[Snort-sigs] Bleedingsnort.com Daily Update

bleeding at ...2727... bleeding at ...2727...
Thu Jun 2 18:01:58 EDT 2005


[***] Results from Oinkmaster started Thu Jun  2 20:00:04 2005 [***]

[+++]          Added rules:          [+++]

 2001955 - BLEEDING-EDGE VIRUS Win32.Mytob.CU Worm Infection / DNS lookup (bleeding-virus.rules)
 2001956 - BLEEDING-EDGE VIRUS Win32.Mytob.CU Worm Infection (bleeding-virus.rules)
 2001957 - BLEEDING-EDGE Covert Non-Standard SSH Port Usage (bleeding-policy.rules)
 2001958 - BLEEDING-EDGE Covert Non-Standard SSH Port Usage (bleeding-policy.rules)


[///]     Modified active rules:     [///]

 2001556 - BLEEDING-EDGE Virus W32/Bagle.z at ...871... Requesting 5.php (bleeding-virus.rules)
 2001638 - BLEEDING-EDGE VIRUS W32/Bagle.dldr Trojan - download attempt (bleeding-virus.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-policy.rules (1):
        # by William Bell

     -> Added to bleeding-sid-msg.map (4):
        2001955 || BLEEDING-EDGE VIRUS Win32.Mytob.CU Worm Infection / DNS lookup || url,www3.ca.com/securityadvisor/virusinfo/virus.aspx?id=43006
        2001956 || BLEEDING-EDGE VIRUS Win32.Mytob.CU Worm Infection || url,www3.ca.com/securityadvisor/virusinfo/virus.aspx?id=43006
        2001957 || BLEEDING-EDGE Covert Non-Standard SSH Port Usage
        2001958 || BLEEDING-EDGE Covert Non-Standard SSH Port Usage

     -> Added to bleeding-virus.rules (1):
        #Smetona 6-2-05





More information about the Snort-sigs mailing list