Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

Latest Update
DAT Version 5744
DAT Release Date 09/17/2009
Threats Detected 564331
New Detections 502
Enhanced Detections 140

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
FakeAlert-HP Low-Profiled Low-Profiled

New Detections:

Program (7)
- (3)
Generic PUP.z!y!91c92fafa1c3
GameVance!e45565052c4e
GameVance!71b17e9a3771
Adware (3)
Adware-abetterintrnt!a3d17cedd1a0
Adware-OptServe!c69285034654
Adware-TryMedia!f573975d77c9
Dialer (1)
Dialer-RAS.at.gen!77abef378ab6
Trojan (233)
(16)
Generic PWS.y!xz
Generic.dx!fft
Generic.dx!ffr
Generic.dx!ffo
Generic.dx!ffn
Generic.dx!ffv
FakeAlert-HU!a
Generic.dx!ffp
Generic.dx!ffq
Generic Downloader.x!bhl
Generic.dx!ffm
Vundo!df
Generic PWS.y!xy
Generic Downloader.es
Generic.dx!ffs
Generic.dx!ffu
- (177)
DNSChanger!g!d42ba5167377
DNSChanger!e!85290d98cf8f
DNSChanger!g!d2819c81ed79
BackDoor-CEP!3307d145773c
DNSChanger.p!b7deffa660e3
DNSChanger!c!b4fd36160e2d
DNSChanger!e!dd83a2106147
DNSChanger!h!f1307e41800e
Spy-Agent.cv!a1fe8f3b92ed
BackDoor-AWQ!56c4afb9ae7a
Generic.dx!hv.ah!2465873d2d7a
DNSChanger!q!63647d15e354
Generic Dropper!bc!ddf73c926ca5
Generic Dropper!y!e64a79e5d395
Generic Dropper!o!e787c6d34790
DNSChanger!n!34486195da37
DNSChanger!l!3e6d2126e5b6
DNSChanger!o!980defa4a2f0
DNSChanger!c!0e7870f44ed4
DNSChanger!g!0b9842724597
DNSChanger!f!0550109e2bb6
DNSChanger!g!20ce1b069377
DNSChanger!f!49a30e19f271
DNSChanger!c!72a6a5596550
DNSChanger!g!a1fd119ccb0f
Generic.dx!cfbaf99a26ba
Generic Dropper!b4221d85c257
Generic.dx!hv.ah!c492324a8ea3
Generic Dropper!p!fcbe677b2957
DNSChanger!r!15805b0f01f0
DNSChanger!l!16487a37b581
Generic VB.be!64d566908cb2
DNSChanger!n!5c0daaafad76
BackDoor-ARR!96dadf7f609d
DNSChanger!n!84eba3b0cacb
DNSChanger!r!919cff96b766
DNSChanger.p!a51a8b6789dc
DNSChanger!l!94f0b12f7025
DNSChanger!q!bcf2a9725174
DNSChanger!l!648709da05e0
Generic Dropper!mm!433f6bf89345
DNSChanger!l!67e1517797e2
DNSChanger!l!d86054cbd667
DNSChanger!l!ddbfb15a854f
DNSChanger!l!e362218c3e97
DNSChanger!e!144ac1d10532
DNSChanger!g!297240558876
DNSChanger!j!2bce409718a8
DNSChanger!f!39cb698165ff
DNSChanger!c!93a187f75847
DNSChanger!f!90a98b26b651
DNSChanger!g!dcb5fc355de8
Spy-Agent.cj.gen.x!fdc927a32c8b
Spy-Agent.bf!a!f0b54d8accba
Generic Malware.ek!98dde9cab9da
DNSChanger!c!4180c1b5530f
DNSChanger!e!b565cefc6af4
Swizzor.gen.c!a3d582244718
Generic.dx!cqm!d726b52fc980
Generic Dropper.id!3ac2a3d9732d
Generic Dropper.fh!40a71b1017a8
Generic Dropper!r!41af5aca496c
Generic Dropper!o!4ebe4f31c40d
Generic Dropper.fh!51e5023b2a6a
Generic VB.z!88dadcd53f86
Generic Dropper!v!99ae51c8d95d
