Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 5015
DAT Release Date 04/23/2007
Threats Detected 250387
New Detections 13
Enhanced Detections 350

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Trojan (11)
   (2)
    Generic.abv
    Spy-Agent.bh
  Downloader (2)
    Spy-Agent.ba.dldr
    Downloader-BBS
  Dropper (1)
    BackDoor-DKB.dr
  Malware Tool (3)
    NTRootkit-S!mem
    NTRootkit-Z!mem
    NTRootkit-U!mem
  Password Stealer (1)
    PWS-LDPinch!mem
  StartPage (1)
    StartPage-JW
  Win32 (1)
    W32/Generic.abk!worm
Virus (2)
  Parasitic (1)
    W32/HLLP.Philis.js
  Worm (1)
    W32/Jambu.worm

Enhanced Detections:

Internet Worm (1)
  Internet Relay Chat (1)
    W32/Sdbot.worm!811a7027
Program (20)
   (2)
    LinkOptimizer
    Generic PUP.d
  Adware (11)
    Adware-Virtumundo
    Adware-HotBar
    Adware-TCent
    Adware-BDSearch
    Adware-NaviPromo
    Adware-Boran
    Adware-WebBuying
    Adware-Cinmus
    Adware-Alexa
    Adware-Softomate
    Adware-DigitalNames
  Dropper (1)
    Adware-SurfSideKick.dr
  Generic (2)
    Adware-Boran.gen
    Adware-BHO.gen.d
  Spyware (1)
    Spyware-JuanSearch
  Tool (1)
    Tool-Xpy
  Win32 (2)
    ServU-Daemon
    Winfixer
Trojan (110)
   (10)
    Generic Keylogger
    Generic.dw
    Generic.dv
    Generic.dy
    Vanti!rootkit
    Generic.dx
    Generic.dz
    AFXRootkit!mem
    HackerDefender!rootkit
    Generic Trojan
  Application extension (6)
    Spy-Agent.bh.dll
    PWS-Maran.dll
    BackDoor-DKD.dll
    BackDoor-CSY.dll
    Allsum.dll
    PWS-Lineage.dll
  Downloader (4)
    PWS-Banker.dldr!0206BCE1
    PWS-WoW.dldr
    PWS-Banker.dldr
    Downloader-BBI
  Dropper (6)
    Generic Dropper
    PWS-LegMir.dr
    MultiDropper-NS
    PWS-Maran.dr
    PWS-Lineage.dr
    PWS-WoW.dr
  Exploit (14)
    Exploit-ByteVerify
    Exploit-CVE2006-6134
    Exploit-MS05-024
    Exploit-CVE2006-5585
    Exploit-ITSSHeap
    Exploit-MSExcel.gen
    Exploit-MS06-021.b
    Exploit-MS06-021.c
    Exploit-MS06-021.a
    Exploit-CHMChunk
    Exploit-ANIfile.c
    Exploit-CVE2007-0031
    Exploit-CVE2007-0515
    Exploit-CVE2007-0030
  Generic (3)
    Spy-Agent.ba.gen
    PWS-Banker.gen.g
    Exploit-MS06-006.gen
  Heuristic (35)
    New Malware.d
    New Malware.ci
    New Malware.cg
    New Malware.ca
    New Malware.bx
    New Malware.cn
    New Malware.bc
    New Malware.bb
    New Malware.cp
    New Malware.co
    New Malware.bt
    New Malware.br
    New Malware.bo
    New Malware.ba
    New Malware.az
    New Malware.ct
    New Malware.cs
    New Malware.ay
    New Malware.ch
    New Malware.cl
    New Malware.cj
    New Malware.bm
    New Malware.by
    New Malware.cm
    New Malware.ck
    New Malware.aj
    New Malware.ai
    New Malware.cq
    New Malware.cr
    New Malware.bj
    New Malware.cb
    New Malware.ce
    New Malware.cc
    New Malware.ar
    New Malware.as
  Malware Tool (1)
    NTRootkit-E!rootkit
  Password (1)
    Generic PWS
