Generated by : ../snort_rule_urlchecker version Thu Dec 1 22:06:24 PST 2005

Which may be found at http://www.grotto-group.com/~gulfie/projects... maybe

./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map Fri Dec 2 00:58:04 2005
Filename : line Rules
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1 2000004 || BLEEDING-EDGE EXPLOIT Microsoft MHTML URL Redirection Attempt || url,www.microsoft.com/technet/security/bulletin/MS04-013.mspx || cve,CAN-2004-0380
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 2 2000005 || BLEEDING-EDGE EXPLOIT Cisco Telnet Buffer Overflow || url,www.cisco.com/warp/public/707/cisco-sn-20040326-exploits.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 3 2000006 || BLEEDING-EDGE DOS Cisco Router HTTP DoS || url,www.cisco.com/warp/public/707/cisco-sn-20040326-exploits.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 4 2000007 || BLEEDING-EDGE EXPLOIT Catalyst SSH protocol mismatch || url,www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 5 2000008 || BLEEDING-EDGE EXPLOIT Catalyst 3500 arbitrary command || url,www.securityfocus.com/archive/1/141471
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 6 2000009 || BLEEDING-EDGE EXPLOIT Cisco IOS HTTP DoS || url,www.cisco.com/warp/public/707/ioshttpserverquery-pub.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 7 2000010 || BLEEDING-EDGE DOS Cisco 514 UDP flood DoS || url,www.cisco.com/warp/public/707/IOS-cbac-dynacl-pub.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 8 2000011 || BLEEDING-EDGE DOS Catalyst memory leak attack || url,www.cisco.com/en/US/products/products_security_advisory09186a00800b138e.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 9 2000012 || BLEEDING-EDGE EXPLOIT Cisco %u IDS evasion
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 10 2000013 || BLEEDING-EDGE EXPLOIT Cisco IOS HTTP server DoS
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 11 2000014 || BLEEDING-EDGE VIRUS Agobot/Phatbot Infection Successful || url,www.lurhq.com/phatbot.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 12 2000015 || BLEEDING-EDGE P2P Phatbot Control Connection || url,www.lurhq.com/phatbot.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 13 2000016 || BLEEDING-EDGE DOS SSL Bomb DoS Attempt || url,www.microsoft.com/technet/security/bulletin/MS04-011.mspx || cve,CAN-2004-0120
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 14 2000017 || BLEEDING-EDGE EXPLOIT NII Microsoft ASN.1 Library Buffer Overflow Exploit || url,www.microsoft.com/technet/security/bulletin/ms04-007.asp
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 15 2000024 || BLEEDING-EDGE Malware rcprograms || url,sarc.com/avcenter/venc/data/adware.rcprograms.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 16 2000025 || BLEEDING-EDGE Malware Gator Cookie || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 17 2000026 || BLEEDING-EDGE Malware Gator Agent Traffic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 18 2000031 || BLEEDING-EDGE EXPLOIT CVS server heap overflow attempt (target BSD)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 19 2000032 || BLEEDING-EDGE EXPLOIT LSA exploit || url,www.upenn.edu/computing/virus/04/w32.sasser.worm.html || url,www.eeye.com/html/research/advisories/AD20040501.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 19 2000032 || BLEEDING-EDGE EXPLOIT LSA exploit || url,www.upenn.edu/computing/virus/04/w32.sasser.worm.html || url,www.eeye.com/html/research/advisories/AD20040501.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 20 2000033 || BLEEDING-EDGE EXPLOIT MS04011 Lsasrv.dll RPC exploit (WinXP)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 21 2000035 || BLEEDING-EDGE Hotmail Inbox Access
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 22 2000036 || BLEEDING-EDGE Hotmail Message Access
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 23 2000037 || BLEEDING-EDGE Hotmail Compose Message Access
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 24 2000038 || BLEEDING-EDGE Hotmail Compose Message Submit
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 25 2000039 || BLEEDING-EDGE Hotmail Compose Message Submit Data
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 26 2000040 || BLEEDING-EDGE VIRUS Sasser FTP Traffic || url,vil.mcafeesecurity.com/vil/content/Print125009.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 27 2000041 || BLEEDING-EDGE Yahoo Mail Inbox View
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 28 2000042 || BLEEDING-EDGE Yahoo Mail Message View
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 29 2000043 || BLEEDING-EDGE Yahoo Mail Message Compose Open
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 30 2000044 || BLEEDING-EDGE Yahoo Mail Message Send
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 31 2000045 || BLEEDING-EDGE Yahoo Mail Message Send Info Capture
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 32 2000046 || BLEEDING-EDGE EXPLOIT MS04011 Lsasrv.dll RPC exploit (Win2k)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 33 2000047 || BLEEDING-EDGE VIRUS Sasser Transfer _up.exe || url,vil.mcafeesecurity.com/vil/content/Print125009.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 34 2000048 || BLEEDING-EDGE EXPLOIT CVS server heap overflow attempt (target Linux)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 35 2000049 || BLEEDING-EDGE EXPLOIT CVS server heap overflow attempt (target Solaris)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 36 2000306 || BLEEDING-EDGE Malware Virtumonde Spyware siae3123.exe GET || url,sarc.com/avcenter/venc/data/adware.virtumonde.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 37 2000307 || BLEEDING-EDGE Malware Virtumonde Spyware siae3123.exe GET (8081) || url,sarc.com/avcenter/venc/data/adware.virtumonde.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 38 2000308 || BLEEDING-EDGE Malware Virtumonde Spyware Information Post || url,sarc.com/avcenter/venc/data/adware.virtumonde.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 39 2000309 || BLEEDING-EDGE GotoMyPC Polling Client
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 40 2000310 || BLEEDING-EDGE VIRUS Probable Zafi VIRUS Outbound via SMTP || url,securityresponse.symantec.com/avcenter/venc/data/w32.erkez.a@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 41 2000327 || BLEEDING-EDGE MALWARE Spyware 2020 || url,securityresponse.symantec.com/avcenter/venc/data/spyware.2020search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 42 2000328 || BLEEDING-EDGE POLICY Outbound Multiple Non-SMTP Server Emails
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 43 2000329 || BLEEDING-EDGE EXPLOIT mIRC <=6.12 DCC Buffer Overflow || bugtraq,8880
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 44 2000330 || BLEEDING-EDGE P2P ed2k connection to server || url,www.giac.org/practical/GCIH/Ian_Gosling_GCIH.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 45 2000331 || BLEEDING-EDGE P2P ed2k file search || url,www.giac.org/practical/GCIH/Ian_Gosling_GCIH.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 46 2000332 || BLEEDING-EDGE P2P ed2k request part || url,www.giac.org/practical/GCIH/Ian_Gosling_GCIH.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 47 2000333 || BLEEDING-EDGE P2P ed2k file request answer || url,www.giac.org/practical/GCIH/Ian_Gosling_GCIH.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 48 2000334 || BLEEDING-EDGE P2P BitTorrent peer sync || url,bitconjurer.org/BitTorrent/protocol.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 49 2000335 || BLEEDING-EDGE P2P Overnet Server Announce || url,www.overnet.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 50 2000336 || BLEEDING-EDGE Malware Yesadvertising Banking Spyware RETRIEVE || url,isc.sans.org/presentations/banking_malware.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 51 2000337 || BLEEDING-EDGE Malware Yesadvertising Banking Spyware INFORMATION SUBMIT || url,isc.sans.org/presentations/banking_malware.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 52 2000338 || BLEEDING-EDGE P2P iroffer IRC Bot help message || url,iroffer.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 53 2000339 || BLEEDING-EDGE P2P iroffer IRC Bot offered files advertisement || url,iroffer.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 54 2000340 || BLEEDING-EDGE P2P Kaaza Media desktop p2pnetworking.exe Activity || url,www.giac.org/practical/GCIH/Ian_Gosling_GCIH.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 55 2000341 || BLEEDING-EDGE Yahoo Mail General Page View
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 56 2000342 || BLEEDING-EDGE EXPLOIT Squid NTLM Auth Overflow Exploit || cve,CAN-2004-0541 || url,www.idefense.com/application/poi/display?id=107
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 57 2000343 || BLEEDING-EDGE VIRUS Possible Evaman Worm Outbound || url,secunia.com/virus_information/10429/evaman
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 58 2000345 || BLEEDING-EDGE ATTACK RESPONSE IRC - Nick change on non-std port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 59 2000346 || BLEEDING-EDGE ATTACK RESPONSE IRC - Name response on non-std port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 60 2000347 || BLEEDING-EDGE ATTACK RESPONSE IRC - Private message on non-std port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 61 2000348 || BLEEDING-EDGE ATTACK RESPONSE IRC - Channel JOIN on non-std port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 62 2000349 || BLEEDING-EDGE ATTACK RESPONSE IRC - DCC file transfer request on non-std port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 63 2000350 || BLEEDING-EDGE ATTACK RESPONSE IRC - DCC chat request on non-std port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 64 2000351 || BLEEDING-EDGE ATTACK RESPONSE IRC - channel join on non-std port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 65 2000352 || BLEEDING-EDGE ATTACK RESPONSE IRC - dns request on non-std port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 66 2000355 || BLEEDING-EDGE POLICY IRC authorization message
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 67 2000356 || BLEEDING-EDGE POLICY IRC connection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 68 2000357 || BLEEDING-EDGE P2P BitTorrent Traffic || url,bitconjurer.org/BitTorrent/protocol.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 69 2000365 || BLEEDING-EDGE VIRUS Psyme Trojan Download || url,securityresponse.symantec.com/avcenter/venc/data/downloader.psyme.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 70 2000366 || BLEEDING-EDGE MALWARE Binet (download complete) || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 71 2000367 || BLEEDING-EDGE MALWARE Binet (set_pix) || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 72 2000369 || BLEEDING-EDGE P2P BitTorrent Announce || url,bitconjurer.org/BitTorrent/protocol.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 73 2000371 || BLEEDING-EDGE MALWARE Binet (randreco.exe) || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 74 2000372 || BLEEDING-EDGE EXPLOIT MS-SQL SQL Injection running SQL statements line comment || url,www.securitymap.net/sdm/docs/windows/mssql-checklist.html || url,www.nextgenss.com/papers/more_advanced_sql_injection.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 74 2000372 || BLEEDING-EDGE EXPLOIT MS-SQL SQL Injection running SQL statements line comment || url,www.securitymap.net/sdm/docs/windows/mssql-checklist.html || url,www.nextgenss.com/papers/more_advanced_sql_injection.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 75 2000373 || BLEEDING-EDGE EXPLOIT MS-SQL SQL Injection line comment || url,www.securitymap.net/sdm/docs/windows/mssql-checklist.html || url,www.nextgenss.com/papers/more_advanced_sql_injection.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 75 2000373 || BLEEDING-EDGE EXPLOIT MS-SQL SQL Injection line comment || url,www.securitymap.net/sdm/docs/windows/mssql-checklist.html || url,www.nextgenss.com/papers/more_advanced_sql_injection.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 76 2000377 || BLEEDING-EDGE EXPLOIT MS-SQL heap overflow attempt || url,www.nextgenss.com/papers/tp-SQL2000.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 77 2000378 || BLEEDING-EDGE EXPLOIT MS-SQL DOS attempt (08) || url,www.nextgenss.com/papers/tp-SQL2000.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 78 2000379 || BLEEDING-EDGE EXPLOIT MS-SQL DOS attempt (08) 1 byte || url,www.nextgenss.com/papers/tp-SQL2000.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 79 2000380 || BLEEDING-EDGE EXPLOIT MS-SQL Spike buffer overflow || bugtraq,5411
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 80 2000381 || BLEEDING-EDGE EXPLOIT MS-SQL DOS bouncing packets || url,www.nextgenss.com/papers/tp-SQL2000.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 81 2000418 || BLEEDING-EDGE Executable and linking format (ELF) file download || url,www.itee.uq.edu.au/~cristina/students/david/honoursThesis96/bff.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 82 2000419 || BLEEDING-EDGE PE EXE or DLL Windows file download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 83 2000420 || BLEEDING-EDGE REG files version 4 download || url,www.ss64.com/nt/regedit.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 84 2000421 || BLEEDING-EDGE REG files version 5 download || url,www.ss64.com/nt/regedit.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 85 2000422 || BLEEDING-EDGE REG files version 5 Unicode download || url,www.ss64.com/nt/regedit.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 86 2000423 || BLEEDING-EDGE NE EXE OS2 file download || url,www.itee.uq.edu.au/~cristina/students/david/honoursThesis96/bff.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 87 2000424 || BLEEDING-EDGE LX EXE OS2 file download || url,www.itee.uq.edu.au/~cristina/students/david/honoursThesis96/bff.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 88 2000425 || BLEEDING-EDGE NE EXE Windows 3.x file download || url,www.itee.uq.edu.au/~cristina/students/david/honoursThesis96/bff.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 89 2000426 || BLEEDING-EDGE EXE compressed PKWARE Windows file download || url,www.program-transformation.org/Transform/PcExeFormat
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 90 2000427 || BLEEDING-EDGE PE EXE Install Windows file download || url,www.program-transformation.org/Transform/PcExeFormat
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 91 2000428 || BLEEDING-EDGE ZIP file download || url,zziplib.sourceforge.net/zzip-parse.print.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 92 2000429 || BLEEDING-EDGE Download Windows Help File CHM 2 || url,www.securiteam.com/windowsntfocus/6V00N000AU.html || url,www.speakeasy.org/~russotto/chm/chmformat.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 92 2000429 || BLEEDING-EDGE Download Windows Help File CHM 2 || url,www.securiteam.com/windowsntfocus/6V00N000AU.html || url,www.speakeasy.org/~russotto/chm/chmformat.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 93 2000488 || BLEEDING-EDGE EXPLOIT MS-SQL SQL Injection closing string plus line comment || url,www.securitymap.net/sdm/docs/windows/mssql-checklist.html || url,www.nextgenss.com/papers/more_advanced_sql_injection.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 93 2000488 || BLEEDING-EDGE EXPLOIT MS-SQL SQL Injection closing string plus line comment || url,www.securitymap.net/sdm/docs/windows/mssql-checklist.html || url,www.nextgenss.com/papers/more_advanced_sql_injection.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 94 2000489 || BLEEDING-EDGE Download Windows Help File CHM || url,www.securiteam.com/windowsntfocus/6V00N000AU.html || url,www.speakeasy.org/~russotto/chm/chmformat.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 94 2000489 || BLEEDING-EDGE Download Windows Help File CHM || url,www.securiteam.com/windowsntfocus/6V00N000AU.html || url,www.speakeasy.org/~russotto/chm/chmformat.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 95 2000494 || BLEEDING-EDGE VIRUS Possible Atak.mm Worm Outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.atak@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 96 2000496 || BLEEDING-EDGE DOS Microsoft SMS dos attempt || url,www.securityfocus.com/archive/1/368911/2004-07-12/2004-07-18/0
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 97 2000499 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access COM1
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 98 2000500 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access COM2
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 99 2000501 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access COM3
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 100 2000502 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access COM4
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 101 2000503 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access LPT1
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 102 2000504 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access LPT2
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 103 2000505 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access LPT3
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 104 2000506 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access LPT4
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 105 2000507 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access AUX
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 106 2000508 || BLEEDING-EDGE ATTACK RESPONSE FTP inaccessible directory access NULL
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 107 2000514 || BLEEDING-EDGE IE homepage hijacking || url,www.geek.com/news/geeknews/2004Jun/gee20040610025522.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 108 2000519 || BLEEDING-EDGE shell browser vulnerability W9x/XP || url,www.packetfocus.com/shell_exploit.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 109 2000520 || BLEEDING-EDGE shell browser vulnerability NT/2K || url,www.packetfocus.com/shell_exploit.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 110 2000536 || BLEEDING-EDGE SCAN NMAP -sO || arachnids,162
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 111 2000537 || BLEEDING-EDGE SCAN NMAP -sS || arachnids,162
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 112 2000538 || BLEEDING-EDGE SCAN NMAP -sA (1) || arachnids,162
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 113 2000540 || BLEEDING-EDGE SCAN NMAP -sA (2) || arachnids,162
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 114 2000543 || BLEEDING-EDGE SCAN NMAP -f -sF || arachnids,162
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 115 2000544 || BLEEDING-EDGE SCAN NMAP -f -sN || arachnids,162
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 116 2000545 || BLEEDING-EDGE SCAN NMAP -f -sS || arachnids,162
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 117 2000546 || BLEEDING-EDGE SCAN NMAP -f -sX || arachnids,162
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 118 2000547 || BLEEDING-EDGE HTTP CONNECT Tunnel
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 119 2000548 || BLEEDING-EDGE HTTP CONNECT Tunnel
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 120 2000549 || BLEEDING-EDGE HTTP CONNECT Tunnel
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 121 2000550 || BLEEDING-EDGE HTTP CONNECT Tunnel
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 122 2000559 || BLEEDING-EDGE THCIISLame IIS SSL Exploit Attempt || url,isc.sans.org/diary.php?date=2004-07-17 || url,www.thc.org/exploits/THCIISSLame.c
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 122 2000559 || BLEEDING-EDGE THCIISLame IIS SSL Exploit Attempt || url,isc.sans.org/diary.php?date=2004-07-17 || url,www.thc.org/exploits/THCIISSLame.c
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 123 2000560 || BLEEDING-EDGE HTTP CONNECT Tunnel Attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 124 2000561 || BLEEDING-EDGE VIRUS Possible Bagle.AI Worm Outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.ag@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 125 2000562 || BLEEDING-EDGE VIRUS OUTBOUND Suspicious Email Attachment
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 126 2000563 || BLEEDING-EDGE EXPLOIT Pwdump3e Password Hash Retrieval port 445
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 127 2000564 || BLEEDING-EDGE EXPLOIT Pwdump3e pwservice.exe Access port 445
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 128 2000565 || BLEEDING-EDGE EXPLOIT Pwdump3e Session Established Reg-Entry port 139
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 129 2000566 || BLEEDING-EDGE EXPLOIT Pwdump3e Session Established Reg-Entry port 445
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 130 2000567 || BLEEDING-EDGE EXPLOIT Pwdump3e pwservice.exe Access port 139
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 131 2000568 || BLEEDING-EDGE EXPLOIT Pwdump3e Password Hash Retrieval port 139
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 132 2000569 || BLEEDING-EDGE POLICY KitCo Kcast Ticker (agtray)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 133 2000570 || BLEEDING-EDGE POLICY KitCo Kcast Ticker (autray)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 134 2000571 || BLEEDING-EDGE AOL Webmail Message Send
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 135 2000572 || BLEEDING-EDGE AOL Webmail Login
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 136 2000574 || BLEEDING-EDGE MALWARE Bargain Buddy || url,www.doxdesk.com/parasite/BargainBuddy.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 137 2000575 || BLEEDING-EDGE ICMP PING IPTools || url,www.ks-soft.net/ip-tools.eng/index.htm || url,www.ks-soft.net/ip-tools.eng
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 137 2000575 || BLEEDING-EDGE ICMP PING IPTools || url,www.ks-soft.net/ip-tools.eng/index.htm || url,www.ks-soft.net/ip-tools.eng
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 138 2000577 || BLEEDING-EDGE Malware Popuptraffic.com Bot Reporting || url,popuptraffic.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 139 2000580 || BLEEDING-EDGE Malware Shop At Home Select.com Install Attempt || url,www.shopathomeselect.com || url,www.spywareguide.com/product_show.php?id=700
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 139 2000580 || BLEEDING-EDGE Malware Shop At Home Select.com Install Attempt || url,www.shopathomeselect.com || url,www.spywareguide.com/product_show.php?id=700
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 140 2000581 || BLEEDING-EDGE Malware Shop At Home Select.com Install Download || url,www.shopathomeselect.com || url,www.spywareguide.com/product_show.php?id=700
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 140 2000581 || BLEEDING-EDGE Malware Shop At Home Select.com Install Download || url,www.shopathomeselect.com || url,www.spywareguide.com/product_show.php?id=700
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 141 2000582 || BLEEDING-EDGE Malware F1Organizer Reporting
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 142 2000583 || BLEEDING-EDGE Malware Mindset Interactive Install (1) || url,www.mindsetinteractive.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 143 2000584 || BLEEDING-EDGE Malware Mindset Interactive Install (2) || url,www.mindsetinteractive.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 144 2000585 || BLEEDING-EDGE Malware F1Organizer Install Attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 145 2000586 || BLEEDING-EDGE Malware Ezula Related Calling Home || url,www.spyany.com/program/article_spw_rm_eZuLa.html || url,www.ezula.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 145 2000586 || BLEEDING-EDGE Malware Ezula Related Calling Home || url,www.spyany.com/program/article_spw_rm_eZuLa.html || url,www.ezula.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 146 2000587 || BLEEDING-EDGE Malware SpywareLabs VirtualBouncer Seeking Instructions || url,securityresponse.symantec.com/avcenter/venc/data/adware.virtualbouncer.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 147 2000588 || BLEEDING-EDGE Malware TopMoxie Reporting Data to External Host || url,www.topmoxie.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 148 2000589 || BLEEDING-EDGE Malware TopMoxie Retrieving Data (downloads) || url,www.topmoxie.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 149 2000590 || BLEEDING-EDGE Malware TopMoxie Retrieving Data (common) || url,www.topmoxie.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 150 2000593 || BLEEDING-EDGE MALWARE Binet Ad Retrieval || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 151 2000594 || BLEEDING-EDGE Malware Mindset Interactive Ad Retrieval || url,www.mindsetinteractive.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 152 2000595 || BLEEDING-EDGE Malware Gator Checkin || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 153 2000596 || BLEEDING-EDGE Malware Gator/Claria Data Submission || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 154 2000597 || BLEEDING-EDGE Malware Gator New Code Download || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 155 2000598 || BLEEDING-EDGE MALWARE Altnet PeerPoints Manager Data Submission || url,securityresponse.symantec.com/avcenter/venc/data/adware.topsearch.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 156 2000599 || BLEEDING-EDGE Malware Fun Web Products Install || url,www.funwebproducts.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 157 2000600 || BLEEDING-EDGE Malware MyWebSearch Toolbar Receiving Configuration