Generic Dropper.fn!d4059c97055a
Ilomo.a!d4441bd2e107
Generic Dropper!m!d8681bb23913
Generic Dropper!l!f5d0f4346f50
Generic Dropper.fn!9fae5dfd507e
Generic Dropper!t!b1ef50e6f703
Generic Dropper!bd!c10d94a17bbf
Generic Dropper!p!c2ba39c1cf61
Generic Dropper!m!db40108faf8b
Generic Dropper!v!ee6b8d9a2bb0
Generic Dropper.ey!ed87106b64a3
Generic Dropper!v!f8b59cc9e9f0
DNSChanger!n!bf0457673f21
DNSChanger!k!8a38265c0d34
Generic.dx!fdb7c3eef8dd
Generic Dropper!be!a6298431839b
Generic Dropper!o!aff1a8f79cbc
Generic BackDoor.b!10dcb58f3d45
Generic Dropper.fi!f35f15300f11
DNSChanger!q!bbc7cb49fe6e
DNSChanger!l!bec133b51390
Generic Dropper.hr!d0af9d81088c
Generic Dropper!bp!d19a17b3f254
Generic Dropper.gv!d1b57dc66a56
Generic Dropper!bd!d7f815071b53
Generic Dropper!bv!e06b4aa2c66b
Generic Dropper!ci!fc13985319fc
Generic Dropper.eb!b2c0757d41bc
Generic Dropper!w!0226fd721554
Generic Dropper!t!120f34d90520
Generic Dropper.fi!0b48503cda36
Generic Dropper!s!1a136583c33f
Generic Dropper.fi!39137bb87a21
Generic Dropper!bd!3e9730b4c70b
Generic Dropper!bd!45c79808adb5
Generic.dx!hv.b!7c1955af5725
Generic Dropper.cx!a!4cbabc89ae52
Generic Dropper!q!5e159effe72c
Generic VB.i!826cd466f4af
Generic Dropper!t!83c0a4c260ed
Generic Dropper!r!b277d2852fb4
Generic Dropper!r!b7331347c2c7
BackDoor-EDY!105bf3a9e495
Generic Dropper!t!4cf4e0af12d2
BackDoor-AVW!7df09761adc7
Generic Dropper!v!758bfb7c41d2
Generic Dropper!n!7ed07a335a2a
Generic Dropper!n!853a4e6957b7
FakeAlert-EG!9014b47bdbc3
Generic Dropper.ey!9fe43be3dc91
Generic Dropper!su!3a96e2c81dfe
Generic Dropper!q!bae5f09ee994
Generic.dx!cpb!2eb09a2286da
Generic Dropper!v!f7965cade11a
Generic Dropper!bd!f99cde9aa8e1
Generic Dropper!d!fdeb6914eced
Generic Dropper.p!6ce0cb5d6eac
Generic BackDoor.ah!75dabcf50109
Generic Dropper!bh!794a92c11a1a
Generic VB.z!7d0b767f9e2b
Generic Dropper!bk!9e8e04d85805
Puper!0002ffb72fcb
FakeAlert-CB!05e583833810
Generic Dropper!bj!cde14f48fa3d
Spy-Agent.cj.gen.w!90883b303364
Generic Dropper.id!8da955c9c6f4
Generic Dropper!bj!b492ba6b7151
Generic Dropper.kr!b8eee14ad7ed
Generic Dropper!cf!bcc7b7da76a4
Generic Dropper!bp!c5087d33211e
Generic Dropper!bp!d3c315d6e421
BackDoor-DKI.gen.ai!f52238df2575
Generic.dx!cpb!568797ef5b3b
Generic Dropper!r!1364254834f0
Generic Dropper!d!13e8332774a9
Ilomo.a!9dfc4c1f904d
Vundo.gen.m!70c18e9346a0
BackDoor-CMQ!a!55925feb1d9d
Generic Dropper!bi!a4c530c43c7f
Generic Dropper!bi!d8b7a8934229
Generic Dropper!cf!e3dd0a747d11
Generic Dropper!v!00193b8b97a4
Generic Dropper!bi!d97c1b28fd48
Generic Dropper.eb!a!0b37c3fe8b25
Generic VB.i!2580fd64f9fc
FakeAlert-CB!01af5540ae28
Generic Dropper!bz!ddaa46b7d215
Generic Dropper!by!e372b77ac206
Generic Dropper!u!2d6512d35c67
Generic Dropper!cf!586ecee2acd6
Generic Dropper!g!5d3d3022d4d1
Generic VB.z!5df17b748128
Ilomo.a!7581d102be12
Generic Dropper!bu!819475563695
BackDoor-DSE!b053622ed74a
Generic Dropper!cf!50a9756efb34
Generic Dropper!bv!532c6a6990d3
Generic Dropper!bk!5a1d4c8b0ee3
Generic Dropper!bj!732c3d1ca2c7
Generic Dropper!cf!af9e36bdffb5
Generic FakeAlert!bd!d00976494436
Generic Dropper!bk!71330632c3bf
Generic Dropper!cf!77031369af7b
Generic Dropper!bl!771613bd358b
Generic Dropper.bw!34edb5305a01
Generic Dropper!bk!f8120c007a35
Generic Dropper.fh!03249bb01d49
Generic Dropper!y!126b83f64b95
Adclicker-GW!3fe6fb28ff48
Generic Dropper.gw!5762d4a0071f
Generic Dropper!r!6a055210060f
Downloader (8)
Generic Downloader.x!rm!70c1f0e4460f
Downloader.gen.a!8cbadf6a7727
Generic Downloader.x!3d4bc7907bfb
Generic Downloader.x!dz!066ffdf84061
Downloader-BVR
Downloader-BVQ
Generic Downloader.x!bf!69406310755c
Downloader-BON!008543b38d13
Dropper multipartite (4)
MultiDropper-TD!06a30de1d308
MultiDropper-TD!e4da317d5a4b
MultiDropper-TD!08660ca64edf
MultiDropper-TD!3411d047f190
Generic (2)
BackDoor-EBI.gen!e465436b1e09
Boaxxe.gen.a
Password (6)
PWS-QQPass.gen.k!996a6db5c4ac
PWS-Banker!61eed852ca48
PWS-Mmorpg!c!d43ba3b322aa
PWS-OnlineGames.fc!8d8a657a824a
PWS-OnlineGames.cw!605c2b7c70e5
PWS-OnlineGames.ed!c2b5c8e7ab72
Password Stealer (4)
PWS-Banker!buy
PWS-Banker!bux
PWS-Banker!bva
PWS-Banker!buz
PDA Device (6)
J2ME/Redbrowser.E
J2ME/Xanel.B
J2ME/Konov.C
J2ME/Konov.D
J2ME/Hoaxer.B
J2ME/Hoaxer.C
Remote Access (2)
BackDoor-AWQ.b!bmd
BackDoor-AWQ.b!bmc
Spam (1)
Spam-Mailbot.l!91a14d93cfbd
Spyware (1)
FakeAlert-SpywareProtect!ebe9f8d94da3
Win32 (5)
FakeAlert-HP
Generic Downloader.er
Ilomo.c
Generic VB.bl
FakeAlert-IQ
Word document (1)
BackDoor-DOC!37ea745cfe4a
Virus (21)
- (14)
W32/MumaWow.d!inf!9b5fcab46b33
W32/Virut.gen.a!a3d3285d1aa4
W32/Virut.n!075c5e32f616
W32/Valla.a!9c9268592d3c
W32/Virut.n!a99b68b3c0e3
W32/Virut.n!44a31651b365
W32/Virut.n!b9c4fcbb27f1
W32/Sdbot.worm!eh!75ccea4f6202
W32/Autorun.worm.fi!e34b8ef5001c
W32/RAHack!8f25f2071eed
W32/Virut.n!af008ad527b5
W32/Azero.a!2d2e4cef7cd9
W32/Conficker.worm.gen.a!7bda31e6cce3
W32/Koobface.worm.gen.i!97fa7594799e
Generic (4)
W32/Virut.n.gen!a3b8549b65f7
W32/Sality.gen!9c5b638f7b10
W32/Sality.gen!87c034aa1154
W32/Kasurep.gen.a
Win32 (3)
W32/Induc!eo
W32/Induc!en
Alisa.d

Enhanced Detections:

Internet Worm (1)
Internet Relay Chat (1)
W32/Sdbot.worm!811a7027
Program (25)
(7)
VSource
VObj17
VText.8a
VSource/novo
SquareTrade.lnk
VMag4
Generic PUP.z!e
Adware (4)
Adware-WinAd
