HolidayBuyer's Guide

Spyware, Viruses, & Security forum

General discussion

UPDATES - July 17, 2008

by roddy32 / July 16, 2008 9:33 PM PDT
TrojanHunter 5.0 Ruleset Update - July 16, 2008

An updated TrojanHunter ruleset is available. This update adds at least 53 new trojan definitions:

Adware.Vapsup.295
Agent.2583
Agent.2582
FraudTool.AntiSpyware.105
Hupigon.1233
Inject.242
Midgare.103
Monder.191
Monder.190
Monder.189
Monder.188
Poison.116
PWSteal.LdPinch.726
PWSteal.Magania.208
PWSteal.Magania.207
PWSteal.Magania.206
PWSteal.Magania.205
PWSteal.OnLineGames.1132
PWSteal.OnLineGames.1131
PWSteal.OnLineGames.1130
PWSteal.OnLineGames.1129
PWSteal.Papras.108
Rootkit.Podnuha.113
SDBot.1223
SDBot.1222
SpamTool.Agent.183
TrojanClicker.Agent.355
TrojanDownloader.Agent.2399
TrojanDownloader.Agent.2398
TrojanDownloader.Banload.1443
TrojanDownloader.Delf.1401
TrojanDownloader.FraudLoad.247
TrojanDownloader.FraudLoad.246
TrojanDownloader.Mutant.146
TrojanDownloader.Zlob.1515
TrojanDownloader.Zlob.1514
TrojanDropper.Agent.923
TrojanDropper.Delf.709
TrojanDropper.Delf.708
TrojanDropper.Delf.707
TrojanDropper.VB.313
TrojanDropper.VB.312
TrojanSpy.Punk.100
VB.1241
VB.1240
Vundo.1241
Vundo.1240
Vundo.1239
Vundo.1238
Worm.AutoRun.181
Worm.AutoRun.180
Worm.Socks.142
Worm.Warezof.409

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.

You should have 180599 rules.
http://www.misec.net/forum/board/RulesetUpdates/1216268738
Discussion is locked
You are posting a reply to: UPDATES - July 17, 2008
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - July 17, 2008
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
avast! 4.x VPS (released:17.7.2008, version: 080717-0)
by roddy32 / July 16, 2008 9:41 PM PDT
Collapse -
SUPERAntiSpyware - 07/16/2008 #3506
by roddy32 / July 16, 2008 9:49 PM PDT
Collapse -
SUPERAntiSpyware #3507
by roddy32 / July 17, 2008 11:13 AM PDT
Collapse -
AVG - AVI 270.5.0/ 1558
by roddy32 / July 16, 2008 10:16 PM PDT
Collapse -
AVG - AVI 270.5.1/ 1559
by roddy32 / July 17, 2008 6:26 AM PDT

Added detection of new variant of I-Worm/Nuwar, new variants of trojans Downloader.FraudLoad, BHO, Rootkit-Agent, SpySheriff, Vundo.
July 17, 2008
http://www.grisoft.com/us.news

Collapse -
BitDefender 14:22
by roddy32 / July 16, 2008 10:23 PM PDT
Collapse -
ClamAV #7734
by roddy32 / July 16, 2008 10:33 PM PDT

Latest ClamAV? stable release is: 0.93.3
Total number of signatures: 355854
ClamAV Virus Databases:
main.cvd ver. 47 released on 23 Jun 2008 18:20 +0000
daily.cvd ver. 7734 released on 17 Jul 2008 11:02 +0000
http://www.clamav.net/

Collapse -
Ad-Aware defs update
by roddy32 / July 16, 2008 10:34 PM PDT
0104.0000 - July 17, 2008

New definitions:

====================
Adware.IESuper
Win32.Backdoor.Bot
Win32.Backdoor.Seed
Win32.Rootkit.Podnuha
Win32.Trojan.Atraps
Win32.Trojan.Delflob
Win32.Trojan.IEHomeChan
Win32.TrojanDownloader.Drv32
Win32.TrojanDownloader.Obitel
Win32.TrojanDropper.Auto
Win32.Trojan-Dropper.Binder
Win32.TrojanDropper.BindFile
Win32.TrojanMailfinder.Mailbot
Win32.TrojanProxy.Posta
Win32.Trojan-PWS.BlackCode
Win32.TrojanPWS.QuickBatch
Win32.TrojanSpy.SpyEx
Win32.Worm.GetCodec
Win32.Worm.PornRun

