Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4767
DAT Release Date 05/22/2006
Threats Detected 192152
New Detections 20
Enhanced Detections 214

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
  Tool (1)
    Tool-UnloadDLL
Trojan (13)
   (8)
    SymbOS/PBsender.g!app
    SymbOS/PBsender.g!sis
    SymbOS/PBsender.e!sis
    Generic Downloader.bd
    Ceegar
    SymbOS/PBsender.e!app
    SymbOS/PBsender.f!sis
    SymbOS/PBsender.d!sis
  Application extension (1)
    BackDoor-CPY.dll
  Exploit (2)
    Exploit-MailFox
    Exploit-ITSSHeap
  Linux (1)
    Linux/Phobi
  Remote Access (1)
    BackDoor-CKB!6708ddaf
Virus (6)
   (1)
    SymbOS/Cabir.z!sis
  Dropper (1)
    MLS/Lagob.dr
  Win32 (1)
    W32/Brepibot!8192
  Worm (3)
    Hilder.worm!bat
    W32/Skowor.worm
    W32/Genrack.worm

Enhanced Detections:

Program (10)
   (1)
    Generic PUP.a
  - (1)
    RemAdm-PSKill
  Adware (4)
    Adware-ISTBar
    Adware-NaviPromo
    Adware-Newweb
    Adware-DropSpam
  Generic (1)
    Dialer-RAS.gen.aa
  Spyware (1)
    Spyware-RealSpy
  Win32 (2)
    ServU-Daemon
    Generic Adware.aa
Trojan (78)
   (4)
    Generic BackDoor.d
    Generic Dropper.o
    Generic BackDoor.bb
    QHosts-18!hosts
  - (3)
    BackDoor-AOU
    W32/Bagle.dll.dr
    AdClicker-AJ
  Application extension (3)
    Puper.dll
    BackDoor-CKB.dll
    BackDoor-CXO.dll
  Configurator (1)
    Generic PWS.b.cfg
  Downloader (6)
    Downloader-ATM!CME-934
    Downloader-ATM!CME-503
    Downloader-ZQ
    Downloader-ATM
    Downloader-ASH
    Downloader-ARL
  Dropper (6)
    VBS/Inor
    PWS-LDPinch.dr
    BackDoor-CZL.dr
    BackDoor-CKB.dr
    Puper.dr
    MultiDropper-QH
  Generic (6)
    Exploit-MhtRedir.gen
    Exploit-OleData.gen
    Swizzor.gen
    PWS-Banker.gen.bb
    PWS-Banker.gen.t
    Generic Downloader.gen.bc
  Generic Worm (1)
    W32/Sdbot.worm.gen.ax
  Heuristic (2)
    New Malware.u
    New Malware.ab
  Java Applet (1)
    JV/Shinwow
  Password (2)
    PWS-LegMir
    PWS-LDPinch
  Password Stealer (8)
    Generic PWS.b
    PWS-JA
    PWS-Banker.gen.ba
    PWS-Banker.gen.i
    PWS-Cashgrabber
    PWS-Banker.bh
    PWS-Lineage
    PWS-Mifeng
  PDA Device (1)
    SymbOS/Skulls.a
  Proxy (1)
    Proxy-Horst
  Remote Access (8)
    BackDoor-AWQ.b
    BackDoor-AVW
    BackDoor-BCB
    BackDoor-CKB.sys
    BackDoor-CPX
    BackDoor-CPY
    BackDoor-CMQ
    BackDoor-CKB
  Script (2)
    Generic component
    PHP/Defash
  Server (1)
    BackDoor-CUR.svr
  Win32 (22)
    Generic Downloader.a
    HackerDefender
    Generic BackDoor.bg
    DollarRevenue
    Puper
    Generic Downloader.j
    Generic Downloader.s
    Generic Downloader.be
    Generic BackDoor.be
    Generic BackDoor.ba
    Generic Downloader.u
    Generic PWS.o
    Generic QLowZones.a
    Generic Dropper.i
    Generic Downloader.ab
    Generic VB.c
    CryZip
    AdClicker-DW
    Generic Proxy.e
    Spy-Agent.y
    Generic Downloader.g
    Generic AdClicker.c
Virus (126)
   (16)
    SymbOS/Skulls.ci
    SymbOS/Skulls.f
    SymbOS/Skulls.e
    SymbOS/Skulls.g
    SymbOS/Skulls.h
    SymbOS/Skulls.i
    SymbOS/Skulls.cf
    SymbOS/Skulls.cg
    SymbOS/PBsender.d!app
    SymbOS/PBsender.c!app
    SymbOS/PBsender.a!app
    SymbOS/PBsender.b!app
    SymbOS/Skulls.c
    SymbOS/Skulls!aif
    SymbOS/Skulls.d
    SymbOS/Skulls.ca
  Damaged (1)
    W32/Netsky.dam
  Dropper (1)
    W32/Areses.dr
  Dropper Email (1)
    W32/Mytob.dr@MM
  E-mail (10)
    W32/Mytob.be@MM
    W32/Mytob.bi@MM
    W32/Mytob.bj@MM
    W32/Mytob.bo@MM
    W32/Mytob.bl@MM
    W32/Mytob.br@MM
    W32/Mytob.bf@MM
    W32/Mytob.cg@MM
    W32/Mytob.ch@MM
    W32/Areses.h
  Email (65)
    W32/Mytob.hr@MM
    W32/Mytob.b@MM
    W32/Mytob.a@MM
    W32/Mytob.ev@MM
    W32/Mytob.at@MM
    W32/Mytob.ib@MM
    W32/Mytob.av@MM
    W32/Mytob.au@MM
    W32/Mytob.hy@MM
    W32/Mytob.fy@MM
    W32/Mytob.fw@MM
    W32/Mytob.fx@MM
    W32/Mytob.gg@MM
    W32/Mytob.gl@MM
    W32/Mytob.gj@MM
    W32/Mytob.gi@MM
    W32/Mytob.hs@MM
    W32/Mytob.bg@MM
    W32/Mytob.bx@MM
    W32/Mytob.cd@MM
    W32/Mytob.gd@MM
    W32/Mytob.gc@MM
    W32/Mytob.gb@MM
    W32/Mytob.ga@MM
    W32/Mytob.gf@MM
    W32/Mytob.gp@MM
    W32/Mytob.gq@MM
    W32/Mytob.bn@MM
    W32/Mytob.dh@MM
    W32/Mytob.r@MM
    W32/Mytob.e@MM
    W32/Mytob.c@MM
    W32/Mytob.gt@MM
    W32/Mytob.g@MM
    W32/Mytob.bt@MM
    W32/Mytob.bp@MM
    W32/Mytob.ct@MM
    W32/Mytob.cf@MM
    W32/Mytob.dd@MM
    W32/Mytob.ca@MM
    W32/Mytob.n@MM
    W32/Mytob.f@MM
    W32/Mytob.d@MM
    W32/Mytob.cs@MM
    W32/Mytob.dk@MM
    W32/Mytob.dz@MM
    W32/Mytob.eb@MM
    W32/Mytob.ds@MM
    W32/Mytob.ea@MM
    W32/Mytob.gu@MM
    W32/Mytob.gx@MM
    W32/Mytob.hq@MM
    W32/Mytob.ej@MM
    W32/Mytob.hp@MM
    W32/Mytob.gy@MM
    W32/Mytob.hf@MM
    W32/Mytob.gw@MM
    W32/Mytob.gz@MM
    W32/Mytob.hg@MM
    W32/Mytob.hh@MM
    W32/Mytob.hi@MM
    W32/Mytob.gv@MM
    W32/Mytob.he@MM
    W32/Mytob.es@MM
    W32/Mytob.eq@MM
  Email Generic (2)
    W32/Mytob.gen@MM
    W32/Feebs.gen@MM
  Generic (3)
    SymbOS/Skulls.gen
    W32/Lemoor.gen
    SymbOS/PBsender.gen!app
  Generic Worm (15)
    W32/Sdbot.worm.gen.as
    W32/Sdbot.worm.gen.bg
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.bl
    W32/Sdbot.worm.gen.bs
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.bo
    W32/Sdbot.worm.gen.bd
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.bw
    W32/Bobax.worm.gen
  Internet Worm (2)
    W32/NoChod@MM
    W32/Mytob.bk@MM
  Script (1)
    VBS/Pazuzu
  Win32 (6)
    New Win32.g1
    New Poly Win32
    W32/Areses.f
    W32/Areses.g
    W32/Generic.n
    W32/Feebs!rootkit
  Worm (3)
    W32/Sites.worm
    W32/Mytob.worm!im
    W32/Opanki.worm