Added detection of new variant of Worm/Agobot, Worm/Delf, new variants of trojans Downloader.Agent, Downloader.Delf.
October 29, 2008
http://www.grisoft.com/us.download-update
 | Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years. Thanks, CNET Support |
General discussion
UPDATES - October 29, 2008
An updated TrojanHunter ruleset is available. This update adds 39 new trojan definitions:
Agent.3072
Agent.3071
Agent.3070
Agent.3069
Agent.3068
Agent.3067
Inject.297
Inject.296
Inject.295
IRCBot.827
Momibot.109
Monder.335
Monder.334
Monder.333
Monder.332
Monderb.151
Pakes.533
PWSteal.LdPinch.807
PWSteal.OnLineGames.1364
PWSteal.OnLineGames.1363
TDSS.113
TrojanDownloader.Agent.2735
TrojanDownloader.Agent.2734
TrojanDownloader.Agent.2733
TrojanDownloader.Agent.2732
TrojanDownloader.Agent.2731
TrojanDownloader.Small.2917
TrojanDownloader.Small.2916
TrojanDownloader.Tibs.317
TrojanDownloader.Zlob.1670
TrojanDownloader.Zlob.1669
TrojanDropper.Agent.1029
TrojanDropper.Agent.1028
TrojanDropper.VB.362
Vapsup.141
Vundo.1353
Vundo.1352
Worm.Agent.174
Worm.AutoRun.276
Licensed TrojanHunter users can easily update using TrojanHunter's LiveUpdate utility. If you are using the trial version of TrojanHunter, please see http://www.misec.net/trojanhunter/updating/ for instructions on how to update to the latest ruleset.
You should have 194962 rules.
Also added later 194964 for LiveUpdate only
Oderoor.106
http://www.misec.net/forum/board/RulesetUpdates/1225270501
Discussion is locked
22 Posts
- Collapse
- Collapse -
- Collapse -
Win32/Adware.Cinmus, Win32/Adware.UltimateDefender, Win32/AutoRun.PSW.OnlineGames.B (5), Win32/BHO.NJF (2), Win32/Pacex.Gen, Win32/Packed.Lighty.Gen, Win32/PSW.Legendmir.NFY, Win32/PSW.Legendmir.NGG, Win32/PSW.OnLineGames.NRD (4), Win32/PSW.OnLineGames.NRW (5), Win32/PSW.OnLineGames.NXI (2), Win32/PSW.WOW.CHF, Win32/PSW.WOW.CIJ (2), Win32/Rootkit.Agent.NGW (4), Win32/Spy.Bancos.NKD (2), Win32/Spy.Banker.PRC, Win32/Spy.Banker.PRS (2), Win32/Spy.Banker.PRT (2), Win32/TrojanClicker.Agent.NCZ, Win32/TrojanClicker.Agent.NEM, Win32/TrojanClicker.Agent.NEQ, Win32/TrojanDownloader.FakeAlert.GU, Win32/TrojanDownloader.FakeAlert.OK, Win32/TrojanDownloader.FakeAlert.OL, Win32/TrojanDownloader.Small.OGQ (2), Win32/TrojanDownloader.VB.NRT (3), Win32/TrojanDownloader.Zlob.CTJ (20), Win32/TrojanDropper.Agent.NMA (2)
http://www.eset.eu/podpora/aktualizacia-3565?lng=en
http://www.eset.eu/support/update-xy1
- Collapse -
ALS/Pasdoc.A, Win32/Adware.Antispy2008 (2), Win32/Adware.NVirus (6), Win32/Adware.PCAntispyware (6), Win32/Adware.Virtumonde, Win32/Adware.VirusRemover2008, Win32/Adware.VirusResponseLab, Win32/Adware.XPAntiSpyware.AA, Win32/Adware.XPSecurityCenter, Win32/Agent.AJVG, Win32/Agent.NPW (3), Win32/Agent.OJG (3), Win32/Agent.OJH (3), Win32/Agent.OJI, Win32/AutoRun.Agent.AA, Win32/AutoRun.KS, Win32/Dialer.NEW, Win32/Hexzone.F (3), Win32/Injector.BV, Win32/Injector.EL, Win32/KillAV.NCM, Win32/Lowzones.NAY, Win32/Patched.P (2), Win32/PSW.LdPinch.NJC, Win32/PSW.Lineage.NGZ, Win32/PSW.OnLineGames.NMP (5), Win32/PSW.OnLineGames.NMY (8), Win32/PSW.OnLineGames.NNM (5), Win32/PSW.OnLineGames.NNU (3), Win32/PSW.OnLineGames.NRX (2), Win32/PSW.OnLineGames.OCM (2), Win32/PSW.OnLineGames.ODJ (5), Win32/PSW.OnLineGames.XTT (2), Win32/PTCasino, Win32/Qhost, Win32/Rootkit.Agent.NGX (2), Win32/Spy.Agent.EQM (2), Win32/Spy.Bancos.NKE, Win32/StartPage.NIJ (2), Win32/Tifaut.A (2), Win32/TrojanDownloader.Agent.OIJ, Win32/TrojanDownloader.Autoit.NAJ, Win32/TrojanDownloader.Delf.OGZ, Win32/TrojanDownloader.FakeAlert.OJ, Win32/TrojanDownloader.FakeAlert.OM (2), Win32/TrojanDownloader.FakeAlert.ON (3), Win32/TrojanDownloader.Small.OGM (2), Win32/TrojanDropper.Agent.NJV (2), Win32/TrojanDropper.Agent.NOV, Win32/TrojanDropper.Delf.NEX, Win32/VB.NOU, Win32/VB.NRQ, Win32/Wigon.GP, Win32/Wigon.GQ
http://www.eset.eu/podpora/aktualizacia-3566?lng=en
http://www.eset.eu/support/update-xy1
- Collapse -
IRC/SdBot, Win32/Adware.AntiSpywarePro (2), Win32/Adware.Antivirus2008 (3), Win32/Adware.BHO.NCG, Win32/Adware.IeDefender.NHN, Win32/Adware.IeDefender.NHR (2), Win32/Adware.RegistrySmart (4), Win32/Adware.SpywareRemover, Win32/Adware.UltimateDefender, Win32/Adware.WSearch, Win32/Agent.ETH, Win32/Agent.THP, Win32/Agent.THQ, Win32/Agent.THR, Win32/Agent.THS, Win32/Autoit.DG, Win32/AutoRun.ABH (2), Win32/AutoRun.Agent.AB (2), Win32/AutoRun.Agent.AC (2), Win32/AutoRun.Agent.AD, Win32/AutoRun.Agent.AE (2), Win32/AutoRun.VB.I (3), Win32/BHO.NHN (7), Win32/BHO.NJG, Win32/BlackHole.CAJ, Win32/Hupigon.NKG, Win32/Mebroot.W, Win32/Poison.NAU, Win32/PSW.Delf.NMZ (3), Win32/PSW.OnLineGames.NMP, Win32/PSW.OnLineGames.NMY, Win32/PSW.Small.NAF, Win32/PSW.WOW.NEZ (3), Win32/Spy.Bancos.NKF (2), Win32/Spy.Bancos.NKG (2), Win32/Spy.Bancos.NKH (2), Win32/Spy.Banker.OWM, Win32/Spy.Banker.PRU (2), Win32/Spy.Banker.PRV (3), Win32/Spy.Delf.NLW, Win32/Spy.KeyLogger.NCV, Win32/TrojanClicker.Agent.NEB, Win32/TrojanClicker.Delf.NEQ (3), Win32/TrojanDownloader.Agent.OKV (2), Win32/TrojanDownloader.FakeAlert.GU, Win32/TrojanDownloader.FakeAlert.NH, Win32/TrojanDownloader.FakeAlert.OO (2), Win32/TrojanDownloader.FakeAlert.OQ (2), Win32/TrojanDownloader.Firu, Win32/TrojanDownloader.Small.OGR (2), Win32/TrojanDownloader.VB.NRU (2), Win32/TrojanDownloader.Zlob.CTK (20), Win32/TrojanDownloader.Zlob.CTL, Win32/TrojanDownloader.Zlob.CTM, Win32/TrojanDropper.Agent.XIA, Win32/VB.IF (2), Win32/VB.NRR (2), Win32/Vipdataend.NAB, Win32/Wigon.ET (2), Win32/Wigon.GR (2)
http://www.eset.eu/podpora/aktualizacia-3567?lng=en
http://www.eset.eu/support/update-xy1
- Collapse -
Win32/Lafee.B, Win32/TrojanDownloader.FakeAlert.OR
http://www.eset.eu/podpora/aktualizacia-3568?lng=en
http://www.eset.eu/support/update-xy1
- Collapse -
Hijacker
+ MT-Dials
Keylogger
++ LightLogger
Malware
+ AdDestination + AntispywareProXP + Fraud.PCHealth ++ Fraud.SystemAntivirus + Fraud.XPAntivirus + MicroAntivirus + Smitfraud-C. + Win32.Agent.cmn
PUPS
++ WGDTEAM.GoldCashHack
Trojan
+ Network Essentials.Hopper + RS32UPS.ru + Virtumonde + Virtumonde.prx + Virtumonde.sci + Virtumonde.sdn ++ Win32.Agent.agee + Win32.Agent.frl + Win32.Brontok.q ++ Win32.Delf.gycn + Win32.Exchanger.ch ++ Win32.Small.Ybe ++ Win32.VB.ayo ++ Win32.VB.bg ++ Win32.VB.bj + Zlob.Downloader + Zlob.Downloader.wet
Total: 944259 fingerprints in 242323 rules for 4324 products.
http://spybot.info/en/updatehistory/index.html
Please remember to Re-Immunize after updating !
