Recent Posts

Tags

News

  • Please do not request support via email, they will not be replied - however, comments are appreciated. Thank you for your cooperation. ________________________

Community

Email Notifications

I Like Links

Archives

Siljaline's Blog

Siljaline's IE & Security Blog

May 2006 - Posts

Ad-aware Definition File Update [SE1R110] 31.05.06

Ad-aware Definition File Update [SE1R110] 31.05.06
Please use the web update feature with Ad-aware to obtain this latest definition file.
New Definitions:
========================
Adware.2Search +6
Adware.AdMedia +2
Adware.MMSAssist +11
AdwareSoft +2
InstantAlbert
NoAdware +3
SpywareNukerXT +10
SystemDoctor +3

Updated Definitions:
========================
180Solutions
Adlogix
Adware.Advertisemen
Adware.DollarRevenue +6
Adware.DuDu
Adware.HuaCiSou +2
Adware.Look2Me +3
Adware.ZenoSearch +6
BargainBuddy +2
BookedSpace +2
ClientMan
CommonName
CoolWebSearch
DailyToolbar
DealHelper
Dialer +2
DownloadWare
DyFuCA +8
EzuLa +7
GetMirar
GoGoTools
Gratisware
IGetNet
I-LookUp
MalwareWipe
MediaCharger
MediaMotor +2
MegaSearch Toolbar
Naupoint
OurXin
PowerStrip
SearchNav
ShopNav Hijacker
Softomate Toolbar +5
SpywareNo
Starware Toolbar
Surfaccuracy
SurfSideKick +11
Timesink
WebHancer +4
Win32.Backdoor.Agent +4
Win32.Generic.PWS +3
Win32.Trojan.Agent +2
win32.Trojan.Dnschanger
Win32.Trojan.Downloader +18
Win32.Trojan.Hexdoor +2
Win32.Trojan.KillAV.ref +2
Win32.Trojan.Spambot
Win32.Trojan.StartPage +2
Win32.TrojanClicker
Win32.TrojanProxy.Small
Win32.Trojan-PSW.Sinowal
Win32.TrojanSpy.Banker +3
Win32.TrojanSpy.Goldun
VirtualBouncer
WurldMedia
Xupiter
ZSearch
The MD5 checksum for the defs.ref file is:
e26efaf80ae537b04e868b4462ba13ed

Advanced users *may* manually update using the below file:
http://download.lavasoft.de.edgesuite.net/public/defs.zip
Unzip - ensure that it is dated today.

Posted: May 31 2006, 08:41 AM by Randy Knobloch | with no comments
MVPS HOSTS Update [05-29-06]
Blocking Unwanted Parasites with a Hosts File

http://www.mvps.org/winhelp2002/hosts.htm
http://www.mvps.org/winhelp2002/hosts.zip (111 kb)
http://www.mvps.org/winhelp2002/hosts.txt (449 kb)
Note: the "text" version makes a good reference for determining possible
culprits

How To: Download and Extract the HOSTS file
http://www.mvps.org/winhelp2002/hosts2.htm

HOSTS File - Frequently Asked Questions
http://www.mvps.org/winhelp2002/hostsfaq.htm

Sign up for HOSTS file update notices
http://www.mvps.org/winhelp2002/hosts.htm#contribute
Posted: May 29 2006, 09:56 AM by Randy Knobloch | with no comments
SpyBot Definition File Update 25.05.06

SpyBot Definition File Update 25.05.06
Updated Detections = 1.5 MB << Note to Dial-up Users!
Updated English Target Descriptions = 79 KB.
Updated ~ Beta Detections = 18 KB ADVANCED USERS ONLY!

Highlights of the new/added detections:

Hijacker
+ Lagos + AproposMedia + CoolWWWSearch.Feat2Installer + CoolWWWSearch.Service + CoolWWWSearch.Feat2DLL
Keylogger
+ Desktop Snooper + SpyArsenal.Family Keylogger
Malware
+ Win32.Delf.KD + Smitfraud-C. + SysProtect + SpyOnThis + Vcodec.eMedia + SpywareSheriff + Win32.Rbot.gen + Spy Sheriff
PUPS
+ MalwareWipe
Security
+ Windows.RedirectedHosts
Spyware
+ SpyArsenal.AIM Logger + SpyArsenal.ICQ Logger + SpyArsenal.Yahoo Logger + SpyArsenal.IRC Logger + SpyArsenal.Personal Desktop Spy
+ SpyArsenal.Print Monitor Pro + SpyArsenal.Watcher
+ 180Solutions.SearchAssistant + Huntbar
Trojan
+ BraveSentry + SpywareSheriff.FakeAlert + SpywareQuake.FakeAlert + Zlob.Downloader + Win32.Agent.xv + Win32.Small.aoi
+ Win32.AdvertMen + SpyiBlock + Dloader.WL1934
Total: 324662 fingerprints in 41627 rules for 1973 products.
NOTE: Choose the download mirror site closest to you!
If you receive error messages such as "bad checksum" it is due to heavy server traffic. Wait until later or tomorrow to avoid disappointment.

Don't forget to re-immunize SpyBot once the new definitions are applied!

A brief explanation of the differences in Immunzation between Windows XP and Windows 9x.
http://forums.spybot.info/showthread.php?t=1988

SpyBot Updates History -
http://www.spybotupdates.com/index.php?page=updatehistory

Installation of the IE-SpyAd list may disable some protections in SpyBot
and SpywareBlaster. Please check them and re-enable protections!

Posted: May 26 2006, 10:10 PM by Randy Knobloch | with no comments
Spyware Blaster Update 26.05.06

Spyware Blaster Update 26.05.06

6345 Total Items in the database.
Please use the web update feature within Spyware Blaster

Posted: May 26 2006, 10:07 PM by Randy Knobloch | with no comments
Microsoft Anti-Spyware Beta1 Defs. "5861"

Not to be confused with Windows Defender!

user posted image

Update via the web update feature in the application.

Best information - supported through end July 31 - '06.

Posted: May 26 2006, 12:02 AM by Randy Knobloch | with no comments |
Ad-aware Definition File Update [SE1R109] 22.05.06

Ad-aware Definition File Update [SE1R109] 22.05.06
Please use the web update feature within the application to obtain this latest definition file.
New Definitions:
========================
Adware.AdNow
Adware.DesktopMedia +4
Yok Toolbar +2

Updated Definitions:
========================
ABetterInternet.Aurora +4
ABetterInternet.Nail +2
Adintelligence.AproposToolbar
Adware.DollarRevenue +4
Adware.DuDu
Adware.Henbang +6
Adware.HuaCiSou +4
Adware.Look2Me +3
Adware.NaviPromo +21
Adware.Yazzle +4
AltnetBDE +2
Aureate
BlazeFind +2
BookedSpace
ClearSearch +9
CometSystems +24
Cydoor
Dialer +2
Elitum.ElitebarBHO +3
Gain +3
istbar +5
Malware.Azesearch +3
NavExcel +2
OurXin +5
PurityScan +21
Softomate Toolbar
SpywareNo +2
Starware Toolbar +3
UCmore
Win32.Generic.PWS
Win32.Harnig.Trojan
Win32.Trojan.downloader +9
Win32.Trojan.Hexdoor
Win32.TrojanClicker
Win32.Trojandownloader.Zlob +43
Win32.TrojanProxy.Agent.dl
WinAD +15
WinFixer
WinPopup
VX2
The MD5 checksum for the defs.ref file is:
7de537cd57bd910ee9d1781721064d65

Advanced users *may* manually update using the below file.
http://download.lavasoft.de.edgesuite.net/public/defs.zip 

Unzip - ensure that it is dated today!

Posted: May 22 2006, 10:19 AM by Randy Knobloch | with no comments
SpyBot Definition File Update 19.05.06

SpyBot Definition File Update 19.05.06
Updated Detections = 1.5 MB << Note to dial-up users!
Updated English Target Descriptions File = 71 KB.
Updated ~Beta Detections = 18 KB. ADVANCED USERS ONLY!
Highlights of the new/added detections:
Dialer
++ TIBS + Baciami + CoolWWWSearch.Feat2Installer + CoolWWWSearch.Service + CoolWWWSearch.Feat2DLL
Malware
+ Vcodec.eMedia ++ MITBand ++ SpywareSheriff
Trojan
++ FServices + Kazaa.Irc.DarkIrc11.LiteStalky (7) ++ Win32.Dialer.jw ++ Win32.Lmir.atp + SpyBanker ++ SpywareScraper ++ Small.AID ++ Medbot ++ SpywareSheriff.FakeAlert
Total: 322104 fingerprints in 40909 rules for 1946 products.

