Spyware, Viruses, & Security forum

General discussion

UPDATES - December 29, 2008

TrojanHunter 5.0 Ruleset Update - Dec 28, 2008

An updated TrojanHunter ruleset is available. This update adds 49 new trojan definitions:

Adware.EShoper.101
Agent.3346
Agent.3345
Agent.3344
Agent.3343
Agent.3342
Agent.3341
Agent.3340
Agobot.330
DNSChanger.631
DNSChanger.630
DNSChanger.629
DNSChanger.628
DNSChanger.627
FakePowav.100
Frauder.163
FraudTool.ProAntiSpyware.100
FraudTool.Spyprotector.100
FraudTool.VirusRemover.105
Joke.AutoIt.100
PWSteal.Magania.432
PWSteal.Magania.431
PWSteal.Magania.430
PWSteal.Magania.429
PWSteal.Magania.428
PWSteal.Magania.427
Rootkit.TDSS.113
Runner.111
TrojanClicker.Delf.215
TrojanDownloader.Agent.2898
TrojanDownloader.CodecPack.147
TrojanDownloader.Cutwail.104
TrojanDownloader.FraudLoad.461
TrojanDownloader.FraudLoad.460
TrojanDropper.Agent.1113
TrojanDropper.Agent.1112
TrojanDropper.Agent.1111
TrojanDropper.VB.419
TrojanProxy.Agent.459
TrojanSpy.VB.287
TrojanSpy.Zbot.625
TrojanSpy.Zbot.624
TrojanSpy.Zbot.623
TrojanSpy.Zbot.622
TrojanSpy.Zbot.621
TrojanSpy.Zbot.620
TrojanSpy.Zbot.619
Waledac.101
Worm.AutoRun.334

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.

You should have 201752 rules.
http://www.misec.net/forum/board/RulesetUpdates/1230521162
Discussion is locked
You are posting a reply to: UPDATES - December 29, 2008
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - December 29, 2008
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
BOClean FILE DATE: 2008-12-29 11:45:12 (UTC)

In reply to: UPDATES - December 29, 2008

FORTY SIX new nasties for a total of 68,090 **UNIQUE**
infectors (336,763 variants of these including
trojans,worms,bots,hijackers,downloaders,spam proxies, rootkits, adware,
spyware,keyloggers,"dialers" and other malware in total) covered in
today's update for BOClean 4.27.

Please also note that if you ever miss an update (or several) the update
you collect includes **ALL** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.comodo.com/boclean/trolist.html
Collapse -
ClamAV #8808

In reply to: UPDATES - December 29, 2008

Latest ClamAV? stable release is: 0.94.2
Total number of signatures: 480929
ClamAV Virus Databases:
main.cvd ver. 49 released on 22 Oct 2008 07:46 +0000
daily.cvd ver. 8808 released on 29 Dec 2008 03:00 +0000
http://www.clamav.net/

Collapse -
AntiVir Version: 7.01.01.45

In reply to: UPDATES - December 29, 2008

Collapse -
NOD32 - 3720 (20081229)

In reply to: UPDATES - December 29, 2008

2008-12-29 11:43
IRC/SdBot, Win32/Adware.Antivirus2008 (4), Win32/Adware.GooochiBiz (2), Win32/Adware.MySideSearch (3), Win32/Adware.XPAntivirus, Win32/BadJoke.Agent.NAF, Win32/Bagle.QH, Win32/BHO.NKZ (2), Win32/Prosti, Win32/Prosti.NBN, Win32/PSW.OnLineGames.NMP (2), Win32/PSW.OnLineGames.NMY (2), Win32/Sohanad.BM, Win32/Tool.TPE.A, Win32/TrojanDownloader.Delf.ODS, Win32/TrojanDownloader.FakeAlert.PY, Win32/TrojanDownloader.FakeAlert.SU, Win32/TrojanDownloader.FakeAlert.UN (4), Win32/TrojanDownloader.Zlob.CYA, Win32/TrojanProxy.Small.NCA, Win32/Wigon, Win32/Wigon.IE
http://www.eset.eu/podpora/aktualizacia-3720?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
a-squared signature update

