Spyware, Viruses, & Security forum

General discussion

UPDATES - November 10, 2006

by roddy32 / November 9, 2006 7:29 PM PST
TrojanHunter 4.6 Ruleset Update - Nov 9, 2006

An updated TrojanHunter ruleset is available. This update adds at least 62 new trojan definitions:

Adware.AdMoke.106
Adware.Cdn.112
Adware.Virtumonde.294
Adware.Virtumonde.293
Agent.931
Agent.930
Codbot.145
Delf.464
TrojanDropper.VB.169
Hupigon.570
Klone.138
Klone.137
Monitor.Douglas.100
PWSteal.LdPinch.214
PWSteal.LdPinch.213
PWSteal.Nilage.134
PWSteal.Nilage.133
PWSteal.Nilage.132
PWSteal.Nilage.131
PWSteal.OnLineGames.115
Rukap.172
Rukap.171
SDBot.863
SDBot.862
SDBot.861
Small.339
TrojanClicker.Agent.176
TrojanClicker.Costrat.110
TrojanDownloader.Agent.884
TrojanDownloader.Agent.883
TrojanDownloader.Agent.882
TrojanDownloader.Busky.127
TrojanDownloader.CWS.132
TrojanDownloader.Dadobra.141
TrojanDownloader.Delf.490
TrojanDownloader.Nurech.108
TrojanDownloader.Zlob.682
TrojanProxy.Small.142
ZlobDropper.426
ZlobDropper.425
ZlobDropper.424
ZlobDropper.423
TrojanProxy.Xorpix.129
TrojanDownloader.Tiny.158
TrojanDownloader.Zlob.681
TrojanDownloader.Zlob.680
TrojanDropper.Agent.392
TrojanDropper.Small.271
TrojanProxy.Delf.112
TrojanSpy.Banbra.214
TrojanSpy.Banker.1331
TrojanSpy.Banker.1330
Worm.NetSky.139
TrojanSpy.Delf.256
Zapchast.122
ZlobDropper.422
ZlobDropper.421
Klone.139
TrojanDownloader.Busky.128
TrojanDownloader.PurityScan.142
TrojanDownloader.Small.920
Worm.Glowa.101

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, also use LiveUpdate.

License holders without an ongoing subscription please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.


You should have 91934 rules.
http://www.misec.net/forum/board/RulesetUpdates/1163134512
Discussion is locked
You are posting a reply to: UPDATES - November 10, 2006
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - November 10, 2006
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Spybot S&D detection rules
by roddy32 / November 9, 2006 7:53 PM PST
2006-11-10
Adware
+ DuDuAccelerator
Hijacker
+ 7FaSSt + ISearchTech.ISTbar + Mirar
Keylogger
+ MDMSpy
Malware
+ BannerRotator + Batty + CMFibula + Command Service + DeepDive ++ Deskbar + Errorsafe + Look2Me + MediaMotor + MediaMotor.IEMonitor + PSCastor + Smitfraud-C. + SurfSideKick + Systemdoctor2006 + Zelda
PUPS
+ DriveCleaner 2006 + YazzleSudoku
Spyware
+ MarketScore + NSIS Media Extension + PurityScan + WebHancer
Trojan
+ FirePass.E + SearchClickAds + Win32.Agent.uj + Win32.Bagle.N + Win32.Ezula.cc + Win32.SdBot.aad + XPreload + Zlob.PornPassManager + Zlob.VideoKeyCodec
Total: 331286 fingerprints in 52053 rules for 2406 products.
http://www.safer-networking.org/en/home/index.html
Collapse -
ZoneAlarm Anti-virus
by roddy32 / November 9, 2006 8:26 PM PST

Anti-virus signature DAT file version:11.9.10058.000

To check your signature DAT file versions, go to the "Overview" section of ZA. Click on the "Product Info" tab. In the "Version Information" Section, your DAT versions should be listed there. An easier method will be to right-click the ZA icon on the taskbar and click "About..."

