Saturday, May 27, 2006

Virus Updates for May 26th, 2006

DAT Version:4771
DAT Release Date:5-26-2006
Threats Detected:192,871
New Detections:6
Enhanced Detections:145



Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Full list

New DetectionsEnhanced detections
Program (1)
  Dropper (1)
    Emando.dr
Trojan (2)
  Downloader (1)
    Downloader-AWP
  Win32 (1)
    Spy-Agent.az
Virus (3)
  E-mail (2)
    W32/Mytob.ih@MM
    W32/Mytob.ii@MM
  Win32 (1)
    W32/Sality.u
Internet Worm (1)
  Win32 (1)
    W32/Browaf.worm
Malware (1)
  Win32 (1)
    Exploit-Mydoom
Program (4)
   (1)
    VText.3c
  Keylogger (1)
    Keylog-CN
  Malware Tool (1)
    VTool/fake
  Win32 (1)
    ServU-Daemon
Trojan (44)
   (3)
    Generic BackDoor.bb
    Generic Downloader.ao
    Generic Proxy.h
  Application extension (2)
    PWS-Legmir.dll
    StartPage-DH.dll
  Configurator (1)
    BackDoor-CEP.cfg
  Demonstration (1)
    JS/Exploit-DragDrop.b.demo
  Downloader (5)
    PWS-Banker.dldr
    Downloader-ZQ
    Downloader-ASH
    Downloader-ACR
    Downloader-AWM
  Dropper (3)
    BackDoor-CKB.dr
    BackDoor-CEP.dr
    Spam-DComServ.dr
  Exploit (2)
    Exploit-DcomRpc
    Exploit-MS04-011
  Generic (5)
    Exploit-OleData.gen
    PWS-Banker.gen.bb
    BackDoor-CKB.gen
    Exploit-MS06-004.gen
    JS/Exploit-DragDrop.b.gen
  Generic Worm (1)
    W32/Sdbot.worm.gen.ax
  HTML (1)
    JS/Winbomb
  Password Stealer (5)
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-Goldun.sys
    PWS-Banker.bh
    PWS-Banker.au
  Proxy (1)
    Proxy-Agent.a
  Remote Access (5)
    BackDoor-AMQ
    BackDoor-AWQ.b
    BackDoor-CKB.sys
    BackDoor-CMQ
    BackDoor-CEP
  StartPage (1)
    StartPage-DH
  Win32 (8)
    Generic Downloader.a
    Puper
    Generic Downloader.bb
    Generic BackDoor.bc
    Swizzor
    Generic PWS.o
    Generic BackDoor.u
    Generic Downloader.ab
Virus (95)
  Damaged (1)
    W32/Mytob.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  E-mail (3)
    W32/Mytob.ig@MM
    W32/Mytob.gr@MM
    W32/Banwarum.dll
  Email (72)
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.ie@MM
    W32/Mytob.fa@MM
    W32/Mytob.ft@MM
    W32/Mytob.fs@MM
    W32/Mytob.aw@MM
    W32/Mytob.fr@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.id@MM
    W32/Mytob.fu@MM
    W32/Mytob.fw@MM
    W32/Mytob.fv@MM
    W32/Mytob.ge@MM
    W32/Mytob.go@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.fz@MM
    W32/Mytob.gf@MM
    W32/Mytob.gn@MM
    W32/Mytob.gp@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.gm@MM
    W32/Mytob.gs@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.de@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.hq@MM
    W32/Mytob.eg@MM
    W32/Mytob.ho@MM
    W32/Mytob.hn@MM
    W32/Mytob.hk@MM
    W32/Mytob.hm@MM
    W32/Mytob.hj@MM
    W32/Mytob.ha@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Exploit (1)
    Exploit-MS04-11
  Generic Worm (10)
    W32/IRCbot.worm.gen
    W32/Spybot.worm.gen.bx
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.bk
    W32/Sdbot.worm.gen.ai
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.ac
  Win32 (4)
    New Poly Win32
    W32/Sality.r
    W32/Sality.t
    W32/Sality.s
  Worm (2)
    W32/MoonLight.worm
    W32/Opanki.worm

posted by Will Pittenger at 12:05 AM 0 comments links to this post

Thursday, May 25, 2006

Virus Updates for May 25th, 2006

DAT Version:4770
DAT Release Date:5-25-2006
Threats Detected:192,769
New Detections:15
Enhanced Detections:147



Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Full list

New DetectionsEnhanced detections
Internet Worm (1)
  Win32 (1)
    W32/Browaf.worm
Trojan (11)
  Application extension (1)
    BackDoor-CZZ.dll
  Downloader (2)
    W97M/Downloader-AWO
    Downloader-AWN
  Dropper (2)
    BackDoor-CVT.dr
    MultiDropper-QR
  ProcKill (1)
    ProcKill-DS
  Proxy (1)
    Proxy-Agent.aw
  Remote Access (3)
    BackDoor-DAA
    BackDoor-CZZ
    BackDoor-CZY
  Win32 (1)
    APStrojan.ub
Virus (3)
  E-mail (2)
    W32/Banwarum@MM
    W32/Banwarum.dll
  Win32 (1)
    W32/Madangel.a
Program (4)
  Adware (2)
    Adware-PigSearch
    Adware-Newweb
  Spyware (2)
    Spyware-SpyAgent
    Spyware-Realtime-Spy
Trojan (59)
   (1)
    Generic BackDoor.d
  Application extension (4)
    Downloader-AUE.dll
    PWS-Goldun.dll
    PWS-Banker.ar.dll
    PWS-Banker.dll
  Configurator (2)
    PWS-QQPass.cfg
    BackDoor-CEP.cfg
  Downloader (8)
    Downloader-AFW
    PWS-Banker.dldr
    Downloader-ATM!CME-934
    Downloader-ATM!CME-503
    Downloader-ZQ
    Downloader-ATM
    Downloader-ASH
    Downloader-AWM
  Dropper (4)
    BackDoor-CEP.dr
    Puper.dr
    MultiDropper-MY
    Spam-DComServ.dr
  Exploit (4)
    Exploit-CodeBase.chm
    Exploit-WMF.b
    Exploit-WMF.c
    Exploit-WMF
  Generic (3)
    Exploit-OleData.gen
    APSTrojan.ua.gen
    PWS-Banker.gen.ab
  Heuristic (2)
    New Malware.u
    New Malware.j
  Password (1)
    PWS-QQPass
  Password Stealer (7)
    Generic PWS.e
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-Banker.bh
    PWS-Banker.au
    PWS-WoW
    PWS-Lineage
  Proxy (2)
    Proxy-Agent.a
    Proxy-Piky
  Remote Access (7)
    BackDoor-AWQ.b
    BackDoor-CCT
    BackDoor-CKB.sys
    Generic BackDoor.l
    BackDoor-CMQ
    BackDoor-CYY
    BackDoor-CEP
  Script (1)
    Generic Downloader.z
  StartPage (1)
    StartPage-ID
  Win32 (12)
    DollarRevenue
    Generic Uploader.a
    Puper
    Generic Downloader.af
    APSTrojan.ua
    Generic Downloader.k
    Generic Downloader.u
    Generic Dropper.ad
    Swizzor
    Generic BackDoor.u
    AdClicker-DW
    Generic AdClicker.d
Virus (84)
  Damaged (1)
    W32/Mytob.dam
  E-mail (1)
    W32/Mytob.gr@MM
  Email (72)
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.ie@MM
    W32/Mytob.fa@MM
    W32/Mytob.ft@MM
    W32/Mytob.fs@MM
    W32/Mytob.aw@MM
    W32/Mytob.fr@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.id@MM
    W32/Mytob.fu@MM
    W32/Mytob.fw@MM
    W32/Mytob.fv@MM
    W32/Mytob.ge@MM
    W32/Mytob.go@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.fz@MM
    W32/Mytob.gf@MM
    W32/Mytob.gn@MM
    W32/Mytob.gp@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.gm@MM
    W32/Mytob.gs@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.de@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.hq@MM
    W32/Mytob.eg@MM
    W32/Mytob.ho@MM
    W32/Mytob.hn@MM
    W32/Mytob.hk@MM
    W32/Mytob.hm@MM
    W32/Mytob.hj@MM
    W32/Mytob.ha@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Generic Worm (6)
    W32/Sdbot.worm.gen.as
    W32/Sdbot.worm.gen.w
    W32/Sdbot.worm.gen.bg
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Gaobot.worm.gen.by
  Win32 (1)
    New Win32.g1
  Worm (2)
    W32/Antinny.worm.ab
    W32/Antinny.worm.aa

posted by Will Pittenger at 11:43 PM 0 comments links to this post

Virus Updates for May 24th, 2006

DAT Version:4769
DAT Release Date:5-24-2006
Threats Detected:192,662
New Detections:20
Enhanced Detections:181



Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Full list

New DetectionsEnhanced detections
Program (1)
  Dropper (1)
    Spyware-Realtime-Spy.dr
Trojan (13)
   (5)
    SymbOS/Multidropper.bq!sis
    SymbOS/Multidropper.bo!sis
    SymbOS/Multidropper.bp!sis
    SymbOS/Multidropper.bs!sis
    SymbOS/Multidropper.br!sis
  Application extension Generi (1)
    Puper.dll.gen
  Downloader (2)
    Downloader-AWL
    Downloader-AWM
  Generic (2)
    Exploit-OleData.gen.gen
    Exploit-VBE.gen
  Heuristic (1)
    New Downloader.b
  Remote Access (2)
    BackDoor-CZW
    BackDoor-CZX
Virus (6)
  Application extension (1)
    W32/Sality.t.dll
  Email (1)
    W32/Mytob.ie@MM
  Parasitic (2)
    W32/HLLP.Philis.r
    W32/HLLP.82432
  Win32 (2)
    W32/Fontra.a
    W32/Sality.t
Program (9)
   (1)
    Generic PUP.a
  Adware (1)
    Adware-LinkMaker
  Configuration settings (1)
    ServU.ini
  Dialer (2)
    Dialer-Generic.e
    Dialer-Generic.f
  Downloader (1)
    Downloader-FL
  Internet Relay Chat (1)
    IRC/Client
  Spyware (1)
    Spyware-Realtime-Spy
  Win32 (1)
    Generic Dialer.ba
Trojan (68)
   (12)
    Generic Downloader.o
    SymbOS/Multidropper.bf!sis
    Generic Downloader.bd
    Ceegar
    SymbOS/Multidropper.bj!sis
    SymbOS/Multidropper.bh!sis
    SymbOS/Multidropper.bn!sis
    Generic BackDoor.bb
    SymbOS/Multidropper.bl!sis
    SymbOS/Multidropper.bk!sis
    SymbOS/Multidropper.bi!sis
    SymbOS/Multidropper.bg!sis
  AOL Password (1)
    PWS-AOLFake
  Configurator (2)
    Iroffer.cfg
    BackDoor-CEP.cfg
  Damaged (1)
    BackDoor-AWQ.b.dam
  Downloader (4)
    PWS-Banker.dldr
    Downloader-ZQ
    Downloader-ASH
    Downloader-ACR
  Dropper (3)
    BackDoor-CKB.dr
    BackDoor-CEP.dr
    PWS-Goldun.dr
  Exploit (1)
    Exploit-ITSSHeap
  Flooder (1)
    FDoS-AIMPunt
  Generic (4)
    Exploit-OleData.gen
    PWS-Banker.gen.bb
    PWS-Banker.gen.b
    ServU-Daemon.gen.ba
  Heuristic (3)
    New Malware.n
    New Malware.u
    New Malware.j
  Internet Relay Chat (1)
    IRC/Flood.cg
  Password (3)
    PWS-LegMir
    PWS-Msnfake
    PWS-LDPinch
  Password Stealer (6)
    PWS-JA
    PWS-Banker.gen.ba
    PWS-MSNFake.a
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-WoW
  ProcKill (1)
    ProcKill-AK
  Proxy (2)
    Proxy-Horst
    Proxy-Piky
  Remote Access (6)
    BackDoor-AWQ.b
    BackDoor-CGZ
    BackDoor-CPX
    BackDoor-CMQ
    BackDoor-CKB
    BackDoor-CEP
  Spam (1)
    Spam-Loot
  Win32 (16)
    Generic VB
    IRC/Flood.cm
    HackerDefender
