Spyware, Viruses, & Security forum

General discussion

UPDATES - March 12, 2008

by roddy32 / March 11, 2008 10:12 PM PDT

Latest ClamAV? stable release is: 0.92.1
Latest ClamAV? RC release is: 0.93rc1
Total number of signatures: 229113
ClamAV Virus Databases:
main.cvd ver. 45 released on 09 Dec 2007 15:50 +0000
daily.cvd ver. 6206 released on 12 Mar 2008 11:16 +0000
http://www.clamav.net/

Discussion is locked
You are posting a reply to: UPDATES - March 12, 2008
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - March 12, 2008
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
TrojanHunter 5.0 Ruleset Update - Mar 11, 2008
by roddy32 / March 11, 2008 10:24 PM PDT

An updated TrojanHunter ruleset is available. This update adds 50 new trojan definitions:

Adware.BHO.273
Adware.TTC.116
Adware.Vapsup.180
Agent.2256
Agent.2255
Agent.2254
Crypt.355
Delf.1009
DNSChanger.539
DNSChanger.538
DNSChanger.537
Exploit.Aluigi.100
FakeAlert.130
Favadd.116
FraudTool.SpywareSecure.102
FraudTool.UltimateDefender.118
IRCBot.700
IRCBot.699
Pakes.351
Pandex.102
Rbot.1662
TrojanClicker.Delf.191
TrojanClicker.VB.345
TrojanDownloader.Agent.2126
TrojanDownloader.Agent.2125
TrojanDownloader.Agent.2124
TrojanDownloader.Agent.2123
TrojanDownloader.Banload.1356
TrojanDownloader.Delf.1295
TrojanDownloader.FraudLoad.106
TrojanDownloader.Small.2422
TrojanDownloader.Small.2421
TrojanDownloader.Tibs.167
TrojanDownloader.Tiny.310
TrojanDownloader.VB.880
TrojanDownloader.VB.879
TrojanDownloader.VB.878
TrojanDownloader.VB.877
TrojanDownloader.VB.876
TrojanDownloader.Zlob.1292
TrojanProxy.Xorpix.161
TrojanSpy.Webmoner.141
VB.1165
VB.1164
Vundo.895
Vundo.894
Vundo.893
Vundo.892
Worm.Agent.154
Worm.Socks.101

You should have 161270 rules.
http://www.misec.net/forum/board/RulesetUpdates/1205305453

Collapse -
NOD32 - 2940 (20080312)
by roddy32 / March 11, 2008 10:53 PM PDT

2008-03-12 11:20
HTML/Exploit.CodeBaseExec, INF/Autorun (5), JS/TrojanDownloader.Agent.NDD, JS/TrojanDownloader.Agent.NDE, PP97M/TrojanDropper.Agent.NAK, PP97M/TrojanDropper.Agent.NAL, W97M/TrojanDropper.1Table.EB, Win32/AutoRun.IP, Win32/Bagle.NO, Win32/BHO.NCV (2), Win32/IRCBot.AAH (12), Win32/IRCBot.AAL, Win32/Pacex.Gen, Win32/PcClient (2), Win32/PcClient.BSJ, Win32/PcClient.NBA, Win32/PSW.LdPinch.NEL, Win32/PSW.Legendmir.NFP (2), Win32/PSW.OnLineGames.MUU (2), Win32/PSW.OnLineGames.NFN, Win32/PSW.OnLineGames.NMP (4), Win32/PSW.OnLineGames.NMW, Win32/PSW.OnLineGames.NMY (2), Win32/PSW.OnLineGames.NNC (3), Win32/PSW.OnLineGames.NND, Win32/PSW.OnLineGames.ODJ (2), Win32/Rootkit.Vanti.NBG (10), Win32/Spy.Agent.M, Win32/TrojanClicker.Delf.NBC, Win32/TrojanDownloader.Agent.NWE (2), Win32/TrojanDownloader.Delf.OCJ, Win32/TrojanDownloader.FakeAlert.AV, Win32/TrojanDownloader.Tiny.Y (2), Win32/TrojanDownloader.Zlob.BRE (18), Win32/TrojanDropper.Agent.NIN, Win32/TrojanDropper.Small.NGT, Win32/Wigon, Win32/Wigon.BA
http://www.eset.eu/podpora/aktualizacia-2940?lng=en
http://www.eset.eu/support/update-xy1