Updated definitions:
====================
AdvancedXPFixer
Adware.Allsum
Adware.Barogo
Adware.BHO(generic)
Adware.E404
Adware.Ejik
Adware.Mirar
Adware.NaviPromo
Adware.NetAdware
Adware.Sahat
Adware.Sidebar
Adware.Stud
Adware.ZenoSearch
AntiSpyCheck
AntispySpider
AntispywareBot
AntiSpywareExpert
AntiVirus 2008
Antivirus XP 2008
Antivirus2009
Ardamax Keylogger
Awola
Backdoor.Visel
Dialer
EGroup Dialer
Elitum.ElitebarBHO
ErrorSafe
FakeAlert
IEDefender
Lop
MalwareCrush
MalwareWipe
Perflogger
PurityScan
SaliarAR
SCKeyLog Trojan
Toolbar.Softo
Trojan.Shutdown
Ultimateantivirus 2008
VaccineFree
Virtumonde
VirusIsolator
Win32.AdWare.Cinmus
Win32.Backdoor.Agent
Win32.Backdoor.Agobot
Win32.Backdoor.Bandok
Win32.Backdoor.Bifrose
Win32.Backdoor.BlackHole
Win32.Backdoor.BO2k
Win32.Backdoor.Cakl
Win32.Backdoor.Ceckno
Win32.Backdoor.Delf
Win32.Backdoor.EggDrop
Win32.Backdoor.Feardoor
Win32.Backdoor.HacDef
Win32.Backdoor.Hrat
Win32.Backdoor.Hupigon
Win32.Backdoor.IRCBot
Win32.Backdoor.IRCZapchast
Win32.Backdoor.Iroffer
Win32.Backdoor.MiniKeyLog
Win32.Backdoor.Mytobor
Win32.Backdoor.Netbus
Win32.Backdoor.Nethief
Win32.Backdoor.Nuclear
Win32.Backdoor.PcClient
Win32.Backdoor.Poison
Win32.Backdoor.PopWin
Win32.Backdoor.Prorat
Win32.Backdoor.RBot
Win32.Backdoor.RCServ
Win32.Backdoor.Reload
Win32.Backdoor.Robobot
Win32.Backdoor.Rukap
Win32.Backdoor.SDBot
Win32.Backdoor.Sensode
Win32.Backdoor.Shark
Win32.Backdoor.Singu
Win32.Backdoor.Small
Win32.Backdoor.Turkojan
Win32.Backdoor.VanBot
Win32.Backdoor.VB
Win32.Backdoor.WinterLove
Win32.Backdoor.WootBot
Win32.Dialer.GBDialer
Win32.Dialer.Trojan
Win32.Downloader
Win32.Flooder.Agent
Win32.Generic.PWS
Win32.Generic.Worm
Win32.Hacktool.Brontok
Win32.Hoax.Gavec
Win32.Mitglieder Trojan
Win32.P2PWorm.Agent
Win32.P2PWorm.Krepper
Win32.P2PWorm.SpyBot
Win32.Packed.PolyCrypt
Win32.Rootkit.Agent
Win32.Rootkit.Clbd
Win32.SpamTool.Agent
Win32.SpamTool.VB
Win32.Spybot.worm
Win32.Swf.Exploit
Win32.Trojan.Agent
Win32.Trojan.AntiAVG
Win32.Trojan.AutoIT
Win32.Trojan.BHO
Win32.Trojan.Buzus
Win32.Trojan.ConnectionService
Win32.Trojan.CrashSystem
Win32.Trojan.Crypt
Win32.Trojan.Delf
win32.Trojan.Dnschanger
Win32.Trojan.Downloader
Win32.Trojan.Filco
Win32.Trojan.FindVm
Win32.Trojan.Gendal
Win32.Trojan.Inject
Win32.Trojan.KillAV
Win32.Trojan.Kobcka
Win32.Trojan.Mailfinder
Win32.Trojan.Mezzia
Win32.Trojan.Monder
Win32.Trojan.Monicker
Win32.Trojan.Morphine
Win32.Trojan.Obfuscated
Win32.Trojan.Pakes
Win32.Trojan.Peed
Win32.Trojan.PopUpper
Win32.Trojan.Qhost
Win32.Trojan.Regrun
Win32.Trojan.ShipUp
Win32.Trojan.Small
Win32.Trojan.Spy
Win32.Trojan.StartPage
Win32.Trojan.SubSys
Win32.Trojan.Tibs
