[Snort-sigs] Bleedingsnort.com Daily Update

bleeding at ...2727... bleeding at ...2727...
Thu Aug 3 21:00:12 EDT 2006


[***] Results from Oinkmaster started Thu Aug  3 21:00:12 2006 [***]

[///]     Modified active rules:     [///]

 2000026 - BLEEDING-EDGE Malware Gator Agent Traffic (bleeding-malware.rules)
 2000586 - BLEEDING-EDGE Malware Ezula Related Calling Home (bleeding-malware.rules)
 2001295 - BLEEDING-EDGE MALWARE Browseraid.com Agent (bleeding-malware.rules)
 2001487 - BLEEDING-EDGE Malware Tibsystems Spyware Activity (bleeding-malware.rules)
 2001492 - BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Activity (MyApp) (bleeding-malware.rules)
 2001493 - BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Activity (IST) (bleeding-malware.rules)
 2001498 - BLEEDING-EDGE Malware Internet Optimizer Activity (bleeding-malware.rules)
 2001504 - BLEEDING-EDGE Malware Medialoads.com Spyware Activity (bleeding-malware.rules)
 2001562 - BLEEDING-EDGE Malware MarketScore.com Spyware User Configuration and Setup Access (bleeding-malware.rules)
 2001639 - BLEEDING-EDGE Malware Wild Tangent Agent Activity (bleeding-malware.rules)
 2001640 - BLEEDING-EDGE MALWARE Altnet PeerPoints Manager Traffic (bleeding-malware.rules)
 2001652 - BLEEDING-EDGE Malware JoltID Agent New Code Download (bleeding-malware.rules)
 2001699 - BLEEDING-EDGE Malware YourSiteBar Activity (bleeding-malware.rules)
 2001702 - BLEEDING-EDGE Malware Shop at Home Select Spyware Activity (Bundle) (bleeding-malware.rules)
 2001703 - BLEEDING-EDGE Malware Context Plus Spyware Activity (1) (bleeding-malware.rules)
 2001706 - BLEEDING-EDGE Malware Context Plus Spyware Activity (2) (bleeding-malware.rules)
 2001707 - BLEEDING-EDGE Malware Shop at Home Select Spyware Activity (SAH) (bleeding-malware.rules)
 2001732 - BLEEDING-EDGE Malware Top Converting Agent Activity (bleeding-malware.rules)
 2001736 - BLEEDING-EDGE Malware UCMore Spyware Activity (bleeding-malware.rules)
 2001746 - BLEEDING-EDGE Malware Enhance My Search Spyware Activity (bleeding-malware.rules)
 2001852 - BLEEDING-EDGE MALWARE 404Search Spyware User Agent (bleeding-malware.rules)
 2001853 - BLEEDING-EDGE MALWARE Easy Search Bar Spyware User Agent (bleeding-malware.rules)
 2001854 - BLEEDING-EDGE MALWARE EZULA Spyware User Agent (bleeding-malware.rules)
 2001855 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (1) (bleeding-malware.rules)
 2001858 - BLEEDING-EDGE MALWARE Hotbar Spyware User Agent (bleeding-malware.rules)
 2001859 - BLEEDING-EDGE MALWARE Cool Web Search Spyware User Agent (bleeding-malware.rules)
 2001860 - BLEEDING-EDGE MALWARE Kontiki Spyware User Agent (bleeding-malware.rules)
 2001861 - BLEEDING-EDGE MALWARE Micro-Gaming Spyware User Agent (bleeding-malware.rules)
 2001862 - BLEEDING-EDGE MALWARE Surf Assistant Spyware User Agent (bleeding-malware.rules)
 2001863 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (2) (bleeding-malware.rules)
 2001864 - BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (3) (bleeding-malware.rules)
 2001865 - BLEEDING-EDGE MALWARE MyWebSearch Spyware User Agent (bleeding-malware.rules)
 2001867 - BLEEDING-EDGE MALWARE Search Engine 2000 Spyware User Agent (bleeding-malware.rules)
 2001868 - BLEEDING-EDGE MALWARE SureSeeker Spyware User Agent (bleeding-malware.rules)
 2001869 - BLEEDING-EDGE MALWARE Sidesearch Spyware User Agent (bleeding-malware.rules)