  Password Stealer (7)
    PWS-Banker
    PWS-Maran
    PWS-Gogo!rootkit
    PWS-Zhengtu
    PWS-Progent!rootkit
    PWS-WoW
    PWS-Lineage
  Proxy (1)
    Proxy-Piky
  Remote Access (3)
    Generic BackDoor
    BackDoor-CSY
    BackDoor-CVT
  Trojan (1)
    Spy-Agent.ba
  Win32 (18)
    Generic.i
    Generic MultiDropper.n
    Generic MultiDropper.d
    Generic VB.b
    Generic Downloader
    Puper
    Matcash
    Generic StartPage.h
    AdClicker-CX
    Generic Downloader.u
    Generic PWS.o
    Generic BackDoor.u
    Generic Downloader.ab
    DNSChanger.d
    Generic VB.c
    BraveSentry
    Generic Dropper.w
    Generic Downloader.h
Virus (219)
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Dropper (1)
    W32/HLLP.Philis.dr
  Email (1)
    W32/Stration@MM
  Generic (1)
    W32/HLLP.Philis.gr
  Generic Worm (6)
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.ce
    W32/Sdbot.worm.gen.ca
    W32/Sdbot.worm.gen.ai
    W32/Sdbot.worm.gen.ax
    W32/Sdbot.worm.gen.q
  Heuristic (1)
    New Floppy Worm
  Internet Worm (2)
    W32/Sdbot.worm
    W32/Sdbot.worm!MS06-040
  Parasitic (201)
    W32/HLLP.Philis.cj
    W32/HLLP.Philis.jf
    W32/HLLP.Philis.bs
    W32/HLLP.Philis.fq
    W32/HLLP.Philis.ga
    W32/HLLP.Philis.gd
    W32/HLLP.Philis.gz
    W32/HLLP.Philis.hk
    W32/HLLP.Philis.hr
    W32/HLLP.Philis.jc
    W32/HLLP.Philis.jq
    W32/HLLP.Philis.hx
    W32/HLLP.Philis.hv
    W32/HLLP.Philis.ea
    W32/HLLP.Philis.if
    W32/HLLP.Philis.je
    W32/HLLP.Philis.cs
    W32/HLLP.Philis.cq
    W32/HLLP.Philis.em
    W32/HLLP.Philis.dg
    W32/HLLP.Philis.ih
    W32/HLLP.Philis.bw
    W32/HLLP.Philis.bu
    W32/HLLP.Philis.fz
    W32/HLLP.Philis.ef
    W32/HLLP.Philis.hh
    W32/HLLP.Philis.hf
    W32/HLLP.Philis.dy
    W32/HLLP.Philis.iz
    W32/HLLP.Philis.iy
    W32/HLLP.Philis.hz
    W32/HLLP.Philis.fa
    W32/HLLP.Philis.ji
    W32/HLLP.Philis.hc
    W32/HLLP.Philis.gh
    W32/HLLP.Philis.jb
    W32/HLLP.Philis.hd
    W32/HLLP.Philis.hq
    W32/HLLP.Philis.bv
    W32/HLLP.Philis.gx
    W32/HLLP.Philis.ex
    W32/HLLP.Philis.ez
    W32/HLLP.Philis.cl
    W32/HLLP.Philis.ha
    W32/HLLP.Philis.dx
    W32/HLLP.Philis.bq
    W32/HLLP.Philis.cm
    W32/HLLP.Philis.db
    W32/HLLP.Philis.dw
    W32/HLLP.Philis.da
    W32/HLLP.Philis.dv
    W32/HLLP.Philis.gq
    W32/HLLP.Philis.ho
    W32/HLLP.Philis.fj
    W32/HLLP.Philis.bm
    W32/HLLP.Philis.ca
    W32/HLLP.Philis.ic
    W32/HLLP.Philis.ib
    W32/HLLP.Philis.ia
    W32/HLLP.Philis.iv
    W32/HLLP.Philis.iu
    W32/HLLP.Philis.cz
    W32/HLLP.Philis.gi
    W32/HLLP.Philis.gf
    W32/HLLP.Philis.jj
    W32/HLLP.Philis.it
    W32/HLLP.Philis.cr
    W32/HLLP.Philis.cp
    W32/HLLP.Philis.do
    W32/HLLP.Philis.dn
    W32/HLLP.Philis.jp
    W32/HLLP.Philis.ce
    W32/HLLP.Philis.cd
    W32/HLLP.Philis.by
    W32/HLLP.Philis.gv
    W32/HLLP.Philis.hj
    W32/HLLP.Philis.he
    W32/HLLP.Philis.fd
    W32/HLLP.Philis.fc
