Emerging Threats

  • Increase font size
  • Default font size
  • Decrease font size

Weekly New Signatures July 12 2008

Saturday, 19 July 2008 14:44 Matt Jonkman
E-mail Print PDF

 

 

2008402 - ET MALWARE Realtimegaming.com Online Casino Spyware Gaming Checkin (emerging-malware.rules)
2008403 - ET MALWARE Realtimegaming.com/Windows Casino Online Gaming Checkin (emerging-malware.rules)
2008405 - ET TROJAN Obitel trojan calling home (emerging-virus.rules)
2008406 - ET POLICY RemoteSpy.com Upload Detect (emerging-policy.rules)
2008407 - ET CURRENT_EVENTS Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download (1) (emerging.rules)
2008408 - ET CURRENT_EVENTS Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download (2) (emerging.rules)
2008409 - ET CURRENT_EVENTS Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download (3) (emerging.rules)
2008411 - ET TROJAN LDPinch SMTP Password Report with mail client The Bat! (emerging-virus.rules)
2008412 - ET TROJAN Trojan-Dropper.Win32.Small.avu HTTP Checkin (emerging-virus.rules)
2008413 - ET MALWARE Suspicious User-Agent (PcPcUpdater) (emerging-malware.rules)
2008414 - ET SCAN Cisco Torch TFTP Scan (emerging-scan.rules)
2008415 - ET SCAN Cisco Torch IOS HTTP Scan (emerging-scan.rules)
2008416 - ET SCAN Httprint Web Server Fingerprint Scan (emerging-scan.rules)
2008417 - ET SCAN Wapiti Web Server Scan (emerging-scan.rules)
2008418 - ET POLICY Metasploit Framework Update (emerging-policy.rules)
2008419 - ET MALWARE Advert-network.com Related Spyware Updating (emerging-malware.rules)
2008420 - ET TROJAN HTTP GET Request on port 53 -- Very Likely Hostile (emerging-virus.rules)
2008421 - ET TROJAN HTTP POST Request on port 53 -- Very Likely Hostile (emerging-virus.rules)
2008422 - ET MALWARE Suspicious User-Agent (Inet_read) (emerging-malware.rules)
2008423 - ET MALWARE Suspicious User-Agent (CFS Agent) (emerging-malware.rules)
2008424 - ET MALWARE Suspicious User-Agent (CFS_DOWNLOAD) (emerging-malware.rules)
2008425 - ET MALWARE Advert-network.com Related Spyware Checking for Updates (emerging-malware.rules)
2008426 - ET EXPLOIT SecurityGateway 1.0.1 Remote Buffer Overflow (emerging-exploit.rules)
2008427 - ET MALWARE Suspicious User-Agent (AdiseExplorer) (emerging-malware.rules)
2008428 - ET MALWARE Suspicious User-Agent (HTTP Downloader) (emerging-malware.rules)
2008429 - ET MALWARE Suspicious User-Agent (HttpDownload) (emerging-malware.rules)
2008430 - ET TROJAN Win32.Dialer.buv Sending Information Home (emerging-virus.rules)
2008431 - ET TROJAN PWS.Gamania Checkin (emerging-virus.rules)
2008433 - ET TROJAN Pandex checkin detected (emerging-virus.rules)
2008434 - ET TROJAN Coreflood/AFcore Trojan Infection (emerging-virus.rules)
2008435 - ET TROJAN Win32.Testlink Trojan Speed Test Start port 8888 (emerging-virus.rules)
2008436 - ET TROJAN Win32.Testlink Trojan Speed Test port 8888 (emerging-virus.rules)
2008437 - ET TROJAN Win32.Testlink Trojan Checkin port 8888 (emerging-virus.rules)
2008438 - ET MALWARE Possible Windows executable sent when remote host claims to send a Text File (emerging-malware.rules)
2008439 - ET WEB_SQL_INJECTION AlstraSoft Affiliate Network Pro (pgm) Parameter SQL Injection (emerging-web_sql_injection.rules)
2008440 - ET MALWARE Suspicious User-Agent (Download App) (emerging-malware.rules)
2008441 - ET TROJAN Win32 Dialer Variant (emerging-virus.rules)
2008442 - ET TROJAN Rootkit.Win32.Clbd.cz Checkin (emerging-virus.rules)
2008443 - ET TROJAN Coreflood/AFcore Trojan Infection (2) (emerging-virus.rules)
2008444 - ET EXPLOIT PWDump4 Password dumping exe copied to victim (emerging-exploit.rules)
2008445 - ET EXPLOIT Pwdump6 Session Established test file created on victim (emerging-exploit.rules)
2008446 - ET EXPLOIT Fgdump Session Established test file created created on victim (emerging-exploit.rules)
2008447 - ET EXPLOIT Foofus.net Password dumping, dll injection (emerging-exploit.rules)
2008449 - ET TROJAN Keylogger.ane Checkin (emerging-virus.rules)


[///] Modified active rules: [///]

2002400 - ET MALWARE Suspicious User Agent (Microsoft Internet Explorer) (emerging-malware.rules)
2003243 - ET MALWARE Suspicious User Agent (Download Agent) Possibly Related to TrinityAcquisitions.com (emerging-malware.rules)
2003497 - ET MALWARE Suspicious User-Agent (ms) (emerging-malware.rules)
2007594 - ET TROJAN Banker.Delf User-Agent (Mz/MzApp) (emerging-virus.rules)
2007930 - ET TROJAN Delf/Hupigon C&C Channel Version Report (emerging-virus.rules)
2008100 - ET TROJAN PRG/wnspoem/Zeus InfoStealer Trojan Config Download (emerging-virus.rules)
2008260 - ET TROJAN Pointpack.kr Related Trojan Checkin (emerging-virus.rules)
2008374 - ET MALWARE Suspicious User-Agent (InetURL) (emerging-malware.rules)
2008378 - ET MALWARE Suspicious User-Agent (ErrCode) (emerging-malware.rules)
2008391 - ET MALWARE Suspicious User-Agent (svchost) (emerging-malware.rules)

 2008400 - ET MALWARE Suspicious User-Agent (ReadFileURL) (emerging-malware.rules)

 

 

< Prev   Next >
Last Updated ( Saturday, 19 July 2008 14:44 )  

Funded!
Emerging Threats has been grant funded! We're here to stay for the long term!