Spyware, Viruses, & Security forum

General discussion

UPDATES - July 22, 2008

TrojanHunter 5.0 Ruleset Update - July 21, 2008

An updated TrojanHunter ruleset is available. This update adds 35 new trojan definitions:

Agent.2590
Agent.2589
BHO.313
Buzus.161
Buzus.160
CatFriend.100
Crypt.404
Exploit.IMG-ANI.100
FakeAlert.155
FakeAlert.154
FraudTool.SecurityAlert.100
HacDef.165
HackTool.VB.132
Midgare.104
Monder.197
Monder.196
Monder.195
Obfuscated.414
PcClient.255
PWSteal.LdPinch.727
Rootkit.Qandr.109
Skintrim.109
Tibs.526
Tibs.525
TrojanDownloader.Exchanger.116
TrojanDownloader.FraudLoad.257
TrojanDownloader.FraudLoad.256
TrojanDownloader.Small.2624
TrojanDownloader.Tibs.270
TrojanDownloader.Tibs.269
TrojanDropper.Joiner.144
TrojanDropper.Small.524
TrojanSpy.Agent.465
Worm.Kolab.118
Worm.Socks.143

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.

You should have 180920 rules.
http://www.misec.net/forum/board/RulesetUpdates/1216700443
Discussion is locked
You are posting a reply to: UPDATES - July 22, 2008
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - July 22, 2008
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
NOD32 - 3287 (20080722)

In reply to: UPDATES - July 22, 2008

2008-07-22 11:28
HTML/TrojanClicker.IFrame.RU, Win32/Adware.AntiSpyCheck, Win32/Adware.NaviPromo, Win32/Adware.PowerScan, Win32/Adware.XPAntivirus, Win32/Agent.LY, Win32/Agent.NMK (4), Win32/Agent.NML (4), Win32/Agent.NMN (2), Win32/Agent.NSG (3), Win32/PSW.Agent.NIF, Win32/Rbot, Win32/Spy.Banbra.NLN (2), Win32/TrojanDownloader.FakeAlert.DR, Win32/TrojanDownloader.FakeAlert.EY (2), Win32/TrojanDownloader.IstBar (2), Win32/TrojanDownloader.IstBar.KQ, Win32/TrojanDownloader.Small.ODU, Win32/TrojanDownloader.Zlob.CEE (9), Win32/TrojanDropper.BindFile.E, Win32/TrojanDropper.Joiner.M, Win32/TrojanDropper.Miewer.A, Win32/TrojanDropper.Small.NHU, Win32/TrojanProxy.Dlena
http://www.eset.eu/podpora/aktualizacia-3287?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 3288 (20080722)

In reply to: NOD32 - 3287 (20080722)

2008-07-22 13:57
BAT/Agent.D, HTML/TrojanClicker.IFrame.NAD, HTML/TrojanDownloader.IFrame, IRC/Cloner.BE, JS/TrojanDownloader.Psyme.HX, JS/TrojanDownloader.Psyme.NDH, JS/TrojanDownloader.Small.NAS, Linux/Exploit.Small.M, NSIS/TrojanDownloader.Agent.A, NSIS/TrojanDownloader.Agent.K, NSIS/TrojanDownloader.Agent.M, NSIS/TrojanDownloader.Agent.NAF, Unix/Amalthea.A, Unix/Padania.A, VBS/TrojanDownloader.Psyme.BL, Win32/Adware.BHO.NDA, Win32/Adware.BiSpy (2), Win32/Adware.Virtumonde (6), Win32/Agent.NZC, Win32/Agent.NZD (2), Win32/AutoRun.TI, Win32/Dialer.CT (2), Win32/Hupigon, Win32/Injector.BS, Win32/KeyLogger.Ardamax, Win32/NetTool.SmtpModule.C (3), Win32/Obfuscated.EN, Win32/Qhost, Win32/Rbot, Win32/Sohanad.NCC, Win32/Sohanad.NCD, Win32/SpamTool.VB.F, Win32/TrojanClicker.Agent.NDW (2), Win32/TrojanDropper.Mudrop.AE (2), Win32/TrojanDropper.VB.HX, Win32/TrojanDropper.VB.NDX (2), Win32/VB.NFW (2), Win32/VB.NFX
http://www.eset.eu/podpora/aktualizacia-3288?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 3289 (20080722)

In reply to: NOD32 - 3288 (20080722)