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 158 2000601 || BLEEDING-EDGE Malware Salongas Infection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 159 2000900 || BLEEDING-EDGE Malware JoltID Agent Probing or Announcing UDP || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 159 2000900 || BLEEDING-EDGE Malware JoltID Agent Probing or Announcing UDP || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 159 2000900 || BLEEDING-EDGE Malware JoltID Agent Probing or Announcing UDP || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 160 2000901 || BLEEDING-EDGE Malware JoltID Agent Communicating TCP || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 160 2000901 || BLEEDING-EDGE Malware JoltID Agent Communicating TCP || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 160 2000901 || BLEEDING-EDGE Malware JoltID Agent Communicating TCP || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 161 2000902 || BLEEDING-EDGE Malware MarketScore.com Spyware Configuration Access || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 161 2000902 || BLEEDING-EDGE Malware MarketScore.com Spyware Configuration Access || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 162 2000903 || BLEEDING-EDGE MALWARE Avres Agent Receiving Instructions || url,ar.avres.net/ie/updatenew/ || url,www.avres.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 162 2000903 || BLEEDING-EDGE MALWARE Avres Agent Receiving Instructions || url,ar.avres.net/ie/updatenew/ || url,www.avres.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 163 2000904 || BLEEDING-EDGE MALWARE Amex.Ipsrime.com Unknown Malware Download || url,www.isprime.com || url,amex.isprime.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 163 2000904 || BLEEDING-EDGE MALWARE Amex.Ipsrime.com Unknown Malware Download || url,www.isprime.com || url,amex.isprime.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 164 2000905 || BLEEDING-EDGE Malware FlashPoint Agent Retrieving New Code || url,www.flashpoint.bm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 165 2000906 || BLEEDING-EDGE MALWARE Altnet PeerPoints Manager Start || url,securityresponse.symantec.com/avcenter/venc/data/adware.topsearch.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 166 2000907 || BLEEDING-EDGE MALWARE Altnet PeerPoints Manager Settings Download || url,securityresponse.symantec.com/avcenter/venc/data/adware.topsearch.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 167 2000908 || BLEEDING-EDGE Malware WhenUClick.com App and Search Bar Install (1) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 167 2000908 || BLEEDING-EDGE Malware WhenUClick.com App and Search Bar Install (1) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 168 2000909 || BLEEDING-EDGE Malware WhenUClick.com App and Search Bar Install (2) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 168 2000909 || BLEEDING-EDGE Malware WhenUClick.com App and Search Bar Install (2) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 169 2000910 || BLEEDING-EDGE Malware WhenUClick.com Clock Sync App Checkin || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 169 2000910 || BLEEDING-EDGE Malware WhenUClick.com Clock Sync App Checkin || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 170 2000911 || BLEEDING-EDGE Malware WhenUClick.com Weather App Checkin || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 170 2000911 || BLEEDING-EDGE Malware WhenUClick.com Weather App Checkin || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 171 2000912 || BLEEDING-EDGE Malware WhenUClick.com Clock Sync App Checkin (1) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 171 2000912 || BLEEDING-EDGE Malware WhenUClick.com Clock Sync App Checkin (1) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 172 2000913 || BLEEDING-EDGE Malware WhenUClick.com Clock Sync App Checkin (2) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 172 2000913 || BLEEDING-EDGE Malware WhenUClick.com Clock Sync App Checkin (2) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 173 2000914 || BLEEDING-EDGE Malware WhenUClick.com Weather App Checkin (1) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 173 2000914 || BLEEDING-EDGE Malware WhenUClick.com Weather App Checkin (1) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 174 2000915 || BLEEDING-EDGE Malware WhenUClick.com Weather App Checkin (2) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 174 2000915 || BLEEDING-EDGE Malware WhenUClick.com Weather App Checkin (2) || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 175 2000916 || BLEEDING-EDGE Malware WhenUClick.com WhenUSave App Checkin || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 175 2000916 || BLEEDING-EDGE Malware WhenUClick.com WhenUSave App Checkin || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 176 2000917 || BLEEDING-EDGE Malware WhenUClick.com WhenUSave Data Retrieval || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 176 2000917 || BLEEDING-EDGE Malware WhenUClick.com WhenUSave Data Retrieval || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 177 2000918 || BLEEDING-EDGE Malware WhenUClick.com Desktop Bar Install || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 177 2000918 || BLEEDING-EDGE Malware WhenUClick.com Desktop Bar Install || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 178 2000919 || BLEEDING-EDGE Malware WhenUClick.com WhenUSave Data Retrieval || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 178 2000919 || BLEEDING-EDGE Malware WhenUClick.com WhenUSave Data Retrieval || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 179 2000920 || BLEEDING-EDGE Malware Hotbar Install (1) || url,www.hotbar.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 180 2000921 || BLEEDING-EDGE Malware Hotbar Install (2) || url,www.hotbar.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 181 2000922 || BLEEDING-EDGE Malware Hotbar Install (3) || url,www.hotbar.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 182 2000923 || BLEEDING-EDGE Malware Hotbar Agent Reporting Information || url,www.hotbar.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 183 2000924 || BLEEDING-EDGE Malware Hotbar Agent Upgrading || url,www.hotbar.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 184 2000925 || BLEEDING-EDGE Malware Hotbar Agent Partner Checkin || url,www.hotbar.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 185 2000926 || BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Install || url,www.isearchtech.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 186 2000927 || BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Reporting || url,www.isearchtech.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 187 2000928 || BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Activity (1) || url,www.isearchtech.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 188 2000929 || BLEEDING-EDGE Malware Hotbar Agent Activity || url,www.hotbar.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 189 2000930 || BLEEDING-EDGE MALWARE 180solutions Update Engine || url,www.safer-networking.org/index.php?page=threats&detail=212
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 190 2000931 || BLEEDING-EDGE Malware Comet Systems Spyware Traffic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 191 2000932 || BLEEDING-EDGE Malware Keenvalue Update Engine || url,www.safer-networking.org/index.php?page=updatehistory&detail=2003-11-24
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 192 2000934 || BLEEDING-EDGE MALWARE 2020search Update Engine || url,www.safer-networking.org/index.php?page=updatehistory&detail=2004-03-04
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 193 2000935 || BLEEDING-EDGE Malware EUniverse-thunderdownloads Update Engine || url,www.pestpatrol.com/pestinfo/e/euniverse.asp
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 194 2000936 || BLEEDING-EDGE Malware FlashTrack Agent Retrieving New App Code || url,www.flashpoint.bm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 195 2001012 || BLEEDING-EDGE Mailto domain search possible MyDoom.M,O || url,www.lurhq.com/zindos.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 196 2001013 || BLEEDING-EDGE Malware Fun Web Products SmileyCentral || url,www.funwebproducts.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 197 2001015 || BLEEDING-EDGE Malware JoltID Agent Keep-Alive || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 197 2001015 || BLEEDING-EDGE Malware JoltID Agent Keep-Alive || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 197 2001015 || BLEEDING-EDGE Malware JoltID Agent Keep-Alive || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 198 2001016 || BLEEDING-EDGE Malware SideStep Bar Install || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 198 2001016 || BLEEDING-EDGE Malware SideStep Bar Install || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 199 2001017 || BLEEDING-EDGE Malware SideStep Bar Reporting Data || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 199 2001017 || BLEEDING-EDGE Malware SideStep Bar Reporting Data || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 200 2001018 || BLEEDING-EDGE Malware SideStep Bar Activity || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 200 2001018 || BLEEDING-EDGE Malware SideStep Bar Activity || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 201 2001019 || BLEEDING-EDGE Malware SideStep Bar Autoupdate || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 201 2001019 || BLEEDING-EDGE Malware SideStep Bar Autoupdate || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 202 2001020 || BLEEDING-EDGE Malware SideStep Bar Update Reporting || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 202 2001020 || BLEEDING-EDGE Malware SideStep Bar Update Reporting || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 203 2001021 || BLEEDING-EDGE Suspicious Encrypted Webpage Content
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 204 2001022 || BLEEDING-EDGE EXPLOIT Invalid non-fragmented packet with fragment offset>0
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 205 2001023 || BLEEDING-EDGE EXPLOIT Invalid fragment - ACK reset
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 206 2001024 || BLEEDING-EDGE EXPLOIT Invalid fragment - illegal flags
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 207 2001031 || BLEEDING-EDGE MALWARE Casino on Net Reporting Data || url,www.888casino.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 208 2001032 || BLEEDING-EDGE MALWARE Casino on Net Ping Hit || url,www.888casino.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 209 2001033 || BLEEDING-EDGE MALWARE Casino on Net Data Download || url,www.888casino.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 210 2001034 || BLEEDING-EDGE Malware Fun Web Products Agent Traffic || url,www.funwebproducts.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 211 2001035 || BLEEDING-EDGE P2P Morpheus Install || url,www.morpheus.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 212 2001036 || BLEEDING-EDGE P2P Morpheus Install ini Download || url,www.morpheus.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 213 2001037 || BLEEDING-EDGE P2P Morpheus Update Request || url,www.morpheus.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 214 2001038 || BLEEDING-EDGE Malware Ebates Install || url,www.pestpatrol.com/PestInfo/e/ebates_moneymaker.asp
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 215 2001040 || BLEEDING-EDGE Malware My Search Bar Install || url,www.2-spyware.com/parasite-my-search-bar.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 216 2001041 || BLEEDING-EDGE MALWARE Casino on Net Install || url,www.888casino.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 217 2001043 || BLEEDING-EDGE Malware Fun Web Products MyWay Agent Traffic || url,www.funwebproducts.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 218 2001044 || BLEEDING-EDGE Yahoo Briefcase Upload
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 219 2001045 || BLEEDING-EDGE MyDoom.P Query || url,www.sarc.com/avcenter/venc/data/w32.mydoom.p@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 220 2001046 || BLEEDING-EDGE UPX compressed file download - possible worm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 221 2001047 || BLEEDING-EDGE UPX encrypted file download - possible worm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 222 2001048 || BLEEDING-EDGE EXPLOIT IE process injection iexplore.exe executable download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 223 2001049 || BLEEDING-EDGE EXPLOIT Buffer Overflow Exploit in Adobe Acrobat Reader || url,www.securiteam.com/securitynews/5WP080AAKK.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 224 2001050 || BLEEDING-EDGE Malware CometSystems Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 225 2001052 || BLEEDING-EDGE EXPLOIT NTDump Session Established Reg-Entry port 139
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 226 2001053 || BLEEDING-EDGE EXPLOIT NTDump.exe Service Started port 139
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 227 2001055 || BLEEDING-EDGE MISC HP Web JetAdmin ExecuteFile admin access || bugtraq,10224
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 228 2001056 || BLEEDING-EDGE VIRUS W32/Sasser.worm.b -NAI-) || url,securityresponse.symantec.com/avcenter/venc/data/w32.sasser.worm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 229 2001057 || BLEEDING-EDGE VIRUS W32/Sasser.worm.a -NAI-) || url,securityresponse.symantec.com/avcenter/venc/data/w32.sasser.worm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 230 2001058 || BLEEDING-EDGE EXPLOIT libpng tRNS overflow attempt || cve,CAN-2004-0597
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 231 2001059 || BLEEDING-EDGE P2P Ares traffic || url,www.aresgalaxy.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 232 2001060 || BLEEDING-EDGE P2P Ares GET || url,www.aresgalaxy.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 233 2001061 || BLEEDING-EDGE VIRUS Bagle Variant Requesting 2.jpg || url,isc.sans.org/diary.php?date=2004-08-09
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 234 2001064 || BLEEDING-EDGE VIRUS Bagle Variant Checking In || url,vil.nai.com/vil/content/v_127423.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 235 2001065 || BLEEDING-EDGE VIRUS Possible Bagle.AQ Worm Outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.av@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 236 2001066 || BLEEDING-EDGE IE Ilookup Trojan || url,62.131.86.111/analysis.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 237 2001075 || BLEEDING-EDGE WEB-MISC cross site scripting attempt IMG onerror or onload
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 238 2001076 || BLEEDING-EDGE WEB-MISC cross site scripting attempt TYPE + JAVASCRIPT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 239 2001077 || BLEEDING-EDGE WEB-MISC cross site scripting attempt STYLE + JAVASCRIPT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 240 2001078 || BLEEDING-EDGE WEB-MISC cross site scripting attempt STYLE + JSCRIPT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 241 2001079 || BLEEDING-EDGE WEB-MISC cross site scripting attempt STYLE + VBSCRIPT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 242 2001080 || BLEEDING-EDGE WEB-MISC cross site scripting attempt STYLE + VBSCRIPT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 243 2001081 || BLEEDING-EDGE WEB-MISC cross site scripting attempt STYLE + ECMACRIPT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 244 2001082 || BLEEDING-EDGE WEB-MISC cross site scripting attempt STYLE + EXPRESSION
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 245 2001083 || BLEEDING-EDGE WEB-MISC cross site scripting attempt STYLE + EXPRESSION
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 246 2001084 || BLEEDING-EDGE WEB-MISC cross site scripting attempt using XML
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 247 2001085 || BLEEDING-EDGE WEB-MISC cross site scripting attempt executing hidden Javascript
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 248 2001086 || BLEEDING-EDGE WEB-MISC cross site scripting attempt executing hidden Javascript
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 249 2001087 || BLEEDING-EDGE WEB-MISC cross site scripting attempt to execute Javascript code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 250 2001088 || BLEEDING-EDGE WEB-MISC cross site scripting attempt to execute VBScript code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 251 2001089 || BLEEDING-EDGE WEB-MISC cross site scripting attempt to access SHELL\:
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 252 2001090 || BLEEDING-EDGE WEB-MISC cross site scripting stealth attempt to execute Javascript code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 253 2001091 || BLEEDING-EDGE WEB-MISC cross site scripting stealth attempt to execute VBScript code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 254 2001092 || BLEEDING-EDGE WEB-MISC cross site scripting stealth attempt to access SHELL\:
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 255 2001093 || BLEEDING-EDGE EXPLOIT IE Local zone Shell execution of arbitrary code || url,www.securityfocus.com/archive/1/348688/2003-12-31/2004-01-06/0
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 256 2001094 || BLEEDING-EDGE EXPLOIT Internet Explorer URL parsing vulnerability || url,www.securityfocus.com/archive/1/346948
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 257 2001095 || BLEEDING-EDGE EXPLOIT IFRAME ExecCommand vulnerability || url,www.securiteam.com/exploits/3D5Q4RFPPK.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 258 2001097 || BLEEDING-EDGE EXPLOIT Internet Explorer Object Data Remote Execution Vulnerability || url,www.securityfocus.com/bid/8456/solution/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 259 2001099 || BLEEDING-EDGE EXPLOIT Attempt to execute VBScript code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 260 2001101 || BLEEDING-EDGE EXPLOIT Stealth attempt to execute Javascript code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 261 2001102 || BLEEDING-EDGE EXPLOIT Stealth attempt to execute VBScript code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 262 2001103 || BLEEDING-EDGE EXPLOIT Stealth attempt to access SHELL\:
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 263 2001105 || BLEEDING-EDGE EXPLOIT Javascript execution with expression eval || url,www.securiteam.com/exploits/3D5Q4RFPPK.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 264 2001106 || BLEEDING-EDGE EXPLOIT Javascript execution with expression eval hex || url,www.securiteam.com/exploits/3D5Q4RFPPK.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 265 2001114 || BLEEDING-EDGE Policy Mozilla XPI install files download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 266 2001115 || BLEEDING-EDGE MSI (microsoft installer file) download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 267 2001116 || BLEEDING-EDGE DNS - Standard query response, Format error
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 268 2001117 || BLEEDING-EDGE DNS - Standard query response, Name Error
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 269 2001118 || BLEEDING-EDGE DNS - Standard query response, Not Implemented
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 270 2001119 || BLEEDING-EDGE DNS - Standard query response, Refused
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 271 2001181 || BLEEDING-EDGE EXPLOIT Internet Explorer Plugin.ocx Heap Overflow || url,www.hnc3k.com/ievulnerabil.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 272 2001182 || BLEEDING-EDGE EXPLOIT IE trojan Ants3set 1.exe - process injection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 273 2001184 || BLEEDING-EDGE RXBOT / RBOT Vulnerability Scan || url,www.muzzleflash.org/readarticle.php?article_id=5#scanning || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_RBOT.GL || url,www.nitroguard.com/rxbot.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 273 2001184 || BLEEDING-EDGE RXBOT / RBOT Vulnerability Scan || url,www.muzzleflash.org/readarticle.php?article_id=5#scanning || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_RBOT.GL || url,www.nitroguard.com/rxbot.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 273 2001184 || BLEEDING-EDGE RXBOT / RBOT Vulnerability Scan || url,www.muzzleflash.org/readarticle.php?article_id=5#scanning || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_RBOT.GL || url,www.nitroguard.com/rxbot.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 274 2001185 || BLEEDING-EDGE P2P Soulseek traffic (1) || url,www.slsknet.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 275 2001186 || BLEEDING-EDGE P2P Soulseek traffic (2) || url,www.slsknet.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 276 2001187 || BLEEDING-EDGE P2P Soulseek Filesearch Results || url,www.slsknet.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 277 2001188 || BLEEDING-EDGE P2P Soulseek || url,www.slsknet.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 278 2001190 || BLEEDING-EDGE EXPLOIT libPNG - Possible NULL-pointer crash in png_handle_iCCP || url,www.securiteam.com/unixfocus/5ZP0C0KDPG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 279 2001191 || BLEEDING-EDGE EXPLOIT libPNG - Width exceeds limit || url,www.securiteam.com/unixfocus/5ZP0C0KDPG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 280 2001192 || BLEEDING-EDGE EXPLOIT libPNG - Height exceeds limit || url,www.securiteam.com/unixfocus/5ZP0C0KDPG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 281 2001195 || BLEEDING-EDGE EXPLOIT libPNG - Possible integer overflow in allocation in png_handle_sPLT || url,www.securiteam.com/unixfocus/5ZP0C0KDPG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 282 2001196 || BLEEDING-EDGE WORM MyDoom.S Outbound || url,isc.sans.org/diary.php?date=2004-08-16 || url,www.f-secure.com/v-descs/mydoom_s.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 282 2001196 || BLEEDING-EDGE WORM MyDoom.S Outbound || url,isc.sans.org/diary.php?date=2004-08-16 || url,www.f-secure.com/v-descs/mydoom_s.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 283 2001197 || BLEEDING-EDGE PHPNuke SQL injection attempt || url,www.waraxe.us/index.php?modname=sa&id=35
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 284 2001198 || BLEEDING-EDGE MALWARE Twaintec Download Attempt || url,www.pestpatrol.com/PestInfo/t/twain-tech.asp
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 285 2001199 || BLEEDING-EDGE MALWARE Twaintec Ad Retrieval || url,www.pestpatrol.com/PestInfo/t/twain-tech.asp
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 286 2001202 || BLEEDING-EDGE PHPNuke general SQL injection attempt || url,www.waraxe.us/?modname=sa&id=036 || url,www.waraxe.us/?modname=sa&id=030
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 286 2001202 || BLEEDING-EDGE PHPNuke general SQL injection attempt || url,www.waraxe.us/?modname=sa&id=036 || url,www.waraxe.us/?modname=sa&id=030
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 287 2001205 || BLEEDING-EDGE DOS Internet Explorer Memory Corruption Bug || url,www.securiteam.com/windowsntfocus/5XP051FDFM.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 288 2001206 || BLEEDING-EDGE EXPLOIT Mozilla Firefox Certificate Spoofing || url,www.securiteam.com/securitynews/5EP0L1PDFG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 289 2001207 || BLEEDING-EDGE EXPLOIT Mozilla Cookie theft || url,www.securiteam.com/securitynews/5GP0T0U60M.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 290 2001208 || BLEEDING-EDGE EXPLOIT Reading Local Files in Netscape 6 and Mozilla || url,www.securiteam.com/securitynews/5JP000A76K.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 291 2001209 || BLEEDING-EDGE EXPLOIT Mozilla FTP View Cross-Site Scripting Vulnerability || url,www.securiteam.com/windowsntfocus/5MP0I0080A.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 292 2001210 || BLEEDING-EDGE EXPLOIT FTP Serv-U Local Privilege Escalation Vulnerability || url,www.securiteam.com/windowsntfocus/5YP0F1FDPO.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 293 2001211 || BLEEDING-EDGE EXPLOIT FTP Serv-U directory traversal vulnerability (1) || url,www.securiteam.com/windowsntfocus/6C0041F0KO.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 294 2001212 || BLEEDING-EDGE EXPLOIT FTP Serv-U directory traversal vulnerability (2) || url,www.securiteam.com/windowsntfocus/6C0041F0KO.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 295 2001213 || BLEEDING-EDGE EXPLOIT FTP Serv-U LIST -l Parameter Buffer Overflow || url,www.securiteam.com/windowsntfocus/5ZP0G2KCKA.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 296 2001215 || BLEEDING-EDGE EXPLOIT FTP Serv-U Server Long Filename Stack Overflow Vulnerability || url,www.securiteam.com/windowsntfocus/5OP0N1PBPG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 297 2001216 || BLEEDING-EDGE MALWARE Twaintec Reporting Data || url,www.pestpatrol.com/PestInfo/t/twain-tech.asp
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 298 2001217 || BLEEDING-EDGE EXPLOIT Adobe Acrobat Reader Malicious URL Null Byte || cve,2004-0629 || url,www.securiteam.com/windowsntfocus/5BP0D20DPW.html || url,idefense.com/application/poi/display?id=126&type=vulnerabilities
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 298 2001217 || BLEEDING-EDGE EXPLOIT Adobe Acrobat Reader Malicious URL Null Byte || cve,2004-0629 || url,www.securiteam.com/windowsntfocus/5BP0D20DPW.html || url,idefense.com/application/poi/display?id=126&type=vulnerabilities
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 299 2001218 || BLEEDING-EDGE PHPNuke general XSS attempt || url,www.waraxe.us/?modname=sa&id=030
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 300 2001219 || BLEEDING-EDGE Potential SSH Scan || url,www.whitedust.net/article/27/Recent%20SSH%20Brute-Force%20Attacks/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 301 2001220 || BLEEDING-EDGE RXBOT / RBOT Exploit Report || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_RBOT.GL || url,www.nitroguard.com/rxbot.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 301 2001220 || BLEEDING-EDGE RXBOT / RBOT Exploit Report || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_RBOT.GL || url,www.nitroguard.com/rxbot.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 302 2001221 || BLEEDING-EDGE Malware F1Organizer Config Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 303 2001222 || BLEEDING-EDGE Malware Default-homepage-network.com Access || url,default-homepage-network.com/start.cgi?new-hkcu
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 304 2001223 || BLEEDING-EDGE Malware Regnow.com Access || url,www.regnow.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 305 2001224 || BLEEDING-EDGE Malware Regnow.com Gamehouse.com Access || url,www.gamehouse.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 306 2001225 || BLEEDING-EDGE Malware Statblaster Receiving New configuration (update) || url,securityresponse.symantec.com/avcenter/venc/data/adware.statblaster.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 307 2001226 || BLEEDING-EDGE MALWARE Advertising.com Agent || url,securityresponse.symantec.com/avcenter/venc/data/adware.fastseek.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 308 2001228 || BLEEDING-EDGE MALWARE Advertising.com Data Post (villains) || url,securityresponse.symantec.com/avcenter/venc/data/adware.fastseek.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 309 2001230 || BLEEDING-EDGE MALWARE Advertising.com Data Post (cakedeal) || url,securityresponse.symantec.com/avcenter/venc/data/adware.fastseek.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 310 2001233 || BLEEDING-EDGE Possible CIA download/upload attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 311 2001234 || BLEEDING-EDGE Win32/Small.AR outbound activity || url,www.sophos.com/virusinfo/analyses/trojsmallar.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 312 2001235 || BLEEDING-EDGE MALWARE Weatherbug
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 313 2001236 || BLEEDING-EDGE Akak trojan protocol hello || url,www.lurhq.com/akak.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 314 2001237 || BLEEDING-EDGE Akak trojan protocol response from infected host || url,www.lurhq.com/akak.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 315 2001238 || BLEEDING-EDGE Possible Xedus Webserver Directory Traversal Attempt || url,www.gulftech.org/?node=research&article_id=00047-08302004
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 316 2001239 || BLEEDING-EDGE Cisco Device in Config Mode
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 317 2001240 || BLEEDING-EDGE Cisco Device New Config Built
