Spyware, Viruses, & Security forum

General discussion

UPDATES - March 18, 2009

by roddy32 / March 17, 2009 9:05 PM PDT
TrojanHunter 5.0 Ruleset Update - Mar 17, 2009

An updated TrojanHunter ruleset is available. This update adds 95 new trojan definitions:

Adware.AdMedia.118
Adware.Agent.413
Adware.BHO.360
Adware.BHO.359
Adware.Cinmus.173
Adware.Pointfree.100
Adware.SuperJuan.131
Agent.3760
Agent.3759
Agent.3758
Agent.3757
Agent.3756
Agent.3755
Agent.3754
Buzus.351
Delf.1161
FraudTool.AntiVirus360.107
Genome.110
Hupigon.1312
Inject.406
Kilkav.100
KillAV.231
Monder.563
Monder.562
Monder.561
Monder.560
Obfuscated.511
Pakes.633
Pakes.632
PWSteal.LdPinch.925
PWSteal.Nilage.510
PWSteal.OnLineGames.1568
PWSteal.OnLineGames.1567
PWSteal.OnLineGames.1566
PWSteal.OnLineGames.1565
PWSteal.OnLineGames.1564
PWSteal.QQPass.227
PWSteal.WOW.419
PWSteal.WOW.418
PWSteal.WOW.417
PWSteal.WOW.416
PWSteal.WOW.415
PWSteal.WOW.414
PWSteal.WOW.413
PWSteal.WOW.412
PWSteal.WOW.411
PWSteal.WOW.410
Skintrim.129
Small.804
Small.803
Spambot.228
TDSS.179
TDSS.178
TDSS.177
Tedroo.115
TrojanDownloader.Agent.3161
TrojanDownloader.Agent.3160
TrojanDownloader.Agent.3159
TrojanDownloader.Agent.3158
TrojanDownloader.Agent.3157
TrojanDownloader.Agent.3156
TrojanDownloader.Agent.3155
TrojanDownloader.Agent.3154
TrojanDownloader.Agent.3153
TrojanDownloader.Agent.3152
TrojanDownloader.Agent.3151
TrojanDownloader.Agent.3150
TrojanDownloader.Agent.3149
TrojanDownloader.FakeVimes.100
TrojanDownloader.FraudLoad.594
TrojanDownloader.FraudLoad.593
TrojanDownloader.OneStage.101
TrojanDownloader.VB.1075
TrojanDownloader.VB.1074
TrojanDownloader.Zlob.1734
TrojanDropper.Agent.1256
TrojanDropper.Agent.1255
TrojanSpy.Agent.552
TrojanSpy.Agent.551
TrojanSpy.Goldun.422
TrojanSpy.VB.296
TrojanSpy.Webmoner.151
TrojanSpy.Zbot.866
TrojanSpy.Zbot.865
TrojanSpy.Zbot.864
TrojanSpy.Zbot.863
TrojanSpy.Zbot.862
VB.1433
VB.1432
VB.1431
Waledac.128
Worm.Iksmas.197
Worm.Iksmas.196
Worm.Iksmas.195
Worm.Koobface.108

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.

You should have 211323 rules.
http://www.misec.net/forum/board/RulesetUpdates/1237354432
Discussion is locked
You are posting a reply to: UPDATES - March 18, 2009
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - March 18, 2009
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
ClamAV #9128
by roddy32 / March 17, 2009 9:19 PM PDT

Latest ClamAV? stable release is: 0.94.2
Total number of signatures: 523321
ClamAV Virus Databases:
main.cvd ver. 50 released on 15 Feb 2009 16:47 :0500
daily.cvd ver. 9128 released on 18 Mar 2009 06:28 :0400
http://www.clamav.net/

Collapse -
AVG - AVI: 270.11.18/2009
by roddy32 / March 17, 2009 9:35 PM PDT
Collapse -
AVG - AVI: 270.11.19/2010
by roddy32 / March 18, 2009 10:03 AM PDT

Added detection of new variants of trojans Downloader.Swizzor.JYA, Generic13.EYX, Generic13.FBH, BackDoor.Generic11.ANQ, Generic13.FEH, Generic13.FDQ.
March 18, 2009
http://www.grisoft.com/us.download-update

