Spyware, Viruses, & Security forum

General discussion

UPDATES - Febuary 5, 2008

by roddy32 / February 4, 2008 8:20 PM PST
TrojanHunter 5.0 Ruleset Update - Feb 4, 2008

An updated TrojanHunter ruleset is available. This update adds 58 new trojan definitions:

3Proxy.100
Adware.Cinmus.125
Adware.Lop.263
Adware.Vapsup.161
Agent.2142
Agent.2141
Agent.2140
Agent.2139
BHO.262
BHO.261
Dialer.280
Fitxup.100
Hupigon.1120
Hupigon.1119
IM-Worm.Sohanad.113
Joydotto.100
Kbot.109
KillFiles.169
PoisonIvy.127
PWSteal.LdPinch.557
PWSteal.LdPinch.556
PWSteal.LdPinch.555
PWSteal.OnLineGames.740
PWSteal.OnLineGames.739
PWSteal.OnLineGames.738
PWSteal.OnLineGames.737
PWSteal.OnLineGames.736
PWSteal.OnLineGames.735
PWSteal.QQPass.163
PWSteal.Zbot.127
PWSteal.Zbot.126
PWSteal.Zbot.125
PWSteal.Zbot.124
PWSteal.Zbot.123
Rbot.1629
Rootkit.Agent.314
Tibs.465
TrojanDownloader.Agent.2032
TrojanDownloader.Agent.2031
TrojanDownloader.Delf.1227
TrojanDownloader.Hmir.102
TrojanDownloader.Small.2379
TrojanDownloader.Small.2378
TrojanDownloader.Small.2377
TrojanDownloader.VB.851
TrojanDownloader.Wintrim.116
TrojanDownloader.Zlob.1248
TrojanDownloader.Zlob.1247
TrojanDropper.Delf.633
TrojanDropper.Delf.632
TrojanDropper.FriJoiner.106
TrojanSpy.Banker.2241
Vundo.770
Vundo.769
Vundo.768
Vundo.767
Vundo.766
Worm.Zhelatin.442

You should have 156690 rules.
http://www.misec.net/forum/board/RulesetUpdates/1202187059
Discussion is locked
You are posting a reply to: UPDATES - Febuary 5, 2008
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - Febuary 5, 2008
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
AVG 7.5 - AVI 269.19.20/ 1260
by roddy32 / February 4, 2008 8:35 PM PST
Collapse -
AVG 7.5 - AVI 269.19.20/ 1261
by roddy32 / February 5, 2008 5:50 AM PST
Collapse -
AVG Anti-Spyware 09:41 CET
by roddy32 / February 4, 2008 8:45 PM PST
Collapse -
AntiVir Version: 7.00.02.94
by roddy32 / February 4, 2008 8:51 PM PST
Collapse -
ClamAV #5692
by roddy32 / February 4, 2008 9:02 PM PST

Latest ClamAV™ stable release is: 0.92
Latest ClamAV™ RC release is: none
Total number of signatures: 204740
ClamAV Virus Databases:
main.cvd ver. 45 released on 09 Dec 2007 15:50 +0000
daily.cvd ver. 5692 released on 05 Feb 2008 07:21 +0000
http://www.clamav.net/

Collapse -
BitDefender 12:57PM
by roddy32 / February 4, 2008 9:06 PM PST
Collapse -
NOD32 - 2849 (20080205)
by roddy32 / February 4, 2008 9:12 PM PST

2008-02-05 11:01
HTML/Exploit.Smil.I, HTML/TrojanClicker.IFrame.EZ, INF/Autorun, JS/TrojanDownloader.Agent.NCD, JS/TrojanDownloader.Agent.NCE, VBS/Agent.NAF, Win32/AutoRun.FH, Win32/AutoRun.HF, Win32/AutoRun.HG, Win32/AutoRun.HH (3), Win32/BHO.NBZ (2), Win32/Delf.CXY (2), Win32/Dialer.NDX, Win32/Hupigon.NGL, Win32/IRCBot.ADI, Win32/Mypis.U (2), Win32/Prosti.EM (3), Win32/PSW.OnLineGames.NLE, Win32/PSW.OnLineGames.NMI, Win32/PSW.OnLineGames.NMK (2), Win32/Qhost, Win32/Qhost.ACB, Win32/Rootkit.Agent.NBQ, Win32/Rootkit.Agent.NCK, Win32/Rootkit.Vanti.NAI (2), Win32/Rootkit.Vanti.NBE (2), Win32/Spy.Agent.NDM (2), Win32/Spy.Agent.PZ (2), Win32/TrojanDownloader.Agent.NPO, Win32/TrojanDownloader.Agent.NUT, Win32/TrojanDownloader.FakeAlert.AC (2), Win32/TrojanDownloader.QQHelper.NDW, Win32/TrojanDownloader.QQHelper.NEM, Win32/TrojanDownloader.Zlob.BOK, Win32/TrojanDownloader.Zlob.BOW (12), Win32/Xorer.DR (2), Win32/Xorer.NAB (2)
http://www.eset.eu/podpora/aktualizacia-2849?lng=en
http://www.eset.eu/support/update-xy1

