Spyware, Viruses, & Security forum

General discussion

UPDATES - January 29, 2009

by roddy32 / January 28, 2009 8:52 PM PST
TrojanHunter 5.0 Ruleset Update - Jan 28, 2009

An updated TrojanHunter ruleset is available. This update adds 51 new trojan definitions:

Afcore.120
Agent.3471
Agent.3470
Agent.3469
Bredolab.128
Bredolab.127
Bredolab.126
FakeAlert.270
FraudTool.AntiVirus360.103
Kryptik.114
PWSteal.Agent.457
PWSteal.QQPass.216
PWSteal.OnLineGames.1473
PWSteal.OnLineGames.1472
PWSteal.OnLineGames.1471
PWSteal.OnLineGames.1470
PWSteal.OnLineGames.1469
PWSteal.OnLineGames.1468
PWSteal.OnLineGames.1467
PWSteal.OnLineGames.1466
PWSteal.OnLineGames.1465
PWSteal.OnLineGames.1464
PWSteal.OnLineGames.1463
PWSteal.OnLineGames.1462
PWSteal.OnLineGames.1461
Rootkit.Pakes.100
Rootkit.Podnuha.127
Rootkit.Podnuha.126
Rootkit.TDSS.150
Rootkit.TDSS.149
Sinowal.148
Sinowal.147
TrojanDownloader.FraudLoad.518
TrojanDownloader.Obvod.102
TrojanDownloader.Obvod.101
TrojanDownloader.Renos.154
TrojanDropper.Agent.1154
TrojanDropper.Agent.1153
TrojanDropper.Agent.1152
TrojanDropper.Agent.1151
TrojanSpy.Bancos.653
TrojanSpy.Zbot.686
TrojanSpy.Zbot.685
TrojanSpy.Zbot.684
TrojanSpy.Zbot.683
TrojanSpy.Zbot.682
TrojanSpy.Zbot.681
VB.1386
Worm.AutoRun.368
Worm.AutoTDSS.131
Worm.Iksmas.129

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.

