Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version 4474
DAT Release Date 04/21/2005
Threats Detected 123795
New Detections 34
Enhanced Detections 154

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name Corporate Risk Assessment Home Risk Assessment
There are no noteworthy threats in this release

New Detections:

Trojan (8)
   (2)
    Generic QLowZones.b
    Generic PWS.q
  Dialer (1)
    QDial-31
  Downloader (1)
    Downloader-ZP
  Exploit (1)
    VBS/Exploit-Phel
  Generic (1)
    Downloader-ZO.gen
  Win32 (2)
    QReg-12
    QLowZones-17
Virus (26)
  Dropper (1)
    W32/Darro.dr.b
  Email (7)
    W32/Mytob.ad@MM
    W32/Mytob.ah@MM
    W32/Mytob.af@MM
    W32/Mugly.l@MM
    W32/Mugly.k@MM
    W32/Netsky.ad@MM!zip
    W32/Mytob.ag@MM
  Generic (1)
    W32/Darro.gen
  Generic Worm (15)
    W32/Sdbot.worm.gen.bf
    W32/Sdbot.worm.gen.bd
    W32/Gaobot.worm.gen.bc
    W32/Sdbot.worm.gen.bb
    W32/Gaobot.worm.gen.bw
    W32/Sdbot.worm.gen.bh
    W32/Sdbot.worm.gen.bi
    W32/Sdbot.worm.gen.by
    W32/Sdbot.worm.gen.bj
    W32/Gaobot.worm.gen.be
    W32/Gaobot.worm.gen.ba
    W32/Sdbot.worm.gen.bw
    W32/Gaobot.worm.gen.bh
    W32/Gaobot.worm.gen.bi
    W32/Gaobot.worm.gen.by
  Worm (2)
    W32/Kelvir.worm.aj
    W32/Kelvir.worm.ai

Enhanced Detections:

Internet Worm (2)
  E-mail (1)
    W32/Bagle.gen@MM
  P2P Worm (1)
    W32/Gool.worm
Program (4)
  - (1)
    Iroffer
  Password (1)
    Keylog-Hoddle
  Tool (1)
    VTool/Sharpei
  Win32 (1)
    W32/Sdbot!cleanup
Trojan (42)
   (2)
    Generic BackDoor.d
    QLowZones-4
  - (2)
    W32/Bagle.dll.dr
    W32/Bagle.bo
  Application extension (2)
    W32/Dumaru.dll
    BackDoor-AZX.dll
  Downloader (6)
    Downloader-DC
    Downloader-IQ
    Downloader-VG
    Downloader-WX
    W32/Bagle.br
    QLowZones-4.dldr
  Downloader Generic (1)
    W32/Bagle.dldr
  Dropper Generic (1)
    StartPage-AI.gen.dr
  Exploit (1)
    Exploit-ByteVerify
  Flooder (1)
    FDoS-Codalu
  Generic (2)
    StartPage-AI.gen
    PWS-Banker.gen.g
  Password (2)
    PWS-LegMir
    BackDoor-AQO
  Password Stealer (1)
    PWS-Vipgsm
  Proxy (2)
    Proxy-Sysgam
    Proxy-Agent.c
  Remote Access (7)
    Backdoor-TW
    BackDoor-AVW
    BackDoor-CCT
    BackDoor-AZZ
    BackDoor-CQR
    BackDoor-CQZ
    BackDoor-CKA
  StartPage (1)
    StartPage-AY
  Win32 (11)
    Generic VB
    Generic Downloader.a
    HackerDefender
    Generic Del
    Generic PWS.o
    Generic QLowZones.a
    Generic BackDoor.u
    Generic Downloader.ab
    Generic VB.c
    DDoS-Boxed
    Generic Downloader.e
Virus (106)
  - (1)
    W32/Bagle.bc@MM
  Client Worm (1)
    W32/Gool.worm.cli
  Configurator Worm (1)
    W32/Gool.worm.cfg
  Damaged (1)
    W32/Mytob.dam
  Damaged Worm (3)
    W32/Spybot.worm.dam
    W32/Gaobot.worm.dam
    W32/Sdbot.worm.dam
  Dropper Worm (1)
    W32/Gool.worm.dr
  E-mail (7)
    W32/Bagle.bj@MM
    W32/Bagle.aq@MM
    W32/Bagle.bn@MM
    W32/Mugly.a@MM
    W32/Mugly.b@MM
    W32/Bagle.ai@MM
    W32/Mugly.d@MM
  E-mail worm (7)
    W32/Bagle.bk@MM
    W32/Bagle.bl@MM
    W32/Bagle.bg@MM
    W32/Bagle.bb@mm
    W32/Bagle.bd@MM
    W32/Bagle.ag@MM
    W32/Bagle.ae@MM
  Email (40)
    W32/Plex@MM
    W32/Netsky.q@MM!zip
    W32/Netsky.n@MM!zip
    W32/Netsky.b@MM!zip
    W32/Netsky.p@MM!zip
    W32/Netsky.c@MM!zip
    W32/Netsky.a@MM!zip
    W32/Netsky.z@MM!zip
    W32/Mytob.p@MM
    W32/Mytob.i@MM
    W32/Mytob.k@MM
    W32/Mytob.r@MM
    W32/Mytob.e@MM
    W32/Mytob.c@MM
    W32/Mytob.m@MM
    W32/Mytob.g@MM
    W32/Mytob.q@MM
    W32/Mytob.h@MM
    W32/Mytob.j@MM
    W32/Mytob.l@MM
    W32/Mytob.o@MM
    W32/Mytob.n@MM
    W32/Mytob.f@MM
    W32/Mytob.d@MM
    W32/Mytob.v@MM
    W32/Mytob.u@MM
    W32/Mytob.t@MM
    W32/Mytob.x@MM
    W32/Mytob.w@MM
    W32/Mytob.y@MM
    W32/Mytob.ab@MM
    W32/Mugly.j@MM
    W32/Mytob.aa@MM
    W32/Mytob.z@MM
    W32/Netsky.ai@MM!zip
    W32/Netsky.ag@MM!zip
    W32/Mugly.g@MM
    W32/Mugly.f@MM
    W32/Mugly.h@MM
    W32/Bagle.az@MM
  Email Generic (1)
    W32/Mytob.gen@MM
  Email Worm (1)
    W32/Mugly.i@MM
  Generic (1)
    W32/FunLove.gen
  Generic Worm (17)
    W32/Sdbot.worm.gen
    W32/Spybot.worm.gen.e
    W32/Gaobot.worm.gen.e
    W32/Sdbot.worm.gen.w
    W32/Gool.worm.gen
    W32/Spybot.worm.gen.f
    W32/Gaobot.worm.gen.j
    W32/Sdbot.worm.gen.j
    W32/Sdbot.worm.gen.h
    W32/Sdbot.worm.gen.g
    W32/Kelvir.worm.gen
    W32/Gaobot.worm.gen.t
    W32/Tufik.worm.gen
    W32/Sdbot.worm.gen.y
    W32/Sdbot.worm.gen.z
    W32/Sdbot.worm.gen.t
    W32/Sdbot.worm.gen.q
  Internet Worm (2)
    W32/Kelvir.worm.f
    W32/Gaobot.worm.gen.q
  mIRC Worm (1)
    W32/Protoride.worm
  Script (2)
    W32/Redesi.bat
    W32/SirCam.bat
  Win32 (8)
    W32/FunLove
    W32/Bagle.bp
    Generic!Morphine
    W32/Bagle.bt
    W32/Bagle.ba
    W32/Generic.Delphi.a
    W32/Bagle.aw
    W32/Bagle.av
  Worm (11)
    W32/Dedler.worm
    W32/Kelvir.worm.e
    W32/Kelvir.worm.i
    W32/Mytob.worm!im
    W32/Kelvir.worm.o
    W32/Kelvir.worm.p
    W32/Kelvir.worm.l
    W32/Kelvir.worm.q
    W32/Kelvir.worm.w
    W32/Kelvir.worm.ac
    W32/Bagle.at@MM