[+++] Added rules: [+++]
2008802 - ET TROJAN Possible Downadup/Conficker-A Worm Activity (emerging-virus.rules)
2008803 - ET TROJAN Possible Downadup/Conficker-A Infection Checking Geographical Location (emerging-virus.rules)
2009024 - ET TROJAN Downadup/Conficker A or B Worm reporting (emerging-virus.rules)
2009114 - ET TROJAN Downadup/Conficker A Worm reporting (emerging-virus.rules)
2009200 - ET TROJAN Conficker.a Shellcode (emerging-virus.rules)
2009201 - ET TROJAN Conficker.b Shellcode (emerging-virus.rules)
2009205 - ET TROJAN Possible Downadup/Conficker-C P2P encrypted traffic UDP Ping Packet (bit value 1) (emerging-virus.rules)
2009206 - ET TROJAN Possible Downadup/Conficker-C P2P encrypted traffic UDP Ping Packet (bit value 4) (emerging-virus.rules)
2009207 - ET TROJAN Possible Downadup/Conficker-C P2P encrypted traffic UDP Ping Packet (bit value 5) (emerging-virus.rules)
2009208 - ET TROJAN Possible Downadup/Conficker-C P2P encrypted traffic UDP Ping Packet (bit value 16) (emerging-virus.rules)
2009810 - ET TROJAN Swizzor-based Downloader - Invalid User-Agent (Mozilla/4.0 (compatible\; MSIE 7.0\; na\; .NET CLR 2.0.50727\; .NET CLR 3.0.4506.2152\; .NET CLR 3.5.30729)) (emerging-virus.rules)
2009811 - ET TROJAN KillAV/Dropper/Mdrop/Hupigon - HTTP GET (emerging-virus.rules)
2009812 - ET TROJAN AVKiller with Backdoor checkin - HTTP POST (emerging-virus.rules)
2009813 - ET TROJAN Trojan.MyDNS DNSChanger - HTTP POST (emerging-virus.rules)
2009814 - ET TROJAN Downloader (Win32.Doneltart) Checkin - HTTP GET (emerging-virus.rules)
2009815 - ET WEB Attempt To Access MSSQL xp_cmdshell Stored Procedure Via URI (emerging-web.rules)
2009816 - ET WEB Attempt To Access MSSQL xp_servicecontrol Stored Procedure Via URI (emerging-web.rules)
2009817 - ET WEB Attempt To Access MSSQL sp_adduser Stored Procedure Via URI to Create New Database User (emerging-web.rules)
2009818 - ET WEB Attempt To Access MSSQL xp_regread/xp_regwrite/xp_regdeletevalue/xp_regdeletekey Stored Procedure Via URI to Modify Registry (emerging-web.rules)
2009819 - ET WEB Attempt To Access MSSQL xp_fileexist Stored Procedure Via URI to Locate Files On Disk (emerging-web.rules)
2009820 - ET WEB Attempt To Access MSSQL xp_enumerrorlogs Stored Procedure Via URI to View Error Logs (emerging-web.rules)
2009822 - ET WEB Attempt To Access MSSQL xp_readerrorlogs Stored Procedure Via URI to View Error Logs (emerging-web.rules)
2009823 - ET WEB Attempt To Access MSSQL xp_enumdsn Stored Procedure Via URI to View Database Source Name (emerging-web.rules)
2009824 - ET TROJAN Downloader.Win32.Delf followon POST Data PUSH Packet (emerging-virus.rules)
2009825 - ET TROJAN Win32.VB.tdq - Fake User-Agent (emerging-virus.rules)
2009826 - ET TROJAN Generic Backdoor Retrieve Instructions/Configs - HTTP GET (emerging-virus.rules)
2009827 - ET SCAN Pavuk User Agent Detected - Website Mirroring Tool for Off-line Analysis (emerging-scan.rules)
2009828 - ET EXPLOIT Possible IIS FTP Exploit attempt - Large SITE command (emerging-exploit.rules)
2009829 - ET TROJAN Virut/Virutas/Virtob/QQHelper Dropper Family - HTTP GET (emerging-virus.rules)
2009830 - ET TROJAN Unknown Web Bot checkin Possible Bruteforcer for Web Forms and Accounts - HTTP POST (emerging-virus.rules)
2009831 - ET MALWARE Topgame-online.com Ruch Casino Install User-Agent (RichCasino) (emerging-malware.rules)