    Generic MultiDropper.k
    Generic VB.b
    Spy-Agent.l
    Puper
    Generic BackDoor.bc
    Generic Downloader.u
    Swizzor
    Generic Downloader.x
    Generic PWS.o
    Generic BackDoor.u
    Generic Downloader.ab
    Generic VB.c
    Generic Proxy.g
Virus (104)
  Application extension (4)
    W32/Sality.dll
    W32/Sality.n.dll
    W32/Sality.m.dll
    W32/Sality.p.dll
  Damaged (1)
    W32/Mytob.dam
  Damaged Worm (2)
    W32/Gaobot.worm.dam
    W32/Protoride.worm.dam
  E-mail (1)
    W32/Mytob.gr@MM
  E-mail worm (1)
    W32/Duel@MM
  Email (71)
    W32/Mytob.ao@MM
    W32/Mytob.al@MM
    W32/Mytob.ew@MM
    W32/Mytob.fa@MM
    W32/Mytob.ft@MM
    W32/Mytob.fs@MM
    W32/Mytob.aw@MM
    W32/Mytob.fr@MM
    W32/Mytob.ba@MM
    W32/Mytob.bc@MM
    W32/Mytob.bb@MM
    W32/Mytob.bd@MM
    W32/Mytob.id@MM
    W32/Mytob.fu@MM
    W32/Mytob.fw@MM
    W32/Mytob.fv@MM
    W32/Mytob.ge@MM
    W32/Mytob.go@MM
    W32/Mytob.bu@MM
    W32/Mytob.bq@MM
    W32/Mytob.by@MM
    W32/Mytob.cq@MM
    W32/Mytob.ck@MM
    W32/Mytob.fz@MM
    W32/Mytob.gf@MM
    W32/Mytob.gn@MM
    W32/Mytob.gp@MM
    W32/Mytob.cw@MM
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.gm@MM
    W32/Mytob.gs@MM
    W32/Mytob.m@MM
    W32/Mytob.bs@MM
    W32/Mytob.de@MM
    W32/Mytob.cb@MM
    W32/Mytob.do@MM
    W32/Mytob.dl@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.y@MM
    W32/Mytob.cr@MM
    W32/Mytob.cl@MM
    W32/Mytob.ci@MM
    W32/Mytob.cx@MM
    W32/Mytob.cy@MM
    W32/Mytob.dn@MM
    W32/Mytob.ei@MM
    W32/Mytob.aa@MM
    W32/Mytob.ad@MM
    W32/Mytob.dw@MM
    W32/Mytob.dv@MM
    W32/Mytob.du@MM
    W32/Mytob.aj@MM
    W32/Mytob.z@MM
    W32/Mytob.hq@MM
    W32/Mytob.eg@MM
    W32/Mytob.ho@MM
    W32/Mytob.hn@MM
    W32/Mytob.hk@MM
    W32/Mytob.hm@MM
    W32/Mytob.hj@MM
    W32/Mytob.ha@MM
    W32/Mytob.em@MM
    W32/Mytob.en@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Exploit (1)
    Exploit-MS04-11
  Generic Worm (14)
    W32/Gaobot.worm.gen.e
    W32/IRCbot.worm.gen
    W32/Sdbot.worm.gen.w
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.ca
    W32/Sdbot.worm.gen.ae
    W32/Sdbot.worm.gen.cc
    W32/Spybot.worm.gen.p
    W32/Combra.worm.gen
    W32/Sdbot.worm.gen.ag
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.by
    W32/Gaobot.worm.gen.bi
  Internet Worm (1)
    W32/Generic.worm!p2p
  mIRC Worm (1)
    W32/Protoride.worm
  Win32 (5)
    W32/Loosky
    W32/Sality.q
    W32/Sality.p
    W32/Sality.n
    W32/Sality.m
  Worm (1)
    W32/Opanki.worm

posted by Will Pittenger at 3:52 AM 0 comments links to this post

Tuesday, May 23, 2006

Virus Updates for May 23nd, 2006

DAT Version:4768
DAT Release Date:5-23-2006
Threats Detected:192,370
New Detections:9
Enhanced Detections:92



Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Full list

New DetectionsEnhanced detections
Program (1)
  Dropper (1)
    Adware-Boran.dr
Trojan (5)
   (1)
    Generic Downloader.bk
  Exploit (1)
    Exploit-OleData
  StartPage (1)
    StartPage-JI
  Win32 (2)
    QLowZones-40
    Spy-Agent.ay
Virus (3)
  Generic Worm (1)
    W32/Sdbot.worm.gen.cc
  Worm (2)
    W32/Shodi.worm.v
    W32/Ghandh.worm
Malware (1)
  Win32 (1)
    Exploit-Mydoom
Program (17)
   (1)
    Generic PUP.a
  - (2)
    Starr
    RemAdm-PSKill
  Adware (9)
    Adware-180SA
    Adware-Look2Me
    Adware-ISTBar
    Adware-Exactsearch
    Adware-MediaTickets
    Adware-Boran
    Adware-ZangoSA
    Adware-Shorty
    Adware-ClickSpring
  Dialer (1)
    Dialer-Egroup
  Downloader (1)
    Adware-ZangoSA.dldr
  Dropper (1)
    Adware-ExactSearch.dr
  Keylogger (1)
    Keylog-Ardamax
  Win32 (1)
    Fport
Trojan (52)
   (3)
    Generic Proxy.h
    AdClicker-EJ
    BraveSentry
  Application extension (1)
    PWS-Lineage.dll
  Downloader (6)
    Downloader-AWA
    Downloader-AFY
    PWS-Banker.dldr
    Downloader-ZQ
    Downloader-ASH
    Downloader-ARL
  Dropper (5)
    BackDoor-CKB.dr
    AdClicker-EJ.dr
    Kurofoo.dr
    MultiDropper-NB
    BackDoor-COC.dr
  Exploit (1)
    Exploit-ITSSHeap
  Generic (5)
    Exploit-OleData.gen
    PWS-Banker.gen.bb
    PWS-Banker.gen.t
    Exploit-MS06-012.gen
    Exploit-MS06-004.gen
  Heuristic (2)
    New Malware.d
    New Malware.u
  Password (1)
    PWS-LDPinch
  Password Stealer (3)
    PWS-Banker.gen.i
    PWS-Vassay
    PWS-Lineage
  Proxy (2)
    Proxy-Agent.ai
    Proxy-Raser
  Remote Access (6)
    BackDoor-ARR
    BackDoor-AWQ.b
    BackDoor-CVM
    BackDoor-CWM
    BackDoor-BAC.sys
    BackDoor-CMQ
  Spam (1)
    Tabela
  Win32 (16)
    DollarRevenue
    OptixKiller
    DDoS-Slack
    HackerDefender.sys
    Generic Downloader.ak
    QLowZones-33
    Generic Uploader.a
    FakeAlert-C
    Puper
    Kurofoo
    Swizzor
    Generic PWS.o
    Generic Dropper.i
    Generic BackDoor.u
    Generic Downloader.ab
    Kakkeys
Virus (22)
   (10)
    SymbOS/Commwarrior.h!sis
    SymbOS/Commwarrior.b!sis
    SymbOS/Commwarrior.a!sis
    SymbOS/Commwarrior.j!sis
    SymbOS/Commwarrior.c!sis
    SymbOS/Commwarrior.g!sis
    SymbOS/Commwarrior.i!sis
    SymbOS/Commwarrior.f!sis
    SymbOS/Commwarrior.d!sis
    SymbOS/Commwarrior.e!sis
  E-mail worm (1)
    W32/Combra.worm
  Email Generic (1)
    JS/Feebs.gen.f@MM
  Generic (1)
    SymbOS/Commwarrior.gen!sis
  Generic Worm (7)
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.bo
    W32/Sdbot.worm.gen.bd
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.bj
    W32/Bobax.worm.gen
  Internet Relay Chat Worm (1)
    W32/Akbot
  Win32 (1)
    W32/Puce

posted by Will Pittenger at 12:27 AM 0 comments links to this post

Monday, May 22, 2006

Virus Updates for May 22nd, 2006

DAT Version:4767
DAT Release Date:5-22-2006
Threats Detected:192,152
New Detections:20
Enhanced Detections:214



Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Full list

New DetectionsEnhanced detections
Program (1)
  Tool (1)
    Tool-UnloadDLL
Trojan (13)
   (8)
    SymbOS/PBsender.g!app
    SymbOS/PBsender.g!sis
    SymbOS/PBsender.e!sis
    Generic Downloader.bd
    Ceegar
    SymbOS/PBsender.e!app
    SymbOS/PBsender.f!sis
    SymbOS/PBsender.d!sis
  Application extension (1)
    BackDoor-CPY.dll
  Exploit (2)
    Exploit-MailFox
    Exploit-ITSSHeap
  Linux (1)
    Linux/Phobi
  Remote Access (1)
    BackDoor-CKB!6708ddaf
Virus (6)
   (1)
    SymbOS/Cabir.z!sis
  Dropper (1)
    MLS/Lagob.dr
  Win32 (1)
    W32/Brepibot!8192
  Worm (3)
    Hilder.worm!bat
    W32/Skowor.worm
    W32/Genrack.worm
Program (10)
   (1)
    Generic PUP.a
  - (1)
    RemAdm-PSKill
  Adware (4)
    Adware-ISTBar
    Adware-NaviPromo
    Adware-Newweb
    Adware-DropSpam
  Generic (1)
    Dialer-RAS.gen.aa
  Spyware (1)
    Spyware-RealSpy
  Win32 (2)
    ServU-Daemon
    Generic Adware.aa
Trojan (78)
   (4)
    Generic BackDoor.d
    Generic Dropper.o
    Generic BackDoor.bb
    QHosts-18!hosts
  - (3)
    BackDoor-AOU
    W32/Bagle.dll.dr
    AdClicker-AJ
  Application extension (3)
    Puper.dll
    BackDoor-CKB.dll
    BackDoor-CXO.dll
  Configurator (1)
    Generic PWS.b.cfg
  Downloader (6)
    Downloader-ATM!CME-934
    Downloader-ATM!CME-503
    Downloader-ZQ
    Downloader-ATM
    Downloader-ASH
    Downloader-ARL
  Dropper (6)
    VBS/Inor
    PWS-LDPinch.dr
    BackDoor-CZL.dr
    BackDoor-CKB.dr
    Puper.dr
    MultiDropper-QH
  Generic (6)
    Exploit-MhtRedir.gen
    Exploit-OleData.gen
    Swizzor.gen
    PWS-Banker.gen.bb
    PWS-Banker.gen.t
    Generic Downloader.gen.bc
  Generic Worm (1)
    W32/Sdbot.worm.gen.ax
  Heuristic (2)
    New Malware.u
    New Malware.ab
  Java Applet (1)
    JV/Shinwow
  Password (2)
    PWS-LegMir
    PWS-LDPinch
  Password Stealer (8)
    Generic PWS.b
    PWS-JA
    PWS-Banker.gen.ba
    PWS-Banker.gen.i
    PWS-Cashgrabber
    PWS-Banker.bh
    PWS-Lineage
    PWS-Mifeng
  PDA Device (1)
    SymbOS/Skulls.a
  Proxy (1)
    Proxy-Horst
  Remote Access (8)
    BackDoor-AWQ.b
    BackDoor-AVW
    BackDoor-BCB
    BackDoor-CKB.sys
    BackDoor-CPX
    BackDoor-CPY
    BackDoor-CMQ
    BackDoor-CKB
  Script (2)
    Generic component
    PHP/Defash
  Server (1)
    BackDoor-CUR.svr
  Win32 (22)
    Generic Downloader.a
    HackerDefender
    Generic BackDoor.bg
    DollarRevenue
    Puper
    Generic Downloader.j
    Generic Downloader.s
    Generic Downloader.be
    Generic BackDoor.be
    Generic BackDoor.ba
    Generic Downloader.u
    Generic PWS.o
    Generic QLowZones.a
    Generic Dropper.i
    Generic Downloader.ab
    Generic VB.c
    CryZip
    AdClicker-DW
    Generic Proxy.e
    Spy-Agent.y
    Generic Downloader.g
    Generic AdClicker.c
