Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Integrity Clientless Security (ICS) Update 3.7.68.0

Subscribe

Check Point Reference: CPAI-2006-023
Date Published:
Severity:
Last Updated:
Source: SmartDefense Research Center
Protection Provided by: Connectra
  • NGX
  • 2.0
Who is Vulnerable?
Microsoft Windows clients
Vulnerability Description
Check Point Integrity ™ Clientless Security (ICS) for Connectra prevents users with potentially harmful software from accessing your network and requires that they conform to the organization’s antivirus and firewall policies. For more information, please refer to Connectra documentation and to ICS administration Guide. 

56 new malware signatures were added to ICS version 3.7.68.0. For a full list of the added malware, refer to the Details section (SmarDefense Services subscription required).
Vulnerability Details
The following malware were added to ICS update 3.7.68.0:

    Win32.Trojan.Clicker.VB.la
     Win32.Adware.SaveNow.i
     Win32.PSW.LdPinch.p
     Win32.Backdoor.Haxdoor.gj
     Win32.Trojan.Dialer.mi
     Win32.DownLoader.2286
     Win32.Backdoor.Haxdoor.gh
     Win32.Trojan.PSW.Sagic.14
     AdWare.Win32.SafeSurfing.o
     Win32.HLLW.MyBot
     Win32.Backdoor.Agobot.aek
     Win32.Win95.Marburg.5785
     Win32.taskdir
     Win32.Trojan.Spy.Banker.cv
     Win32.HLLW.Generic.150
     Win32.AdWare.ToolBar.CaptainCode.a
     Win32.Trojan.PSW.Delf.by
     Backdoor.Win32.Haxdoor.gm
     Win32.Trojan.Downloader.Delf.bx
     Win32.Trojan.StartPage.1106
     Win32.Trojan.Dropper.Delf.hl
     Win32.BackDoor.Pigeon.128
     Win32.AdWare.TimeSink
     Win32.Trojan.Spy.Banpaes.j
     Win32.PinchBuilder
     Win32.Email.Worm.Bagle.fk
     Win32.Trojan.Spy.Bancos.ha
     Win32.Backdoor.Haxdoor
     Win32.Trojan.Downloader.reqlook
     Win32.pwmgr
     AtomicClock
     Win32.Trojan.Spy.Banker.ahy
     Win32.Trojan.StartPage.xw
     Win32.Backdoor.Hiberium.b
     Win32.Backdoor.Haxdoor.fr
     Win32.Trojan.Dialer.hz
     Win32.Parite.2
     Win32.Intar.1854
     Win32.Trojan.Spy.Banker.aho
     Win32.Trojan.Proxy.Wopla.n
     Win32.Backdoor.PoeBot.d
     Backdoor.Win32.Haxdoor.ev
     Win32.Worm.Gavir
     Win32.Trojan.Downloader.IstBar.gen
     Win32.qsearch
     Win32.AdWare.123Bar.a
     Win32.SaveNow
     Win32.Backdoor.SdBot.xd
     Win32.Adware.Gator
     Win32.TrojanSpy.GWGhost.j
     Win32.Backdoor.Haxdoor.dw
     Win32.Trojan.PSW.Lmir.yn
     Win32.Backdoor.Small.ah
     Trojan-Downloader.Win32.Zlob.fg
     Win32.Backdoor.Aimbot.ah
     Win32.AdWare.2Search.c

Protection Overview
The Update adds 56 new malware signatures, detecting threats posed by malware types such as worms, Trojan horses, hacker's tools, key loggers, browser plug-ins, Adwares, third party cookies, and so forth.

To configure the defense, select your product from the list below and follow the related protection steps.

Additional Information
Zone Labs Spyware Information Center

Connectra NGX/2.0

How Can I Protect My Network?
Users of Connectra NGX/2.0 can update their Integrity Clientless Security (ICS) component.

Update version for Connectra NGX: 691060308
Update version for Connectra 2.0:  690060308

For instructions on how to update your SmartDefense Service including your Integrity Clientless Security component, please refer to CPSA-2005-11.

How Do I Know if My Network is Under Attack?
Users Of Connectra NGX/2.0 who have updated their Connectra machines will identify logs such as the following (example only, malware name varies by malware detected):

Malware type: 3rd party cookie
Malware name:  Win32.Backdoor.Haxdoor