2009832 - ET SCAN NETBIOS DCERPC rpcmgmt ifids Unauthenticated BIND (emerging-scan.rules)
2009833 - ET SCAN WITOOL SQL Injection Scan (emerging-scan.rules)
2009834 - ET WEB_SPECIFIC Joomla portalid Component UNION SELECT SQL Injection (emerging-web_sql_injection.rules)
2009835 - ET WEB_SPECIFIC Joomla portalid Component SELECT FROM SQL Injection (emerging-web_sql_injection.rules)
2009836 - ET WEB_SPECIFIC Joomla portalid Component DELETE FROM SQL Injection (emerging-web_sql_injection.rules)
2009837 - ET SCAN OWASP Joomla Vulnerability Scanner Detected (emerging-scan.rules)
2009838 - ET WEB_SPECIFIC WB News search.php config Parameter Remote File Inclusion (emerging-web_sql_injection.rules)
2009839 - ET WEB_SPECIFIC WB News archive.php config Parameter Remote File Inclusion -1 (emerging-web_sql_injection.rules)
2009840 - ET WEB_SPECIFIC WB News Archive.php config Parameter Remote File Inclusion -2 (emerging-web_sql_injection.rules)
2009841 - ET WEB_SPECIFIC WB News comments.php config Parameter Remote File Inclusion -1 (emerging-web_sql_injection.rules)
2009842 - ET WEB_SPECIFIC WB News Comments.php config Parameter Remote File Inclusion -2 (emerging-web_sql_injection.rules)
2009843 - ET WEB_SPECIFIC WB News news.php config Parameter Remote File Inclusion -1 (emerging-web_sql_injection.rules)
2009844 - ET WEB_SPECIFIC WB News News.php config Parameter Remote File Inclusion -2 (emerging-web_sql_injection.rules)
2009845 - ET WEB_SPECIFIC WB News SendFriend.php config Parameter Remote File Inclusion (emerging-web_sql_injection.rules)
2009846 - ET WEB_SPECIFIC WB News global.php config Parameter Remote File Inclusion (emerging-web_sql_injection.rules)
2009847 - ET WEB_ACTIVEX Symantec Security Check RuFSI ActiveX Control Buffer Overflow (emerging-web.rules)
2009848 - ET WEB_SPECIFIC Dragoon header.inc.php root Parameter Remote File Inclusion (emerging-web_sql_injection.rules)
2009849 - ET WEB_SPECIFIC Flash Quiz num_questions.php quiz Parameter SQL Injection (emerging-web_sql_injection.rules)
2009850 - ET WEB_SPECIFIC Flash Quiz answers.php quiz Parameter SQL Injection (emerging-web_sql_injection.rules)
2009851 - ET WEB_SPECIFIC Flash Quiz answers.php order_number Parameter SQL Injection (emerging-web_sql_injection.rules)
2009852 - ET WEB_SPECIFIC Flash Quiz high_score_web.php quiz Parameter SQL Injection (emerging-web_sql_injection.rules)
2009853 - ET WEB_SPECIFIC Flash Quiz results_table_web.php quiz Parameter SQL Injection (emerging-web_sql_injection.rules)
2009854 - ET WEB_SPECIFIC Flash Quiz question.php quiz Parameter SQL Injection (emerging-web_sql_injection.rules)
2009855 - ET WEB_SPECIFIC Flash Quiz question.php order_number Parameter SQL Injection (emerging-web_sql_injection.rules)
2009856 - ET WEB_SPECIFIC Flash Quiz high_score.php quiz Parameter SQL Injection (emerging-web_sql_injection.rules)
2009857 - ET WEB_ACTIVEX Awingsoft Web3D Player Remote Buffer Overflow (emerging-web.rules)
2009858 - ET WEB_ACTIVEX Possible PPStream MList.ocx Buffer Overflow Attempt (emerging-web.rules)
2009860 - ET Exploit IIS FTP Exploit - NLST Globbing Exploit (emerging-exploit.rules)
2009861 - ET MALWARE ErrorNuker FakeAV User-Agent (ERRN2004 (Windows XP)) (emerging-malware.rules)
2009862 - ET TROJAN Banker Trojan CnC AddNew Command (emerging-virus.rules)
2009863 - ET TROJAN Banker Trojan CnC Hello Command (emerging-virus.rules)
2009864 - ET TROJAN Banker Trojan CnC Server Ping (emerging-virus.rules)
