WHATSNEW

Document Sample
WHATSNEW Powered By Docstoc
					*************************************************************************
*****
**
**
** What's New in the Symantec AntiVirus Definitions Files
WHATSNEW.TXT **
**
**
** Symantec Security Response                             February 13,
2007 **
**
**
*************************************************************************
*****

This document contains the following topics:

 * Viruses and Blended Threats Alerts
 * Changes Incorporated Into This Risk Definitions Update
 * Additional Information


*************************************************************************
*****
** Viruses and Blended Threats Alerts
**
*************************************************************************
*****

The ten most commonly reported threats for October 2006, worldwide:

    1   Trojan Horse
    2   W32.Beagle@mm!zip
    3   W32.Stration@mm
    4   W32.Looked.P
    5   Downloader
    6   Hacktool.Rootkit
    7   W32.Stration.CX@mm
    8   W32.Sality.U
    9   W32.Netsky.P@mm
   10   W32.Blackmal.E@mm!enc

*************************************************************************
*****
** Changes Incorporated Into This Risk Definitions Update
**
*************************************************************************
*****


New risk definitions (sorted by Risk Name):

         Risk Name                              Date added
         ---------                              ----------
Adware.CashOn            02/12/07
Adware.Ramdud            02/06/07
AdwareRemover            01/09/07
Backdoor.Amitis.C        01/17/07
Backdoor.Bifrose.H       01/23/07
Backdoor.Haxdoor.S       01/10/07
Bloodhound.Exploit.111   01/10/07
Bloodhound.Exploit.112   01/10/07
Bloodhound.Exploit.113   01/10/07
Bloodhound.Exploit.114   01/10/07
Bloodhound.Exploit.115   01/10/07
Bloodhound.Exploit.116   01/10/07
Bloodhound.Exploit.117   01/10/07
Bloodhound.Exploit.118   02/05/07
Bloodhound.Exploit.120   02/13/07
Bloodhound.Exploit.121   02/13/07
Bloodhound.Exploit.122   02/09/07
Bloodhound.Exploit.123   02/13/07
Bloodhound.Exploit.124   02/13/07
Bloodhound.Exploit.125   02/13/07
Bloodhound.Exploit.126   02/13/07
Bloodhound.Packed.10     02/02/07
Bloodhound.Packed.11     02/02/07
Bloodhound.Packed.12     02/02/07
Bloodhound.Packed.13     02/02/07
Bloodhound.Packed.9      02/02/07
CasinoOnNet              01/17/07
CodeClean                01/29/07
CommercialApps.1         02/07/07
CommercialApps.2         02/07/07
CrashKiller              01/16/07
Dialer.Dmm               02/06/07
Dialer.Trafficjam        02/02/07
Downloader.Hamberu       01/09/07
Hacktool.Arpsniffer      02/06/07
Hacktool.SRunner         02/05/07
Hacktool.Unreal.A        02/01/07
Infostealer.Rovbin       01/15/07
Infostealer.Wowhache     02/13/07
SRunner                  02/07/07
SpyHeal                  01/31/07
SpyLax                   01/10/07
Spyware.Bemonitor        01/23/07
Spyware.Parentis         01/24/07
Trojan.Flush.K           01/18/07
Trojan.Goldun.M          01/25/07
Trojan.Kibik             01/17/07
Trojan.Kibik!inf         01/17/07
Trojan.Killwma           01/31/07
Trojan.Magvap            02/01/07
Trojan.Mdropper.V        01/17/07
Trojan.Mdropper.W        01/17/07
Trojan.Mdropper.X        01/30/07
Trojan.Mdropper.Y        02/07/07
        Trojan.Mespam                          02/09/07
        Trojan.Monicker                        01/22/07
        Trojan.MrPrincess                      01/25/07
        Trojan.PPDropper.G                     02/13/07
        Trojan.Peacomm                         01/19/07
        Trojan.Schoeberl.E                     01/10/07
        VBS.Solow                              01/17/07
        W32.Annew.A                            02/08/07
        W32.Beagle!KH                          02/01/07
        W32.Burmec                             01/15/07
        W32.Darksnow                           02/13/07
        W32.Fakerecy                           01/19/07
        W32.Fujacks!gen                        01/10/07
        W32.Fujacks!html                       01/10/07
        W32.Fujacks.AF                         01/16/07
        W32.Fujacks.AJ@mm                      01/22/07
        W32.Fujacks.AW                         02/08/07
        W32.Fujacks.L                          01/09/07
        W32.Gangbot                            01/22/07
        W32.Iteb.A                             01/11/07
        W32.Jacksuf!inf                        02/13/07
        W32.Jacksuf.A                          02/13/07
        W32.Kakavex                            01/10/07
        W32.Luge                               01/09/07
        W32.Merin                              01/11/07
        W32.Moggy                              01/11/07
        W32.Mytob.RD@mm                        01/10/07
        W32.Rahack.W                           01/15/07
        W32.Rapita                             01/09/07
        W32.Reploret                           01/31/07
        W32.Sality.W                           01/11/07
        W32.Sality.X                           01/13/07
        W32.Spybot.ANOO                        01/15/07
        W32.Spybot.ANSX                        01/11/07
        W32.Spybot.ANTR                        01/15/07
        W32.Stut                               01/23/07
        W32.Surubat.A@mm                       02/07/07
        W32.Virtam                             01/09/07
        W32.Vutsog.A@mm                        02/01/07
        W32.Xirtam.A@mm                        01/25/07
        W32.Zaniman                            01/11/07
        W97M.Darksnow                          02/13/07
        W97M.Kumar.A                           01/12/07

