Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4959
DAT Release Date 02/08/2007
Threats Detected 227549
New Detections 8
Enhanced Detections 158

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
   (1)
    PCast
Trojan (3)
  Downloader (1)
    Downloader-AAP!rar
  Exploit (1)
    JS/Exploit-IEdldr
  Generic (1)
    Downloader-BAI.gen.b
Virus (4)
  Email Generic (1)
    W32/Zhelatin.gen@MM
  Parasitic (2)
    W32/HLLP.Philis.ft
    W32/HLLP.Philis.fs
  Win32 (1)
    W32/Generic.z

Enhanced Detections:

Internet Worm (1)
  Internet Relay Chat (1)
    W32/Sdbot.worm!76714
Program (7)
  Adware (3)
    Adware-Bestcode
    Adware-Newweb
    Adware-DesktopMedia
  Dropper (2)
    Adware-DesktopMedia.dr
    MySearch.dr
  Spyware (1)
    Spyware-KeyKey
  Win32 (1)
    MySearch
Trojan (37)
  Application extension (2)
    PWS-Legmir.dll
    PWS-Goldun.dll
  Damaged (1)
    W32/Nuwar.dam
  Demonstration (1)
    Exploit-MSWord.c.demo
  Dialer (1)
    QDial-30
  Downloader (6)
    Downloader-AAP
    Downloader-BAI!M711
    Downloader-TA.dll
    Downloader-BAL
    Downloader-ASH
    Downloader-AZM
  Dropper (2)
    PWS-LegMir.dr
    PWS-Lineage.dr
  Exploit (3)
    Exploit-MSWord.a
    Exploit-MS06-027
    Exploit-MSWord.d
  Generic (1)
    Exploit-MS06-014.gen
  Heuristic (1)
    New Malware.ab
  Malware Tool (1)
    NTRootKit-Z
  Password (2)
    PWS-LegMir
    PWS-QQPass
  Password Stealer (2)
    PWS-Zhengtu
    PWS-Lineage
  Proxy (2)
    Proxy-ProxList
    Proxy-ProxList.sys
  Remote Access (3)
    Backdoor-DKT
    BackDoor-DKH
    BackDoor-CMQ
  Rootkit (1)
    VAnti.sys
  Win32 (8)
    Generic Rootkit.d
    Uploader-AF
    Generic Downloader.y
    Generic PWS.o
    Generic BackDoor.u
    Generic Downloader.ab
    Enfal
    Generic AdClicker.c
Virus (113)
  Dropper (1)
    W32/HLLP.Philis.dr
  Email (1)
    W32/Nuwar@MM
  Email Generic (1)
    JS/Feebs.gen.o@MM
  Generic (1)
    W32/IRCbot.gen.b
  Generic Worm (3)
    W32/Sdbot.worm.gen
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.ce
  Internet Worm (1)
    W32/Spybot.worm.gen
  Parasitic (102)
    W32/HLLP.Philis
    W32/HLLP.Philis.cj
    W32/HLLP.Philis.bs
    W32/HLLP.Philis.fq
    W32/HLLP.Philis.ea
    W32/HLLP.Philis.cs
    W32/HLLP.Philis.cq
    W32/HLLP.Philis.em
    W32/HLLP.Philis.dg
    W32/HLLP.Philis.bw
    W32/HLLP.Philis.bu
    W32/HLLP.Philis.ef
    W32/HLLP.Philis.dy
    W32/HLLP.Philis.fa
    W32/HLLP.Philis.bv
    W32/HLLP.Philis.ex
    W32/HLLP.Philis.ez
    W32/HLLP.Philis.cl
    W32/HLLP.Philis.dx
    W32/HLLP.Philis.bq
    W32/HLLP.Philis.cm
    W32/HLLP.Philis.db
    W32/HLLP.Philis.dw
    W32/HLLP.Philis.da
    W32/HLLP.Philis.dv
    W32/HLLP.Philis.fj
    W32/HLLP.Philis.bm
    W32/HLLP.Philis.ca
    W32/HLLP.Philis.cz
    W32/HLLP.Philis.cr
    W32/HLLP.Philis.cp
    W32/HLLP.Philis.do
    W32/HLLP.Philis.dn
    W32/HLLP.Philis.ce
    W32/HLLP.Philis.cd
    W32/HLLP.Philis.by
    W32/HLLP.Philis.fd
    W32/HLLP.Philis.fc
    W32/HLLP.Philis.ee
    W32/HLLP.Philis.ec
    W32/HLLP.Philis.eb
    W32/HLLP.Philis.dm
    W32/HLLP.Philis.ed
    W32/HLLP.Philis.ck
    W32/HLLP.Philis.bx
    W32/HLLP.Philis.en
    W32/HLLP.Philis.el
    W32/HLLP.Philis.fn
    W32/HLLP.Philis.eu
    W32/HLLP.Philis.et
    W32/HLLP.Philis.eq
    W32/HLLP.Philis.es
    W32/HLLP.Philis.er
    W32/HLLP.Philis.ep
    W32/HLLP.Philis.fl
    W32/HLLP.Philis.du
    W32/HLLP.Philis.dk
    W32/HLLP.Philis.di
    W32/HLLP.Philis.bp
    W32/HLLP.Philis.eh
    W32/HLLP.Philis.dt
    W32/HLLP.Philis.cy
    W32/HLLP.Philis.ej
    W32/HLLP.Philis.ei
    W32/HLLP.Philis.bt
    W32/HLLP.Philis.ch
    W32/HLLP.Philis.ci
    W32/HLLP.Philis.dq
    W32/HLLP.Philis.ev
    W32/HLLP.Philis.fb
    W32/HLLP.Philis.fh
    W32/HLLP.Philis.ff
    W32/HLLP.Philis.dl
    W32/HLLP.Philis.dj
    W32/HLLP.Philis.dh
    W32/HLLP.Philis.dp
    W32/HLLP.Philis.fi
    W32/HLLP.Philis.fr
    W32/HLLP.Philis.fg
    W32/HLLP.Philis.fe
    W32/HLLP.Philis.fk
    W32/HLLP.Philis.ds
    W32/HLLP.Philis.cc
    W32/HLLP.Philis.bz
    W32/HLLP.Philis.eg
    W32/HLLP.Philis.eo
    W32/HLLP.Philis.cx
    W32/HLLP.Philis.df
    W32/HLLP.Philis.fp
    W32/HLLP.Philis.cn
    W32/HLLP.Philis.fm
    W32/HLLP.Philis.ew
    W32/HLLP.Philis.cv
    W32/HLLP.Philis.ct
    W32/HLLP.Philis.de
    W32/HLLP.Philis.dc
    W32/HLLP.Philis.cw
    W32/HLLP.Philis.cu
    W32/HLLP.Philis.dd
    W32/HLLP.Philis.co
    W32/HLLP.Philis.cg
    W32/HLLP.Philis.cf
  Win32 (2)
    W32/Ridnu
    W32/Generic.m
  Worm (1)
    W32/QQPass.worm