 

NOTE: Choose the download mirror site closest to you!
If you receive error messages such as "bad checksum" it is due to heavy server traffic. Wait until later or tomorrow to avoid disappointment.

Don't forget to re-immunize SpyBot once the new definitions are applied!

A brief explanation of the differences in Immunzation between Windows XP and Windows 9x.
http://forums.spybot.info/showthread.php?t=1988

SpyBot Updates History -
http://www.spybotupdates.com/index.php?page=updatehistory

Installation of the IE-SpyAd list may disable some protections in SpyBot
and SpywareBlaster. Please check them and re-enable protections!

 

Posted: May 19 2006, 08:34 AM by Randy Knobloch | with no comments
MS Anti-Spyware Beta1 Definitions "5855" are available.

MS Anti-Spyware Beta1 Definitions "5855" are available.

Not to be confused with Windows Defender


For those of you still running MS Anti-Spyware Beta1 - please update via the application.

user posted image

Posted: May 18 2006, 10:04 PM by Randy Knobloch | with no comments |
Ad-aware Definition File Update [SE1R108] 17.05.06

Ad-aware Definition File Update [SE1R108] 17.05.06

Please use the web update feature within the application to obtain this latest definition file.


New Definitions:
========================
Adware.Adhelper +20
Backdoor.HackDefender +2
SpywareSheriff +4

Updated Definitions:
========================
180Solutions +16
AB System Spy +3
ActivShopper +3
AdBlaster +6
Ad-Popper
Adware.Admess +2
Adware.Alibaba
Adware.DollarRevenue
Adware.Look2Me +13
Adware.P2PNetworking
Adware.Yazzle
AdwareSheriff +3
Alexa +4
BargainBuddy +3
ClickSpring
CnsMin
DailyToolbar
Dialer
Ezula +20
I-LookUp
Lop +53
Malware.Azesearch
Malware.SpyGuard
Netword Agent +5
PurityScan
SahAgent
SpyFalcon
SpyFighter +2
Spyware.E2Give +7
SpywareNo +3
SpywareQuake
Starware Toolbar
Win32.Trojan.Agent
Win32.Trojan.ComputerHijacker +2
Win32.Trojan.Delf +3
Win32.Trojan.Downloader +22
Win32.Trojan.KillAV
Win32.TrojanClicker +3
Win32.TrojanDownloader.Delf +2
Win32.TrojanDownloader.Swizzor.bo +2
Win32.Trojandownloader.Zlob
Win32.TrojanProxy.Agent.dl
Win32.TrojanProxy.Small +2
WinFavorites +3
Winfixer
Virtumonde +30
VX2
Zango +7
The MD5 checksum for the defs.ref file is:
3e93f6c10f8e8f515338dd7bbe42f07a

Advanced users *may* manually update using the below file.
Note: Unzip - ensure that it is dated today.
http://download.lavasoft.de.edgesuite.net/public/defs.zip

 

Posted: May 17 2006, 09:45 AM by Randy Knobloch | with no comments
SpyBot Definition File Update 12.05.06

SpyBot Definition File Update 12.05.06
Update Definitions = 1.5 MB << Note to dial-up users!
Updated English Target Descriptions File = 67 KB.
Updated ~Beta Detections = 7 KB. ADVANCED USERS ONLY.
Highlights of the new/added detections:
Hijacker
+ VirtualMaid + CoolWWWSearch.Feat2Installer + CoolWWWSearch.Service + CoolWWWSearch.Feat2DLL
Keylogger
+ Win32.ActiveKeyLogger
Malware
+ WareOut + SpyContra + SpyGuard + SpyFalcon + Smitfraud-C.
Trojan
+ SafetyDefender + Tvdpay.Hupigon.CJ + Adclicker + SpywareQuake
+ SpywareQuake.FakeAlert
Total: 320739 fingerprints in 40583 rules for 1943 products.


NOTE: Choose the download mirror site closest to you!
If you receive error messages such as "bad checksum" it is due to heavy server traffic. Wait until later or tomorrow to avoid disappointment.

Don't forget to re-immunize SpyBot once the new definitions are applied!