Collapse -
NOD32 - 2941 (20080312)
by roddy32 / March 12, 2008 4:03 AM PDT
2008-03-12 14:22
HTML/Phishing.Gen (5), HTML/TrojanDownloader.IFrame, JS/Exploit.RealPlay.EX (3), JS/TrojanDownloader.Agent.NDF, JS/TrojanDownloader.Iframe.CN (2), VBS/TrojanDownloader.Psyme.NDZ (2), Win32/EggDrop.NAB (3), Win32/IRCBot.AAH, Win32/PSW.LdPinch.NEL, Win32/PSW.LdPinch.NHU, Win32/PSW.Legendmir.NFF, Win32/PSW.OnLineGames.GJV (2), Win32/PSW.OnLineGames.HCV (4), Win32/PSW.OnLineGames.MUG (14), Win32/PSW.OnLineGames.NFL (10), Win32/PSW.OnLineGames.NMQ (4), Win32/PSW.OnLineGames.NMX, Win32/PSW.OnLineGames.NNE, Win32/PSW.OnLineGames.PLR, Win32/PSW.OnLineGames.RZT, Win32/PSW.WOW.WU, Win32/Spy.Agent.NDY, Win32/Spy.Delf.NDZ, Win32/TrojanClicker.Delf.NBD, Win32/TrojanDownloader.Agent.NWM (4), Win32/TrojanDownloader.Delf.NSA, Win32/TrojanDownloader.Delf.NXS, Win32/TrojanDownloader.Delf.OCK (2), Win32/TrojanDownloader.QQHelper.NFE, Win32/TrojanDownloader.Small.IVI, Win32/TrojanDownloader.Small.OAO, Win32/TrojanDownloader.Zlob (2)
http://www.eset.eu/podpora/aktualizacia-2941?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 2942 (20080312)
by roddy32 / March 12, 2008 4:24 AM PDT
2008-03-12 18:30
HTML/Phishing.gen, INF/Autorun, VBS/Naiad.J, Win32/Adware.AdMedia, Win32/Adware.AntiSpyStorm, Win32/Adware.NaviPromo (3), Win32/Adware.SearchSpy (2), Win32/Adware.SpyKillerPro, Win32/Adware.UltimateDefender (3), Win32/Adware.Virtumonde (4), Win32/Adware.Virtumonde.FP, Win32/Adware.WinReanimator (2), Win32/Agent.CKX (2), Win32/Agent.ETH, Win32/Agent.FWC, Win32/AutoRun.IS (2), Win32/Bagle.NR, Win32/Ceckno, Win32/Dialer.YZ, Win32/HackTool.Xarp, Win32/Inject.IB, Win32/Inject.JC (4), Win32/Nethief.NAB (2), Win32/PcClient, Win32/PSW.LdPinch.GGO, Win32/PSW.LdPinch.NEL (3), Win32/PSW.OnLineGames.GJV (2), Win32/PSW.OnLineGames.MUG (7), Win32/PSW.OnLineGames.MUU, Win32/PSW.OnLineGames.NFL (6), Win32/PSW.OnLineGames.NLI (2), Win32/PSW.OnLineGames.NMP (3), Win32/PSW.OnLineGames.NMX (3), Win32/PSW.OnLineGames.NMY, Win32/PSW.OnLineGames.NNE, Win32/PSW.OnLineGames.NNF (2), Win32/PSW.OnLineGames.NNG, Win32/PSW.OnLineGames.PLR (3), Win32/PSW.OnLineGames.THX, Win32/PSW.QQPass.NCZ, Win32/PSW.QQPass.NDB (2), Win32/Qhost, Win32/Qhost.NCN (2), Win32/Regil.B (2), Win32/Rootkit.Vanti.NAI, Win32/Rootkit.Vanti.NBF, Win32/Rootkit.Vanti.NBG (3), Win32/Spy.Agent.BOZ (2), Win32/Spy.Agent.NDM, Win32/Spy.Agent.NES (2), Win32/Spy.Agent.PZ, Win32/Spy.KeyLogger.NBZ (3), Win32/Spy.Pachat.H, Win32/Spy.PerfKey, Win32/Spy.Wesupder, Win32/TrojanClicker.Agent.NCZ (4), Win32/TrojanClicker.Small.NBM, Win32/TrojanDownloader.Agent.NWN, Win32/TrojanDownloader.Agent.NWO (2), Win32/TrojanDownloader.Delf.EBF (3), Win32/TrojanDownloader.Delf.OBA, Win32/TrojanDownloader.Delf.OBZ, Win32/TrojanDownloader.Delf.OCK, Win32/TrojanDownloader.Delf.OCL (2), Win32/TrojanDownloader.FakeAlert.AW, Win32/TrojanDownloader.FakeAlert.G (9), Win32/TrojanDownloader.QQHelper.NEZ, Win32/TrojanDownloader.Small.NUS (2), Win32/TrojanDownloader.Small.OAN, Win32/TrojanDownloader.Small.OAP, Win32/TrojanDownloader.Small.SKT, Win32/TrojanDownloader.Small.SQV, Win32/TrojanDownloader.VB.CEJ, Win32/TrojanDownloader.Wigon.G, Win32/TrojanDownloader.Wigon.K, Win32/Visel, X97M/TrojanDropper.Agent.L (5)
http://www.eset.eu/podpora/aktualizacia-2942?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 2943 (20080313)
by roddy32 / March 12, 2008 11:38 AM PDT
Collapse -
Spybot S&D dectection rules
by roddy32 / March 11, 2008 11:48 PM PDT
2008-03-12
Adware
+ Wintouch
Dialer
+ Win32.Dialer.aeh
Keylogger
+ XPAdvancedKeylogger
Malware
+ RegClean + NousTech.SysCleaner + NousTech.SystemDefender + Win32.BHO.je + AntiSpyWare2007 + SpywareBOT.SpywareStop + Win32.VB.ck + WinSpyKiller
Trojan
+ Zlob.DNSChanger.Rtk (13) + Zlob.Downloader.mld + Zlob.Downloader.se (115) + Zlob.Downloader.sg (5) + Zlob.Downloader.sot (8) + Zlob.Downloader.vdt + Smitfraud-C.MSVPS (28) + Win32.Agent.jmh + FakeAlert (273) + Win32.Agent.ahj
Total: 554374 fingerprints in 122623 rules for 3701 products.
http://www.safer-networking.org/en/home/index.html
Please remember to Re-Immunize after updating!
Collapse -
Belarc Advisor Progam update 7.2x - -3/09/2008
by roddy32 / March 11, 2008 11:52 PM PDT
Belarc Advisor - Free Personal PC Audit (Version 7.2x)