http://forum.zonelabs.org/zonelabs/board/message?board.id=Antivirus&message.id=5744#M5744

Note: At the time of this posting the website had not been updated but the update is available

Collapse -
F-Prot 11/09/2006
by roddy32 / November 9, 2006 8:45 PM PST
Latest virus signature files:
Application/Script viruses and Trojans 9th, November 2006
Document/Office/Macro viruses 9th, November 2006
The latest versions of F-Prot Antivirus can detect a total of 336179 worms, viruses and other malicious programs with these latest virus signature files.
http://www.f-prot.com/products/currentversions.html
Collapse -
NOD32 - 1861 (20061110)
by roddy32 / November 9, 2006 9:12 PM PST
2006-11-10 11:34
IRC/SdBot, JS/TrojanDownloader.Agent.NAB, MSIL/Somali.A, Win32/Adware.MoKeAD (6), Win32/Delf.NDQ (2), Win32/Dialer.AdultBrowser (22), Win32/Gromoz.P (3), Win32/Hupigon.NAV, Win32/Pardona.A (3), Win32/Pardona.B, Win32/PSW.LdPinch.NCC, Win32/PSW.Legendmir.BEP, Win32/PSW.Lineage.ABT, Win32/PSW.Lineage.ASG, Win32/PSW.Lineage.DN (2), Win32/PSW.QQPass.OZ (3), Win32/Rbot (4), Win32/Rootkit.Agent.CT, Win32/Rustock.NAG (2), Win32/Sohanad.L, Win32/Sohanad.M, Win32/Spabot.NAC (6), Win32/Spy.Delf.OR (3), Win32/Stration.OE (3), Win32/TrojanClicker.Agent.NAX (2), Win32/TrojanDownloader.Adload, Win32/TrojanDownloader.Adload.NCF, Win32/TrojanDownloader.Adload.NCH, Win32/TrojanDownloader.Adload.NCP, Win32/TrojanDownloader.Adload.NCR, Win32/TrojanDownloader.Adload.NCS, Win32/TrojanDownloader.Adload.NCT, Win32/TrojanDownloader.Agent.NHV, Win32/TrojanDownloader.Delf.AJD, Win32/TrojanDownloader.Small.CYN (2), Win32/TrojanDownloader.Small.DYY (2), Win32/TrojanDownloader.Small.DZC (2), Win32/TrojanDownloader.VB.FI, Win32/TrojanDownloader.Zlob.AIN (2), Win32/TrojanDownloader.Zlob.AIO (3), Win32/TrojanDownloader.Zlob.AIP (4), Win32/TrojanDownloader.Zlob.AIQ (2), Win32/TrojanDropper.Agent.AKO (3), Win32/TrojanDropper.Agent.ATA, Win32/TrojanDropper.Delf.NCL (2), Win32/TrojanDropper.Delf.WY, Win32/TrojanProxy.Agent.JI (3), Win32/VB.NFP, Boom.A (2), Boring.A, Botschafter.A.gen, Bottra.gen, Box.D, Box.G, Box.H, Box.I, BPTK.A.gen, BPTK.B.gen, BPTK.C.gen, Brainless.A, Brainless.B, Break.A.gen, Breeder.A, Breeze.A.gen, Breeze.D.gen, Breeze.E, Breeze.F, Brenda.gen, Bridge.gen, Bro.A, Buendia.A.gen, Buendia.B.gen, Buksim.A.gen, Bumdoc.gen, Bunny.A.gen, Byboom.A, Bytment.A, Cakes.gen, Calendar.A, Caligula.gen, Cam.A.gen, Camel.A, Camino.A, Candle.gen, Candy.A, Cap.gen (2), Capucin.A, Carpe.A, Carrier.A, Carrier.B, Carrier.C, Casc.A, Cash.A.gen, Cash.B.gen, Cash.C.gen, Cerin.A, Chack.AG, Chack.CA, Chack.CN, Chack.gen (2), Chaka.D.gen, Cham.A, Chameleon.A, Chameleon.B.gen, Chameleon.C.gen, Generic (12), Nometz.A, Win32/Agent.VG (2), Win32/PSW.QQPass.HV