A brief explanation of the differences in Immunzation between Windows XP and Windows 9x.
http://forums.spybot.info/showthread.php?t=1988

SpyBot Updates History -
http://www.spybotupdates.com/index.php?page=updatehistory

Installation of the IE-SpyAd list may disable some protections in SpyBot
and SpywareBlaster. Please check them and re-enable protections!

Posted: May 12 2006, 12:05 PM by Randy Knobloch | with no comments
Microsoft Anti-Spyware Beta1 Defs. "5849"

For those of you that may not have upgraded or used Windows Defender, Microsoft's Anti-Spyware Beta1 continues to be supported until (hopefully) the end of July, 2006.

I am told the core code of Windows Defender far surpases that of the Beta1 - yet the Beta1 build does an admirable job of scanning for Spyware and other threats in a real-time environment.

That said, for those of you still running the Beta1 build may update via the application in order to obtain the latest definition files.

No downloads for the Beta1 exist, any longer - please do not contact me to request such, thanks.

 

 

Posted: May 11 2006, 10:21 PM by Randy Knobloch | with no comments
MVPS HOSTS File Update [05-10-06]
MVPS HOSTS File Update [05-10-06]

Blocking Unwanted Parasites with a Hosts File

http://www.mvps.org/winhelp2002/hosts.htm
http://www.mvps.org/winhelp2002/hosts.zip (109 kb)
http://www.mvps.org/winhelp2002/hosts.txt (441 kb)
Note: the "text" version makes a good reference for determining possible
culprits

How To: Download and Extract the HOSTS file
http://www.mvps.org/winhelp2002/hosts2.htm

HOSTS File - Frequently Asked Questions
http://www.mvps.org/winhelp2002/hostsfaq.htm

Sign up for HOSTS file update notices
http://www.mvps.org/winhelp2002/hosts.htm#contribute
Posted: May 10 2006, 08:10 AM by Randy Knobloch | with no comments
Spyware Blaster Update 09.05.06

Spyware Blaster Update 09.05.06

6294 Total Items in the database = 629 new IE Restricted Sites.

Please use the: Web Update feature within SpywareBlaster to obtain the latest definitions.

Posted: May 09 2006, 11:34 PM by Randy Knobloch | with no comments
Ad-aware Definition File Update [SE1R107] 09.05.06

Ad-aware Definition File Update [SE1R107] 09.05.06
Please use the web update feature in Ad-aware to obtain this latest definition file update.
New Definitions:
========================
Adware.Advertisemen
AdwarePunisher
AntiVirusPro
SpyContra
SpywareXP
Win32.Trojan.ComputerHijacker +14
Win32.Win9x.CIH.ref +4

Updated Definitions:
========================
7adpower +2
Abox +2
Adware.DollarRevenue +21
Adware.DuDu
Adware.Henbang
Adware.HuaCiSou
Adware.Look2Me
Adware.Yazzle
Adware.ZenoSearch +3
ClickSpring
CmdServices
CnsMin +7
Dialer +2
ErrorSafe +4
IEHijacker.Hotoffers
iSearch Toolbar
Win32.Backdoor.Agent +4
Win32.Backdoor.RBot
Win32.Dialer.Trojan
Win32.Generic.PWS
Win32.Trojan.Agent
Win32.Trojan.Delf.ref +2
Win32.Trojan.DesktopHijack
Win32.Trojan.Dialer.ay
Win32.Trojan.Downloader +20
Win32.Trojan.Hexdoor +3
Win32.Trojan.LowZones
Win32.Trojan.Mirc +2
Win32.Trojan.SDBot +7
Win32.Trojan.Spambot +7
Win32.Trojan.StartPage
Win32.TrojanClicker +7
Win32.TrojanDownloader.Small
Win32.TrojanDownloader.Swizzor.br
Win32.TrojanDownloader.Zlob
Win32.TrojanProxy.Small.ref
Win32.TrojanSpy.Banker
Virtumonde
The MD5 checksum for the defs.ref file is:
991a66c2f13173995673147bed80eb37

Advanced Users *may* manually update using the below file:
http://download.lavasoft.de.edgesuite.net/public/defs.zip
Unzip, ensure it is dated today - before use.