In reply to: UPDATES - December 29, 2008

Collapse -
more

In reply to: a-squared signature update

Collapse -
Ad-Aware defs update

In reply to: UPDATES - December 29, 2008

0143.0009 - December 29, 2008

New definitions:

====================
SystemSecurity

Updated definitions:
====================
AntispywareBot
Antivirus XP 2008
Antivirus2009
Antivirus360
AntiVirusPro
AntivirusProtection
DoctorAntivirus2008
DriveCleaner
ErrorSafe
Hotbar
IEAntiVirus
InternetAntivirusPro
MSAntispyware2009
PerfectDefender2009
PrivacyControl
RapidAntivirus
SpyGuarder
SpyProtector
SpywareGuard2008
Virtumonde
VirusIsolator
VirusRanger
VirusRemover2008
VirusResponseLab2009
Win32.Backdoor.Aebot
Win32.Backdoor.Agent
Win32.Backdoor.Agobot
Win32.Backdoor.Delf
Win32.Backdoor.DsBot
Win32.Backdoor.ForBot
Win32.Backdoor.IRCBot
Win32.Backdoor.RBot
Win32.Backdoor.Rukap
Win32.Backdoor.SDBot
Win32.Backdoor.TDSS
Win32.Backdoor.VanBot
Win32.Backdoor.WootBot
Win32.Dialer.Trojan
Win32.Hoax.Renos
Win32.P2PWorm.Agent
Win32.Trojan.Agent
Win32.Trojan.AutoIT
Win32.Trojan.BHO
Win32.Trojan.Disabler
Win32.Trojan.Inject
Win32.Trojan.Monder
Win32.Trojan.Obfuscated
Win32.Trojan.Qhost
Win32.Trojan.Small
Win32.Trojan.Spy
Win32.Trojan.VB
Win32.TrojanClicker
Win32.TrojanClicker.Small
Win32.TrojanDownloader.Agent
Win32.TrojanDownloader.Autoit
Win32.TrojanDownloader.Banload
Win32.TrojanDownloader.Delf
Win32.TrojanDownloader.Firu
Win32.TrojanDownloader.Losabel
Win32.TrojanDownloader.Small
Win32.TrojanDownloader.Tibs
Win32.TrojanDownloader.Tiny
Win32.TrojanDownloader.VB
Win32.Trojandownloader.Zlob
Win32.TrojanDropper
Win32.TrojanDropper.Small
Win32.TrojanProxy.Agent.dl
Win32.TrojanProxy.Migmaf
Win32.TrojanPWS.LdPinch
Win32.TrojanPWS.Magania
Win32.TrojanPWS.OnlineGames
Win32.TrojanPWS.QQPass
Win32.TrojanPWS.WOW
Win32.TrojanSpy.Banker
Win32.TrojanSpy.VB
Win32.TrojanSpy.Zbot
Win32.Worm.Allaple
Win32.Worm.Autorun
Win32.Worm.Brontok
Win32.Worm.Fujack
Win32.Worm.Koobface
Win32.Worm.Mytob
Win32.Worm.Otwycal
Win32.Worm.Rokut
Win32.Worm.VB
Win32.Worm.Viking
WinWebSecurity
WinXDefender
WinZix
XLG Security Center
XPShield

MD5 checksum for core.aawdef is 1609f5cd443c10f130536a949426ce71

MD5 checksum for defs.ref is 40894975f31d6309a320c24846a655bc


http://www.lavasoft.com/support/securitycenter/blog/?p=339#more-339
Collapse -
AVG - AVI: 270.10.1 /1868