 2001870 - BLEEDING-EDGE MALWARE Surfplayer Spyware User Agent (bleeding-malware.rules)
 2001871 - BLEEDING-EDGE MALWARE Target Saver Spyware User Agent (bleeding-malware.rules)
 2001872 - BLEEDING-EDGE MALWARE Visicom Spyware User Agent (bleeding-malware.rules)
 2001891 - BLEEDING-EDGE Malware ToolbarPartner User Agent Activity (bleeding-malware.rules)
 2001996 - BLEEDING-EDGE Malware UCMore Spyware Activity User Agent String (bleeding-malware.rules)
 2002002 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (thnall) (bleeding-malware.rules)
 2002005 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (poller) (bleeding-malware.rules)
 2002007 - BLEEDING-EDGE Malware Wildmedia Spyware User Agent Activity (bleeding-malware.rules)
 2002011 - BLEEDING-EDGE Malware PeopleonPage Spyware User Agent Activity (bleeding-malware.rules)
 2002014 - BLEEDING-EDGE Malware Grandstreet Interactive Spyware User Agent Activity (2) (bleeding-malware.rules)
 2002020 - BLEEDING-EDGE Malware Overpro Spyware User Agent Activity (merong) (bleeding-malware.rules)
 2002021 - BLEEDING-EDGE Malware Grandstreet Interactive Spyware User Agent Activity (1) (bleeding-malware.rules)
 2002035 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (thin) (bleeding-malware.rules)
 2002038 - BLEEDING-EDGE Malware Shopathomeselect.com Spyware User Agent Activity (bleeding-malware.rules)
 2002039 - BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (aurareco) (bleeding-malware.rules)
 2002047 - BLEEDING-EDGE MALWARE surfaccuracy Spyware User Agent (bleeding-malware.rules)
 2002071 - BLEEDING-EDGE Malware XupiterToolbar Spyware User Agent Activity (bleeding-malware.rules)
 2002073 - BLEEDING-EDGE Malware General Spyware User Agent Activity (bleeding-malware.rules)
 2002074 - BLEEDING-EDGE Malware Win32.Stubby Spyware User Agent Activity (bleeding-malware.rules)
 2002076 - BLEEDING-EDGE Malware New.net Spyware User Agent Activity (bleeding-malware.rules)
 2002078 - BLEEDING-EDGE Malware SideStep Spyware User Agent Activity (bleeding-malware.rules)
 2002079 - BLEEDING-EDGE MALWARE MyWaySearch Products Spyware User Agent (bleeding-malware.rules)
 2002080 - BLEEDING-EDGE MALWARE MySearch Products Spyware User Agent (bleeding-malware.rules)
 2002082 - BLEEDING-EDGE POLICY Infotriever Spyware User Agent (bleeding-policy.rules)
 2002097 - BLEEDING-EDGE Malware IEHelp.net Spyware User Agent Activity (bleeding-malware.rules)
 2002153 - BLEEDING-EDGE MALWARE EXE as User Agent -- Potential Spyware (bleeding-malware.rules)
 2002160 - BLEEDING-EDGE MALWARE CoolWebSearch Spyware (Feat) (bleeding-malware.rules)
 2002161 - BLEEDING-EDGE MALWARE CoolWebSearch Spyware (feat2) (bleeding-malware.rules)
 2002163 - BLEEDING-EDGE MALWARE Ezula Update Engine (bleeding-malware.rules)
 2002164 - BLEEDING-EDGE MALWARE Hotbar Spyware (bleeding-malware.rules)
 2002165 - BLEEDING-EDGE MALWARE IESearch Spyware (bleeding-malware.rules)
 2002166 - BLEEDING-EDGE MALWARE Alexa Search Toolbar (bleeding-malware.rules)
 2002167 - BLEEDING-EDGE MALWARE Possible Spyware -- Wise User Agent (bleeding-malware.rules)
 2002168 - BLEEDING-EDGE MALWARE Svcmm Parasite (bleeding-malware.rules)
 2002169 - BLEEDING-EDGE MALWARE iWon Spyware (bleeding-malware.rules)
 2002394 - BLEEDING-EDGE MALWARE Adwave/MarketScore User Agent (bleeding-malware.rules)
 2002395 - BLEEDING-EDGE MALWARE Miva User Agent (bleeding-malware.rules)
 2002396 - BLEEDING-EDGE MALWARE Miva User Agent 2 (bleeding-malware.rules)