Win32.Trojan.Vaklik
Win32.Trojan.Vapsup
Win32.Trojan.VB
Win32.TrojanClicker
Win32.TrojanClicker.Delf
Win32.TrojanClicker.Small
Win32.TrojanDownloader.Adload
Win32.TrojanDownloader.Agent
Win32.TrojanDownloader.Bagle
Win32.TrojanDownloader.Banload
Win32.TrojanDownloader.BHO
Win32.TrojanDownloader.CallSolutions
Win32.TrojanDownloader.Cntr
Win32.TrojanDownloader.ConHook
Win32.TrojanDownloader.Cryptic
Win32.TrojanDownloader.Dadobra
Win32.TrojanDownloader.Delf
Win32.TrojanDownloader.Exchanger
Win32.TrojanDownloader.Fearless
Win32.TrojanDownloader.Firu
Win32.TrojanDownloader.FraudLoad
Win32.TrojanDownloader.Injecter
Win32.TrojanDownloader.Losabel
Win32.TrojanDownloader.Murlo
Win32.TrojanDownloader.Mutant
Win32.TrojanDownloader.Nurech
Win32.TrojanDownloader.Obfuscated
Win32.TrojanDownloader.Peregar
Win32.TrojanDownloader.QQHelper
Win32.TrojanDownloader.Small
Win32.TrojanDownloader.Swizzor.bo
Win32.TrojanDownloader.Tibs
Win32.TrojanDownloader.Tiny
Win32.TrojanDownloader.VB
Win32.TrojanDownloader.Vidlo
Win32.TrojanDownloader.Vivia
Win32.TrojanDownloader.Winlagons
Win32.TrojanDownloader.Zanoza
Win32.Trojandownloader.Zlob
Win32.TrojanDropper
Win32.Trojan-Dropper.BHO
Win32.Trojan-Dropper.Delf
Win32.TrojanDropper.Juntador
Win32.TrojanDropper.Microjoin
Win32.Trojan-Dropper.MSWord.Agent
Win32.Trojan-Dropper.MuDrop
Win32.TrojanDropper.Small
Win32.TrojanDropper.VB
Win32.TrojanProxy.Agent.dl
Win32.TrojanProxy.Horst
Win32.TrojanProxy.Proxan
Win32.TrojanProxy.Slaper
Win32.Trojan-PSW.Nilage
Win32.Trojan-PSW.QQRob
Win32.TrojanPWS.AOLpass
Win32.TrojanPWS.Delf
Win32.Trojan-PWS.Gamec
Win32.Trojan-PWS.Ganhame
Win32.Trojan-PWS.IcqSmiley
Win32.TrojanPWS.LdPinch
Win32.TrojanPWS.Lmir
Win32.TrojanPWS.Magania
Win32.TrojanPWS.OnlineGames
Win32.TrojanPWS.Papras
Win32.TrojanPWS.QQPass
Win32.Trojan-PWS.QQShou
Win32.TrojanPWS.Steam
Win32.Trojan-PWS.Tibia
Win32.TrojanPWS.VB
Win32.TrojanPWS.WebMoner
Win32.TrojanPWS.WOW
Win32.TrojanSpy.Banbra
Win32.TrojanSpy.Bancos
Win32.TrojanSpy.Banker
Win32.TrojanSpy.BZub
Win32.TrojanSpy.Delf
Win32.TrojanSpy.DiabloKeys
Win32.TrojanSpy.Flux
Win32.TrojanSpy.Keylogger
Win32.TrojanSpy.Pophot
Win32.TrojanSpy.Proagent
Win32.TrojanSpy.Small
Win32.TrojanSpy.VB
Win32.TrojanSpy.Zbot
Win32.Worm.Allaple
Win32.Worm.Anilogo
Win32.Worm.Autorun
Win32.Worm.Downloader
Win32.Worm.Fujack
Win32.Worm.Kolab
Win32.Worm.Mofeir
Win32.Worm.NanSpy
Win32.Worm.Nyxem
Win32.Worm.Opanki
Win32.Worm.Otwycal
Win32.Worm.Padobot
Win32.Worm.SDBot
Win32.Worm.Small
Win32.Worm.Socks
Win32.Worm.Sohanad
Win32.Worm.VB
Win32.Worm.Viking
Win32.Worm.Warezov
Win32.Worm.Zhelatin
WinAntiVirusPro
Winreanimator
WinSpywareProtect
XPAntivirus
XPSecurityCenter

