NOD32 - v.1.1351 (20060103) - 505 threats with variants...

Discussion in 'NOD32 version 2 Forum' started by webyourbusiness, Jan 3, 2006.

Thread Status:
Not open for further replies.
  1. webyourbusiness

    webyourbusiness Registered Member

    Joined:
    Nov 16, 2004
    Posts:
    2,640
    Location:
    Throughout the USA and Canada
    wow Eset! I'm guessing that someone worked the whole holiday season or something - the v.1.1351 update just released has a whopping 505 different named threats, plus variants (multiple variants of the same named threat) - for even better protection!!! YAY!!!

    ASP/Ace.F, ASP/Ace.G, ASP/Ace.R (3), ASP/Ace.T, ASP/Ace.V, ASP/Ace.W, ASP/Aspid.B, ASP/Evspy.A, ASP/Grasp.10, BAT/301, BAT/AntiAVsoft.G, BAT/AntiAVsoft.H, BAT/Backdarter.A, BAT/Bomgen.AF, BAT/BTG.A, BAT/BWG.M, BAT/Cloner.H, BAT/Cold.A, BAT/Copy2System.C, BAT/Copybat.AF, BAT/DelSys.G, BAT/Delwin.CD, BAT/FormatC.AQ, BAT/Frodom, BAT/Gordbot.A, BAT/KillAV.AG, BAT/KillAV.H (4), BAT/KillFiles.DA, BAT/KillFiles.DH, BAT/MircBat.B, BAT/MkDirs.T, BAT/MWF.A, BAT/Nika.479, BAT/Nika.479.Dropper, BAT/NoShare.AU, BAT/Passer.AZ, BAT/Passer.BI, BAT/Passer.BS (4), BAT/Passer.R, BAT/Paula.A, BAT/Rupture.A, BAT/ShareC.B, BAT/Shutdown.B, BAT/Winuck.B, Delarm.B, DiskEraser, HTML/Bazoo.A, HTML/CrashIE.B, HTML/Exploit.CodeBaseExec (2), HTML/Exploit.CrashBrowser.A, HTML/Exploit.FFox.A, HTML/Exploit.IEPageSpoof.A, HTML/Exploit.IFrameBoF (:cool:, HTML/Exploit.InjScript, HTML/Exploit.Mht (11), HTML/Exploit.Mht (90), HTML/Exploit.ObjCode (3), HTML/Small.C, HTML/Spy.Pcard.J, HTML/Suntrust.BJ, HTML/TrojanClick er.IFrame.A (4), HTML/TrojanDownloader.ACG, HTML/TrojanDownloader.Downloader.D, HTML/TrojanDownloader.Downloader.F, IRC/Bigli.A, IRC/Cloner.110, IRC/Cloner.AD, IRC/Cloner.O, IRC/Digarix.A, IRC/FDoS.AutoBot (2), IRC/Firhel.A, IRC/Flood.AS (2), IRC/Flood.AX, IRC/Flood.CG, IRC/Kanallar.F (2), IRC/Kanallar.G (3), IRC/Kanallar.H (3), IRC/Kelebek.AA, IRC/Kelebek.AF, IRC/Kelebek.G, IRC/Kelebek.K (2), IRC/Kelebek.M, IRC/Kelebek.X (4), IRC/Mushashi, IRC/Small.D, IRC/SpyAgent.A, IRC/SubSeven, IRC/Tagort.15 (4), IRC/Tearing, IRC/Zcrew (2), Java/Beyond.D, Java/Beyond.G, Java/ClassLoader.K, Java/Exploit.Bytverify (2), Java/Nastybrew.B (7), Java/Nocheat, Java/OpenConnection.K, Java/OpenStream.C, Java/OpenStream.V, Java/TrojanDownloader.OpenConnection.Y, JS/DeltreeY.F, JS/Exploit.FFox.A, JS/Exploit.Formpaste, JS/Exploit.IFrame.H (2), JS/Exploit.Injscript.A, JS/Exploit.Mht.AA, JS/Exploit.Mht.AB, JS/Exploit.Mht.AF (2), JS/Exploit.Mht.AK, JS/Exploit.Mht.AL, JS/Exploit.Mht.AM (2), JS/Exploit.M ht.Z, JS/Exploit.ObjCode.B, JS/Exploit.ObjCode.G (2), JS/Exploit.ObjCode.H, JS/Exploit.ObjCode.I, JS/Fav.C, JS/Fox.A, JS/Loop.A, JS/NoClose.A, JS/NoClose.AF, JS/NoClose.R (3), JS/Pooter (3), JS/Seeker, JS/SillyDownloader.Y, JS/Spacehero.A, JS/StartPage.AB, JS/StartPage.Y, JS/TrojanClicker.Hidden.A, JS/TrojanClicker.Linker.C, JS/TrojanClicker.Linker.G, JS/TrojanClicker.Linker.H, JS/TrojanClicker.Pretty.A, JS/TrojanDownloader.3025, JS/TrojanDownloader.Cobase.B, JS/TrojanDownloader.Downloader.C, JS/TrojanDownloader.Petch.C, JS/TrojanDownloader.Psyme.AF, JS/TrojanDownloader.Psyme.AJ, JS/TrojanDownloader.Psyme.AL, JS/TrojanDownloader.Psyme.AM (2), JS/TrojanDownloader.Psyme.AS (2), JS/TrojanDownloader.Psyme.AU, JS/TrojanDownloader.Psyme.BB (2), JS/TrojanDownloader.Psyme.BE, JS/TrojanDownloader.Psyme.BF, JS/TrojanDownloader.Psyme.BH, JS/TrojanDownloader.Psyme.BM, JS/TrojanDownloader.Psyme.BQ, JS/TrojanDownloader.Psyme.BR, JS/TrojanDownloader.Psyme.L, JS/TrojanDownloader.Psyme.Y (2) , JS/TrojanDownloader.Riley.A (2), JS/TrojanDownloader.Small.AU, JS/TrojanDownloader.Small.AZ, JS/TrojanDownloader.Small.M, JS/TrojanDropper.MultiDropper.NI, JS/TrojanDropper.Primapoz, JS/TrojanDropper.Small.O, JS/WindowBomb.H, JS/WindowBomb.N, JS/Wonka, KillBoot.C, Kyjak, Linux/Adore.B, Linux/Exploit.Bind.A, Linux/Exploit.Freeciv.A, Linux/Exploit.Mcpws.A, Linux/Exploit.Ptrac, Linux/Exploit.Smtpd.A, Linux/Lion, Linux/Rootkit.Agent.A, Linux/Rootkit.I, Linux/Rootkit.Matrics.A, Linux/Rootkit.Matrics.SH (7), Linux/Small.B, Linux/Small.X, Mac/Autostart.A, Perl/Exploit.Maxdos.A, Perl/Exploit.PhpBB.E, Perl/Exploit.Webmin.A, Perl/Small.A, Perl/SSHWorm, Perl/Termapp.A, Perl/TtServ.B, PHP/Buzbot.A, PHP/Lanker.A, PHP/PhPen.C, PHP/Pokemon.A, PHP/Rst.A, PHP/Sf.A, Ray, REG/Bomgen.A, REG/Bomgen.B, REG/Bomgen.E, REG/Kelebek.A, REG/OnStart.A, REG/Sorpe.A, REG/Sorpe.B, REG/StartPage.B, REG/StartPage.E, REG/StartPage.R, REG/StartPage.S, REG/Toraja.A, REG/Wisis.C, Shater, Unix/Exploit-SSL, Unix /Exploit.Abyoos.A, Unix/Exploit.ArchLPT.A, Unix/Exploit.Cliph.A, Unix/Exploit.Local.E, Unix/Exploit.Ocean.A, Unix/Exploit.Sendmail.B, Unix/Exploit.TerminalSniffer.A, Unix/Zq.B (2), VBS/Bigli.A, VBS/Bumba.A, VBS/Crayons.A, VBS/DelFile.M, VBS/DelFile.T, VBS/DelWin.E, VBS/Dvar, VBS/Eskal.A, VBS/Format.A, VBS/Grez.E, VBS/Lamping, VBS/Lucky.A, VBS/Lucky2.D, VBS/Melhack.D (2), VBS/Pazuzu (2), VBS/Seeker.B (3), VBS/Seeker.D, VBS/Snix.A, VBS/StartPage.AG, VBS/Stuck.A, VBS/Swell.A, VBS/TrojanDownloader.Asank.A (2), VBS/TrojanDownloader.Phel.AA (2), VBS/TrojanDownloader.Phel.AD, VBS/TrojanDownloader.Phel.AE (2), VBS/TrojanDownloader.Phel.B, VBS/TrojanDownloader.Phel.D (3), VBS/TrojanDownloader.Phel.E (2), VBS/TrojanDownloader.Phel.G, VBS/TrojanDownloader.Phel.J, VBS/TrojanDownloader.Phel.L, VBS/TrojanDownloader.Phel.T (2), VBS/TrojanDownloader.Phel.X, VBS/TrojanDownloader.Phel.Y (2), VBS/TrojanDownloader.Phel.Z, VBS/TrojanDownloader.Psyme.AM, VBS/TrojanDownloader.Psyme.AS (2), VBS/Tro janDownloader.Psyme.BB (2), VBS/TrojanDownloader.Psyme.BC, VBS/TrojanDownloader.Psyme.BD (2), VBS/TrojanDownloader.Small.C, VBS/TrojanDownloader.Small.K, VBS/TrojanDownloader.Small.Q, VBS/TrojanDownloader.Small.R, VBS/TrojanDownloader.Wipup, VBS/TrojanDropper.Bomgen.C (2), VBS/TrojanDropper.Bomgen.D, VBS/TrojanDropper.Bomgen.H, VBS/TrojanDropper.Bomgen.I, VBS/TrojanDropper.Bomgen.J (3), VBS/TrojanDropper.Bomgen.L (2), VBS/TrojanDropper.Bomgen.Q, VBS/TrojanDropper.Bomgen.R, VBS/TrojanDropper.Bomgen.S, VBS/TrojanDropper.Bomgen.T, VBS/TrojanDropper.Bomgen.W, VBS/TrojanDropper.Bomgen.X, VBS/TrojanDropper.Inor.AM, VBS/TrojanDropper.Inor.BT, VBS/TrojanDropper.Inor.BU, VBS/TrojanDropper.Inor.BZ, VBS/TrojanDropper.Inor.CE, VBS/TrojanDropper.Inor.CM, VBS/TrojanDropper.Inor.CP, VBS/TrojanDropper.Inor.CS, VBS/TrojanDropper.Inor.CT, VBS/TrojanDropper.Inor.CZ, VBS/TrojanDropper.Inor.DC (3), VBS/TrojanDropper.Inor.DD, VBS/TrojanDropper.Zacged.A, VBS/WangWG.A, VBS/WangWG.B, Win32/Aditer, W in32/Adware.Mirar, Win32/Adware.Virtumonde.O (5), Win32/Adware.Webhancer.A, Win32/Agent.A, Win32/Agent.AF, Win32/Agent.B (3), Win32/Agent.D (2), Win32/Agent.E (3), Win32/Agent.E (9), Win32/Agent.EF (2), Win32/Agobot.AFD, Win32/Barjac, Win32/BAT.DelphiGen, Win32/Bauka.F (2), Win32/Bifrose, Win32/Bobax.NAG, Win32/Brontok.AV (2), Win32/Brontok.AW (2), Win32/Coldfusion.B, Win32/DarkMoon.BD, Win32/Death.27.E, Win32/Delf.AAQ, Win32/Delf.AF, Win32/Delf.AHV, Win32/Delf.AT (3), Win32/Delf.AU (4), Win32/Delf.AV (2), Win32/Delf.HR, Win32/Delf.IP (2), Win32/Delf.NP, Win32/Dialer.ALifeDialer (2), Win32/Dialer.IC, Win32/Dialer.NBV (2), Win32/DKangel.20, Win32/DNSChanger.I, Win32/Downloader.Agent, Win32/Dumador, Win32/Elpro, Win32/Flux.H, Win32/GrayBird.AC, Win32/HacDef.AU, Win32/HacDef.Y, Win32/HideProc.C, Win32/Hoax.SpyWare.A (2), Win32/Hupigon.OP, Win32/IRCBot.PR (2), Win32/Kazaar.A (6), Win32/Kextor.A, Win32/KillFiles.JA (2), Win32/Killqq, Win32/LowZones.BB, Win32/Memleak, Win32/Monike y.G (2), Win32/MoSucker.07, Win32/MoSucker.BD, Win32/Mytob.NY, Win32/NeoMailer.J, Win32/NetCrack.13.D, Win32/NikoMac, Win32/NinjaSpy.E, Win32/Opanki.BB, Win32/Opanki.BC (3), Win32/Outbreak.030, Win32/Pakes, Win32/PcClient (4), Win32/PcClient.DQ, Win32/PcClient.IT (4), Win32/PSW.Agent.CU, Win32/PSW.Aras, Win32/PSW.Capwin.G, Win32/PSW.Cyberdex, Win32/PSW.Delf.BF, Win32/PSW.Delf.CJ, Win32/PSW.Dinf, Win32/PSW.DUT (3), Win32/PSW.Gamet.D, Win32/PSW.Ges.22, Win32/PSW.GOPtrojan.B, Win32/PSW.Hangame.B, Win32/PSW.LdPinch.RG, Win32/PSW.Legendmir, Win32/PSW.Lineage.B, Win32/PSW.Lineage.PW, Win32/PSW.Lmir, Win32/PSW.Lmir.102, Win32/PSW.Lmir.ABK, Win32/PSW.Lmir.ACI, Win32/PSW.Lmir.AFE, Win32/PSW.Lmir.AFM, Win32/PSW.Lmir.AKG, Win32/PSW.Lmir.PV, Win32/PSW.Lmir.UJ, Win32/PSW.Lmir.WA, Win32/PSW.Lmir.YH, Win32/PSW.QQFile.C (2), Win32/PSW.QQPass.DP, Win32/PSW.QQSender.G, Win32/PSW.QQShou.T, Win32/PSW.QQShou.U, Win32/PSW.Ring0.D, Win32/Rbot (3), Win32/Rbot.10, Win32/RBot.AEU (2), Win32/Rbot.XE, Win32/RedBlood.21, Win32/Revenge.521, Win32/Robobot (7), Win32/Rootkit.Fuzen.A, Win32/Rootkit.K, Win32/Sabak.NAA, Win32/SdBot.05.AR, Win32/Shutdowner.F, Win32/Silentium.A, Win32/Siloth.A, Win32/Small.GA (2), Win32/Spy.Agent.DF, Win32/Spy.Agent.L, Win32/Spy.Bancos.FY, Win32/Spy.Bancos.JI, Win32/Spy.Banker.AAL, Win32/Spy.Banker.ADQ, Win32/Spy.Banker.AHK, Win32/Spy.Banker.YC, Win32/Spy.Delf.BP, Win32/Spy.Delf.EI, Win32/Spy.Delf.HF, Win32/Spy.KeyLogger.BX, Win32/Spy.KeyLogger.DG, Win32/Spy.KeyLogger.EF, Win32/Spy.Outside.12, Win32/Spy.RadKey.10, Win32/Spy.Sincom.BG, Win32/Spy.Sincom.BU, Win32/Spy.Tofger.CB, Win32/Spy.WinSpy.D, Win32/StartPage.ADH (4), Win32/StartPage.AFS (2), Win32/StartPage.NL, Win32/StartPage.VN, Win32/StartPage.XB, Win32/SubSeven.22.plugin, Win32/TDS.SE.31, Win32/Tetris.C, Win32/TrojanAOL.Win16.PS.LG, Win32/TrojanClicker.Agent.B, Win32/TrojanClicker.Agent.DO, Win32/TrojanClicker.BHO.A, Win32/TrojanClicker.Small.AB, Win32/TrojanClicker.Small.BH, Win32/TrojanClicker.Small.CN, Win32/TrojanClicker.Small.Y, Win32/TrojanDownloader.Agent, Win32/TrojanDownloader.Agent.BQ (4), Win32/TrojanDownloader.Agent.LL, Win32/TrojanDownloader.Agent.LQ, Win32/TrojanDownloader.Agent.PU, Win32/TrojanDownloader.Agent.VV, Win32/TrojanDownloader.Banload.FJ, Win32/TrojanDownloader.ConHook, Win32/TrojanDownloader.Dadobra.DK, Win32/TrojanDownloader.Dadobra.GF, Win32/TrojanDownloader.Dadobra.GJ, Win32/TrojanDownloader.Dadobra.JC, Win32/TrojanDownloader.Delf.AU, Win32/TrojanDownloader.Delf.MA, Win32/TrojanDownloader.Delf.YD, Win32/TrojanDownloader.Dluca (2), Win32/TrojanDownloader.Dyfuca.AD, Win32/TrojanDownloader.IstBar.BL, Win32/TrojanDownloader.IstBar.D, Win32/TrojanDownloader.Noesis.11.C, Win32/TrojanDownloader.NSIS.Agent.E, Win32/TrojanDownloader.Small.AFH, Win32/TrojanDownloader.Small.AIZ, Win32/TrojanDownloader.Small.AMN, Win32/TrojanDownloader.Small.AOD, Win32/TrojanDownloader.Small.APD, Win32/TrojanDownloader.Small.AWA (2), Win32/TrojanDownloader.Small.BFU, Win32/TrojanDownloader.Small.BIS, Win32/TrojanDownloader.Turown.E, Win32/TrojanDownloader.VB.BK, Win32/TrojanDownloader.VB.BZ, Win32/TrojanDownloader.VB.H, Win32/TrojanDownloader.VB.JE, Win32/TrojanDownloader.Wintrim.BS, Win32/TrojanDownloader.Zlob, Win32/TrojanDownloade r.Zlob.AP, Win32/TrojanDropper.Delf.KH, Win32/TrojanDropper.ErPack, Win32/TrojanDropper.Small.ABS, Win32/TrojanDropper.Small.AIY, Win32/TrojanDropper.Small.NCU, Win32/TrojanDropper.Small.NCY, Win32/TrojanDropper.Small.QI, Win32/TrojanDropper.Small.ZR, Win32/TrojanDropper.VB.FI, Win32/TrojanDropper.VB.HQ, Win32/TrojanDropper.Vidro.L, Win32/TrojanProxy.Agent.FT, Win32/TrojanProxy.Agent.NBA (2), Win32/TrojanProxy.Delf.A, Win32/TrojanProxy.Maral.A, Win32/TrojanProxy.Webber.H, Win32/TrojanProxy.Wopla, Win32/TrojanProxy.Wopla.N, Win32/TrojanProxy.Xorpix.D (2), Win32/VB.ABA, Win32/VB.GF (2), Win32/VB.NDQ, Win32/VB.NDW, Win32/VB.NDX, Win32/VB.NDY (2), Win32/VB.NDZ, Win32/WinCrash.12, Win32/Wow.23, Win32/Zapchast
     