    W32/HLLP.Philis.gu
    W32/HLLP.Philis.hp
    W32/HLLP.Philis.ee
    W32/HLLP.Philis.ec
    W32/HLLP.Philis.eb
    W32/HLLP.Philis.dm
    W32/HLLP.Philis.hi
    W32/HLLP.Philis.ed
    W32/HLLP.Philis.ck
    W32/HLLP.Philis.bx
    W32/HLLP.Philis.gk
    W32/HLLP.Philis.gl
    W32/HLLP.Philis.ge
    W32/HLLP.Philis.en
    W32/HLLP.Philis.el
    W32/HLLP.Philis.jr
    W32/HLLP.Philis.fn
    W32/HLLP.Philis.hn
    W32/HLLP.Philis.eu
    W32/HLLP.Philis.et
    W32/HLLP.Philis.eq
    W32/HLLP.Philis.jk
    W32/HLLP.Philis.es
    W32/HLLP.Philis.er
    W32/HLLP.Philis.ep
    W32/HLLP.Philis.fl
    W32/HLLP.Philis.du
    W32/HLLP.Philis.dk
    W32/HLLP.Philis.di
    W32/HLLP.Philis.bp
    W32/HLLP.Philis.eh
    W32/HLLP.Philis.dt
    W32/HLLP.Philis.cy
    W32/HLLP.Philis.ej
    W32/HLLP.Philis.ei
    W32/HLLP.Philis.bt
    W32/HLLP.Philis.ch
    W32/HLLP.Philis.ci
    W32/HLLP.Philis.id
    W32/HLLP.Philis.il
    W32/HLLP.Philis.ja
    W32/HLLP.Philis.ix
    W32/HLLP.Philis.jg
    W32/HLLP.Philis.iw
    W32/HLLP.Philis.jh
    W32/HLLP.Philis.jl
    W32/HLLP.Philis.ie
    W32/HLLP.Philis.ij
    W32/HLLP.Philis.jn
    W32/HLLP.Philis.gn
    W32/HLLP.Philis.is
    W32/HLLP.Philis.iq
    W32/HLLP.philis.hb
    W32/HLLP.Philis.hy
    W32/HLLP.Philis.ik
    W32/HLLP.Philis.ig
    W32/HLLP.Philis.gm
    W32/HLLP.Philis.dq
    W32/HLLP.Philis.ev
    W32/HLLP.Philis.fb
    W32/HLLP.Philis.fh
    W32/HLLP.Philis.ff
    W32/HLLP.Philis.jm
    W32/HLLP.Philis.dl
    W32/HLLP.Philis.dj
    W32/HLLP.Philis.dh
    W32/HLLP.Philis.dp
    W32/HLLP.Philis.fi
    W32/HLLP.Philis.fr
    W32/HLLP.Philis.gw
    W32/HLLP.Philis.ir
    W32/HLLP.Philis.ip
    W32/HLLP.Philis.fg
    W32/HLLP.Philis.fe
    W32/HLLP.Philis.fk
    W32/HLLP.Philis.ht
    W32/HLLP.Philis.hm
    W32/HLLP.Philis.ds
    W32/HLLP.Philis.cc
    W32/HLLP.Philis.bz
    W32/HLLP.Philis.eg
    W32/HLLP.Philis.eo
    W32/HLLP.Philis.cx
    W32/HLLP.Philis.df
    W32/HLLP.Philis.fp
    W32/HLLP.Philis.fx
    W32/HLLP.Philis.gc
    W32/HLLP.Philis.gt
    W32/HLLP.Philis.io
    W32/HLLP.Philis.hg
    W32/HLLP.Philis.cn
    W32/HLLP.Philis.jd
    W32/HLLP.Philis.gs
    W32/HLLP.Philis.gy
    W32/HLLP.Philis.hl
    W32/HLLP.Philis.ii
    W32/HLLP.Philis.im
    W32/HLLP.Philis.ft
    W32/HLLP.Philis.gp
    W32/HLLP.Philis.fm
    W32/HLLP.Philis.fu
    W32/HLLP.Philis.gj
    W32/HLLP.Philis.fw
    W32/HLLP.Philis.fv
    W32/HLLP.Philis.fs
    W32/HLLP.Philis.hw
    W32/HLLP.Philis.hu
    W32/HLLP.Philis.hs
    W32/HLLP.Philis.ew
    W32/HLLP.Philis.go
    W32/HLLP.Philis.cv
    W32/HLLP.Philis.ct
    W32/HLLP.Philis.de
    W32/HLLP.Philis.dc
    W32/HLLP.Philis.gb
    W32/HLLP.Philis.cw
    W32/HLLP.Philis.cu
    W32/HLLP.Philis.dd
    W32/HLLP.Philis.co
    W32/HLLP.Philis.in
    W32/HLLP.Philis.cg
    W32/HLLP.Philis.cf
  Rootkit (1)
    W32/Feebs!rootkit
  Win32 (1)
    New Win32.g1
  Worm (3)
    W32/HLLP.Philis.gg
    W32/Generic.worm.i
    W32/Sdbot.worm!678b37ba