The Belarc Advisor builds a detailed profile of your installed software and hardware, missing Microsoft hotfixes, anti-virus status, CIS (Center for Internet Security) benchmarks, and displays the results in your Web browser. All of your PC profile information is kept private on your PC and is not sent to any web server.

More Info & Download

Sorry, this came out on the 9th and I forgot to post it.
Collapse -
Belarc Advisor Security Definitions v.2008.3.11.2
by roddy32 / March 11, 2008 11:57 PM PDT

This Belarc Advisor Security Definitions Update installs the latest version of the Belarc Advisor's security definitions which includes all Microsoft security bulletins through March 11, 2008. This update ensures that the System Security Status panel in the computer profile report reflects the true number of missing Microsoft Security Updates.

More Info: Belarc Advisor Security

Collapse -
BOClean FILEDATE: 2008-03-12 14:03:06 (UTC)
by roddy32 / March 12, 2008 12:26 AM PDT
TWENTY-FOUR new nasties for a total of 52692 *UNIQUE* infectors (
315,111 variants of these including trojans, worms, bots, hijackers,
downloaders, spam proxies, rootkits, adware, spyware, keyloggers,
"dialers" and other malware in total) covered in today's update for
BOClean 4.25.

Please also note that if you ever miss an update (or several) the update
you collect includes ***ALL*** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.nsclean.com/trolist.html
Collapse -
BOClean FILE DATE : 2008-03-12 15:03:16 (UTC)
by roddy32 / March 12, 2008 1:57 AM PDT
TWENTY SEVEN new nasties for a total of 52719 *UNIQUE*
infectors (315,149) variants of these including
trojans,worms,bots,hijackers,downloaders,spam proxies, rootkits, adware,
spyware,keyloggers,"dialers" and other malware in total) covered in
today's update for BOClean 4.25.

Please also note that if you ever miss an update (or several) the update
you collect includes *ALL* previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.nsclean.com/trolist.html
Collapse -
a-squared signature update
by roddy32 / March 12, 2008 1:41 AM PDT
Collapse -
another
by roddy32 / March 12, 2008 6:43 AM PDT
Collapse -
a-squared signature update 03/13/2008
by roddy32 / March 12, 2008 9:46 AM PDT
In reply to: another
Collapse -
AVG - AVI 269.21.7/ 1327
by roddy32 / March 12, 2008 2:13 AM PDT
Collapse -
NAV Weekly
by roddy32 / March 12, 2008 3:06 AM PDT
Collapse -
NAV Daily
by roddy32 / March 12, 2008 3:08 AM PDT
Daily Updates
Symantec AntiVirus
Norton AntiVirus 2006/2007

Virus Definitions created March 12
Virus Definitions released March 12
Defs Version: 100312c
Sequence Number: 79491
Extended Version: 3/12/2008 rev. 3
Total Viruses Detected: 73922
http://www.symantec.com/avcenter/defs.download.html
Collapse -
Ad-Aware SE & 2007 defs update
by roddy32 / March 12, 2008 4:17 AM PDT
0060.0000 is now available, new definition file for Ad-Aware 2007.


New definitions:
====================
AdwareKiller +8
SpySoap +8
SpywareRemoval +7
SystemGuard +8
Win32.Backdoor.Igloo +2
Win32.TrojanDownloader.Exemas
Win32.TrojanDropper.ExeBinder
Win32.TrojanDropper.HeliosBinder +2
Win32.TrojanDropper.Interlac +5
Win32.TrojanPWS.Mapper