In reply to: UPDATES - December 29, 2008

Added detection of new variant of Worm/Generic.SEC, new variants of trojans Agent.ARMA, Generic12.AHKG, Generic12.AHKM, BackDoor.Generic10.AFVI, BackDoor.Generic10.AFTS.
December 29, 2008
http://www.grisoft.com/us.download-update

Collapse -
NAV Daily

In reply to: UPDATES - December 29, 2008

Collapse -
Panda

In reply to: UPDATES - December 29, 2008

Collapse -
avast! 4.x VPS (released: 29.12.2008, version:081229-0)

In reply to: UPDATES - December 29, 2008

Collapse -
SUPERAntiSpyware #3688

In reply to: UPDATES - December 29, 2008

Collapse -
NOD32 - 3721 (20081229)

In reply to: UPDATES - December 29, 2008

2008-12-29 18:26
NSIS/TrojanDownloader.Agent.NAN, Win32/Adware.Antivirus2008, Win32/Adware.BHO.NCX, Win32/Adware.InternetAntivirus (4), Win32/Adware.MSAntispyware2009, Win32/Adware.XPAntivirus, Win32/Agent.WPI, Win32/AutoRun.Agent.FA (2), Win32/AutoRun.VB.AV (2), Win32/Bagle.QH, Win32/Injector.GL, Win32/Injector.GM, Win32/IRCBot, Win32/IRCBot.AGP, Win32/KillAV.NCX, Win32/Kryptik.DQ, Win32/Olmarik.AS (2), Win32/Olmarik.AT (2), Win32/Olmarik.D (2), Win32/Pinit.J (4), Win32/Span.A, Win32/Spy.Agent.NKX, Win32/Spy.Banbra.NNW, Win32/Spy.Delf.NOK (5), Win32/Spy.Delf.NOL, Win32/Spy.Goldun.AXT, Win32/Spy.Goldun.NDP, Win32/Spy.Goldun.NEA, Win32/Spy.Zbot.BF, Win32/Spy.Zbot.DG (2), Win32/TrojanDownloader.Agent.OLP, Win32/TrojanDownloader.FakeAlert.PY (2), Win32/TrojanDownloader.FakeAlert.QY (4), Win32/TrojanDownloader.FakeAlert.SU, Win32/TrojanDownloader.FakeAlert.TU, Win32/TrojanDownloader.FakeAlert.UM, Win32/TrojanDownloader.FakeAlert.UO, Win32/TrojanDownloader.FakeAlert.UP (2), Win32/TrojanDownloader.FakeAlert.UQ (2), Win32/TrojanDownloader.FakeAlert.UR (2), Win32/TrojanDownloader.Small.OCS (2), Win32/TrojanDownloader.Small.OJS (3), Win32/TrojanDownloader.Small.OJT, Win32/TrojanDownloader.Small.OJU, Win32/TrojanDownloader.Swizzor, Win32/TrojanDownloader.Zlob.CYA, Win32/TrojanDownloader.Zlob.CYB (5)
http://www.eset.eu/podpora/aktualizacia-3721?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 3722 (20081229)

In reply to: NOD32 - 3721 (20081229)

Collapse -
McAfee Daily #5478

In reply to: UPDATES - December 29, 2008

Collapse -
TrojanHunter 5.0 Ruleset Update - Dec 29, 2008

In reply to: UPDATES - December 29, 2008

An updated TrojanHunter ruleset is available. This update adds 106 new trojan definitions:

Adware.Agent.400
Adware.Agent.399
Adware.Cinmus.165
Adware.Cinmus.164
Adware.Cinmus.163
Adware.MxLiveMedia.100
Agent.3352
Agent.3351
Agent.3350
Agent.3349
Agent.3348
Agent.3347
Alureon.136
BHO.411
BiFrose.489
BiFrose.488
BiFrose.487
Bohmini.100
Buzus.306
CDur.101
Daonol.101
DNSChanger.633
DNSChanger.632
Enfal.101
FakeAlert.251
Frauder.164
HexZone.104
Hupigon.1286
Hupigon.1285
IM-Worm.VB.129
KillDisk.103
Monder.438
Monder.437
Monder.436
Monder.435
Pakes.569
PcClient.268
PcClient.267
PcClient.266
Perkesh.100
PoisonIvy.138
PWSteal.LdPinch.861
PWSteal.LdPinch.860
PWSteal.LdPinch.859
PWSteal.LdPinch.858
PWSteal.LdPinch.857
PWSteal.LdPinch.856
PWSteal.LdPinch.855
PWSteal.Magania.439
PWSteal.Magania.438
PWSteal.Magania.437
PWSteal.Magania.436
PWSteal.Magania.435
PWSteal.Magania.434
PWSteal.Magania.433
PWSteal.OnLineGames.1430
PWSteal.OnLineGames.1429
PWSteal.OnLineGames.1428
PWSteal.OnLineGames.1427
QHost.209
Rootkit.Agent.431
Rootkit.TDSS.116
Rootkit.TDSS.115
Rootkit.TDSS.114
Small.762
TrojanDownloader.AdLoad.465
TrojanDownloader.Agent.2899
TrojanDownloader.Banload.1508
TrojanDownloader.Banload.1507
TrojanDownloader.Delf.1501
TrojanDownloader.FraudLoad.463
TrojanDownloader.FraudLoad.462
TrojanDownloader.Renos.141
TrojanDownloader.Small.2970
TrojanDownloader.Small.2969
TrojanDownloader.VB.1021
TrojanDownloader.VB.1020
TrojanDownloader.VB.1019
TrojanDownloader.Zlob.1706
TrojanDropper.Agent.1115
TrojanDropper.Agent.1114
TrojanDropper.Binder.124
TrojanDropper.Small.547
TrojanDropper.VB.422
TrojanDropper.VB.421
TrojanDropper.VB.420
TrojanSpy.Banbra.305
TrojanSpy.Small.238
TrojanSpy.Zbot.626
Turkojan.121
Vaklik.140
Vundo.1463
Vundo.1462
Vundo.1461
Vundo.1460
Vundo.1459
Vundo.1458
Vundo.1457
Worm.AutoIt.107
Worm.AutoRun.336
Worm.AutoRun.335
Worm.AutoTDSS.100
Worm.Bagle.249
Worm.Delf.151
Worm.Nurech.100
Worm.RussoTuristo.100

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.

You should have 201973 rules.
http://www.misec.net/forum/board/RulesetUpdates/1230590523

Collapse -
BitDefender - 12/30/2008 - 00:37

In reply to: UPDATES - December 29, 2008

Collapse -
Windows Defender Signature Update December 30, 2008

In reply to: UPDATES - December 29, 2008

Definition Version: 1.49.1123.0
Engine Version: 1.1.4205.0

Product Info: Windows Defender

Available via Windows updates or the program updater

NOTE: Users who have not received the update within the program or MU or WU and wish to update manually, go to Microsoft Malware Protection Center Portal website to download the definitions. That is one of the features of their malware protection center portal... to allow manual download of the definitions for users who have trouble in getting the updates due to some reason or for users who administer computers and want to deploy defs updates offline.

Note: that this is not a daily Windows Defender update form the portal.

Windows Defender version: 1.1.1593.0 XP-32 bit system
Windows Defender version: 1.1.1505.0 Vista-32 bit system
Windows Defender version: 1.1.1600.0 Vista SP1

Collapse -
(NT) Date on above should be the 29th

In reply to: Windows Defender Signature Update December 30, 2008

Collapse -
SUPERAntiSpyware v4.24.1004 released December 29, 2008

In reply to: UPDATES - December 29, 2008

Popular Forums

icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

DEALS, DEALS, DEALS!

Best Black Friday Deals

CNET editors are busy culling the list and highlighting what we think are the best deals out there this holiday season.