Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4957
DAT Release Date 02/06/2007
Threats Detected 226449
New Detections 8
Enhanced Detections 234

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Trojan (5)
   (1)
    Generic Downloader.bt
  Downloader (1)
    Downloader-BAL
  Remote Access (1)
    BackDoor-DKU
  StartPage (2)
    StartPage-JU
    StartPage-JU.sys
Virus (3)
   (1)
    SymbOS/Commwarrior.p!sis
  Parasitic (1)
    W32/HLLP.Philis.fp
  Worm (1)
    W32/Eliles.worm

Enhanced Detections:

Internet Worm (1)
  Internet Relay Chat (1)
    W32/Sdbot.worm!811a7027
Program (10)
   (3)
    Generic PUP.f
    Generic PUP.d
    Generic PUP.e
  Adware (3)
    Adware-NaviPromo
    Adware-SideFind
    Adware-Alexa
  Dialer (1)
    Dialer-267
  Dropper (2)
    NDotNet.dr
    Adware-BitLocker.dr
  Win32 (1)
    Winfixer
Trojan (85)
   (6)
    Generic Downloader.o
    Generic.dg
    Generic.df
    Generic Proxy.h
    Generic.f
    Generic Spy.e
  Application extension (1)
    BackDoor-CKB.dll
  Damaged (2)
    W32/Nuwar.dam
    BackDoor-AWQ.b.dam
  Downloader (11)
    Downloader-AAP.c
    Downloader-AAP
    Downloader-BAE
    Downloader-AYN
    Downloader-AXI
    PWS-Banker.dldr
    Downloader-ABU
    Downloader-BAI!M711
    Downloader-ZQ
    PWS-Banker.dldr.c
    Downloader-AXR
  Downloader Generic (1)
    W32/Stration.gen.dldr
  Dropper (6)
    PWS-LegMir.dr
    PWS-LDPinch.dr
    BackDoor-CKB.dr
    PWS-Gamania.dr
    BackDoor-DIX.dr
    PWS-Lineage.dr
  Exploit (8)
    Exploit-MSExcel.h
    Exploit-MSWord.d
    Exploit-MSWord.e
    Exploit-CVE2007-0031
    Exploit-CVE2007-0028
    Exploit-MS06-005
    Exploit-CVE2007-0030
    Exploit-CVE2007-0027
  Generic (8)
    PWS-Banker.gen.q
    VBS/Eliles.gen
    Downloader-AXI.gen
    PWS-Banker.gen.g
    BackDoor-CKB.gen
    PWS-Banker.gen.t
    PWS-Banker.gen.ai
    Spam-Mailbot.gen
  Heuristic (1)
    New Malware.n
  Password (3)
    PWS-LegMir
    PWS-QQPass
    PWS-LDPinch
  Password Stealer (8)
    PWS-Gamania
    PWS-Banker!1d2e
    PWS-Banker.bm
    PWS-Banker.gen.ba
    PWS-Banker.gen.i
    PWS-Banker.gen.h
    PWS-WoW
    PWS-Lineage
  Proxy (2)
    Proxy-Agent.au
    Proxy-Piky
  Remote Access (8)
    BackDoor-AWQ.b
    BackDoor-DIX
    BackDoor-CKB.sys
    BackDoor-CKB!rootkit
    BackDoor-DKI
    Backdoor-DKT
    BackDoor-CKB
    BackDoor-CEP
  Server (2)
    BackDoor-CDC.svr
    BackDoor-CEP.svr
  Spyware (1)
    MailSkinner
  Tool (1)
    Tool-WXCrack
  Win32 (16)
    Generic Downloader.a
    Generic Delphi
    Generic MultiDropper.n
    Generic Dropper.aj
    Spy-Agent.ba
    AdClicker-EL
    Uploader-AF
    Generic Downloader.y
    Generic Dropper.p
    Generic PWS.o
    Generic Dropper.i
    Generic Downloader.ab
    Generic Downloader.g
    Generic Downloader.e
    Generic AdClicker.c
    Generic AdClicker.d
Virus (138)
   (14)
    SymbOS/Commwarrior.h!sis
    SymbOS/Commwarrior.o!sis
    SymbOS/Commwarrior.l!sis
    SymbOS/Commwarrior.b!sis
    SymbOS/Commwarrior.a!sis
    SymbOS/Commwarrior.j!sis
    SymbOS/Commwarrior.n!sis
    SymbOS/Commwarrior.c!sis
    SymbOS/Commwarrior.m!sis
    SymbOS/Commwarrior.g!sis
    SymbOS/Commwarrior.i!sis
    SymbOS/Commwarrior.f!sis
