Spyware, Viruses, & Security forum

General discussion

TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

An updated TrojanHunter ruleset is available. This update adds at least 69 new trojan definitions:

Agent.1107
DNSChanger.220
Durvil.101
Hupigon.627
Hupigon.626
IRC.Zapchast.164
IRC.Zapchast.163
Jupillites.100
Loony.109
Monitor.Perflogger.348
Monitor.Perflogger.347
Monitor.Perflogger.346
Monitor.Perflogger.345
Prosti.137
PWSteal.LdPinch.260
PWSteal.LdPinch.259
PWSteal.Maran.119
PWSteal.OnLineGames.181
PWSteal.OnLineGames.180
PWSteal.OnLineGames.179
Rbot.1344
Rbot.1343
Rbot.1342
Rbot.1341
Rbot.1340
SDBot.942
SDBot.941
TrojanDownloader.Agent.1027
TrojanDownloader.Agent.1026
TrojanDownloader.Banload.872
TrojanDownloader.Murlo.121
TrojanDownloader.Small.1134
TrojanDownloader.Small.1133
TrojanDownloader.Zlob.800
TrojanDownloader.Zlob.799
TrojanDropper.Small.297
TrojanProxy.Agent.236
TrojanSpy.Banker.1537
TrojanSpy.Banker.1536
TrojanSpy.Banker.1535
TrojanSpy.Banker.1534
TrojanSpy.Banker.1533
TrojanSpy.BZub.138
TrojanSpy.BZub.137
TrojanSpy.Goldun.235
Worm.Viking.196
Worm.Warezof.331
Rootkit.Agent.137
TrojanClicker.Costrat.126
TrojanDownloader.Agent.1025
TrojanDownloader.Agent.1024
TrojanDownloader.Agent.1023
TrojanDownloader.Banload.871
TrojanDownloader.Banload.870
TrojanDownloader.Delf.620
TrojanDownloader.Delf.619
TrojanDownloader.Small.1132
TrojanDownloader.Small.1131
TrojanDownloader.Tiny.187
TrojanDropper.Agent.428
TrojanSpy.Agent.278
TrojanSpy.Banbra.239
TrojanSpy.Banbra.238
TrojanSpy.Bancos.510
TrojanSpy.Bancos.509
TrojanSpy.Banker.1532
TrojanSpy.Banker.1531
ZlobDropper.594
ZlobDropper.593

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, also use LiveUpdate.

License holders without an ongoing subscription please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.


You should have 102755 rules
http://www.misec.net/forum/board/RulesetUpdates/1168997229

Discussion is locked
You are posting a reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Windows Defender Signature Update 1.14.2033.5

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Collapse -
NOD32 - 1984 (20070117)

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

2007-01-17 11:40
A97M/Exploit.MSJet (3), BAT/Kizbot.A, BAT/Kizbot.B, BAT/Kizbot.C, IRC/Nwwf.src, JS/DisEbay.A (2), JS/Exploit.CVE-2006-1359, JS/Exploit.HeapSpray.A, JS/Seeker.I, JS/TrojanDownloader.Tivso.Y, JS/Wonka.A, PHP/Nucledor.B, TrojanDropper.Kukudro.P, Unix/TrojanDownloader.SH.A, W97M/Exploit.CAN-2003-0347, W97M/Exploit.WordHlink.A, Win32/Dialer.CDDial, Win32/Exploit.MS06-005, Win32/Exploit.WMF.MetaSpoilt.A, Win32/Exploit.WMF.MetaSpoilt.B, Win32/Fujacks.W, Win32/IRCBot.VQ, Win32/PSW.Delf.UB (2), Win32/PSW.Lineage.AJP (4), Win32/PSW.Lineage.DN (2), Win32/Spy.Bancos.ZE, Win32/Spy.Banker.AWW, Win32/Spy.Banker.NSY (2), Win32/Spy.Banker.NSZ (2), Win32/TrojanDownloader.Agent.AWF, Win32/TrojanDownloader.Banload.BJU, Win32/TrojanDownloader.Banload.BRS (2), Win32/TrojanDownloader.Banload.NLX (2), Win32/TrojanDownloader.Zlob.APJ (4), Win32/TrojanDownloader.Zlob.APK (3), Win32/TrojanProxy.Agent.NBQ, Win32/TrojanProxy.Agent.NBR
http://www.eset.sk/podpora/aktualizacia-1984-20070117
http://www.eset.sk/en/support/update-xy1
Collapse -
NOD32 - 1985 (20070117)