New risk definitions (sorted by Date added):

        Risk Name                              Date added
        ---------                              ----------
        Bloodhound.Exploit.120                 02/13/07
        Bloodhound.Exploit.121                 02/13/07
        Bloodhound.Exploit.123                 02/13/07
        Bloodhound.Exploit.124                 02/13/07
        Bloodhound.Exploit.125                 02/13/07
        Bloodhound.Exploit.126                 02/13/07
Infostealer.Wowhache     02/13/07
Trojan.PPDropper.G       02/13/07
W32.Darksnow             02/13/07
W32.Jacksuf!inf          02/13/07
W32.Jacksuf.A            02/13/07
W97M.Darksnow            02/13/07
Adware.CashOn            02/12/07
Bloodhound.Exploit.122   02/09/07
Trojan.Mespam            02/09/07
W32.Annew.A              02/08/07
W32.Fujacks.AW           02/08/07
CommercialApps.1         02/07/07
CommercialApps.2         02/07/07
SRunner                  02/07/07
Trojan.Mdropper.Y        02/07/07
W32.Surubat.A@mm         02/07/07
Adware.Ramdud            02/06/07
Dialer.Dmm               02/06/07
Hacktool.Arpsniffer      02/06/07
Bloodhound.Exploit.118   02/05/07
Hacktool.SRunner         02/05/07
Bloodhound.Packed.10     02/02/07
Bloodhound.Packed.11     02/02/07
Bloodhound.Packed.12     02/02/07
Bloodhound.Packed.13     02/02/07
Bloodhound.Packed.9      02/02/07
Dialer.Trafficjam        02/02/07
Hacktool.Unreal.A        02/01/07
Trojan.Magvap            02/01/07
W32.Beagle!KH            02/01/07
W32.Vutsog.A@mm          02/01/07
SpyHeal                  01/31/07
Trojan.Killwma           01/31/07
W32.Reploret             01/31/07
Trojan.Mdropper.X        01/30/07
CodeClean                01/29/07
Trojan.Goldun.M          01/25/07
Trojan.MrPrincess        01/25/07
W32.Xirtam.A@mm          01/25/07
Spyware.Parentis         01/24/07
Backdoor.Bifrose.H       01/23/07
Spyware.Bemonitor        01/23/07
W32.Stut                 01/23/07
Trojan.Monicker          01/22/07
W32.Fujacks.AJ@mm        01/22/07
W32.Gangbot              01/22/07
Trojan.Peacomm           01/19/07
W32.Fakerecy             01/19/07
Trojan.Flush.K           01/18/07
Backdoor.Amitis.C        01/17/07
CasinoOnNet              01/17/07
Trojan.Kibik             01/17/07
Trojan.Kibik!inf         01/17/07
Trojan.Mdropper.V        01/17/07
        Trojan.Mdropper.W                         01/17/07
        VBS.Solow                                 01/17/07
        CrashKiller                               01/16/07
        W32.Fujacks.AF                            01/16/07
        Infostealer.Rovbin                        01/15/07
        W32.Burmec                                01/15/07
        W32.Rahack.W                              01/15/07
        W32.Spybot.ANOO                           01/15/07
        W32.Spybot.ANTR                           01/15/07
        W32.Sality.X                              01/13/07
        W97M.Kumar.A                              01/12/07
        W32.Iteb.A                                01/11/07
        W32.Merin                                 01/11/07
        W32.Moggy                                 01/11/07
        W32.Sality.W                              01/11/07
        W32.Spybot.ANSX                           01/11/07
        W32.Zaniman                               01/11/07
        Backdoor.Haxdoor.S                        01/10/07
        Bloodhound.Exploit.111                    01/10/07
        Bloodhound.Exploit.112                    01/10/07
        Bloodhound.Exploit.113                    01/10/07
        Bloodhound.Exploit.114                    01/10/07
        Bloodhound.Exploit.115                    01/10/07
        Bloodhound.Exploit.116                    01/10/07
        Bloodhound.Exploit.117                    01/10/07
        SpyLax                                    01/10/07
        Trojan.Schoeberl.E                        01/10/07
        W32.Fujacks!gen                           01/10/07
        W32.Fujacks!html                          01/10/07
        W32.Kakavex                               01/10/07
        W32.Mytob.RD@mm                           01/10/07
        AdwareRemover                             01/09/07
        Downloader.Hamberu                        01/09/07
        W32.Fujacks.L                             01/09/07
        W32.Luge                                  01/09/07
        W32.Rapita                                01/09/07
        W32.Virtam                                01/09/07

Name Changes (sorted by Old Risk Name):