2008-07-22 22:19
BAT/Bomgen, IRC/Kelebek.H (3), JS/Redirector.S, JS/TrojanDropper.Small.G, MSIL/Autorun.B, REG/TrojanDropper.Bomgen.A, VBS/TrojanDropper.Bomgen.V, VBS/TrojanDropper.Inor.AD, Win32/Adware.BHO.NDB (2), Win32/Adware.Ejik.NAK (4), Win32/Adware.Ejik.NAL (2), Win32/Adware.GooochiBiz, Win32/Adware.IeDefender.NGK (2), Win32/Adware.UltimateDefender (7), Win32/Adware.Virtumonde (9), Win32/Adware.Websearch, Win32/Adware.WinXDefender (2), Win32/Agent.ETH, Win32/Agent.MB, Win32/Agent.NDI (2), Win32/Agent.NEQ (2), Win32/Agent.NMM (4), Win32/Agent.NMO (2), Win32/Agent.VOB, Win32/Archivarius.B, Win32/AutoRun.TC, Win32/AutoRun.TJ (2), Win32/AutoRun.TK (3), Win32/AutoRun.TL (2), Win32/AutoRun.TM, Win32/AutoRun.TN, Win32/Bagle.PH (2), Win32/Banwor.NBG, Win32/BHO.NEX (2), Win32/BHO.NFX (3), Win32/Delf.NMZ (2), Win32/Dialer.InstantAccess (2), Win32/EmailCatcher, Win32/Flooder.Delf.F (2), Win32/Flooder.Escaperun.A (2), Win32/HacDef, Win32/HackTool.Delf.AA, Win32/HackTool.Delf.W (2), Win32/HackTool.SFind.C (2), Win32/HackTool.Wilco.A, Win32/Hupigon (2), Win32/KillAV.NBZ, Win32/Nuwar.DF, Win32/PSW.OnLineGames.NMP (2), Win32/PSW.OnLineGames.NMY, Win32/PSW.OnLineGames.NOP, Win32/PSW.OnLineGames.NYC (3), Win32/PSW.OnLineGames.VPI, Win32/PSW.QQPass.NDN (3), Win32/PSW.QQRob.DW, Win32/Qhost, Win32/Qhost.NEF, Win32/Relmony.B, Win32/Rodal.A, Win32/Spy.Banker.DYJ (2), Win32/Spy.Banker.KSO (2), Win32/Spy.Banker.OXS (3), Win32/Spy.Banker.OXT, Win32/Spy.Banker.OXV, Win32/Spy.Banker.OXW, Win32/TrojanClicker.Winpup.B, Win32/TrojanDownloader.Agent.UTS (2), Win32/TrojanDownloader.Banload.LNU (2), Win32/TrojanDownloader.Banload.LYX (2), Win32/TrojanDownloader.Banload.OAF (2), Win32/TrojanDownloader.Delf.ER, Win32/TrojanDownloader.Delf.OBY, Win32/TrojanDownloader.FakeAlert.BP (2), Win32/TrojanDownloader.FakeAlert.DR (2), Win32/TrojanDownloader.Ieser.CN, Win32/TrojanDownloader.PurityScan, Win32/TrojanDownloader.PurityScan.EG (2), Win32/TrojanDownloader.QQHelper.NGO, Win32/TrojanDownloader.Zlob.CEF (17), Win32/TrojanDownloader.Zlob.CEG, Win32/TrojanDropper.Delf.NHN, Win32/TrojanDropper.Delf.NHP (6), Win32/TrojanDropper.Miewer.B, Win32/TrojanNotifier.OptixPager.SE.C (2), Win32/TrojanNotifier.VB.NAB (2), Win32/TrojanProxy.Daemonize.NAE (2)
http://www.eset.eu/podpora/aktualizacia-3289?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
SUPERAntiSpyware - 07/21/2008 - #3510

In reply to: UPDATES - July 22, 2008

Collapse -
SUPERAntiSpyware #3511

In reply to: SUPERAntiSpyware - 07/21/2008 - #3510

Collapse -
AVG - AVI 270.5.4/ 1566

In reply to: UPDATES - July 22, 2008

Added detection of new variant of I-Worm/Brontok, I-Worm/Nuwar, Worm/Agent, new variants of trojans Patched, BackDoor.IRCBot.
July 22, 2008
http://www.grisoft.com/us.news

Collapse -
AVG - AVI 270.5.4/ 1567

In reply to: AVG - AVI 270.5.4/ 1566

Collapse -
AntiVir Version: 7.00.05.151

In reply to: UPDATES - July 22, 2008

Collapse -
avast! 4.x VPS (released:22.7.2008, version: 080722-0)