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 318 2001241 || BLEEDING-EDGE CHAT MSN file transfer request
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 319 2001242 || BLEEDING-EDGE CHAT MSN file transfer accept
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 320 2001243 || BLEEDING-EDGE CHAT MSN file transfer reject
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 321 2001247 || BLEEDING-EDGE WORM General MSN Worm URL Attempt || url,isc.sans.org/diary.php?date=2005-04-13
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 322 2001253 || BLEEDING-EDGE CHAT Yahoo IM successful logon
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 323 2001254 || BLEEDING-EDGE CHAT Yahoo IM voicechat
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 324 2001255 || BLEEDING-EDGE CHAT Yahoo IM ping
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 325 2001256 || BLEEDING-EDGE CHAT Yahoo IM conference invitation
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 326 2001257 || BLEEDING-EDGE CHAT Yahoo IM conference logon success
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 327 2001258 || BLEEDING-EDGE CHAT Yahoo IM conference message
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 328 2001259 || BLEEDING-EDGE CHAT Yahoo IM file transfer request
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 329 2001260 || BLEEDING-EDGE CHAT Yahoo IM message
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 330 2001261 || BLEEDING-EDGE CHAT Yahoo IM successful chat join
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 331 2001262 || BLEEDING-EDGE CHAT Yahoo IM conference offer invitation
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 332 2001263 || BLEEDING-EDGE CHAT Yahoo IM conference request
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 333 2001264 || BLEEDING-EDGE CHAT Yahoo IM conference watch
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 334 2001266 || BLEEDING-EDGE MALWARE Browseraid.com Agent Reporting Data || url,www.browseraid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 335 2001267 || BLEEDING-EDGE MALWARE Weatherbug Capture
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 336 2001268 || BLEEDING-EDGE VIRUS SWEN.A Worm detected || url,securityresponse.symantec.com/avcenter/venc/data/w32.swen.a@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 337 2001269 || BLEEDING-EDGE VIRUS Beagle User Agent Detected || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.i@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 338 2001270 || BLEEDING-EDGE VIRUS Bagle Worm || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.i@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 339 2001273 || BLEEDING-EDGE VIRUS Outbound W32.Novarg.A worm || url,securityresponse.symantec.com/avcenter/venc/data/w32.mydoom.a@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 340 2001274 || BLEEDING-EDGE VIRUS MyDoom/MIMAIL.R Outbound 1 || url,vil.mcafeesecurity.com/vil/content/Print100989.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 341 2001275 || BLEEDING-EDGE VIRUS MyDoom/MIMAIL.R Outbound 2 || url,vil.mcafeesecurity.com/vil/content/Print100989.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 342 2001276 || BLEEDING-EDGE VIRUS MyDoom/MIMAIL.R Outbound 3 || url,vil.mcafeesecurity.com/vil/content/Print100989.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 343 2001277 || BLEEDING-EDGE VIRUS MyDoom/MIMAIL.R Variant Outbound || url,vil.mcafeesecurity.com/vil/content/Print100989.htm || url,vil.mcafeesecurity.com/vil/content/v_101014.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 343 2001277 || BLEEDING-EDGE VIRUS MyDoom/MIMAIL.R Variant Outbound || url,vil.mcafeesecurity.com/vil/content/Print100989.htm || url,vil.mcafeesecurity.com/vil/content/v_101014.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 344 2001278 || BLEEDING-EDGE VIRUS W32.Novarg.A SCO DOS || url,securityresponse.symantec.com/avcenter/venc/data/w32.mydoom.a@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 345 2001279 || BLEEDING-EDGE VIRUS MyDoom.F Worm || url,vil.mcafeesecurity.com/vil/content/v_101014.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 346 2001280 || BLEEDING-EDGE VIRUS Netsky message.zip HEX port 139 || url,antivirus.about.com/cs/allabout/a/netskyp_2.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 347 2001281 || BLEEDING-EDGE VIRUS Netsky message.zip HEX port 445 || url,antivirus.about.com/cs/allabout/a/netskyp_2.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 348 2001282 || BLEEDING-EDGE VIRUS Netsky base64 port 1352 || url,antivirus.about.com/cs/allabout/a/netskyp_2.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 349 2001283 || BLEEDING-EDGE VIRUS Netsky base64 port 25 || url,antivirus.about.com/cs/allabout/a/netskyp_2.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 350 2001284 || BLEEDING-EDGE VIRUS Sober.F Outbound (1) || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober.f@mm.html?Open
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 351 2001285 || BLEEDING-EDGE VIRUS Sober.F Outbound (2) || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober.f@mm.html?Open
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 352 2001286 || BLEEDING-EDGE VIRUS Sasser/Korgo Worm || url,www.microsoft.com/technet/security/bulletin/MS04-011.mspx || cve,2003-0533 || bugtraq,10108
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 353 2001287 || BLEEDING-EDGE VIRUS W32/Stdbot.worm.a || McAfee,125306
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 354 2001288 || BLEEDING-EDGE VIRUS W32/Stdbot.worm.b || McAfee,125306
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 355 2001290 || BLEEDING-EDGE VIRUS Possible Evaman Worm || url,secunia.com/virus_information/10429/evaman
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 356 2001292 || BLEEDING-EDGE VIRUS Possible Bagle.AI Worm || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.i@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 357 2001293 || BLEEDING-EDGE Malware Featured-Results.com Agent Reporting Data || url,www.featured-results.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 358 2001294 || BLEEDING-EDGE POLICY Dameware Remote Control Service Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 359 2001295 || BLEEDING-EDGE MALWARE Browseraid.com Agent || url,www.browseraid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 360 2001296 || BLEEDING-EDGE P2P eDonkey File Status || url,www.edonkey.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 361 2001297 || BLEEDING-EDGE P2P eDonkey File Status Request || url,www.edonkey.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 362 2001298 || BLEEDING-EDGE P2P eDonkey Server Status Request || url,www.edonkey.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 363 2001299 || BLEEDING-EDGE P2P eDonkey Server Status || url,www.edonkey.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 364 2001300 || BLEEDING-EDGE P2P eDonkey Hello Request || url,www.edonkey.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 365 2001302 || BLEEDING-EDGE VIRUS Nachi/Phatbot Worm || url,www.microsoft.com/technet/security/bulletin/MS03-026.asp || bugtraq,8205 || cve,CAN-2003-0352
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 366 2001303 || BLEEDING-EDGE Webber/Berbew Trojan keystroke log upload || url,www.lurhq.com/berbew.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 367 2001304 || BLEEDING-EDGE MALWARE Browseraid.com Agent Updating || url,www.browseraid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 368 2001305 || BLEEDING-EDGE P2P eDonkey Search || url,www.edonkey.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 369 2001306 || BLEEDING-EDGE Malware Gator/Clarian Agent || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 370 2001307 || BLEEDING-EDGE Malware Wild Tangent Agent Installation || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 370 2001307 || BLEEDING-EDGE Malware Wild Tangent Agent Installation || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 371 2001308 || BLEEDING-EDGE Malware Internet Optomizer Reporting Data || url,securityresponse.symantec.com/avcenter/venc/data/adware.netoptimizer.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 372 2001309 || BLEEDING-EDGE Malware Wild Tangent Agent Checking In || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 372 2001309 || BLEEDING-EDGE Malware Wild Tangent Agent Checking In || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 373 2001310 || BLEEDING-EDGE Malware Wild Tangent Agent Traffic || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 373 2001310 || BLEEDING-EDGE Malware Wild Tangent Agent Traffic || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 374 2001311 || BLEEDING-EDGE Malware Rdxrp.com Traffic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 375 2001312 || BLEEDING-EDGE Malware Rdxrp.com Traffic (Generic)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 376 2001313 || BLEEDING-EDGE Malware Traffic Syndicate Add/Remove
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 377 2001314 || BLEEDING-EDGE Malware Wild Tangent Agent || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 377 2001314 || BLEEDING-EDGE Malware Wild Tangent Agent || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 378 2001315 || BLEEDING-EDGE Malware Traffic Syndicate Agent Updating (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 379 2001316 || BLEEDING-EDGE Malware Traffic Syndicate Agent Updating (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 380 2001317 || BLEEDING-EDGE Malware Webhancer Data Upload || url,securityresponse.symantec.com/avcenter/venc/data/spyware.webhancer.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 381 2001318 || BLEEDING-EDGE MALWARE Adwave Agent Access || url,www.intermute.com/spyware/HuntBar.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 382 2001320 || BLEEDING-EDGE Malware Speedera Agent
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 383 2001321 || BLEEDING-EDGE Malware Speedera Agent (Specific)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 384 2001322 || BLEEDING-EDGE Malware Wild Tangent New Install || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 384 2001322 || BLEEDING-EDGE Malware Wild Tangent New Install || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 385 2001325 || BLEEDING-EDGE Malware Websearch.com Spyware || McAfee,131461
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 386 2001328 || BLEEDING-EDGE SSN Detected in Clear Text
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 387 2001329 || BLEEDING-EDGE RDP connection request
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 388 2001330 || BLEEDING-EDGE RDP connection confirm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 389 2001331 || BLEEDING-EDGE RDP disconnect request
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 390 2001332 || BLEEDING-EDGE GDI Exploit - Worm 1 Successful Execution || url,www.easynews.com/virus.txt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 391 2001334 || BLEEDING-EDGE Malware Ezula || url,www.spyany.com/program/article_spw_rm_eZuLa.html || url,www.ezula.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 391 2001334 || BLEEDING-EDGE Malware Ezula || url,www.spyany.com/program/article_spw_rm_eZuLa.html || url,www.ezula.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 392 2001335 || BLEEDING-EDGE Malware Ezula Installer Download || url,www.spyany.com/program/article_spw_rm_eZuLa.html || url,www.ezula.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 392 2001335 || BLEEDING-EDGE Malware Ezula Installer Download || url,www.spyany.com/program/article_spw_rm_eZuLa.html || url,www.ezula.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 393 2001336 || BLEEDING-EDGE Malware Internet Optimizer Spyware Agent Upload || url,securityresponse.symantec.com/avcenter/venc/data/adware.netoptimizer.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 394 2001337 || BLEEDING-EDGE Korgo.P offering executable || url,www.f-secure.com/v-descs/korgo_p.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 395 2001338 || BLEEDING-EDGE Korgo.P binary upload || url,www.f-secure.com/v-descs/korgo_p.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 396 2001339 || BLEEDING-EDGE MALWARE BInet Information Upload || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 397 2001340 || BLEEDING-EDGE Malware LocalNRD Spyware Checkin || url,www.localnrd.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 398 2001341 || BLEEDING-EDGE Malware OfferOptimizer.com Spyware || url,www.offeroptimizer.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 399 2001342 || BLEEDING-EDGE WEB-IIS ASP.net Auth Bypass / Canonicalization
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 400 2001343 || BLEEDING-EDGE WEB-IIS ASP.net Auth Bypass / Canonicalization % 5 C
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 401 2001344 || BLEEDING-EDGE WEB-PHP EasyDynamicPages exploit || cve,CAN-2004-0073 || url,www.securitytracker.com/alerts/2004/Jan/1008584.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 402 2001345 || BLEEDING-EDGE MALWARE Bonziportal Traffic || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=59256
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 403 2001346 || BLEEDING-EDGE INAPPROPRIATE Kiddy Porn preteen
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 404 2001347 || BLEEDING-EDGE INAPPROPRIATE Kiddy Porn pre-teen
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 405 2001348 || BLEEDING-EDGE INAPPROPRIATE Kiddy Porn early teen
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 406 2001349 || BLEEDING-EDGE INAPPROPRIATE free XXX
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 407 2001350 || BLEEDING-EDGE INAPPROPRIATE hardcore anal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 408 2001351 || BLEEDING-EDGE INAPPROPRIATE masturbation
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 409 2001352 || BLEEDING-EDGE INAPPROPRIATE ejaculation
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 410 2001353 || BLEEDING-EDGE INAPPROPRIATE BDSM
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 411 2001359 || BLEEDING-EDGE Malware MarketScore.com Spyware Access || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 411 2001359 || BLEEDING-EDGE Malware MarketScore.com Spyware Access || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 412 2001362 || BLEEDING-EDGE DOS MS04-030 Attempted DoS || url,isc.sans.org/diary.php?date=2004-10-20
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 413 2001363 || BLEEDING-EDGE EXPLOIT Possible MS04-032 Windows Metafile (.emf) Heap Overflow Portbind Attempt || url,www.microsoft.com/technet/security/bulletin/ms04-032.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 414 2001364 || BLEEDING-EDGE EXPLOIT MS04-032 Windows Metafile (.emf) Heap Overflow Connectback Attempt || url,www.microsoft.com/technet/security/bulletin/ms04-032.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 415 2001365 || BLEEDING-EDGE WEB-MISC Alternate Data Stream source view attempt || cve,1999-0278 || url,support.microsoft.com/kb/q188806/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 416 2001366 || BLEEDING-EDGE DOS Possible Microsoft SQL Server Remote Denial Of Service Attempt || bugtraq,11265
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 417 2001367 || BLEEDING-EDGE WORM RBOT inbound Bestfriends.scr || url,spree.mnin.org/forums/viewtopic.php?t-104
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 418 2001369 || BLEEDING-EDGE EXPLOIT MS04-032 Windows Metafile (.emf) Heap Overflow Exploit || url,www.k-otik.com/exploits/20041020.HOD-ms04032-emf-expl2.c.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 419 2001374 || BLEEDING-EDGE EXPLOIT MS04-032 Bad EMF file || url,www.sygate.com/alerts/SSR20041013-0001.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 420 2001375 || BLEEDING-EDGE Credit Card Number Detected in Clear (16 digit spaced) || url,www.beachnet.com/~hstiles/cardtype.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 421 2001376 || BLEEDING-EDGE Credit Card Number Detected in Clear (16 digit dashed) || url,www.beachnet.com/~hstiles/cardtype.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 422 2001377 || BLEEDING-EDGE Credit Card Number Detected in Clear (16 digit) || url,www.beachnet.com/~hstiles/cardtype.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 423 2001378 || BLEEDING-EDGE Credit Card Number Detected in Clear (15 digit) || url,www.beachnet.com/~hstiles/cardtype.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 424 2001379 || BLEEDING-EDGE Credit Card Number Detected in Clear (15 digit spaced) || url,www.beachnet.com/~hstiles/cardtype.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 425 2001380 || BLEEDING-EDGE Credit Card Number Detected in Clear (15 digit dashed) || url,www.beachnet.com/~hstiles/cardtype.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 426 2001381 || BLEEDING-EDGE Credit Card Number Detected in Clear (14 digit) || url,www.beachnet.com/~hstiles/cardtype.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 427 2001382 || BLEEDING-EDGE Credit Card Number Detected in Clear (14 digit spaced) || url,www.beachnet.com/~hstiles/cardtype.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 428 2001383 || BLEEDING-EDGE Credit Card Number Detected in Clear (14 digit dashed) || url,www.beachnet.com/~hstiles/cardtype.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 429 2001384 || BLEEDING-EDGE SSN Detected in Clear Text
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 430 2001385 || BLEEDING-EDGE EXPLOIT Possible ShixxNote buffer-overflow + remote shell attempt || url,aluigi.altervista.org/adv/shixxbof-adv.txt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 431 2001386 || BLEEDING-EDGE INAPPROPRIATE Kiddy Porn pthc
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 432 2001387 || BLEEDING-EDGE INAPPROPRIATE Kiddy Porn zeps
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 433 2001388 || BLEEDING-EDGE INAPPROPRIATE Kiddy Porn r@ygold
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 434 2001389 || BLEEDING-EDGE INAPPROPRIATE Kiddy Porn childlover
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 435 2001390 || BLEEDING-EDGE VIRUS Possible Beagle.AV Worm Outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.av@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 436 2001391 || BLEEDING-EDGE VIRUS Possible Beagle.AV Worm Inbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.av@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 437 2001392 || BLEEDING-EDGE INAPPROPRIATE Sextracker Tracking Code Detected (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 438 2001393 || BLEEDING-EDGE INAPPROPRIATE Sextracker Tracking Code Detected (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 439 2001395 || BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Activity (2) || url,www.isearchtech.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 440 2001396 || BLEEDING-EDGE Malware Internet Optimizer Spyware Install || url,securityresponse.symantec.com/avcenter/venc/data/adware.netoptimizer.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 441 2001397 || BLEEDING-EDGE MALWARE 180solutions Spyware (tracked event reported) || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 442 2001398 || BLEEDING-EDGE MALWARE Bfast.com Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 443 2001399 || BLEEDING-EDGE MALWARE 180solutions Spyware (action url reported) || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 444 2001400 || BLEEDING-EDGE MALWARE 180solutions Spyware Reporting || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 445 2001401 || BLEEDING-EDGE EXPLOIT IE IFRAME Exploit
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 446 2001402 || BLEEDING-EDGE ZIPPED DOC in transit
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 447 2001403 || BLEEDING-EDGE ZIPPED XLS in transit
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 448 2001404 || BLEEDING-EDGE ZIPPED EXE in transit
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 449 2001405 || BLEEDING-EDGE ZIPPED PPT in transit
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 450 2001406 || BLEEDING-EDGE Possible hidden zip extension .cpl
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 451 2001407 || BLEEDING-EDGE Possible hidden zip extension .pif
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 452 2001408 || BLEEDING-EDGE Possible hidden zip extension .scr
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 453 2001409 || BLEEDING-EDGE Malware Mastermind Related Reporting
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 454 2001410 || BLEEDING-EDGE Malware Mastermind Related Reporting 8081
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 455 2001411 || BLEEDING-EDGE Malware Mastermind Related Downloading mm20.ocx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 456 2001412 || BLEEDING-EDGE Malware Mastermind Related Downloading Daily Executable
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 457 2001413 || BLEEDING-EDGE Malware Medis-Motor Related Downloading ast_4_mm.exe
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 458 2001414 || BLEEDING-EDGE Malware Media-Motor Related Downloading MediaMotor25.exe
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 459 2001415 || BLEEDING-EDGE Malware E2give Related Downloading IeBHOs.dll
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 460 2001416 || BLEEDING-EDGE Malware E2give Related Reporting Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 461 2001417 || BLEEDING-EDGE Malware E2give Related Receiving Config
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 462 2001418 || BLEEDING-EDGE Malware E2give Related Downloading Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 463 2001419 || BLEEDING-EDGE Malware Avres.net Downloading cpr_mm2.exe
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 464 2001420 || BLEEDING-EDGE Malware Avres.net Downloading ab1.exe
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 465 2001421 || BLEEDING-EDGE Malware Avres.net Downloading tvm_bundle.exe
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 466 2001422 || BLEEDING-EDGE Malware Avres.net Reporting Data
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 467 2001423 || BLEEDING-EDGE Malware E2give Related Reporting
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 468 2001424 || BLEEDING-EDGE POLICY Gmail Inbox Access
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 469 2001425 || BLEEDING-EDGE POLICY Gmail File Send
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 470 2001426 || BLEEDING-EDGE POLICY Gmail Message Send
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 471 2001427 || BLEEDING-EDGE CHAT Yahoo IM Unavailable Status
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 472 2001428 || BLEEDING-EDGE WORM MyDoom.AH Victim Accessing Infected Page || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 473 2001430 || BLEEDING-EDGE WORM Bofra Victim Accessing Reactor Page || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631 || url,securityresponse.symantec.com/avcenter/venc/data/w32.bofra.e@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 473 2001430 || BLEEDING-EDGE WORM Bofra Victim Accessing Reactor Page || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631 || url,securityresponse.symantec.com/avcenter/venc/data/w32.bofra.e@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 474 2001431 || BLEEDING-EDGE WORM Potential MyDoom.AH Email Inbound || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 475 2001432 || BLEEDING-EDGE WORM Potential MyDoom.AH Email Outbound (1) || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 476 2001433 || BLEEDING-EDGE WORM Potential MyDoom.AH Email Inbound || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 477 2001434 || BLEEDING-EDGE WORM Potential MyDoom.AH Email Outbound (2) || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 478 2001435 || BLEEDING-EDGE WORM Potential MyDoom.AH Email Inbound || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 479 2001436 || BLEEDING-EDGE WORM Potential MyDoom.AH Email Outbound (3) || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 480 2001437 || BLEEDING-EDGE WORM Potential MyDoom.AI Email Inbound || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 481 2001438 || BLEEDING-EDGE WORM Potential MyDoom.AI Email Outbound || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 482 2001440 || BLEEDING-EDGE MALWARE Abox Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 483 2001441 || BLEEDING-EDGE MALWARE Abox Install Report || url,securityresponse.symantec.com/avcenter/venc/data/adware.adultbox.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 484 2001442 || BLEEDING-EDGE Malware Statblaster.MemoryWatcher Download || url,www.memorywatcher.com/eula.aspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 485 2001443 || BLEEDING-EDGE Malware WhenUClick.com Desktop Bar App Checkin || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 485 2001443 || BLEEDING-EDGE Malware WhenUClick.com Desktop Bar App Checkin || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 486 2001444 || BLEEDING-EDGE Malware Overpro Spyware Bundle Install || url,www.wildarcade.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 487 2001445 || BLEEDING-EDGE Malware PeopleOnPage Install || url,www.safer-networking.org/en/threats/602.html || url,www.peopleonpage.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 487 2001445 || BLEEDING-EDGE Malware PeopleOnPage Install || url,www.safer-networking.org/en/threats/602.html || url,www.peopleonpage.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 488 2001446 || BLEEDING-EDGE Malware PeopleOnPage Ping || url,www.safer-networking.org/en/threats/602.html || url,www.peopleonpage.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 488 2001446 || BLEEDING-EDGE Malware PeopleOnPage Ping || url,www.safer-networking.org/en/threats/602.html || url,www.peopleonpage.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 489 2001447 || BLEEDING-EDGE MALWARE 2nd-thought (W32.Daqa.C) Download || url,securityresponse.symantec.com/avcenter/venc/data/adware.secondthought.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 490 2001448 || BLEEDING-EDGE Malware MediaTickets Download || url,securityresponse.symantec.com/avcenter/venc/data/adware.winad.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 491 2001449 || BLEEDING-EDGE Policy Proxy Connection detected
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 492 2001450 || BLEEDING-EDGE MALWARE Wintools Download/Configure || url,www.intermute.com/spyware/HuntBar.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 493 2001451 || BLEEDING-EDGE MALWARE Bundleware Spyware Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 494 2001452 || BLEEDING-EDGE MALWARE Bundleware Spyware CHM Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 495 2001453 || BLEEDING-EDGE Malware Couponage Download || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453090725
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 496 2001454 || BLEEDING-EDGE Malware Couponage Configure || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453090725