  2. POS

    POS Guest

    nod32.ch shows only these:

    NOD32 - 1.1351 (20060103) / posted 23:26)
    Virus signature database updates:
    ASP/Ace.F, ASP/Ace.G, ASP/Ace.R (3), ASP/Ace.T, ASP/Ace.V, ASP/Ace.W, ASP/Aspid.B, ASP/Evspy.A, ASP/Grasp.10, BAT/301, BAT/AntiAVsoft.G, BAT/AntiAVsoft.H, BAT/Backdarter.A, BAT/Bomgen.AF, BAT/BTG.A, BAT/BWG.M, BAT/Cloner.H, BAT/Cold.A, BAT/Copy2System.C, BAT/Copybat.AF, BAT/DelSys.G, BAT/Delwin.CD, BAT/FormatC.AQ, BAT/Frodom, BAT/Gordbot.A, BAT/KillAV.AG, BAT/KillAV.H (4), BAT/KillFiles.DA, BAT/KillFiles.DH, BAT/MircBat.B, BAT/MkDirs.T, BAT/MWF.A, BAT/Nika.479, BAT/Nika.479.Dropper, BAT/NoShare.AU, BAT/Passer.AZ, BAT/Passer.BI, BAT/Passer.BS (4), BAT/Passer.R, BAT/Paula.A, BAT/Rupture.A, BAT/ShareC.B, BAT/Shutdown.B, BAT/Winuck.B, Delarm.B, DiskEraser, HTML/Bazoo.A, HTML/CrashIE.B, HTML/Exploit.CodeBaseExec (2), HTML/Exploit.CrashBrowser.A, HTML/Exploit.FFox.A, HTML/Exploit.IEPageSpoof.A, HTML/Exploit.IFrameBoF (:cool:, HTML/Exploit.InjScript, HTML/Exploit.Mht (11), HTML/Exploit.Mht (90), HTML/Exploit.ObjCode (3), HTML/Small.C, HTML/Spy.Pcard.J, HTML/Suntrust.BJ, HTML/TrojanClick
     
  3. webyourbusiness

    webyourbusiness Registered Member

    Joined:
    Nov 16, 2004
    Posts:
    2,640
    Location:
    Throughout the USA and Canada
    nod32.ch often cuts off the list at first, then corrects it later - not sure why... but it get corrected usually fairly quickly...

    hth

    Greg
     
  4. POS

    POS Guest

    What was the update size? Mine was about 180kb..
     
  5. Whoknowstbh

    Whoknowstbh Guest

    Woah, great work ESET!

    @webyourbusiness

    Where do you get the info from about whats included in the updates?
    Thanks!
     
  6. webyourbusiness

    webyourbusiness Registered Member

    Joined:
    Nov 16, 2004
    Posts:
    2,640
    Location:
    Throughout the USA and Canada
    It varies - I get it from a number of sources, sometimes one if faster at getting the information posted, sometimes another is... so I check several places... today I got it from here:

    http://www.eset.com/support/info.php#CurVersion

    then I posted here:

    http://www.nod32usa.com/nod32-updates/

    hth

    Greg
     
  7. kalpik

    kalpik Registered Member

    Joined:
    May 26, 2005
    Posts:
    369
    Location:
    Delhi, India
    Great work!
     
  8. nemoxun

    nemoxun Registered Member

    Joined:
    Jan 1, 2006
    Posts:
    1
    excellent work!
     
  9. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    Ever heard for famous Swiss precision? Now you know ;)
     
  10. pykko

    pykko Registered Member

    Joined:
    Apr 27, 2005
    Posts:
    2,236
    Location:
    Romania...and walking to heaven
    Well, let there be more and more such big updates. :D
     
  11. webyourbusiness

    webyourbusiness Registered Member

    Joined:
    Nov 16, 2004
    Posts:
    2,640
    Location:
    Throughout the USA and Canada
    lol - perhaps it's a little "over-precise" in their cutting of the list... like I said, it happens OFTEN - with the larger updates, I'd say at least 75% of the time - with the smaller updates, I've only seen it incomplete a couple of times...
     
Thread Status:
Not open for further replies.