[Snort-sigs] Bleedingsnort.com Daily Update

bleeding at ...2727... bleeding at ...2727...
Mon Jul 4 18:04:09 EDT 2005


[***] Results from Oinkmaster started Mon Jul  4 20:00:02 2005 [***]

[+++]          Added rules:          [+++]

 2002071 - BLEEDING-EDGE Malware XupiterToolbar Spyware User Agent Activity (bleeding-malware.rules)
 2002072 - BLEEDING-EDGE Malware UtilMind Spyware User Agent Activity (bleeding-malware.rules)
 2002073 - BLEEDING-EDGE Malware General Spyware User Agent Activity (bleeding-malware.rules)
 2002074 - BLEEDING-EDGE Malware Win32.Stubby Spyware User Agent Activity (bleeding-malware.rules)
 2002075 - BLEEDING-EDGE Malware OCSLab AutoUpdater Unknown/Spyware User Agent Activity -- Please report to bleedingsnort.com (bleeding-malware.rules)
 2002076 - BLEEDING-EDGE Malware New.net Spyware User Agent Activity -- Please report to bleedingsnort.com (bleeding-malware.rules)
 2002077 - BLEEDING-EDGE Malware IEBar Spyware User Agent Activity (bleeding-malware.rules)
 2002078 - BLEEDING-EDGE Malware SideStep Spyware User Agent Activity (bleeding-malware.rules)
 2002079 - BLEEDING-EDGE MALWARE MyWaySearch Products Spyware User Agent (bleeding-malware.rules)
 2002080 - BLEEDING-EDGE MALWARE MySearch Products Spyware User Agent (bleeding-malware.rules)
 2002081 - BLEEDING-EDGE Malware Possible Funwebproducts or Unknown/Spyware User Agent Activity -- Please report to bleedingsnort.com (bleeding-malware.rules)
 2002082 - BLEEDING-EDGE Malware Unknown Spyware User Agent Activity -- Please report to bleedingsnort.com (bleeding-malware.rules)


[///]     Modified active rules:     [///]

 2000026 - BLEEDING-EDGE Malware Gator Agent Traffic (bleeding-malware.rules)
 2001295 - BLEEDING-EDGE MALWARE Browseraid.com Agent (bleeding-malware.rules)
 2001492 - BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Activity (bleeding-malware.rules)
 2001498 - BLEEDING-EDGE Malware Internet Optimizer Activity (bleeding-malware.rules)
 2001562 - BLEEDING-EDGE Malware MarketScore.com Spyware User Configuration and Setup Access (bleeding-malware.rules)
 2001640 - BLEEDING-EDGE MALWARE Altnet PeerPoints Manager Traffic (bleeding-malware.rules)
 2001652 - BLEEDING-EDGE Malware JoltID Agent New Code Download (bleeding-malware.rules)
 2001702 - BLEEDING-EDGE Malware Shop at Home Select Spyware Activity (bleeding-malware.rules)
 2001703 - BLEEDING-EDGE Malware Context Plus Spyware Activity (bleeding-malware.rules)
 2001706 - BLEEDING-EDGE Malware Context Plus Spyware Activity (bleeding-malware.rules)
 2001707 - BLEEDING-EDGE Malware Shop at Home Select Spyware Activity (bleeding-malware.rules)
 2001746 - BLEEDING-EDGE Malware Enhance My Search Spyware Activity (bleeding-malware.rules)
 2001851 - BLEEDING-EDGE MALWARE Thinking Media Spyware User Agent (bleeding-malware.rules)
 2001852 - BLEEDING-EDGE MALWARE 404Search Spyware User Agent (bleeding-malware.rules)
 2001853 - BLEEDING-EDGE MALWARE Easy Search Bar Spyware User Agent (bleeding-malware.rules)
 2001854 - BLEEDING-EDGE MALWARE EZULA Spyware User Agent (bleeding-malware.rules)
 2001855 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001858 - BLEEDING-EDGE MALWARE Hotbar Spyware User Agent (bleeding-malware.rules)
 2001859 - BLEEDING-EDGE MALWARE Cool Web Search Spyware User Agent (bleeding-malware.rules)
 2001860 - BLEEDING-EDGE MALWARE Kontiki Spyware User Agent (bleeding-malware.rules)
 2001861 - BLEEDING-EDGE MALWARE Micro-Gaming Spyware User Agent (bleeding-malware.rules)
 2001863 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001864 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001865 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001866 - BLEEDING-EDGE MALWARE Smartpops/Mediaload Spyware User Agent (bleeding-malware.rules)
 2001867 - BLEEDING-EDGE MALWARE Search Engine 2000 Spyware User Agent (bleeding-malware.rules)
 2001868 - BLEEDING-EDGE MALWARE SureSeeker Spyware User Agent (bleeding-malware.rules)
 2001869 - BLEEDING-EDGE MALWARE Sidesearch Spyware User Agent (bleeding-malware.rules)
 2001870 - BLEEDING-EDGE MALWARE Surfplayer Spyware User Agent (bleeding-malware.rules)
 2001871 - BLEEDING-EDGE MALWARE Target Saver Spyware User Agent (bleeding-malware.rules)
 2001872 - BLEEDING-EDGE MALWARE Visicom Spyware User Agent (bleeding-malware.rules)
 2002005 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (bleeding-malware.rules)
 2002021 - BLEEDING-EDGE Malware Grandstreet Interactive Spyware User Agent Activity (bleeding-malware.rules)
 2002035 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (bleeding-malware.rules)


