Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 5643
DAT Release Date 06/11/2009
Threats Detected 534861
New Detections 821
Enhanced Detections 145

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (118)
(1)
Generic PUP.z!n
- (3)
CasOnline!97833b9ff5b3
Generic PUP.x!1136121aac36
CasOnline!a414b6887992
Adware (113)
Adware-Fenomen!849ab84ddbc3
Adware-BDSearch.c
Adware-BDSearch.a
Adware-BDSearch.b
Adware-Fenomen!0c75efe44474
Adware-Adtomi!14ec607a92d3
Adware-Fenomen!0ecda4eebcf3
Adware-Fenomen!16ddef52698d
Adware-Fenomen!22c8f5ab8840
Adware-Fenomen!304dfba362cc
Adware-Fenomen!8924d0f7c243
Adware-Fenomen!66b365ad858a
Adware-Fenomen!667c178752af
Adware-TryMedia!2f1a52a8e365
Adware-TryMedia!4df53743face
Adware-TryMedia!68d6ce6d47f1
Adware-Fenomen!690dd495e6e2
Adware-TryMedia!1f49a0a3ed9d
Adware-TryMedia!38012d850859
Adware-Fenomen!427dccc2875f
Adware-Fenomen!3ff97be627b0
Adware-Fenomen!5b277ae3de0d
Adware-Fenomen!227757b3f4d5
Adware-TryMedia!8c02a392eb7d
Adware-TryMedia!5bec094663e2
Adware-TryMedia!72c9bedf99ff
Adware-Fenomen!75a0e722e679
Adware-TryMedia!ab2b0d4c84f0
Adware-Fenomen!b06a2a725c69
Adware-Fenomen!257e39626ee8
Adware-Fenomen!c0740903a904
Adware-Fenomen!c6f91a2e6b5a
Adware-TryMedia!26aa0150d060
Adware-TryMedia!5d6a7e4bdc0b
Adware-TryMedia!a199ebf36840
Adware-Fenomen!9dd4cb901cce
Adware-TryMedia!bf4cc3920841
Adware-TryMedia!b19b81792204
Adware-Fenomen!d4896516d469
Adware-Fenomen!a91680ed2eaa
Adware-Fenomen!986eb83e8437
Adware-Fenomen!b156f9baa860
Adware-TryMedia!a87c48bf7574
Adware-Fenomen!5c114a9d7ed7
Adware-TryMedia!22c8128e77b4
Adware-TryMedia!9ac7d4e29c7c
Adware-Fenomen!c55d4bf3458d
Adware-TryMedia!ad45d95f10b5
Adware-Fenomen!997eaa11f606
Adware-TryMedia!07698e3343da
Adware-Fenomen!a2f483eaaff7
Adware-Fenomen!b322619e4517
Adware-Cinmus!f!b64cd349f25c
Adware-Fenomen!853c0ae65912
Adware-Fenomen!07e25560ac57
Adware-Cinmus!e!f467b6bb420a
Adware-Fenomen!561335d957a3
Adware-Fenomen!8b3218ba7171
Adware-Fenomen!bb4556b1e03e
Adware-TryMedia!4e8cf954d736
Adware-Fenomen!237a39bb5983
Adware-Fenomen!a5f58b083de8
Adware-TryMedia!b3d44cad16f1
Adware-Fenomen!52f403627ae7
Adware-Fenomen!d6ad5fb0739e
Adware-Fenomen!1e212b000302
Adware-Fenomen!8f8389edc606
Adware-Fenomen!1b701cfe45d6
Adware-Fenomen!c06c0673c875
Adware-TryMedia!03b0142c3034
Adware-TryMedia!044610f5db52
Adware-Fenomen!0b7ed9096c91
Adware-TryMedia!141553d70483
Adware-TryMedia!15e5f6dbf8e1
Adware-Fenomen!19d66fb36a79
Adware-TryMedia!262762482dca
Adware-TryMedia!3d6a884f1632