In reply to: UPDATES - July 22, 2008

Collapse -
Ad-Aware defs update

In reply to: UPDATES - July 22, 2008

0105.0000 - July 22, 2008

New definitions:

====================
Win32.Backdoor.Sbot
Win32.Worm.Mnim

Updated definitions:
====================
Adware.DM
PurityScan
Spyware.AdvancedKeyLogger
Win32.AdWare.Cinmus
Win32.Backdoor.Agent
Win32.Backdoor.Agobot
Win32.Backdoor.Bifrose
Win32.Backdoor.Ceckno
Win32.Backdoor.CiaDoor
Win32.Backdoor.Delf
Win32.Backdoor.DsBot
Win32.Backdoor.EggDrop
Win32.Backdoor.HacDef
Win32.Backdoor.Hupigon
Win32.Backdoor.IRCBot
Win32.Backdoor.Iroffer
Win32.Backdoor.Litmus
Win32.Backdoor.Mytobor
Win32.Backdoor.Nepoe
Win32.Backdoor.Pakes
Win32.Backdoor.Poebot
Win32.Backdoor.PopWin
Win32.Backdoor.Prorat
Win32.Backdoor.RBot
Win32.Backdoor.Robobot
Win32.Backdoor.Rukap
Win32.Backdoor.SDBot
Win32.Backdoor.Sensode
Win32.Backdoor.Small
Win32.Backdoor.Spyboter
Win32.Backdoor.VanBot
Win32.Backdoor.VB
Win32.Backdoor.Wollf
Win32.Backdoor.WootBot
Win32.Dialer.GBDialer
Win32.Dialer.Trojan
Win32.Dluca.TrojanDownloader
Win32.Generic.PWS
Win32.Hacktool.Brontok
Win32.P2PWorm.Agent
Win32.P2PWorm.Krepper
Win32.P2PWorm.SpyBot
Win32.Trojan.Agent
Win32.Trojan.BHO
Win32.Trojan.Buzus
Win32.Trojan.Delf
Win32.Trojan.Diamin
Win32.Trojan.Monder
Win32.Trojan.Obfuscated
Win32.Trojan.Pakes
Win32.Trojan.Qhost
Win32.Trojan.ShipUp
Win32.Trojan.Small
Win32.Trojan.Spy
Win32.Trojan.StartPage
Win32.Trojan.Vaklik
Win32.Trojan.Vapsup
Win32.Trojan.VB
Win32.TrojanClicker
Win32.TrojanClicker.Delf
Win32.TrojanClicker.Small
Win32.TrojanClicker.VB
Win32.TrojanDownloader.Adload
Win32.TrojanDownloader.Agent
Win32.TrojanDownloader.Bagle
Win32.TrojanDownloader.Banload
Win32.TrojanDownloader.CWS
Win32.TrojanDownloader.Dadobra
Win32.TrojanDownloader.Delf
Win32.TrojanDownloader.Exchanger
Win32.TrojanDownloader.Firu
Win32.TrojanDownloader.Homles
Win32.TrojanDownloader.Mutant
Win32.TrojanDownloader.Nurech
Win32.TrojanDownloader.Small
Win32.TrojanDownloader.Tibs
Win32.TrojanDownloader.VB
Win32.TrojanDropper
Win32.Trojan-Dropper.MuDrop
Win32.TrojanDropper.Pincher
Win32.TrojanDropper.Small
Win32.TrojanDropper.Sramler
Win32.TrojanDropper.VB
Win32.TrojanProxy.Agent.dl
Win32.TrojanProxy.Delf
Win32.TrojanProxy.Mitglieder.bi
Win32.TrojanProxy.Slaper
Win32.TrojanProxy.Small
Win32.Trojan-PSW.Hangame
Win32.Trojan-PSW.Nilage
Win32.TrojanPWS.Delf
Win32.TrojanPWS.LdPinch
Win32.TrojanPWS.Lmir
Win32.TrojanPWS.Magania
Win32.TrojanPWS.Maran
Win32.TrojanPWS.OnlineGames
Win32.TrojanPWS.Papras
Win32.TrojanPWS.QQPass
Win32.TrojanPWS.WOW
Win32.Trojan-PWS.YahooPass
Win32.TrojanSpy.Banker
Win32.TrojanSpy.Delf
Win32.TrojanSpy.Keylogger
Win32.TrojanSpy.Pophot
Win32.TrojanSpy.Zbot
Win32.Worm.Allaple
Win32.Worm.Anilogo
Win32.Worm.Anker
Win32.Worm.AutoIt
Win32.Worm.Bagle
Win32.Worm.Dedler
Win32.Worm.Delf
Win32.Worm.Downloader
Win32.Worm.Fujack
Win32.Worm.Kolab
Win32.Worm.Mytob
Win32.Worm.Otwycal
Win32.Worm.Rokut
Win32.Worm.Roron
Win32.Worm.Socks
Win32.Worm.Warezov
Win32.Worm.VB
Win32.Worm.Viking
Win32.Worm.Zhelatin

