Recent Posts

Tags

News

  • Please do not request support via email, they will not be replied - however, comments are appreciated. Thank you for your cooperation. ________________________

Community

Email Notifications

I Like Links

Archives

Siljaline's Blog

Siljaline's IE & Security Blog

March 2007 - Posts

SpyBot Definition File Update 28.03.07
Please use the web update feature to obtain these latest definition files.
NOTE: THE ~BETA DEFINITIONS ARE FOR ADVANCED USERS ONLY!
Highlights of the currently available download:

Highlights of the new/added detections:
Quote:

Keylogger
+ ActualSpy + IMSurfSentinel + Win32.ActiveKeyLogger
Malware
+ Forbot + Smitfraud-C. + SpyHeal + SpyHunter + SpyDawn
+ Win32.Banload.bsr
PUPS
+ SpyCQ
Security
+ Microsoft.Windows.Security.FirewallOpenPorts
Spyware
+ WebExplorer + WinSpy.SpySoftWareX + FreeKeylogger
+ EasyKeylogger
Trojan
+ Banload + Nurech + Win32.Bagle.E + Win32.LowZones + Win32.Rbot
+ Win32.Bagle.av ++ Win32.Bagle.hl + Zlob.SiteTicket
+ Zlob.AdultAccess + Zlob.VideoAccessActiveXObject + Zlob.VideoAccess + Banker.PorSMTP + Banker.PorSVC + Winsoftware.WinAntiVirusPro2007 + Win32.RAdmin
Total: 370983 fingerprints in 64108 rules for 2774 products.


NOTE: Choose the download mirror site closest to you!
If you receive error messages such as "bad checksum" it is due to heavy server traffic. Wait until later or tomorrow to avoid disappointment.

Don't forget to re-immunize SpyBot once the new definitions are applied!

Continue Immunizing until you see this screen:


A brief explanation of the differences in Immunzation between Windows XP and Windows 9x.
http://forums.spybot.info/showthread.php?t=1988

SpyBot Updates History -
http://spybot.info/en/updatehistory/index.html
http://forums.spybot.info/forumdisplay.php?f=2
Posted: Mar 28 2007, 09:13 PM by Randy Knobloch | with no comments
Filed under: , ,
Spyware Blaster Update 26.03.07
7363 Total Items in the database on an XP Pro SP2 Box.
Please use the web update feature in: Spyware Blaster to obtain these latest definition files.

Enable ALL new protections via the prompted hyperlink in the screenshot.

Posted: Mar 26 2007, 09:18 PM by Randy Knobloch | with no comments
Filed under: , ,
Ad-aware Definition File Update [SE1R163] 26.03.07
Please use the web update feature to obtain this latest definition file.

Quote:

New definitions:
====================
Win32.Trojan.ExitWin
Win32.TrojanDownloader.Cryptic +6

Updated definitions:
====================
Adware.Adhelper +3
Adware.Allsum
Adware.BHO(generic) +6
Adware.IEHlpr +3
Adware.LinkOptimizer
Adware.NewWeb +7
Adware.Roogoo +4
Adware.WSearch +2
Adware.Yazzle +2
Dialer +4
EliteKeylogger
EzuLa +2
Lop
PurityScan +3
Virtumonde +9
W32.Trojan.Horst +5
Win32.Backdoor.Agent +10
Win32.Backdoor.Bifrose +3
Win32.Backdoor.CiaDoor
Win32.Backdoor.Hupigon +11
Win32.Backdoor.IRCBot +2
Win32.Backdoor.PcClient
Win32.Backdoor.Poebot
Win32.Backdoor.RBot +5
Win32.Backdoor.SDBot +6
Win32.Backdoor.VanBot
Win32.Bagle.B +2
Win32.Generic.PWS +6
Win32.Generic.Worm +4
Win32.Spybot.worm +3
Win32.Trojan.Agent +8
Win32.Trojan.Delf +2
Win32.Trojan.Downloader +5
Win32.Trojan.Keylogger
Win32.Trojan.Kolweb +3
Win32.Trojan.PWS.Magania +4
Win32.Trojan.Small +2
Win32.Trojan.Spy +2
Win32.Trojan.StartPage +8
Win32.TrojanDownloader.Agent +10
Win32.TrojanDownloader.Banload +16
Win32.TrojanDownloader.ConHook
Win32.TrojanDownloader.Delf +2
Win32.TrojanDownloader.Nurech +2
Win32.TrojanDownloader.Obfuscated +2
Win32.TrojanDownloader.Small +8
Win32.TrojanDownloader.Tibs
Win32.TrojanDownloader.VB +3
Win32.Trojandownloader.Zlob +7
Win32.TrojanDropper
Win32.TrojanProxy.Agent.dl +6
Win32.Trojan-PSW.Lineage +27
Win32.Trojan-PSW.Sinowal +2
Win32.TrojanPWS.LdPinch +11
Win32.TrojanPWS.Lmir +10
Win32.TrojanPWS.OnlineGames +34
Win32.TrojanPWS.QQPass +31
Win32.TrojanPWS.WOW +4
Win32.TrojanSpy.Banker +2
Win32.TrojanSpy.BZub +11
Win32.TrojanSpy.Goldun +3
Win32.Worm.Viking +20
Win32.Worm.Warezov +18
Win32.Worm.Zhelatin +20
The MD5 checksum is:c26701352ad950c87616a26b0533b709