MD5 checksum for core.awwdef is 5341fb79c4c4a4b9302101222e41b218
MD5 checksum for defs.ref is ff2003ff885a1594c42f9f98232c57ff

http://www.lavasoft.com/support/securitycenter/blog/?p=262#more-262
Collapse -
AntoVir Version: 7.00.05.132
by roddy32 / July 16, 2008 11:17 PM PDT
Collapse -
NOD32 - 3275 (20080717)
by roddy32 / July 16, 2008 11:19 PM PDT
2008-07-17 11:12
IRC/SdBot (2), PDF/Exploit.Pidief.DS, W97M/TrojanDropper.1Table.GC, W97M/TrojanDropper.1Table.GD, W97M/TrojanDropper.Agent.CN, W97M/TrojanDropper.Agent.CQ, W97M/TrojanDropper.Agent.CW, Win32/Adware.AdMedia, Win32/Adware.UltimateDefender (3), Win32/Adware.Virtumonde, Win32/Autoit.DF, Win32/AutoRun.KS, Win32/AutoRun.SV, Win32/BHO.NFH (2), Win32/BHO.NFU (3), Win32/Bifrose.ADR, Win32/Delf.NJE (4), Win32/HacDef, Win32/Hakaglan.AE, Win32/Haxdoor, Win32/Hupigon (2), Win32/Injector.BO, Win32/IRCBot.UE, Win32/Kolab.CHD, Win32/Optix.NAA, Win32/Poebot.NBN, Win32/PSW.Agent.NHQ (2), Win32/PSW.Legendmir.NFZ, Win32/PSW.Legendmir.NGA (2), Win32/PSW.Lineage.DN, Win32/PSW.OnLineGames.NFF, Win32/PSW.OnLineGames.NHY (8), Win32/PSW.OnLineGames.NML (2), Win32/PSW.OnLineGames.NNM (4), Win32/PSW.OnLineGames.NNS, Win32/PSW.OnLineGames.NOA (7), Win32/Rbot (8), Win32/Rbot.DWA, Win32/TrojanDownloader.Agent.OAM (2), Win32/TrojanDownloader.Zlob.CDR (17), Win32/TrojanDropper.Small.NHU, Win32/TrojanDropper.Small.NHW, Win32/TrojanProxy.Agent.AW, Win32/TrojanProxy.Small.NBZ, Win32/TrojanProxy.Webber.NAD, Win32/VB.ASW, Win32/VB.BAZ, Win32/VB.NEN
http://www.eset.eu/podpora/aktualizacia-3275?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 3276 (20080717)
by roddy32 / July 17, 2008 12:43 AM PDT
2008-07-17 15:21
BAT/KillFiles.NAL, IRC/SdBot (8), JS/SmackinBird.A, Linux/Zorg.A, PDF/Exploit.Pidief.NBN, VBS/AutoRun.V, Win32/AddUser.J, Win32/Adware.180Solutions (2), Win32/Adware.AdMedia (3), Win32/Adware.AntiSpyware2008 (2), Win32/Adware.Ejik.JX (4), Win32/Adware.GooochiBiz (4), Win32/Adware.MediaTickets, Win32/Adware.Sidebar, Win32/Adware.UltimateDefender (3), Win32/Adware.Virtumonde, Win32/Adware.XPAntivirus (2), Win32/Adware.YazzleSudoku, Win32/AGbot, Win32/Agent.KVO, Win32/Agent.LYB (2), Win32/Agent.NYL, Win32/Agent.NYQ (2), Win32/Agent.NYR (2), Win32/Agent.NYS, Win32/Agobot, Win32/AutoRun.RM, Win32/AutoRun.SX, Win32/Delf.NMT, Win32/Dialer.AU (2), Win32/Flooder.MailSpam.Delf.NAA, Win32/Flooder.QQFlood.A, Win32/Flooder.SmtpClient.A, Win32/FlyStudio.NAD, Win32/FlyStudio.NAE, Win32/Injector.BP, Win32/IRCBot (2), Win32/IRCBot.SX, Win32/IRCBot.TO, Win32/IRCBot.VR, Win32/Joke.FunnyErrorGenerator, Win32/KillAV.NBO, Win32/Kovirz.M, Win32/PSW.Ceda (2), Win32/PSW.OnLineGames.NFF (2), Win32/PSW.OnLineGames.NHY (2), Win32/PSW.OnLineGames.NNM (10), Win32/PSW.VB.JY, Win32/PSW.VB.NBI, Win32/Qhost.NEE, Win32/Rbot (22), Win32/RiskWare.AdTool.FenomenGame, Win32/Rootkit.Agent.NGB (2), Win32/Shadow.G, Win32/SpamTool.Myspamce.NAA (2), Win32/TrojanDownloader.Agent.NZO (5), Win32/TrojanDownloader.Agent.PD (2), Win32/TrojanDownloader.Agent.UGC, Win32/TrojanDownloader.Esepor.NAC, Win32/TrojanDownloader.Small.AWA, Win32/TrojanDownloader.Small.NZN, Win32/TrojanDownloader.VB.AWJ, Win32/TrojanDownloader.Zlob.CDR (4), Win32/TrojanDownloader.Zlob.CDS (10), Win32/TrojanDropper.Agent.NJG, Win32/TrojanDropper.Agent.NLW, Win32/TrojanDropper.VB.NAI (2), Win32/TrojanProxy.Ranky, Win32/TrojanProxy.Tramal.B (2), Win32/VB.DNO (2), Win32/VB.DV, Win32/Wootbot
http://www.eset.eu/podpora/aktualizacia-3276?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 3277 (20080718)
by roddy32 / July 17, 2008 12:59 PM PDT
2008-07-18 04:21
Gydhex.A (3), Linux/Exploit.Mms.A, VBS/Rowam.B, Win32/Adware.Ejik.NAI (2), Win32/Adware.Virtumonde (2), Win32/Adware.WinDefender (2), Win32/Adware.WinSpywareProtect (2), Win32/Agent.NEQ (2), Win32/Agent.NYT (3), Win32/Agent.NYU (3), Win32/Agent.NYV (4), Win32/Agent.NYW (5), Win32/Agent.NYX (2), Win32/Delf.NMU (4), Win32/Delf.NMV (3), Win32/Hupigon.NIY, Win32/Injector.BQ (2), Win32/PcClient.FGN, Win32/PSW.OnLineGames.NMP (2), Win32/PSW.OnLineGames.NNM (2), Win32/PSW.OnLineGames.NNU (4), Win32/PSW.OnLineGames.NOP (2), Win32/PSW.OnLineGames.NXZ, Win32/PSW.OnLineGames.OBX (2), Win32/PSW.OnLineGames.XTT (2), Win32/PSW.WOW.NDM, Win32/PSW.WOW.NDN (3), Win32/Rootkit.Agent.NGC, Win32/Spy.Agent.PZ, Win32/Spy.Banker.OXI (2), Win32/Spy.Banker.OXJ, Win32/Spy.Delf.AWW (3), Win32/TrojanClicker.Agent.NDS, Win32/TrojanClicker.Delf.AIK (2), Win32/TrojanDownloader.Agent.OAN (2), Win32/TrojanDownloader.Zlob.CDT, Win32/TrojanDownloader.Zlob.CDU, Win32/TrojanDropper.Agent.NJV
http://www.eset.eu/podpora/aktualizacia-3277?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
BOClean FILE DATE : 2008-07-17 12:40:47 (UTC)
by roddy32 / July 16, 2008 11:37 PM PDT
THIRTY new nasties for a total of 58572 **UNIQUE**
infectors (323,363 variants of these including
trojans,worms,bots,hijackers,downloaders,spam proxies, rootkits, adware,
spyware,keyloggers,"dialers" and other malware in total) covered in
today's update for BOClean 4.26.