Collapse -
NOD32 - 2850 (20080205)
by roddy32 / February 4, 2008 11:24 PM PST
2008-02-05 16:10
HTML/Phishing.gen (2), HTML/TrojanDownloader.IFrame (3), INF/Autorun (3), Win32/Adware.IeDefender, Win32/Adware.IeDefender.NBU, Win32/Adware.Vapsup (5), Win32/Adware.Virtumonde, Win32/Agent.CYO (2), Win32/Agent.FD, Win32/Agent.NIU (4), Win32/Agent.NPM, Win32/Agent.NPN, Win32/Agent.NPO, Win32/Agent.NPP (2), Win32/Agent.OH, Win32/AutoRun.HH, Win32/AutoRun.HI, Win32/Bagle.MT (2), Win32/Delf.NJI, Win32/IRCBot.ADI, Win32/Mocalo.ET (3), Win32/PSW.LdPinch.NEL, Win32/PSW.OnLineGames.NBR, Win32/PSW.OnLineGames.NLI (3), Win32/PSW.OnLineGames.NLK (3), Win32/PSW.OnLineGames.NMN, Win32/PSW.QQShou.NBV (4), Win32/Rbot, Win32/Rootkit.Agent.HU (2), Win32/Rootkit.Vanti.NAI (3), Win32/Rootkit.Vanti.NBA, Win32/Rootkit.Vanti.NBE (2), Win32/Spy.Agent.NDM, Win32/Spy.Agent.NEV, Win32/Spy.Agent.PZ, Win32/Spy.Delf.ATS, Win32/Spy.Delf.NHL, Win32/Spy.Goldun.A, Win32/Spy.Goldun.TQ, Win32/StartPage.ATR, Win32/StartPage.UZ, Win32/Toolbar.MyWebSearch (3), Win32/TrojanClicker.Agent.NCS (3), Win32/TrojanDownloader.Adload.NEW, Win32/TrojanDownloader.Agent.NUT, Win32/TrojanDownloader.Agent.NVC, Win32/TrojanDownloader.Agent.NVD (2), Win32/TrojanDownloader.Delf.EMQ (2), Win32/TrojanDownloader.FakeAlert.AD (2), Win32/TrojanDownloader.Firu, Win32/TrojanDownloader.Small.NZY, Win32/TrojanDownloader.Tiny.NJ, Win32/TrojanDownloader.Tiny.Y (2), Win32/TrojanDownloader.VB.AXC, Win32/TrojanDownloader.Zlob.BOK, Win32/TrojanDownloader.Zlob.BOX (8), Win32/TrojanProxy.Agent.NDG, Win32/TrojanProxy.Xorpix, Win32/TrojanProxy.Xorpix.NAD, Win32/VB.NKU, Win32/VB.NKV
http://www.eset.eu/podpora/aktualizacia-2850?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 2851 (20080205)
by roddy32 / February 5, 2008 5:41 AM PST

[color=blue]NOD32 - 2851 (20080205)[/color]
2008-02-05 22:07
Win32/Adware.WinFixer, Win32/Agent.NPQ (6), Win32/BHO.NCA (2), Win32/Delf.NJJ (6), Win32/Injector.P, Win32/Rootkit.Agent.NBQ, Win32/Rootkit.Agent.NCK, Win32/Spy.Delf.NHM (2), Win32/Spy.Delf.NHN (3), Win32/Spy.Goldun.NAT, Win32/Spy.KeyLogger.NBW, Win32/Toolbar.MyWebSearch (20), Win32/TrojanClicker.VB.NCJ (2), Win32/TrojanDownloader.Agent.NPO, Win32/TrojanDownloader.QQHelper.NDW, Win32/TrojanDownloader.QQHelper.NEN, Win32/Wootbot
http://www.eset.eu/podpora/aktualizacia-2851?lng=en
http://www.eset.eu/support/update-xy1

Collapse -
BOClean FILEDATE: 2008-02-05 13:49:43 (UTC)
by roddy32 / February 4, 2008 10:07 PM PST
FORTY new nasties for a total of 50258 *UNIQUE* infectors (
311,853 variants of these including trojans, worms, bots, hijackers,
downloaders, spam proxies, rootkits, adware, spyware, keyloggers,
"dialers" and other malware in total) covered in today's update for
BOClean 4.25.