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 497 2001455 || BLEEDING-EDGE Malware Couponage Reporting || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453090725
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 498 2001456 || BLEEDING-EDGE Malware ContextPanel Reporting
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 499 2001458 || BLEEDING-EDGE MALWARE Bundleware Spyware cab Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 500 2001459 || BLEEDING-EDGE Malware Overpro Spyware Games || url,securityresponse.symantec.com/avcenter/venc/data/adware.overpro.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 501 2001460 || BLEEDING-EDGE Malware Sexmaniack Install Tracking
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 502 2001461 || BLEEDING-EDGE Malware Xpire.info Multiple Spyware Installs (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 503 2001462 || BLEEDING-EDGE Malware Xpire.info Multiple Spyware Installs Occuring
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 504 2001463 || BLEEDING-EDGE Malware Xpire.info Multiple Spyware Installs (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 505 2001464 || BLEEDING-EDGE Malware Xpire.info Multiple Spyware Installs (3)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 506 2001466 || BLEEDING-EDGE Malware Xpire.info Multiple Spyware Installs (4)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 507 2001467 || BLEEDING-EDGE Malware Xpire.info Multiple Spyware Installs (5)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 508 2001468 || BLEEDING-EDGE Malware Xpire.info Multiple Spyware Installs CHM Exploit
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 509 2001469 || BLEEDING-EDGE Malware Xpire.info Multiple Spyware Installs (6)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 510 2001470 || BLEEDING-EDGE Malware Xpire.info Multiple Spyware Installs (7)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 511 2001471 || BLEEDING-EDGE Malware Xpire.info Spyware Exploit
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 512 2001472 || BLEEDING-EDGE Malware Xpire.info Spyware Install Reporting
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 513 2001473 || BLEEDING-EDGE Malware Searchmeup Spyware Install (toolbar)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 514 2001474 || BLEEDING-EDGE Malware Searchmeup Spyware Install (prog)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 515 2001475 || BLEEDING-EDGE Malware Searchmeup Spyware Receiving Commands
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 516 2001476 || BLEEDING-EDGE Malware Searchmeup Spyware Affiliate install (pizdato)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 517 2001477 || BLEEDING-EDGE Malware Searchmeup Spyware Affiliate install (coolsearch)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 518 2001478 || BLEEDING-EDGE Malware Searchmeup Spyware Affiliate install (newiframe)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 519 2001479 || BLEEDING-EDGE Malware Coolsearch Spyware Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 520 2001480 || BLEEDING-EDGE Malware Searchmeup Spyware Install (systime)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 521 2001481 || BLEEDING-EDGE Malware MediaTickets Spyware Install || url,securityresponse.symantec.com/avcenter/venc/data/adware.winad.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 522 2001482 || BLEEDING-EDGE Malware thebestsoft4u.com Spyware Install (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 523 2001483 || BLEEDING-EDGE Malware Searchmeup Spyware Install (mstask)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 524 2001484 || BLEEDING-EDGE Malware Searchmeup Spyware Install (d.exe)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 525 2001485 || BLEEDING-EDGE Malware thebestsoft4u.com Spyware Install (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 526 2001486 || BLEEDING-EDGE Malware thebestsoft4u.com Spyware Install (3)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 527 2001487 || BLEEDING-EDGE Malware Tibsystems Spyware Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 528 2001488 || BLEEDING-EDGE Malware Tibsystems Spyware Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 529 2001489 || BLEEDING-EDGE Malware Spygalaxy.ws Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 530 2001490 || BLEEDING-EDGE Malware ICQ-Update.biz Reporting Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 531 2001491 || BLEEDING-EDGE Malware Xpire.info Install Code Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 532 2001492 || BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Activity (MyApp) || url,www.isearchtech.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 533 2001493 || BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Activity (IST) || url,www.isearchtech.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 534 2001494 || BLEEDING-EDGE Malware Clickspring.net Spyware Reporting Successful Install || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453082745
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 535 2001495 || BLEEDING-EDGE Malware Outerinfo.com Spyware Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 536 2001496 || BLEEDING-EDGE Malware Outerinfo.com Spyware Advertising Campaign Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 537 2001497 || BLEEDING-EDGE Malware Outerinfo.com Spyware Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 538 2001498 || BLEEDING-EDGE Malware Internet Optimizer Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 539 2001499 || BLEEDING-EDGE Malware Look2me Spyware Activity (1) || url,securityresponse.symantec.com/avcenter/venc/data/adware.look2me.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 540 2001500 || BLEEDING-EDGE Malware Clickspring.net Spyware Reporting || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453082745
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 541 2001501 || BLEEDING-EDGE MALWARE Clickspring.net Spyware Reporting || url,sarc.com/avcenter/venc/data/adware.bargainbuddy.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 542 2001502 || BLEEDING-EDGE Malware Look2me Spyware Activity (2) || url,securityresponse.symantec.com/avcenter/venc/data/adware.look2me.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 543 2001503 || BLEEDING-EDGE Malware Medialoads.com Spyware Config
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 544 2001504 || BLEEDING-EDGE Malware Medialoads.com Spyware Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 545 2001505 || BLEEDING-EDGE Malware Smartpops.com Spyware Install rh.exe || url,securityresponse.symantec.com/avcenter/venc/data/adware.smartpops.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 546 2001507 || BLEEDING-EDGE Malware Medialoads.com Spyware Identifying Country of Origin
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 547 2001508 || BLEEDING-EDGE Malware Medialoads.com Spyware Reporting (download.cgi)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 548 2001509 || BLEEDING-EDGE Malware Medialoads.com Spyware Reporting (register.cgi)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 549 2001510 || BLEEDING-EDGE Malware SurfAssistant.com Spyware Install || url,securityresponse.symantec.com/avcenter/venc/data/adware.sa.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 550 2001512 || BLEEDING-EDGE Malware pool.Westpop.com Spyware Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 551 2001513 || BLEEDING-EDGE Malware Smartpops.com Spyware Update || url,securityresponse.symantec.com/avcenter/venc/data/adware.smartpops.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 552 2001514 || BLEEDING-EDGE Malware SurfAssistant.com Spyware Reporting || url,securityresponse.symantec.com/avcenter/venc/data/adware.sa.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 553 2001516 || BLEEDING-EDGE Malware Smartpops.com Spyware Install || url,securityresponse.symantec.com/avcenter/venc/data/adware.smartpops.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 554 2001517 || BLEEDING-EDGE Malware Websearch.com Outbound Dialer Retrieval || McAfee,131461
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 555 2001520 || BLEEDING-EDGE Malware Spywaremover Activity || url,securityresponse.symantec.com/avcenter/venc/data/adware.topantispyware.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 556 2001521 || BLEEDING-EDGE MALWARE Spywaremover Activity || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453087903
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 557 2001522 || BLEEDING-EDGE Malware SpywareLabs Application Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 558 2001523 || BLEEDING-EDGE Malware Statblaster Receiving New configuration (allfiles) || url,securityresponse.symantec.com/avcenter/venc/data/adware.statblaster.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 559 2001524 || BLEEDING-EDGE Malware Statblaster Code Download || url,securityresponse.symantec.com/avcenter/venc/data/adware.statblaster.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 560 2001525 || BLEEDING-EDGE Malware Virtumonde Spyware Code Download mmdom.exe || url,sarc.com/avcenter/venc/data/adware.virtumonde.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 561 2001526 || BLEEDING-EDGE Malware Virtumonde Spyware Code Download bkinst.exe || url,www.lurhq.com/iframeads.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 562 2001528 || BLEEDING-EDGE MALWARE ak-networks.com Access, Likely Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 563 2001529 || BLEEDING-EDGE MALWARE Casalemedia Access, Likely Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 564 2001530 || BLEEDING-EDGE MALWARE ak-networks.com Spyware Code Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 565 2001531 || BLEEDING-EDGE MALWARE C4tdownload.com Access, Likely Spyware || url,sarc.com/avcenter/venc/data/adware.clickdloader.b.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 566 2001532 || BLEEDING-EDGE Malware Searchmiracle.com Access, Likely Spyware || url,securityresponse.symantec.com/avcenter/venc/data/adware.elitebar.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 567 2001533 || BLEEDING-EDGE Malware Searchmiracle.com Spyware Installer silent.exe Download || url,www.searchmiracle.com/silent.exe
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 568 2001534 || BLEEDING-EDGE Malware Searchmiracle.com Spyware Install (silent_install) || url,www.searchmiracle.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 569 2001535 || BLEEDING-EDGE Malware Searchmiracle.com Spyware Install (protector.exe) || url,www.searchmiracle.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 570 2001536 || BLEEDING-EDGE Malware Spyspotter.com Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 571 2001537 || BLEEDING-EDGE Malware Spyspotter.com Access, Likely Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 572 2001538 || BLEEDING-EDGE Malware Oenji.com Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 573 2001539 || BLEEDING-EDGE Malware Spyspotter.com Access, Likely Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 574 2001540 || BLEEDING-EDGE Malware Searchmiracle.com Spyware Install (v3cab) || url,www.searchmiracle.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 575 2001541 || BLEEDING-EDGE Malware Xpire.info Install Report
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 576 2001542 || BLEEDING-EDGE VIRUS Possible Sober.j - outbound || url,vil.mcafeesecurity.com/vil/content/v_130130.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 577 2001543 || BLEEDING-EDGE EXPLOIT NTDump Session Established Reg-Entry port 445
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 578 2001544 || BLEEDING-EDGE EXPLOIT NTDump.exe Service Started port 445
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 579 2001545 || BLEEDING-EDGE ATTACK RESPONSE Potential root shell connection detected!
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 580 2001546 || BLEEDING-EDGE WEB-MISC LINK Method || url,www.w3.org/Protocols/HTTP/Methods/Link.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 581 2001547 || BLEEDING-EDGE VIRUS Sobig.E-F Trojan Site Download Request || url,securityresponse.symantec.com/avcenter/venc/data/w32.sobig.e@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 582 2001548 || BLEEDING-EDGE VIRUS Sasser FTP exploit attempt || url,www.lurhq.com/dabber.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 583 2001549 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (1) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 583 2001549 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (1) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 583 2001549 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (1) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 583 2001549 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (1) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 583 2001549 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (1) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 583 2001549 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (1) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 584 2001550 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (2) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 584 2001550 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (2) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 584 2001550 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (2) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 584 2001550 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (2) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 584 2001550 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (2) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 584 2001550 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (2) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 585 2001551 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (3) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 585 2001551 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (3) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 585 2001551 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (3) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 585 2001551 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (3) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 585 2001551 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (3) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 585 2001551 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (3) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 586 2001552 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (4) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 586 2001552 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (4) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 586 2001552 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (4) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 586 2001552 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (4) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 586 2001552 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (4) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 586 2001552 || BLEEDING-EDGE EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (4) || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158&type=vulnerabilities&flashstatus=true || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 587 2001553 || BLEEDING-EDGE Scan Possible SSL Brute Force attack or Site Crawl
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 588 2001554 || BLEEDING-EDGE Worm Rbot.Gen Infection Attempt || url,www.f-secure.com/v-descs/rbot.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 589 2001556 || BLEEDING-EDGE VIRUS W32/Bagle.z@MM Requesting 5.php || mcafee,122415
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 590 2001562 || BLEEDING-EDGE Malware MarketScore.com Spyware User Configuration and Setup Access || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 590 2001562 || BLEEDING-EDGE Malware MarketScore.com Spyware User Configuration and Setup Access || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 591 2001563 || BLEEDING-EDGE Malware MarketScore.com Spyware SSL Access || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 591 2001563 || BLEEDING-EDGE Malware MarketScore.com Spyware SSL Access || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 592 2001564 || BLEEDING-EDGE Malware MarketScore.com Spyware Proxied Traffic || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 592 2001564 || BLEEDING-EDGE Malware MarketScore.com Spyware Proxied Traffic || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 593 2001565 || BLEEDING-EDGE WORM Netsky.P - SMTP incoming || url,secunia.com/search/?search=netsky.p
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 594 2001566 || BLEEDING-EDGE WORM Netsky.P - SMTP outgoing || url,secunia.com/search/?search=netsky.p
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 595 2001567 || BLEEDING-EDGE VIRUS Bagel - outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.a@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 596 2001568 || BLEEDING-EDGE VIRUS Bagel - incoming || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.a@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 597 2001569 || BLEEDING-EDGE Behavioral Unusual Port 445 traffic, Potential Scan or Infection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 598 2001570 || BLEEDING-EDGE Malware Spyware Stormer Reporting Data || url,www.spywarestormer.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 599 2001571 || BLEEDING-EDGE Malware Spyware Stormer/Error Guard Activity || url,www.spywarestormer.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 600 2001572 || BLEEDING-EDGE VIRUS Zafi Worm - incoming || url,securityresponse.symantec.com/avcenter/venc/data/w32.erkez.b@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 601 2001573 || BLEEDING-EDGE VIRUS Zafi Worm outgoing detected || url,securityresponse.symantec.com/avcenter/venc/data/w32.erkez.b@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 602 2001576 || BLEEDING-EDGE MALWARE BInet Information Install Report || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 603 2001577 || BLEEDING-EDGE VIRUS Sober.I - incoming || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober.i@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 604 2001578 || BLEEDING-EDGE VIRUS Sober.I - outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober.i@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 605 2001579 || BLEEDING-EDGE Behavioral Unusual Port 139 traffic, Potential Scan or Infection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 606 2001580 || BLEEDING-EDGE Behavioral Unusual Port 137 traffic, Potential Scan or Infection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 607 2001581 || BLEEDING-EDGE Behavioral Unusual Port 135 traffic, Potential Scan or Infection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 608 2001582 || BLEEDING-EDGE Behavioral Unusual Port 1434 traffic, Potential Scan or Infection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 609 2001583 || BLEEDING-EDGE Behavioral Unusual Port 1433 traffic, Potential Scan or Infection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 610 2001584 || BLEEDING-EDGE Virus Bot Reporting Scan/Exploit || url,www.nitroguard.com/rxbot.html || url,cert.uni-stuttgart.de/doc/netsec/bots.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 610 2001584 || BLEEDING-EDGE Virus Bot Reporting Scan/Exploit || url,www.nitroguard.com/rxbot.html || url,cert.uni-stuttgart.de/doc/netsec/bots.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 611 2001586 || BLEEDING-EDGE Malware MarketScore.com Spyware Proxied Traffic (mitmproxy agent) || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 611 2001586 || BLEEDING-EDGE Malware MarketScore.com Spyware Proxied Traffic (mitmproxy agent) || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 612 2001587 || BLEEDING-EDGE Malware MarketScore.com Spyware Upgrading || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 612 2001587 || BLEEDING-EDGE Malware MarketScore.com Spyware Upgrading || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 613 2001588 || BLEEDING-EDGE Malware MarketScore.com Spyware Activity (1) || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 613 2001588 || BLEEDING-EDGE Malware MarketScore.com Spyware Activity (1) || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 614 2001589 || BLEEDING-EDGE Malware MarketScore.com Spyware Activity (2) || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 614 2001589 || BLEEDING-EDGE Malware MarketScore.com Spyware Activity (2) || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 615 2001590 || BLEEDING-EDGE Virus NetSky.C Worm - incoming || url,secunia.com/virus_information/557/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 616 2001591 || BLEEDING-EDGE Virus NetSky.C Worm - outgoing detected || url,secunia.com/virus_information/557/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 617 2001592 || BLEEDING-EDGE VIRUS Zafi.d P2P Infection Attempt (1) || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_ZAFI.D
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 618 2001593 || BLEEDING-EDGE VIRUS Zafi.d P2P Infection Attempt (2) || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_ZAFI.D
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 619 2001594 || BLEEDING-EDGE VIRUS Zafi.d a.exe file upload || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_ZAFI.D
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 620 2001595 || BLEEDING-EDGE Policy Skype VOIP Checking Version (Startup) || url,www1.cs.columbia.edu/~library/TR-repository/reports/reports-2004/cucs-039-04.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 621 2001596 || BLEEDING-EDGE Policy Skype VOIP Reporting Install || url,www1.cs.columbia.edu/~library/TR-repository/reports/reports-2004/cucs-039-04.pdf
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 622 2001597 || BLEEDING-EDGE Policy Netop Remote Control Usage || url,www.netop.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 623 2001598 || BLEEDING-EDGE VIRUS Zafi.D Worm .zip - incoming detected || url,secunia.com/virus_information/13874/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 624 2001599 || BLEEDING-EDGE VIRUS Zafi.D Worm .zip - outgoing detected || url,secunia.com/virus_information/13874/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 625 2001600 || BLEEDING-EDGE VIRUS Zafi.D Worm .cmd, .com, .pif or .bat - incoming detected || url,secunia.com/virus_information/13874/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 626 2001601 || BLEEDING-EDGE VIRUS Zafi.D Worm .cmd, .com, .pif or .bat - outgoing detected || url,secunia.com/virus_information/13874/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 627 2001602 || BLEEDING-EDGE Virus Netsky.Z Worm - incoming detected || url,secunia.com/virus_information/8911/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 628 2001603 || BLEEDING-EDGE Virus Netsky.Z Worm - outgoing detected || url,secunia.com/virus_information/8911/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 629 2001607 || BLEEDING-EDGE Virus Possible santy.A Worm Defaced Page || url,securityresponse.symantec.com/avcenter/venc/data/perl.santy.html || url,securityresponse.symantec.com/avcenter/venc/data/perl.santy.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 629 2001607 || BLEEDING-EDGE Virus Possible santy.A Worm Defaced Page || url,securityresponse.symantec.com/avcenter/venc/data/perl.santy.html || url,securityresponse.symantec.com/avcenter/venc/data/perl.santy.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 630 2001608 || BLEEDING-EDGE INAPPROPRIATE Likely Porn
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 631 2001609 || BLEEDING-EDGE F5 BIG-IP 3DNS TCP Probe 1 || url,www.f5.com/f5products/v9intro/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 632 2001610 || BLEEDING-EDGE F5 BIG-IP 3DNS TCP Probe 2 || url,www.f5.com/f5products/v9intro/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 633 2001611 || BLEEDING-EDGE F5 BIG-IP 3DNS TCP Probe 3 || url,www.f5.com/f5products/v9intro/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 634 2001614 || BLEEDING-EDGE Virus PHPInclude.Worm Inbound Attack || url,www.k-otik.com/exploits/20041225.PhpIncludeWorm.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 635 2001615 || BLEEDING-EDGE Virus PHPInclude.Worm Outbound Attack --LOCAL INFECTION-- || url,www.k-otik.com/exploits/20041225.PhpIncludeWorm.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 636 2001616 || BLEEDING-EDGE ATTACK RESPONSE Zone-H.org defacement notification
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 637 2001617 || BLEEDING-EDGE Virus Santy.B worm variants searching for targets (1) || url,securityresponse.symantec.com/avcenter/venc/data/perl.santy.b.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 638 2001618 || BLEEDING-EDGE Virus Santy.B worm variants searching for targets (2) || url,securityresponse.symantec.com/avcenter/venc/data/perl.santy.b.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 639 2001619 || BLEEDING-EDGE Virus Santy.B worm variants searching for targets (yahoo) || url,securityresponse.symantec.com/avcenter/venc/data/perl.santy.b.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 640 2001620 || BLEEDING-EDGE ATTACK RESPONSE Likely Botnet Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 641 2001621 || BLEEDING-EDGE Exploit Suspected PHP Injection Attack || cve,2002-0953
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 642 2001622 || BLEEDING-EDGE EXPLOIT winhlp32 ActiveX control attack, phase 1
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 643 2001623 || BLEEDING-EDGE EXPLOIT winhlp32 ActiveX control attack, phase 2
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 644 2001624 || BLEEDING-EDGE EXPLOIT winhlp32 ActiveX control attack, phase 3
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 645 2001625 || BLEEDING-EDGE EXPLOIT winhlp32 ActiveX control attack via EMAIL, phase 1
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 646 2001626 || BLEEDING-EDGE EXPLOIT winhlp32 ActiveX control attack via EMAIL, phase 2
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 647 2001627 || BLEEDING-EDGE EXPLOIT winhlp32 ActiveX control attack via EMAIL, phase 3
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 648 2001628 || BLEEDING-EDGE ATTACK RESPONSE Outbound PHP Connection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 649 2001633 || BLEEDING-EDGE EXPLOIT Probable MSIE XPSP2 Remote Compromise (1) || url,freehost07.websamba.com/greyhats/sp2rc-analysis.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 650 2001634 || BLEEDING-EDGE EXPLOIT Probable MSIE XPSP2 Remote Compromise (2) || url,freehost07.websamba.com/greyhats/sp2rc-analysis.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 651 2001635 || BLEEDING-EDGE DOS HTTP GET with newline appended || cve,2004-0942
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 652 2001636 || BLEEDING-EDGE DOS squ1rt Apache DoS || cve,2004-0942