Advanced users *may* wish to manually update using the below file.
http://download.lavasoft.com/public/defs.zip
Posted: Mar 26 2007, 08:44 AM by Randy Knobloch | with no comments
Filed under: , ,
Ad-aware Definition File Update [SE1R162] 21.03.07
Please use the web update feature to obtain this latest definition file.

Quote:

New definitions:
====================
AntiSpyZone +2
PrivacyProtector +3
SpyAway +3
SpyLocked +2

Updated definitions:
====================
DriveCleaner +5
WinAntispyware
WinAntiVirusPro +16
VirusRescue +2
The MD5 checksum is:37e537cb72f8ccf35a469ff0a1c7bad8

Advanced users *may* wish to manually update using the below file:
http://download.lavasoft.com/public/defs.zip
Posted: Mar 21 2007, 05:17 PM by Randy Knobloch | with no comments
Filed under: , , ,
MVPS HOSTS Update [03-19-07]
Blocking Unwanted Parasites with a Hosts File

http://www.mvps.org/winhelp2002/hosts.htm
http://www.mvps.org/winhelp2002/hosts.zip (134 kb)
http://www.mvps.org/winhelp2002/hosts.txt (556 kb)
Note: the "text" version makes a good reference for determining possible
culprits

How To: Download and Extract the HOSTS file
http://www.mvps.org/winhelp2002/hosts2.htm

HOSTS File - Frequently Asked Questions
http://www.mvps.org/winhelp2002/hostsfaq.htm

Sign up for HOSTS file update notices
http://www.mvps.org/winhelp2002/hosts.htm#contribute

Visit the Hosts News blog
http://msmvps.com/blogs/hostsnews/default.aspx
Posted: Mar 19 2007, 12:58 PM by Randy Knobloch | with no comments
Filed under: , ,
Ad-aware Definition File Update [SE1R161] 19.03.07
Please use the web update feature to obtain this latest definition file.

Quote:

New definitions:
====================
CurePcSolutions +2
Win32.Trojan.PSW.Magania +12

Updated definitions:
====================
Adware.Agent +2
Adware.BHO(generic) +4
Dialer +2
FakeAlert
PurityScan
Softomate Toolbar +4
Win32.Backdoor.Agent +5
Win32.Backdoor.Bifrose +3
Win32.Backdoor.Hupigon
Win32.Backdoor.IRCBot +2
Win32.Backdoor.Padodor
Win32.Backdoor.Poebot +2
Win32.Backdoor.Ranky
Win32.Backdoor.RBot +6
Win32.Backdoor.SDBot +11
Win32.Backdoor.VanBot +3
Win32.Backdoor.VB +10
Win32.Generic.PWS +11
Win32.Generic.Worm
Win32.Trojan.Agent +4
Win32.Trojan.Downloader +9
Win32.Trojan.Keylogger
Win32.Trojan.Klone
Win32.Trojan.MatrixHasYou +14
Win32.Trojan.Small +2
Win32.Trojan.Spy +2
Win32.TrojanClicker +10
Win32.TrojanDownloader.Agent +13
Win32.TrojanDownloader.Banload +7
Win32.TrojanDownloader.Small +5
Win32.TrojanDownloader.Tibs
Win32.TrojanDownloader.VB
Win32.TrojanDropper
Win32.TrojanProxy.Agent.dl +3
Win32.Trojan-PSW.Lineage +25
Win32.TrojanPWS.LdPinch +6
Win32.TrojanPWS.Lmir
Win32.TrojanPWS.OnlineGames +27
Win32.TrojanPWS.QQPass +10
Win32.TrojanPWS.WOW +3
Win32.TrojanSpy.Bancos
Win32.TrojanSpy.Banker +9
Win32.TrojanSpy.BZub +6
Win32.TrojanSpy.Small +2
Win32.Worm.MSNMaker
Win32.Worm.Warezov +3
Win32.Worm.Zhelatin +7
The MD5 checksum is:f02d163a139a878180c9f2c30c539cca

