[Snort-sigs] Bleedingsnort.com Daily Update

bleeding at ...2727... bleeding at ...2727...
Sun Jul 3 18:07:37 EDT 2005


[***] Results from Oinkmaster started Sun Jul  3 20:00:03 2005 [***]

[+++]          Added rules:          [+++]

 2002069 - BLEEDING-EDGE WEB Blog Spam Insert Attempt (bleeding-web.rules)
 2002070 - BLEEDING-EDGE EXPLOIT phpBB Remote Code Execution Attempt (bleeding-web.rules)


[///]     Modified active rules:     [///]

 2000026 - BLEEDING-EDGE Malware Gator Agent Traffic (bleeding-malware.rules)
 2000586 - BLEEDING-EDGE Malware Ezula Related Calling Home (bleeding-malware.rules)
 2001295 - BLEEDING-EDGE MALWARE Browseraid.com Agent (bleeding-malware.rules)
 2001487 - BLEEDING-EDGE Malware Tibsystems Spyware Activity (bleeding-malware.rules)
 2001492 - BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Activity (bleeding-malware.rules)
 2001493 - BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Activity (bleeding-malware.rules)
 2001498 - BLEEDING-EDGE Malware Internet Optimizer Activity (bleeding-malware.rules)
 2001504 - BLEEDING-EDGE Malware Medialoads.com Spyware Activity (bleeding-malware.rules)
 2001506 - BLEEDING-EDGE Malware Smartpops.com Spyware Activity (bleeding-malware.rules)
 2001507 - BLEEDING-EDGE Malware Medialoads.com Spyware Identifying Country of Origin (bleeding-malware.rules)
 2001522 - BLEEDING-EDGE Malware SpywareLabs Application Install (bleeding-malware.rules)
 2001562 - BLEEDING-EDGE Malware MarketScore.com Spyware User Configuration and Setup Access (bleeding-malware.rules)
 2001639 - BLEEDING-EDGE Malware Wild Tangent Agent Activity (bleeding-malware.rules)
 2001640 - BLEEDING-EDGE MALWARE Altnet PeerPoints Manager Traffic (bleeding-malware.rules)
 2001642 - BLEEDING-EDGE Malware Microgaming.com Spyware Activity (bleeding-malware.rules)
 2001652 - BLEEDING-EDGE Malware JoltID Agent New Code Download (bleeding-malware.rules)
 2001654 - BLEEDING-EDGE Malware JoltID Agent Requesting File (bleeding-malware.rules)
 2001699 - BLEEDING-EDGE Malware YourSiteBar Activity (bleeding-malware.rules)
 2001702 - BLEEDING-EDGE Malware Shop at Home Select Spyware Activity (bleeding-malware.rules)
 2001703 - BLEEDING-EDGE Malware Context Plus Spyware Activity (bleeding-malware.rules)
 2001706 - BLEEDING-EDGE Malware Context Plus Spyware Activity (bleeding-malware.rules)
 2001707 - BLEEDING-EDGE Malware Shop at Home Select Spyware Activity (bleeding-malware.rules)
 2001732 - BLEEDING-EDGE Malware Top Converting Agent Activity (bleeding-malware.rules)
 2001736 - BLEEDING-EDGE Malware UCMore Spyware Activity (bleeding-malware.rules)
 2001745 - BLEEDING-EDGE Malware Enhance My Search Spyware Install (bleeding-malware.rules)
 2001746 - BLEEDING-EDGE Malware Enhance My Search Spyware Activity (bleeding-malware.rules)
 2001851 - BLEEDING-EDGE MALWARE Thinking Media Spyware User Agent (bleeding-malware.rules)
 2001852 - BLEEDING-EDGE MALWARE 404Search Spyware User Agent (bleeding-malware.rules)
 2001853 - BLEEDING-EDGE MALWARE Easy Search Bar Spyware User Agent (bleeding-malware.rules)
 2001854 - BLEEDING-EDGE MALWARE EZULA Spyware User Agent (bleeding-malware.rules)
 2001855 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001856 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001857 - BLEEDING-EDGE MALWARE Enhance My Search Spyware User Agent (bleeding-malware.rules)
