General discussion

UPDATES - April 29, 2010

TrojanHunter Ruleset Update - Apr 28, 2010

An updated TrojanHunter ruleset is available. This update adds 110 new trojan definitions:

Long list

Also added later 258306 rules

Worm.Agent.206
Worm.Bagle.254
Worm.Bagle.253
Worm.Bagle.252
Worm.Banof.100
Worm.FreeTrip.100
Worm.Gibon.116
Worm.Gibon.115
Worm.Gibon.114
Worm.Gibon.113
Worm.Iksmas.395
Worm.Iksmas.394
Worm.Iksmas.393
Worm.Iksmas.392
Worm.Iksmas.391
Worm.Iksmas.390
Worm.Iksmas.389
Worm.Iksmas.388
Worm.Iksmas.387
Worm.Iksmas.386
Worm.Iksmas.385
Worm.Iksmas.384
Worm.Iksmas.383
http://www.misec.net/forum/board/RulesetUpdates/1272515975
Discussion is locked
Follow
Reply to: UPDATES - April 29, 2010
PLEASE NOTE: Do not post advertisements, offensive materials, profanity, or personal attacks. Please remember to be considerate of other members. If you are new to the CNET Forums, please read our CNET Forums FAQ. All submitted content is subject to our Terms of Use.
Reporting: UPDATES - April 29, 2010
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Comments
- Collapse -
AVG - AVI: 271.1.1/ 2842
- Collapse -
AntiVir Version: 7.10.06.251
- Collapse -
AntiVir Version: 7.10.06.254
- Collapse -
Panda
- Collapse -
avast! 29.4.2010 - 100429-0
- Collapse -
avast! 29.4.2010 - 100429-1
- Collapse -
a-squared (Emsisoft Anti-Malware) signature updates
- Collapse -
More
- Collapse -
The Cleaner Database v1379 (yesterday)
- Collapse -
MBAM defs v4051
- Collapse -
MBAM defs v4052
- Collapse -
NOD32 - Update 5072 (20100429)
2010-04-29 15:06
BAT/Agent.NGL (2), INF/Autorun, JS/Exploit.Pdfka.BZW, MSIL/Injector.D, MSIL/TrojanClicker.NAH, NSIS/TrojanDownloader.FakeAlert.CQ (2), NSIS/TrojanDownloader.FakeAlert.CS, PDF/Exploit.Pidief.OWY, Win32/Adware.Agent.NMS, Win32/Adware.Antipiracy.E (4), Win32/Adware.Antivirus2008 (2), Win32/Adware.Antivirus2009.AA, Win32/Adware.CoreguardAntivirus.G, Win32/Adware.PrivacyCenter, Win32/Adware.PrivacyCenter.BE (2), Win32/Adware.SecurityCentral.AA (2), Win32/Adware.Virtumonde.NEK, Win32/Adware.VirusAlarmPro, Win32/Adware.XPAntiSpyware.AA (2), Win32/Agent.NVT, Win32/Agent.PHX, Win32/Agent.QNU, Win32/Agent.QRB (2), Win32/Agent.QRO, Win32/Agent.QXQ, Win32/Agent.RCF, Win32/Agent.RCL, Win32/AutoRun.IRCBot.FE, Win32/Boberog.AT (2), Win32/Checkweb.AA, Win32/Checkweb.AB, Win32/Delf.NVC (2), Win32/Delf.PGN, Win32/Delf.PGW (2), Win32/Delf.PGX (2), Win32/Dewnad.AB (2), Win32/Dialer.NHP, Win32/Farfli.AA, Win32/Farfli.AH (2), Win32/Fusing.AN (2), Win32/Hupigon.NCT, Win32/Injector.BMT, Win32/Injector.BMU, Win32/Koobface.NCT (3), Win32/Koutodoor.EP, Win32/Koutodoor.FY (2), Win32/Kryptik.EAO, Win32/Kryptik.EAP, Win32/Kryptik.EAQ, Win32/Kryptik.EAR, Win32/Kryptik.EAS, Win32/Kryptik.EAT, Win32/Kryptik.EAU, Win32/Kryptik.EAV, Win32/Kryptik.EAW, Win32/LockScreen.RR, Win32/LockScreen.RV (5), Win32/Mebroot.DU (2), Win32/Oficla.GP (2), Win32/Olmarik.SC, Win32/Olmarik.YA, Win32/Olmarik.YG (2), Win32/Olmarik.YH (2), Win32/Peerfrag.GL, Win32/Peerfrag.HD, Win32/Poison, Win32/Poison.NDL, Win32/Poison.NDM, Win32/Popwin.CWY (4), Win32/PSW.Delf.NSE, Win32/PSW.Delf.NWX (2), Win32/PSW.OnLineGames.OUM (2), Win32/PSW.OnLineGames.QIO, Win32/PSW.VB.NFH, Win32/Redosdru.AW, Win32/Redosdru.DM (2), Win32/Redosdru.DN, Win32/Small.NHX (2), Win32/Spy.Bancos.NPA, Win32/Spy.Bancos.NTX (3), Win32/Spy.Banker.TRW, Win32/Spy.Banker.TRX, Win32/Spy.Delf.OGK, Win32/Spy.Shiz.NAI (4), Win32/Spy.Shiz.NAL (2), Win32/Tifaut.C, Win32/Toolbar.MyWebSearch (9), Win32/TrojanClicker.VB.NOR, Win32/TrojanClicker.VB.NOS, Win32/TrojanDownloader.Adload.NGD, Win32/TrojanDownloader.Agent.PWT (2), Win32/TrojanDownloader.Agent.PWU (2), Win32/TrojanDownloader.Banload.PAI, Win32/TrojanDownloader.Banload.PIH, Win32/TrojanDownloader.Banload.PII (2), Win32/TrojanDownloader.Caxnet.CG, Win32/TrojanDownloader.Chekafe.A, Win32/TrojanDownloader.Delf.AASN (2), Win32/TrojanDownloader.Delf.PNU (2), Win32/TrojanDownloader.FakeAlert.ALW (2), Win32/TrojanDownloader.FakeAlert.AUU, Win32/TrojanDownloader.FakeAlert.AVO, Win32/TrojanDownloader.FakeAlert.AVZ, Win32/TrojanDownloader.Small.OVZ, Win32/TrojanDownloader.VB.OLY, Win32/TrojanDownloader.VB.OLZ (2), Win32/TrojanDownloader.VB.OMA, Win32/TrojanDropper.Agent.ORR (2), Win32/VB.OWR, Win32/Yektel.A
http://www.eset.eu/podpora/aktualizacia-5072?lng=en
http://www.eset.eu/support/update-xy1
- Collapse -
NOD32 - Update 5073 (20100429)
2010-04-29 19:49
INF/Autorun (2), IRC/SdBot, JS/Exploit.Pdfka.BZW, MSIL/PSW.Agent.NAP (2), MSIL/TrojanDropper.Agent.AV, Win32/Adware.BHO.NHX, Win32/Adware.ErrorGuard.A (2), Win32/Agent.NHP, Win32/Agent.OBU, Win32/Agent.ODX (3), Win32/Agent.QXV, Win32/Agent.RAT, Win32/Agent.RCN (2), Win32/Agent.RCO (2), Win32/AutoRun.Delf.GG (2), Win32/AutoRun.IRCBot.CX, Win32/AutoRun.IRCBot.FE (2), Win32/AutoRun.Spy.Zbot.F (2), Win32/Bamital.AZ, Win32/Bamital.BA, Win32/Disabler.NAL, Win32/Injector.BMV, Win32/Kryptik.EAX, Win32/Kryptik.EAY, Win32/Kryptik.EAZ, Win32/LockScreen.RH, Win32/Olmarik.SC, Win32/Olmarik.YG, Win32/Olmarik.YH, Win32/PSW.LdPinch.NCB, Win32/PSW.OnLineGames.NMP, Win32/PSW.OnLineGames.OOY, Win32/PSW.OnLineGames.OUH, Win32/PSW.OnLineGames.OUM (5), Win32/PSW.OnLineGames.OUN, Win32/PSW.OnLineGames.OUW (3), Win32/PSW.OnLineGames.PBB (6), Win32/PSW.OnLineGames.PLZ, Win32/PSW.OnLineGames.QIL (2), Win32/PSW.WOW.NOJ, Win32/Qhost.NUU, Win32/Spatet.A, Win32/Spy.Bancos.NTX, Win32/Spy.Banker.CEU, Win32/Spy.Banker.TQG, Win32/Spy.Banker.TRY, Win32/Spy.Banker.TRZ (2), Win32/Spy.Delf.OER (3), Win32/Spy.Delf.OGL (2), Win32/Spy.KeyLogger.NHJ, Win32/Spy.Shiz.NAI, Win32/Spy.Zbot.JF (2), Win32/Spy.Zbot.UN, Win32/StartPage.NSY (2), Win32/StartPage.NSZ (2), Win32/StartPage.NTA (2), Win32/TrojanClicker.Delf.NDK, Win32/TrojanClicker.Delf.NDR (3), Win32/TrojanClicker.Delf.NGI, Win32/TrojanClicker.Delf.NIU (3), Win32/TrojanDownloader.Adload.NGD, Win32/TrojanDownloader.Agent.PTF (3), Win32/TrojanDownloader.Agent.PWV (3), Win32/TrojanDownloader.Agent.PWW (3), Win32/TrojanDownloader.Agent.PWX (4), Win32/TrojanDownloader.Carberp.A, Win32/TrojanDropper.Agent.ORH, Win32/TrojanDropper.Agent.ORS (2), Win32/TrojanDropper.Microjoin.C (3), Win32/VB.OYZ (2), Win32/VB.OZA (2)
http://www.eset.eu/podpora/aktualizacia-5073?lng=en
http://www.eset.eu/support/update-xy1
- Collapse -
SUPERAntiSpyware defs v4867
- Collapse -
SUPERAntiSpyware defs v4869
- Collapse -
SIW 2010 build 0428 - April 28, 2010
- Collapse -
Microsoft Security Essentials defs v1.81.660.0
- Collapse -
Malwarebytes' Anti-Malware Version 1.46 (April 29th, 2010)

