Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 4977
DAT Release Date 03/06/2007
Threats Detected 232749
New Detections 12
Enhanced Detections 248

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Trojan (11)
   (3)
    Generic.aaw
    Generic.aax
    Generic.aav
  Application extension (2)
    BackDoor-DLD.dll
    Downloader-ABU.dll
  Keylogger (1)
    Keylog-Patchy
  Remote Access (1)
    BackDoor-DLD
  Server (1)
    BackDoor-AVW.svr
  Win32 (3)
    W32/Generic.aam!worm
    W32/Generic.aak!worm
    W32/Generic.aal!worm
Virus (1)
  Parasitic (1)
    W32/HLLP.Philis.hg

Enhanced Detections:

Internet Worm (1)
  Internet Relay Chat (1)
    W32/Sdbot.worm!76714
Program (13)
   (2)
    Generic PUP.d
    Generic PUP.a
  Adware (6)
    Adware-Aureate
    Adware-BDSearch
    Adware-iPend
    Adware-PigSearch
    Adware-BestOffers
    Adware-GoWebsite
  Dropper (4)
    IMIServ.dr
    Adware-BDSearch.dr
    Adware-Boran.dr
    Adware-Henbang.dr
  Win32 (1)
    RemAdm-RemoteAdmin
Trojan (83)
   (7)
    Generic.cf
    Generic Downloader.bd
    Generic BackDoor.bb
    Generic.du
    Generic Proxy.h
    Mediaplace
    Generic.f
  - (1)
    BackDoor-AOU
  Application extension (8)
    PWS-LegMir.dll
    BackDoor-BAC.dll
    PWS-QQPass.dll
    AdClicker-ER.dll
    BackDoor-AMQ.dll
    Spy-Agent.br.dll
    BackDoor-CKB.dll
    BackDoor-CVM.dll
  Configurator (1)
    BackDoor-CDC.cfg
  Damaged (2)
    W32/Nuwar.dam
    BackDoor-EE.dam
  Downloader (8)
    Downloader-AZN
    PWS-WoW.dldr
    Downloader-AYJ
    Downloader-AXI
    Downloader-BAG
    BackDoor-CLK
    PWS-Banker.dldr
    Downloader-ABU
  Dropper (6)
    VBS/Inor
    Spy-Agent.br.dr
    BackDoor-CKB.dr
    BackDoor-CEP.dr
    Allsum.dr
    PWS-WoW.dr
  Exploit (5)
    VBS/Psyme
    Exploit-MSJet
    Exploit-TaroDrop
    Exploit-ObscuredHtml
    Exploit-1Table
  Generic (4)
    PWS-LegMir.gen.b
    PWS-QQPass.gen
    PWS-Banker.gen.bb
    BackDoor-CKB.gen
  Heuristic (1)
    New Malware.u
  HTML (1)
    JS/Winbomb
  Password (2)
    PWS-LegMir
    PWS-QQPass
  Password Stealer (5)
    PWS-Gamania
    PWS-MHXY
    PWS-Banker.gen.i
    PWS-Zhengtu
    PWS-WoW
  Remote Access (18)
    BackDoor-AQF
    BackDoor-ARR
    BackDoor-AMQ
    BackDoor-AWQ.b
    BackDoor-AVW
    BackDoor-CKB.sys
    BackDoor-CKB!rootkit
    BackDoor-CPI
    BackDoor-ASB.b
    BackDoor-DKV
    BackDoor-CDC
    BackDoor-CPY
    BackDoor-CVM
    SunOS/Wanukdoor
    BackDoor-CWW
    BackDoor-BAC.sys
    BackDoor-CMQ
    BackDoor-CKB
  Win32 (14)
    HackerDefender
    Generic Downloader.c
    Generic MultiDropper.a
    AdClicker-ER.sys
    Generic Downloader.s
    AdClicker-EV
    Generic Downloader.k
    Generic PWS.o
    Generic BackDoor.u
    Generic Downloader.ab
    Vundo
    Generic Dropper.w
    Generic Downloader.g
    Generic MultiDropper.b
Virus (151)
  Dropper (1)
    W32/HLLP.Philis.dr
  Email (3)
    W32/Stration@MM
    W32/Nuwar@MM
    W32/PWowS@MM
  Generic (1)
    W32/HLLP.Philis.gr
  Generic Worm (5)
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.ce
    W32/Sdbot.worm.gen.ax
    W32/Sdbot.worm.gen.p
  Internet Worm (1)
    SunOS/Wanuk.worm
  Parasitic (137)
    W32/HLLP.Philis
    W32/HLLP.Philis.cj