2009865 - ET TROJAN Unknown CnC Channel Keep Alive (emerging-virus.rules)
2009866 - ET TROJAN Unknown CnC Channel Keep Alive Server Response (emerging-virus.rules)
2009867 - ET MALWARE Suspicious User-Agent (Mozilla/3.0 (compatible)) (emerging-malware.rules)
2404025 - ET DROP Known Bot C&C Server Traffic (group 26) (emerging-botcc.rules)
2405025 - ET DROP Known Bot C&C Traffic (group 26) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
[///] Modified active rules: [///]
2007829 - ET TROJAN Illusion Bot (Lussilon) Checkin (emerging-virus.rules)
2009781 - ET MALWARE Generic Downloader/Dropper Suspious User-Agent (Mtune) - GET (emerging-malware.rules)
2009782 - ET MALWARE Generic Downloader/Dropper Suspious User-Agent (InPost) - GET (emerging-malware.rules)
2009783 - ET MALWARE RubyFortune Spyware Capabilities User-Agent (Microgaming Install Program) - GET (emerging-malware.rules)
2009784 - ET MALWARE Generic Downloader\/Dropper with Rootkit User-Agent \(INT\) - GET (emerging-malware.rules)
2009785 - ET MALWARE QVOD Related Spyware/Malware User-Agent (QvodDown) - GET (emerging-malware.rules)
2009786 - ET WEB_SPECIFIC Bitweaver boards_rss.php version Parameter Directory Traversal (emerging-web_sql_injection.rules)
2009787 - ET WEB_SPECIFIC Community CMS view.php article_id Parameter SQL Injection (emerging-web_sql_injection.rules)
2009788 - ET WEB_SPECIFIC RSS-aggregator display.php path Parameter Remote File Inclusion (emerging-web_sql_injection.rules)
2009789 - ET WEB_SPECIFIC TinyButStrong bs_us_examples_0view.php script Parameter Local File Inclusion (emerging-web_sql_injection.rules)
2009790 - ET WEB_SPECIFIC beLive arch.php arch Parameter Local File Inclusion (emerging-web_sql_injection.rules)
2009791 - ET WEB_SPECIFIC GS Real Estate Portal email.php AgentID Parameter SQL Injection (emerging-web_sql_injection.rules)
2009792 - ET WEB_ACTIVEX Avax Vector avPreview.ocx ActiveX Control Buffer Overflow (emerging-web.rules)
2009793 - ET WEB_SPECIFIC PHP Crawler footer.php footer_file Parameter Remote File Inclusion (emerging-web_sql_injection.rules)
2009794 - ET WEB_SPECIFIC VidShare Pro listing_video.php catid Parameter SQL Injection (emerging-web_sql_injection.rules)
2009795 - ET WEB_SPECIFIC Dog Pedigree Online Database managePerson.php personId Parameter SQL Injection (emerging-web_sql_injection.rules)
2009796 - ET MALWARE FakeAV Windows Protection Suite/ReleaseXP.exe User-Agent (Releasexp) (emerging-malware.rules)
2009797 - ET TROJAN Bifrose Response from victim (emerging-virus.rules)
2009798 - ET POLICY Carbonite Online Backup SSL Handshake (emerging-policy.rules)
2009800 - ET POLICY Carbonite.com Backup Software Leaking MAC Address (emerging-policy.rules)
2009801 - ET POLICY Carbonite.com Backup Software User-Agent (Carbonite Installer) (emerging-policy.rules)
2009803 - ET TROJAN Downloader Generic - GET (emerging-virus.rules)
2009804 - ET TROJAN Screenblaze SCR Related Backdoor - GET (emerging-virus.rules)
2009805 - ET TROJAN Luder.B User-Agent (Mozilla/4.0 (SPGK)) - GET (emerging-virus.rules)
2009806 - ET TROJAN Poisionivy RAT/Backdoor follow on POST Data PUSH Packet (emerging-virus.rules)
2009807 - ET MALWARE 2020search/PowerSearch Toolbar Adware/Spyware - GET (emerging-malware.rules)
2009808 - ET TROJAN Win32.Virut - GET (emerging-virus.rules)
2009809 - ET TROJAN Generic/Unknown Downloader Config to client (emerging-virus.rules)
