Spyware, Viruses, & Security forum

General discussion

UPDATES - March 13, 2007

by roddy32 / March 12, 2007 8:04 PM PDT
BOClean FILEDATE: 2007-03-13 08:07:08 (UTC)

SIXTY-SIX new nasties for a total of 22239 UNIQUE infectors (267,215 variants of these including trojans, worms, bots, hijackers, downloaders, spam proxies, rootkits, adware, spyware, keyloggers, "dialers" and other malware in total) covered in today's update for BOClean 4.22. BOClean 4.21 and earlier are no longer supported and MUST be upgraded.

To UPDATE your existing BOClean database, doubleclick on your BOClean traybar icon and select "check for update" to have BOClean automatically collect and install your update for you. BOClean is designed to perform an autoupdate if left configured to do so. If you have problems with the autoupdate program, check your firewall settings - we use passive FTP download instead of the more conventional HTTP method and some firewalls may refuse to allow the program to connect unless you set rules to permit the BOClean autoupdate program to collect them. Please consult your firewall's instructions on how to do this if the update program is stopped or crashed by your firewall.

Please ALSO note that updates of the database do NOT "UPGRADE" BOClean 4.21 and earlier to 4.22. Doing so requires that we send you a replacement or (if you paid for the "extended download" when you purchased BOClean) you can go back and redownload BOClean from Digital River and obtain the 4.22 upgrade yourself. If you didn't opt for the "extended download" premium option at additional cost at time of purchase, then you need to contact upgrade@nsclean.com in order to upgrade to 4.22. Information on what you need to do in order to GET your upgrade are detailed here:

http://www.nsclean.com/upgrade.html

Please also note that if you ever miss an update (or several) the update you collect includes *ALL* previous update information. There is no need to go hunting down other updates. The current one is always complete.
Discussion is locked
You are posting a reply to: UPDATES - March 13, 2007
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - March 13, 2007
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
TrojanHunter 4.6 Ruleset Update - Mar 12, 2007
by roddy32 / March 12, 2007 8:29 PM PDT

An updated TrojanHunter ruleset is available. This update adds at least 50 new trojan definitions:

BiFrose.357
IRCBot.425
Hupigon.684
Hupigon.683
TrojanDownloader.Small.1259
Worm.Warezof.359
Worm.Zhelatin.198
TrojanProxy.Agent.257
TrojanDownloader.Agent.1158
TrojanDownloader.Agent.1157
TrojanDownloader.Small.1258
TrojanDownloader.Small.1257
TrojanDropper.VB.186
PWSteal.Maran.128
PWSteal.OnLineGames.255
TrojanDropper.Delf.450
TrojanProxy.Caprobad.104
Worm.Warezof.358
Rbot.1408
Small.427
TrojanProxy.Agent.256
Worm.Warezof.357
Agent.1259
Vundo.186
Monitor.Perflogger.370
Pakes.221
Pakes.220
PWSteal.Agent.312
PWSteal.Agent.311
PWSteal.QQPass.823
PWSteal.QQPass.822
Worm.AutoIt.101
Worm.Viking.231
TrojanSpy.Small.189
PWSteal.Maran.127
IRCBot.424
Vundo.185
Vundo.184
Adware.Softomate.150
Agent.1258
Monitor.KGB.100
Rootkit.Agent.156
TrojanDownloader.Agent.1156
TrojanDownloader.Busky.203
TrojanDownloader.Busky.202
TrojanDownloader.Delf.703
VB.538
Vundo.183
Vundo.182
Vundo.181

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility.

If you are using the trial version of TrojanHunter, use LiveUpdate after installation and then manually update after a few days (once a week or more is recommended).

License holders without an ongoing subscription please see http://www.misec.net/trojanhunter/updating/ for instructions on how to manually update to the latest ruleset.


You should have 111563 rules
http://www.misec.net/forum/board/RulesetUpdates/1173733498

Collapse -
ClamAV Database update #2830
by roddy32 / March 12, 2007 8:57 PM PDT

Latest ClamAV? stable release is: 0.90.1
Total number of signatures: 99118
ClamAV Virus Databases:
main.cvd ver. 42 released on 31 Dec 2006 13:09 +0100
daily.cvd ver. 2830 released on 13 Mar 2007 05:12 +0000
http://www.clamav.net/

Collapse -
F-Prot
by roddy32 / March 12, 2007 9:11 PM PDT

Virus Signature Files
Version 6 of F-PROT Antivirus can detect a total of 539455 worms, viruses and other malicious programs with its latest virus signature file. This number differs from that of other versions of F-PROT Antivirus due to differences in design and structure.