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 653 2001637 || BLEEDING-EDGE Policy SSH Successful user connection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 654 2001638 || BLEEDING-EDGE VIRUS W32/Bagle.dldr Trojan - download attempt || url,secunia.com/virus_information/13085/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 655 2001639 || BLEEDING-EDGE Malware Wild Tangent Agent Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 656 2001640 || BLEEDING-EDGE MALWARE Altnet PeerPoints Manager Traffic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 657 2001641 || BLEEDING-EDGE Malware Microgaming.com Spyware Installation (dlhelper)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 658 2001643 || BLEEDING-EDGE Malware Microgaming.com Spyware Installation (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 659 2001644 || BLEEDING-EDGE Malware Microgaming.com Spyware Reporting Installation
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 660 2001645 || BLEEDING-EDGE Malware Microgaming.com Spyware Casino App Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 661 2001646 || BLEEDING-EDGE Malware Toprebates.com Install (1) || url,securityresponse.symantec.com/avcenter/venc/data/adware.webrebates.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 662 2001647 || BLEEDING-EDGE Malware Toprebates.com Install (2) || url,securityresponse.symantec.com/avcenter/venc/data/adware.webrebates.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 663 2001648 || BLEEDING-EDGE Malware Toprebates.com User Confirming Membership || url,securityresponse.symantec.com/avcenter/venc/data/adware.webrebates.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 664 2001650 || BLEEDING-EDGE Malware Search Scout Related Spyware (content) || url,securityresponse.symantec.com/avcenter/venc/data/adware.searchscout.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 665 2001652 || BLEEDING-EDGE Malware JoltID Agent New Code Download || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 665 2001652 || BLEEDING-EDGE Malware JoltID Agent New Code Download || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 666 2001653 || BLEEDING-EDGE Malware Search Scout Related Spyware (results) || url,securityresponse.symantec.com/avcenter/venc/data/adware.searchscout.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 667 2001654 || BLEEDING-EDGE Malware JoltID Agent Requesting File || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 667 2001654 || BLEEDING-EDGE Malware JoltID Agent Requesting File || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 668 2001655 || BLEEDING-EDGE Malware Comet Systems Spyware Traffic (context.xml) || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453083029
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 669 2001656 || BLEEDING-EDGE Malware GlobalPhon.com Dialer
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 670 2001657 || BLEEDING-EDGE Malware GlobalPhon.com Dialer Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 671 2001658 || BLEEDING-EDGE Malware Comet Systems Spyware Reporting
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 672 2001659 || BLEEDING-EDGE Malware GlobalPhon.com Dialer (no_pop)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 673 2001660 || BLEEDING-EDGE Malware GlobalPhon.com Dialer (add_ocx)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 674 2001662 || BLEEDING-EDGE Malware MyWebSearch Toolbar Traffic (Agent)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 675 2001663 || BLEEDING-EDGE Malware MyWebSearch Toolbar Traffic (host)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 676 2001664 || BLEEDING-EDGE P2P Gnutella Connect || url,www.gnutella.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 677 2001665 || BLEEDING-EDGE Malware Unknown Suspicious PrintMe Suspected Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 678 2001666 || BLEEDING-EDGE Malware Metarewards Spyware Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 679 2001667 || BLEEDING-EDGE EXPLOIT Blahot Worm Infection Reporting in || url,www.blahot.com || url,www.vitalsecurity.org/2005/01/malware-spam.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 679 2001667 || BLEEDING-EDGE EXPLOIT Blahot Worm Infection Reporting in || url,www.blahot.com || url,www.vitalsecurity.org/2005/01/malware-spam.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 680 2001668 || BLEEDING-EDGE EXPLOIT Exploit MS05-002 Malformed .ANI stack overflow attack
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 681 2001669 || BLEEDING-EDGE Web Proxy GET Request
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 682 2001670 || BLEEDING-EDGE Web Proxy HEAD Request
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 683 2001671 || BLEEDING-EDGE EXPLOIT Blahot Worm Infection Reporting in (to blahot.com) || url,www.blahot.com || url,www.vitalsecurity.org/2005/01/malware-spam.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 683 2001671 || BLEEDING-EDGE EXPLOIT Blahot Worm Infection Reporting in (to blahot.com) || url,www.blahot.com || url,www.vitalsecurity.org/2005/01/malware-spam.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 684 2001672 || BLEEDING-EDGE Virus MyDoom.I worm - outbound || url,secunia.com/virus_information/8818/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 685 2001673 || BLEEDING-EDGE Virus MyDoom.I worm - inbound || url,secunia.com/virus_information/8818/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 686 2001674 || BLEEDING-EDGE Proxy POST Request
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 687 2001675 || BLEEDING-EDGE Proxy CONNECT Request
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 688 2001676 || BLEEDING-EDGE Virus Bot Reporting/Commencing DDoS || url,www.nitroguard.com/rxbot.html || url,cert.uni-stuttgart.de/doc/netsec/bots.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 688 2001676 || BLEEDING-EDGE Virus Bot Reporting/Commencing DDoS || url,www.nitroguard.com/rxbot.html || url,cert.uni-stuttgart.de/doc/netsec/bots.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 689 2001677 || BLEEDING-EDGE Malware Webhancer Data Post || url,securityresponse.symantec.com/avcenter/venc/data/spyware.webhancer.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 690 2001678 || BLEEDING-EDGE Malware Webhancer Agent Activity || url,securityresponse.symantec.com/avcenter/venc/data/spyware.webhancer.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 691 2001679 || BLEEDING-EDGE Malware JoltID Agent P2P via Proxy Server || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 692 2001680 || BLEEDING-EDGE Virus VBSun.A Tsunami Scam Worm INCOMING || url,www.sophos.com/virusinfo/articles/vbsuna.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 693 2001681 || BLEEDING-EDGE Virus VBSun.A Tsunami Scam Worm OUTBOUND || url,www.sophos.com/virusinfo/articles/vbsuna.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 694 2001682 || BLEEDING-EDGE Policy MSN IM Poll via HTTP
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 695 2001683 || BLEEDING-EDGE Malware Windows executable sent when remote host claims to send an image
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 696 2001684 || BLEEDING-EDGE Malware Windows executable sent when remote host claims to send image, Win32
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 697 2001685 || BLEEDING-EDGE Malware Possible Windows executable sent when remote host claims to send an image
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 698 2001686 || BLEEDING-EDGE EXPLOIT Awstats Remote Code Execution Attempt || cve,CAN-2005-0116 || bugtraq,12298 || url,www.idefense.com/application/poi/display?id=185&type=vulnerabilities&flashstatus=false || url,awstats.sourceforge.net || url,www.k-otik.com/exploits/20050302.awstats_shell.c.php || url,www.k-otik.com/exploits/20050124.awexpl.c.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 698 2001686 || BLEEDING-EDGE EXPLOIT Awstats Remote Code Execution Attempt || cve,CAN-2005-0116 || bugtraq,12298 || url,www.idefense.com/application/poi/display?id=185&type=vulnerabilities&flashstatus=false || url,awstats.sourceforge.net || url,www.k-otik.com/exploits/20050302.awstats_shell.c.php || url,www.k-otik.com/exploits/20050124.awexpl.c.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 698 2001686 || BLEEDING-EDGE EXPLOIT Awstats Remote Code Execution Attempt || cve,CAN-2005-0116 || bugtraq,12298 || url,www.idefense.com/application/poi/display?id=185&type=vulnerabilities&flashstatus=false || url,awstats.sourceforge.net || url,www.k-otik.com/exploits/20050302.awstats_shell.c.php || url,www.k-otik.com/exploits/20050124.awexpl.c.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 698 2001686 || BLEEDING-EDGE EXPLOIT Awstats Remote Code Execution Attempt || cve,CAN-2005-0116 || bugtraq,12298 || url,www.idefense.com/application/poi/display?id=185&type=vulnerabilities&flashstatus=false || url,awstats.sourceforge.net || url,www.k-otik.com/exploits/20050302.awstats_shell.c.php || url,www.k-otik.com/exploits/20050124.awexpl.c.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 699 2001687 || BLEEDING-EDGE MySQL bot DNS lookup || url,isc.sans.org/diary.php?date=2005-01-27
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 700 2001688 || BLEEDING-EDGE MySQL bot DNS lookup || url,isc.sans.org/diary.php?date=2005-01-27
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 701 2001689 || BLEEDING-EDGE Potential MySQL bot scanning for SQL server || url,isc.sans.org/diary.php?date=2005-01-27
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 702 2001690 || BLEEDING-EDGE Potential MySQL bot connecting to IRC server || url,isc.sans.org/diary.php?date=2005-01-27
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 703 2001691 || BLEEDING-EDGE VIRUS Bagle.BJ -alias .AY, .BC- worm -.com, exe extensions- - outbound || url,secunia.com/virus_information/14902/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 704 2001692 || BLEEDING-EDGE VIRUS Bagle.BJ -alias .AY, .BC- worm -.com, .exe extensions- - incoming || url,secunia.com/virus_information/14902/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 705 2001693 || BLEEDING-EDGE VIRUS Bagle.BJ -alias .AY, .BC- worm -.cpl extension- - outbound || url,secunia.com/virus_information/14902/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 706 2001694 || BLEEDING-EDGE VIRUS Bagle.BJ -alias .AY, .BC- worm -.cpl extension- - incoming || url,secunia.com/virus_information/14902/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 707 2001695 || BLEEDING-EDGE VIRUS Bagle.BJ -alias .AY, .BC- - download attempt || url,secunia.com/virus_information/14877/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 708 2001696 || BLEEDING-EDGE Malware Search Relevancy Spyware || url,securityresponse.symantec.com/avcenter/venc/data/spyware.relevancy.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 709 2001697 || BLEEDING-EDGE Malware ISearchTech.com XXXPornToolbar Data Submission || url,www.isearchtech.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 710 2001698 || BLEEDING-EDGE Malware YourSiteBar Data Submision || url,www.ysbweb.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 711 2001699 || BLEEDING-EDGE Malware YourSiteBar Activity || url,www.ysbweb.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 712 2001700 || BLEEDING-EDGE Malware Windupdates.com Spyware Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 713 2001701 || BLEEDING-EDGE Malware Windupdates.com Spyware Loggin Data
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 714 2001702 || BLEEDING-EDGE Malware Shop at Home Select Spyware Activity (Bundle)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 715 2001703 || BLEEDING-EDGE Malware Context Plus Spyware Activity (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 716 2001704 || BLEEDING-EDGE Malware Context Plus Spyware Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 717 2001705 || BLEEDING-EDGE Malware Flingstone Spyware Install (sportsinteraction) || url,securityresponse.symantec.com/avcenter/venc/data/adware.winfavorites.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 718 2001706 || BLEEDING-EDGE Malware Context Plus Spyware Activity (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 719 2001707 || BLEEDING-EDGE Malware Shop at Home Select Spyware Activity (SAH)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 720 2001708 || BLEEDING-EDGE Malware Shop at Home Select Spyware Heartbeat || url,securityresponse.symantec.com/avcenter/venc/data/adware.sahagent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 721 2001709 || BLEEDING-EDGE Malware Shop at Home Select Spyware Config Download (agentprefs) || url,securityresponse.symantec.com/avcenter/venc/data/adware.sahagent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 722 2001710 || BLEEDING-EDGE Malware Flingstone Spyware Install (cxtpls) || url,securityresponse.symantec.com/avcenter/venc/data/adware.winfavorites.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 723 2001711 || BLEEDING-EDGE Malware Likely Spambot Web-based Control Traffic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 724 2001712 || BLEEDING-EDGE MyWebEx Server Traffic || url,www.mywebexpc.com/how.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 725 2001713 || BLEEDING-EDGE MyWebEx Installation || url,www.mywebexpc.com/how.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 726 2001714 || BLEEDING-EDGE MyWebEx Incoming Connection || url,www.mywebexpc.com/how.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 727 2001715 || BLEEDING-EDGE Virus Bropia.F Worm Propagation || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM%5FBROPIA%2EF
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 728 2001716 || BLEEDING-EDGE Web IDN url seen..
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 729 2001717 || BLEEDING-EDGE ATTACK RESPONSE Successful user connection AFTER Brute Force Attack
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 730 2001718 || BLEEDING-EDGE EXPLOIT CAN-2004-1244 PNG with bad width
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 731 2001719 || BLEEDING-EDGE EXPLOIT CAN-2004-1244 PNG with bad height
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 732 2001720 || BLEEDING-EDGE EXPLOIT CAN-2004-0597 PNG with indexed color
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 733 2001721 || BLEEDING-EDGE EXPLOIT CAN-2004-0597 PNG with too big PLTE
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 734 2001722 || BLEEDING-EDGE EXPLOIT CAN-2004-0597 PNG with too big hIST
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 735 2001723 || BLEEDING-EDGE EXPLOIT ATmaCA PoC for CORE-2004-0819 -- bad PNG
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 736 2001724 || BLEEDING-EDGE EXPLOIT libpng CAN-2004-1244 overflow attempt || bugtraq,10872 || cve,2004-0597
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 737 2001725 || BLEEDING-EDGE EXPLOIT MS05-014 HTML OBJECT tag local zone exploit || url,www.microsoft.com/technet/security/bulletin/ms05-014.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 738 2001726 || BLEEDING-EDGE Virus Trojan-Spy.Win32.Bancos Download || url,securityresponse.symantec.com/avcenter/venc/data/pwsteal.bancos.b.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 739 2001727 || BLEEDING-EDGE EXPLOIT MS05-005 Office XP Remote Code Attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 740 2001728 || BLEEDING-EDGE POLICY TOR 1.0 Client Circuit Traffic || url,tor.eff.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 741 2001729 || BLEEDING-EDGE Malware Tibsystems Spyware Install (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 742 2001730 || BLEEDING-EDGE MALWARE A-d-w-a-r-e.com Activity (popup) || url,www.a-d-w-a-r-e.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 743 2001731 || BLEEDING-EDGE Malware SurfSidekick Activity || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfsidekick.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 744 2001732 || BLEEDING-EDGE Malware Top Converting Agent Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 745 2001733 || BLEEDING-EDGE Malware CrazyWinnings.com Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 746 2001734 || BLEEDING-EDGE Malware Tibsystems Spyware Install (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 747 2001735 || BLEEDING-EDGE MALWARE A-d-w-a-r-e.com Activity (cmd) || url,www.a-d-w-a-r-e.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 748 2001736 || BLEEDING-EDGE Malware UCMore Spyware Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 749 2001737 || BLEEDING-EDGE MALWARE ak-networks.com Spyware Code Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 750 2001738 || BLEEDING-EDGE WEB PHP vBulletin Remote Command Execution Attempt || bugtraq,12542
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 751 2001739 || BLEEDING-EDGE Virus Dipnet infected host response (1) || url,www.lurhq.com/dipnet.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 752 2001740 || BLEEDING-EDGE Virus Dipnet infected host response (2) || url,www.lurhq.com/dipnet.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 753 2001742 || BLEEDING-EDGE EXPLOIT Arkeia full remote access without password or authentication || url,metasploit.com/research/arkeia_agent
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 754 2001743 || BLEEDING-EDGE Trojan HackerDefender Root Kit Remote Connection Attempt Detected || url,securityresponse.symantec.com/avcenter/venc/data/backdoor.hackdefender.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 755 2001744 || BLEEDING-EDGE Malware Searchmiracle.com Spyware Install (install) || url,www.searchmiracle.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 756 2001746 || BLEEDING-EDGE Malware Enhance My Search Spyware Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 757 2001747 || BLEEDING-EDGE Malware My-Stats.com Spyware Checkin
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 758 2001748 || BLEEDING-EDGE Malware Pynix.dll BHO Activity || url,www.pynix.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 759 2001749 || BLEEDING-EDGE VIRUS Sober.K Worm - incoming || url,secunia.com/search/?search=sober.k
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 760 2001750 || BLEEDING-EDGE VIRUS Sober.K Worm - outgoing || url,secunia.com/search/?search=sober.k
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 761 2001751 || BLEEDING-EDGE Nullsoft Shoutcast Server Format String Attack || bugtraq,12096 || cve,2004-1373
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 762 2001752 || BLEEDING-EDGE VIRUS Bagle.BE Download attempt || url,secunia.com/virus_information/15815/bagle.be/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 763 2001753 || BLEEDING-EDGE EXPLOIT Pwdump4 Session Established GetHash port 139
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 764 2001754 || BLEEDING-EDGE EXPLOIT Pwdump4 Session Established GetHash port 445
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 765 2001756 || BLEEDING-EDGE P2P Ares File Upload || url,www.aresgalaxy.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 766 2001757 || BLEEDING-EDGE VIRUS BagleDl-M SMTP Outbound || url,www.sophos.com/virusinfo/analyses/trojbagledlm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 767 2001758 || BLEEDING-EDGE VIRUS BagleDl-M SMTP Inbound || url,www.sophos.com/virusinfo/analyses/trojbagledlm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 768 2001759 || BLEEDING-EDGE VIRUS Beagle.BK - outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.bk@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 769 2001760 || BLEEDING-EDGE VIRUS Beagle.BK - incoming || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.bk@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 770 2001761 || BLEEDING-EDGE MALWARE ABX Toolbar ActiveX Install || url,isc.sans.org/diary.php?date=2005-03-04
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 771 2001762 || BLEEDING-EDGE WEB phpbb Session Cookie || url,www.waraxe.us/ftopict-555.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 772 2001763 || BLEEDING-EDGE VIRUS - W32.Opaserv Worm Infection || url,www.sarc.com/avcenter/venc/data/w32.opaserv.worm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 773 2001764 || BLEEDING-EDGE VIRUS - Bugbear@MM virus in SMTP || url,www.symantec.com/avcenter/venc/data/w32.bugbear@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 774 2001765 || BLEEDING-EDGE VIRUS - BugBear@MM virus in Network share || url,www.symantec.com/avcenter/venc/data/w32.bugbear@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 775 2001766 || BLEEDING-EDGE VIRUS - BugBear@MM Worm Copied to Startup Folder || url,www.symantec.com/avcenter/venc/data/w32.bugbear@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 776 2001767 || BLEEDING-EDGE WEB ORACLE OLEDB asp error || url,www.wiretrip.net/rfp/p/doc.asp/i2/d42.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 777 2001768 || BLEEDING-EDGE WEB MS SQL Server OLEDB asp error || url,www.wiretrip.net/rfp/p/doc.asp/i2/d42.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 778 2001780 || BLEEDING-EDGE EXPLOIT Solaris TTYPROMPT environment variable set || url,online.securityfocus.com/archive/1/293844
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 779 2001781 || BLEEDING-EDGE WEB ORACLE rwcgi60 information leak attempt || url,www.kb.cert.org/vuls/id/997403
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 780 2001783 || BLEEDING-EDGE Malware Media Pass ActiveX Install || url,static.windupdates.com/Release/v19/Info.txt || url,www.benedelman.org/news/010205-1.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 780 2001783 || BLEEDING-EDGE Malware Media Pass ActiveX Install || url,static.windupdates.com/Release/v19/Info.txt || url,www.benedelman.org/news/010205-1.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 781 2001793 || BLEEDING-EDGE Malware Incredisearch.com Spyware Ping
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 782 2001794 || BLEEDING-EDGE Malware Incredisearch.com Spyware Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 783 2001795 || BLEEDING-EDGE DOS Excessive SMTP MAIL-FROM DDoS
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 784 2001796 || BLEEDING-EDGE P2P kazaa over UDP || url,www.kazaa.com/us/index.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 785 2001799 || BLEEDING-EDGE Unknown Yahoo Messenger Worm DNS lookup || url,isc.sans.org/diary.php?date=2005-03-20
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 786 2001800 || BLEEDING-EDGE Unknown Yahoo Messenger Worm URL access || url,isc.sans.org/diary.php?date=2005-03-20
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 787 2001801 || BLEEDING-EDGE POLICY ICQ Status Invisible
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 788 2001802 || BLEEDING-EDGE POLICY ICQ Status Change (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 789 2001803 || BLEEDING-EDGE POLICY ICQ Status Change (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 790 2001804 || BLEEDING-EDGE POLICY ICQ Login
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 791 2001805 || BLEEDING-EDGE POLICY ICQ Message
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 792 2001806 || BLEEDING-EDGE POLICY Administrator Login Detected
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 793 2001807 || BLEEDING-EDGE EXPLOIT CAN-2005-0399 Gif Vuln via http
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 794 2001808 || BLEEDING-EDGE P2P LimeWire P2P Traffic || url,www.limewire.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 795 2001809 || BLEEDING-EDGE P2P Limewire P2P UDP Traffic || url,www.limewire.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 796 2001810 || BLEEDING-EDGE EXPLOIT WEB PHP remote file include exploit attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 797 2001811 || BLEEDING-EDGE WEB Encoded javascriptdocument.write - usually hostile
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 798 2001812 || BLEEDING-EDGE KazaaClient P2P Traffic || url,www.kazaa.com/us/index.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 799 2001813 || BLEEDING-EDGE EXPLOIT MSIE Hidden Address Bar (Phish) || url,securityresponse.symantec.com/avcenter/venc/data/js.trojan.blinder.html || url,www.guninski.com/popspoof.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 799 2001813 || BLEEDING-EDGE EXPLOIT MSIE Hidden Address Bar (Phish) || url,securityresponse.symantec.com/avcenter/venc/data/js.trojan.blinder.html || url,www.guninski.com/popspoof.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 800 2001814 || BLEEDING-EDGE Spambot Proxy Control Channel
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 801 2001815 || BLEEDING-EDGE Spambot Suspicious 220 Banner on Local Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 802 2001834 || BLEEDING-EDGE DNS lookup attempt to hostile, poisoning DNS server - ISC Diary || url,isc.sans.org/diary.php?date=2005-03-31 || url,isc.sans.org/diary.php?date=2005-03-30
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 802 2001834 || BLEEDING-EDGE DNS lookup attempt to hostile, poisoning DNS server - ISC Diary || url,isc.sans.org/diary.php?date=2005-03-31 || url,isc.sans.org/diary.php?date=2005-03-30
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 803 2001835 || BLEEDING-EDGE Sites trying to infect PCs with malware - ISC Diary || url,isc.sans.org/diary.php?date=2005-03-30
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 804 2001836 || BLEEDING-EDGE Web page trying to infect PCs with malware - ISC Diary || url,isc.sans.org/diary.php?date=2005-03-30
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 805 2001837 || BLEEDING-EDGE Suspicious DNS server answer\: 218.38.13.108
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 806 2001838 || BLEEDING-EDGE Suspicious DNS server answer\: 217.16.26.148
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 807 2001839 || BLEEDING-EDGE Suspicious DNS server answer\: 205.162.201.11
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 808 2001840 || BLEEDING-EDGE Suspicious DNS server answer\: besthost.co.kr
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 809 2001841 || BLEEDING-EDGE P2P UDP traffic -- Likely Limewire || url,www.limewire.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 810 2001842 || BLEEDING-EDGE Possible DNS Lookup for DNS Poisoning Domain 7sir7.com || url,isc.sans.org/diary.php?date=2005-04-07
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 811 2001843 || BLEEDING-EDGE Possible DNS Lookup for DNS Poisoning Domain 123xxl.com || url,isc.sans.org/diary.php?date=2005-04-07
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 812 2001844 || BLEEDING-EDGE Possible DNS Lookup for DNS Poisoning Domain abx4.com || url,isc.sans.org/diary.php?date=2005-04-07
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 813 2001846 || BLEEDING-EDGE DOS -ISC- ICMP blind TCP reset DoS guessing attempt || url,isc.sans.org/diary.php?date=2005-04-12 || url,www.microsoft.com/technet/security/bulletin/MS05-019.mspx || cve,can-2004-0790
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 813 2001846 || BLEEDING-EDGE DOS -ISC- ICMP blind TCP reset DoS guessing attempt || url,isc.sans.org/diary.php?date=2005-04-12 || url,www.microsoft.com/technet/security/bulletin/MS05-019.mspx || cve,can-2004-0790
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 814 2001848 || BLEEDING-EDGE EXPLOIT MS05-021 Exchange Link State - Possible Attack (1) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 814 2001848 || BLEEDING-EDGE EXPLOIT MS05-021 Exchange Link State - Possible Attack (1) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 815 2001849 || BLEEDING-EDGE EXPLOIT MS05-021 Exchange Link State - Possible Attack (2) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 815 2001849 || BLEEDING-EDGE EXPLOIT MS05-021 Exchange Link State - Possible Attack (2) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 816 2001850 || BLEEDING-EDGE MALWARE Likely Trojan/Spyware Installer Requested (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 817 2001852 || BLEEDING-EDGE MALWARE 404Search Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 818 2001853 || BLEEDING-EDGE MALWARE Easy Search Bar Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 819 2001854 || BLEEDING-EDGE MALWARE EZULA Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 820 2001855 || BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (1) || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 821 2001858 || BLEEDING-EDGE MALWARE Hotbar Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 822 2001859 || BLEEDING-EDGE MALWARE Cool Web Search Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 823 2001860 || BLEEDING-EDGE MALWARE Kontiki Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 824 2001861 || BLEEDING-EDGE MALWARE Micro-Gaming Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 825 2001862 || BLEEDING-EDGE MALWARE Surf Assistant Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 826 2001863 || BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (2) || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 827 2001864 || BLEEDING-EDGE MALWARE Fun Web Products Spyware User Agent (3) || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 828 2001865 || BLEEDING-EDGE MALWARE MyWebSearch Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 829 2001866 || BLEEDING-EDGE MALWARE Smartpops/Mediaload Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 830 2001867 || BLEEDING-EDGE MALWARE Search Engine 2000 Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 831 2001868 || BLEEDING-EDGE MALWARE SureSeeker Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 832 2001869 || BLEEDING-EDGE MALWARE Sidesearch Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 833 2001870 || BLEEDING-EDGE MALWARE Surfplayer Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 834 2001871 || BLEEDING-EDGE MALWARE Target Saver Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 835 2001872 || BLEEDING-EDGE MALWARE Visicom Spyware User Agent || url,www.bleedingsnort.com/article.php?story=20050303190103553
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 836 2001873 || BLEEDING-EDGE EXPLOIT MS Exchange Link State Routing Chunk (maybe MS05-021) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 836 2001873 || BLEEDING-EDGE EXPLOIT MS Exchange Link State Routing Chunk (maybe MS05-021) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 837 2001874 || BLEEDING-EDGE EXPLOIT TCP Reset from MS Exchange after chunked data, probably crashed it (MS05-021) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 837 2001874 || BLEEDING-EDGE EXPLOIT TCP Reset from MS Exchange after chunked data, probably crashed it (MS05-021) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 838 2001875 || BLEEDING-EDGE EXPLOIT MS Exchange chunks accepted || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 838 2001875 || BLEEDING-EDGE EXPLOIT MS Exchange chunks accepted || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 839 2001876 || BLEEDING-EDGE EXPLOIT MS Exchange disliked link state chunk, but didn't die (MS05-021) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 839 2001876 || BLEEDING-EDGE EXPLOIT MS Exchange disliked link state chunk, but didn't die (MS05-021) || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 840 2001878 || BLEEDING-EDGE WORM General MSN Worm URL Outbound || url,isc.sans.org/diary.php?date=2005-04-13
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 841 2001879 || BLEEDING-EDGE VIRUS Sober-style Ehlo - noalert || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 842 2001880 || BLEEDING-EDGE VIRUS Sober-style Ehlo followed by SMTP AUTH - noalert || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 843 2001881 || BLEEDING-EDGE VIRUS Possible Sober virus attachment Outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 844 2001882 || BLEEDING-EDGE DOS ICMP Path MTU lowered below acceptable threshold || url,isc.sans.org/diary.php?date=2005-04-12 || url,www.microsoft.com/technet/security/bulletin/MS05-019.mspx || cve,CAN-2004-1060
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 844 2001882 || BLEEDING-EDGE DOS ICMP Path MTU lowered below acceptable threshold || url,isc.sans.org/diary.php?date=2005-04-12 || url,www.microsoft.com/technet/security/bulletin/MS05-019.mspx || cve,CAN-2004-1060
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 845 2001883 || BLEEDING-EDGE EXPLOIT Kali Tagboard Command Execution Attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 846 2001884 || BLEEDING-EDGE MALWARE DesktopTraffic Toolbar Spyware || url,research.spysweeper.com/threat_library/threat_details.php?threat=desktoptraffic.net_hijack
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 847 2001885 || BLEEDING-EDGE MALWARE Begin2Search.com Spyware || url,sarc.com/avcenter/venc/data/adware.begin2search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 848 2001886 || BLEEDING-EDGE MALWARE ToolbarPartner Spyware Install || url,toolbarpartner.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 849 2001887 || BLEEDING-EDGE MALWARE ToolbarPartner Spyware Activity (1) || url,toolbarpartner.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 850 2001888 || BLEEDING-EDGE MALWARE ToolbarPartner Spyware Activity (2) || url,toolbarpartner.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 851 2001889 || BLEEDING-EDGE MALWARE ToolbarPartner Spyware Jeemp Trojan Download || url,toolbarpartner.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 852 2001890 || BLEEDING-EDGE MALWARE ToolbarPartner Spyware Agent Download (1) || url,toolbarpartner.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 853 2001891 || BLEEDING-EDGE Malware ToolbarPartner User Agent Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 854 2001892 || BLEEDING-EDGE MALWARE ToolbarPartner Spyware Agent Download (2) || url,toolbarpartner.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 855 2001893 || BLEEDING-EDGE MALWARE ToolbarPartner Spyware Agent Reporting Install || url,toolbarpartner.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 856 2001894 || BLEEDING-EDGE MALWARE ToolbarPartner Spyware Agent Partner Install || url,toolbarpartner.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 857 2001895 || BLEEDING-EDGE MALWARE ToolbarPartner Spyware Spambot Retrieving Target Emails || url,toolbarpartner.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 858 2001897 || BLEEDING-EDGE Malware pool.Westpop.com Spyware Updates
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 859 2001898 || BLEEDING-EDGE POLICY eBay Bid Placed
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 860 2001899 || BLEEDING-EDGE Botnet HTTP Botnet reg || url,www.honeynet.org/papers/bots
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 861 2001900 || BLEEDING-EDGE BwB Botnet Checkin || url,www.honeynet.org/papers/bots
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 862 2001901 || BLEEDING-EDGE TROJAN Possible Bobax trojan infection || url,www.lurhq.com/bobax.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 863 2001902 || BLEEDING-EDGE WORM Sober.O Attachment Outbound (2) || url,secunia.com/virus_information/17692/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 864 2001903 || BLEEDING-EDGE WORM Sober.O Attachment Inbound (2) || url,secunia.com/virus_information/17692/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 865 2001904 || BLEEDING-EDGE Behavioral Unusually fast Telnet Connections, Potential Scan or Brute Force || url,www.rapid7.com/nexpose-faq-answer2.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 866 2001905 || BLEEDING-EDGE VIRUS AIM Bot im.exe Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 867 2001906 || BLEEDING-EDGE SCAN MYSQL 4.0 brute force root login attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 868 2001907 || BLEEDING-EDGE POLICY eBay Placing Item for sale
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 869 2001908 || BLEEDING-EDGE POLICY eBay View Item
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 870 2001909 || BLEEDING-EDGE POLICY eBay Watch This Item
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 871 2001910 || BLEEDING-EDGE VIRUS AIM Bot Outbound Control Channel Open and Login
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 872 2001911 || BLEEDING-EDGE VIRUS Beaconing DREMN Trojan || url,www.symantec.com/avcenter/venc/data/trojan.dremn.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 873 2001912 || BLEEDING-EDGE VIRUS Answering DREMN Trojan || url,www.symantec.com/avcenter/venc/data/trojan.dremn.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 874 2001913 || BLEEDING-EDGE VIRUS Possible Sober.P Outbound (2) || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober.o@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 875 2001914 || BLEEDING-EDGE VIRUS Possible Sober.P Inbound (2) || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober.o@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 876 2001915 || BLEEDING-EDGE EXPLOIT Ethereal SIP Dissector Overflow (Request-TCP) || url,www.securiteam.com/exploits/5AP0F1FFPG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 877 2001916 || BLEEDING-EDGE EXPLOIT Ethereal SIP Dissector Overflow (Response-TCP) || url,www.securiteam.com/exploits/5AP0F1FFPG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 878 2001917 || BLEEDING-EDGE EXPLOIT Ethereal SIP Dissector Overflow (Request-UDP) || url,www.securiteam.com/exploits/5AP0F1FFPG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 879 2001918 || BLEEDING-EDGE EXPLOIT Ethereal SIP Dissector Overflow (Response-UDP) || url,www.securiteam.com/exploits/5AP0F1FFPG.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 880 2001919 || BLEEDING-EDGE VIRUS - Greeting card gif.exe email incoming SMTP || url,securityresponse.symantec.com/avcenter/venc/data/vbs.postcard@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 881 2001920 || BLEEDING-EDGE VIRUS - Greeting card gif.exe email incoming POP3/IMAP || url,securityresponse.symantec.com/avcenter/venc/data/vbs.postcard@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 882 2001921 || BLEEDING-EDGE VIRUS - Greeting card gif.exe email incoming HTTP || url,securityresponse.symantec.com/avcenter/venc/data/vbs.postcard@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 883 2001922 || BLEEDING-EDGE VIRUS Mytob.ED email attachment 1 Outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.mytob.ed@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 884 2001923 || BLEEDING-EDGE VIRUS Mytob.ED email attachment 2 Outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.mytob.ed@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 885 2001924 || BLEEDING-EDGE VIRUS Mytob.ED email attachment 3 Outbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.mytob.ed@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 886 2001925 || BLEEDING-EDGE VIRUS Mytob.ED email attachment 1 Inbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.mytob.ed@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 887 2001926 || BLEEDING-EDGE VIRUS Mytob.ED email attachment 2 Inbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.mytob.ed@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 888 2001927 || BLEEDING-EDGE VIRUS Mytob.ED email attachment 3 Inbound || url,securityresponse.symantec.com/avcenter/venc/data/w32.mytob.ed@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 889 2001928 || BLEEDING-EDGE WEB XSS Possible Arbitrary Scripting Code Attack in phpBB (private message) || url,www.securitytracker.com/alerts/2005/May/1013918.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 890 2001929 || BLEEDING-EDGE WEB XSS Possible Arbitrary Scripting Code Attack in phpBB (signature) || url,www.securitytracker.com/alerts/2005/May/1013918.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 891 2001930 || BLEEDING-EDGE Virus Maslan.C - outbound || url,secunia.com/virus_information/13805/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 892 2001931 || BLEEDING-EDGE Virus Maslan.C - inbound || url,secunia.com/virus_information/13805/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 893 2001932 || BLEEDING-EDGE Exploit wowBB view_user.php SQL Injection || bugtraq,13569
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 894 2001933 || BLEEDING-EDGE VIRUS PWS Banker Trojan Sending Report of Infection || url,securityresponse.symantec.com/avcenter/venc/data/pwsteal.banker.b.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 895 2001944 || BLEEDING-EDGE EXPLOIT MS04-007 Kill-Bill ASN1 exploit attempt || cve,CAN-2003-0818 || url,www.microsoft.com/technet/security/bulletin/MS04-007.mspx || url,www.phreedom.org/solar/exploits/msasn1-bitstring/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 895 2001944 || BLEEDING-EDGE EXPLOIT MS04-007 Kill-Bill ASN1 exploit attempt || cve,CAN-2003-0818 || url,www.microsoft.com/technet/security/bulletin/MS04-007.mspx || url,www.phreedom.org/solar/exploits/msasn1-bitstring/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 896 2001945 || BLEEDING-EDGE WEB WebAPP Apage.CGI Remote Command Execution Attempt || bugtraq,13637
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 897 2001947 || BLEEDING-EDGE MALWARE Zenotecnico Adware || url,www.zenotecnico.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 898 2001949 || BLEEDING-EDGE WEB Athena Web Registration Remote Command Execution Attempt || bugtraq,9349 || cve,CAN-2004-1782
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 899 2001950 || BLEEDING-EDGE POLICY RAR File Outbound
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 900 2001951 || BLEEDING-EDGE POLICY RAR File Inbound
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 901 2001952 || BLEEDING-EDGE VIRUS Bagle.BO or variant - OUTBOUND || url,secunia.com/virus_information/18441/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 902 2001953 || BLEEDING-EDGE VIRUS Bagle.BO or variant - INBOUND || url,secunia.com/virus_information/18441/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 903 2001954 || BLEEDING-EDGE EXPLOIT Meteor FTP Server Exploit || url,www.securiteam.com/exploits/5RP0Q2KFPC.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 904 2001955 || BLEEDING-EDGE VIRUS Win32.Mytob.CU Worm Infection / DNS lookup || url,www3.ca.com/securityadvisor/virusinfo/virus.aspx?id=43006
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 905 2001956 || BLEEDING-EDGE VIRUS Win32.Mytob.CU Worm Infection || url,www3.ca.com/securityadvisor/virusinfo/virus.aspx?id=43006
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 906 2001959 || BLEEDING-EDGE VIRUS Hotword Trojan in Transit || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 907 2001960 || BLEEDING-EDGE VIRUS Hotword Trojan inbound via http || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 908 2001961 || BLEEDING-EDGE VIRUS Hotword Trojan -- Possible File Upload CHJO || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 909 2001962 || BLEEDING-EDGE VIRUS Hotword Trojan -- Possible File Upload CFXP || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 910 2001963 || BLEEDING-EDGE VIRUS Hotword Trojan -- Possible FTP File Request pspv.exe || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 911 2001964 || BLEEDING-EDGE VIRUS Hotword Trojan -- Possible FTP File Request .tea || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 912 2001965 || BLEEDING-EDGE VIRUS Hotword Trojan -- Possible FTP File Status Upload ___ || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 913 2001966 || BLEEDING-EDGE VIRUS Hotword Trojan -- Possible FTP File Status Check ___ || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 914 2001967 || BLEEDING-EDGE VIRUS Fireby proxy trojan port report || url,securityresponse.symantec.com/avcenter/venc/data/backdoor.staprew.b.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 915 2001972 || BLEEDING-EDGE Behavioral Unusually fast Terminal Server Traffic, Potential Scan or Infection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 916 2001973 || BLEEDING-EDGE POLICY SSH Server Banner Detected on Expected Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 917 2001974 || BLEEDING-EDGE POLICY SSH Client Banner Detected on Expected Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 918 2001975 || BLEEDING-EDGE POLICY SSHv2 Server KEX Detected on Expected Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 919 2001976 || BLEEDING-EDGE POLICY SSHv2 Client KEX Detected on Expected Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 920 2001977 || BLEEDING-EDGE POLICY SSHv2 Client New Keys detected on Expected Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 921 2001978 || BLEEDING-EDGE POLICY SSH session in progress on Expected Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 922 2001979 || BLEEDING-EDGE POLICY SSH Server Banner Detected on Unusual Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 923 2001980 || BLEEDING-EDGE POLICY SSH Client Banner Detected on Unusual Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 924 2001981 || BLEEDING-EDGE POLICY SSHv2 Server KEX Detected on Unusual Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 925 2001982 || BLEEDING-EDGE POLICY SSHv2 Client KEX Detected on Unusual Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 926 2001983 || BLEEDING-EDGE POLICY SSHv2 Client New Keys Detected on Unusual Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 927 2001984 || BLEEDING-EDGE POLICY SSH session in progress on Unusual Port
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 928 2001985 || BLEEDING-EDGE VIRUS HTTP Challenge/Response Authentication || url,www.phreedom.org/solar/exploits/msasn1-bitstring || url,isc.sans.org/diary.php?date=2005-06-03
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 928 2001985 || BLEEDING-EDGE VIRUS HTTP Challenge/Response Authentication || url,www.phreedom.org/solar/exploits/msasn1-bitstring || url,isc.sans.org/diary.php?date=2005-06-03
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 929 2001986 || BLEEDING-EDGE VIRUS Mytob.DI - outbound || url,secunia.com/virus_information/18407/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 930 2001987 || BLEEDING-EDGE VIRUS Mytob.DI - incoming || url,secunia.com/virus_information/18407/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 931 2001988 || BLEEDING-EDGE EXPLOIT MySQL MaxDB Buffer Overflow
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 932 2001989 || BLEEDING-EDGE POLICY Prospero Chat Session in Progress || url,www.prospero.com/technology.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 933 2001990 || BLEEDING-EDGE EXPLOIT JamMail Jammail.pl Remote Command Execution Attempt || bugtraq,13937
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 934 2001991 || BLEEDING-EDGE EXPLOIT WebHints Scripts Remote Command Execution Attempt || bugtraq,13930
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 935 2001992 || BLEEDING-EDGE Malware SurfSidekick Download || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfsidekick.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 936 2001993 || BLEEDING-EDGE Malware SurfSidekick Dictionary Download || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfsidekick.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 937 2001994 || BLEEDING-EDGE Malware SurfSidekick Activity (ipixel) || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfsidekick.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 938 2001995 || BLEEDING-EDGE MALWARE UCMore Spyware Reporting || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=58660
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 939 2001996 || BLEEDING-EDGE Malware UCMore Spyware Activity User Agent String
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 940 2001997 || BLEEDING-EDGE MALWARE TargetNetworks.net Spyware Reporting (req) || url,www.targetnetworks.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 941 2001998 || BLEEDING-EDGE MALWARE UCMore Spyware Downloading Ads || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=58660
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 942 2001999 || BLEEDING-EDGE MALWARE BTGrab.com Spyware Downloading Ads || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453090726 || url,www.btgrab.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 942 2001999 || BLEEDING-EDGE MALWARE BTGrab.com Spyware Downloading Ads || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453090726 || url,www.btgrab.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 943 2002000 || BLEEDING-EDGE MALWARE Shopnav Spyware Install || url,securityresponse.symantec.com/avcenter/venc/data/spyware.shopnav.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 944 2002001 || BLEEDING-EDGE MALWARE 180solutions Spyware Keywords Download || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 945 2002002 || BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (thnall)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 946 2002003 || BLEEDING-EDGE MALWARE 180solutions Spyware Install || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 947 2002004 || BLEEDING-EDGE MALWARE Topconverting Spyware Install || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 948 2002005 || BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (poller)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 949 2002007 || BLEEDING-EDGE Malware Wildmedia Spyware User Agent Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 950 2002008 || BLEEDING-EDGE Malware Wild Tangent Install || McAfee,122249
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 951 2002009 || BLEEDING-EDGE Malware ESyndicate Spyware Install (esyndicateinst.exe) || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453094058
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 952 2002010 || BLEEDING-EDGE Malware ESyndicate Spyware Install (sepinst.exe) || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453094058
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 953 2002011 || BLEEDING-EDGE Malware PeopleonPage Spyware User Agent Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 954 2002012 || BLEEDING-EDGE Malware GrandstreetInteractive.com Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 955 2002013 || BLEEDING-EDGE Malware GrandstreetInteractive.com Update
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 956 2002014 || BLEEDING-EDGE Malware Grandstreet Interactive Spyware User Agent Activity (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 957 2002015 || BLEEDING-EDGE Malware Internet Fuel.com Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 958 2002016 || BLEEDING-EDGE Malware jmnad1.com Spyware Install (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 959 2002017 || BLEEDING-EDGE Malware Overpro Spyware Install Report || url,securityresponse.symantec.com/avcenter/venc/data/adware.overpro.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 960 2002019 || BLEEDING-EDGE Malware jmnad1.com Spyware Install (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 961 2002020 || BLEEDING-EDGE Malware Overpro Spyware User Agent Activity (merong)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 962 2002021 || BLEEDING-EDGE Malware Grandstreet Interactive Spyware User Agent Activity (1)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 963 2002022 || BLEEDING-EDGE GotoMyPC poll.gotomypc.com Server Response to Polling Client OK
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 964 2002023 || BLEEDING-EDGE TROJAN IRC USER command
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 965 2002024 || BLEEDING-EDGE TROJAN IRC NICK command
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 966 2002025 || BLEEDING-EDGE TROJAN IRC JOIN command
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 967 2002026 || BLEEDING-EDGE TROJAN IRC PRIVMSG command
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 968 2002027 || BLEEDING-EDGE TROJAN IRC PING command
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 969 2002028 || BLEEDING-EDGE TROJAN IRC PONG response
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 970 2002029 || BLEEDING-EDGE TROJAN BOT - channel topic scan/exploit command
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 971 2002030 || BLEEDING-EDGE TROJAN BOT - potential scan/exploit command
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 972 2002031 || BLEEDING-EDGE TROJAN BOT - potential update/download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 973 2002032 || BLEEDING-EDGE TROJAN BOT - potential DDoS command
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 974 2002033 || BLEEDING-EDGE TROJAN BOT - potential response
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 975 2002034 || BLEEDING-EDGE ATTACK RESPONSE Possible /etc/passwd via HTTP
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 976 2002035 || BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (thin)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 977 2002036 || BLEEDING-EDGE MALWARE Weird on the Web /180 Solutions Checkin || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 978 2002037 || BLEEDING-EDGE Malware Shop at Home Select Spyware Install || url,securityresponse.symantec.com/avcenter/venc/data/adware.sahagent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 979 2002038 || BLEEDING-EDGE Malware Shopathomeselect.com Spyware User Agent Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 980 2002039 || BLEEDING-EDGE Malware Better Internet Spyware User Agent Activity (aurareco)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 981 2002040 || BLEEDING-EDGE MALWARE Topconverting Spyware Reporting
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 982 2002041 || BLEEDING-EDGE MALWARE Weird on the Web /180 Solutions Update || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 983 2002043 || BLEEDING-EDGE Malware Shop at Home Select Spyware Config Download || url,securityresponse.symantec.com/avcenter/venc/data/adware.sahagent.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 984 2002044 || BLEEDING-EDGE Malware OutBlaze.com Spyware Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 985 2002046 || BLEEDING-EDGE MALWARE TargetNetworks.net Spyware Reporting (tn) || url,www.targetnetworks.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 986 2002047 || BLEEDING-EDGE MALWARE surfaccuracy Spyware User Agent || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfaccuracy.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 987 2002048 || BLEEDING-EDGE MALWARE 180solutions Spyware Defs Download || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 988 2002049 || BLEEDING-EDGE VIRUS Mytob.GC - outbound || url,www.norman.com/Virus/Virus_descriptions/23458/en?show=default
