Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 5185
DAT Release Date 12/13/2007
Threats Detected 355619
New Detections 28
Enhanced Detections 151

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
  Adware (1)
    Adware-OneStep
Trojan (25)
   (2)
    AdClicker-FI!reg
    FakeAlert-Y
  Application extension (3)
    Keylog-Bansaka.dll
    PWS-OnlineGames.q.dll
    StartPage-KE.dll
  Downloader Generic (1)
    StartPage-JU.dldr.gen
  Dropper (2)
    StartPage-JU.dr
    PWS-Onlinegames.dr
  Exploit (8)
    Exploit-HPInfo
    Exploit-CVE2007-3901
    Exploit-CVE2007-3895
    Exploit-TaroDrop.d
    Exploit-MP4
    Exploit-RealPlay
    Exploit-CVE2007-3903
    Exploit-ASF
  Generic (3)
    W97M/Fevor.gen
    Spy-Agent.ba.gen.d
    W97M/Mascrypt.gen
  Keylogger (2)
    Keylog-Bansaka!data
    Keylog-Bansaka
  Macro (1)
    W97M/Anime.c
  StartPage (1)
    StartPage-KE!hosts
  Win32 (2)
    AdClicker-FI.dr
    Generic FakeAlert
Virus (2)
  Win32 (1)
    W32/Divvi.a
  Worm (1)
    W32/Autorun.worm.g!f9007a93

Enhanced Detections:

Internet Worm (1)
  Internet Relay Chat (1)
    W32/Nirbot.worm
Program (14)
  - (2)
    Iroffer
    Proxy-Daemonize
  Adware (3)
    Adware-NaviPromo
    Adware-Cinmus
    Adware-Cygo
  Dropper (1)
    Adware-BDSearch.dr
  Keylogger (2)
    Keylog-Ardamax.dll
    Keylog-Ardamax.dr
  Malware Tool (1)
    PWCrack-Winspy
  Registry (2)
    HideWindow
    Generic AdClicker.h
  Win32 (3)
    RemAdm-RemoteAdmin
    Winfixer
    CasOnline
Trojan (95)
   (8)
    Generic.ff
    Spy-Agent.br
    AdClicker-FC
    Generic.cb
    Generic.f
    Spy-Lydra
    Generic.eh
    Generic Dailer
  Application extension (2)
    BackDoor-WB.dll
    PWS-Pasorot.dll
  Configuration file (1)
    Generic!atr
  Downloader (8)
    JS/Downloader-BGK
    Spy-Agent.bv.dldr
    Downloader.gen.a
    PWS-Banker.dldr
    Downloader-BAI!M711
    Downloader-ACH
    Downloader-ZQ
    Generic Downloader.ce
  Dropper (3)
    Generic Dropper
    AdClicker-BJ.dr
    Generic Dropper.p
  Exploit (3)
    VBS/Psyme
    Exploit-ObscuredHtml
    Exploit-MS06-014
  Generic (11)
    BackDoor-ABF.gen
    BackDoor-BAC.gen
    Qhost-Gen
    bobax.gen
    DNSChanger.gen
    Generic.dx
    Swizzor.gen
    PWS-Mmorpg.gen
    loosky.gen
    hackerdefender.gen
    Tibs-Packed
  Heuristic (4)
    New Malware.d
    New Malware.gr
    New Malware.j
    New Malware.ae
  Password (2)
    PWS-LegMir
    PWS-LDPinch
  Password Stealer (6)
    PWS-QQRob
    PWS-Banker
    PWS-OnlineGames.a
    PWS-Lineage
    PWS-Mifeng
    PWS-OnlineGames.q
  Proxy (1)
    Proxy-Piky
  Remote Access (20)
    BackDoor-ACH
    BackDoor-AQF
    Generic BackDoor
    BackDoor-AMQ
    BackDoor-AWQ.b
    BackDoor-AVW
    BackDoor-BAC
    BackDoor-AWQ
    BackDoor-SS
    Netbus.svr
    BackDoor-AIX
    BackDoor-CZP
    BackDoor-CDC
    BackDoor-CQN
    BackDoor-DKI
    BackDoor-CXI
    BackDoor-CMQ
    BackDoor-CYT
    BackDoor-CMI
    BackDoor-CEP
  Script (1)
    Generic Downloader.z
  Settings Change (1)
    Generic StartPage
  Spam (1)
    Spam-Maxy
  Spyware (2)
    Keylog-Perfect.dr
    Keylog-SCLog
  StartPage (2)
    StartPage-JU
    StartPage-JU.sys
  Win32 (19)
    Generic Downloader.a
    HackerDefender
    Generic Downloader.c
    DollarRevenue
    Generic MultiDropper.d
    AdClicker-FI
    FakeAlert-C
    Puper
    W32/Generic.aao!worm
    Generic Delphi.c
    Spy-Agent.bi
    Generic PWS.y
    Generic Downloader.k
    Generic AdClicker.a
    Generic BackDoor.u
    Generic Downloader.ab
    Vundo
    Generic Packed
    AdClicker-FP
Virus (41)
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Dropper Worm (1)
    W32/Sdbot.worm.dr
  Email (2)
    W32/Stration@MM
    W32/Nuwar@MM
  Email Generic (5)
    W32/Dumaru.gen@MM
    W32/Netsky.gen@MM
    W32/Rontokbro.gen@MM
    W32/Lovgate.gen@MM
    W32/Mytob.gen@MM
  Generic (2)
    W32/Feebs.gen
    W32/Zhelatin.gen
  Generic Worm (4)
    W32/Sdbot.worm.gen
    W32/Sdbot.worm.gen.ax
    W32/Sdbot.worm.gen.z
    W32/Sdbot.worm.gen.q
  Internet Worm (4)
    W32/Sdbot.worm
    W32/Sdbot.worm!MS05-039
    W32/Checkout
    W32/Checkout!91d0b88a
  Overwriting (1)
    W32/RAHack
  P2P Worm (1)
    W32/Bactera.worm!p2p
  Script (3)
    VBS/Generic
    VBS/IE-Title
    VBS/IE-Title!inf
  Win32 (4)
    W32/Generic.b
    W32/Bagle!pwdzip
    W32/Cekar
    W32/Puce
  Worm (13)
    W32/Gaobot.worm.gen
    W32/Passma.worm.d
    W32/Passma.worm.c
    W32/Passma.worm.b
    W32/Passma.worm.a
    W32/Shellot.worm
    W32/Passma.worm.e
    VBS/Autorun.worm.k
    W32/YahLover.worm
    W32/Autorun.worm.n
    W32/Autorun.worm.g
    W32/Autorun.worm.bg
    W32/IRCBot.worm