        Old Risk Name               New Risk Name            Date changed
        -------------               -------------            ------------
        Adware.888bar            to 888bar                   12/19/06
        Adware.SpySheriff        to SpySheriff               12/08/06
        Backdoor.Amitis.C        to W32.Falgna               01/19/07
        Bloodhound.COH.1         to Bloodhound.SONAR.1       01/25/07
        Bloodhound.COH.2         to Bloodhound.SONAR.2       01/25/07
        Bloodhound.COH.3         to Bloodhound.SONAR.3       01/25/07
        Bloodhound.COH.4         to Bloodhound.SONAR.4       01/25/07
        Bloodhound.Exploit.56       to Trojan.Exploit.56     01/12/07
        Bloodhound.Exploit.64       to Trojan.Exploit.64     01/12/07
        Bloodhound.Exploit.78       to Trojan.Exploit.78     01/12/07
        Bloodhound.Packed.11       to Trojan.Packed.11       02/09/07
        Bloodhound.Packed.12       to Trojan.Packed.12       02/09/07
        Bloodhound.Packed.13       to Trojan.Packed.13     02/09/07
        Bloodhound.Packed.4      to Trojan.Packed.4        12/14/06
        Bloodhound.Packed.5      to Trojan.Packed.5        12/14/06
        Bloodhound.Packed.6      to Trojan.Packed.6        12/14/06
        Bloodhound.Packed.7      to Trojan.Packed.7        12/14/06
        Bloodhound.Packed.8      to Trojan.Packed.8        12/14/06
        Bloodhound.Packed.9      to Trojan.Packed.9        02/09/07
        Boot.DelPar.Trojan      to Boot.DelPar.Trojan      01/29/07
        Galic-b                 to Galic-b                 01/29/07
        Hacktool.Amac           to Amac                    02/09/07
        Hacktool.Ariskkey       to Ariskkey                02/09/07
        Hacktool.CyberSpy       to Spyware.CyberSpy        02/12/07
        Hacktool.LSADump        to LSADump                 02/09/07
        Hacktool.NetCat         to NetCat                  02/12/07
        Hacktool.PRecovery      to PRecovery               02/12/07
        Hacktool.Salus          to Spyware.Salus           02/12/07
        Hacktool.Screenlogger   to Spyware.Screenlogger    02/13/07
        Hacktool.SpySharp       to SpySharp                02/12/07
        Hacktool.Switchsniff    to Switchsniff             02/13/07
        Hacktool.Webcracker     to Webcracker              02/12/07
        Hacktool.WinSniffer     to WinSniffer              02/12/07
        Hacktool.XScan          to XScan                   02/12/07
        Harrier                 to Harrier                 01/29/07
        Hippie                  to    Hippie               01/29/07
        Incubus.b               to Incubus.b               01/29/07
        J&m.c                   to     J&m.c               01/29/07
        Junkie.mp.1308          to Junkie.mp.1308          01/29/07
        Konkoor.3072.dam        to Konkoor.3072.dam        01/29/07
        Trojan.Exploit.64       to Downloader.Exploit.64   01/14/07
        Trojan.Exploit.78       to Downloader.Exploit.78   01/14/07
        Trojan.LKLKL            to W32.Fujacks.B           11/29/06
        Trojan.MrPrincess       to W32.Miprinc@mm          01/26/07
        Trojan.Packed.7         to Bloodhound.Packed.7     12/19/06
        W32.Jhad                to W32.Tasnab              12/29/06
        W32.MediaSups           to W32.Mediasups           12/29/06
        W32.Realor              to Trojan.Realor           11/17/06
        W32.Realor!inf          to Trojan.Realor!inf       11/17/06
        Wyx.boot                to Wyx.boot                01/29/07

Name Changes (sorted by Date changed):