[---]         Removed rules:         [---]

 2001642 - BLEEDING-EDGE Malware Microgaming.com Spyware Activity (bleeding-malware.rules)
 2001745 - BLEEDING-EDGE Malware Enhance My Search Spyware Install (bleeding-malware.rules)
 2001856 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (bleeding-malware.rules)
 2001857 - BLEEDING-EDGE MALWARE Enhance My Search Spyware User Agent (bleeding-malware.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-sid-msg.map (12):
        2002071 || BLEEDING-EDGE Malware XupiterToolbar Spyware User Agent Activity || url,castlecops.com/tk781-Xupitertoolbar_dll_t_dll.html
        2002072 || BLEEDING-EDGE Malware UtilMind Spyware User Agent Activity || url,www.utilmind.com/scripts/webthief.html
        2002073 || BLEEDING-EDGE Malware General Spyware User Agent Activity
        2002074 || BLEEDING-EDGE Malware Win32.Stubby Spyware User Agent Activity || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453088437
        2002075 || BLEEDING-EDGE Malware OCSLab AutoUpdater Unknown/Spyware User Agent Activity -- Please report to bleedingsnort.com || url,www.bleedingsnort.com/staticpages/index.php?page=unknown
        2002076 || BLEEDING-EDGE Malware New.net Spyware User Agent Activity -- Please report to bleedingsnort.com || url,www.pcsympathy.com/printout74.html || url,www.newdotnet.com
        2002077 || BLEEDING-EDGE Malware IEBar Spyware User Agent Activity || url,castlecops.com/tk1463-IEBAR_DLL.html
        2002078 || BLEEDING-EDGE Malware SideStep Spyware User Agent Activity
        2002079 || BLEEDING-EDGE MALWARE MyWaySearch Products Spyware User Agent
        2002080 || BLEEDING-EDGE MALWARE MySearch Products Spyware User Agent
        2002081 || BLEEDING-EDGE Malware Possible Funwebproducts or Unknown/Spyware User Agent Activity -- Please report to bleedingsnort.com || url,www.bleedingsnort.com/staticpages/index.php?page=unknown
        2002082 || BLEEDING-EDGE Malware Unknown Spyware User Agent Activity -- Please report to bleedingsnort.com || url,www.bleedingsnort.com/staticpages/index.php?page=unknown

[---]     Removed non-rule lines:    [---]

     -> Removed from bleeding-sid-msg.map (4):
        2001642 || BLEEDING-EDGE Malware Microgaming.com Spyware Activity
        2001745 || BLEEDING-EDGE Malware Enhance My Search Spyware Install
        2001856 || BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
        2001857 || BLEEDING-EDGE MALWARE Enhance My Search Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553





More information about the Snort-sigs mailing list