You should have 205235 rules.
http://www.misec.net/forum/board/RulesetUpdates/1233200881
Discussion is locked
You are posting a reply to: UPDATES - January 29, 2009
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - January 29, 2009
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
NOD32 - 3809 (20090129)
by roddy32 / January 28, 2009 8:57 PM PST
2009-01-29 04:55
BAT/Agent.NBD, BAT/Qhost.NAX, BAT/TrojanDownloader.Ftp.NBB (4), HTML/TrojanDownloader.IFrame, INF/Autorun, JS/TrojanDownloader.Agent.CKM, NSIS/TrojanDownloader.Agent.NAP, PDF/Exploit.Pidief.NFU (2), Win32/Adware.Agent.NKU (3), Win32/Adware.Antivirus2008, Win32/Adware.GooochiBiz (2), Win32/Adware.InternetAntivirus (9), Win32/Adware.KwSearchGuide (5), Win32/Adware.MSAntispyware2009 (2), Win32/Adware.PowerAntivirus, Win32/Adware.SpyProtector.D, Win32/Adware.Virtumonde (5), Win32/Adware.XPAntivirus (2), Win32/Adware.XPPoliceAntivirus, Win32/Afcore.NAN (2), Win32/Agent.BHNZ, Win32/Agent.BINY (4), Win32/Agent.OCX (2), Win32/Agent.ODC, Win32/Agent.OLE, Win32/Agent.OSI (2), Win32/Agent.OTZ (2), Win32/Agent.OUE, Win32/Agent.OUF, Win32/Agent.WPI (3), Win32/Autoit.NBX, Win32/Autoit.NBY, Win32/AutoRun.ABH (2), Win32/AutoRun.Agent.GZ (3), Win32/AutoRun.Agent.HA, Win32/AutoRun.FakeAlert.AF, Win32/BHO.NLQ, Win32/BHO.NLZ (3), Win32/Bifrose.ADR, Win32/Delf.BGFZ, Win32/Delf.JI, Win32/Delf.NND (2), Win32/Delf.NRU (2), Win32/Delf.NRV (2), Win32/Delf.NWV, Win32/Delf.NWZ (2), Win32/Delf.NXM, Win32/Delf.NYN (2), Win32/Hupigon, Win32/Hupigon.FPRS, Win32/Hupigon.NKJ, Win32/Hupigon.NMJ, Win32/Olmarik.D (52), Win32/Pacex.Gen, Win32/Poison.QIV, Win32/PSW.OnLineGames.NMP (3), Win32/PSW.OnLineGames.NMY (4), Win32/PSW.OnLineGames.ODJ, Win32/PSW.Tibia.BS, Win32/PSW.Tibia.YH, Win32/Qhost, Win32/Rootkit.Agent.NIP, Win32/Sohanad.AS, Win32/SpamTool.Blen (3), Win32/Spy.Banbra.GHF (2), Win32/Spy.Banbra.NOI, Win32/Spy.Bancos.DGS, Win32/Spy.Banker.ACMV (4), Win32/Spy.Banker.OCU, Win32/Spy.Banker.PLN (2), Win32/Spy.Banker.QFG, Win32/Spy.Bankpatch.AG, Win32/Spy.Bankpatch.AI, Win32/Spy.Delf.FFV (2), Win32/Spy.Delf.NNM (6), Win32/Spy.Zbot.CO, Win32/Spy.Zbot.FJ (2), Win32/Spy.Zbot.GG, Win32/Spy.Zbot.GJ, Win32/TrojanDownloader.Agent.BDQ (2), Win32/TrojanDownloader.Agent.OSS, Win32/TrojanDownloader.Banload.ZU (2), Win32/TrojanDownloader.Banload.ZUN, Win32/TrojanDownloader.Delf.ONL (2), Win32/TrojanDownloader.Delf.ONW, Win32/TrojanDownloader.FakeAlert.XH, Win32/TrojanDownloader.Small.OHD, Win32/TrojanDownloader.Small.OJX (3), Win32/TrojanDownloader.VB.NUF, Win32/TrojanDropper.Agent.NJV (5), Win32/TrojanDropper.Delf.NLG, Win32/TrojanDropper.VB.NGN, Win32/TrojanProxy.Small.NCT (4), Win32/VB.HGX, Win32/VB.IDD, Win32/VB.NVS, Win32/VB.NVT, Win32/VB.NVU, Win32/VB.NVV, Win32/Waledac
http://www.eset.eu/podpora/aktualizacia-3809?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 3810 (20090129)
by roddy32 / January 28, 2009 8:59 PM PST
2009-01-29 11:42
