Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4727
DAT Release Date 03/27/2006
Threats Detected 183627
New Detections 19
Enhanced Detections 133

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
Exploit-CreateTxtRng Low-Profiled Low-Profiled

New Detections:

Program (3)
   (1)
    SpywareQuake.lnk
  Adware (1)
    SpywareQuake
  Generic (1)
    AdwareDropper-I.gen
Trojan (9)
   (1)
    FakeAlert-B
  Application extension (1)
    BackDoor-CYQ.dll
  Downloader (2)
    Downloader-AVK
    BackDoor-ARR.dldr
  Exploit (1)
    Exploit-CreateTxtRng
  Password Stealer (2)
    PWS-Banker.bg
    PWS-PartyPooper
  Remote Access (2)
    BackDoor-CYQ
    BackDoor-CYP
Virus (7)
   (3)
    SymbOS/Commwarrior.h!sis
    SymbOS/Commwarrior.i!sis
    SymbOS/Cabir.x!sis
  Generic (1)
    AM/Supersonic.gen
  Macro (2)
    AM/Supersonic.b
    AM/Supersonic.a
  Win32 (1)
    W32/Burm

Enhanced Detections:

Internet Worm (1)
  E-mail (1)
    W32/Bagle.gen@MM
Program (13)
   (1)
    VObj10
  Adware (7)
    Adware-BB
    Adware-SearchAid
    Adware-VirtualGirl
    Adware-OpenSite
    Adware-BDSearch
    Adware-NaviPromo
    Adware-Newweb
  Dialer (3)
    Dialer-Generic
    Dialer-185
    Dialer-188
  Downloader (1)
    Adware-ISTbar.dldr
  Registry (1)
    Generic AdClicker.h
Trojan (79)
   (5)
    Generic BackDoor.bb
    Generic BackDoor.t
    Generic.dc
    AZESearch
    QHosts-56!hosts
  Application extension (1)
    BackDoor-CVM.dll
  Application extension Generi (1)
    BackDoor-CKB.dll.gen
  Downloader (7)
    W32/Bagle.dl
    W32/Bagle.dn
    W32/Bagle.dm
    Downloader-ZQ
    BackDoor-CVM.dldr
    Downloader-ASI
    Downloader-ART
  Downloader Generic (1)
    W32/Bagle.dldr
  Dropper (4)
    AZESearch.dr
    BackDoor-CKB.dr
    BackDoor-CVM.dr
    AdClicker-AF.dr
  Exploit (3)
    VBS/Psyme
    Exploit-CodeBase.chm
    Exploit-QtPICT
  Generic (7)
    Exploit-MhtRedir.gen
    Generic Downloader.gen.be
    PWS-Banker.gen.bb
    PWS-Banker.gen.g
    PWS-Banker.gen.t
    JS/Exploit-BO.gen
    Exploit-MS06-004.gen
  Heuristic (4)
    New Malware.d
    New Malware.n
    New Malware.ab
    New Malware.z
  Internet Relay Chat (1)
    IRC/Flood.eq
  Password (1)
    PWS-LDPinch
  Password Stealer (6)
    Generic PWS.d
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    Generic PWS.j
    W32/Loosky!pws
    PWS-Reox
  Proxy (3)
    Proxy-Agent.r
    Proxy-Agent.as
    Proxy-Piky
  Remote Access (12)
    BackDoor-ARR
    BackDoor-SO
    BackDoor-AWQ.b
    BackDoor-ARH
    BackDoor-CKB.sys
    BackDoor-CDC
    BackDoor-CYL
    BackDoor-CVM
    BackDoor-BAC.sys
    Generic BackDoor.m
    Generic BackDoor.k
    BackDoor-CKB
  Script (1)
    Generic component
  Win32 (22)
    W32/Bagle.x!proxy
    Generic Delphi
    DollarRevenue
    SocksProxy
    Generic BackDoor.c
    Generic MSVC
    Generic VB.b
    Generic Downloader.p
    Puper
    Generic Downloader.s
    QLowZones-15
    G6Service
    Generic Downloader.y
    Generic Downloader.q
    Generic PWS.o
    Spabot
    Generic AdClicker.a
    Generic Downloader.ab
    Generic PWS.s
    Generic AdClicker.n
    Generic AdClicker.m
    DDoS-Boxed
Virus (40)
   (8)
    SymbOS/Commwarrior.b!sis
    SymbOS/Commwarrior.a!sis
    SymbOS/Commwarrior.c!sis
    SymbOS/Commwarrior.g!sis
    SymbOS/Commwarrior.f!sis
    SymbOS/Commwarrior.d!sis
    SymbOS/Commwarrior.e!sis
    SymbOS/Cabir.ae!sis
  Application extension (1)
    W32/Loosky.dll
  Dropper (2)
    W32/Bagle.bs.dr
    W32/Loosky.dr
  E-mail (2)
    W32/Bagle.b@MM
    W32/Bagle.ad@MM
  E-mail worm (6)
    W32/Bagle.q@MM
    W32/Bagle.t@MM
    W32/Bagle.u@MM
    W32/Bagle.r@MM
    W32/Bagle.s@MM
    W32/Bagle.dq@MM
  Email (3)
    W32/Bagle.cc@MM
    W32/Bagle.a@MM
    W32/Loosky.e@MM
  Email Generic (2)
    W32/Rontokbro.gen@MM
    W32/Loosky.gen@mm
  Generic (2)
    SymbOS/Commwarrior.gen!sis
    W32/Bagle.bs.gen
  Generic Worm (4)
    W32/Sdbot.worm.gen.as
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.x
    W32/Spybot.worm.gen.o
  Internet Worm (1)
    W32/NoChod@MM
  MS Office Suite (1)
    VBA/Generic.src
  VbScript (1)
    New Script
  Win32 (7)
    W32/Bagle
    W32/Bagle.bs
    W32/Bagle.dt
    W32/Bagle.dq
    W32/Loosky!proxy
    W32/Loosky!backdoor
    W32/Vbbot