Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4956
DAT Release Date 02/05/2007
Threats Detected 226091
New Detections 13
Enhanced Detections 219

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
Backdoor-DKT Low-Profiled Low-Profiled

New Detections:

Program (5)
   (2)
    Generic PUP.h
    Generic PUP.g
  Adware (1)
    Adware-Ncast.sys
  Dropper (1)
    Adware-Baigoo.dr
  Win32 (1)
    Reg
Trojan (7)
   (1)
    QHosts-73!hosts
  Downloader (1)
    Downloader-BAK
  Generic (1)
    PWS-Banker.gen.br
  Malware Tool (1)
    RootKit-NTIllusion
  Remote Access (1)
    Backdoor-DKT
  Server (1)
    BackDoor-CDC.svr
  Win32 (1)
    Falgna
Virus (1)
  Parasitic (1)
    W32/HLLP.Philis.fn

Enhanced Detections:

Malware (1)
  Win32 (1)
    Exploit-Mydoom
Program (16)
   (1)
    Generic PUP.b
  Adware (9)
    Adware-SaveNow
    Adware-Searchcentrix
    Adware-Fuel
    Adware-IEDriver
    Adware-Ncast
    Adware-Boran
    Adware-Newweb
    Adware-Baigoo
    Adware-WeatherCast
  Dropper (1)
    Adware-BkdSpace.dr
  Generic (1)
    Adware-Boran.gen
  Keylogger (1)
    Keylog-Ardamax
  Registry (1)
    Qoolaid
  Win32 (2)
    Winfixer
    PrcViewer
Trojan (80)
   (3)
    Generic BackDoor.bb
    Generic Spy.e
    Bad Link
  Adware (2)
    Raze
    AdClicker-DI
  Application extension (3)
    PWS-Legmir.dll
    Spy-Agent.ba.dll
    Allsum.dll
  Damaged Generic (1)
    PWS-Banker.gen.ae.dam
  Downloader (11)
    PWS-Banker.dldr.d
    Downloader-AAP.c
    Downloader-AAP
    Downloader-AZT
    PWS-WoW.dldr
    Downloader-AXM
    Downloader-AYJ
    PWS-Banker.dldr
    Downloader-BAI!M711
    PWS-Banker.dldr.c
    Downloader-ASH
  Dropper (6)
    PWS-LegMir.dr
    PWS-Gamania.dr
    Puper.dr
    PWS-Lineage.dr
    Allsum.dr
    PWS-WoW.dr
  Exploit (2)
    Exploit-TaroDrop
    Exploit-MSExcel.h
  Generic (6)
    PWS-LegMir.gen.b
    PWS-Banker.gen.ae
    PWS-Banker.gen.ad
    PWS-Banker.gen.bb
    PWS-Banker.gen.t
    PWS-Banker.gen.ah
  Heuristic (1)
    New Malware.j
  Malware Tool (1)
    NTRootKit-R
  Password (1)
    PWS-LegMir
  Password Stealer (9)
    PWS-Gamania
    PWS-QQRob
    PWS-Banker!1d2e
    PWS-Banker.gen.ac
    PWS-Banker.gen.ba
    PWS-Banker.gen.i
    PWS-Zhengtu
    PWS-WoW
    PWS-Lineage
  Remote Access (9)
    BackDoor-ACH
    BackDoor-AWQ.b
    BackDoor-CCT
    BackDoor-DIR
    BackDoor-CUX
    Generic BackDoor.l
    BackDoor-DKH
    BackDoor-CWA
    BackDoor-CEP
  Script (2)
    JS/Seeker.i
    Generic component
  Server (1)
    BackDoor-CEP.svr
  Win32 (22)
    Generic BackDoor.f
    Generic Delphi
    Generic BackDoor.c
    Generic VB.b
    Generic Downloader.d
    Puper
    Generic Downloader.s
    Spy-Agent.ba
    Generic BackDoor.ba
    ShipUp
    Uploader-AF
    Generic Downloader.k
    Generic Downloader.u
    Generic Downloader.y
    Generic Dropper.p
    Generic RootKit.a
    Generic PWS.o
    Generic QLowZones.a
    Generic BackDoor.u
    Generic Downloader.ab
    DNSChanger.d
    Generic MultiDropper.m
Virus (122)