MSIL/PSW.Steathie.C, MSIL/PSW.Steathie.D, Win32/Adware.Antivirus2008, Win32/Adware.InternetAntivirus (4), Win32/Adware.Virtumonde (6), Win32/Adware.Virtumonde.NDI, Win32/Agent.NRY, Win32/Agent.OAF (6), Win32/Agent.OUI, Win32/Agent.OUJ, Win32/Agent.WPI, Win32/Allaple.NAA, Win32/Autoit.EB, Win32/Autoit.EE, Win32/AutoRun.ABH, Win32/AutoRun.Agent.DO, Win32/AutoRun.Agent.HC, Win32/AutoRun.Agent.HD, Win32/AutoRun.Agent.HE (2), Win32/AutoRun.Delf.AC (2), Win32/AutoRun.Delf.AW (3), Win32/AutoRun.FakeAlert.M, Win32/AutoRun.KS, Win32/BHO.NLG, Win32/Bifrose, Win32/Boberog.G (2), Win32/Delf.NYP, Win32/Injector.IB, Win32/IRCBot.AGP, Win32/PcClient, Win32/PcClient.NCR, Win32/PSW.Gamania.NBG, Win32/PSW.OnLineGames.NFN, Win32/PSW.OnLineGames.NMY, Win32/PSW.WOW.NCD, Win32/Rootkit.Vanti.NAI, Win32/Rootkit.Vanti.NBA, Win32/Sohanad, Win32/Spy.Banker.QEO, Win32/Spy.Banker.QEP, Win32/Spy.Delf.NQE, Win32/Spy.KeyLogger.NDQ (2), Win32/Spy.Zbot.GO, Win32/TrojanDownloader.Agent.ONB, Win32/TrojanDownloader.Delf.OLI (4), Win32/TrojanDownloader.Delf.ONW, Win32/TrojanDownloader.FakeAlert.GU, Win32/TrojanDownloader.FakeAlert.SM, Win32/TrojanDownloader.FakeAlert.WR, Win32/TrojanDownloader.FakeAlert.XX (5), Win32/TrojanDownloader.FakeAlert.XY, Win32/TrojanDownloader.FakeAlert.XZ, Win32/TrojanDownloader.Zlob.BOK, Win32/Waledac.AF, Win32/Waledac.AG
http://www.eset.eu/podpora/aktualizacia-3810?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 3811 (20090129)
by roddy32 / January 28, 2009 11:07 PM PST
2009-01-29 15:05
MSIL/Agent.NAH, NSIS/TrojanDownloader.QQHelper.NAB, Win32/Adware.AntiSpyware2008 (2), Win32/Adware.Antivirus2008 (2), Win32/Adware.Coolezweb (4), Win32/Adware.GooochiBiz (2), Win32/Adware.HeadClick (5), Win32/Adware.NaviPromo, Win32/Adware.SpywareGuard (7), Win32/Adware.Virtumonde (2), Win32/Adware.Virtumonde.NDI, Win32/Adware.WiniGuard (4), Win32/Adware.XPAntivirus (2), Win32/Agent.BKUN, Win32/Agent.NDP, Win32/Agent.NDP (4), Win32/Agent.OUK, Win32/AutoRun.Agent.CA, Win32/AutoRun.Spy.Agent.A (2), Win32/AutoRun.Spy.Agent.B (2), Win32/AutoRun.WC, Win32/BHO.NLR, Win32/Generic, Win32/KillFiles.TN, Win32/Kolab.BDM (3), Win32/Koobface.BK (2), Win32/Koobface.NAO, Win32/Koobface.NAR (2), Win32/Koobface.NAS (2), Win32/Koobface.NAT (2), Win32/Koobface.NAU (2), Win32/Mydoom.CI (2), Win32/Mydoom.CJ (2), Win32/Mydoom.NAC, Win32/Mydoom.NAI, Win32/Naprat.A, Win32/Olmarik.D (6), Win32/Olmarik.EB, Win32/Olmarik.EC, Win32/Olmarik.ED, Win32/Olmarik.EE (2), Win32/Olmarik.EF, Win32/Olmarik.EG, Win32/Peerfrag.F (2), Win32/PSW.Legendmir.NGG, Win32/PSW.OnLineGames.NMP (4), Win32/PSW.OnLineGames.NMY (5), Win32/PSW.OnLineGames.ODJ, Win32/PSW.OnLineGames.OHK, Win32/PSW.OnLineGames.OHL (3), Win32/PSW.WOW.DZI, Win32/Rootkit.Podnuha.NBM (2), Win32/Rustock.NGS, Win32/Spy.Banbra.NOF, Win32/Spy.Banker.QEP (2), Win32/Spy.Banker.QGS, Win32/Spy.Banker.QGT (4), Win32/Spy.Delf.NQF (2), Win32/Spy.Zbot.GM (2), Win32/Spy.Zbot.GP, Win32/Spy.Zbot.GQ, Win32/TrojanClicker.Agent.NEB, Win32/TrojanDownloader.Adload.FU (2), Win32/TrojanDownloader.Agent.OST, Win32/TrojanDownloader.Banload.OMM (2), Win32/TrojanDownloader.Banload.OMN, Win32/TrojanDownloader.Delf.OOH, Win32/TrojanDownloader.FakeAlert.GU, Win32/TrojanDownloader.FakeAlert.NQ, Win32/TrojanDownloader.FakeAlert.YA (2), Win32/TrojanDownloader.VB.NUW (2), Win32/TrojanDownloader.VB.NUX, Win32/TrojanDropper.Delf.NLI, Win32/TrojanProxy.Delf.CE, Win32/UltimateDefender.A (2), Win32/VB.NVY
http://www.eset.eu/podpora/aktualizacia-3811?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
ClamAV #8918
by roddy32 / January 28, 2009 9:03 PM PST

