Spyware, Viruses, & Security forum

General discussion

UPDATES - March 5, 2007

by Donna Buenaventura / March 4, 2007 5:34 PM PST
Discussion is locked
You are posting a reply to: UPDATES - March 5, 2007
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - March 5, 2007
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
NOD32 2095 (20070305)
by Donna Buenaventura / March 4, 2007 6:03 PM PST
NOD32
http://www.eset.eu/support/update-xy1

2095 (20070305)
2007-03-05 09:40


IRC/SdBot, Win32/Autoit.H, Win32/Gatina, Win32/Gatina.B, Win32/Pardona.O (4), Win32/PSW.LdPinch.NCB, Win32/Rbot (7), Win32/Spy.Agent.NCO (2), Win32/Spy.BZub.HX, Win32/Stration (2), Win32/Stub.B, Win32/TrojanDownloader.Agent.AEF, Win32/TrojanDownloader.Small.NRG (2), Win32/TrojanDownloader.Zlob.ASW (10), Win32/VB.DA, Win32/VB.NJX, Win32/Virut.5127, Win32/Wigon.K
http://www.eset.eu/podpora/aktualizacia-2095-20070305?lng=en
Collapse -
NOD32 - 2096 (20070305)
by roddy32 / March 4, 2007 10:11 PM PST
In reply to: NOD32 2095 (20070305)
2007-03-05 14:16
SunOS/Wanuk.A, VBS/Small.E, Win32/Adware.NewWeb (3), Win32/Agent.AEC (2), Win32/Agent.AMA, Win32/Agent.NEJ, Win32/Agent.NFY (2), Win32/Beastdoor, Win32/Brocat.D, Win32/Dasher.G (2), Win32/Delf.AOW, Win32/Delf.NAF (2), Win32/Delf.NCC (2), Win32/Hupigon.ELC (3), Win32/Hupigon.ELD (3), Win32/Netsky.Q, Win32/Nuwar.gen, Win32/Opnis.NAK, Win32/PSW.Agent.NCC (2), Win32/PSW.LdPinch.BOB, Win32/PSW.LdPinch.BOS, Win32/PSW.LdPinch.BOV, Win32/PSW.LdPinch.BOW, Win32/PSW.QQRob.NAQ (2), Win32/Rbot (2), Win32/Small.NAV, Win32/Spy.Bancos.AAJ, Win32/Spy.Goldun.NAY, Win32/Stration, Win32/TrojanDownloader.ConHook (2), Win32/TrojanDownloader.Dluca, Win32/TrojanDownloader.QQHelper.NW, Win32/TrojanDownloader.Small.DRU, Win32/TrojanDownloader.Small.NQY, Win32/TrojanDownloader.VB.NIZ (2), Win32/VB.NJY (2), Win32/Viking.CC (10), Win32/Viking.NBL
http://www.eset.sk/podpora/aktualizacia-2096-20070305
http://www.eset.sk/en/support/update-xy1
Collapse -
NOD32 - 2097 (20070305)
by Donna Buenaventura / March 5, 2007 5:33 AM PST
NOD32
http://www.eset.eu/support/update-xy1