Advanced users *may* wish to manually update using the below file.
http://download.lavasoft.com/public/defs.zip
Posted: Mar 19 2007, 12:54 PM by Randy Knobloch | with no comments
Filed under: , , ,
SpyBot Definition File Update 14.03.07
SpyBot Definition File Update 14.03.07
Please use the web update feature to obtain these latest definition files.
NOTE: THE ~BETA DEFINITIONS ARE FOR ADVANCED USERS ONLY!
Highlights of the currently available download:

Highlights of the new/added detections:
Quote:

Adware
++ WhenU.DAEMONTools.SearchBar
Dialer
++ ClickYesToEnter
Keylogger
++ KeyExplorer
Malware
++ GraceCasino ++ PPCHook + ScanSpyware + Smitfraud-C.
+ SpywareBot ++ Win32.Agent.pz ++ Win32.Renos
PUPS
++ CasinoRoyal.PT
Trojan
++ Ardamax.GWKeygen ++ Banker.FAT ++ Cactus.D (3) + FakeBill
++ Nurech (2) ++ Nurech.TServer ++ ServU.H (3) ++ Win32.Agent.bca ++ Win32.Agent.mu + Win32.BHO.gen + Win32.Rbot
++ Win32.Virtumonde.ha + Windows AdTools ++ Wootbot.gen
++ Zlob.AdultAccess ++ Zlob.DNSChanger ++ Zlob.ImageActiveXObject ++ Zlob.PrivateVideo + Zlob.SiteTicket + Zlob.VideoAccessActiveXObject
Total: 367531 fingerprints in 63233 rules for 2745 products.

NOTE: Choose the download mirror site closest to you!
If you receive error messages such as "bad checksum" it is due to heavy server traffic. Wait until later or tomorrow to avoid disappointment.

Don't forget to re-immunize SpyBot once the new definitions are applied!

Continue Immunizing until you see this screen:


A brief explanation of the differences in Immunzation between Windows XP and Windows 9x.
http://forums.spybot.info/showthread.php?t=1988

SpyBot Updates History -
http://spybot.info/en/updatehistory/index.html
http://forums.spybot.info/forumdisplay.php?f=2
Posted: Mar 14 2007, 04:04 PM by Randy Knobloch | with no comments
Filed under: , , ,
Ad-aware Definition File Update [SE1R160] 14.03.07
Ad-aware Definition File Update [SE1R160] 14.03.07
Please use the web update feature to obtain this latest definition file.

Quote:

New definitions:
====================
NONE

Updated definitions:
====================
AntiVermins +2
Win32.Trojandownloader.Zlob +1798
The MD5 checksum is:13ba4004609565cc6bdd910dfd6aeae0

Advanced users *may* wish to manually update using the below file.
http://download.lavasoft.com/public/defs.zip
Posted: Mar 14 2007, 04:02 PM by Randy Knobloch | with no comments
Filed under: , , ,
Ad-aware Definition File Update [SE1R159] 13.03.07
Ad-aware Definition File Update [SE1R159] 13.03.07
Please use the web update feature to obtain this latest definition file.

Quote:

New definitions:
====================
NONE

Updated definitions:
====================
Tracking Cookies +25
Win32.Worm.Zhelatin +11
Virtumonde +9
MD5 checksum is:65d72ce6da9b77462adc88c43904eccd

Advanced users *may* wish to manually update using the below file:
http://download.lavasoft.com/public/defs.zip
Posted: Mar 13 2007, 12:05 PM by Randy Knobloch | with no comments
Filed under: , , ,
Spyware Blaster Update 08.03.07
7302 Total Items in the Database = 43 New.
Please use the web update feature in Spyware Blaster to obtain these latest definition files.

Enable ALL new protections via the prompted hyperlink in the screenshot.
Posted: Mar 08 2007, 12:36 PM by Randy Knobloch | with no comments
Filed under: , ,
SpyBot Definition File Update 07.03.07
Please use the web update feature to obtain these latest definition files.
NOTE: THE ~BETA DEFINITIONS ARE FOR ADVANCED USERS ONLY!
Highlights of the currently available download:

Highlights of the new/added detections:
Quote:

Dialer
++ EngergyFactor0190
Keylogger
++ ActivityKeylogger + ActMon-Pro ++ Actual Keylogger
++ FamilyKeyloggerProDemo + Perfect Keylogger
Malware
+ Forbot + Smitfraud-C. (3) ++ SpyDawn ++ Win32.Delf.cc
++ Win32.Hupigon.edt
PUPS
+ CyberDefender
Spyware
+ 007 Spy Software ++ Marketscore.RelevantKnowledge (3)
Trojan
++ Absolutee.Launcher ++ Colorado.ClipboardAdmin
++ CtyBank.Sound + Dropper.Mondo + Fake.IKEA-Bill + FakeWGA
++ HPT.RSV ++ KBui32.SMTP (5) ++ NetSky.Q (2) ++ Realsearch.Forte + Sallity.Badcro ++ SearchNineX + Smitfraud-C.EbayBill
++ Win32.Delf.zq + Win32.Rbot ++ Win32.VB.po
++ Win32.Zhelatin.ah (2) + Zlob.SiteTicket
+ Zlob.VideoAccessActiveXObject
+ Zlob.VideoKeyCodec
Worm
++ NetSky.R
Total: 365619 fingerprints in: 62368 rules for 2733 products.

NOTE: Choose the download mirror site closest to you!
If you receive error messages such as "bad checksum" it is due to heavy server traffic. Wait until later or tomorrow to avoid disappointment.
Don't forget to re-immunize SpyBot once the new definitions are applied!
Continue Immunizing until you see this screen:

A brief explanation of the differences in Immunzation between Windows XP and Windows 9x.
http://forums.spybot.info/showthread.php?t=1988

SpyBot Updates History -
http://spybot.info/en/updatehistory/index.html
http://forums.spybot.info/forumdisplay.php?f=2
Posted: Mar 08 2007, 12:35 PM by Randy Knobloch | with no comments
Filed under: , , ,
MVPS HOSTS Update [03-03-07]
Blocking Unwanted Parasites with a Hosts File

http://www.mvps.org/winhelp2002/hosts.htm
http://www.mvps.org/winhelp2002/hosts.zip (134 kb)
http://www.mvps.org/winhelp2002/hosts.txt (555 kb)
Note: the "text" version makes a good reference for determining possible
culprits

How To: Download and Extract the HOSTS file
http://www.mvps.org/winhelp2002/hosts2.htm

HOSTS File - Frequently Asked Questions
http://www.mvps.org/winhelp2002/hostsfaq.htm

Sign up for HOSTS file update notices
http://www.mvps.org/winhelp2002/hosts.htm#contribute

Visit the Hosts News blog
http://msmvps.com/blogs/hostsnews/default.aspx
Posted: Mar 03 2007, 03:50 PM by Randy Knobloch | with no comments
Filed under: , , ,
SpyBot Definition File Update 28.02.07
Please use the web update feature to obtain these latest definition files.
NOTE: THE ~BETA DEFINITIONS ARE FOR ADVANCED USERS ONLY!
Highlights of the currently available download:

Highlights of the new/added detections:
Quote:

Adware
+ Zango
Hijacker
+ CoolWWWSearch.SmartSearch
Keylogger
+ Perfect Keylogger (2) ++ Win32.KeyLogger.fl
Malware
+ DeepDive (2) ++ Left.Mask ++ Locksky.NAG
++ MacroVirus + Mirar ++ Morphine.HDR ++ MyCPMAds
+ Redbind ++ RegSweep
+ SearchEnhancer ++ Sera + Smitfraud-C.Toolbar888
++ Softomate.DeskbarAlert + SpyHeal ++ Win32.Kapucen.b
PUPS
+ AntiverminsPro + MalwareWipe + MyWay.MyWebSearch + NewDotNet
Trojan
+ Banload + BraveSentry ++ CWS.Crypt ++ Dropper.Mondo
++ IRCBot-TK ++ PWS.Small.bs ++ Nurech (3) + SearchClickAds
+ SearchToolbarCorp.ToolbarVision + Smitfraud-C. (4) + Swizzor
++ Toolster.MSCheck + War3z + Win32.Bancos.zm ++ Win32.VB.lh
+ Zlob.VideoActiveXObject (2)
Total: 363578 fingerprints in 61894 rules for 2705 products.


NOTE: Choose the download mirror site closest to you!
If you receive error messages such as "bad checksum" it is due to heavy server traffic. Wait until later or tomorrow to avoid disappointment.

Don't forget to re-immunize SpyBot once the new definitions are applied!

Continue Immunizing until you see this screen:


A brief explanation of the differences in Immunzation between Windows XP and Windows 9x.
http://forums.spybot.info/showthread.php?t=1988

SpyBot Updates History -
http://spybot.info/en/updatehistory/index.html
http://forums.spybot.info/forumdisplay.php?f=2
Posted: Mar 03 2007, 03:49 PM by Randy Knobloch | with no comments
Filed under: , , ,