Latest ClamAV? stable release is: 0.94.2
Total number of signatures: 500571
ClamAV Virus Databases:
main.cvd ver. 49 released on 22 Oct 2008 07:46 +0000
daily.cvd ver. 8918 released on 29 Jan 2009 11:42 +0000
http://www.clamav.net/

Collapse -
AVG - AVI: 270.10.15/1923
by roddy32 / January 28, 2009 9:13 PM PST

Added detection of new variants of trojans Downloader.Agent.ATTF, Downloader.Banload.AIAP, SHeur2.NPB, PSW.Agent.XUF, PSW.Ldpinch.WVU, Generic12.BFAR.
January 29, 2009
http://www.grisoft.com/us.download-update

Collapse -
AVG - AVI: 270.10.15/1924
by roddy32 / January 29, 2009 4:04 AM PST
Collapse -
avast! update 28.1.2009 version: 090128-0
by roddy32 / January 28, 2009 9:21 PM PST
Collapse -
avast! update 29.1.2009 version: 090129-0
by roddy32 / January 29, 2009 4:20 AM PST
Collapse -
BOClean FILE DATE: 2009-01-29 13:06:09 (UTC)
by roddy32 / January 28, 2009 10:25 PM PST
SEVENTY THREE new nasties for a total of 69,804 **UNIQUE**
infectors (339,159 variants of these including
trojans,worms,bots,hijackers,downloaders,spam proxies, rootkits, adware,
spyware,keyloggers,"dialers" and other malware in total) covered in
today's update for BOClean 4.27.

Please also note that if you ever miss an update (or several) the update
you collect includes **ALL** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.comodo.com/boclean/trolist.html
Collapse -
Panda
by roddy32 / January 28, 2009 11:09 PM PST
Collapse -
AntiVir Version: 7.01.01.202
by roddy32 / January 29, 2009 12:05 AM PST
Collapse -
a-squared signature updates
by roddy32 / January 29, 2009 12:12 AM PST
Collapse -
another
by roddy32 / January 29, 2009 4:18 AM PST
Collapse -
NAV Daily
by roddy32 / January 29, 2009 12:39 AM PST
Collapse -
McAfee Daily #5510
by roddy32 / January 29, 2009 3:38 AM PST
Collapse -
SUPERAntiSpyware #3735
by roddy32 / January 29, 2009 4:09 AM PST
Collapse -
SUPERAntiSpyware #3736
by roddy32 / January 29, 2009 10:39 AM PST
In reply to: SUPERAntiSpyware #3735
Collapse -
F-Prot
by roddy32 / January 29, 2009 6:40 AM PST

F-PROT Antivirus can as of 29 January 2009 detect more than 1310835 worms, viruses and other malicious programs with its latest virus signature file.
http://www.f-prot.com/products/currentversions.html

Note: The total detections on the site are the same as what was posted on the 23rd of December 2008, BUT the actual program is being updated automatically at regular intervals even though the webpage isn't.

Popular Forums

icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

FALL TV PREMIERES

Your favorite shows are back!

Don’t miss your dramas, sitcoms and reality shows. Find out when and where they’re airing!