Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4769
DAT Release Date 05/24/2006
Threats Detected 192662
New Detections 20
Enhanced Detections 181

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
  Dropper (1)
    Spyware-Realtime-Spy.dr
Trojan (13)
   (5)
    SymbOS/Multidropper.bq!sis
    SymbOS/Multidropper.bo!sis
    SymbOS/Multidropper.bp!sis
    SymbOS/Multidropper.bs!sis
    SymbOS/Multidropper.br!sis
  Application extension Generi (1)
    Puper.dll.gen
  Downloader (2)
    Downloader-AWL
    Downloader-AWM
  Generic (2)
    Exploit-OleData.gen.gen
    Exploit-VBE.gen
  Heuristic (1)
    New Downloader.b
  Remote Access (2)
    BackDoor-CZW
    BackDoor-CZX
Virus (6)
  Application extension (1)
    W32/Sality.t.dll
  Email (1)
    W32/Mytob.ie@MM
  Parasitic (2)
    W32/HLLP.Philis.r
    W32/HLLP.82432
  Win32 (2)
    W32/Fontra.a
    W32/Sality.t

Enhanced Detections:

Program (9)
   (1)
    Generic PUP.a
  Adware (1)
    Adware-LinkMaker
  Configuration settings (1)
    ServU.ini
  Dialer (2)
    Dialer-Generic.e
    Dialer-Generic.f
  Downloader (1)
    Downloader-FL
  Internet Relay Chat (1)
    IRC/Client
  Spyware (1)
    Spyware-Realtime-Spy
  Win32 (1)
    Generic Dialer.ba
Trojan (68)
   (12)
    Generic Downloader.o
    SymbOS/Multidropper.bf!sis
    Generic Downloader.bd
    Ceegar
    SymbOS/Multidropper.bj!sis
    SymbOS/Multidropper.bh!sis
    SymbOS/Multidropper.bn!sis
    Generic BackDoor.bb
    SymbOS/Multidropper.bl!sis
    SymbOS/Multidropper.bk!sis
    SymbOS/Multidropper.bi!sis
    SymbOS/Multidropper.bg!sis
  AOL Password (1)
    PWS-AOLFake
  Configurator (2)
    Iroffer.cfg
    BackDoor-CEP.cfg
  Damaged (1)
    BackDoor-AWQ.b.dam
  Downloader (4)
    PWS-Banker.dldr
    Downloader-ZQ
    Downloader-ASH
    Downloader-ACR
  Dropper (3)
    BackDoor-CKB.dr
    BackDoor-CEP.dr
    PWS-Goldun.dr
  Exploit (1)
    Exploit-ITSSHeap
  Flooder (1)
    FDoS-AIMPunt
  Generic (4)
    Exploit-OleData.gen
    PWS-Banker.gen.bb
    PWS-Banker.gen.b
    ServU-Daemon.gen.ba
  Heuristic (3)
    New Malware.n
    New Malware.u
    New Malware.j
  Internet Relay Chat (1)
    IRC/Flood.cg
  Password (3)
    PWS-LegMir
    PWS-Msnfake
    PWS-LDPinch
  Password Stealer (6)
    PWS-JA
    PWS-Banker.gen.ba
    PWS-MSNFake.a
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-WoW
  ProcKill (1)
    ProcKill-AK
  Proxy (2)
    Proxy-Horst
    Proxy-Piky
  Remote Access (6)
    BackDoor-AWQ.b
    BackDoor-CGZ
    BackDoor-CPX
    BackDoor-CMQ
    BackDoor-CKB
    BackDoor-CEP
  Spam (1)
    Spam-Loot
  Win32 (16)
    Generic VB
    IRC/Flood.cm
    HackerDefender
    Generic MultiDropper.k
    Generic VB.b
    Spy-Agent.l
    Puper
    Generic BackDoor.bc
    Generic Downloader.u
    Swizzor
    Generic Downloader.x
    Generic PWS.o
    Generic BackDoor.u
    Generic Downloader.ab
    Generic VB.c
    Generic Proxy.g
Virus (104)
  Application extension (4)
    W32/Sality.dll
    W32/Sality.n.dll
    W32/Sality.m.dll
    W32/Sality.p.dll
  Damaged (1)
    W32/Mytob.dam
  Damaged Worm (2)
    W32/Gaobot.worm.dam
    W32/Protoride.worm.dam
  E-mail (1)
    W32/Mytob.gr@MM
  E-mail worm (1)
    W32/Duel@MM
  Email (71)
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.fa@MM
    W32/Mytob.ft@MM
    W32/Mytob.fs@MM
    W32/Mytob.aw@MM
    W32/Mytob.fr@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.id@MM
    W32/Mytob.fu@MM
    W32/Mytob.fw@MM
    W32/Mytob.fv@MM
    W32/Mytob.ge@MM
    W32/Mytob.go@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.fz@MM
    W32/Mytob.gf@MM
    W32/Mytob.gn@MM
    W32/Mytob.gp@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.gm@MM
    W32/Mytob.gs@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.de@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.hq@MM
    W32/Mytob.eg@MM
    W32/Mytob.ho@MM
    W32/Mytob.hn@MM
    W32/Mytob.hk@MM
    W32/Mytob.hm@MM
    W32/Mytob.hj@MM
    W32/Mytob.ha@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Exploit (1)
    Exploit-MS04-11
  Generic Worm (14)
    W32/Gaobot.worm.gen.e
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.w
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.ca
    W32/Sdbot.worm.gen.ae
    W32/Sdbot.worm.gen.cc
    W32/Spybot.worm.gen.p
    W32/Combra.worm.gen
    W32/Sdbot.worm.gen.ag
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Gaobot.worm.gen.bi
  Internet Worm (1)
    W32/Generic.worm!p2p
  mIRC Worm (1)
    W32/Protoride.worm
  Win32 (5)
    W32/Loosky
    W32/Sality.q
    W32/Sality.p
    W32/Sality.n
    W32/Sality.m
  Worm (1)
    W32/Opanki.worm