Adware-Fenomen!4e2cc295f951
Adware-Fenomen!6ac857d01678
Adware-TryMedia!ae15b636b04b
Adware-TryMedia!d973015fed49
Adware-Fenomen!da52b7b8d5c9
Adware-TryMedia!1ae39c825378
Adware-Fenomen!1d3690a2b35a
Adware-Fenomen!1ebfdf5349c0
Adware-Fenomen!382fdcaa5e02
Adware-Fenomen!4a01a9e555c8
Adware-Fenomen!51fd3a3ec1c7
Adware-TryMedia!6350cf8caac2
Adware-TryMedia!74bc35d27ec9
Adware-Fenomen!7a74ad4a58a5
Adware-TryMedia!e01e236b01d0
Adware-Fenomen!5e85350ca818
Adware-TryMedia!bfb366accca9
Adware-TryMedia!c19fe08291e4
Adware-Fenomen!c13842b3751e
Adware-Fenomen!c221236ee8cf
Adware-Fenomen!c4691562c888
Adware-TryMedia!ea4418e6456f
Adware-Fenomen!5b0917e39006
Adware-Fenomen!cadb4edc15f9
Adware-Fenomen!e67d89f0bf58
Adware-TryMedia!69f9ed1b433f
Adware-Fenomen!a4441e6b2c08
Adware-TryMedia!7482a2ffdc2b
Adware-TryMedia!cace0073b4f0
Adware-Fenomen!c16b81d760f1
Adware-Fenomen!9bd75390e940
Adware-Fenomen!e8eaafd962c5
Adware-TryMedia!f2b7e8cf1ba6
Adware-Fenomen!e59996e45931
Adware-Fenomen!ca078fc12f51
Adware-Fenomen!a4ddf764a6e8
Generic (1)
Adware-Cinmus.gen.l
Trojan (187)
(16)
Generic Dropper.dn!a
Generic Downloader.x!ep
Generic Downloader.x!es
Generic Downloader.x!er
Generic.dx!hz
Generic PWS.y!br
Generic PWS.y!bq
Generic.dx!hw
Generic.dx!hx
VB-BackDoor.a!a
Generic.dx!hy
Generic Downloader.x!eq
Generic Downloader.x!en
Generic.dx!ia
Generic BackDoor.ah!a
Generic FakeAlert!a
- (92)
Generic Dropper.fl!e7425915b97a
Hatigh!04f919b3e984
Generic.dx!cc79641a0420
Spy-Agent.cv!e24cc1038949
BackDoor-DVF!785778a6ed89
BackDoor-CEP.svr!44cc295be440
FakeAlert-WinwebSecurity.a!46567314e2b2
Generic.dx!ha!dfe1f9705659
Generic FakeAlert.k!6268e9a1ba7e
Spy-Agent.dt!9de8b89946fc
Generic Dropper.eb!75964db176a9
Generic Dropper.eb!8192443699a5
Generic Dropper.eb!114dff2508bc
Generic Dropper.eb!2c0ac585e689
Generic FakeAlert.o!26a3d3302c61
Generic FakeAlert.o!c9b976cb4224
Generic Dropper.eb!8cdb48640898
BackDoor-CEP.svr!ce658cb76039
Backdoor-CEP.gen.p!8d97fc3bc405
Generic packed!3ab250525f4f
Generic MSVC.h!7504b85bc68e
Generic Dropper.eb!19e175af5667
FakeAlert-DX!226664bbeb11
BackDoor-AWQ.svr.gen.e!8df3c3ac65ef
BackDoor-AWQ.b!257d64765fdb
FakeAlert-CM!612640a9eb9d
Generic Dropper.eb!726d21fec38d
Generic.dx!647bdb9a2a8d
BackDoor-DSS.gen.a!1e9cbf16c690
FakeAlert-CM!8c13208e76c8
Generic.dx!cq!427cd9c08253
Generic MSVC.h!8df17bb932b3
Generic Dropper.ee!ce60c397c30b
Generic Dropper.ee!dbcf9432204c
FakeAlert-CM!2f3e12d21573
Generic.dx!fe!77cdb940d798
Generic.dx!dw!7050097f0af2