        Old Risk Name              New Risk Name           Date changed
        -------------              -------------           ------------
        Hacktool.Screenlogger   to Spyware.Screenlogger    02/13/07
        Hacktool.Switchsniff    to Switchsniff             02/13/07
        Hacktool.CyberSpy       to Spyware.CyberSpy        02/12/07
        Hacktool.NetCat         to NetCat                  02/12/07
        Hacktool.PRecovery      to PRecovery               02/12/07
        Hacktool.Salus          to Spyware.Salus           02/12/07
        Hacktool.SpySharp       to SpySharp                02/12/07
        Hacktool.Webcracker     to Webcracker              02/12/07
        Hacktool.WinSniffer     to WinSniffer              02/12/07
        Hacktool.XScan          to XScan                   02/12/07
        Bloodhound.Packed.11      to Trojan.Packed.11      02/09/07
        Bloodhound.Packed.12        to Trojan.Packed.12     02/09/07
        Bloodhound.Packed.13        to Trojan.Packed.13     02/09/07
        Bloodhound.Packed.9       to Trojan.Packed.9        02/09/07
        Hacktool.Amac            to Amac                    02/09/07
        Hacktool.Ariskkey        to Ariskkey                02/09/07
        Hacktool.LSADump         to LSADump                 02/09/07
        Boot.DelPar.Trojan       to Boot.DelPar.Trojan      01/29/07
        Galic-b                  to Galic-b                 01/29/07
        Harrier                  to Harrier                 01/29/07
        Hippie                   to    Hippie               01/29/07
        Incubus.b                to Incubus.b               01/29/07
        J&m.c                    to     J&m.c               01/29/07
        Junkie.mp.1308           to Junkie.mp.1308          01/29/07
        Konkoor.3072.dam         to Konkoor.3072.dam        01/29/07
        Wyx.boot                 to Wyx.boot                01/29/07
        Trojan.MrPrincess        to W32.Miprinc@mm          01/26/07
        Bloodhound.COH.1         to Bloodhound.SONAR.1      01/25/07
        Bloodhound.COH.2         to Bloodhound.SONAR.2      01/25/07
        Bloodhound.COH.3         to Bloodhound.SONAR.3      01/25/07
        Bloodhound.COH.4         to Bloodhound.SONAR.4      01/25/07
        Backdoor.Amitis.C        to W32.Falgna              01/19/07
        Trojan.Exploit.64        to Downloader.Exploit.64   01/14/07
        Trojan.Exploit.78        to Downloader.Exploit.78   01/14/07
        Bloodhound.Exploit.56        to Trojan.Exploit.56   01/12/07
        Bloodhound.Exploit.64        to Trojan.Exploit.64   01/12/07
        Bloodhound.Exploit.78        to Trojan.Exploit.78   01/12/07
        W32.Jhad                 to W32.Tasnab              12/29/06
        W32.MediaSups            to W32.Mediasups           12/29/06