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 989 2002050 || BLEEDING-EDGE VIRUS Mytob.GC - incoming || url,www.norman.com/Virus/Virus_descriptions/23458/en?show=default
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 990 2002051 || BLEEDING-EDGE VIRUS Bagle.BQ - outbound || url,secunia.com/virus_information/19194/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 991 2002052 || BLEEDING-EDGE VIRUS Bagle.BQ - incoming || url,secunia.com/virus_information/19194/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 992 2002053 || BLEEDING-EDGE VIRUS Mytob.HF - outbound || url,www.norman.com/Virus/Virus_descriptions/23458/en?show=default
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 993 2002054 || BLEEDING-EDGE VIRUS Mytob.HF - incoming || url,www.norman.com/Virus/Virus_descriptions/23458/en?show=default
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 994 2002055 || BLEEDING-EDGE WORM Sober.O Attachment Outbound (1) || url,secunia.com/virus_information/17692/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 995 2002056 || BLEEDING-EDGE WORM Sober.O Attachment Inbound (1) || url,secunia.com/virus_information/17692/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 996 2002057 || BLEEDING-EDGE WORM Sober.O Attachment Outbound (3) || url,secunia.com/virus_information/17692/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 997 2002058 || BLEEDING-EDGE WORM Sober.O Attachment Inbound (3) || url,secunia.com/virus_information/17692/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 998 2002059 || BLEEDING-EDGE VIRUS Possible Sober.P Outbound (1) || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober.o@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 999 2002060 || BLEEDING-EDGE VIRUS Possible Sober.P Inbound (1) || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober.o@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1000 2002061 || BLEEDING-EDGE EXPLOIT Possible BackupExec Metasploit Exploit (inbound) || url,www.metasploit.org/projects/Framework/modules/exploits/backupexec_agent.pm || url,isc.sans.org/diary.php?date=2005-06-27
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1000 2002061 || BLEEDING-EDGE EXPLOIT Possible BackupExec Metasploit Exploit (inbound) || url,www.metasploit.org/projects/Framework/modules/exploits/backupexec_agent.pm || url,isc.sans.org/diary.php?date=2005-06-27
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1001 2002062 || BLEEDING-EDGE EXPLOIT Possible BackupExec Metasploit Exploit (outbound) || url,www.metasploit.org/projects/Framework/modules/exploits/backupexec_agent.pm || url,isc.sans.org/diary.php?date=2005-06-27
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1001 2002062 || BLEEDING-EDGE EXPLOIT Possible BackupExec Metasploit Exploit (outbound) || url,www.metasploit.org/projects/Framework/modules/exploits/backupexec_agent.pm || url,isc.sans.org/diary.php?date=2005-06-27
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1002 2002064 || BLEEDING-EDGE EXPLOIT ms05-011 exploit || url,www.frsirt.com/exploits/20050623.mssmb_poc.c.php || bugtraq,12484
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1003 2002065 || BLEEDING-EDGE EXPLOIT Veritas backupexec_agent exploit || url,isc.sans.org/diary.php?date=2005-06-27
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1004 2002066 || BLEEDING-EDGE WEB CSV-DB CSV_DB.CGI Remote Command Execution Attempt || bugtraq,14059
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1005 2002067 || BLEEDING-EDGE WEB Community Link Pro Login.CGI Remote Command Execution Attempt || bugtraq,14097
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1006 2002068 || BLEEDING-EDGE NDMP Notify Connect - Possible Backup Exec Remote Agent Recon || url,www.ndmp.org/download/sdk_v4/draft-skardal-ndmp4-04.txt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1007 2002069 || BLEEDING-EDGE WEB Blog Spam Insert Attempt || url,www.webmasterworld.com/forum92/3683.htm || url,lists.geeklog.net/pipermail/geeklog-spam/2005-June/000020.html || url,spamhuntress.com/2005/05/14/new-block-for-bulgarians/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1007 2002069 || BLEEDING-EDGE WEB Blog Spam Insert Attempt || url,www.webmasterworld.com/forum92/3683.htm || url,lists.geeklog.net/pipermail/geeklog-spam/2005-June/000020.html || url,spamhuntress.com/2005/05/14/new-block-for-bulgarians/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1007 2002069 || BLEEDING-EDGE WEB Blog Spam Insert Attempt || url,www.webmasterworld.com/forum92/3683.htm || url,lists.geeklog.net/pipermail/geeklog-spam/2005-June/000020.html || url,spamhuntress.com/2005/05/14/new-block-for-bulgarians/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1008 2002070 || BLEEDING-EDGE WEB phpBB Remote Code Execution Attempt || url,www.securiteam.com/unixfocus/6Z00R2ABPY.html || bugtraq,14086 || url,secunia.com/advisories/15845/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1008 2002070 || BLEEDING-EDGE WEB phpBB Remote Code Execution Attempt || url,www.securiteam.com/unixfocus/6Z00R2ABPY.html || bugtraq,14086 || url,secunia.com/advisories/15845/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1009 2002071 || BLEEDING-EDGE Malware XupiterToolbar Spyware User Agent Activity || url,castlecops.com/tk781-Xupitertoolbar_dll_t_dll.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1010 2002073 || BLEEDING-EDGE Malware General Spyware User Agent Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1011 2002074 || BLEEDING-EDGE Malware Win32.Stubby Spyware User Agent Activity || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453088437
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1012 2002076 || BLEEDING-EDGE Malware New.net Spyware User Agent Activity || url,www.pcsympathy.com/printout74.html || url,www.newdotnet.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1012 2002076 || BLEEDING-EDGE Malware New.net Spyware User Agent Activity || url,www.pcsympathy.com/printout74.html || url,www.newdotnet.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1013 2002077 || BLEEDING-EDGE Malware IEBar Spyware User Agent Activity || url,castlecops.com/tk1463-IEBAR_DLL.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1014 2002078 || BLEEDING-EDGE Malware SideStep Spyware User Agent Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1015 2002079 || BLEEDING-EDGE MALWARE MyWaySearch Products Spyware User Agent
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1016 2002080 || BLEEDING-EDGE MALWARE MySearch Products Spyware User Agent
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1017 2002082 || BLEEDING-EDGE MALWARE Infotriever Spyware User Agent || url,www.infotriever.com/Intro_SysAdmins.asp
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1018 2002083 || BLEEDING-EDGE MALWARE Pacimedia Spyware 1
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1019 2002086 || BLEEDING-EDGE VIRUS London bombing trojan file || url,www.theregister.co.uk/2005/07/08/london_bombing_spambot/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1020 2002087 || BLEEDING-EDGE POLICY Inbound Frequent Emails -- Possible Spambot Inbound
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1021 2002088 || BLEEDING-EDGE MALWARE C4tdownload.com Spyware Activity || url,sarc.com/avcenter/venc/data/adware.clickdloader.b.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1022 2002089 || BLEEDING-EDGE MALWARE CWS qck.cc Spyware Installer (in.php) || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453076035
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1023 2002090 || BLEEDING-EDGE MALWARE IEHelp.net Spyware Installer || url,securityresponse.symantec.com/avcenter/venc/data/trojan.domcom.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1024 2002091 || BLEEDING-EDGE Malware Searchmiracle.com Spyware Install -- silent.exe || url,www.searchmiracle.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1025 2002092 || BLEEDING-EDGE Malware yupsearch.com Spyware Install -- protector.exe || url,www.yupsearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1026 2002093 || BLEEDING-EDGE MALWARE Likely Trojan/Spyware Installer Requested (2)
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1027 2002094 || BLEEDING-EDGE MALWARE MSUpdater.net Spyware Checkin
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1028 2002095 || BLEEDING-EDGE MALWARE CWS qck.cc Spyware Installer (web.php) || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453076035
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1029 2002096 || BLEEDING-EDGE MALWARE IEHelp.net Spyware checkin || url,securityresponse.symantec.com/avcenter/venc/data/trojan.domcom.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1030 2002097 || BLEEDING-EDGE Malware IEHelp.net Spyware User Agent Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1031 2002098 || BLEEDING-EDGE Malware yupsearch.com Spyware Install -- sideb.exe || url,www.yupsearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1032 2002099 || BLEEDING-EDGE MALWARE 180solutions Spyware config Download || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1033 2002100 || BLEEDING-EDGE WEB WPS wps_shop.cgi Remote Command Execution Attempt || bugtraq,14245
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1034 2002120 || BLEEDING-EDGE EXPLOIT Potential MS05-036 exploit -- JPEG with embedded ICC - Excessive Profile Size || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1035 2002121 || BLEEDING-EDGE EXPLOIT Potential MS05-036 exploit -- JPEG with embedded ICC - Excessive Tag Count || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1036 2002122 || BLEEDING-EDGE EXPLOIT Potential MS05-036 exploit -- GIF with embedded ICC - Excessive Profile Size || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1037 2002123 || BLEEDING-EDGE EXPLOIT Potential MS05-036 exploit -- GIF with embedded ICC - Excessive Tag Count || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1038 2002124 || BLEEDING-EDGE EXPLOIT Potential MS05-036 exploit -- PNG with embedded ICC document || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1039 2002125 || BLEEDING-EDGE VIRUS Mytob.HE - outbound || url,www.norman.com/Virus/Virus_descriptions/23458/en?show=default
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1040 2002126 || BLEEDING-EDGE VIRUS Mytob.HE - incoming || url,www.norman.com/Virus/Virus_descriptions/23458/en?show=default
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1041 2002127 || BLEEDING-EDGE EXPLOIT Firefox Set Wallpaper Code Execution Attempt (img) || url,www.mozilla.org/security/announce/mfsa2005-47.html || url,secunia.com/advisories/16043/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1041 2002127 || BLEEDING-EDGE EXPLOIT Firefox Set Wallpaper Code Execution Attempt (img) || url,www.mozilla.org/security/announce/mfsa2005-47.html || url,secunia.com/advisories/16043/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1042 2002128 || BLEEDING-EDGE EXPLOIT Firefox Set Wallpaper Code Execution Attempt (input) || url,www.mozilla.org/security/announce/mfsa2005-47.html || url,secunia.com/advisories/16043/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1042 2002128 || BLEEDING-EDGE EXPLOIT Firefox Set Wallpaper Code Execution Attempt (input) || url,www.mozilla.org/security/announce/mfsa2005-47.html || url,secunia.com/advisories/16043/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1043 2002129 || BLEEDING-EDGE Cacti Input Validation Attack || url,www.idefense.com/application/poi/display?id=266&type=vulnerabilities || url,www.idefense.com/application/poi/display?id=265&type=vulnerabilities || url,www.cacti.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1043 2002129 || BLEEDING-EDGE Cacti Input Validation Attack || url,www.idefense.com/application/poi/display?id=266&type=vulnerabilities || url,www.idefense.com/application/poi/display?id=265&type=vulnerabilities || url,www.cacti.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1043 2002129 || BLEEDING-EDGE Cacti Input Validation Attack || url,www.idefense.com/application/poi/display?id=266&type=vulnerabilities || url,www.idefense.com/application/poi/display?id=265&type=vulnerabilities || url,www.cacti.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1044 2002130 || BLEEDING-EDGE WEB Oracle Reports XSS Attempt || url,www.red-database-security.com/advisory/oracle_reports_various_css.html || url,www.oracle.com/technology/products/reports/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1044 2002130 || BLEEDING-EDGE WEB Oracle Reports XSS Attempt || url,www.red-database-security.com/advisory/oracle_reports_various_css.html || url,www.oracle.com/technology/products/reports/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1045 2002131 || BLEEDING-EDGE WEB Oracle Reports XML Information Disclosure || url,www.red-database-security.com/advisory/oracle_reports_read_any_xml_file.html || url,www.oracle.com/technology/products/reports/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1045 2002131 || BLEEDING-EDGE WEB Oracle Reports XML Information Disclosure || url,www.red-database-security.com/advisory/oracle_reports_read_any_xml_file.html || url,www.oracle.com/technology/products/reports/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1046 2002132 || BLEEDING-EDGE WEB Oracle Reports DESFORMAT Information Disclosure || url,www.red-database-security.com/advisory/oracle_reports_read_any_file.html || url,www.oracle.com/technology/products/reports/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1046 2002132 || BLEEDING-EDGE WEB Oracle Reports DESFORMAT Information Disclosure || url,www.red-database-security.com/advisory/oracle_reports_read_any_file.html || url,www.oracle.com/technology/products/reports/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1047 2002133 || BLEEDING-EDGE WEB Oracle Reports OS Command Injection Attempt || url,www.red-database-security.com/advisory/oracle_reports_run_any_os_command.html || url,www.oracle.com/technology/products/reports/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1047 2002133 || BLEEDING-EDGE WEB Oracle Reports OS Command Injection Attempt || url,www.red-database-security.com/advisory/oracle_reports_run_any_os_command.html || url,www.oracle.com/technology/products/reports/index.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1048 2002134 || BLEEDING-EDGE EXPLOIT MS05-036 exploit -- JPEG ICC r/b/g/XYZ GetColorProfileElement overflow || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1049 2002137 || BLEEDING-EDGE EXPLOIT MS05-036 exploit -- GIF ICC r/b/g/XYZ GetColorProfileElement overflow || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1050 2002153 || BLEEDING-EDGE MALWARE EXE as User Agent -- Potential Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1051 2002156 || BLEEDING-EDGE VIRUS Fireby proxy trojan port report (TCP) || url,securityresponse.symantec.com/avcenter/venc/data/backdoor.staprew.b.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1052 2002157 || BLEEDING-EDGE POLICY Skype User-Agent detected
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1053 2002158 || BLEEDING-EDGE EXPLOIT XML-RPC for PHP Remote Code Injection || cve,2005-1921 || url,www.securityfocus.com/bid/14088/exploit
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1054 2002160 || BLEEDING-EDGE MALWARE CoolWebSearch Spyware (Feat) || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1054 2002160 || BLEEDING-EDGE MALWARE CoolWebSearch Spyware (Feat) || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1054 2002160 || BLEEDING-EDGE MALWARE CoolWebSearch Spyware (Feat) || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1055 2002161 || BLEEDING-EDGE MALWARE CoolWebSearch Spyware (feat2) || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1055 2002161 || BLEEDING-EDGE MALWARE CoolWebSearch Spyware (feat2) || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1055 2002161 || BLEEDING-EDGE MALWARE CoolWebSearch Spyware (feat2) || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1056 2002162 || BLEEDING-EDGE MALWARE CoolWebSearch Spyware (SCAgent) || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1056 2002162 || BLEEDING-EDGE MALWARE CoolWebSearch Spyware (SCAgent) || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1056 2002162 || BLEEDING-EDGE MALWARE CoolWebSearch Spyware (SCAgent) || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1057 2002163 || BLEEDING-EDGE MALWARE Ezula Update Engine || url,www.spywareguide.com/product_show.php?id=9
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1058 2002164 || BLEEDING-EDGE MALWARE Hotbar Spyware || url,www.pchell.com/support/hotbar.shtml || url,www.doxdesk.com/parasite/Hotbar.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1058 2002164 || BLEEDING-EDGE MALWARE Hotbar Spyware || url,www.pchell.com/support/hotbar.shtml || url,www.doxdesk.com/parasite/Hotbar.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1059 2002165 || BLEEDING-EDGE MALWARE IESearch Spyware || url,www.spywareguide.com/product_show.php?id=982
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1060 2002166 || BLEEDING-EDGE MALWARE Alexa Search Toolbar || url,www.spywareguide.com/product_show.php?id=418
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1061 2002167 || BLEEDING-EDGE MALWARE Possible Spyware -- Wise User Agent || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453076771
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1062 2002168 || BLEEDING-EDGE MALWARE Svcmm Parasite || url,doxdesk.com/parasite/SvcMM.html || url,castlecops.com/startuplist-5862.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1062 2002168 || BLEEDING-EDGE MALWARE Svcmm Parasite || url,doxdesk.com/parasite/SvcMM.html || url,castlecops.com/startuplist-5862.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1063 2002169 || BLEEDING-EDGE MALWARE iWon Spyware || url,www.spywareguide.com/product_show.php?id=461
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1064 2002171 || BLEEDING-EDGE EXPLOIT COM Object Instantiation Memory Corruption Vulnerability (group 1) || url,www.microsoft.com/technet/security/Bulletin/MS05-038.mspx || cve,2005-1990
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1065 2002172 || BLEEDING-EDGE EXPLOIT COM Object Instantiation Memory Corruption Vulnerability (group 2) || url,www.microsoft.com/technet/security/Bulletin/MS05-038.mspx || cve,2005-1990
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1066 2002173 || BLEEDING-EDGE EXPLOIT COM Object Instantiation Memory Corruption Vulnerability (group 3) || url,www.microsoft.com/technet/security/Bulletin/MS05-038.mspx || cve,2005-1990
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1067 2002174 || BLEEDING-EDGE EXPLOIT CLSID Pattern Matched
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1068 2002175 || BLEEDING-EDGE TROJAN Srv.SSA-KeyLogger Checkin Traffic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1069 2002176 || BLEEDING-EDGE Veritas Backup Exec Windows Agent Remote File Access Exploit || url,isc.sans.org/diary.php?date=2005-08-11 || url,www.frsirt.com/exploits/20050811.backupexec_dump.pm.php || url,www.frsirt.com/english/advisories/2005/1387
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1069 2002176 || BLEEDING-EDGE Veritas Backup Exec Windows Agent Remote File Access Exploit || url,isc.sans.org/diary.php?date=2005-08-11 || url,www.frsirt.com/exploits/20050811.backupexec_dump.pm.php || url,www.frsirt.com/english/advisories/2005/1387
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1069 2002176 || BLEEDING-EDGE Veritas Backup Exec Windows Agent Remote File Access Exploit || url,isc.sans.org/diary.php?date=2005-08-11 || url,www.frsirt.com/exploits/20050811.backupexec_dump.pm.php || url,www.frsirt.com/english/advisories/2005/1387
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1070 2002177 || BLEEDING-EDGE VIRUS Bagle.CC (aka Win32.Bagle.bz, .ca, .cb) - outbound || url,www.viruslist.com/en/alerts?alertid=168511904
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1071 2002178 || BLEEDING-EDGE VIRUS Bagle.CC (aka Win32.Bagle.bz, .ca, .cb) - incoming || url,www.viruslist.com/en/alerts?alertid=168511904
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1072 2002180 || BLEEDING-EDGE VIRUS W32.Beagle.CE@mm Infection Outbound web.php || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.ce@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1073 2002181 || BLEEDING-EDGE EXPLOIT Backup Exec Windows Agent Remote File Access - Attempt || url,www.frsirt.com/exploits/20050811.backupexec_dump.pm.php || url,www.frsirt.com/english/advisories/2005/1387
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1073 2002181 || BLEEDING-EDGE EXPLOIT Backup Exec Windows Agent Remote File Access - Attempt || url,www.frsirt.com/exploits/20050811.backupexec_dump.pm.php || url,www.frsirt.com/english/advisories/2005/1387
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1074 2002182 || BLEEDING-EDGE EXPLOIT Backup Exec Windows Agent Remote File Access - Vulnerable || url,www.frsirt.com/exploits/20050811.backupexec_dump.pm.php || url,www.frsirt.com/english/advisories/2005/1387
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1074 2002182 || BLEEDING-EDGE EXPLOIT Backup Exec Windows Agent Remote File Access - Vulnerable || url,www.frsirt.com/exploits/20050811.backupexec_dump.pm.php || url,www.frsirt.com/english/advisories/2005/1387
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1075 2002183 || BLEEDING-EDGE VIRUS BagleDL-S SMTP Outbound || url,www.sophos.com/virusinfo/analyses/trojbagledls.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1076 2002184 || BLEEDING-EDGE VIRUS BagleDL-S SMTP Inbound || url,www.sophos.com/virusinfo/analyses/trojbagledls.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1077 2002185 || BLEEDING-EDGE Possible MS05-039 PnP worm infection || url,isc.sans.org/diary.php?date=2005-08-14
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1078 2002186 || BLEEDING-EDGE EXPLOIT SMB-DS Microsoft Windows 2000 Plug and Play Vulnerability || url,isc.sans.org/diary.php?date=2005-08-14 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1078 2002186 || BLEEDING-EDGE EXPLOIT SMB-DS Microsoft Windows 2000 Plug and Play Vulnerability || url,isc.sans.org/diary.php?date=2005-08-14 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1079 2002187 || BLEEDING-EDGE EXPLOIT NETBIOS SMB Microsoft Windows 2000 PNP Vuln || url,isc.sans.org/diary.php?date=2005-08-14 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1079 2002187 || BLEEDING-EDGE EXPLOIT NETBIOS SMB Microsoft Windows 2000 PNP Vuln || url,isc.sans.org/diary.php?date=2005-08-14 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1080 2002188 || BLEEDING-EDGE EXPLOIT NETBIOS SMB-DS Microsoft Windows 2000 PNP Vuln || url,isc.sans.org/diary.php?date=2005-08-14 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1080 2002188 || BLEEDING-EDGE EXPLOIT NETBIOS SMB-DS Microsoft Windows 2000 PNP Vuln || url,isc.sans.org/diary.php?date=2005-08-14 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1081 2002189 || BLEEDING-EDGE Current Events OSA4.GIF Detected Possible Trojan.Tooso Infection
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1082 2002190 || BLEEDING-EDGE Current Events Possible UPnP Infection - gc.exe download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1083 2002192 || BLEEDING-EDGE POLICY MSN status change
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1084 2002194 || BLEEDING-EDGE Malware Pacimedia Spyware 2
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1085 2002195 || BLEEDING-EDGE MALWARE Casalemedia Spyware Reporting URL Visited1
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1086 2002196 || BLEEDING-EDGE MALWARE Casalemedia Spyware Reporting URL Visited2
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1087 2002197 || BLEEDING-EDGE MALWARE Tickle.com Spyware || url,www.spywareremove.com/removeTickle.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1088 2002198 || BLEEDING-EDGE MALWARE Bidclix.com Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1089 2002199 || BLEEDING-EDGE EXPLOIT SMB-DS DCERPC PnP HOD bind attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1090 2002200 || BLEEDING-EDGE EXPLOIT SMB-DS DCERPC PnP bind attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1091 2002201 || BLEEDING-EDGE EXPLOIT SMB-DS DCERPC PnP QueryResConfList exploit attempt || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx || cve,CAN-2005-1983
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1092 2002202 || BLEEDING-EDGE EXPLOIT SMB DCERPC PnP bind attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1093 2002203 || BLEEDING-EDGE EXPLOIT SMB DCERPC PnP QueryResConfList exploit attempt || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx || cve,CAN-2005-1983
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1094 2002204 || BLEEDING-EDGE MALWARE Websponsors.com Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1095 2002296 || BLEEDING-EDGE Malware Searchfeed.com Spyware 1 || url,www.searchfeed.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1096 2002297 || BLEEDING-EDGE Malware Searchfeed.com Spyware 2 || url,www.searchfeed.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1097 2002298 || BLEEDING-EDGE Malware Searchfeed.com Spyware 3 || url,www.searchfeed.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1098 2002299 || BLEEDING-EDGE Malware Searchfeed.com Spyware 4 || url,www.searchfeed.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1099 2002300 || BLEEDING-EDGE Malware Searchfeed.com Spyware 5 || url,www.searchfeed.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1100 2002301 || BLEEDING-EDGE Malware Searchfeed.com Spyware 6 || url,www.searchfeed.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1101 2002302 || BLEEDING-EDGE Malware Searchfeed.com Spyware 7 || url,www.searchfeed.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1102 2002303 || BLEEDING-EDGE Malware Searchfeed.com Spyware 8 || url,www.searchfeed.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1103 2002304 || BLEEDING-EDGE MALWARE Advertising.com Reporting Data || url,securityresponse.symantec.com/avcenter/venc/data/adware.fastseek.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1104 2002305 || BLEEDING-EDGE Malware Fun Web Products Smileychooser Spyware || url,www.funwebproducts.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1105 2002306 || BLEEDING-EDGE Malware Fun Web Products Cursorchooser Spyware || url,www.funwebproducts.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1106 2002307 || BLEEDING-EDGE Malware Fun Web Products Stampchooser Spyware || url,www.funwebproducts.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1107 2002308 || BLEEDING-EDGE EXPLOIT Internet Explorer Vulnerable CLSID (Msdds.dll) || url,www.frsirt.com/exploits/20050817.IE-Msddsdll-0day.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1108 2002309 || BLEEDING-EDGE Malware Metarewards Disclaimer Access
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1109 2002310 || BLEEDING-EDGE Malware Fun Web Products Smileychooser Spyware || url,www.funwebproducts.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1110 2002311 || BLEEDING-EDGE User-Agent String
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1111 2002312 || BLEEDING-EDGE POLICY MSN Game Loading