Update 2097 (20070305)
2007-03-05 22:15


Extras.A, Fireal.A, Fixen.A, Flyaway.A, Flyaway.B (2), Fontime.A, Forecast.A, Format.A (2), Friend.A, Frost.A (2), FS.A, Gluas.A, Greedy.A, Hit.B (2), Hit.C, Hit.D (3), Hongo.A, Import.A, IRC/Cloner.AX, IRC/SdBot, Jal.A, Jasmine.A, Jini.A, Johar.A, Know.A, Legend.A, Legend.C, Linik.A, Linik.B, Linik.C, REG/Kryptos.A, VBS/Caka.A, VBS/Koa.A, VBS/Koa.C, VBS/Stef.B, Win32/Adware.Toolbar.Baidu, Win32/Agent.AIR, Win32/Agent.NAU (2), Win32/Agent.NGV, Win32/Agent.S (2), Win32/Agent.Y (3), Win32/Autoit.I, Win32/Bagle.NAM (2), Win32/Bagle.NAN (2), Win32/Brontok, Win32/Brontok.EI, Win32/Delf.AU (4), Win32/Delf.AXA (4), Win32/Delf.BM (2), Win32/Delf.BN (2), Win32/Delf.NCI (2), Win32/Delf.NCJ (2), Win32/Delf.NCK (2), Win32/Dialer.RU (2), Win32/Fujacks.AO (3), Win32/Fujacks.Q, Win32/Gromoz.A, Win32/HLLW.VB.L, Win32/Hupigon (2), Win32/IRCBot.UG, Win32/IRCBot.WE (2), Win32/IRCBot.WF (4), Win32/Locksky.NAI (2), Win32/Mytob, Win32/Nuwar, Win32/Nuwar.gen, Win32/Parite.B, Win32/PSW.Delf.NFI (3), Win32/PSW.WOW.EC (4), Win32/Rbot (3), Win32/Spider.A (2), Win32/Spy.Agent.NCP (3), Win32/Spy.Agent.NI, Win32/Spy.Banbra.MO (2), Win32/Spy.Banker.BIG, Win32/Spy.Banker.CHC (2), Win32/Spy.Banker.NVB (2), Win32/Spy.Delf.IG, Win32/Spy.Delf.NEH (4), Win32/Sramota.NAC, Win32/Stration (4), Win32/TrojanDownloader.Agent.AYK (2), Win32/TrojanDownloader.Agent.BHO, Win32/TrojanDownloader.Banload.BNJ, Win32/TrojanDownloader.Banload.NNB (2), Win32/TrojanDownloader.Banload.NNC, Win32/TrojanDownloader.Banload.NND (2), Win32/TrojanDownloader.Banload.NNE (2), Win32/TrojanDownloader.CWS.J (3), Win32/TrojanDownloader.Dadobra.MP, Win32/TrojanDownloader.Delf.NRC (2), Win32/TrojanDownloader.Delf.NRD, Win32/TrojanDownloader.QQHelper (2), Win32/TrojanDownloader.QQHelper.NAO, Win32/TrojanDownloader.Small.CYF (2), Win32/TrojanDownloader.Small.NSN (6), Win32/TrojanDownloader.Small.NSO (2), Win32/TrojanDownloader.Small.NSP (6), Win32/TrojanDownloader.VB.NJA (2), Win32/TrojanDownloader.Zlob.ASX (10), Win32/TrojanDropper.Small.APR, Win32/TrojanProxy.Small.NAL (2), Win32/VB.AZ, Win32/VB.CM, Win32/VB.DF (6), Win32/VB.FG (2), Win32/VB.FH (2), Win32/VB.NJZ (7), Win32/VB.NKA, Win32/Viking.CC, Win32/Vint.A, Win32/Wigon.L
http://www.eset.eu/podpora/aktualizacia-2097-20070305?lng=en
Collapse -
Ad-aware SE1R157
by Donna Buenaventura / March 4, 2007 6:27 PM PST
SE1R157 05.03.2007 is now available, new definition file for Ad-Aware SE.

New definitions:
====================
AdProtect +2
ErrorProtector +8
UltimateCleaner +3
VirusRescue +3
Win32.Backdoor.BeastDoor +3
Win32.Backdoor.Ranky +3
Win32.Backdoor.SubSeven +4
Win32.TrojanSpy.Proagent +6

Updated definitions:

====================
Adware.Agent +4
Adware.BHO(generic)
Adware.DollarRevenue
Adware.DropSpam +2
Adware.Iebar
AntispywareSoldier +2
BlazingTools Perfect Keylogger
DeluxeCommunications
Lop
PestCapture +6
Softomate Toolbar +2
SpyDawn +2
SpyDefence +3
SpyHeal
Spyware.Safesurfing
SurfSideKick +4
SystemDoctor
Targetsaver
Virtumonde +4
Virusblast
W32.Trojan.Horst
Win32.Backdoor.Agent +4
Win32.Backdoor.Hupigon +2
Win32.Backdoor.IRCBot
Win32.Backdoor.PcClient +2
Win32.Backdoor.Poebot +12
Win32.Backdoor.RBot +6
Win32.Backdoor.SDBot +6
Win32.Backdoor.VanBot +3
Win32.Backdoor.VB +2
Win32.Generic.PWS +2
Win32.Generic.Worm +3
Win32.Trojan.Agent +5
Win32.Trojan.Downloader +4
Win32.Trojan.Kolweb +2
Win32.Trojan.MatrixHasYou +12
Win32.Trojan.Qhost
Win32.Trojan.Spambot +3
Win32.Trojan.Spy
Win32.Trojan.Starter
Win32.TrojanDownloader.Agent
Win32.TrojanDownloader.Banload +4
Win32.TrojanDownloader.Delf +3
Win32.TrojanDownloader.ISTBar +3
Win32.TrojanDownloader.Small +9
Win32.TrojanDownloader.VB +2
Win32.Trojandownloader.Zlob +11
Win32.TrojanDropper +3
Win32.TrojanProxy.Agent.dl +2
Win32.TrojanProxy.Small
Win32.TrojanPWS.QQPass +8
Win32.TrojanSpy.Banker +69
Win32.TrojanSpy.BZub +2
Win32.TrojanSpy.Goldun + 3

