Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4748
DAT Release Date 04/25/2006
Threats Detected 187704
New Detections 21
Enhanced Detections 159

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (2)
   (1)
    VText.108
  Dropper (1)
    Adware-DesktopMedia.dr
Trojan (14)
   (3)
    Spy-Agent.au
    Adclicker.inf
    AdClicker-DX.url
  Application extension (1)
    Spam-Loot.dll
  Dialer (1)
    QDial-42
  Downloader (1)
    Downloader-AVV
  Dropper (2)
    Puper.dr
    QDial-42.dr
  Exploit (1)
    Exploit-NicoFTP
  Remote Access (2)
    BackDoor-CZI
    BackDoor-CZH
  Win32 (3)
    Galler.sys
    Del-501
    Generic Dropper.ad
Virus (5)
   (2)
    Matlab/Bagoly
    MLS/Lagob
  Email (1)
    W32/Mydoom.bz@MM
  Win32 (2)
    W32/Polip
    W32/Areses.g

Enhanced Detections:

Program (22)
   (1)
    Dialer.inf
  Adware (12)
    Adware-TopMoxie
    Adware-BrowserAid
    Adware-180SA
    Adware-BHO.gen
    Adware-Gain
    Adware-Searchcentrix
    Adware-Vloading
    SpywareQuake
    Adware-PigSearch
    Adware-123mania.inf
    Adware-DesktopMedia
    Adware-abetterintrnt
  Configuration settings (2)
    ServU.ini
    Dialer.ini
  Joke (1)
    Generic Joke
  Malware Tool (2)
    PWCrack-PassView
    PWCrack-NetPass
  Registry (1)
    Generic AdClicker.h
  Spyware (1)
    Spyware-007
  Win32 (2)
    Generic HTool.bb
    Winfixer
Trojan (66)
   (3)
    Generic.cf
    Generic BackDoor.bb
    Phish-BankFraud.eml.f
  Application extension (2)
    Puper.dll
    BackDoor-CVM.dll
  Damaged (1)
    BackDoor-AWQ.b.dam
  Demonstration (1)
    JS/Exploit-Script.demo
  Downloader (8)
    Downloader-DC
    Downloader-XC
    Downloader-ABU
    Downloader-ZQ
    Downloader-AUE
    Downloader-TB
    Downloader-ARL
    Downloader-TI
  Dropper (3)
    Generic BackDoor.dr
    Proxy-Hino.dr
    StartPage-DU.dr
  Exploit (1)
    Exploit-ObscuredHtml
  Generic (7)
    IRC/Flood.gen.b
    PWS-Banker.gen.bb
    PWS-Banker.gen.g
    PWS-Banker.gen.t
    Exploit-MS06-004.gen
    PWS-Banker.gen.v
    BackDoor-BAC.gen.b
  Heuristic (1)
    New Malware.h
  Internet Relay Chat (2)
    IRC/Flood.c
    IRC/Flood.b
  Password (2)
    PWS-Watsn
    PWS-LDPinch
  Password Stealer (7)
    PWS-JA
    PWS-Banker.bj
    PWS-AOLPhish
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-WoW
    PWS-Lineage
  Proxy (5)
    Proxy-Hino.b
    Proxy-FBSR
    Proxy-Hino.c
    Proxy-Agent.au
    Proxy-Piky
  Remote Access (9)
    BackDoor-AWQ.b
    BackDoor-AMJ
    BackDoor-CUQ
    BackDoor-ADE
    BackDoor-COL
    BackDoor-BAC.gen.d
    BackDoor-BAC.sys
    BackDoor-CWP
    BackDoor-CMQ
  Spam (1)
    Spam-Loot
  Win32 (13)
    Generic BackDoor.f
    DollarRevenue
    AdClicker-EG
    Oleloa
    Puper
    Generic Downloader.s
    Generic BackDoor.ba
    Generic PWS.o
    Generic AdClicker.a
    Generic BackDoor.u
    Generic Downloader.ab
    AdClicker-DX
    Galapoper
Virus (71)
  Damaged (1)
    W32/Mydoom.dam
  Dropper (1)
    W32/Areses.dr
  Dropper Worm (1)
    W32/Shellot.worm.dr
  E-mail (11)
    W32/Mydoom.b@MM
    W32/Mydoom.h@MM
    W32/Mydoom.e@MM
    W32/Mydoom.o@MM
    W32/Mydoom.bx@MM
    W32/Mydoom.be@MM
    W32/Mydoom.bb@MM
    W32/Mydoom.bc@MM
    W32/Mydoom.bd@MM
    W32/Mydoom.bg@MM
    W32/Mydoom.k@MM
  E-mail worm (5)
    W32/Mydoom.g@MM
    W32/Mydoom.f@MM
    W32/Mydoom.z@MM
    W32/Mydoom.av@MM
    W32/Mydoom.ab@MM
  Email (19)
    W32/Mydoom.i@MM
    W32/Mydoom.a@MM
    W32/Mydoom.j@MM
    W32/Mytob.ia@MM
    W32/Mytob.hz@MM
    W32/Mytob.hx@MM
    W32/Mytob.hw@MM
    W32/Mytob.hv@MM
    W32/Mydoom.aa@MM
    W32/Mydoom.by@MM
    W32/Mydoom.cb@MM
    W32/Mytob.t@MM
    W32/Mydoom.bs@MM
    W32/Mydoom.cd@MM
    W32/Mydoom.at@MM
    W32/Mydoom.x@MM
    W32/Mydoom.w@MM
    W32/Mydoom.m@MM
    W32/Mydoom.l@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Email Worm (1)
    W32/Mydoom.r@MM
  Floppy (1)
    W32/Generic!floppy
  Generic Worm (15)
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.bg
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.m
    W32/Sdbot.worm.gen.x
    W32/Sdbot.worm.gen.ae
    W32/Sdbot.worm.gen.bs
    W32/Gaobot.worm.gen.u
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.ag
    W32/Sdbot.worm.gen.bo
    W32/Spybot.worm.gen.o
    W32/Sdbot.worm.gen.bh
    W32/Spybot.worm.gen.n
  Heuristic (1)
    New Malware.b
  Internet Worm (4)
    W32/Mydoom.p@MM
    W32/Mydoom.s@MM
    W32/Mydoom.u@MM
    W32/Mydoom.v@MM
  Win32 (7)
    W32/Generic.d
    W32/Areses.f
    W32/Generic!msn
    W32/Generic!im
    W32/Mydoom
    W32/Mydoom.ao
    W32/Plexus!hosts
  Worm (3)
    W32/MoFei.worm
    W32/Generic.worm!im
    W32/Mydoom.t@MM