Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4813
DAT Release Date 07/24/2006
Threats Detected 201938
New Detections 7
Enhanced Detections 299

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
  Adware (1)
    Adware-TCent
Trojan (6)
  Downloader (2)
    Downloader-AXK
    PWS-Goldun.dldr
  Malware Tool (1)
    Spam-Mailbot.c!Rootkit
  Password Stealer (1)
    PWS-FFantasy
  Win32 (2)
    Generic MultiDropper.n
    QHosts-65

Enhanced Detections:

Malware (1)
  Exploit (1)
    Exploit-CodeBase
Program (20)
  - (1)
    Proxy-OSS
  Adware (8)
    Adware-SaveNow
    Adware-PurityScan
    Adware-Searchcentrix
    Adware-ActivShop
    Adware-ActivShop.lnk
    Adware-Boarim
    Adware-CramToolbar
    Adware-CasClient
  Dialer (2)
    Dialer-211
    Dialer-292
  Downloader (1)
    Proxy-OSS.dldr
  Dropper (6)
    NDotNet.dr
    Adware-SideSearch.dr
    Adware-SaveNow.dr
    Generic Adware.dr
    MySearch.dr
    Spyware-WebHancer.dr
  Spam (1)
    Adware-Ezula
  Win32 (1)
    Winfixer
Trojan (63)
   (4)
    Generic.cf
    Suspicious GIF
    Generic BackDoor.bb
    FakeAlert-B
  Application extension (1)
    BackDoor-BAC.dll
  Damaged (1)
    BackDoor-AWQ.b.dam
  Downloader (11)
    PWS-Banker.dldr.d
    Downloader-AAP.c
    Downloader-AAP
    BackDoor-CMQ.dldr
    Downloader-AFJ
    PWS-Banker.dldr
    Downloader-ZL
    Downloader-AUL
    Downloader-ASH
    Downloader-AQW
    PWS-LegMir.dldr
  Dropper (6)
    PWS-Legmir.dr
    MultiDropper-BN
    BackDoor-CKB.dr
    FakeAlert-B.dr
    BackDoor-CDC.dr
    PWS-Goldun.dr
  Exploit (1)
    JS/Exploit-HelpXSite
  Generic (7)
    MultiDropper-FT.gen
    Downloader-AXI.gen
    PWS-Banker.gen.bb
    PWS-Banker.gen.g
    BackDoor-CKB.gen
    PWS-Banker.gen.t
    RemAdm-RemoteAdmin.gen.ba
  Heuristic (1)
    New Malware.n
  Password (1)
    PWS-LegMir
  Password Stealer (7)
    PWS-Banker!1d2e
    PWS-Banker.gen.ac
    PWS-Banker.gen.ba
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-Lineage
    PWS-Goldun
  Proxy (1)
    Proxy-Piky
  Remote Access (9)
    BackDoor-AWQ.b
    BackDoor-BAC
    BackDoor-CKB.sys
    BackDoor-CSB
    BackDoor-CKB!rootkit
    BackDoor-CDC
    BackDoor-CLC
    BackDoor-BAC.sys
    BackDoor-CMQ
  Rootkit (1)
    Spam-Mailbot.c
  StartPage (1)
    StartPage-JL
  Win32 (11)
    Generic Downloader.a
    Generic Downloader.c
    DollarRevenue
    Puper
    Generic Downloader.s
    Spy-Agent.bd
    Generic BackDoor.bc
    Generic Downloader.u
    Generic PWS.o
    Generic Downloader.ab
    AdClicker-AO
Virus (215)
  Client (1)
    W32/Moridin.cli
  Damaged (3)
    Stoned.dam
    W97M/Ethan.dam
    W97M/Ozwer.dam
  Dropper (1)
    WM/Why.dr
  E-mail (1)
    W32/PetTick@MM
  Email (12)
    W32/Alcarys.d@MM
    W32/Alcarys.c@MM
    W32/Alcarys.b@MM
    W32/Alcarys.e@MM
    Bat/Fable@MM
    W32/Alcarys.f@MM
    WM/Sharefun.a@MM
    X97M/Generic@MM
    W32/Stopin.a@MM
    W32/Stopin.d@MM
    W32/Stopin.c@MM
    W32/Stopin.b@MM
  File Infector (1)
    NRLG
  Generic (10)
    IRC/Drimwa.gen
    WM/No-F.gen
    W97M/Allfunc.gen
    WM/Talon.gen
    WM/MadDog.gen
    WM/Phardera.gen
    WM/Olympic.gen
    W32/IRCbot.gen
    W97M/Ethan.gen
    W97M/Ethan.f.gen
  Generic Worm (5)
    W32/Spybot.worm.gen.bx
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.ca
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bj
  Heuristic (3)