MD5 checksum for core.aawdef is 4671cfb5b69e6f329a01c40e9a56fe7b
MD5 checksum for defs.ref is 9a0a2a79b046c0b397e5829e58b008ac
http://www.lavasoft.com/support/securitycenter/blog/?p=263#more-263
Collapse -
a-squared signature update

In reply to: UPDATES - July 22, 2008

Collapse -
a-squared signature update 07/23/2008

In reply to: a-squared signature update

Collapse -
F-Prot - 07/20/2008

In reply to: UPDATES - July 22, 2008

Collapse -
BOClean FILE DATE : 2008-07-22 13:18:52 (UTC)

In reply to: UPDATES - July 22, 2008

[color=blue]FILE DATE : 2008-07-22 13:18:52 (UTC)[/color]

FORTY TWO new nasties for a total of 58801 **UNIQUE**
infectors (323,690 variants of these including
trojans,worms,bots,hijackers,downloaders,spam proxies, rootkits, adware,
spyware,keyloggers,"dialers" and other malware in total) covered in
today's update for BOClean 4.27.

Please also note that if you ever miss an update (or several) the update
you collect includes **ALL** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.nsclean.com/trolist.html
Collapse -
BOClean FILEDATE: 2008-07-22 14:50:07 (UTC)

In reply to: BOClean FILE DATE : 2008-07-22 13:18:52 (UTC)

TWENTY-TWO new nasties for a total of 58823 *UNIQUE* infectors (
323,725 variants of these including trojans, worms, bots, hijackers,
downloaders, spam proxies, rootkits, adware, spyware, keyloggers,
"dialers" and other malware in total) covered in today's update for
BOClean 4.27.

Please also note that if you ever miss an update (or several) the update
you collect includes ***ALL*** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.nsclean.com/trolist.html
Collapse -
ClamAV #7779

In reply to: UPDATES - July 22, 2008

Latest ClamAV? stable release is: 0.93.3
Total number of signatures: 367287
ClamAV Virus Databases:
main.cvd ver. 47 released on 23 Jun 2008 18:20 +0000
daily.cvd ver. 7779 released on 22 Jul 2008 09:22 +0000
http://www.clamav.net/

Collapse -
Panda

In reply to: UPDATES - July 22, 2008

Collapse -
NAV Daily

In reply to: UPDATES - July 22, 2008

Daily Updates
Symantec AntiVirus
Norton AntiVirus 2006/2007

Virus Definitions created July 22
Virus Definitions released July 22
Defs Version: 100722c
Sequence Number: 83809
Extended Version: 7/22/2008 rev. 3
Total Detections (Threats & Risks): 1972310
http://www.symantec.com/avcenter/defs.download.html
Collapse -
hpHOSTS - UPDATED July 22nd, 2008

In reply to: UPDATES - July 22, 2008

The hpHOSTS Hosts file has been updated. There is now a total of 53,537 listed hostsnames.

If you are NOT using the installer, please read the included Readme.txt file for installation instructions.


*Latest Updated: 22/07/2008 17:00
*Last Verified: 22/07/2008 17:45


Download hpHosts now!
http://www.hosts-file.net/?s=Download

hpHOSTS is a community managed hosts file. What that means to you is that you have a key role to play in improving hpHOSTS by submitting undesirable sites you think should be listed or by requesting removal of sites you think may have been added in error. This process is performed in our public forums and all decisions to add or remove sites are subject to public criticism and ongoing re-evaluation. If you would like to get involved, please register* at the hpHOSTS Hosts File Support Forum.

* Registration is free and is not required to download the hpHOSTS hosts file.

--------------------------------------------------------------------------
Alternative hosts file providers.
*MVPS - http://mvps.org/winhelp2002/hosts.htm
*McRae - http://pgl.yoyo.org/as/
*Mike Skallas - http://everythingisnt.com/hosts.html

Collapse -
McAfee Daily #5344

In reply to: UPDATES - July 22, 2008

Collapse -
BitDefender 07/23/2008 - 00:24

In reply to: UPDATES - July 22, 2008

Popular Forums

icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

SMART HOME

This one tip will help you sleep better tonight

A few seconds are all you need to get a better night's rest.