[***] Results from Oinkmaster started Sat Oct 6 00:00:22 2007 [***]
[///] Modified active rules: [///]
2006398 - BLEEDING-EDGE TROJAN Socks666 Checkin Packet (bleeding-virus.rules)
[+++] Added non-rule lines: [+++]
-> Added to bleeding-sid-msg.map (5):
2006398 || BLEEDING-EDGE TROJAN Socks666 Checkin Packet ||
url,doc.bleedingthreats.net/2006396
2500525 || BLEEDING-EDGE COMPROMISED Known Compromised or Hostile Host
Traffic (526) || url,doc.bleedingthreats.net/bin/view/Main/CompromisedHosts
2500526 || BLEEDING-EDGE COMPROMISED Known Compromised or Hostile Host
Traffic (527) || url,doc.bleedingthreats.net/bin/view/Main/CompromisedHosts
2510525 || BLEEDING-EDGE COMPROMISED Known Compromised or Hostile Host
Traffic - BLOCKING (526) ||
url,doc.bleedingthreats.net/bin/view/Main/CompromisedHosts
2510526 || BLEEDING-EDGE COMPROMISED Known Compromised or Hostile Host
Traffic - BLOCKING (527) ||
url,doc.bleedingthreats.net/bin/view/Main/CompromisedHosts
[---] Removed non-rule lines: [---]
-> Removed from bleeding-sid-msg.map (1):
2006398 || BLEEDING-EDGE ROJAN Socks666 Checkin Packet ||
url,doc.bleedingthreats.net/2006396
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