    W32/HLLP.Philis.bs
    W32/HLLP.Philis.fq
    W32/HLLP.Philis.ga
    W32/HLLP.Philis.gd
    W32/HLLP.Philis.gz
    W32/HLLP.Philis.ea
    W32/HLLP.Philis.cs
    W32/HLLP.Philis.cq
    W32/HLLP.Philis.em
    W32/HLLP.Philis.dg
    W32/HLLP.Philis.bw
    W32/HLLP.Philis.bu
    W32/HLLP.Philis.fz
    W32/HLLP.Philis.ef
    W32/HLLP.Philis.dy
    W32/HLLP.Philis.fa
    W32/HLLP.Philis.hc
    W32/HLLP.Philis.gh
    W32/HLLP.Philis.hd
    W32/HLLP.Philis.bv
    W32/HLLP.Philis.gx
    W32/HLLP.Philis.ex
    W32/HLLP.Philis.ez
    W32/HLLP.Philis.cl
    W32/HLLP.Philis.ha
    W32/HLLP.Philis.dx
    W32/HLLP.Philis.bq
    W32/HLLP.Philis.cm
    W32/HLLP.Philis.db
    W32/HLLP.Philis.dw
    W32/HLLP.Philis.da
    W32/HLLP.Philis.dv
    W32/HLLP.Philis.gq
    W32/HLLP.Philis.fj
    W32/HLLP.Philis.bm
    W32/HLLP.Philis.ca
    W32/HLLP.Philis.cz
    W32/HLLP.Philis.gi
    W32/HLLP.Philis.gf
    W32/HLLP.Philis.cr
    W32/HLLP.Philis.cp
    W32/HLLP.Philis.do
    W32/HLLP.Philis.dn
    W32/HLLP.Philis.ce
    W32/HLLP.Philis.cd
    W32/HLLP.Philis.by
    W32/HLLP.Philis.gv
    W32/HLLP.Philis.fd
    W32/HLLP.Philis.fc
    W32/HLLP.Philis.gu
    W32/HLLP.Philis.ee
    W32/HLLP.Philis.ec
    W32/HLLP.Philis.eb
    W32/HLLP.Philis.dm
    W32/HLLP.Philis.ed
    W32/HLLP.Philis.ck
    W32/HLLP.Philis.bx
    W32/HLLP.Philis.gk
    W32/HLLP.Philis.gl
    W32/HLLP.Philis.ge
    W32/HLLP.Philis.en
    W32/HLLP.Philis.el
    W32/HLLP.Philis.fn
    W32/HLLP.Philis.eu
    W32/HLLP.Philis.et
    W32/HLLP.Philis.eq
    W32/HLLP.Philis.es
    W32/HLLP.Philis.er
    W32/HLLP.Philis.ep
    W32/HLLP.Philis.fl
    W32/HLLP.Philis.du
    W32/HLLP.Philis.dk
    W32/HLLP.Philis.di
    W32/HLLP.Philis.bp
    W32/HLLP.Philis.eh
    W32/HLLP.Philis.dt
    W32/HLLP.Philis.cy
    W32/HLLP.Philis.ej
    W32/HLLP.Philis.ei
    W32/HLLP.Philis.bt
    W32/HLLP.Philis.ch
    W32/HLLP.Philis.ci
    W32/HLLP.Philis.gn
    W32/HLLP.philis.hb
    W32/HLLP.Philis.gm
    W32/HLLP.Philis.dq
    W32/HLLP.Philis.ev
    W32/HLLP.Philis.fb
    W32/HLLP.Philis.fh
    W32/HLLP.Philis.ff
    W32/HLLP.Philis.dl
    W32/HLLP.Philis.dj
    W32/HLLP.Philis.dh
    W32/HLLP.Philis.dp
    W32/HLLP.Philis.fi
    W32/HLLP.Philis.fr
    W32/HLLP.Philis.gw
    W32/HLLP.Philis.fg
    W32/HLLP.Philis.fe
    W32/HLLP.Philis.fk
    W32/HLLP.Philis.ds
    W32/HLLP.Philis.cc
    W32/HLLP.Philis.bz
    W32/HLLP.Philis.eg
    W32/HLLP.Philis.eo
    W32/HLLP.Philis.cx
    W32/HLLP.Philis.df
    W32/HLLP.Philis.fp
    W32/HLLP.Philis.fx
    W32/HLLP.Philis.gc
    W32/HLLP.Philis.gt
    W32/HLLP.Philis.cn
    W32/HLLP.Philis.gs
    W32/HLLP.Philis.gy
    W32/HLLP.Philis.ft
    W32/HLLP.Philis.gp
    W32/HLLP.Philis.fm
    W32/HLLP.Philis.fu
    W32/HLLP.Philis.gj
    W32/HLLP.Philis.fw
    W32/HLLP.Philis.fv
    W32/HLLP.Philis.fs
    W32/HLLP.Philis.ew
    W32/HLLP.Philis.go
    W32/HLLP.Philis.cv
    W32/HLLP.Philis.ct
    W32/HLLP.Philis.de
    W32/HLLP.Philis.dc
    W32/HLLP.Philis.gb
    W32/HLLP.Philis.cw
    W32/HLLP.Philis.cu
    W32/HLLP.Philis.dd
    W32/HLLP.Philis.co
    W32/HLLP.Philis.cg
    W32/HLLP.Philis.cf
  Script (1)
    Univ.script/99a
  Worm (2)
    W32/HLLP.Philis.gg
    W32/Sdbot.worm!678b37ba