Please also note that if you ever miss an update (or several) the update
you collect includes ***ALL*** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.nsclean.com/trolist.html
Collapse -
BOClean FILE DATE : 2008-02-05 16:17:08 (UTC)
by roddy32 / February 5, 2008 1:34 AM PST
SEVENTY ONE new nasties for a total of 50329 *UNIQUE*
infectors (311,952) variants of these including
trojans,worms,bots,hijackers,downloaders,spam proxies, rootkits, adware,
spyware,keyloggers,"dialers" and other malware in total) covered in
today's update for BOClean 4.25.

Please also note that if you ever miss an update (or several) the update
you collect includes *ALL* previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.nsclean.com/trolist.html
Collapse -
F-Prot 02/04/2008
by roddy32 / February 4, 2008 10:52 PM PST

For all versions of F-PROT Antivirus except version 6 and later
F-PROT Antivirus can detect a total of 546460 worms, viruses and other malicious programs with these latest virus signature files.
http://www.f-prot.com/download/signaturefiles.html

Version 6 of F-PROT Antivirus can as of 4 Feb 2008 detect a total of 908127 worms, viruses and other malicious programs with its latest virus signature file. This number differs from that of other versions of F-PROT Antivirus due to differences in design and structure.
http://www.f-prot.com/products/currentversions.html

Collapse -
Panda
by roddy32 / February 5, 2008 1:58 AM PST
Collapse -
avast! 4.x VPS (released: 5.2.2008, version: 080205-0)
by roddy32 / February 5, 2008 6:17 AM PST
Collapse -
NAV Daily
by roddy32 / February 5, 2008 6:23 AM PST
Daily Updates
Symantec AntiVirus
Norton AntiVirus 2006/2007

Virus Definitions created February 5
Virus Definitions released February 5
Defs Version: 100205q
Sequence Number: 78274
Extended Version: 2/5/2008 rev. 17
Total Viruses Detected: 73845
http://www.symantec.com/avcenter/defs.download.html
Collapse -
IE-SPYAD & AGNIS Lists Updated (Feb 5)
by roddy32 / February 5, 2008 7:10 AM PST

[quote]
Hi All:

IE-SPYAD (the IE Restricted zone list) and AGNIS (the AtGuard/NIS/NPF/Outpost/AdShield ad block list) have been updated again. They can be downloaded from:

http://www.spywarewarrior.com/uiuc/resource.htm

Please note that the "original" Reg-file-based IE-SPYAD & IE-SPYAD2 have been replaced by IE-SPYAD for ZonedOut. ZonedOut is a free, convenient utility for maintaining IE zone lists. You can find a link to ZonedOut as well as the IE-SPYAD list used with it on the traditional download page listed above.

The AGNIS block lists are compatible with AtGuard 3.x and ALL versions of NIS as well as NPF 2003 and 2004. There are separate versions AGNIS for users of Agnitum Outpost and AdShield.

If you're running any of the most recent versions of NIS or NPF, you must use the ProWAGoN utility written by Christian Haagensen to load, remove, and backup block lists:

http://www.spywarewarrior.com/uiuc/resource.htm#prowagon

If you have questions or comments about IE-SPYAD or any of the AGNIS lists, please don't hesitate to let me know.

Best,

Eric L. Howes
eburger68@myrealbox.com
[/quote]

Collapse -
Windows Defender Signature Update February 5, 2008
by roddy32 / February 5, 2008 8:03 AM PST

Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.3204.0
Definition Version: 1.27.6340.0

Product Info: Windows Defender

Available via Windows updates or the program updater

NOTE: Users who have not received the update within the program or MU or WU and wish to update manually, go to [color=blue]Microsoft Malware Protection Center Portal[/color] website to download the definitions. That is one of the features of their malware protection center portal... to allow manual download of the definitions for users who have trouble in getting the updates due to some reason or for users who administer computers and want to deploy defs updates offline.

[color=red]Note:[/color] that this is [color=red]not[/color] a daily Windows Defender update form the portal.

Windows Defender version: 1.1.1593.0 XP-32 bit system
Windows Defender version: 1.1.1505.0 Vista-32 bit system

Collapse -
a-squared signature update 02/06/2008
by roddy32 / February 5, 2008 8:11 AM PST
Popular Forums
icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

CNET FORUMS TOP DISCUSSION

Help, my PC with Windows 10 won't shut down properly

Since upgrading to Windows 10 my computer won't shut down properly. I use the menu button shutdown and the screen goes blank, but the system does not fully shut down. The only way to get it to shut down is to hold the physical power button down till it shuts down. Any suggestions?