In reply to: NOD32 - 1984 (20070117)

2007-01-17 16:55
ASP/Ace.P, BAT/Copybat.AP, BAT/DeltreeY.W, BAT/Downfall.A, BAT/FormatAll.M, BAT/Kizbot.A (2), BAT/Kizbot.B (2), BAT/Kizbot.C (2), HTML/Bayfraud.B, HTML/Exploit.IframeBof, HTML/Exploit.Mht.H, HTML/Exploit.Opera.A (2), HTML/Exploit.UploadT.A (2), HTML/PSW.YahooStealer.B, IRC/SdBot (2), JS/Exploit.CVE-2006-1359 (3), JS/Exploit.IFrame.ABM (3), JS/Exploit.OnLoad.A (5), JS/Exploit.OnLoad.C, JS/TrojanDownloader.Inor.F, JS/TrojanDownloader.Linker.O, JS/Wonka.A (2), REG/TCPParams.D, VBS/Birhip.A, VBS/Daya.A (2), VBS/Exploit.Phel.BE, VBS/Gavgent.A, VBS/Gedza.A, VBS/Gedza.B, VBS/LoveLetter.A, VBS/MaddHack.A, VBS/Modifier.A, VBS/Skowor.A, VBS/TrojanDownloader.Cacher.B, VBS/TrojanDownloader.Psyme.BH, VBS/TrojanDownloader.Small.CW, W97M/TrojanDropper.1Table.BQ (3), W97M/TrojanDropper.1Table.CM, Win32/Adware.SurfAccuracy, Win32/Agent.ABF (10), Win32/Agent.NBQ (3), Win32/Agent.NCO (2), Win32/Agent.NGB (2), Win32/BadJoke.Agent.E, Win32/Hupigon, Win32/PSW.Agent.NBN, Win32/PSW.Agent.NCC (2), Win32/PSW.VB.JZ (3), Win32/Rbot (2), Win32/Spy.Bancos.NFB, Win32/Spy.Banker.AWA, Win32/Spy.Banker.CEU (3), Win32/Spy.Banker.NTA (2), Win32/TrojanDownloader.Banload.BJU, Win32/TrojanDownloader.Banload.NLY (2), Win32/TrojanDownloader.Dadobra.FX, Win32/TrojanDownloader.Delf.NQJ, Win32/TrojanDownloader.Small.NRN (2), Win32/TrojanDownloader.Small.NRO, Win32/TrojanDownloader.Tiny.NBU, Win32/TrojanDownloader.Tiny.NCD, Win32/TrojanDownloader.VB.NIN (2), Win32/VB.NGJ (2), Win32/VB.NGK (2), Win32/VB.NGL (2), Win32/VB.NJE (4)
http://www.eset.sk/podpora/aktualizacia-1985-20070117
http://www.eset.sk/en/support/update-xy1
Collapse -
F-Prot 01/16/2007

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Virus Signature Files
For F-PROT Antivirus for Windows Version 6
o Virus Signature File (16th January 2007 )
Version 6 of F-PROT Antivirus can detect a total of 434298 worms, viruses and other malicious programs with its latest virus signature file. This number differs from that of other versions of F-PROT Antivirus due to differences in design and structure.
For All other Versions of F-PROT Antivirus
o Application/Script viruses and Trojans (16th January 2007 )
o Document/Office/Macro viruses (16th January 2007)
F-PROT Antivirus can detect a total of 368654 worms, viruses and other malicious programs with these latest virus signature files.
http://www.f-prot.com/products/currentversions.html
http://www.f-prot.com/download/signaturefiles.html
Collapse -
Roddy, you did it again ;)

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

No problem... just had to tease you a little! WinkGrin

Collapse -
Yea, I just now noticed that. I think I need to

In reply to: Roddy, you did it again ;)

have my first cup of coffee BEFORE I start posting instead of after.LOL.