 2001858 - BLEEDING-EDGE MALWARE Hotbar Spyware User Agent (bleeding-malware.rules)
 2001859 - BLEEDING-EDGE MALWARE Cool Web Search Spyware User Agent (bleeding-malware.rules)
 2001860 - BLEEDING-EDGE MALWARE Kontiki Spyware User Agent (bleeding-malware.rules)
 2001861 - BLEEDING-EDGE MALWARE Micro-Gaming Spyware User Agent (bleeding-malware.rules)
 2001862 - BLEEDING-EDGE MALWARE Surf Assistant Spyware User Agent (bleeding-malware.rules)
 2001863 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001864 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001865 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001866 - BLEEDING-EDGE MALWARE Smartpops/Mediaload Spyware User Agent (bleeding-malware.rules)
 2001867 - BLEEDING-EDGE MALWARE Search Engine 2000 Spyware User Agent (bleeding-malware.rules)
 2001868 - BLEEDING-EDGE MALWARE SureSeeker Spyware User Agent (bleeding-malware.rules)
 2001869 - BLEEDING-EDGE MALWARE Sidesearch Spyware User Agent (bleeding-malware.rules)
 2001870 - BLEEDING-EDGE MALWARE Surfplayer Spyware User Agent (bleeding-malware.rules)
 2001871 - BLEEDING-EDGE MALWARE Target Saver Spyware User Agent (bleeding-malware.rules)
 2001872 - BLEEDING-EDGE MALWARE Visicom Spyware User Agent (bleeding-malware.rules)
 2001891 - BLEEDING-EDGE Malware ToolbarPartner User Agent Activity (bleeding-malware.rules)
 2001996 - BLEEDING-EDGE Malware UCMore Spyware Activity User Agent String (bleeding-malware.rules)
 2002002 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (bleeding-malware.rules)
 2002005 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (bleeding-malware.rules)
 2002007 - BLEEDING-EDGE Malware Wildmedia Spyware User Agent Activity (bleeding-malware.rules)
 2002011 - BLEEDING-EDGE Malware PeopleonPage Spyware User Agent Activity (bleeding-malware.rules)
 2002014 - BLEEDING-EDGE Malware Grandstreet Interactive Spyware User Agent Activity (bleeding-malware.rules)
 2002020 - BLEEDING-EDGE Malware Overpro Spyware User Agent Activity (bleeding-malware.rules)
 2002021 - BLEEDING-EDGE Malware Grandstreet Interactive Spyware User Agent Activity (bleeding-malware.rules)
 2002035 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (bleeding-malware.rules)
 2002038 - BLEEDING-EDGE Malware Shopathomeselect.com Spyware User Agent Activity (bleeding-malware.rules)
 2002039 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (bleeding-malware.rules)


[---]         Removed rules:         [---]

 2000933 - BLEEDING-EDGE Malware Ezula Update Engine (bleeding-malware.rules)
 2001515 - BLEEDING-EDGE Malware SurfAssistant.com Spyware Activity (bleeding-malware.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-sid-msg.map (2):
        2002069 || BLEEDING-EDGE WEB Blog Spam Insert Attempt
        2002070 || BLEEDING-EDGE EXPLOIT phpBB Remote Code Execution Attempt || bugtraq,14086 || url,secunia.com/advisories/15845/

     -> Added to bleeding-web.rules (2):
        #by Jamie Thinglestad
        #By Blake Harstein

[---]     Removed non-rule lines:    [---]

     -> Removed from bleeding-sid-msg.map (2):
        2000933 || BLEEDING-EDGE Malware Ezula Update Engine || url,www.safer-networking.org/index.php?page=threats&detail=198
        2001515 || BLEEDING-EDGE Malware SurfAssistant.com Spyware Activity





More information about the Snort-sigs mailing list