Updated definitions:
====================
AdBar
Adware.Agent +3
Adware.BHO(generic) +7
Adware.CashOn
Adware.Cashplus
Adware.CDN
Adware.Delf
Adware.DollarRevenue +2
Adware.IEHlpr
Adware.NaviPromo +7
Adware.VapSup +3
AdwareAlert +9
AdwareBot +9
AntiSpyware +10
AntispywareBot +10
Backdoor.ColdFusion +2
Backdoor.Prorat.16 +3
CarpeDiem
ContraVirus
EvidenceEraser +3
FakeAlert +8
Lop +3
MacroVirus +3
MalwareBot +10
MalwareCrush
Marketscore(Netsetter)
PrivacyControl
PurityScan
SpywareRemover
SpywareStop +10
Toolbar.Softo +3
Win32.Backdoor.Agent +12
Win32.Backdoor.Banito
Win32.Backdoor.Bifrose +3
Win32.Backdoor.CiaDoor +9
Win32.Backdoor.Delf
Win32.Backdoor.Haxdoor
Win32.Backdoor.Hupigon +3
Win32.Backdoor.IRCBot +5
Win32.Backdoor.Nuclear
Win32.Backdoor.Poison
Win32.Backdoor.RBot +6
Win32.Backdoor.SDBot
Win32.Backdoor.Small
Win32.Backdoor.Turkojan
Win32.Backdoor.VanBot
Win32.Backdoor.VB +3
Win32.Dialer.Trojan
Win32.Generic.Worm
Win32.Rootkit.Agent +7
Win32.Trojan.AdClicker +2
Win32.Trojan.Agent +42
Win32.Trojan.BHO +3
Win32.Trojan.Crypt +21
Win32.Trojan.Delf
win32.Trojan.Dnschanger
Win32.Trojan.KillAV
Win32.Trojan.Obfuscated +18
Win32.Trojan.Pakes +4
Win32.Trojan.Small +4
Win32.Trojan.Spy +15
Win32.Trojan.Srizbi
Win32.Trojan.Tibs +6
Win32.Trojan.Trash +3
Win32.Trojan.Vaklik +5
Win32.Trojan.VB +2
Win32.TrojanClicker +2
Win32.TrojanDownloader.Agent +25
Win32.TrojanDownloader.Aphex +2
Win32.TrojanDownloader.Banload +4
Win32.TrojanDownloader.Bensorty
Win32.TrojanDownloader.BHO
Win32.TrojanDownloader.Delf +11
Win32.TrojanDownloader.FraudLoad +2
Win32.TrojanDownloader.Losabel
Win32.TrojanDownloader.Microjoin +3
Win32.TrojanDownloader.Small +17
Win32.TrojanDownloader.Tibs +5
Win32.TrojanDownloader.Tiny
Win32.TrojanDownloader.VB +4
Win32.Trojandownloader.Zlob +34
Win32.TrojanDropper +48
Win32.Trojan-Dropper.Delf +6
Win32.TrojanDropper.Microjoin
Win32.TrojanDropper.Small +4
Win32.TrojanDropper.VB +17
Win32.TrojanProxy.Agent.dl +5
Win32.TrojanProxy.Saturn +3
Win32.TrojanProxy.Small
Win32.Trojan-PSW.Nilage
Win32.TrojanPWS.LdPinch
Win32.TrojanPWS.Lmir +3
Win32.TrojanPWS.Magania +2
Win32.TrojanPWS.Mulin
Win32.TrojanPWS.OnlineGames +76
Win32.TrojanPWS.QQPass +2
Win32.TrojanSpy.Banker +13
Win32.TrojanSpy.Delf +5
Win32.TrojanSpy.Goldun
Win32.TrojanSpy.Pophot +4
Win32.TrojanSpy.Small
Win32.TrojanSpy.VB +4
Win32.Virus.Small +2
Win32.Virus.Xorer
Win32.Worm.Allaple
Win32.Worm.Autorun
Win32.Worm.Netsky
Win32.Worm.Zhelatin +31
WinAntiVirusPro
WinPerformance +2
Virtumonde +16
XPAntivirus

MD5 checksum is b02a15d82bf706dc40011c4fdb4caf11 for core.aawdef
MD5 checksum is 70c267fd4dfd187caa54a17eaa156d54 for defs.ref


http://www.lavasoft.com/support/securitycenter/blog/

Note: Despite what Lavasoft posted about the defs for the SE version being discontinued, if you scroll to the far right side of the Lavasoft page you will see a manual download link for the defs for the SE version. You will have to install them manually, you can not get them via the program updater. I have NO idea how long they will keep doing this.
Collapse -
BitDefender 5:10PM
by roddy32 / March 12, 2008 4:30 AM PDT
Collapse -
McAfee Daily #5250
by roddy32 / March 12, 2008 4:39 AM PDT
Collapse -
Panda
by roddy32 / March 12, 2008 4:45 AM PDT
Collapse -
AntiVir Version: 7.00.03.22
by roddy32 / March 12, 2008 4:53 AM PDT
Collapse -
AVG Anti-Spyware 12:35 CET
by roddy32 / March 12, 2008 5:16 AM PDT
Collapse -
avast! 4.x VPS (released: 12.3.2008, version: 080312-0)
by roddy32 / March 12, 2008 6:24 AM PDT
Collapse -
SUPERAntiSpyware #3418/1410
by roddy32 / March 12, 2008 10:57 AM PDT
Popular Forums
icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

FALL TV PREMIERES

Your favorite shows are back!

Don’t miss your dramas, sitcoms and reality shows. Find out when and where they’re airing!