        Adware.888bar            to 888bar                  12/19/06
        Trojan.Packed.7          to Bloodhound.Packed.7     12/19/06
        Bloodhound.Packed.4       to Trojan.Packed.4        12/14/06
        Bloodhound.Packed.5       to Trojan.Packed.5        12/14/06
        Bloodhound.Packed.6       to Trojan.Packed.6        12/14/06
        Bloodhound.Packed.7       to Trojan.Packed.7        12/14/06
        Bloodhound.Packed.8       to Trojan.Packed.8        12/14/06
        Adware.SpySheriff        to SpySheriff              12/08/06
        Trojan.LKLKL             to W32.Fujacks.B           11/29/06
        W32.Realor               to Trojan.Realor           11/17/06
        W32.Realor!inf           to Trojan.Realor!inf       11/17/06

Deletions (sorted by Risk Name):

        Risk Name                                Date removed
        ---------                                ------------
        Bloodhound.Exploit.120                   02/13/07
        Bloodhound.Exploit.121                   02/13/07
        Bloodhound.Exploit.122                   02/10/07
        Bloodhound.Exploit.123                   02/13/07
        Bloodhound.Exploit.124                   02/13/07
        Bloodhound.Exploit.125                   02/13/07
        Bloodhound.Exploit.126                   02/13/07
        Hacktool.CyberSpy                        02/12/07
        Hacktool.NetCat                          02/12/07
        Hacktool.PRecovery                       02/12/07
        Hacktool.Salus                02/12/07
        Hacktool.Screenlogger         02/13/07
        Hacktool.SpySharp             02/12/07
        Hacktool.Switchsniff          02/13/07
        Hacktool.Webcracker           02/12/07
        Hacktool.WinSniffer           02/12/07
        Hacktool.XScan                02/12/07

Deletions (sorted by Date removed):

        Risk Name                     Date removed
        ---------                     ------------
        Bloodhound.Exploit.120        02/13/07
        Bloodhound.Exploit.121        02/13/07
        Bloodhound.Exploit.123        02/13/07
        Bloodhound.Exploit.124        02/13/07
        Bloodhound.Exploit.125        02/13/07
        Bloodhound.Exploit.126        02/13/07
        Hacktool.Screenlogger         02/13/07
        Hacktool.Switchsniff          02/13/07
        Hacktool.CyberSpy             02/12/07
        Hacktool.NetCat               02/12/07
        Hacktool.PRecovery            02/12/07
        Hacktool.Salus                02/12/07
        Hacktool.SpySharp             02/12/07
        Hacktool.Webcracker           02/12/07
        Hacktool.WinSniffer           02/12/07
        Hacktool.XScan                02/12/07
        Bloodhound.Exploit.122        02/10/07



