Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 5504
DAT Release Date 01/23/2009
Threats Detected 495717
New Detections 17
Enhanced Detections 181

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
OSX/IWService Low-Profiled Low-Profiled

New Detections:

Program (1)
  Keylogger (1)
    VBS/Keylog-Refog
Trojan (12)
  - (1)
    SMSFraud
  Generic (4)
    Exploit-IFrame.gen.i
    Spy-Agent.bv.gen.a
    Spy-Agent.bw.gen.j
    Puper.gen.m
  Macintosh (1)
    OSX/IWService
  Password Stealer (1)
    PWS-OnlineGames.dm
  Remote Access (1)
    BackDoor-DTT
  Win32 (4)
    Generic Dropper.cp
    Generic Dropper.cr
    Generic Dropper.cs
    Generic Dropper.cq
Virus (4)
  Dropper Worm (1)
    W32/Autorun.worm.zu.dr
  Generic (1)
    W32/Fujacks.gen.a
  Win32 (1)
    W32/Sality.ar
  Worm (1)
    W32/Autorun.worm.zu

Enhanced Detections:

Internet Worm (3)
  Internet Relay Chat (1)
    W32/Nirbot.worm
  Internet Relay Chat Worm (2)
    W32/Sdbot.worm!33800
    W32/Sdbot.worm!54D1EEB9
Program (17)
   (1)
    Generic KeyGen
  - (1)
    Generic Dialer
  Adware (6)
    Adware-180SA
    Adware-PurityScan
    Adware-2Search
    Adware-Zeno
    Adware-Cinmus
    Adware-Cometsys
  Application extension (1)
    Adware-Softomate.dll
  Generic (1)
    Adware-Apropos.gen
  Keylogger (1)
    Keylog-Ardamax.dll
  Malware Tool (1)
    PWCrack-Winspy
  Remote Access (1)
    ServU-Daemon
  Win32 (4)
    Winfixer
    Generic PUP.x
    CasOnline
    Generic PUP.z
Trojan (119)
   (22)
    Generic Del.x
    Generic Proxy
    Vundo!hv.j
    Vundo!hv.h
    Vundo!hv.f
    Vundo!hv.m
    Vundo!hv.k
    Vundo!hv.i
    Vundo!hv.g
    Vundo!hv.e
    Vundo!hv.d
    AdClicker-GT
    Vundo!hv.n
    Vundo!hv.l
    Generic Qhost
    Generic Flooder
    Generic.f
    Spy-Lydra
    Vundo!hv.c
    Vundo!hv.a
    Vundo!hv.b
    Generic!Artemis.)
  Application extension (3)
    BackDoor-WB.dll
    PWS-Pasorot.dll
    Puper.dll
  Configuration file (1)
    Generic!atr
  Downloader (7)
    JS/Downloader-BNA
    BackDoor-DKI.dldr
    Downloader-BFO
    Downloader-BAI!M711
    Downloader-OV
    Downloader-ARL
    Downloader-BLE
  Downloader Generic (1)
    Generic Downloader.bk
  Dropper (1)
    Generic Dropper
  Exploit (10)
    Exploit-IFrame
    Exploit-PDF.b
    JS/Exploit-DDay
    Exploit-PDF.d
    Exploit-MSExcel.p
    Exploit-CVE2007-0071
    Exploit-CVE2008-2463
    Exploit-MS07-004
    Exploit-CVE2007-0028
    Exploit-CVE2008-4252
  Generic (16)
    BackDoor-EE.gen
    FakeAlert-AB.gen
    PWS-QQPass.gen
    BackDoor-AVW.gen.a
    BackDoor-AOP.gen.a
    Exploit-WordPad.a.gen
    Dialer-RAS.gen
    DNSChanger.gen
    Generic.dx
    Swizzor.gen
    Spy-Agent.gen
    PWS-Mmorpg.gen
    loosky.gen
    hackerdefender.gen
    Vundo.gen.f
    Spy-Agent.bw.gen.h
  Generic Worm (1)
    W32/Bobax.worm.gen.a
  Heuristic (7)
    New UNIX
    New Malware.jl
    New Malware.n
    New Malware.ew
    New Malware.hx
    New Malware.aj
    New Malware.im
  Internet Relay Chat (1)
    IRC-Ibot
  Password (2)
    PWS-QQPass
    PWS-LDPinch
  Password Stealer (8)
    PWS-Gamania
    PWS-QQRob
    PWS-JA
    PWS-Banker
    PWS-OnlineGames.dj
    PWS-OnlineGames.a
    PWS-WoW
    PWS-Lineage
  Proxy (1)
    Proxy-Piky
  Remote Access (12)
    Generic BackDoor
    BackDoor-AWQ.b
    BackDoor-AVW
    Netbus.svr
    BackDoor-BAC.gen
    BackDoor-CZP
    BackDoor-CSN
    BackDoor-CDC
    BackDoor-CQN
    BackDoor-CMQ
    BackDoor-CMI
    BackDoor-CEP
  Script (2)
    Ransom
    Generic Downloader.z
  Settings Change (1)
    Generic StartPage
  Spyware (2)
    Keylog-Perfect.dr
    Keylog-SCLog
  Win31 (1)
    Generic Downloader.z!1516DDBD
  Win32 (20)
    Generic Downloader.a
    Generic MultiDropper.n
    Generic VB.b
    Generic Exploit
    Puper
    Puper!hv.a
    Generic BackDoor.ap
    DNSChanger.i
    Generic FakeAlert.a
    Spy-Agent.bw
    Generic PWS.y
    Swizzor
    Generic Downloader.x
    Generic PWS.o
    Vundo
    Ilomo
    Generic Dropper.w
    Generic Packed
    Enfal
    Boaxxe
Virus (42)
  Downloader Worm (1)
    W32/Sdbot.worm.dldr
  Email (1)
    W32/Stration@MM
  Email Generic (3)
    W32/Netsky.gen@MM
    W32/Rontokbro.gen@MM
    W32/Mytob.gen@MM
  File Infector (2)
    W32/Valla.b
    W32/Valla.a
  Generic (3)
    W32/Conficker.gen
    W32/Zhelatin.gen
    W32/IRCbot.gen.a
  Generic Worm (6)
    W32/Opanki.worm.gen
    W32/Sdbot.worm.gen.h
    W32/Kelvir.worm.gen
    W32/Conficker.worm.gen.b
    W32/Autorun.worm.gen
    W32/Autorun.worm.i.gen
  Internet Worm (3)
    W32/Sdbot.worm
    W32/Spybot.worm.gen
    W32/Checkout
  mIRC Worm (1)
    W32/Protoride.worm
  P2P Worm (1)
    W32/Bactera.worm!p2p
  Script (1)
    Univ.script/99a
  Win32 (8)
    W32/Sality
    W32/Valla.c
    W32/Koobface.worm
    W32/Virut.m
    W32/Fujacks.aw
    W32/Valla.d
    W32/Fujacks
    W32/Virut
  Worm (12)
    W32/Gaobot.worm
    W32/Conficker.worm
    W32/YahLover.worm.gen
    W32/Autorun.worm.g!0BE8F32E
    W32/Autorun.worm.h!lnk!lnk
    W32/Autorun.worm.bx
    W32/Autorun.worm.g
    W32/Sdbot.worm.gen.ax
    W32/Autorun.worm.c
    W32/Nuwar.worm
    W32/Autorun.worm.h
    W32/Conficker.worm!job