Collapse -
AntiVir Version: 7.01.02.185
by roddy32 / March 17, 2009 9:44 PM PDT
Collapse -
NOD32 - 3945 (20090318)
by roddy32 / March 17, 2009 10:02 PM PDT
2009-03-18 12:06
BAT/KillWin.NAL, IRC/SdBot, JS/TrojanDownloader.Agent.NOW, JS/TrojanDownloader.Agent.NOX, JS/TrojanDownloader.Agent.NOY, PDF/Exploit.Pidief.NXF (3), PDF/Exploit.Pidief.NXG (3), VBS/TrojanDownloader.Ftp.NAC (6), Win32/Adware.Agent.NLQ, Win32/Adware.Antivirus360, Win32/Adware.Cinmus, Win32/Adware.SecToolbar (3), Win32/Adware.Virtumonde (2), Win32/Adware.Virtumonde.NDH, Win32/Adware.Virtumonde.NDN, Win32/Adware.WinAntiVirus, Win32/Agent.BTPB (5), Win32/Agent.NWI, Win32/Agent.PBH, Win32/Agent.WPI (2), Win32/AutoRun.Agent.LQ (9), Win32/AutoRun.COB (3), Win32/AutoRun.KS, Win32/BHO.NND (3), Win32/CCProxy (2), Win32/Cimag.P (2), Win32/FakeInit.I (3), Win32/FlyStudio.NHX, Win32/FlyStudio.NHY, Win32/Mebroot, Win32/Mebroot.AZ (2), Win32/Olmarik.FT (6), Win32/PassView.163, Win32/Patched.NAH, Win32/PSW.Delf.NMX, Win32/PSW.LdPinch.NEL (3), Win32/PSW.OnLineGames.NMP, Win32/PSW.OnLineGames.NNU (4), Win32/PSW.OnLineGames.NVM (2), Win32/PSW.OnLineGames.ODJ (2), Win32/PSW.OnLineGames.OEP (2), Win32/PSW.OnLineGames.OHV (3), Win32/PSW.OnLineGames.XTT (3), Win32/PSW.QQPass.NED, Win32/PSWTool.Dialupass.243, Win32/PSWTool.IEPassView.100, Win32/PSWTool.MailPassView.137, Win32/Rbot, Win32/Shutdowner.NAD (2), Win32/Small.NEB (2), Win32/Sohanad.NDB, Win32/SpamTool.Agent.NBW, Win32/Spy.Banbra.NOS, Win32/Spy.Bancos.NJZ, Win32/Spy.Banker.OYT, Win32/Spy.Banker.QLG, Win32/Spy.Banker.QMK, Win32/TrojanClicker.Delf.NGH (2), Win32/TrojanDownloader.Agent.OWT, Win32/TrojanDownloader.Agent.OXI (2), Win32/TrojanDownloader.Banload.OOG, Win32/TrojanDownloader.Delf.OLA, Win32/TrojanDownloader.Delf.OLI, Win32/TrojanDownloader.Delf.ORB, Win32/TrojanDownloader.FakeAlert.AAH, Win32/TrojanDownloader.FakeAlert.ZI, Win32/TrojanDownloader.Wigon.BX, Win32/VB.KOO, Win32/VB.NYL (2), Win32/Waledac.HO
http://www.eset.eu/podpora/aktualizacia-3945?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
NOD32 - 3946 (20090318)
by roddy32 / March 18, 2009 2:55 AM PDT
2009-03-18 17:39
BAT/Agent.NBJ, BAT/KillFiles.NBA (2), HTML/Exploit.IframeBof, INF/Autorun (2), IRC/SdBot, JS/Exploit.Pdfka.NBX, JS/Exploit.Pdfka.NDP, JS/Exploit.Pdfka.NDQ (2), JS/Exploit.Pdfka.NDR (2), JS/Exploit.Pdfka.NDS (2), JS/Exploit.Pdfka.NDT (2), JS/Exploit.Pdfka.NDU, JS/Exploit.Pdfka.NDV (2), JS/Exploit.Pdfka.NDW (2), JS/Exploit.Pdfka.NDX (2), JS/Exploit.Pdfka.NDY (2), JS/Exploit.Pdfka.NDZ, JS/Exploit.Pdfka.NEA (2), JS/Exploit.Pdfka.NEB (2), JS/Exploit.Pdfka.NEC (2), JS/Exploit.Pdfka.NED (2), JS/Exploit.Pdfka.NEE (2), JS/Exploit.Pdfka.NEF (2), JS/Exploit.Pdfka.NEG (2), JS/TrojanDownloader.Agent.NOZ, JS/TrojanDownloader.Agent.NPA, PDF/Exploit.Pidief.NVW, PDF/Exploit.Pidief.NXG, PDF/Exploit.Pidief.NXH, PDF/Exploit.Pidief.NXI, PDF/Exploit.Pidief.NXJ, PDF/Exploit.Pidief.NXK, PDF/Exploit.Pidief.NXL, PDF/Exploit.Pidief.NXM (2), PDF/Exploit.Pidief.NXN, PDF/Exploit.Pidief.NXO, PDF/Exploit.Pidief.NXP, PDF/Exploit.Pidief.NXQ, PDF/Exploit.Pidief.NXR, PDF/Exploit.Pidief.NXS, PDF/Exploit.Pidief.NXT, PDF/Exploit.Pidief.NXU, PDF/Exploit.Pidief.NXV, PDF/Exploit.Pidief.NXW, PDF/Exploit.Pidief.NXX (2), PDF/Exploit.Pidief.NXY, PDF/Exploit.Pidief.NXZ, PDF/Exploit.Pidief.NYA, PDF/Exploit.Pidief.NYB, PDF/Exploit.Pidief.NYC, PDF/Exploit.Pidief.NYD, PDF/Exploit.Pidief.NYE, VBS/Agent.NBB, VBS/TrojanDownloader.Agent.NAP (2), VBS/TrojanDownloader.Ftp.NAC (3), Win32/Adware.Agent.NLR, Win32/Adware.Antivirus2008, Win32/Adware.Antivirus2009 (7), Win32/Adware.Antivirus2010, Win32/Adware.Antivirus360 (6), Win32/Adware.BHO.NCX, Win32/Adware.Coolezweb (2), Win32/Adware.MSAntispyware2009, Win32/Adware.NaviPromo, Win32/Adware.NewWeb, Win32/Adware.WinAntiVirus, Win32/Adware.XPAntivirus (2), Win32/Adware.XPPoliceAntivirus (5), Win32/Agent.BTQI, Win32/Agent.LYB, Win32/Agent.OXP, Win32/Agent.PBI, Win32/Agent.PBJ (2), Win32/Alman.NAB, Win32/Autoit.EV, Win32/Autoit.NCM, Win32/AutoRun.ABH (3), Win32/AutoRun.Agent.LR, Win32/AutoRun.Agent.LS (2), Win32/AutoRun.FlyStudio.EA (2), Win32/Banwor.NCJ, Win32/BHO.NLG, Win32/Cakl, Win32/CCProxy (3), Win32/Delf.NSA (2), Win32/Delf.OCU, Win32/Inject.NCI (2), Win32/Injector.JH, Win32/Injector.LL, Win32/IRCBot, Win32/Joleee.NG (2), Win32/Olmarik.FT (12), Win32/PcClient (3), Win32/PSW.Agent.NJL, Win32/PSW.Delf.NLZ, Win32/PSW.Delf.NON (2), Win32/PSW.Legendmir.NFX, Win32/PSW.OnLineGames.NMP, Win32/PSW.OnLineGames.NRV, Win32/PSW.OnLineGames.NTM (3), Win32/PSW.OnLineGames.OIO, Win32/PSW.QQPass.NCZ, Win32/PSW.WOW.NIQ (2), Win32/Rootkit.Agent.NKE, Win32/Rootkit.Agent.NKF, Win32/Selfish, Win32/Spy.Banbra.NOR, Win32/Spy.Zbot.JF (2), Win32/Spy.Zbot.MR, Win32/TrojanDownloader.Delf.OLI (2), Win32/TrojanDownloader.Delf.OOB, Win32/TrojanDownloader.Delf.ORC, Win32/TrojanDownloader.Delf.ORD (2), Win32/TrojanDownloader.FakeAlert.AAI, Win32/TrojanDownloader.FakeAlert.AAJ, Win32/TrojanDownloader.FakeAlert.AAK, Win32/TrojanDownloader.FakeAlert.AAL (2), Win32/TrojanDownloader.FakeAlert.SM (2), Win32/TrojanDropper.Flystud.KO (2), Win32/TrojanDropper.Joiner.AJ, Win32/TrojanDropper.VB.NGY, Win32/TrojanProxy.Agent.NFC, Win32/VB.NYM, Win32/VB.NYN (2), Win32/VB.NYO, Win32/Waledac.HU, Win32/Waledac.HV, Win32/Wigon, Win32/Wigon.JA, Win32/Wigon.JN
http://www.eset.eu/podpora/aktualizacia-3946?lng=en
http://www.eset.eu/support/update-xy1
Collapse -
BitDefender - 13:18
by roddy32 / March 17, 2009 10:07 PM PDT
Collapse -
BitDefender - 03/19/2009 - 00:26
by roddy32 / March 18, 2009 8:48 AM PDT
In reply to: BitDefender - 13:18
Collapse -
VIPRE - 03/17/2009 - #5047
by roddy32 / March 17, 2009 10:24 PM PDT
Collapse -
VIPRE #5048
by roddy32 / March 18, 2009 8:02 AM PDT
Collapse -
CounterSpy - 03/18/2009 - #5047
by roddy32 / March 17, 2009 10:27 PM PDT
Collapse -
CounterSpy #5048
by roddy32 / March 18, 2009 8:04 AM PDT
Collapse -
a-squared signature updates
by roddy32 / March 17, 2009 10:46 PM PDT
Collapse -
another
by roddy32 / March 18, 2009 2:16 AM PDT
Collapse -
another
by roddy32 / March 18, 2009 4:28 AM PDT
In reply to: another
Collapse -
more
by roddy32 / March 18, 2009 5:39 AM PDT
In reply to: another
Collapse -
a-squared program revisions
by roddy32 / March 18, 2009 3:21 AM PDT
Collapse -
BOClean FILE DATE: 2009-03-18 10:14:21 (UTC)
by roddy32 / March 17, 2009 10:54 PM PDT
TWENTY NINE new nasties for a total of 71,570 **UNIQUE**
infectors (341,596 variants of these including
trojans,worms,bots,hijackers,downloaders,spam proxies, rootkits, adware,
spyware,keyloggers,"dialers" and other malware in total) covered in
today's update for BOClean 4.27.

Please also note that if you ever miss an update (or several) the update
you collect includes **ALL** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.comodo.com/boclean/trolist.html
Collapse -
Spybot S&D Detection rules
by roddy32 / March 17, 2009 11:07 PM PDT
2009-03-18
Malware
+ Fraud.Antivirus2008 + Fraud.Sysguard + Fraud.SystemGuard2009 + Fraud.SystemSecurity + Win32.WiniGuard
Trojan
+ Banload + Fraud.AntiSpyware2008XP + Fraud.XPShield + Virtumonde.atr + Virtumonde.sci + Virtumonde.sdn + Win32.Agent.bm + Win32.CPEX.f + Win32.Delf.acv + Win32.Gobot.y + Win32.TDSS.rtk + Win32.ZBot
Total: 1478612 fingerprints in 468339 rules for 4570 products.
http://www.safer-networking.org/en/index.html
Please remember to Re-Immunize after updating!
Collapse -
Ad-Aware defs update - 0147.0001
by roddy32 / March 18, 2009 12:21 AM PDT
0147.0001 - March 18, 2009

New definitions:

====================
Win32.FraudTool.ErrorNuker
Win32.FraudTool.Renus2008
Win32.FraudTool.ThreatNuker
Win32.Trojan.CeeInject
Win32.Trojan.Stuh
Win32.TrojanDownloader.Elly
Win32.TrojanDownloader.Pangu
Win32.TrojanDownloader.Renos
Win32.TrojanDropper.Fakealert
Win32.TrojanDropper.Hexzone
Win32.Worm.Buzus

Updated definitions:
====================

List too long to post

MD5 checksum is 4ec174d6eee82fb703def3bda2b0f33e
http://www.lavasoftsupport.com/index.php?showtopic=24480
http://www.lavasoft.com/mylavasoft/securitycenter/blog/01470001-is-now-available-for-adaware-anniversary-edition
Collapse -
SUPERAntiSpyware #3803
by roddy32 / March 18, 2009 3:07 AM PDT
Collapse -
SUPERAntiSpyware #3804
by roddy32 / March 18, 2009 10:14 AM PDT
In reply to: SUPERAntiSpyware #3803
Collapse -
NAV Weekly
by roddy32 / March 18, 2009 3:59 AM PDT
Collapse -
NAV Daily
by roddy32 / March 18, 2009 4:19 AM PDT
Collapse -
McAfee Daily #5557
by roddy32 / March 18, 2009 5:35 AM PDT
Collapse -
Panda
by roddy32 / March 18, 2009 5:42 AM PDT
Collapse -
Adobe Reader v8.1.4/v7.1.1 security updates - March 18, 2009
by roddy32 / March 18, 2009 6:47 AM PDT

[quote]Summary

Critical vulnerabilities have been identified in Adobe Reader 9 and Acrobat 9 and earlier versions. These vulnerabilities would cause the application to crash and could potentially allow an attacker to take control of the affected system. There are reports that one of these issues is being exploited (CVE-2009-0658).

Adobe recommends users of Adobe Reader and Acrobat 9 update to Adobe Reader 9.1 and Acrobat 9.1. Adobe recommends users of Acrobat 8 update to Acrobat 8.1.4, and users of Acrobat 7 update to Acrobat 7.1.1. For Adobe Reader users who can?t update to Adobe Reader 9.1, Adobe has provided the Adobe Reader 8.1.4 and Adobe Reader 7.1.1 updates.

These updates resolve the issue from Security Advisory APSA09-01 and Security Bulletin APSB09-03. Users who have previously updated to Adobe Reader 9.1 and Acrobat 9.1 for Windows and Macintosh need not take any action. Adobe now plans to make available Adobe Reader 9.1 and Adobe Reader 8.1.4 for Unix by March 24. [/quote]

More info and download.
http://www.adobe.com/support/security/bulletins/apsb09-04.html

Popular Forums
icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

FALL TV PREMIERES

Your favorite shows are back!

Don’t miss your dramas, sitcoms and reality shows. Find out when and where they’re airing!