Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Integrity Clientless Security (ICS) version 3.7.44.0

Attack ID: CPAI-2005-150
Publish Date:
Category: Endpoint Security
Vulnerable Systems: Microsoft Windows clients
Source: SmartDefense Research Center
Description: Check Point Integrity ™ Clientless Security (ICS) for Connectra prevents users with potentially harmful software from accessing your network and requires that they conform to the organization’s antivirus and firewall policies. For more information, please refer to Connectra documentation and to ICS administration Guide.
Severity:
Details:

Several malware signatures were added to build 3.7.44.0:

PSW.Win32.LdPinch
Win32.Bagle.pac
TrojanDownloader.Centim.C
Win32.Lospad.B
Win32.Bagle.ei
TrojanDownloader.INService
Win32.Bagle.ef
TrojanDownloader.Centim.F
TrojanDownloader.FreeWire
Win32.ConnectionCheck
Password Spectator Pro
Qoologic.P
qsearch
Actual Spy 2.52
Attack Detection:
Users Of Connectra NGX and Connectra 2.0 who have updated their Connectra machines will identify logs such as the following (example only, malware name varies by malware detected):

Malware type: 3rd party cookie
Malware name: Win32.Bagle.ei
Solution: Users of Connectra NGX and Connectra 2.0 can update their Integrity Clientless Security (ICS) component.

This Update refers to the following versions:

Connectra 2.0 - version 690051116
Connectra NGX - version 691051116

For instructions on how to update your SmartDefense Service including your Integrity Clientless Security component, please refer to CPSA-2005-11.
Industry Reference:
Additional Information: Zone Labs Spyware Information Center