http://www.eset.sk/podpora/aktualizacia-1861-20061110
http://www.eset.sk/en/support/update-xy1
Collapse -
NOD32 - 1862 (20061110)
by roddy32 / November 10, 2006 6:56 AM PST
2006-11-10 23:24
Win32/Adware.MoKeAD (5), Win32/Agent.OH, Win32/Delf.NDV (3), Win32/Gromoz.Q (3), Win32/Hupigon, Win32/Medbot.CD, Win32/Medbot.CE (2), Win32/Nuwar, Win32/Porkfoot, Win32/Porkfoot.A (2), Win32/PSW.Agent.NAW, Win32/PSW.Agent.NBA (3), Win32/PSW.Agent.NBB (2), Win32/PSW.Delf.NDG (12), Win32/PSW.Delf.NEC (3), Win32/PSW.Delf.NED, Win32/PSW.LdPinch.NCC, Win32/PSW.Legendmir.NDX, Win32/PSW.Legendmir.NDY (2), Win32/PSW.Legendmir.NDZ (2), Win32/PSW.Lineage.ABT, Win32/PSW.Lineage.AEL, Win32/PSW.Lineage.AJP (5), Win32/PSW.Lineage.DN (6), Win32/PSW.QQPass.MX, Win32/PSW.QQShou, Win32/PSW.QQShou.NAQ (3), Win32/PSW.WOW.JE (2), Win32/Rbot, Win32/Scano.BG (2), Win32/Scano.NBK (2), Win32/SpamTool.Small, Win32/Spy.Bancos.ZE (2), Win32/Spy.Banker.NQY, Win32/Spy.Delf.NDO, Win32/Spy.Delf.NDP (2), Win32/Spy.Goldun.MG, Win32/Spy.Goldun.NAJ (2), Win32/Stration.NX (2), Win32/Stration.OE (3), Win32/TrojanClicker.Agent.AC (2), Win32/TrojanClicker.VB.IS, Win32/TrojanDownloader.Agent.AYO (5), Win32/TrojanDownloader.Banload.BCW (2), Win32/TrojanDownloader.Delf.AJD, Win32/TrojanDownloader.Small.AVT, Win32/TrojanDownloader.Small.AWA, Win32/TrojanDownloader.Small.DYY, Win32/TrojanDownloader.Zlob (9), Win32/TrojanDownloader.Zlob.AIR (2), Win32/TrojanDropper.Agent.ATA, Win32/TrojanProxy.Xorpix, Win32/VB.NCZ (2), Win32/VB.NDA (4), Win32/VB.NHY, Win32/Viking.BY, Win32/Viking.CC, Win32/Viking.CD, Win32/Viking.CF, Win32/Viking.CG (6), Win32/Viking.I, Win32/Viking.NAQ
http://www.eset.eu/support/update-xy1
http://www.eset.eu/podpora/aktualizacia-1862-20061110?lng=en
Collapse -
BOClean FILEDATE: 2006-11-10 13:08:45 (UTC)
by roddy32 / November 9, 2006 9:50 PM PST
FORTY-FIVE new nasties for a total of 16782 UNIQUE infectors (193,818 variants including trojans, worms, bots, hijackers, downloaders, spam proxies, rootkits, adware, spyware, keyloggers, "dialers" and other malware in total) covered in today's update for BOClean 4.22. BOClean 4.21 and earlier are no longer supported and MUST be upgraded.