- Collapse -
Date: 29 Oct 2008
Time: 13:20 UTC+1
http://www.avira.com/en/pages/index.php
http://www.avira.com/en/threats/section/vdfhistory/index.html
- Collapse -
Latest ClamAV? stable release is: 0.94
Total number of signatures: 455445
ClamAV Virus Databases:
main.cvd ver. 49 released on 22 Oct 2008 22:03 +0000
daily.cvd ver. 8536 released on 29 Oct 2008 12:38 +0000
http://www.clamav.net/
- Collapse -
infectors (331,368 variants of these including
trojans,worms,bots,hijackers,downloaders,spam proxies, rootkits, adware,
spyware,keyloggers,"dialers" and other malware in total) covered in
today's update for BOClean 4.27.
Please also note that if you ever miss an update (or several) the update
you collect includes **ALL** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.comodo.com/boclean/trolist.html
- Collapse -
331,412 variants of these including trojans, worms, bots, hijackers,
downloaders, spam proxies, rootkits, adware, spyware, keyloggers,
"dialers" and other malware in total) covered in today's update for
BOClean 4.27.
Please also note that if you ever miss an update (or several) the update
you collect includes ***ALL*** previous update information. There is no
need to go hunting down other updates. The current one is always complete.
http://www.comodo.com/boclean/trolist.html
- Collapse -
Norton AntiVirus for Mac Defs released October 24
Symantec AntiVirus for Handhelds Defs released October 21
http://www.symantec.com/business/security_response/definitions/download/index.jsp
- Collapse -
Symantec AntiVirus
Norton AntiVirus 2006/2007
Virus Definitions created October 29
Virus Definitions released October 29
Defs Version: 101029c
Sequence Number: 87395
Extended Version: 10/29/2008 rev. 3
Total Detections (Threats & Risks):2420572
http://www.symantec.com/business/security_response/definitions/download/index.jsp
- Collapse -
F-PROT Antivirus can as of 29 October 2008 detect a total of 1127783 worms, viruses and other malicious programs with its latest virus signature file.
http://www.f-prot.com/products/currentversions.html
Note: The total detections on the site are the same as what was posted on 26th August 2008, BUT Although we cannot confirm it, it is very likely that the actual program is being updated automatically at regular intervals even though the webpage isn't.
- Collapse -
Core Definitions 3614 - 10/29/2008 09:42AM PDT
Trace Definitions 1600 - 10/29/2008 09:43AMM PDT
http://www.superantispyware.com/definitions.html
- Collapse -
Core Definitions 3615 - 10/29/2008 05:57PM PDT
Trace Definitions 1601 - 10/29/2008 05:57PM PDT
http://www.superantispyware.com/definitions.html
- Collapse -
Virus Signature File
Wednesday, 29 October 2008
http://www.pandasecurity.com/homeusers/downloads/clients/?
- Collapse -
Added detection of new variant of Win32/Virut, Worm/AutoRun, new variants of trojans Injector, Small.
October 29, 2008
http://www.grisoft.com/us.download-update
- Collapse -
Super DATs 5418 - 10/29/08
http://www.mcafee.com/apps/downloads/secur...amp;segment=smb
http://vil.nai.com/vil/datreadme.aspx
- Collapse -
Update via the program updater
[color=red]Please remember to enable protections![/color]
http://www.javacoolsoftware.com/spywareblaster.html
http://www.javacoolsoftware.com/downloads.html
- Collapse -
Signature update
818 Signatures: 1 Dialer, 436 Trojans, 8 Spywares, 6 Worms, 367 Traces
http://www.emsisoft.com/a2/changelog/free/
http://www.emsisoft.com/en/support/malware/
- Collapse -
Update time: Thu Oct 30 00:42:05 2008
Signature number: 1841619
Update time GMT: 1225312925
Version: 7.21563
http://download.bitdefender.com/updates/bitdefender_v8/plugins/update.txt
- Collapse -
Definition Version: 1.45.1162.0
Engine Version: 1.1.4005.0
Product Info: Windows Defender
Available via Windows updates or the program updater
NOTE: Users who have not received the update within the program or MU or WU and wish to update manually, go to Microsoft Malware Protection Center Portal website to download the definitions. That is one of the features of their malware protection center portal... to allow manual download of the definitions for users who have trouble in getting the updates due to some reason or for users who administer computers and want to deploy defs updates offline.
Note: that this is not a daily Windows Defender update form the portal.
Windows Defender version: 1.1.1593.0 XP-32 bit system
Windows Defender version: 1.1.1505.0 Vista-32 bit system
Windows Defender version: 1.1.1600.0 Vista SP1
CNET Forums
Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Roadshow Autos
Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic