Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4465
DAT Release Date 04/08/2005
Threats Detected 122036
New Detections 20
Enhanced Detections 167

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Program (1)
  Joke (1)
    Joke-Boredom
Trojan (12)
  Application extension (1)
    BackDoor-CQL.dll
  Dropper (1)
    MultiDropper-MV
  Exploit (1)
    Linux/Exploit-Race30
  Flooder (1)
    FDoS-Codalu
  Heuristic (1)
    New Malware.f
  Password (1)
    PWS-Banker.q
  Password Stealer (2)
    PWS-Banker.q!hosts
    PWS-Banker.r
  Remote Access (2)
    BackDoor-CQL
    BackDoor-CQK
  Win32 (2)
    Generic Dropper.i
    Generic Downloader.ab
Virus (7)
  Email (1)
    W32/Dreffort@MM
  Parasitic (1)
    W32/HLLP.Zakk.a
  Win32 (4)
    W32/Polybot.cr
    W32/Polybot.cp
    W32/Polybot.cq
    W32/NGVCK.a.1095
  Worm (1)
    W32/Kelvir.worm.t

Enhanced Detections:

Internet Worm (1)
  Worm (1)
    W32/Polybot.gen!irc
Program (1)
  Malware Tool (1)
    PWCrack-PassView
Trojan (36)
   (3)
    Generic.b3
    Generic.b2
    Generic.b
  Downloader (3)
    PWS-Banker.dldr
    Downloader-PS
    Downloader-LI
  Dropper (1)
    BackDoor-ASB.dr
  Exploit (4)
    Exploit-Sfind
    Exploit-ByteVerify
    Exploit-LoadImgAPI
    Exploit-ZIP
  Generic (3)
    Gaslide.gen
    BackDoor-BAC.gen
    PWS-Banker.gen.h
  Internet Relay Chat (2)
    IRC/Flood.au
    IRC/Flood.j
  Plugin component (1)
    BackDoor-AHB.plugin
  ProcKill (1)
    ProcKill-CK
  Proxy (1)
    Proxy-Piky
  Remote Access (7)
    BackDoor-ACH
    BackDoor-KL
    BackDoor-ASB
    BackDoor-UK
    BackDoor-COO
    BackDoor-CNV
    Generic BackDoor.m
  Script (1)
    ServU.bat
  Win32 (9)
    Generic BackDoor.b
    FURootkit
    Generic Downloader.s
    Generic PWS.o
    Generic BackDoor.u
    Generic VB.c
    Generic Packed
    Generic Downloader.f
    DDoS-Boxed
Virus (129)
  Damaged (1)
    W32/Polybot.dam
  Damaged Worm (1)
    W32/Sdbot.worm.dam
  Email (1)
    W32/Zellome@M
  Generic (2)
    W32/Poebot.gen
    W32/Dumaru.gen
  Generic Worm (16)
    W32/Sdbot.worm.gen
    W32/Sdbot.worm.gen.w
    W32/Spybot.worm.gen.f
    W32/Gaobot.worm.gen.j
    W32/Sdbot.worm.gen.l
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.i
    W32/Sdbot.worm.gen.x
    W32/Kelvir.worm.gen
    W32/Spybot.worm.gen.j
    W32/Spybot.worm.gen.o
    W32/Gaobot.worm.gen.t
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.t
    W32/Sdbot.worm.gen.q
  Internet Worm (5)
    W32/Sdbot.worm
    W32/Polybot.l!irc
    W32/Kelvir.worm.c
    W32/Kelvir.worm.b
    W32/Gaobot.worm.gen.q
  Parasitic (1)
    W32/HLLP.Zakk
  Plugin component (1)
    W32/Unis.plugin
  Win32 (90)
    W32/Polybot.bw
    W32/Polybot.bu
    W32/Polybot.bx
    W32/Polybot.bv
    W32/Polybot.bt
    W32/Polybot.ag
    W32/Polybot.v
    W32/Polybot.t
    W32/Polybot.s
    W32/Polybot.r
    W32/Polybot.q
    W32/Polybot.o
    W32/Polybot.n
    W32/Polybot.m
    W32/Polybot.k
    W32/Polybot.j
    W32/Polybot.i
    W32/Polybot.h
    W32/Polybot.g
    W32/Polybot.f
    W32/Polybot.e
    W32/Polybot.c
    W32/Polybot.a
    W32/Polybot.u
    W32/Polybot.d
    W32/Polybot.b
    W32/Polybot.ae
    W32/Polybot.ac
    W32/Polybot.aa
    W32/Polybot.y
    W32/Polybot.w
    W32/Polybot.ad
    W32/Polybot.ab
    W32/Polybot.z
    W32/Polybot.x
    W32/Polybot.af
    W32/Polybot.am
    W32/Polybot.aj
    W32/Polybot.an
    W32/Polybot.al
    W32/Polybot.ai
    W32/Polybot.cg
    W32/Polybot.cf
    W32/Polybot.cj
    W32/Polybot.ch
    W32/Polybot.cl
    W32/Polybot.ci
    Generic!Morphine
    W32/Polybot.cn
    W32/Polybot.co
    W32/Polybot.cb
    W32/Polybot.cm
    W32/Polybot.bz
    W32/Polybot.by
    W32/Polybot.cc
    W32/Generic.Delphi.c
    W32/Polybot.ce
    W32/Polybot.cd
    W32/Polybot.bs
    W32/Polybot.bo
    W32/Polybot.bn
    W32/Polybot.bm
    W32/Polybot.bl
    W32/Polybot.bk
    W32/Polybot.bf
    W32/Polybot.bq
    W32/Polybot.bp
    W32/Polybot.br
    W32/Polybot.bb
    W32/Polybot.ba
    W32/Polybot.bg
    W32/Polybot.be
    W32/Polybot.bd
    W32/Polybot.bc
    W32/Polybot.bh
    W32/Polybot.bj
    W32/Polybot.bi
    W32/Polybot.az
    W32/Polybot.ay
    W32/Polybot.ax
    W32/Polybot.ca
    W32/Polybot.av
    W32/Polybot.aw
    W32/Polybot.au
    W32/Polybot.as
    W32/Polybot.aq
    W32/Polybot.ao
    W32/Polybot.at
    W32/Polybot.ar
    W32/Polybot.ap
  Worm (11)
    W32/Kelvir.worm.d
    W32/Kelvir.worm.g
    W32/Kelvir.worm.k
    W32/Kelvir.worm.j
    W32/Kelvir.worm.a
    W32/Kelvir.worm.o
    W32/Kelvir.worm.n
    W32/Kelvir.worm.s
    W32/Kelvir.worm.l
    W32/Kelvir.worm.m
    W32/Sdbot.worm!ftp