Collapse -
I'll drink to that...

In reply to: Yea, I just now noticed that. I think I need to

Coffee that is! Grin

Glenn

Collapse -
avast! 4.x VPS (released: 17.1.2007, version: 000703-3)

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Collapse -
AVG Anti-spyware 14:03 CET

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Collapse -
BOClean FILEDATE: 2007-01-17 14:41:20 (UTC)

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

FIFTY-TWO new nasties for a total of 19883 UNIQUE infectors (227,248 variants of these including trojans, worms, bots, hijackers, downloaders, spam proxies, rootkits, adware, spyware, keyloggers, "dialers" and other malware in total) covered in today's update for BOClean 4.22. BOClean 4.21 and earlier are no longer supported and MUST be upgraded.

To UPDATE your existing BOClean database, doubleclick on your BOClean traybar icon and select "check for update" to have BOClean automatically collect and install your update for you. BOClean is designed to perform an autoupdate if left configured to do so. If you have problems with the autoupdate program, check your firewall settings - we use passive FTP download instead of the more conventional HTTP method and some firewalls may refuse to allow the program to connect unless you set rules to permit the BOClean autoupdate program to collect them. Please consult your firewall's instructions on how to do this if the update program is stopped or crashed by your firewall.

Please ALSO note that updates of the database do NOT "UPGRADE" BOClean 4.21 and earlier to 4.22. Doing so requires that we send you a replacement or (if you paid for the "extended download" when you purchased BOClean) you can go back and redownload BOClean from Digital River and obtain the 4.22 upgrade yourself. If you didn't opt for the "extended download" premium option at additional cost at time of purchase, then you need to contact upgrade@nsclean.com in order to upgrade to 4.22. Information on what you need to do in order to GET your upgrade are detailed here:

http://www.nsclean.com/upgrade.html

Please also note that if you ever miss an update (or several) the update you collect includes *ALL* previous update information. There is no need to go hunting down other updates. The current one is always complete.
Collapse -
ZoneAlarm Anti-spyware

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Anti-spyware signature DAT file version:01.200701.815

To check your signature DAT file versions, go to the "Overview" section of ZA. Click on the "Product Info" tab. In the "Version Information" Section, your DAT versions should be listed there. An easier method will be to right-click the ZA icon on the taskbar and click "About..."


note: At this time there is no updates page for ZoneLabs.

http://www.zonelabs.com/store/content/home.jsp

Collapse -
ZoneAlarm Anti-virus

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Anti-virus signature DAT file version:30.4.3332.000

To check your signature DAT file versions, go to the "Overview" section of ZA. Click on the "Product Info" tab. In the "Version Information" Section, your DAT versions should be listed there. An easier method will be to right-click the ZA icon on the taskbar and click "About..."


note: At this time there is no updates page for ZoneLabs.

http://www.zonelabs.com/store/content/home.jsp

Collapse -
RegASSASSIN 1.00 released.

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

RegASSASSIN is a portable utility that can remove stubborn registry keys by resetting the key's permissions and then deleting it.

Simply download RegASSASSIN from the link below, unzip the file, and run RegASSASSIN.exe. Next, enter a registry key and choose the options you would like. Finally select delete to to execute the options.

Compatible with Windows 2000, NT, XP, Vista
(Vista users must run program as administrator).

Downloadable http://www.malwarebytes.org/regassassin.php

Collapse -
Ad aware - new definition file SE1R145 17.01.2007

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

New definitions:
====================
-

Updated definitions:
====================
AntiVermins
Lop +4

MD5 checksum is 38f8bfd3849702ddc5b5843e12e97b60

Collapse -
AVG Anti-Virus 7 Update - AVI 268.16.13 / IAVI 0634

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

--- AVG Anti-Virus Update ---
(1/17/2007)

********************************
** AVG Anti-Virus 7 **
********************************

--- information about Update ---

Update Summary:

- added new variants of I-Worm/Stration, I-Worm/Mytob
- added new variants of trojan PSW.Banker