Generic Dropper.cx!43ee495b8eac
FakeAlert-CM!9b4c24b38154
Backdoor-CEP.gen.p!abad333c9098
Generic.dx!dl!7f5d8f2e9d97
BackDoor-CGX.svr!fb415c40da7c
BackDoor-AWQ.b!23fac89d95a0
Generic MSVC.h!fab599d0f9cb
Ilomo.a!6aa10786d366
Generic Dropper.ee!df7ef80e8f69
Generic Dropper.ee!0c3ff83589f9
Generic Dropper.ee!c9cc67e0402a
Generic Dropper.eb!a270749bc33d
AdClicker-HF!3d251ac3e3cb
Generic Dropper.ee!eeeb91f319a9
BackDoor-AWQ.svr.gen.e!27246e0f494e
Generic Dropper.ee!d42ef157d21c
Generic Dropper.ee!e5aa264611a8
Generic Dropper.ee!e195b0dda6c1
Generic.dx!n!5210d61c4072
BackDoor-DWM!e4c2a34ee9a6
Generic Dropper.ee!c416fbd4d8e5
Generic.dx!3312beffedc6
Generic Dropper.ee!07c4d5ac18c9
Generic Dropper.ee!d63050656ac7
Generic BackDoor!ba!bad2a9836114
Generic Rootkit.d!79824e0bc6f3
Generic.dx!fd!cb849656e7c8
BackDoor-AWQ.b!10e63854a5b7
Generic Dropper.ee!d6efe1f5e82e
Generic Dropper.ee!e415222d77e8
Generic Dropper.ee!e2ad534f33a9
FakeAlert-WinwebSecurity.a!62051b148188
Generic.dx!do!a7212cbb3742
Generic Dropper.ee!e64c65c8a924
Generic Dropper!bg!222282d2dd50
Generic Dropper.ee!c43312db2474
Generic Dropper.ee!eea859da042b
Generic Dropper!e!9aae094f7cfc
FakeAlert-WinwebSecurity.a!1f81dd6c4c9e
Generic Dropper.cx!52b9543483eb
Ilomo.a!f2b97600a00e
Generic.dx!f947e839a8bc
DNSChanger!l!74ff4909ea80
Generic Dropper.eb!019abbb3067c
FakeAlert-WinwebSecurity.a!0464ddc47705
Generic Dropper.fs!0ef01f986d0d
BackDoor-SO!0e82da8c7fd1
Generic Dropper.em!2e53810206f5
Generic Dropper.eb!27190099a1be
Generic Dropper.eb!5aa3ceddeeec
BackDoor-DUG!7a0adb25a82b
BackDoor-AWQ.b!810628d421b4
FakeAlert-CM!a985ba618895
Vundo.gen.av!f023cbe5a1fe
Spy-Agent.cj.gen.t!e0259393d432
Dialer (1)
Generic Dialer!a!6650ef1f6653
Downloader (30)
Downloader-BQT
Downloader-BQS
Downloader-BPJ!66e15428d2a8
Downloader-BGM!c2a3ef4ee1d3
Downloader-BOI!5fd38dee24c9
Downloader-BOI!5b3bc1bdf428
Downloader-BOI!56ec13f6784b
Downloader-BPJ!43fd65311463
Downloader-BOI!7aa8270bdf63
Downloader-BOI!9848ff28e6f1
Downloader-BOI!43fff508a5dc
Downloader-BOI!2f84724a9604
Downloader-BCM!b7f2a67f8d24
Downloader-BPJ!b9658b83e2ec
Downloader-BOI!a87a1e38fe40
Generic Downloader.k!c0060d862bb8
Generic Downloader.x!bv!ecdb51543b94
Downloader-MP!4a3c5a05b0a5
Downloader-BPJ!e89dd86a765d
Generic Downloader.x!ei!dd20fc44834c
Downloader-BPJ!b344d1beea96
Generic Downloader.x!bw!add2907cb103
Downloader-AZN!16ed4fc3db99
Downloader-AZN!353073d41b99
Generic Downloader.x!el!f0c396a0dcae
Downloader-BPJ!baa5371cb9a2