Please also note that if you ever miss an update (or several) the update
you collect includes **ALL** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.nsclean.com/trolist.html
Collapse -
BOClean FILEDATE: 2008-07-17 13:53:21 (UTC)
by roddy32 / July 17, 2008 12:10 AM PDT
TWENTY new nasties for a total of 58592 *UNIQUE* infectors (
323,391 variants of these including trojans, worms, bots, hijackers,
downloaders, spam proxies, rootkits, adware, spyware, keyloggers,
"dialers" and other malware in total) covered in today's update for
BOClean 4.26.

Please also note that if you ever miss an update (or several) the update
you collect includes ***ALL*** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.nsclean.com/trolist.html
Collapse -
SIW 2008-07-15 is available July 14, 2008
by roddy32 / July 17, 2008 2:45 AM PDT
Collapse -
NAV Daily
by roddy32 / July 17, 2008 3:13 AM PDT
Daily Updates
Symantec AntiVirus
Norton AntiVirus 2006/2007

Virus Definitions created July 17
Virus Definitions released July 17
Defs Version: 100717c
Sequence Number: 83650
Extended Version: 7/17/2008 rev. 3
Total Detections (Threats & Risks): 1948554
http://www.symantec.com/avcenter/defs.download.html
Collapse -
Panda
by roddy32 / July 17, 2008 3:38 AM PDT
Collapse -
a-squared signature update 07/18/2008
by roddy32 / July 17, 2008 10:39 AM PDT
Collapse -
McAfeeDaily #5341
by roddy32 / July 17, 2008 11:00 AM PDT
Collapse -
AntiVir Personal Edition 8 8.1.0.326
by Donna Buenaventura / July 17, 2008 5:38 PM PDT
AntiVir Personal Edition 8 8.1.0.326
http://free-av.com/en/download/index.html
Popular Forums
icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

HOLIDAY GIFT GUIDE 2017

Cameras that make great holiday gifts

Let them start the new year with a step up in photo and video quality from a phone.