Spyware, Viruses, & Security forum

General discussion

UPDATES - November 24, 2006

TrojanHunter 4.6 Ruleset Update - Nov 23, 2006

An updated TrojanHunter ruleset is available. This update adds at least 89 new trojan definitions:

HacDef.114
HacDef.113
IRCBot.389
Obfuscated.133
Obfuscated.132
Pakes.196
PWSteal.Agent.230
PWSteal.Agent.229
PWSteal.Delf.281
PWSteal.Gamec.131
PWSteal.Hangame.129
PWSteal.Hangame.128
PWSteal.LdPinch.217
PWSteal.Nilage.151
PWSteal.OnLineGames.121
PWSteal.QQPass.752
PWSteal.Small.120
Rootkit.Vanti.141
SDBot.874
Small.356
TrojanClicker.Agent.178
TrojanDownloader.Agent.907
TrojanDownloader.Banload.695
TrojanDownloader.Banload.694
TrojanDownloader.Banload.693
TrojanDownloader.Banload.692
TrojanDownloader.Banload.691
TrojanDownloader.Banload.690
TrojanDownloader.Banload.689
TrojanDownloader.Banload.688
TrojanDownloader.Banload.687
TrojanDownloader.Banload.686
TrojanDownloader.Cryptic.123
TrojanDownloader.Cryptic.122
TrojanDownloader.Delf.514
TrojanDownloader.Delf.513
TrojanDownloader.Dluca.130
TrojanDownloader.Lemmy.101
TrojanDownloader.Nurech.111
TrojanDownloader.Small.953
TrojanDownloader.Small.952
TrojanDownloader.Small.951
TrojanDownloader.Small.950
TrojanDownloader.Small.949
TrojanDownloader.Zlob.708
TrojanDropper.MuDrop.111
TrojanDropper.Small.275
TrojanProxy.Caprobad.103
TrojanProxy.Horst.277
TrojanProxy.Horst.276
TrojanProxy.Horst.275
TrojanProxy.Horst.274
TrojanProxy.Horst.273
TrojanProxy.Horst.272
TrojanProxy.Horst.271
TrojanProxy.Horst.270
TrojanProxy.Horst.269
TrojanProxy.Horst.268
TrojanProxy.Horst.267
TrojanProxy.Ranky.166
TrojanSpy.Banbra.219
TrojanSpy.Bancos.431
TrojanSpy.Bancos.430
TrojanSpy.Banker.1365
TrojanSpy.Banker.1364
TrojanSpy.Banker.1363
TrojanSpy.Banker.1362
TrojanSpy.Banker.1361
TrojanSpy.Banker.1360
TrojanSpy.Banker.1359
TrojanSpy.Banker.1358
TrojanSpy.Delf.262
Worm.Banwarum.104
Worm.SirCam.101
Worm.Viking.144
Worm.Viking.143
Worm.Warezof.281
Worm.Warezof.280
Worm.Warezof.279
Worm.Warezof.278
ZlobDropper.486
ZlobDropper.485
ZlobDropper.484
ZlobDropper.483
ZlobDropper.482
ZlobDropper.481
ZlobDropper.480
ZlobDropper.479
ZlobDropper.478

Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, also use LiveUpdate.

License holders without an ongoing subscription please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.


You should have 94039 rules.
http://www.misec.net/forum/board/RulesetUpdates/1164341528
Discussion is locked
You are posting a reply to: UPDATES - November 24, 2006
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: UPDATES - November 24, 2006
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Spybot S&D detection rules

In reply to: UPDATES - November 24, 2006

2006-11-24
Adware
+ NSIS Media Extension + Zippy
Dialer
+ Carima Enterprises
Hijacker
+ CoolWWWSearch.008k + CoolWWWSearch.Aff.Winshow + CoolWWWSearch.Dreplace + CoolWWWSearch.Leftovers + CoolWWWSearch ++ GJeans30 + HotsearchBar + QuickNavigate
Malware
+ ClickConsulting + DeepDive + Dropper.ragger + ErrorSafe + ISearchTech.IstDownloader + RegiFast + Smitfraud-C. + SpySheriff + Vcodec.Intcodec + Winsoftware.WinAntiSpyware2006
PUPS
+ DriveCleaner 2006 + Zango
Spyware
+ Adware.IEPageHelper + ClientMan
Trojan
+ Adir.Wget + CoolWWWSearch.GonnaSearch (2) + Dadobra + Fraud.ProtectionBar + MovieLand ++ PSLister + Smitfraud-C. (5) + Win32.Delf.aml + XPreload + Zlob.FreeVideo.DVDCodec + Zlob.EliteCodec + Zlob.PornPassManager + Zlob.QualityCodec + Zlob.TrueCodec + Zlob.VidCodec (2) + Zlob.VideoKeyCodec
Total: 334918 fingerprints in 53285 rules for 2474 products.
http://www.safer-networking.org/en/home/index.html
Collapse -
ZoneAlarm Anti-spyware