Downloader-BPJ!06365aed3260
Downloader-BPJ!7e2279320d8c
Downloader-BPJ!c480236e19af
Downloader-BOI!3331ba3682a5
Dropper (4)
Generic.dx!dr!48a63d2a4ae0
BackDoor-DRV.dr!a3acf7ed6379
BackDoor-CKB.dr!75735d95e4f9
BackDoor-CZP.dr!a0bd0cc6723b
Exploit (8)
Exploit-CVE2009-1140
Exploit-CVE2009-1122
Exploit-CVE2009-0561
Exploit-CVE2009-0557
Exploit-CVE2009-1533
Exploit-CVE2009-1134
Exploit-CVE2009-0558
Exploit-CVE2009-0549
Generic (5)
FakeAlert-AntiVirusPro.gen.c
BackDoor-CEP.gen.o
Generic Dropper.gi.gen!0234a3562298
DNSChanger.gen!7c014b54bb0e
BackDoor-AWQ.b.gen!cd69c3960931
Password (11)
PWS-Mmorpg.gen!79d1992b3377
Generic PWS.y!h!45d44cb782b2
PWS-OnlineGames.ed!bdfd0e5eee32
PWS-OnlineGames.ed!fc5a6c4fb90e
Generic PWS.y!bb!81f9ed75e315
PWS-Mmorpg!p!4b1328bdc401
PWS-Progent!8ee24b82a95b
PWS-OnlineGames.ef!c4f791376d90
PWS-Mmorpg!r!4f0160a20a17
PWS-OnlineGames.ck!89c3bb6e379f
PWS-Mmorpg.b!47ef0c2b1c15
Password Stealer (8)
PWS-Banker!bs
PWS-Banker!bq
PWS-Banker!bp
PWS-Banker!bn
PWS-Banker!bm
PWS-IMThief.a!a
PWS-Banker!bo
PWS-Banker!bl
Remote Access (7)
BackDoor-AWQ.b!bf
BackDoor-DKU!a
BackDoor-DWP
BackDoor-AWQ.b!be
BackDoor-AAG!a
BackDoor-DWO
BackDoor-DUG.a
Win32 (5)
Generic PWS.ba
Generic FakeAlert!c
FakeAlert-EB
DNSChanger.ad
Generic Dropper.gh
Virus (33)
- (28)
W32/HLLP.Philis.ap!d70148a2ef56
W32/HLLP.Philis.ap!499f7ddcee62
W32/Sality.ac!e95a6c2534d7
W32/HLLP.Philis.ap!9669521d9c5a
W32/Autorun.worm.ev!50c4eafc7acb
W32/Jeefo!d6cf050e1d9b
W32/Virut.gen.a!efc695246249
W32/Azero.a!1e06172ca566
W32/Azero.a!5133509d8369
W32/Azero.a!14ac947eda66
W32/Virut.gen.a!c5395b98b7ec
W32/Azero.a!2015948d7216
W32/Checkout!a!cd89302ff375
W32/RAHack!607e8378d147
W32/HLLP.Philis.ap!7b35c24ed69c
W32/RAHack!a3e1bdbc57b7
W32/Span.a!5cc60f2a4a66
W32/HLLP.Philis.ap!1346a3b568b7
W32/Sality.gen.c!3d0cc6e5bf0d
W32/Spybot.worm!i!ebd7d7caadd8
W32/Virut.gen.a!d8591ac38c2d
W32/Sality.gen.c!21c020a3c848
W32/Pate.b!cc48e1593c06
W32/Fujacks.ak!31904e395458
W32/Fujacks.ak!0bf55de548ee
W32/Fujacks.ak!a9c1c15211e4
W32/Fujacks.ak!9483afea6185
W32/Fujacks.ak!bb839ea1a313
Win32 (1)
W32/Checkout!d
Worm (4)
W32/Autorun.worm!w
W32/Koobface.worm!8dad0eff03ab
W32/Koobface.worm!eaa808ec9bb4
W32/Koobface.worm!321e8a4c2362

Enhanced Detections:

Program (12)
(3)
Generic PUP.z!k
Freechal
Generic PUP.x!n
Adware (6)
Adware-Cinmus!f
Adware-WebSearch!c
Adware-Zeno!a
Adware-Cinmus
Adware-180SA!c
Adware-Cinmus!g
Application extension (1)
Adware-SurfSideKick.dll
Generic (1)
Adware-Cinmus.gen.k
Win32 (1)