For all versions of F-PROT Antivirus except version 6 and later
* Application/Script Viruses and Trojans (13 March 2007 )
* Document/Office/Macro Viruses (12 March 2007)
F-PROT Antivirus can detect a total of 412255 worms, viruses and other malicious programs with these latest virus signature files.
http://www.f-prot.com/products/currentversions.html
http://www.f-prot.com/download/signaturefiles.html

Collapse -
NOD32 - 2111 (20070313)
by roddy32 / March 12, 2007 9:36 PM PDT
Collapse -
NOD32 - 2112 (20070313)
by roddy32 / March 13, 2007 2:48 AM PDT
2007-03-13 13:29
IRC/Kryptos.A, VBS/Linda.A, VBS/Shiver.C, VBS/Shiver.N, Win32/Agent.AKP (2), Win32/Braban.NAF, Win32/DNSChanger.NAD, Win32/Fuclip.P (3), Win32/PSW.Lineage.AJJ, Win32/PSW.Lineage.DN, Win32/PSW.WOW.PU (3), Win32/Rinbot.O, Win32/Small.FB, Win32/Spy.Banker.CKW (4), Win32/Spy.Banker.CLG, Win32/Spy.BZub.NDH, Win32/Spy.Delf.IG, Win32/Spy.Goldun.NAT, Win32/Spy.Goldun.NAZ (2), Win32/TrojanDownloader.Banload.BPV, Win32/TrojanDownloader.Nurech.AF, Win32/TrojanDownloader.Small.EHE (3), Win32/TrojanDownloader.Zlob.ATA, Win32/TrojanDownloader.Zlob.ATH (10), Win32/TrojanDropper.Agent.AKO, Win32/TrojanDropper.Agent.NDM, Win32/TrojanProxy.Agent.BZ, Win32/TrojanProxy.Agent.CR, Win32/TrojanProxy.Dlena, Win32/Virut, Win32/Virut.D
http://www.eset.sk/podpora/aktualizacia-2112-20070313
http://www.eset.sk/en/support/update-xy1
Collapse -
NOD32 - 2113 (20070313)
by roddy32 / March 13, 2007 6:55 AM PDT
2007-03-13 20:08
IRC/SdBot.DWU (3), REG/Toraja.A, Win32/Adware.Virtumonde, Win32/Adware.Virtumonde.HC (3), Win32/Agent.AIR, Win32/Agent.NDC, Win32/Agent.NEJ, Win32/Agent.NGY, Win32/Hupigon (2), Win32/Hupigon.EMK (2), Win32/IRCBot.WJ, Win32/IRCBot.WK (2), Win32/KeyLogger.KeyLogit.30 (2), Win32/PSW.Agent.NCN (2), Win32/PSW.LdPinch.BMQ, Win32/PSW.Lineage.ACN, Win32/PSW.Lineage.DN (2), Win32/PSW.Stealer.I, Win32/PSW.WOW.EC, Win32/Rbot (3), Win32/Small.NCO, Win32/Spy.Bancos.ZE, Win32/Spy.VB.QJ, Win32/SpyBot.APP, Win32/SpyBot.APQ, Win32/TrojanDownloader.Banload.BAK, Win32/TrojanDownloader.Banload.BPV, Win32/TrojanDownloader.ConHook (2), Win32/TrojanDownloader.Small.DXM, Win32/TrojanDownloader.Small.NFP, Win32/TrojanDownloader.VB.ASX (4), Win32/TrojanDownloader.VB.BXK, Win32/TrojanDownloader.Zlob.ATI, Win32/TrojanDropper.Agent.BEH, Win32/TrojanDropper.Agent.NEG, Win32/Troxa.A (3)
http://www.eset.eu/podpora/aktualizacia-2113-20070313?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
AntiVir Version: 6.38.00.45
by roddy32 / March 12, 2007 9:47 PM PDT
Collapse -
AVG Anti-spyware 12:14 CET
by roddy32 / March 12, 2007 10:00 PM PDT
Collapse -
AVG Anti-spyware 13:59 CET
by roddy32 / March 13, 2007 5:09 AM PDT
Collapse -
AVG Anti-spyware 20:19 CET
by roddy32 / March 13, 2007 9:30 AM PDT
Collapse -
Ad-Aware SE1R159 13.03.2007
by roddy32 / March 12, 2007 11:31 PM PDT

