Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4762
DAT Release Date 05/15/2006
Threats Detected 190171
New Detections 11
Enhanced Detections 182

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
W32/Hoots.worm Low-Profiled Low-Profiled

New Detections:

Program (1)
  Malware Tool (1)
    PWCrack-Crax
Trojan (7)
   (1)
    AdClicker-EI
  Application extension (1)
    Downloader-AUE.dll
  Dropper (1)
    Kurofoo.dr
  Generic (1)
    PWS-Banker.gen.ab
  Remote Access (1)
    BackDoor-CZT
  Win32 (2)
    Kurofoo
    ProcKill
Virus (3)
  Email (1)
    W32/Lovgate.au@MM
  Win32 (1)
    W32/Niklas
  Worm (1)
    W32/Hoots.worm

Enhanced Detections:

Program (5)
  Adware (3)
    Adware-Adwin
    Adware-NaviPromo
    Adware-ClickSpring
  Win32 (2)
    Generic Adware.aa
    Generic HTool.bb
Trojan (95)
   (4)
    Generic Dropper.o
    Generic.cf
    Generic BackDoor.bb
    Generic.cd
  Application extension (2)
    PWS-Legmir.dll
    MailSkinner.dll
  Configurator (2)
    ProcKill-Q.cfg
    Generic PWS.c.cfg
  Downloader (6)
    BackDoor-CYY.dldr
    Downloader-AAP
    Downloader-ABU
    Downloader-AUE
    Downloader-ASH
    Downloader-ARM
  Dropper (3)
    PWS-LDPinch.dr
    Generic PWS.c.dr
    PWS-Goldun.dr
  Exploit (1)
    Exploit-SWF.b!demo
  Generic (7)
    Generic Downloader.gen.bd
    Generic Downloader.gen.be
    Swizzor.gen
    PWS-Banker.gen.bb
    PWS-Banker.gen.g
    RemAdm-RemoteAdmin.gen.ba
    PWS-Banker.gen.v
  Generic Worm (1)
    W32/Sdbot.worm.gen.ax
  Password (1)
    PWS-LDPinch
  Password Stealer (10)
    Generic PWS.c
    PWS-QQRob
    PWS-JA
    Generic PWS.u
    PWS-Banker.gen.ba
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-Banker.au
    PWS-Lineage
    PWS-Yulz
  PDA Device (1)
    SymbOS/Skulls.a
  Process (2)
    ProcKill-AE
    ProcKill-AF
  ProcKill (23)
    ProcKill-BW
    ProcKill-H
    ProcKill-F
    ProcKill-BT
    ProcKill-BO
    ProcKill-BJ
    ProcKill-AU
    ProcKill-AL
    ProcKill-AC
    ProcKill-AA
    ProcKill-S
    ProcKill-Q
    ProcKill-P
    ProcKill-M
    ProcKill-L
    ProcKill-K
    ProcKill-J
    ProcKill-F.cln
    ProcKill-D
    ProcKill-C
    ProcKill-DQ
    ProcKill-CG
    ProcKill-BX
  Proxy (2)
    Proxy-Agent.au
    Proxy-Piky
  Remote Access (6)
    BackDoor-AWQ.b
    BackDoor-CGX
    BackDoor-CMQ
    BackDoor-CYY
    Generic BackDoor.m
    Generic BackDoor.k
  Spam (1)
    Spam-Loot
  Spyware (1)
    MailSkinner
  Trojan (1)
    Multidropper
  Win32 (21)
    Generic Downloader.a
    Generic BackDoor.b
    Generic BackDoor.f
    Generic BackDoor.bg
    Generic VB.b
    Generic Downloader.d
    FakeAlert-C
    Generic Downloader.s
    QLowZones-15
    Generic BackDoor.be
    Generic BackDoor.bc
    Generic BackDoor.ba
    Generic AdClicker.j
    Generic AdClicker.b
    Generic PWS.o
    Generic QLowZones.a
    Generic BackDoor.u
    Generic Downloader.ab
    DDoS-Boxed
    AdClicker-BJ
    Generic AdClicker.d
Virus (82)
   (12)
    SymbOS/Skulls.ci
    SymbOS/Skulls.f
    SymbOS/Skulls.e
    SymbOS/Skulls.g
    SymbOS/Skulls.h
    SymbOS/Skulls.i
    SymbOS/Skulls.cf
    SymbOS/Skulls.cg
    SymbOS/Skulls.c
    SymbOS/Skulls!aif
    SymbOS/Skulls.d
    SymbOS/Skulls.ca
  Application extension (1)
    W32/Kernl.dll
  Damaged (3)
    W32/Lovgate.dam
    W32/Netsky.dam!zip
    W32/Lovgate.x.dam
  E-mail (1)
    W32/Lovgate.ah@MM
  E-mail worm (7)
    W32/Lovgate.f@M
    W32/Lovgate.g@M
    W32/Lovgate.ac@MM
    W32/Lovgate.ad@MM
    W32/Lovgate.af@MM
    W32/Lovgate.aj@MM
    W32/Lovgate.ab@MM
  Email (28)
    W32/Lovgate.r@MM
    W32/Lovgate.b@M
    W32/Lovgate.ar@MM
    W32/Lovgate.m@M
    W32/Netsky.q@MM!zip
    W32/Netsky.n@MM!zip
    W32/Netsky.b@MM!zip
    W32/Netsky.p@MM!zip
    W32/Netsky.c@MM!zip
    W32/Netsky.a@MM!zip
    W32/Netsky.z@MM!zip
    W32/Lovgate.q@MM
    W32/Lovgate.p@MM
    W32/Lovgate.v@M
    W32/Lovgate.t@MM
    W32/Lovgate.u@MM
    W32/Lovgate.w@M
    W32/Lovgate.al@MM
    W32/Lovgate.at@MM
    W32/Lovgate.aa@MM
    W32/Lovgate.ao@MM
    W32/Lovgate.an@MM
    W32/Lovgate.as@MM
    W32/Netsky.ai@MM!zip
    W32/Lovgate.aq@MM
    W32/Netsky.ag@MM!zip
    W32/Lovgate.ak@MM
    W32/Lovgate.ae@MM
  Email Generic (1)
    JS/Feebs.gen.h@MM
  Email Worm (2)
    W32/Lovgate.ai@MM
    W32/Lovgate.ag@MM
  Generic (1)
    SymbOS/Skulls.gen
  Generic Worm (11)
    W32/Sdbot.worm.gen.bg
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.m
    W32/Sdbot.worm.gen.bs
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Gaobot.worm.gen.bi
    W32/Gaobot.worm.gen.by
  Internet Relay Chat Worm (1)
    W32/Akbot
  Peer To Peer (1)
    W32/Generic.d!p2p
  Win32 (6)
    New Win32.s
    New Win32
    W32/Lovgate
    Generic BackDoor.bf
    W32/Loosky
    W32/Generic.x
  Worm (7)
    W32/Lovgate.n@M
    W32/Lovgate.l@M
    W32/Lovgate.a@M
    W32/Lovgate.c@M
    W32/Lovgate.s@MM
    W32/Lovgate.x@MM
    W32/Dedler.worm