    New X97M Dropper
    New VBA Dropper
    New W97M Dropper
  Intended (6)
    WM/Cheat.intd.a
    WM/Minimal.aq.intd
    WM/Alex.e.intd
    WM/Alex.c.intd
    WM/Cheat.intd.b
    WM/Minimal.ad.intd
  Internet Relay Chat (1)
    IRC/Delarm
  Internet Worm (1)
    IRC/Drimwa
  Macro (152)
    WM/Appder.Q
    WM/APPDER.K
    WM/APPDER.I
    WM/DARK.E
    WM/Minimal.X
    WM/SCHUMANN.B
    WM/SCHUMANN.A
    WM/APPDER.G
    WM/MINIMAL.P
    WM/WHY.A
    WM/CEBU.B
    WM/SHOWOFF.AC
    WM/Minimal.K;L;M;N;O
    WM/MINIMAL.G;H;I
    WM/CVCK1.D
    WM/CVCK1.C
    WM/TALON.G
    WM/TALON.E
    WM/CVCK1.A
    WM/DARK.D
    WM/CEBU.A
    W97M/Ethan.a
    W97M/Ethan.d
    W97M/Ethan.v
    W97M/Marker.v
    W97M/Ethan.al
    W97M/Marker.gen
    WM/Johnny.A
    WM/Johnny.B
    W97M/Ethan.at
    W97M/Ethan.q
    W97M/Ethan.aw
    WM/SHAREFUN.B
    WM/Appder.A;B;C;D;E
    WM/Divina.A;B
    WM/DIVINA.C;D;E
    WM/MINIMAL.A;B
    WM/Minimal.D;E;F;J
    WM/SHOWOFF.G
    W97M/Ethan.bi
    W97M/Fool.k
    W97M/Generic.dam
    W97M/Newhope.gen
    WM/NJ-VCK2.m
    WM/NJ-VCK2.k
    WM/NJ-VCK2
    WM/NJ-VCK2.n
    WM/NJ-VCK2.l
    WM/NJ-VCK2.j
    WM/MG.a
    WM/Look.d
    WM/Look.b
    WM/Divina.u
    WM/Dark.f
    WM/CVCK1.f
    WM/CVCK1.i
    WM/Appder.r
    WM/Appder
    WM/Appder.v
    W97M/Schumann
    W97M/DWMVCK1.f
    W97M/DWMVCK1.a
    W97M/Blashyrkh.e
    W97M/Blashyrkh.c
    W97M/Antisocial.s
    W97M/Antisocial.o
    W97M/Cobra.k
    W97M/Cobra.n
    W97M/Cobra.i
    W97M/Cobra.m
    WM/Twno.g
    WM/Twno.f
    WM/Twno.j
    WM/Twno.h
    WM/Talon.f
    WM/Talon.d
    WM/Schumann.u
    WM/Schumann.m
    WM/Minimal.av
    WM/Minimal.at
    WM/Minimal.as
    WM/Minimal.ar
    WM/Minimal.u
    WM/Ant.f
    WM/Ant.c
    WM/Ant.d
    WM/Ant.a
    WM/Minimal.t
    WM/Why.b
    WM/Sidor.b
    WM/Sidor.a
    non viable W97M/Cap
    WM/Niknat.i
    WM/Minimal.s
    WM/Minimal.q
    WM/Minimal.r
    WM/Look.c
    WM/Minimal.w
    WM/Bond
    WM/Appder.z
    WM/Appder.w
    WM/Irish
    WM/Divina.s
    WM/CVCK1.g
    WM/CVCK1
    WM/NJ-VCK2.t
    WM/MG.b
    W97M/Mess
    W97M/DWMVCK1.d
    W97M/Blashyrkh.f
    W97M/Blashyrkh.d
    W97M/Blashyrkh.a
    W97M/Antisocial.p
    W97M/Antisocial.n
    WM/Minimal.bp
    WM/Minimal.bn
    WM/Minimal.bl
    WM/Minimal.ax
    WM/Minimal.au
    WM/Minimal.al
    WM/Minimal.br
    WM/Minimal.bo
    WM/Minimal.bm
    WM/Minimal.aw
    WM/Minimal.ap
    WM/Niknat
    WM/Niknat.q
    WM/Minimal.af
    W97M/Ethan.bs
    W97M/Ethan.dg
    W97M/Ethan.da
    W97M/Ethan.cb
    W97M/Ethan.bx
    W97M/Ethan.ba
    W97M/Ethan.aj
    W97M/Ethan.ae
    W97M/Ethan.ab
    W97M/Ethan.aa
    W97M/Ethan.x
    W97M/Ethan.n
    W97M/Ethan.h
    W97M/Ethan.cz
    W97M/Ethan.dc
    W97M/Ethan.cu
    W97M/Ethan.ct
    W97M/Ethan.w
    WM/Minimal.ac
    WM/Minimal.aa
    WM/Minimal.ae
    WM/Minimal.z
    WM/Minimal.v
    WM/Minimal.y
  Malware Tool (3)
    WM/MVDK.1.Kit
    WM/CVCK1.Kit
    WM/MVDK.2.Kit
  MAPI (1)
    W97M/Generic@mm
  mIRC Worm (1)
    Elspy.worm
  MS Office Suite (1)
    VBA/Generic.src
  multipartite (2)
    One-Half.mpx
    One-Half.mp
  Script (1)
    Apuli.reg
  Server (1)
    W32/Moridin.svr
  Unpacked (1)
    Irok.unp
  Win32 (4)
    W32/Alcarys.a@MM
    W32/Arikash
    W32/Generic.Delphi.d
    W32/Moridin
  Win9x (1)
    W95/Coke.22231
  Worm (2)
    VBS/Grez.worm
    W32/Grez.worm