.e
    W32/Gaobot.worm.gen.e
    W32/Sdbot.worm.gen.as
    W32/Opanki.worm.gen
    W32/Spybot.worm.gen.bj
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.x
    W32/Kelvir.worm.gen
    W32/Sdbot.worm.gen.ae
    W32/Gaobot.worm.gen.v
    W32/Sdbot.worm.gen.ay
    W32/Sdbot.worm.gen.ag
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.y
    W32/Supova.worm!p2p.gen
    W32/Sdbot.worm.gen.ac
    W32/Sdbot.worm.gen.t
  Internet Worm (3)
    W32/Kelvir.worm.c
    W32/Kelvir.worm.b
    W32/Kelvir.worm.dq
  MS-DOS Batch (1)
    New Bat
  Overwriting (1)
    Univ.ow/a
  Script (1)
    Univ.script/99a
  Win32 (11)
    W32/Jeefo
    New Poly Win32
    New Win32
    W32/Generic.d
    W32/Generic.e
    Generic BackDoor.bf
    W32/Generic!im
    W32/Feebs!rootkit
    W32/Vbbot
    W32/Generic.m
    W32/Generic.Delphi.b
  Worm (55)
    W32/MoFei.worm
    W32/Kelvir.worm.ew
    W32/Kelvir.worm.ev
    W32/Kelvir.worm
    W32/Kelvir.worm.ea
    W32/Kelvir.worm.ff
    W32/Kelvir.worm.ee
    W32/Kelvir.worm.eg
    W32/Kelvir.worm.eh
    W32/Kelvir.worm.ey
    W32/Kelvir.worm.fg
    W32/Kelvir.worm.bg
    W32/Kelvir.worm.ef
    W32/Kelvir.worm.d
    W32/Kelvir.worm.fk
    W32/Kelvir.worm.fj
    W32/Kelvir.worm.fh
    W32/Kelvir.worm.fi
    W32/Kelvir.worm.g
    W32/Kelvir.worm.k
    W32/Kelvir.worm.j
    W32/Kelvir.worm.a
    W32/Kelvir.worm.cm
    W32/Kelvir.worm.ck
    W32/Kelvir.worm.cj
    W32/Kelvir.worm.o
    W32/Kelvir.worm.n
    W32/Kelvir.worm.s
    W32/Kelvir.worm.fm
    W32/Kelvir.worm.fl
    W32/Kelvir.worm.l
    W32/Kelvir.worm.m
    W32/Kelvir.worm.t
    W32/Kelvir.worm.r
    W32/Kelvir.worm.cn
    W32/Kelvir.worm.cw
    W32/Kelvir.worm.cz
    W32/Kelvir.worm.ak
    W32/Kelvir.worm.fn
    W32/Kelvir.worm.co
    W32/Kelvir.worm.cx
    W32/Kelvir.worm.ab
    W32/Kelvir.worm.fr
    W32/Kelvir.worm.fq
    OSX/Inqtana.a
    W32/Kelvir.worm.dc
    W32/Kelvir.worm.dg
    W32/Kelvir.worm.dv
    W32/Kelvir.worm.dj
    W32/Kelvir.worm.fu
    W32/Kelvir.worm.fs
    W32/Kelvir.worm.fx
    W32/Kelvir.worm.ft
    W32/Kelvir.worm.dx
    W32/Kelvir.worm.dz