    SymbOS/Commwarrior.d!sis
    SymbOS/Commwarrior.e!sis
  Configuration settings (1)
    W32/HLLP.Philis.ini
  Damaged Worm (1)
    W32/Spybot.worm.dam
  Downloader Worm (1)
    W32/Sdbot.worm.dldr
  Dropper (2)
    W32/HLLP.Philis.dr
    W32/Bacalid.dr
  Email (1)
    W32/Nuwar@MM
  Email Generic (1)
    JS/Feebs.gen.o@MM
  Generic (1)
    W32/IRCbot.gen.b
  Generic Worm (8)
    W32/Spybot.worm.gen.e
    W32/Gaobot.worm.gen.bj
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.ce
    W32/Sdbot.worm.gen.ca
    W32/Sdbot.worm.gen.ai
    W32/Sdbot.worm.gen.ax
    W32/Sdbot.worm.gen.bj
  Internet Relay Chat Worm (1)
    W32/Sdbot.worm!73216
  Internet Worm (2)
    W32/Spybot.worm.gen
    W32/Sdbot.worm!MS06-040
  Parasitic (98)
    W32/HLLP.Philis.cj
    W32/HLLP.Philis.bs
    W32/HLLP.Philis.ea
    W32/HLLP.Philis.cs
    W32/HLLP.Philis.cq
    W32/HLLP.Philis.em
    W32/HLLP.Philis.dg
    W32/HLLP.Philis.bw
    W32/HLLP.Philis.bu
    W32/HLLP.Philis.ef
    W32/HLLP.Philis.dy
    W32/HLLP.Philis.fa
    W32/HLLP.Philis.bv
    W32/HLLP.Philis.ex
    W32/HLLP.Philis.ez
    W32/HLLP.Philis.cl
    W32/HLLP.Philis.dx
    W32/HLLP.Philis.bq
    W32/HLLP.Philis.cm
    W32/HLLP.Philis.db
    W32/HLLP.Philis.dw
    W32/HLLP.Philis.da
    W32/HLLP.Philis.dv
    W32/HLLP.Philis.fj
    W32/HLLP.Philis.bm
    W32/HLLP.Philis.ca
    W32/HLLP.Philis.cz
    W32/HLLP.Philis.cr
    W32/HLLP.Philis.cp
    W32/HLLP.Philis.do
    W32/HLLP.Philis.dn
    W32/HLLP.Philis.ce
    W32/HLLP.Philis.cd
    W32/HLLP.Philis.by
    W32/HLLP.Philis.fd
    W32/HLLP.Philis.fc
    W32/HLLP.Philis.ee
    W32/HLLP.Philis.ec
    W32/HLLP.Philis.eb
    W32/HLLP.Philis.dm
    W32/HLLP.Philis.ed
    W32/HLLP.Philis.ck
    W32/HLLP.Philis.bx
    W32/HLLP.Philis.en
    W32/HLLP.Philis.el
    W32/HLLP.Philis.fn
    W32/HLLP.Philis.eu
    W32/HLLP.Philis.et
    W32/HLLP.Philis.eq
    W32/HLLP.Philis.es
    W32/HLLP.Philis.er
    W32/HLLP.Philis.ep
    W32/HLLP.Philis.fl
    W32/HLLP.Philis.du
    W32/HLLP.Philis.dk
    W32/HLLP.Philis.di
    W32/HLLP.Philis.bp
    W32/HLLP.Philis.eh
    W32/HLLP.Philis.dt
    W32/HLLP.Philis.cy
    W32/HLLP.Philis.ej
    W32/HLLP.Philis.ei
    W32/HLLP.Philis.bt
    W32/HLLP.Philis.ch
    W32/HLLP.Philis.ci
    W32/HLLP.Philis.dq
    W32/HLLP.Philis.ev
    W32/HLLP.Philis.fb
    W32/HLLP.Philis.fh
    W32/HLLP.Philis.ff
    W32/HLLP.Philis.dl
    W32/HLLP.Philis.dj
    W32/HLLP.Philis.dh
    W32/HLLP.Philis.dp
    W32/HLLP.Philis.fi
    W32/HLLP.Philis.fg
    W32/HLLP.Philis.fe
    W32/HLLP.Philis.fk
    W32/HLLP.Philis.ds
    W32/HLLP.Philis.cc
    W32/HLLP.Philis.bz
    W32/HLLP.Philis.eg
    W32/HLLP.Philis.eo
    W32/HLLP.Philis.cx
    W32/HLLP.Philis.df
    W32/HLLP.Philis.cn
    W32/HLLP.Philis.fm
    W32/HLLP.Philis.ew
    W32/HLLP.Philis.cv
    W32/HLLP.Philis.ct
    W32/HLLP.Philis.de
    W32/HLLP.Philis.dc
    W32/HLLP.Philis.cw
    W32/HLLP.Philis.cu
    W32/HLLP.Philis.dd
    W32/HLLP.Philis.co
    W32/HLLP.Philis.cg
    W32/HLLP.Philis.cf
  Peer To Peer (1)
    W32/Generic.c!p2p
  Win32 (4)
    W32/USBAgent
    W32/Bacalid!vcab
    W32/Generic.m
    W32/Generic.Delphi.b
  Worm (2)
    W32/TellSky.worm
    W32/YahLover.worm