In reply to: UPDATES - November 24, 2006

Anti-spyware signature DAT file version:01.200611.565

To check your signature DAT file versions, go to the "Overview" section of ZA. Click on the "Product Info" tab. In the "Version Information" Section, your DAT versions should be listed there. An easier method will be to right-click the ZA icon on the taskbar and click "About..."

http://forum.zonelabs.org/zonelabs/board/message?board.id=Antivirus&message.id=5744#M5744

Note: At the time of this posting the website had not been updated but the update is available

Collapse -
ZoneAlarm Anti-virus

In reply to: UPDATES - November 24, 2006

Anti-virus signature DAT file version:11.9.10077.000

To check your signature DAT file versions, go to the "Overview" section of ZA. Click on the "Product Info" tab. In the "Version Information" Section, your DAT versions should be listed there. An easier method will be to right-click the ZA icon on the taskbar and click "About..."

http://forum.zonelabs.org/zonelabs/board/message?board.id=Antivirus&message.id=5744#M5744

Note: At the time of this posting the website had not been updated but the update is available

Collapse -
BOClean FILEDATE: 2006-11-24 13:29:24 (UTC)

In reply to: UPDATES - November 24, 2006

SIXTY-NINE new nasties for a total of 17516 UNIQUE infectors (198,522 variants of these including trojans, worms, bots, hijackers, downloaders, spam proxies, rootkits, adware, spyware, keyloggers, "dialers" and other malware in total) covered in today's update for BOClean 4.22. BOClean 4.21 and earlier are no longer supported and MUST be upgraded.

To UPDATE your existing BOClean database, doubleclick on your BOClean traybar icon and select "check for update" to have BOClean automatically collect and install your update for you. BOClean is designed to perform an autoupdate if left configured to do so. If you have problems with the autoupdate program, check your firewall settings - we use passive FTP download instead of the more conventional HTTP method and some firewalls may refuse to allow the program to connect unless you set rules to permit the BOClean autoupdate program to collect them. Please consult your firewall's instructions on how to do this if the update program is stopped or crashed by your firewall.

Please ALSO note that updates of the database do NOT "UPGRADE" BOClean 4.21 and earlier to 4.22. Doing so requires that we send you a replacement or (if you paid for the "extended download" when you purchased BOClean) you can go back and redownload BOClean from Digital River and obtain the 4.22 upgrade yourself. If you didn't opt for the "extended download" premium option at additional cost at time of purchase, then you need to contact upgrade@nsclean.com in order to upgrade to 4.22. Information on what you need to do in order to GET your upgrade are detailed here:

http://www.nsclean.com/upgrade.html

Please also note that if you ever miss an update (or several) the update you collect includes *ALL* previous update information. There is no need to go hunting down other updates. The current one is always complete.
Collapse -
CCleaner v1.35.424

In reply to: UPDATES - November 24, 2006

CCleaner (Crap Cleaner) is a freeware system optimisation tool. That removes unused and temporary files from your system - allowing it to run faster, more efficiently and giving you more hard disk space. The best part is that it's fast! (normally taking less that a second to run) and Free.

http://www.ccleaner.com/download/builds.aspx

Collapse -
NOD32 - 1881 (20061124)

