MyAvert Portal

Content

MyAvert Portal

Top Submissions

Top samples in the past week(s)

1.	Generic.dx
2.	Vundo
3.	RemAdm-PSKill
4.	Generic PUP.a
5.	Adware-ZangoSA
6.	Generic!atr
7.	Adware-Url.gen
8.	Downloader.gen.a
9.	Adware-HotBar
10.	Winfixer
11.	Puper
12.	Generic Downloader.x
13.	Exploit-ByteVerify
14.	VBS/Psyme
15.	W32/Stration.dldr
16.	New Malware.n
17.	PWS-Mmorpg.gen
18.	Spyware-Webhancer
19.	New Malware.j
20.	W32/Netsky.gen@MM

VIL Search

Top Descriptions Viewed

1.	Downloader-UA.h
2.	Vundo
3.	Proxy-Agent.af.gen
4.	W32/Sality.ae
5.	W32/YahLover.worm
6.	Generic.dx
7.	Downloader-AAP
8.	W32/RJump.worm
9.	SexGame
10.	MalWarrior
11.	PWS-Gina.dll
12.	Phish-PostCard.eml.a
13.	W32/Autorun.worm.bx
14.	VBS/Psyme
15.	Tetas
16.	RemAdm-PSKill
17.	W32/Autorun.worm.bx.gen.dll
18.	FakeAlert-D
19.	Exploit-IFrame
20.	W32/Rontokbro.gen@MM

AVERT Tools

AVERT WebImmune

Stinger
Contact AVERT
More tools

Top Hoaxes

1.	A Post Card from a Family Member Hoax
2.	A Virtual Card For You Hoax
3.	Olympic Torch Hoax
4.	Osama Hanged

Bookmarks

Cert
Latest DAT README
Messagelabs
Microsoft Security Central
Postini
SANs
Security HQ
Virus Bulletin
Wild List

AVERT Threats and Advisory

There are no threats and advisory at this time.

Product Updates

Product	Notes	Engine	Dat	Date
DAT File for daily use(DAT Only)			5293	2008/05/12
SuperDat File for daily use(DAT + Engine)		5200.2160	5293	2008/05/12
Engine-only Superdat File (Intel)		5200.2160		2007/08/01
5200 Engine for NetShield for Netware		5200.2189	5089	2007/08/29
BETADAT updates			4100	2008/05/13

Recently Posted Virus Descriptions

Descriptions posted in the past day(s)

Date	Site	Description
2008/05/13	Sophos	Adzgalore Games Collection
2008/05/13	Sophos	Mal/Behav-233
2008/05/13	Sophos	Mal/ObfJS-AN
2008/05/13	Sophos	Spy Mail
2008/05/13	Sophos	Troj/Banhost-N
2008/05/13	Sophos	Troj/Bnkmr-Fam
2008/05/13	Sophos	Troj/DwnLdr-HDI
2008/05/12	Sophos	Troj/DwnLdr-HDH
2008/05/12	Sophos	W32/Sohana-AV
2008/05/12	Sophos	Troj/VBLima-Gen
2008/05/12	Sophos	W32/Autoit-H
2008/05/12	Sophos	Troj/RKSal-Gen
2008/05/12	Sophos	Troj/VB-DZP
2008/05/12	Sophos	Troj/PrivZone-A
2008/05/12	Sophos	W32/Niya-C
2008/05/12	Sophos	W32/Sality-AD
2008/05/12	Sophos	W32/Sality-AP
2008/05/12	McAfee	Spy-Agent.by
2008/05/12	Sophos	Troj/Agent-GZB
2008/05/12	Sophos	Troj/Agent-GZC
2008/05/12	Sophos	Troj/Cimuz-Gen
2008/05/12	Sophos	Troj/Danmec-Y
2008/05/12	Sophos	Troj/Dloadr-BLP
2008/05/12	Sophos	Mal/EncPk-DH
2008/05/12	Sophos	Mal/ObfJS-R
2008/05/12	Sophos	Troj/Cliph-A
2008/05/12	Sophos	Troj/Dloadr-BLN
2008/05/12	Sophos	Mal/EncPk-CR
2008/05/12	Symantec.com	Infostealer.Fertippy
2008/05/12	F-Secure	Virus:W32/Small.AJ
2008/05/12	Symantec.com	CpuSpike

New And Enhanced Detections

Threats added in the past day(s)