  Damaged (1)
    W32/Nuwar.dam
  Damaged Worm (2)
    W32/Protoride.worm.dam
    W32/Sdbot.worm.dam
  Downloader Worm (1)
    W32/Sdbot.worm.dldr
  Dropper (1)
    W32/HLLP.Philis.dr
  Email (2)
    W32/Stration@MM
    W32/Nuwar@MM
  Generic Worm (9)
    W32/Sdbot.worm.gen.bg
    W32/Gaobot.worm.gen.bj
    W32/Spybot.worm.gen.bj
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.ce
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Sdbot.worm.gen.ac
  Heuristic (1)
    New Malware.b
  Internet Relay Chat Worm (1)
    W32/Sdbot.worm!73216
  Internet Worm (3)
    W32/Spybot.worm.gen
    New Worm
    W32/Sdbot.worm!MS06-040
  mIRC Worm (1)
    W32/Protoride.worm
  Parasitic (97)
    W32/HLLP.Philis.cj
    W32/HLLP.Philis.bs
    W32/HLLP.Philis.ea
    W32/HLLP.Philis.cs
    W32/HLLP.Philis.cq
    W32/HLLP.Philis.em
    W32/HLLP.Philis.dg
    W32/HLLP.Philis.bw
    W32/HLLP.Philis.bu
    W32/HLLP.Philis.ef
    W32/HLLP.Philis.dy
    W32/HLLP.Philis.fa
    W32/HLLP.Philis.bv
    W32/HLLP.Philis.ex
    W32/HLLP.Philis.ez
    W32/HLLP.Philis.cl
    W32/HLLP.Philis.dx
    W32/HLLP.Philis.bq
    W32/HLLP.Philis.cm
    W32/HLLP.Philis.db
    W32/HLLP.Philis.dw
    W32/HLLP.Philis.da
    W32/HLLP.Philis.dv
    W32/HLLP.Philis.fj
    W32/HLLP.Philis.bm
    W32/HLLP.Philis.ca
    W32/HLLP.Philis.cz
    W32/HLLP.Philis.cr
    W32/HLLP.Philis.cp
    W32/HLLP.Philis.do
    W32/HLLP.Philis.dn
    W32/HLLP.Philis.ce
    W32/HLLP.Philis.cd
    W32/HLLP.Philis.by
    W32/HLLP.Philis.fd
    W32/HLLP.Philis.fc
    W32/HLLP.Philis.ee
    W32/HLLP.Philis.ec
    W32/HLLP.Philis.eb
    W32/HLLP.Philis.dm
    W32/HLLP.Philis.ed
    W32/HLLP.Philis.ck
    W32/HLLP.Philis.bx
    W32/HLLP.Philis.en
    W32/HLLP.Philis.el
    W32/HLLP.Philis.eu
    W32/HLLP.Philis.et
    W32/HLLP.Philis.eq
    W32/HLLP.Philis.es
    W32/HLLP.Philis.er
    W32/HLLP.Philis.ep
    W32/HLLP.Philis.fl
    W32/HLLP.Philis.du
    W32/HLLP.Philis.dk
    W32/HLLP.Philis.di
    W32/HLLP.Philis.bp
    W32/HLLP.Philis.eh
    W32/HLLP.Philis.dt
    W32/HLLP.Philis.cy
    W32/HLLP.Philis.ej
    W32/HLLP.Philis.ei
    W32/HLLP.Philis.bt
    W32/HLLP.Philis.ch
    W32/HLLP.Philis.ci
    W32/HLLP.Philis.dq
    W32/HLLP.Philis.ev
    W32/HLLP.Philis.fb
    W32/HLLP.Philis.fh
    W32/HLLP.Philis.ff
    W32/HLLP.Philis.dl
    W32/HLLP.Philis.dj
    W32/HLLP.Philis.dh
    W32/HLLP.Philis.dp
    W32/HLLP.Philis.fi
    W32/HLLP.Philis.fg
    W32/HLLP.Philis.fe
    W32/HLLP.Philis.fk
    W32/HLLP.Philis.ds
    W32/HLLP.Philis.cc
    W32/HLLP.Philis.bz
    W32/HLLP.Philis.eg
    W32/HLLP.Philis.eo
    W32/HLLP.Philis.cx
    W32/HLLP.Philis.df
    W32/HLLP.Philis.cn
    W32/HLLP.Philis.fm
    W32/HLLP.Philis.ew
    W32/HLLP.Philis.cv
    W32/HLLP.Philis.ct
    W32/HLLP.Philis.de
    W32/HLLP.Philis.dc
    W32/HLLP.Philis.cw
    W32/HLLP.Philis.cu
    W32/HLLP.Philis.dd
    W32/HLLP.Philis.co
    W32/HLLP.Philis.cg
    W32/HLLP.Philis.cf
  VbScript (1)
    New Script
  Win32 (2)
    W32/Generic.e
    W32/Pinkslipbot