In reply to: UPDATES - November 24, 2006

2006-11-24 13:18
Hlam.A.gen, HMVC.B.gen, HMVC.D.gen, HMVC.E.gen, Hobetuz.A.gen, Hog.A.gen, Honte.A.gen, Hook.A.gen, Hook.B.gen, Hope.A.gen, Hope.AE.gen, Hope.AI.gen, Hope.AJ.gen, Hope.B.gen, Hope.C.gen, Hope.D.gen, Hope.E.gen, Hope.G.gen, Hope.I.gen, Hope.J.gen, Hope.K.gen, Hope.L.gen, Hope.M.gen, Hope.U.gen, Hope.W.gen, Hope.X.gen, Hopel.A.gen, Hopper.AI.gen, Horit.A.gen, Win32/Amitis.143.B, Win32/Delf.NBQ, Win32/Medbot.CQ, Win32/Medbot.CR (2), Win32/Prosti.NAD (3), Win32/PSW.LdPinch.BDW, Win32/PSW.Lineage.AJP, Win32/PSW.Lineage.DN (2), Win32/PSW.Lineage.NCL, Win32/PSW.Lineage.NDI (2), Win32/PSW.Lineage.NEP (4), Win32/PSW.QQPass.JF, Win32/PSW.QQPass.NBI (2), Win32/PSW.QQShou.EH, Win32/Rbot, Win32/Spy.Banker.NRB (2), Win32/Stration.PP (8), Win32/Stration.QK (2), Win32/Stration.QM (3), Win32/Stration.QN (3), Win32/Stration.QO (3), Win32/TrojanClicker.BHO.I (4), Win32/TrojanDownloader.Agent.AUI, Win32/TrojanDownloader.Agent.BBG, Win32/TrojanDownloader.Banload.BIR (2), Win32/TrojanDownloader.Busky.AZ, Win32/TrojanDownloader.Delf.BAM, Win32/TrojanDownloader.Small.EAM, Win32/TrojanDownloader.Small.NOD, Win32/TrojanDownloader.VB.ALY, Win32/TrojanDownloader.VB.NHZ (2), Win32/TrojanDownloader.Zlob.AKG (3), Win32/TrojanDownloader.Zlob.AKH (5), Win32/TrojanProxy.Cimuz.BW (2), Win32/VB.AZH
http://www.eset.sk/podpora/aktualizacia-1881-20061124?lng=en
http://www.eset.sk/home
Collapse -
NOD32 - 1882 (20061124)

In reply to: NOD32 - 1881 (20061124)

2006-11-24 22:06
Win32/Adware.AVGold (2), Win32/Adware.NewWeb (2), Win32/Agent.NEO, Win32/Agent.NEY, Win32/DNSChanger.NAB, Win32/PSW.Agent.NBH (3), Win32/PSW.Lineage.ACN, Win32/PSW.Lineage.AEL (2), Win32/PSW.Lineage.AJP (3), Win32/PSW.Lineage.DN (4), Win32/PSW.Lineage.NCL, Win32/PSW.Lineage.NEE, Win32/PSW.Prostor.NAA (6), Win32/PSW.Small.NAF (2), Win32/Rootkit.Agent.NAP, Win32/Rootkit.Agent.NAQ, Win32/Rustock.NAM (2), Win32/Spy.Agent.CT, Win32/Spy.Banker.ANV (2), Win32/Spy.Banker.NRC (2), Win32/Spy.VB.NBN, Win32/Stration.QP (3), Win32/TrojanDownloader.Agent.NHX (2), Win32/TrojanDownloader.Banload.BJY, Win32/TrojanDownloader.Banload.PI (2), Win32/TrojanDownloader.Delf.NPE (2), Win32/TrojanDownloader.QQHelper.NAF, Win32/TrojanDownloader.Zlob, Win32/TrojanDownloader.Zlob.AKI (10), Win32/TrojanDropper.Agent.NCW, Win32/TrojanDropper.Joiner.AJ, Win32/VB.NHZ (2), Win32/Zapchast.NAQ, Win32/Zapchast.NAR
http://www.eset.eu/support/update-xy1
http://www.eset.eu/podpora/aktualizacia-1882-20061124?lng=en
Collapse -
ClamAV database updated

In reply to: UPDATES - November 24, 2006

Collapse -
F-Prot 11/23/2006

In reply to: UPDATES - November 24, 2006

Latest virus signature files:
Application/Script viruses and Trojans 23rd, November 2006
Document/Office/Macro viruses 23rd, November 2006
The latest versions of F-Prot Antivirus can detect a total of 341708 worms, viruses and other malicious programs with these latest virus signature files.
http://www.f-prot.com/products/currentversions.html
Collapse -
a-squared signature update