Detection		Home User Risk Assessment	Corporate User Risk Assessment
BackDoor-AWQ		Low	Low
BackDoor-AWQ.b		Low	Low
BackDoor-CEP		Low	Low
Generic BackDoor		Low	Low
Generic BackDoor.h		Low	Low
Generic BackDoor.i		Low	Low
Generic Downloader.d		Low	Low
Generic Downloader.x		Low	Low
Generic PWS.y		Low	Low
Generic.dx		Low	Low
New Malware.n		Low	Low
PWS-Mmorpg.gen		Low-Profiled	Low-Profiled
Vundo		Low	Low
W32/Sdbot.worm		Low	Low
Winfixer		N/A	N/A
Adware-PurityScan.dr		N/A	N/A
BackDoor-AWQ		Low	Low
BackDoor-AWQ.b		Low	Low
BackDoor-CEP		Low	Low
DIALER-GENERIC.DR		Low	Low
DOWNLOADER-BAI		Low	Low
Generic BackDoor		Low	Low
Generic BackDoor.u		Low	Low
Generic Downloader.d		Low	Low
Generic Downloader.x		Low	Low

Anti-Virus News

Company	Headline
US-CERT	RealPlayer ActiveX property Vulnerabilities
US-CERT	Sun Java WebStart JNLP vulnerability
US-CERT	Multiple vulnerabilities in Mozilla-based products
US-CERT	Apple QuickTime RTSP Reason-Phrase buffer overflow
US-CERT	Aurigma ImageUploader ActiveX buffer overflows
US-CERT	Yahoo! Music Jukebox ActiveX buffer overflows
US-CERT	Citrix Presentation Server heap-based buffer overflow
US-CERT	Cross-site scripting vulnerabilities in Flash authoring tools
US-CERT	Apple QuickTime RTSP buffer overflow
US-CERT	RealPlayer ActiveX playlist import vulnerability
US-CERT	Apple QuickTime remote command execution vulnerability
US-CERT	Kerberos code execution vulnerability
US-CERT	MSN Messenger webcam heap overflow
Panda	Noticia de prueba
Panda	PandaLabs warns of Icepack, a new malicious tool that installs malware through exploits
Panda	XRumer, spam posting tool
Panda	Weekly report on viruses and intruders
Panda	Pinch, a tool for creating custom Trojans
Panda	Virus almanac 2007 – part one

Security News

Company	Headline
US-CERT	TA08-100A
US-CERT	TA08-099A
US-CERT	TA08-094A
US-CERT	TA08-087A
US-CERT	TA08-087B
US-CERT	TA08-079A
US-CERT	TA08-079B
US-CERT	TA08-071A
US-CERT	TA08-066A
US-CERT	TA08-043A
US-CERT	TA08-043B
US-CERT	TA08-043C
US-CERT	TA08-017A
US-CERT	TA08-016A
US-CERT	TA08-008A
US-CERT	TA07-355A
US-CERT	TA07-352A
US-CERT	TA07-345A
US-CERT	TA07-334A
US-CERT	TA07-319A

Virus Payload Calendar

2008/05/11	2008/05/12	2008/05/13
WM/MERCY.B	WM/Eraser.A:Tw	WM/SHOWOFF.G
WM/JUNKFACE.A;B	WM/Envader.A (Intended)	WM/Goldsecret.B:Int
WM/Eraser.A:Tw	WM/Alliance.A	WM/FRIDAY.D
WM/CVCK1.A	W97M/Yous	WM/FRIDAY.A
WM/Alliance.A	W97M/Thus.CH	WM/Eraser.A:Tw
W97M/Bablas.aj	W97M/Thus.CH	WM/Envader.A (Intended)
W97M/Alamat	W97M/Alamat	WM/CVCK1.B;E
W32/Blurt@MM	W32/Updatr.gen@MM	WM/BOOM.A;B
VBS/Horty.b@MM	VBS/Horty.b@MM	WM/BADBOY.A;B;C
VBS/Aqui	VBS/Horty.a@MM	W97M/Yous
	VBS/Aqui	W97M/Rapmak.a
		W97M/Melissa.z
		W97M/Idea.A
		W97M/Digma
		W97M/Been
		W97M/BackHand.A
		W97M/Alamat
		VBS/Zync
		VBS/Aqui
		VBS/Alphae
		Twno.A

Sidebar

Global Threat Condition

ElevatedLearn More

McAfee AVERT Labs has developed a general ranking system that indicates the severity of known global threats and how they impact the Internet, business operations, and home users’ systems.

Security Insights

Read about how to fight spyware, phishing and spam and other threats on your computers and networks in McAfee Security Insights section.

Browse Security Insights

Threat Center Resources

Submit a sample

Submit a malware sample