Posted: May 09 2006, 08:06 PM by Randy Knobloch | with no comments
SpyBot Definition File Update 05.05.06

SpyBot Definition File Update 05.05.06
Updated Definitions = 1.5 MB << Note to Dial-up users.
Updated English Target Descriptions = 66 KB.
Updated ~Beta Detections = 4 KB. ADVANCED USERS ONLY
Highlights of the new/added detections: 
Dialer
++ MainPean
Hijacker
+ CoolWWWSearch.HomeSearch + Dynamic Desktop Media + Teslaplus.com + CoolWWWSearch.Feat2Installer
+ CoolWWWSearch.Service + CoolWWWSearch.Feat2DLL
Malware
+ SpywareNo + Vcodec + SmitFraud-C. ++ SpywareSoftStop
Spyware
+ GAIN.Gator + Cydoor
Trojan
++ Win32.Small.amd ++ Win32.Small.cjy ++ Win32.VB.xj
Total: 319618fingerprints in 40397 rules for 1938 products.

NOTE: Choose the download mirror site closest to you!
If you receive error messages such as "bad checksum" it is due to heavy server traffic. Wait until later or tomorrow to avoid disappointment.

Don't forget to re-immunize SpyBot once the new definitions are applied!

A brief explanation of the differences in Immunzation between Windows XP and Windows 9x.
http://forums.spybot.info/showthread.php?t=1988

SpyBot Updates History -
http://www.spybotupdates.com/index.php?page=updatehistory

Posted: May 05 2006, 01:06 PM by Randy Knobloch | with no comments
SpyBot Definition File Update 02.05.06

SpyBot Definition File Update 02.05.06
Updated Detections = 1.5 MB << Note to dial-up users!
Updated English Target Descriptions File = 65 KB.
Updated ~Beta Detectetions = 3 KB. ADVANCED USERS ONLY.
Highlights of the new/added detections: 
Hijacker
+ CoolWWWSearch.Feat2Installer + CoolWWWSearch.Service
+ CoolWWWSearch.Feat2DLL
Malware
+ Vcodec.eMedia + SpyAxe + SpywareStrike + AdwareBazooka
+ SpyContra
Trojan
+ SpywareQuake + Pimasoft.Spy Sniper + Win32.Small.ama + Win32.Horst.o + Win32.Agent.io + Win32.PdPinch.ce + Win32.Small.dp + Win32.Small.hi + Win32.KillAV.hd + Win32.Agent.air
Total: 318114 fingerprints in 39944 rules for 1924 products.

 

 

NOTE: Choose the download mirror site closest to you!
If you receive error messages such as "bad checksum" it is due to heavy server traffic. Wait until later or tomorrow to avoid disappointment.


Don't forget to re-immunize SpyBot once the new definitions are applied!

A brief explanation of the differences in Immunzation between Windows XP and Windows 9x.
http://forums.spybot.info/showthread.php?t=1988
SpyBot Updates History -
http://www.spybotupdates.com/index.php?page=updatehistory

Posted: May 02 2006, 02:22 PM by Randy Knobloch | with no comments
Ad-aware Definition File Update [SE1R106] 02.05.06

Ad-aware Definition File Update [SE1R106] 02.05.06
Please use the web update feature with the application to obtain the latest definition file.
New Definitions:
========================
Adware.KeenValue

Updated Definitions:
========================
AdwareSheriff
BestPhrases
CnsMin
CoolWebSearch
Dialer +5
DyFuCA
GetMirar
ImIServer IEPlugin
istbar
Malware.SpyGuard +2
MalwareWipe
NavExcel +5
PurityScan
SpyFerret
SpyFighter
SpywareQuake +3
StarInstall(MainPean)
Surfaccuracy
Win32.Generic.PWS +9
Win32.Harnig.Trojan +2
Win32.Trojan.Agent +3
win32.Trojan.Dnschanger
Win32.Trojan.Downloader +15
Win32.Trojan.Gamania
Win32.Trojan.Mirc +2
Win32.Trojan.StartPage
Win32.TrojanClicker +2
Win32.TrojanDownloader.VB
Win32.Trojandownloader.Zlob +4
Win32.TrojanProxy.Small +2
Win32.Trojan-PSW.Lineage +2
Win32.TrojanSpy.Banker +2
Virtumonde +4
YourSiteBar
The MD5 checksum for the defs.ref file is:
d76e7e75fc2c5ba3db8ba2b740a46d4b

Advanced users *may* wish to manually update using the below file:
http://download.lavasoft.de.edgesuite.net/public/defs.zip
Unzip - ensure it is dated today.

Posted: May 02 2006, 02:18 PM by Randy Knobloch | with no comments