MD5 checksum is 171aafead7e5049447cfd84e42d2c9e3

----------------------------------------------------------------------

The topic can be found here:
http://www.lavasoftsupport.com/index.php?showtopic=7702

http://www.lavasoftusa.com/download_and_buy/detection_database/

You can use Webupdate to install the new reference file, or download it manually from:
http://download.lavasoft.com/public/defs.zip

If you think something needs to be sent to us for review, visit our submission site at:
http://www.lavasoftusa.com/support/securitycenter/submit_file.php

If you have any questions, please contact us at:
http://www.lavasoftsupport.com
Collapse -
a-squared
by Donna Buenaventura / March 4, 2007 6:42 PM PST
Collapse -
a-squared
by Donna Buenaventura / March 5, 2007 5:21 AM PST
In reply to: a-squared
2007-03-05 21:35
Traces signature update
123 Spyware Traces

2007-03-05 21:35:
Signature update (revised)
1695 Signatures: 1394 Trojans, 5 Dialers, 73 Worms and 223 Spywares
Collapse -
BOClean FILEDATE: 2007-03-05 08:57:16 (UTC)
by roddy32 / March 4, 2007 7:12 PM PST
EIGHTY-THREE new nasties for a total of 21907 UNIQUE infectors (262,807 variants of these including trojans, worms, bots, hijackers, downloaders, spam proxies, rootkits, adware, spyware, keyloggers, "dialers" and other malware in total) covered in today's update for BOClean 4.22. BOClean 4.21 and earlier are no longer supported and MUST be upgraded.

To UPDATE your existing BOClean database, doubleclick on your BOClean traybar icon and select "check for update" to have BOClean automatically collect and install your update for you. BOClean is designed to perform an autoupdate if left configured to do so. If you have problems with the autoupdate program, check your firewall settings - we use passive FTP download instead of the more conventional HTTP method and some firewalls may refuse to allow the program to connect unless you set rules to permit the BOClean autoupdate program to collect them. Please consult your firewall's instructions on how to do this if the update program is stopped or crashed by your firewall.

Please ALSO note that updates of the database do NOT "UPGRADE" BOClean 4.21 and earlier to 4.22. Doing so requires that we send you a replacement or (if you paid for the "extended download" when you purchased BOClean) you can go back and redownload BOClean from Digital River and obtain the 4.22 upgrade yourself. If you didn't opt for the "extended download" premium option at additional cost at time of purchase, then you need to contact upgrade@nsclean.com in order to upgrade to 4.22. Information on what you need to do in order to GET your upgrade are detailed here:

http://www.nsclean.com/upgrade.html

Please also note that if you ever miss an update (or several) the update you collect includes *ALL* previous update information. There is no need to go hunting down other updates. The current one is always complete.
Collapse -
TrojanHunter 4.6 Ruleset Update - Mar 4, 2007
by roddy32 / March 4, 2007 7:37 PM PST

An updated TrojanHunter ruleset is available. This update adds at least 29 new trojan definitions:

Adware.Agent.172
Adware.Agent.171
Adware.BetterInternet.140
Adware.SaveNow.123
Adware.TrafficSol.105
BHO.130
Conycspa.103
DNSChanger.267
Hupigon.664
IM-Worm.VB.117
Obfuscated.184
PWSteal.Agent.307
PWSteal.LdPinch.300
PWSteal.LdPinch.299
SDBot.999
Small.421
TrojanDownloader.Banload.1031
TrojanDownloader.Delf.693
TrojanDownloader.Obfuscated.112
TrojanDownloader.Small.1236
TrojanDownloader.VB.477
TrojanProxy.Dlena.127
TrojanSpy.Agent.304
Worm.Warezof.354
Worm.Zhelatin.177
Worm.Zhelatin.176
Worm.Zhelatin.175
ZlobDropper.656
ZlobDropper.655

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility.

If you are using the trial version of TrojanHunter, use LiveUpdate after installation and then manually update after a few days (once a week or more is recommended).

License holders without an ongoing subscription please see http://www.misec.net/trojanhunter/updating/ for instructions on how to manually update to the latest ruleset.