Remediation Added:

        Risk Name                     Date added
        ---------                     ----------
        Adware.HMToolbar              12/05/05
        Adware.SpySheriff             12/05/05
        Adware.Inetex                 12/05/05
        Spyware.Ashlt                 12/05/05
        Spyware.Netrat                12/05/05
        SecurityRisk.LowZones         12/02/05
        WinFixer                      12/02/05
        Dialer.Palazzo                12/02/05
        Adware.WebMisc                12/01/05
        Adware.Downreceive            11/30/05
        Adware.PigSearch              11/30/05
        Spyware.Farsighter            11/30/05
        Spyware.Spagent               11/30/05
        Spyware.Spy4PC                11/30/05
        Adware.Director               11/30/05
        Adware.Redir                  11/30/05
        Adware.Links                  11/29/05
        Adware.MoneyGainer            11/26/05
        Spyware.Marketscore      11/26/05
        Adware.Borlan            11/25/05
        Adware.IEhlpr            11/25/05
        Adware.LittleHelper      11/23/05
        Adware.WebDir            11/23/05
        W32.Sober.X@mm           11/23/05
        Adware.Henbang           11/17/05
        Adware.Webext            11/16/05
        Spyware.SA_PCSpy         11/16/05
        Spyware.Snoop            11/16/05
        Adware.Idocha            11/11/05
        SpyWare.Spyarsenallog    11/11/05
        Backdoor.Ryknos          11/10/05
        Adware.TopAv             11/09/05
        SecurityRisk.First4DRM   11/08/05
        SecurityRisk.Aries       11/08/05
        Adware.BocaiToolbar      11/03/05
        Adware.SweetBar          11/03/05
        SecurityRisk.HubSafe     11/03/05
        Spyware.EmailSpy         11/03/05
        Spyware.HSLABLogger      11/01/05
        Spyware.IamBigBrother    11/01/05
        Spyware.Intraspy         10/28/05
        Adware.EnergyPlugin      10/27/05
        Dialer.MicroDialer       10/27/05
        Spyware.WSLogger         10/26/05
        Trackware.Webhancer      10/26/05
        Hacktool.XScan           10/25/05
        Adware.MDSSearchboost    10/25/05
        Adware.PLook             10/25/05
        Adware.SideBySide        10/25/05
        Adware.UMaxsearch        10/25/05


Remediation Deleted:

        Risk Name                Date removed
        ---------                ------------
        Hacktool.Spagent         11/30/05
        SecurityRisk.Aries       11/08/05
        Spyware.HSLABLogger      10/29/05
        Spyware.IamBigBrother    10/29/05
        Spyware.Webhancer        10/26/05
        Adware.SearchCashbar     10/24/05
        Backdoor.Subseven.22a    10/24/05
        Spyware.NetVisor         10/24/05
        Spyware_PCParent         10/24/05
        Spyware_SaveKeys         10/24/05
        Adware.GreenIo           10/24/05
        Adware.Instdollars       10/24/05
        Adware.Metasearch        10/24/05
        Adware.Searchbarcash     10/24/05
        Backdoor.Subseven.22.a   10/24/05
        Spyware.NetVizor         10/24/05
        Spyware.PCParent                        10/24/05
        Spyware.SaveKeys                        10/24/05
        Spyware.BrowserAccel                    10/17/05
        Adware.EraserAll                        10/12/05
        Dialer.Palazzo                          10/07/05
        Trojan.ISTsvc                           10/07/05


Remediation Modified:

        Risk Name                               Date modified
        ---------                               -------------
        Adware.Metasearch                       10/25/05


**********************************************************************
**    Additional Information                                        **
**********************************************************************
Additional information regarding this virus definitions update can be
found in UPDATE.TXT and TECHNOTE.TXT.

				
DOCUMENT INFO
Categories:
Tags:
Stats:
views:19
posted:9/12/2008
language:English
pages:10