In reply to: F-Prot 11/23/2006

Collapse -
a-squared revised signature updaye

In reply to: a-squared signature update

Collapse -
Panda

In reply to: UPDATES - November 24, 2006

Collapse -
McAfee Daily #4904

In reply to: UPDATES - November 24, 2006

Collapse -
AVG Anti-Virus 7 Update - AVI 268.14.15 / IAVI 0550

In reply to: UPDATES - November 24, 2006

--- AVG Anti-Virus Update ---
(11/24/2006)

********************************
** AVG Anti-Virus 7 **
********************************

--- information about Update ---

Update Summary:

- added new variants of I-Worm/Scano, I-Worm/Sohanad
- added new variants of trojan PSW.Banker, Downloader.Zlob

Collapse -
NAV Daily

In reply to: UPDATES - November 24, 2006

Collapse -
AVG Anti-spyware 16:47CET

In reply to: UPDATES - November 24, 2006

Collapse -
Database Update for The Cleaner 3.x and 4.x Professional

In reply to: UPDATES - November 24, 2006

Database v4006, dated November 24, 2006, 44739 trojan definitions.

Collapse -
AntiVir Version: 6.36.01.86

In reply to: UPDATES - November 24, 2006

Collapse -
Windows Defender Signature Update 1.14.1843.4

In reply to: UPDATES - November 24, 2006

Collapse -
Irfanview - Version 3.99 ( - CURRENT VERSION - )

In reply to: UPDATES - November 24, 2006

There were numerous changes here are only the more important things.

*
Option to Search files (File menu or Thumbnails, Hotkey: CTRL+F)
*
Support for PDF export (PlugIn) (Thanks to ComSquare AG)
*
New Thumnails option: Load file list from TXT
*
New zoom workwise: Centered zoom or based on old scroll position
*
Zooming and scrolling is now possible in slideshow mode
*
Many new effects added: Unsharp mask, Fish Eye etc. (Thanks to GENiEBEN)
*
New Flash Plugin for Flash 5 or later! (Thanks to Remio)
*
Option to transfer files by FTP (Thumbnails window, PlugIn)
*
Option to set the Start folder (Properties->Misc 2)
*
New image option: Auto adjust colors (Thanks to Andras Horvath, www.log69.com)
*
New effect: Chromatic Aberration (Thanks to Thomas Strauss)
*
Support for SIF format (Formats PlugIn)
*
Support for PVR format (DreamCast Texture, Formats PlugIn)
*
Support for AWD format (Artweaver Format, PlugIn)
*
Support for VTF format (Valve Texture Format, PlugIn)
*
WMF format check added, to avoid WMF vulnerability (Thanks to Jakub Debski)
*
New Thumbnails sort options: Sort by portrait/landscape
*
Fullscreen option: Use right mouse button for scrolling (Properties -> Misc 1)
*
Fullscreen option: Set display multiplier (for wide screen displays)
*
New placeholders for EXIF/IPTC: $E, $I => to load all EXIF/IPTC data
*
Command line change for /resample! (see i_options.txt for examples)
*
New command line options: /resize_long, /resize_short (see i_options.txt)
*
New command line option: /panorama=(direction,file1,...,fileN)
*
New command line options: /bright=value, /gamma=value
*
Command line switch for /info: /fullinfo (write EXIF, IPTC and Comment)
*
Updated CRW/CR2 PlugIn, please install newest Canon DLLs (see i_plugins.txt)
*
Option to show a warning on ESC thumbnails exit (Thumbnails options)
*
New options in dialog: Create custom selection
*
Support for MP4 format (Quicktime PlugIn)
*
At request of Luratech: JP2/JPM/LWF/LDF are not available in Batch mode
*
New Hotkey: SHIFT + P = Copy current filename to clipboard
*
Added YUV (4:2:0) format support to Formats PlugIn
*
Help file format changed to CHM (Compatible with Windows Vista)
*
Most PlugIns are changed/updated, please install the newest versions
http://www.irfanview.com/plugins.htm
*
Some minor bugs/features fixed/added (add-all button, ANI/CUR loading, batch text)


Download: http://www.irfanview.com/

Popular Forums

icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

SMART HOME

This one tip will help you sleep better tonight

A few seconds are all you need to get a better night's rest.