1. Improved database loading speed by approximately 15%.
2. Drastically improved performance of Website Blocking on Windows Vista and 7.
3. Fixed various scheduler compatibility issues on Windows 2000.
4. Fixed issue with quotations around paths passed to /logtofile and /logtofolder.
5. Fixed issue with detecting certain leftover traces of an infection.
6. Fixed issue with freeze when adding a shared printer on the network.
http://forums.malwarebytes.org/index.php?&showtopic=3283&pid=241494&st=40&
http://www.malwarebytes.org/mbam.php

- Collapse -
Currently, The Malwarebytes Download Link Isn't Correct
- Collapse -
It sometimes that them a while to update

that. I got the update via the program updater before I posted the update.

- Collapse -
Yep, Me Too, But...

I always like to keep a copy of the most current installer for those machines which require a new installation or simply don't have a fast internet connection.. Running the new installer "over the top" of the previous program installation will bring it up to date.

Take care.

Grif

- Collapse -
The download link at MBAM USED to go to download.com

but they changed that. I never asked why. One of my other forums has a download section with permission to distribute MBAM and some other programs and I sometimes have to wait for an hour or more before I can update that section. Usually Major Geeks has it first but not always.

- Collapse -
SUPERAntiSpyware v4.36.1006 released 4/29/2010
Technology Changes

* New : Clear All Quarantine Option
* Scanning Engine Updates to fix .EXE broken extensions
* Rootkit Uncover Technology to help locate hidden drivers updated to handle boot bus extenders
* Check out our SUPERAntiSpyware Portable here:
SUPERAntiSpyware Portable Scanner
* 32/64-bit Users: New blended (32/64) bit installer pre-release available on our forums. A single install handles both 32-bit and 64-bit installations/updates!

http://www.superantispyware.com/producthistory.html?id=SUPERANTISPYWARE

Download
http://www.superantispyware.com/download.html
- Collapse -
McAfee Daily defs v5967
- Collapse -
Ad-Aware defs v0149.0226
- Collapse -
NAV Daily
Daily Updates
Symantec AntiVirus
Norton AntiVirus 2006/2007

Virus Definitions created 4/29/2010
Virus Definitions released 4/29/2010
Defs Version: 120429c
Sequence Number: 110161
Extended Version: 4/29/2010 rev. 3
Total Detections (Threats & Risks): 7083952

Multiple Daily Updates
Symantec Endpoint Protection 11
Norton AntiVirus 2008 and newer

Virus Definitions created 4/29/2010
Virus Definitions released 4/29/2010
Defs Version: 120429c
Sequence Number: 110161
Extended Version: 4/29/2010 rev. 3
Total Detections (Threats & Risks): 7083952
http://www.symantec.com/business/security_response/definitions/download/index.jsp
- Collapse -
TrojanHunter Ruleset Update - Apr 29, 2010
- Collapse -
Quick Heal defs
- Collapse -
ClamAV defs v10878

Latest ClamAV? stable release is: 0.96
Total number of signatures: 759959
ClamAV Virus Databases:
main.cvd ver. 52 released on 15 Feb 2010 09:54 Shocked500
daily.cvd ver. 10878 released on 29 Apr 2010 12:50 Shocked400
http://www.clamav.net/

CNET Forums