Generic PUP.x!o
Trojan (110)
(32)
Generic Keylogger
Generic BackDoor!c
Generic Dialer!a
Generic BackDoor.k!a
Ransom!c
Generic BackDoor!j
Iroffer!a
Generic Proxy!a
Generic.dx!g
Generic Exploit!a
Generic Qhost!a
Generic.dx!f
Generic.dx!ew
Swizzor.c!a
Generic.dx!hl
Vundo!j
Generic PWS.y!bp
Generic Dropper!bu
Generic.dx!hu
Generic Downloader.x!el
Generic StartPage!f
Generic BackDoor!bw
Generic Dropper!bt
Generic Downloader.x!eh
Swizzor!bd
Puper!g
Generic Flooder!a
Generic BackDoor!f
Generic Downloader.x!d
Generic Del.x!a
DNSChanger!o
Generic PWS.y!bo
Application extension (1)
Keylog-Ardamax.dll!a
Configuration file (1)
Generic!atr
Damaged (1)
Exploit-PPT.h.dam
Downloader (4)
Downloader-BLE!a
Downloader-BAI!a
Downloader-AWM
PWS-Banker.dldr!a
Dropper (3)
FakeAlert-C.dr
Generic Dropper.p
Keylog-Perfect.dr!e
Exploit (4)
Exploit-PDF.d
Exploit-PPT.h
Exploit-ObscuredHtml
Exploit-MSWord.k
Generic (5)
JS/IFrame.gen
Exploit-PDF.i.gen
BackDoor-DKI.gen.v
BackDoor-DKI.gen.m
Exploit-PDF.b.gen
Keylogger (1)
Keylog-SClog!a
Malware Tool (1)
Spam-Mailbot!a
Password Stealer (12)
PWS-Gamania
PWS-Mmorpg!s
PWS-LDPinch!h
PWS-Cashgrabber!d
PWS-LDPinch!c
PWS-Lineage!a
PWS-JA!a
PWS-Banker.gen.h
PWS-Banker!bh
PWS-Banker!d
PWS-LDPinch.d!a
PWS-Banker.i!a
Remote Access (16)
Generic BackDoor
BackDoor-AWQ.b!z
Backdoor-CEP!h
BackDoor-EE!a
BackDoor-AWQ!a
BackDoor-AVW!a
BackDoor-BAC!a
BackDoor-CWA
BackDoor-CKB!a
BackDoor-CSN!a
BackDoor-CEP!o
Backdoor-CEP!q
BackDoor-CMQ!a
BackDoor-CEP!c
BackDoor-AWQ.b!e
BackDoor-CQN!a
Script (2)
JS/Redirector
Generic Downloader.z
Win31 (1)
Generic Downloader.z!1516DDBD
Win32 (26)
Generic Dropper.ge
FakeAlert-DB
Generic.dx!bu
FakeAlert-CM
ServU-Daemon!a
Generic BackDoor!d
Generic Dropper!c
Generic PWS.y!e
Generic Dropper!d
Generic VB.i
Generic FakeAlert.a
Generic FakeAlert.c
Generic Rootkit.d
Spy-Agent.bw
Generic Packed
Generic AdClicker.d
Hatigh
Generic.dx!ho
Generic Vb.r
FakeAlert-DS
DNSChanger!l
Generic Downloader.x!c
Puper!c
Generic Downloader.x!e
Generic StartPage!c
Generic Dropper.eh
Virus (23)
Email (2)
W32/Rontokbro@MM!a
W32/Xirtem@MM!6DA1
Macro (1)
X97M/Generic
Script (1)
VBS/IE-Title
Win32 (6)
W32/Koobface.worm
W32/Conficker!a
W32/Zhelatin!a
W32/Checkout!a
W32/Akbot!a
W32/RAHack!a
Worm (13)
W32/Xirtem@MM
W32/MoFei.worm!a
W32/Spybot.worm!i
W32/Sdbot.worm!c
W32/Autorun.worm.by
Bat/Autorun.worm.zr
W32/Autorun.worm.g!0BE8F32E
W32/Autorun.worm.g
W32/Sdbot.worm!be
W32/Autorun.worm!u
W32/Autorun.worm!c
W32/Nirbot.worm!a
W32/Sdbot.worm!f