Collapse -
Panda

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Collapse -
ClamAV database updated #2460

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Collapse -
AntiVir Version: 6.37.00.184

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Collapse -
The Cleaner Pro Database v4033 01-17-2007

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

-------------------------
Added AntiVermins
Added Azesearch
Added CapreDeam
Added EgroupDial
Added fu
Added Instafinder
Added NSAnti
Added Paravoz
Added Sexdialer
Added SpySheriff
Added VB.aee
Added VB.as
Added VB.asg
Added VB.avr
Added VB.axe
Added VB.azx
Added VB.is
Added VNC
Added WorldSecurityOnline

Updated AdHelper
Updated Admoke
Updated Agent
Updated Agent.Adware
Updated Agent.Downloader
Updated Armageddon
Updated Banbra
Updated Bancos
Updated Banker
Updated Banload
Updated BargainBuddy
Updated Busky
Updated Cimuz
Updated dadobra
Updated Delf
Updated Dluca
Updated DNSChanger
Updated Goldun
Updated Hacked Serv-U
Updated HotBar
Updated InstantAccess
Updated ircbot
Updated Krotten
Updated Lmir
Updated Maxifiles
Updated Mediamotor
Updated Nilage
Updated Nuclear
Updated Obfuscated
Updated PEPatch
Updated PluginDL
Updated Purityscan
Updated QQRob
Updated Ranky
Updated rbot
Updated Renos
Updated sdbot
Updated Small
Updated Softomate
Updated Starter
Updated VB.apv
Updated VB.oo
Updated Virtumonde
Updated Warezov
Updated Webrebates
Updated WinFixer
Updated WOW
Updated Yahoo!
http://www.moosoft.com/thecleaner/updatestc4pro/readme-cdb.txt
http://www.moosoft.com/www/

Collapse -
Foxit Reader v2.0.2007.1316

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Collapse -
SUPERAntispyware defs update #3166/1177

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Collapse -
SUPER Antispyware program update 3.5.10160

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Version 3.5.10160 released 1/16/2007

Technology Changes

* Windows Vista preliminary support. SUPERAntiSpyware has all access rights on any account in Vista for scanning and removal.
* Enhanced detection and removal of in-memory threats
* Enhanced detection and removal of large file items (even if the 4MB limit is active). This enhancement is designed to block many of the larger installer packages.
* Improved kernel direct scanning. This allows us to see more items even if they try and hide with kernel drivers.
* Improved ADS (Alternate Data Stream) detection and removal

Interface and Functionality Changes

* Resolved issue where certain files could cause the scan to end prematurely
* Limited user account support. Guest account support. All functions work as they do under the Administrator user. Product only needs to be registered on a single account now.
* All quarantines and logs are now stored PER USER. SUPERAntiSpyware will auto-migrate existing installations
* Definition version numbers are now stored in the files so the version number will automatically update when you manually update and copy definitions
* Right-click scan file and folder capability. You can turn this off under the scanning options. The default is ON
* Sound setting was still not saved on reboot. This has been resolved.
http://www.superantispyware.com/producthistory.html?id=SUPERANTISPYWARE

Download
http://www.superantispyware.com/download.html

Note: You will be asked to uninstall the old version. If you have the Pro version, make sure you know the registration code numbers because you will have to re-enter them after the installation.
Collapse -
NAV Weekly and Daily

In reply to: TrojanHunter 4.6 Ruleset Update - Jan 16, 2007

Weekly Updates
Virus Definitions created January 17
Virus Definitions released January 17
Defs Version: 90117s
Sequence Number: 63690
Extended Version: 1/17/2007 rev. 19
Total Viruses Detected: 73103

Norton AntiVirus for Mac Defs released January 10

Symantec AntiVirus for Handhelds Defs released January 12


Daily Updates
Virus Definitions created January 17
Virus Definitions released January 17
Defs Version: 90117s
Sequence Number: 63690
Extended Version: 1/17/2007 rev. 19
Total Viruses Detected: 73103
http://www.symantec.com/avcenter/defs.download.html

Popular Forums

icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

SMART HOME

This one tip will help you sleep better tonight

A few seconds are all you need to get a better night's rest.