Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4844
DAT Release Date 09/04/2006
Threats Detected 207774
New Detections 13
Enhanced Detections 187

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
Tool (1)
Tool-Attacker
Trojan (8)
(1)
BBProxy
Client (1)
BackDoor-DJJ.cli
Dropper (2)
Orifice.dr!pk7
MultiDropper-RE
Exploit (1)
Exploit-MS06-040
Remote Access (1)
BackDoor-DJK
Server (1)
BackDoor-DJJ.svr
Source code (1)
BBProxy.src
Virus (4)
(2)
SymbOS/Mobler!sis
SymbOS/Mobler!pkg
Parasitic (2)
W32/HLLP.Philis.at
W32/HLLP.Philis.as

Enhanced Detections:

Program (11)
(1)
Generic PUP.a
Adware (3)
Adware-Zeno
Adware-ZangoSA
Adware-Softomate
Dialer (1)
Dialer-221
Downloader (1)
Adware-Zeno.dldr
Dropper (1)
Adware-Softomate.dr
Flooder (1)
FDoS-UdpFlood
Keylogger (1)
Keylog-CN
Password (1)
PWCrack-PWDump
Tool (1)
Tool-UDPflood
Trojan (103)
(7)
Generic Downloader.bd
Generic BackDoor.bb
Generic Downloader.bp
Spy-Agent.at
Phish-BankFraud.eml.a
Generic.f
Generic Spy.e
- (1)
ProcKill-AJ
Application extension (4)
BackDoor-AWQ.dll
PWS-QQPass.dll
PWS-Goldun.dll
PWS-Lineage.dll
Configurator (2)
Generic PWS.b.cfg
BackDoor-CEP.cfg
Damaged (1)
BackDoor-AWQ.b.dam
Damaged Generic (1)
PWS-Banker.gen.ae.dam
Dialer (1)
QDial-45
Downloader (10)
QDial-45.dldr
PWS-Banker.dldr.d
PWS-Goldun.dldr
Downloader-AWE
Downloader-AXI
PWS-Banker.dldr
Downloader-ZL
Downloader-AVV
Downloader-ZQ
PWS-Banker.dldr.c
Dropper (6)
CoreFlood.dr
BackDoor-CEP.dr
Puper.dr
Spam-DComServ.dr
MultiDropper-QS
PWS-Goldun.dr
Dropper Worm (1)
W32/MoFei.worm.dr
Exploit (6)
VBS/Psyme
Exploit-TaroDrop
Exploit-ObscuredHtml
Exploit-IECrash
Exploit-MS06-027
Exploit-1Table
Generic (9)
PWS-Banker.gen.q
Exploit-OleData.gen
PWS-Banker.gen.ae
PWS-Banker.gen.bb
PWS-Banker.gen.p
PWS-Banker.gen.j
PWS-Banker.gen.t
PWS-Banker.gen.bc
PWS-Banker.gen.v
Generic Worm (1)
W32/Sdbot.worm.gen.ax
Heuristic (2)
New Malware.u
New Malware.aj
Password (2)
PWS-LegMir
PWS-QQPass
Password Stealer (9)
Generic PWS.b
PWS-QQRob
PWS-Banker!1d2e
PWS-Banker.gen.ba
PWS-Banker.gen.i
PWS-Banker.gen.h
PWS-WoW
PWS-Lineage
PWS-Goldun
ProcKill (1)
ProcKill-DC
Remote Access (13)
BackDoor-AWQ.b
BackDoor-DJA
BackDoor-CZO
BackDoor-CZP
BackDoor-CZY
BackDoor-DIQ
BackDoor-CUX
BackDoor-CLH
BackDoor-CDC
BackDoor-CMQ
BackDoor-CYY
BackDoor-CMR
BackDoor-CEP
Script (2)
Bat/repo
JS/Crasher
StartPage (2)
StartPage-AY
StartPage-JJ
Win32 (22)
W32/Bagle.x!proxy
Generic Downloader.c
DollarRevenue
Spy-Agent.bg
Generic BackDoor.c
Oleloa
Generic Downloader.d
Puper
Generic Downloader.s
Generic Downloader.k
Generic Downloader.x
Generic PWS.o
Generic BackDoor.u
Generic Downloader.ab
Generic VB.c
Generic BackDoor.w
Generic.b
Generic Downloader.m
Spy-Agent.y
Generic Downloader.g
Generic AdClicker.c
Generic AdClicker.d
Virus (73)
Application extension (1)
W32/HLLP.Philis.dll
Damaged Worm (1)
W32/Sdbot.worm.dam
Dropper Worm (1)
W32/Shellot.worm.dr
E-mail (2)
W32/Bagle.b@MM
W32/Bagle.j@MM
E-mail worm (1)
W32/Bagle.u@MM
Email (2)
W32/Stration@MM
W32/Bagle.a@MM
Email Generic (2)
W32/Bagle.gen.b@MM
JS/Feebs.gen.l@MM
Generic (3)
W32/Stepan.gen
W32/IRCbot.gen
W32/IRCbot.gen.a
Generic Worm (12)
W32/Sdbot.worm.gen
W32/Sdbot.worm.gen.as
W32/Sdbot.worm.gen.bg
W32/Sdbot.worm.gen.n
W32/Sdbot.worm.gen.l
W32/Sdbot.worm.gen.ca
W32/Sdbot.worm.gen.bz
W32/Sdbot.worm.gen.bh
W32/Sdbot.worm.gen.bi
W32/Sdbot.worm.gen.y
W32/Sdbot.worm.gen.t
W32/Sdbot.worm.gen.q
Internet Worm (4)
W32/Opanki.worm!MS06-040
W32/Sdbot.worm!MS06-040
IRC-Mocbot!MS06-040
IRC-Mocbot
Parasitic (25)
W32/HLLP.Philis.t
W32/HLLP.Philis.s
W32/HLLP.Philis.ad
W32/HLLP.Philis.ae
W32/HLLP.Philis.am
W32/HLLP.Philis.ap
W32/HLLP.Philis.aq
W32/HLLP.Philis.z
W32/HLLP.Philis.ao
W32/HLLP.Philis.an
W32/HLLP.Philis.af
W32/HLLP.Philis.ai
W32/HLLP.Philis.ag
W32/HLLP.Philis.ar
W32/HLLP.Philis.al
W32/HLLP.Philis.ak
W32/HLLP.Philis.ah
W32/HLLP.Philis.aa
W32/HLLP.Philis.ab
W32/HLLP.Philis.u
W32/HLLP.Philis.ac
W32/HLLP.Philis.aj
W32/HLLP.Philis.v
W32/HLLP.Philis.x
W32/HLLP.Philis.y
Proxy (2)
W32/Bagle.ak!proxy
W32/Bagle.am!proxy
Win32 (16)
W32/Stepan.k
W32/Stepan.j
W32/Stepan.i
W32/Stepan.f
W32/Stepan.d
W32/Stepan.b
W32/Bagle.am!proj
New Win32
W32/Tuareg.f
W32/Tuareg.d
W32/Tuareg.h
W32/Tuareg.e
W32/Tuareg.i
W32/Generic.e
W32/Bagle.au!troj
W32/Zelly
Worm (1)
W32/MoFei.worm