Adware-PurityScan
Adware-EzUrl
Adware-Ncast!a
Downloader (1)
Adware-WinAd.dldr
Generic (2)
DeepDive.gen.b
DeepDive.gen
Malware Tool (4)
VTool/lia4
VTool/brain
HTool/ownage
VTool/arm3
Password (1)
PWCrack-PWDump
Script (3)
Tool/fmt21
Tool/cln
Tool/fmt26
Spyware (1)
Spyware-WebHancer!c
Tool (1)
Tool-PWRecover
Win32 (1)
Virtual Bouncer
Trojan (88)
(20)
Generic FakeAlert.b
HideWindow!c
Generic Downloader.ap
Generic Rootkit.e
FakeAlert-EQ
Vundo!db
Generic.dx!ve
Generic PWS.y!xv
Generic Downloader.x!bhd
Lifewire
Spy-Agent!a
Gator
Generic.dx!lp
Winfixer!a
Generic FakeAlert.b!5CED
Generic.dx!ffi
Generic.dx!ffj
Generic.dx!ffb
Generic Dropper!bbu
Generic PWS.y!xu
Application extension (4)
Spy-Hiddukel.dll
StartPage-DU.dll
CoreFlood.dll
BackDoor-EDR.dll
Application extension Generi (1)
CoreFlood.dll.gen
Client (1)
JV/BackDoor-KBD.cli
Configuration file (1)
Generic!atr
Configuration settings (1)
W32/MsInit.ini
Demonstration (1)
Exploit-IframeBO.demo
Disk erasing (1)
QZap365
Downloader (5)
Generic VB.b!e3cf12
StartPage-BN.dldr
Generic FakeAlert.b!50a07926
Downloader-BAI!M711
Downloader-BLV
Dropper (3)
PWS-Hooker.dr
Keylog-ColSpy.dr
PWS-Kadun.dr
Dropper Generic (1)
CoreFlood.dr.gen
Exploit (3)
Exploit-IFrame
JS/Exploit-BO
Exploit-IframeBO!shellcode
Generic (5)
Exploit-URLSpoof.gen
BackDoor-CEP.gen.h
JS/Exploit.gen
Exploit-PDF.q.gen!stream
Exploit-BaoFeng.a.gen
Heuristic (3)
New Malware.j
New Malware.k
New Malware.jw
Keylogger (2)
Keylog-SClog!a
Keylog-ColSpy
Password Stealer (7)
PWS-Lineage!f
PWS-OnlineGames.fx
PWS-Takeabyte
PWS-QQRob!hosts
PWS-Banker!c
PWS-Banker!buw
PWS-Banker!bsp
ProcKill (1)
ProcKill-ER
Proxy (1)
Proxy-Piky!a
Remote Access (3)
BackDoor-EE!a
BackDoor-CZP
BackDoor-CDC!a
Script (12)
Killpar.c.bat
Bat/qd233
Bat/qd295
Bat/qz161
Bat/qd304
Bat/qd101
Bat/adm4
Bat/gogo
Bat/qz86
Bat/mkd26
Bat/badcom
Bat/dt136
Spyware (1)
Keylog-SCLog
Win32 (11)
Busky
FakeAlert-DI
FakeAlert-HD
Spy-Buddy
QUrl-2
Generic Dropper.eb
FakeAlert-FA
Generic Dropper.hn
Generic VB.bk
FakeAlert-IO
FakeAlert-IM
Virus (25)
(3)
HLL.sub.TPPE
HLLT.4701
Generic!Artemis
Configuration settings (1)
W32/Morb.ini
Email (1)
W32/Rontokbro@MM!c
Email Generic (1)
W32/Dumaru.gen@MM
File Infector (1)
HLLP.9520
Generic (1)
W32/Mash.gen
Generic Worm (2)
W32/Autorun.worm.gen
W32/Sdbot.worm.gen.ca
HTML document (1)
W32/Morb.html
Parasitic (1)
HLLP.9687
Script (5)
Univ.bat/a
Univ.script/99c
Univ.script/99b
Univ.script/99a
Bat/mykl
Win32 (3)
W32/Madangel.a
W32/Madangel.b
W32/Giframer
Worm (5)
W32/Foldnoci.worm
W32/Kelvir.worm!a
W32/Mariofev.worm
W32/Foldnoci.worm!ini
Bat/Hobat.worm
Vulnerability (1)
Exploit (1)
Exploit-IframeBO