 2002397 - BLEEDING-EDGE MALWARE Precision Targeting User Agent (bleeding-malware.rules)
 2002398 - BLEEDING-EDGE MALWARE DelFin Project User Agent (bleeding-malware.rules)
 2002399 - BLEEDING-EDGE MALWARE DelFin Project User Agent 2 (bleeding-malware.rules)
 2002400 - BLEEDING-EDGE MALWARE Suspicious User Agent (bleeding-malware.rules)
 2002401 - BLEEDING-EDGE MALWARE Web Search User Agent 2 (bleeding-malware.rules)
 2002402 - BLEEDING-EDGE MALWARE Web Search User Agent 3 (bleeding-malware.rules)
 2002403 - BLEEDING-EDGE MALWARE Context Plus User Agent 2 (bleeding-malware.rules)
 2002404 - BLEEDING-EDGE MALWARE Movies etc User Agent (bleeding-malware.rules)
 2002405 - BLEEDING-EDGE MALWARE Internet Optimizer User Agent 2 (bleeding-malware.rules)
 2002407 - BLEEDING-EDGE POLICY WebshotsNetClient (bleeding-policy.rules)
 2002739 - BLEEDING-EDGE MALWARE iDownloadAgent Spyware User Agent (bleeding-malware.rules)
 2002807 - BLEEDING-EDGE MALWARE Spyaxe Spyware User Agent (bleeding-malware.rules)
 2002808 - BLEEDING-EDGE MALWARE Spyaxe Spyware User Agent 2 (bleeding-malware.rules)
 2002874 - BLEEDING-EDGE MALWARE Metafisher/Goldun z User Agent (bleeding-malware.rules)
 2002875 - BLEEDING-EDGE MALWARE Torpig/Anserin/Sinowal MSID User Agent (bleeding-malware.rules)
 2002876 - BLEEDING-EDGE MALWARE Small-EM/Divo/PassSickle User Agent (bleeding-malware.rules)
 2002877 - BLEEDING-EDGE MALWARE BankSnif/Nethelper User Agent (bleeding-malware.rules)
 2002970 - BLEEDING-EDGE MALWARE VB WinHTTP User Agent -- Possible Malware (bleeding-malware.rules)
 2003045 - BLEEDING-EDGE POLICY Real.com Game Arcade Install (User agent) (bleeding-policy.rules)
 2003062 - BLEEDING-EDGE MALWARE 180 Solutions (Zango Installer) User Agent (bleeding-malware.rules)
 2400000 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound (bleeding-drop.rules)
 2400001 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound (bleeding-drop.rules)
 2400002 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound (bleeding-drop.rules)
 2400003 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound (bleeding-drop.rules)
 2400004 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound (bleeding-drop.rules)
 2401000 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (bleeding-drop-BLOCK.rules)
 2401001 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (bleeding-drop-BLOCK.rules)
 2401002 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (bleeding-drop-BLOCK.rules)
 2401003 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (bleeding-drop-BLOCK.rules)
 2401004 - BLEEDING-EDGE DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (bleeding-drop-BLOCK.rules)


[///]    Modified inactive rules:    [///]

 2001866 - BLEEDING-EDGE MALWARE Smartpops/Mediaload Spyware User Agent (bleeding-malware.rules)
 2002077 - BLEEDING-EDGE Malware IEBar Spyware User Agent Activity (bleeding-malware.rules)
 2002162 - BLEEDING-EDGE MALWARE CoolWebSearch Spyware (SCAgent) (bleeding-malware.rules)
 2002873 - BLEEDING-EDGE MALWARE Torpig/Anserin/Sinowal User Agent (bleeding-malware.rules)


[---]         Removed rules:         [---]

 2002311 - BLEEDING-EDGE User-Agent String (bleeding-malware.rules)


[---]     Removed non-rule lines:    [---]

     -> Removed from bleeding-sid-msg.map (1):
        2002311 || BLEEDING-EDGE User-Agent String





More information about the Snort-sigs mailing list