New definitions:
====================
-

Updated definitions:
====================
Tracking Cookies +25
Win32.Worm.Zhelatin +11
Virtumonde +9

MD5 checksum is 65d72ce6da9b77462adc88c43904eccd

http://www.lavasoftusa.com/download_and_buy/detection_database/

You can use Webupdate to install the new reference file, or download it manually from:
http://download.lavasoft.com/public/defs.zip

If you think something needs to be sent to us for review, visit our submission site at:
http://www.lavasoftusa.com/support/securit...submit_file.php

If you have any questions, please contact us at:
http://www.lavasoftsupport.com

Collapse -
AVG Program update 7.5.448
by roddy32 / March 13, 2007 1:28 AM PDT
Collapse -
The Following Means Nothing to Me...but Maybe....
by tobeach / March 13, 2007 3:13 PM PDT

someone else may know....
Latest (448) update: "Fixed non-working PUP exceptions after restart on systems with minifilter.".

Could this be referring to (among others) the corruption of AdawareSE & Spybot S&D programs I experienced on SP2 Home after updating program from 441 to 446??? I solved problem by reverting back to 441 where it presently sits working just beautifully. Confused

Further info on my problem in post linked:
http://forums.cnet.com/5208-6132_102-0.html?forumID=32&threadID=235309&messageID=2412532

Thanks in advance for your opinions ! Grin

Collapse -
I only received the program update on the PAID version
by Marianna Schmudlach / March 13, 2007 3:20 PM PDT

today - not yet on the FREE version - guess, it will take a couple of days for the free version,..... as usual Wink

Collapse -
Thanks, Lady M! I Discovered the Same. Any Idea if AAW & SD.
by tobeach / March 13, 2007 4:59 PM PDT

were considered "PUPS" (Potentially Unwanted Programs)?

Collapse -
The "official" statement was.....
FIXED BUGS

Fixed non-working PUP exceptions after restart on systems with minifilter.
Collapse -
NAV Daily
by roddy32 / March 13, 2007 3:07 AM PDT
Collapse -
AVG 7.5 - AVI 268.18.11/ 721
by roddy32 / March 13, 2007 4:06 AM PDT
Collapse -
The Cleaner Pro Database v4059 03-13-2007
by roddy32 / March 13, 2007 4:42 AM PDT
Collapse -
McAfee Daily #4983
by roddy32 / March 13, 2007 4:46 AM PDT
Collapse -
Panda
by roddy32 / March 13, 2007 5:51 AM PDT
Collapse -
ZoneAlarm Anti-spyware
by roddy32 / March 13, 2007 7:27 AM PDT

Anti-spyware signature DAT file version:01.200703.1155

To check your signature DAT file versions, go to the "Overview" section of ZA. Click on the "Product Info" tab. In the "Version Information" Section, your DAT versions should be listed there. An easier method will be to right-click the ZA icon on the taskbar and click "About..."

notes: 1.At this time there is no updates page for ZoneLabs.
2. Depending on the product version you are using, your DAT file number may be different.

http://www.zonelabs.com/store/content/home.jsp

Collapse -
ZoneAlarm Anti-virus
by roddy32 / March 13, 2007 7:45 AM PDT

Anti-virus signature DAT file version: 30.4.3474.000

To check your signature DAT file versions, go to the "Overview" section of ZA. Click on the "Product Info" tab. In the "Version Information" Section, your DAT versions should be listed there. An easier method will be to right-click the ZA icon on the taskbar and click "About..."

notes: 1.At this time there is no updates page for ZoneLabs.
2. Depending on the product version you are using, your DAT file number may be different.

http://www.zonelabs.com/store/content/home.jsp

Collapse -
Microsoft released no new security bulletins today....but
by Marianna Schmudlach / March 13, 2007 8:41 AM PDT

They have, however, released an updated version of the Microsoft Windows Malicious Software Removal Tool. They have also released six non-security, high-priority updates.

More information can be found in

Microsoft Security Bulletin Summary for March 2007
Published: March 13, 2007

http://www.microsoft.com/technet/security/bulletin/ms07-mar.mspx

Collapse -
(NT) Thanks roddy.
by darclew7 / March 13, 2007 1:32 PM PDT
Popular Forums
icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

CNET FORUMS TOP DISCUSSION

Help, my PC with Windows 10 won't shut down properly

Since upgrading to Windows 10 my computer won't shut down properly. I use the menu button shutdown and the screen goes blank, but the system does not fully shut down. The only way to get it to shut down is to hold the physical power button down till it shuts down. Any suggestions?