You should have 110337 rules
http://www.misec.net/forum/board/RulesetUpdates/1173067909

Collapse -
AVG 7.5 - AVI 268.18.7/ 711
by Donna Buenaventura / March 4, 2007 8:30 PM PST
Collapse -
AntiVir 6.37.01.196
by Donna Buenaventura / March 4, 2007 8:33 PM PST
Collapse -
AntiVir 6.37.01.198
by Donna Buenaventura / March 4, 2007 10:35 PM PST
In reply to: AntiVir 6.37.01.196
Collapse -
AntiVir 6.37.01.200
by Donna Buenaventura / March 5, 2007 3:36 AM PST
In reply to: AntiVir 6.37.01.198
Collapse -
ClamAV: 2725
by Donna Buenaventura / March 4, 2007 8:39 PM PST
ClamAV
http://www.clamav.net/

Total number of signatures: 96574
daily.cvd ver. 2725 released on 05 Mar 2007 11:45 +0000
Collapse -
AVG Anti-spyware 12:26 CET
by roddy32 / March 4, 2007 9:01 PM PST
Collapse -
AVG Anti-spyware 14:57 CET
by roddy32 / March 5, 2007 1:07 AM PST
Collapse -
Database Update for The Cleaner 4.x Professional
by Marianna Schmudlach / March 5, 2007 1:40 AM PST

Database v4056, dated March 05, 2007, 58650 trojan definitions.

Collapse -
McAfee Daily #4976
by roddy32 / March 5, 2007 2:25 AM PST
Collapse -
NAV Daily
by Donna Buenaventura / March 5, 2007 3:22 AM PST
Collapse -
Tauscan
by roddy32 / March 5, 2007 4:05 AM PST
Collapse -
Panda
by roddy32 / March 5, 2007 4:26 AM PST
Collapse -
avast! 000721-2
by Donna Buenaventura / March 5, 2007 6:39 AM PST
Collapse -
QuickTime v7.1.5 (security update)
by Donna Buenaventura / March 5, 2007 7:42 AM PST

Apple released a security update for Quicktime by releasing v7.1.5
You can view the 8 security fixes at http://docs.info.apple.com/article.html?artnum=305149

QuickTime 7.1.5 for Windows may be obtained from the Apple Software Update
application, or as a manual download from:
http://www.apple.com/quicktime/download/win.html

**Manual update: Make sure you choose "no iTunes" so you'll get standalone
installer only of Quicktime

And for Mac users here:
QuickTime 7.1.5 for Mac may be obtained from the Software Update pane in
System Preferences, or as a manual download from:
http://www.apple.com/quicktime/download/mac.html

Collapse -
SUPERAntiSpyware #3194/1204
by roddy32 / March 5, 2007 7:49 AM PST
Collapse -
SpySweeper defs. #872
by roddy32 / March 5, 2007 7:59 AM PST
Collapse -
ZoneAlarm Anti-virus
by roddy32 / March 5, 2007 9:19 AM PST

Anti-virus signature DAT file version: 30.4.3455.000

To check your signature DAT file versions, go to the "Overview" section of ZA. Click on the "Product Info" tab. In the "Version Information" Section, your DAT versions should be listed there. An easier method will be to right-click the ZA icon on the taskbar and click "About..."

notes: 1.At this time there is no updates page for ZoneLabs.
2. Depending on the product version you are using, your DAT file number may be different.

http://www.zonelabs.com/store/content/home.jsp

Collapse -
ZoneAlarm Anti-spyware
by roddy32 / March 5, 2007 9:22 AM PST

Anti-spyware signature DAT file version:01.200703.1115

To check your signature DAT file versions, go to the "Overview" section of ZA. Click on the "Product Info" tab. In the "Version Information" Section, your DAT versions should be listed there. An easier method will be to right-click the ZA icon on the taskbar and click "About..."

notes: 1.At this time there is no updates page for ZoneLabs.
2. Depending on the product version you are using, your DAT file number may be different.

http://www.zonelabs.com/store/content/home.jsp

Popular Forums
icon
Computer Help 51,912 discussions
icon
Computer Newbies 10,498 discussions
icon
Laptops 20,411 discussions
icon
Security 30,882 discussions
icon
TVs & Home Theaters 21,253 discussions
icon
Windows 10 1,672 discussions
icon
Phones 16,494 discussions
icon
Windows 7 7,855 discussions
icon
Networking & Wireless 15,504 discussions

REVIEW

Meet the drop-resistant Moto Z2 Force

The Moto Z2 Force is really thin, with a fast processor and great battery life. It can survive drops without shattering.