To UPDATE your existing BOClean database, doubleclick on your BOClean traybar icon and select "check for update" to have BOClean automatically collect and install your update for you. BOClean is designed to perform an autoupdate if left configured to do so. If you have problems with the autoupdate program, check your firewall settings - we use passive FTP download instead of the more conventional HTTP method and some firewalls may refuse to allow the program to connect unless you set rules to permit the BOClean autoupdate program to collect them. Please consult your firewall's instructions on how to do this if the update program is stopped or crashed by your firewall.

Please ALSO note that updates of the database do NOT "UPGRADE" BOClean 4.21 and earlier to 4.22. Doing so requires that we send you a replacement or (if you paid for the "extended download" when you purchased BOClean) you can go back and redownload BOClean from Digital River and obtain the 4.22 upgrade yourself. If you didn't opt for the "extended download" premium option at additional cost at time of purchase, then you need to contact upgrade@nsclean.com in order to upgrade to 4.22. Information on what you need to do in order to GET your upgrade are detailed here:

http://www.nsclean.com/upgrade.html

Please also note that if you ever miss an update (or several) the update you collect includes *ALL* previous update information. There is no need to go hunting down other updates. The current one is always complete.
Collapse -
BOClean FILEDATE: 2006-11-11 00:43:31 (UTC)
by roddy32 / November 10, 2006 9:26 AM PST
TEN new nasties for a total of 16792 UNIQUE infectors (193,900 variants including trojans, worms, bots, hijackers, downloaders, spam proxies, rootkits, adware, spyware, keyloggers, "dialers" and other malware in total) covered in today's update for BOClean 4.22. BOClean 4.21 and earlier are no longer supported and MUST be upgraded.

To UPDATE your existing BOClean database, doubleclick on your BOClean traybar icon and select "check for update" to have BOClean automatically collect and install your update for you. BOClean is designed to perform an autoupdate if left configured to do so. If you have problems with the autoupdate program, check your firewall settings - we use passive FTP download instead of the more conventional HTTP method and some firewalls may refuse to allow the program to connect unless you set rules to permit the BOClean autoupdate program to collect them. Please consult your firewall's instructions on how to do this if the update program is stopped or crashed by your firewall.

Please ALSO note that updates of the database do NOT "UPGRADE" BOClean 4.21 and earlier to 4.22. Doing so requires that we send you a replacement or (if you paid for the "extended download" when you purchased BOClean) you can go back and redownload BOClean from Digital River and obtain the 4.22 upgrade yourself. If you didn't opt for the "extended download" premium option at additional cost at time of purchase, then you need to contact upgrade@nsclean.com in order to upgrade to 4.22. Information on what you need to do in order to GET your upgrade are detailed here:

http://www.nsclean.com/upgrade.html

Please also note that if you ever miss an update (or several) the update you collect includes *ALL* previous update information. There is no need to go hunting down other updates. The current one is always complete.
Collapse -
a-squared signature update
by roddy32 / November 9, 2006 10:39 PM PST
Collapse -
Update AVG 7.5 - AVI 268.14.2/ 528
by roddy32 / November 9, 2006 11:31 PM PST
Collapse -
Panda
by roddy32 / November 9, 2006 11:43 PM PST
Collapse -
AVG Anti-spyware 15:11CET
by roddy32 / November 10, 2006 12:56 AM PST
Collapse -
AntiVir Version: 6.36.01.15
by roddy32 / November 10, 2006 1:22 AM PST
Collapse -
NAV Daily
by roddy32 / November 10, 2006 2:35 AM PST
Collapse -
McAfee Daily #4893
by roddy32 / November 10, 2006 2:56 AM PST
Collapse -
Bazooka scanner database update for 11/10/2006
by roddy32 / November 10, 2006 7:11 AM PST
Popular Forums
icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

CNET FORUMS TOP DISCUSSION

Help, my PC with Windows 10 won't shut down properly

Since upgrading to Windows 10 my computer won't shut down properly. I use the menu button shutdown and the screen goes blank, but the system does not fully shut down. The only way to get it to shut down is to hold the physical power button down till it shuts down. Any suggestions?