Virus (126)
   (16)
    SymbOS/Skulls.ci
    SymbOS/Skulls.f
    SymbOS/Skulls.e
    SymbOS/Skulls.g
    SymbOS/Skulls.h
    SymbOS/Skulls.i
    SymbOS/Skulls.cf
    SymbOS/Skulls.cg
    SymbOS/PBsender.d!app
    SymbOS/PBsender.c!app
    SymbOS/PBsender.a!app
    SymbOS/PBsender.b!app
    SymbOS/Skulls.c
    SymbOS/Skulls!aif
    SymbOS/Skulls.d
    SymbOS/Skulls.ca
  Damaged (1)
    W32/Netsky.dam
  Dropper (1)
    W32/Areses.dr
  Dropper Email (1)
    W32/Mytob.dr@MM
  E-mail (10)
    W32/Mytob.be@MM
    W32/Mytob.bi@MM
    W32/Mytob.bj@MM
    W32/Mytob.bo@MM
    W32/Mytob.bl@MM
    W32/Mytob.br@MM
    W32/Mytob.bf@MM
    W32/Mytob.cg@MM
    W32/Mytob.ch@MM
    W32/Areses.h
  Email (65)
    W32/Mytob.hr@MM
    W32/Mytob.b@MM
    W32/Mytob.a@MM
    W32/Mytob.ev@MM
    W32/Mytob.at@MM
    W32/Mytob.ib@MM
    W32/Mytob.av@MM
    W32/Mytob.au@MM
    W32/Mytob.hy@MM
    W32/Mytob.fy@MM
    W32/Mytob.fw@MM
    W32/Mytob.fx@MM
    W32/Mytob.gg@MM
    W32/Mytob.gl@MM
    W32/Mytob.gj@MM
    W32/Mytob.gi@MM
    W32/Mytob.hs@MM
    W32/Mytob.bg@MM
    W32/Mytob.bx@MM
    W32/Mytob.cd@MM
    W32/Mytob.gd@MM
    W32/Mytob.gc@MM
    W32/Mytob.gb@MM
    W32/Mytob.ga@MM
    W32/Mytob.gf@MM
    W32/Mytob.gp@MM
    W32/Mytob.gq@MM
    W32/Mytob.bn@MM
    W32/Mytob.dh@MM
    W32/Mytob.r@MM
    W32/Mytob.e@MM
    W32/Mytob.c@MM
    W32/Mytob.gt@MM
    W32/Mytob.g@MM
    W32/Mytob.bt@MM
    W32/Mytob.bp@MM
    W32/Mytob.ct@MM
    W32/Mytob.cf@MM
    W32/Mytob.dd@MM
    W32/Mytob.ca@MM
    W32/Mytob.n@MM
    W32/Mytob.f@MM
    W32/Mytob.d@MM
    W32/Mytob.cs@MM
    W32/Mytob.dk@MM
    W32/Mytob.dz@MM
    W32/Mytob.eb@MM
    W32/Mytob.ds@MM
    W32/Mytob.ea@MM
    W32/Mytob.gu@MM
    W32/Mytob.gx@MM
    W32/Mytob.hq@MM
    W32/Mytob.ej@MM
    W32/Mytob.hp@MM
    W32/Mytob.gy@MM
    W32/Mytob.hf@MM
    W32/Mytob.gw@MM
    W32/Mytob.gz@MM
    W32/Mytob.hg@MM
    W32/Mytob.hh@MM
    W32/Mytob.hi@MM
    W32/Mytob.gv@MM
    W32/Mytob.he@MM
    W32/Mytob.es@MM
    W32/Mytob.eq@MM
  Email Generic (2)
    W32/Mytob.gen@MM
    W32/Feebs.gen@MM
  Generic (3)
    SymbOS/Skulls.gen
    W32/Lemoor.gen
    SymbOS/PBsender.gen!app
  Generic Worm (15)
    W32/Sdbot.worm.gen.as
    W32/Sdbot.worm.gen.bg
    W32/Sdbot.worm.gen.n
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.bl
    W32/Sdbot.worm.gen.bs
    W32/Sdbot.worm.gen.bz
    W32/Sdbot.worm.gen.bo
    W32/Sdbot.worm.gen.bd
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.bw
    W32/Bobax.worm.gen
  Internet Worm (2)
    W32/NoChod@MM
    W32/Mytob.bk@MM
  Script (1)
    VBS/Pazuzu
  Win32 (6)
    New Win32.g1
    New Poly Win32
    W32/Areses.f
    W32/Areses.g
    W32/Generic.n
    W32/Feebs!rootkit
  Worm (3)
    W32/Sites.worm
    W32/Mytob.worm!im
    W32/Opanki.worm

posted by Will Pittenger at 12:04 AM 0 comments links to this post