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1112 2002313 || BLEEDING-EDGE WEB Cacti graph_image.php Remote Command Execution Attempt || bugtraq,14042 || bugtraq,14129 || cve,CAN-2005-1524
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1113 2002314 || BLEEDING-EDGE WEB PHPOutsourcing Zorum prod.php Remote Command Execution Attempt || bugtraq,14601
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1114 2002315 || BLEEDING-EDGE EXPLOIT Incoming Electronic Mail for UNIX Expires Header Buffer Overflow Exploit || url,www.instinct.org/elm/ || url,www.frsirt.com/exploits/20050822.elmexploit.c.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1114 2002315 || BLEEDING-EDGE EXPLOIT Incoming Electronic Mail for UNIX Expires Header Buffer Overflow Exploit || url,www.instinct.org/elm/ || url,www.frsirt.com/exploits/20050822.elmexploit.c.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1115 2002316 || BLEEDING-EDGE EXPLOIT Outgoing Electronic Mail for UNIX Expires Header Buffer Overflow Exploit || url,www.instinct.org/elm/ || url,www.frsirt.com/exploits/20050822.elmexploit.c.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1115 2002316 || BLEEDING-EDGE EXPLOIT Outgoing Electronic Mail for UNIX Expires Header Buffer Overflow Exploit || url,www.instinct.org/elm/ || url,www.frsirt.com/exploits/20050822.elmexploit.c.php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1116 2002317 || BLEEDING-EDGE MALWARE EZSearch Spyware Reporting Search Strings
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1117 2002318 || BLEEDING-EDGE MALWARE EZSearch Spyware Reporting Search Category
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1118 2002319 || BLEEDING-EDGE MALWARE EZSearch Spyware Reporting 2
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1119 2002320 || BLEEDING-EDGE MALWARE Transponder Spyware Activity || url,www.doxdesk.com/parasite/Transponder.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1120 2002322 || BLEEDING-EDGE WORM Possible MSN Worm Exploit php
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1121 2002323 || BLEEDING-EDGE WORM Possible MSN Worm Exploit exe
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1122 2002324 || BLEEDING-EDGE WORM Possible MSN Worm Exploit pif
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1123 2002325 || BLEEDING-EDGE WORM W32.kelvir.HI || url,securityresponse.symantec.com/avcenter/venc/data/w32.kelvir.hi.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1124 2002326 || BLEEDING-EDGE WORM W32.Reatle.I@mm Downloading Spybot.Worm || url,securityresponse.symantec.com/avcenter/venc/data/w32.reatle.i@mm.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1125 2002327 || BLEEDING-EDGE POLICY Google Talk (Jabber) Client Login || url,www.xmpp.org || url,talk.google.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1125 2002327 || BLEEDING-EDGE POLICY Google Talk (Jabber) Client Login || url,www.xmpp.org || url,talk.google.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1126 2002330 || BLEEDING-EDGE POLICY Google Talk TLS Client Traffic || url,www.xmpp.org || url,talk.google.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1126 2002330 || BLEEDING-EDGE POLICY Google Talk TLS Client Traffic || url,www.xmpp.org || url,talk.google.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1127 2002331 || BLEEDING-EDGE WEB Piranha default passwd attempt || nessus,10381 || cve,2000-0248 || bugtraq,1148
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1128 2002332 || BLEEDING-EDGE POLICY Google IM traffic Windows client user sign-on || url,www.google.com/talk
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1129 2002333 || BLEEDING-EDGE POLICY Google IM traffic friend invited || url,www.google.com/talk
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1130 2002334 || BLEEDING-EDGE POLICY Google IM traffic Jabber client sign-on || url,www.google.com/talk
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1131 2002335 || BLEEDING-EDGE POLICY Google IM traffic Windows client user sign-off || url,www.google.com/talk
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1132 2002336 || BLEEDING-EDGE WORM Possible Myfip PDF file transfer - IP theft || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1133 2002337 || BLEEDING-EDGE WORM Possible Myfip DOC file transfer - IP theft || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1134 2002338 || BLEEDING-EDGE WORM Possible Myfip DWG file transfer - IP theft || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1135 2002339 || BLEEDING-EDGE WORM Possible Myfip SCH file transfer - IP theft || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1136 2002340 || BLEEDING-EDGE WORM Possible Myfip PCB file transfer - IP theft || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1137 2002341 || BLEEDING-EDGE WORM Possible Myfip DWT file transfer - IP theft || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1138 2002342 || BLEEDING-EDGE WORM Possible Myfip DWF file transfer - IP theft || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1139 2002343 || BLEEDING-EDGE WORM Possible Myfip MAX file transfer - IP theft || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1140 2002344 || BLEEDING-EDGE WORM Possible Myfip MDB file transfer - IP theft || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1141 2002345 || BLEEDING-EDGE WORM Myfip email incoming - FoxMail 4.0 header || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1142 2002346 || BLEEDING-EDGE WORM Myfip email incoming - FoxMail 3.11 header || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1143 2002347 || BLEEDING-EDGE WORM Possible Myfip email incoming - MIME boundary tag || url,www.lurhq.com/myfip.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1144 2002348 || BLEEDING-EDGE MALWARE VPP Technologies Spyware
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1145 2002349 || BLEEDING-EDGE MALWARE Alexa Spyware Reporting URL
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1146 2002350 || BLEEDING-EDGE MALWARE VPP Technologies Spyware Reporting URL
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1147 2002351 || BLEEDING-EDGE Malware Comet Systems Spyware Update Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1148 2002352 || BLEEDING-EDGE Malware Comet Systems Spyware Context Report
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1149 2002353 || BLEEDING-EDGE Malware AdultfriendFinder.com Spyware Iframe Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1150 2002354 || BLEEDING-EDGE MALWARE 180solutions Spyware versionconfig POST || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1151 2002355 || BLEEDING-EDGE TROJAN Trojan.Exphook Sending Info Home || url,securityresponse.symantec.com/avcenter/venc/data/trojan.exphook.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1152 2002356 || BLEEDING-EDGE TROJAN Trojan.Exphook Sending Info Home || url,securityresponse.symantec.com/avcenter/venc/data/trojan.exphook.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1153 2002357 || BLEEDING-EDGE TROJAN Trojan.Exphook Sending Info Home || url,securityresponse.symantec.com/avcenter/venc/data/trojan.exphook.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1154 2002358 || BLEEDING-EDGE TROJAN Backdoor.Graybird.O Calling Home || url,securityresponse.symantec.com/avcenter/venc/data/backdoor.graybird.o.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1155 2002359 || BLEEDING-EDGE TROJAN Backdoor.Graybird.O Calling Home || url,securityresponse.symantec.com/avcenter/venc/data/backdoor.graybird.o.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1156 2002360 || BLEEDING-EDGE VIRUS W97M.Nometz.A Sending Info Home || url,securityresponse.symantec.com/avcenter/venc/data/w97m.nometz.a.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1157 2002361 || BLEEDING-EDGE WEB Netquery Remote Command Execution Attempt || bugtraq,14373
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1158 2002362 || BLEEDING-EDGE WEB Barracuda Spam Firewall img.pl Remote Command Execution Attempt || bugtraq,14712
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1159 2002363 || BLEEDING-EDGE TROJAN BOT - potential reptile commands
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1160 2002364 || BLEEDING-EDGE MALWARE Weatherbug Wxbug Capture
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1161 2002365 || BLEEDING-EDGE WEB HP OpenView Network Node Manager Remote Command Execution Attempt || bugtraq,14662
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1162 2002367 || BLEEDING-EDGE VIRUS Bagle-BB SMTP Outbound || url,isc.sans.org/diary.php?date=2005-09-12 || url,www.sophos.com/virusinfo/analyses/trojdropperbb.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1162 2002367 || BLEEDING-EDGE VIRUS Bagle-BB SMTP Outbound || url,isc.sans.org/diary.php?date=2005-09-12 || url,www.sophos.com/virusinfo/analyses/trojdropperbb.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1163 2002368 || BLEEDING-EDGE VIRUS Bagle-BB SMTP Inbound || url,isc.sans.org/diary.php?date=2005-09-12 || url,www.sophos.com/virusinfo/analyses/trojdropperbb.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1163 2002368 || BLEEDING-EDGE VIRUS Bagle-BB SMTP Inbound || url,isc.sans.org/diary.php?date=2005-09-12 || url,www.sophos.com/virusinfo/analyses/trojdropperbb.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1164 2002369 || BLEEDING-EDGE VIRUS Forbot-FG SMTP Outbound || url,www.sophos.com/virusinfo/analyses/w32forbotfg.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1165 2002370 || BLEEDING-EDGE VIRUS Forbot-FG SMTP Inbound || url,www.sophos.com/virusinfo/analyses/w32forbotfg.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1166 2002371 || BLEEDING-EDGE WEB Miva Merchant Cross Site Scripting Attack || url,www.frsirt.com/english/advisories/2005/1758 || url,smallbusiness.miva.com/products/mia/ || bugtraq,14828
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1166 2002371 || BLEEDING-EDGE WEB Miva Merchant Cross Site Scripting Attack || url,www.frsirt.com/english/advisories/2005/1758 || url,smallbusiness.miva.com/products/mia/ || bugtraq,14828
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1167 2002372 || BLEEDING-EDGE VIRUS Bagle.CJ SMTP Outbound || url,isc.sans.org/diary.php?date=2005-09-19
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1168 2002373 || BLEEDING-EDGE VIRUS Bagle.CJ SMTP Inbound || url,isc.sans.org/diary.php?date=2005-09-19
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1169 2002376 || BLEEDING-EDGE IBM Lotus Domino BaseTarget XSS attempt || bugtraq,14845
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1170 2002377 || BLEEDING-EDGE IBM Lotus Domino Src XSS attempt || bugtraq,14846
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1171 2002378 || BLEEDING-EDGE CURRENT Hostile Javascript s_ta_ts.js Requested || url,isc.sans.org/diary.php?date=2005-09-21
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1172 2002380 || BLEEDING-EDGE Firefox Domain Name Buffer Overflow || url,www.milw0rm.com/id.php?id=1224 || url,bugzilla.mozilla.org/show_bug.cgi?id=307259 || cve,2005-2871
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1172 2002380 || BLEEDING-EDGE Firefox Domain Name Buffer Overflow || url,www.milw0rm.com/id.php?id=1224 || url,bugzilla.mozilla.org/show_bug.cgi?id=307259 || cve,2005-2871
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1173 2002381 || BLEEDING-EDGE RealPlayer/Helix Player Format String Exploit || cve,2005-2710 || bugtraq,14945 || url,milw0rm.com/id.php?id=1232
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1174 2002382 || BLEEDING-EDGE EXPLOIT Wzdftpd SITE command arbitrary command execution attempt || url,www.securiteam.com/exploits/5CP0R1PGUE.html || bugtraq,14935
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1175 2002383 || BLEEDING-EDGE ATTACK RESPONSE Potential FTP Brute-Force attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1176 2002384 || BLEEDING-EDGE TROJAN BOT - potential misc bot commands
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1177 2002385 || BLEEDING-EDGE TROJAN BOT - channel topic reptile commands
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1178 2002386 || BLEEDING-EDGE TROJAN BOT - channel topic misc bot commands
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1179 2002387 || BLEEDING-EDGE Trojan - Mitglieder Proxy Bot Checking In || url,isc.sans.org/diary.php?storyid=722
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1180 2002388 || BLEEDING-EDGE WEB vBulletin misc.php Template Name Arbitrary Code Execution || url,metasploit.com/projects/Framework/exploits.html#php_vbulletin_template || cve,2005-0511 || url,www.osvdb.org/14047
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1180 2002388 || BLEEDING-EDGE WEB vBulletin misc.php Template Name Arbitrary Code Execution || url,metasploit.com/projects/Framework/exploits.html#php_vbulletin_template || cve,2005-0511 || url,www.osvdb.org/14047
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1181 2002389 || BLEEDING-EDGE EXPLOIT Vulnerable Mercury 4.01a IMAP Banner || bugtraq,11775 || url,www.pmail.com/whatsnew/m32401.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1182 2002390 || BLEEDING-EDGE EXPLOIT Mercury v4.01a IMAP RENAME Buffer Overflow || bugtraq,11775 || url,metasploit.com/projects/Framework/exploits.html#mercury_imap || url,www.pmail.com/whatsnew/m32401.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1182 2002390 || BLEEDING-EDGE EXPLOIT Mercury v4.01a IMAP RENAME Buffer Overflow || bugtraq,11775 || url,metasploit.com/projects/Framework/exploits.html#mercury_imap || url,www.pmail.com/whatsnew/m32401.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1183 2002391 || BLEEDING-EDGE VIRUS CME-151 Sober.R SMTP Outbound || url,vil.nai.com/vil/content/v_136390.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1184 2002392 || BLEEDING-EDGE VIRUS CME-151 Sober.R SMTP Inbound || url,vil.nai.com/vil/content/v_136390.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1185 2002394 || BLEEDING-EDGE MALWARE Adwave/MarketScore User Agent || url,www.marketscore.com || url,www.adwave.com/our_mission.aspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1185 2002394 || BLEEDING-EDGE MALWARE Adwave/MarketScore User Agent || url,www.marketscore.com || url,www.adwave.com/our_mission.aspx
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1186 2002395 || BLEEDING-EDGE MALWARE Miva User Agent || url,www.findwhat.com || url,www.miva.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1186 2002395 || BLEEDING-EDGE MALWARE Miva User Agent || url,www.findwhat.com || url,www.miva.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1187 2002396 || BLEEDING-EDGE MALWARE Miva User Agent 2 || url,www.miva.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1188 2002397 || BLEEDING-EDGE MALWARE Precision Targeting User Agent || url,www.precisiontargeting.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1189 2002398 || BLEEDING-EDGE MALWARE DelFin Project User Agent || url,www.delfinproject.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1190 2002399 || BLEEDING-EDGE MALWARE DelFin Project User Agent 2 || url,www.delfinproject.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1191 2002400 || BLEEDING-EDGE MALWARE TopInstalls User Agent || url,www.topinstalls.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1192 2002401 || BLEEDING-EDGE MALWARE Web Search User Agent 2 || url,www.websearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1193 2002402 || BLEEDING-EDGE MALWARE Web Search User Agent 3 || url,www.websearch.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1194 2002403 || BLEEDING-EDGE MALWARE Context Plus User Agent 2 || url,www.contextplus.net
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1195 2002404 || BLEEDING-EDGE MALWARE Movies etc User Agent || url,www.movies-etc.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1196 2002405 || BLEEDING-EDGE MALWARE Internet Optimizer User Agent 2 || url,www.internet-optimizer.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1197 2002406 || BLEEDING-EDGE TAC Attack Directory Traversal || url,cirt.dk/advisories/cirt-37-advisory.pdf || url,secunia.com/advisories/16854 || cve,2005-3040
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1197 2002406 || BLEEDING-EDGE TAC Attack Directory Traversal || url,cirt.dk/advisories/cirt-37-advisory.pdf || url,secunia.com/advisories/16854 || cve,2005-3040
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1198 2002407 || BLEEDING-EDGE POLICY WebshotsNetClient || url,www.webshots.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1199 2002408 || BLEEDING-EDGE WEB phpMyAdmin Suspicious Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1200 2002409 || BLEEDING-EDGE WEB phpMyAdmin Local File Inclusion (2.6.4-pl1) || url,www.frsirt.com/english/advisories/2005/2024 || url,securityreason.com/securityalert/69
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1200 2002409 || BLEEDING-EDGE WEB phpMyAdmin Local File Inclusion (2.6.4-pl1) || url,www.frsirt.com/english/advisories/2005/2024 || url,securityreason.com/securityalert/69
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1201 2002410 || BLEEDING-EDGE POLICY SMTP Non-US Restricted Outbound
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1202 2002411 || BLEEDING-EDGE POLICY SMTP Non-US Confidential Outbound
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1203 2002412 || BLEEDING-EDGE POLICY SMTP Non-US Top Secret Outbound
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1204 2002413 || BLEEDING-EDGE POLICY SMTP Non-US Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1205 2002414 || BLEEDING-EDGE POLICY SMTP NATO Restricted
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1206 2002415 || BLEEDING-EDGE POLICY SMTP NATO Confidential Atomal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1207 2002416 || BLEEDING-EDGE POLICY SMTP NATO Confidential
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1208 2002417 || BLEEDING-EDGE POLICY SMTP NATO COSMIC Top Secret Atomal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1209 2002418 || BLEEDING-EDGE POLICY SMTP NATO Secret Atomal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1210 2002419 || BLEEDING-EDGE POLICY SMTP NATO Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1211 2002420 || BLEEDING-EDGE POLICY SMTP US Confidential, Electronic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1212 2002421 || BLEEDING-EDGE POLICY SMTP US Top Secret, Electronic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1213 2002422 || BLEEDING-EDGE POLICY SMTP US Secret, Electronic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1214 2002423 || BLEEDING-EDGE POLICY SMTP US Confidential REL TO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1215 2002424 || BLEEDING-EDGE POLICY SMTP US Top Secret REL TO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1216 2002425 || BLEEDING-EDGE POLICY SMTP US Secret REL TO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1217 2002426 || BLEEDING-EDGE POLICY SMTP US Confidential COMINT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1218 2002427 || BLEEDING-EDGE POLICY SMTP US Top Secret COMINT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1219 2002428 || BLEEDING-EDGE POLICY SMTP US Secret COMINT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1220 2002429 || BLEEDING-EDGE POLICY SMTP US Unclassified COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1221 2002430 || BLEEDING-EDGE POLICY SMTP US Confidential COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1222 2002431 || BLEEDING-EDGE POLICY SMTP US Top Secret COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1223 2002432 || BLEEDING-EDGE POLICY SMTP US Secret COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1224 2002433 || BLEEDING-EDGE POLICY SMTP US Secret IMCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1225 2002434 || BLEEDING-EDGE POLICY SMTP US Top Secret CNWDI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1226 2002435 || BLEEDING-EDGE POLICY SMTP US Secret CNWDI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1227 2002436 || BLEEDING-EDGE POLICY SMTP US Top Secret TK
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1228 2002437 || BLEEDING-EDGE POLICY SMTP US Secret TK
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1229 2002438 || BLEEDING-EDGE POLICY SMTP US FGI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1230 2002439 || BLEEDING-EDGE POLICY SMTP US FOUO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1231 2002440 || BLEEDING-EDGE POLICY SMTP US Confidential NOFORN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1232 2002441 || BLEEDING-EDGE POLICY SMTP US Top Secret NOFORN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1233 2002442 || BLEEDING-EDGE POLICY SMTP US Secret NOFORN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1234 2002443 || BLEEDING-EDGE POLICY SMTP US Confidential ORCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1235 2002444 || BLEEDING-EDGE POLICY SMTP US Top Secret ORCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1236 2002445 || BLEEDING-EDGE POLICY SMTP US Secret ORCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1237 2002446 || BLEEDING-EDGE POLICY SMTP US Unclassified PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1238 2002447 || BLEEDING-EDGE POLICY SMTP US Confidential PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1239 2002448 || BLEEDING-EDGE POLICY SMTP US Top Secret PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1240 2002449 || BLEEDING-EDGE POLICY SMTP US Secret PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1241 2002450 || BLEEDING-EDGE POLICY SMTP US Confidential RD
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1242 2002451 || BLEEDING-EDGE POLICY SMTP US Top Secret RD
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1243 2002452 || BLEEDING-EDGE POLICY SMTP US Secret RD
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1244 2002453 || BLEEDING-EDGE POLICY SMTP US SAMI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1245 2002454 || BLEEDING-EDGE POLICY SMTP US Confidential SPECAT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1246 2002455 || BLEEDING-EDGE POLICY SMTP US Top Secret SPECAT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1247 2002456 || BLEEDING-EDGE POLICY SMTP US Secret SPECAT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1248 2002457 || BLEEDING-EDGE POLICY SMTP US Top Secret STOP
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1249 2002458 || BLEEDING-EDGE POLICY SMTP Private
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1250 2002459 || BLEEDING-EDGE POLICY SMTP Restricted
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1251 2002460 || BLEEDING-EDGE POLICY SMTP Confidential
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1252 2002461 || BLEEDING-EDGE POLICY SMTP Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1253 2002462 || BLEEDING-EDGE POLICY SMTP Top Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1254 2002463 || BLEEDING-EDGE POLICY SMTP Sealed
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1255 2002464 || BLEEDING-EDGE POLICY SMTP Sensitive
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1256 2002465 || BLEEDING-EDGE POLICY SMTP Proprietary
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1257 2002466 || BLEEDING-EDGE POLICY SMTP Protected
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1258 2002467 || BLEEDING-EDGE POLICY SMTP Law Enorcement Sensitive
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1259 2002468 || BLEEDING-EDGE POLICY SMTP Internal Use Only
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1260 2002469 || BLEEDING-EDGE POLICY SMTP Date of Birth
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1261 2002470 || BLEEDING-EDGE POLICY SMTP HCPCS Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1262 2002471 || BLEEDING-EDGE POLICY SMTP ICD-10 Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1263 2002472 || BLEEDING-EDGE POLICY SMTP FDA NDC Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1264 2002473 || BLEEDING-EDGE POLICY SMTP ADA Procedure Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1265 2002474 || BLEEDING-EDGE POLICY SMTP DSM-IV Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1266 2002475 || BLEEDING-EDGE POLICY SMTP AMA CPT Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1267 2002477 || BLEEDING-EDGE POLICY SMTP Credit Card, JCB
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1268 2002483 || BLEEDING-EDGE POLICY SMTP Password
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1269 2002484 || BLEEDING-EDGE POLICY SMTP Appraisal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1270 2002485 || BLEEDING-EDGE POLICY SMTP Account Balance
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1271 2002486 || BLEEDING-EDGE POLICY SMTP Payment History
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1272 2002487 || BLEEDING-EDGE POLICY SMTP Annual Income
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1273 2002488 || BLEEDING-EDGE POLICY SMTP Credit History
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1274 2002489 || BLEEDING-EDGE POLICY SMTP Transaction History
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1275 2002490 || BLEEDING-EDGE POLICY SMTP Customer List
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1276 2002491 || BLEEDING-EDGE EXPLOIT COM Object MS05-052 (group 1) || url,www.microsoft.com/technet/security/Bulletin/MS05-052.mspx || cve,2005-2127
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1277 2002492 || BLEEDING-EDGE EXPLOIT COM Object MS05-052 (group 2) || url,www.microsoft.com/technet/security/Bulletin/MS05-052.mspx || cve,2005-2127
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1278 2002493 || BLEEDING-EDGE EXPLOIT COM Object MS05-052 (group 3) || url,www.microsoft.com/technet/security/Bulletin/MS05-052.mspx || cve,2005-2127
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1279 2002494 || BLEEDING-EDGE WEB Versatile Bulletin Board SQL Injection Attack || bugtraq,15068
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1280 2002495 || BLEEDING-EDGE POLICY HTTP Non-US Restricted
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1281 2002496 || BLEEDING-EDGE POLICY HTTP - Non-US Confidential
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1282 2002497 || BLEEDING-EDGE POLICY HTTP - Non-US Top Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1283 2002498 || BLEEDING-EDGE POLICY HTTP - Non-US Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1284 2002499 || BLEEDING-EDGE POLICY HTTP - NATO Restricted
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1285 2002500 || BLEEDING-EDGE POLICY HTTP - NATO Confidential Atomal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1286 2002501 || BLEEDING-EDGE POLICY HTTP - NATO Confidential
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1287 2002502 || BLEEDING-EDGE POLICY HTTP - NATO COSMIC Top Secret Atomal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1288 2002503 || BLEEDING-EDGE POLICY HTTP - NATO Secret Atomal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1289 2002504 || BLEEDING-EDGE POLICY HTTP - NATO Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1290 2002505 || BLEEDING-EDGE POLICY HTTP - US Confidential, Electronic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1291 2002506 || BLEEDING-EDGE POLICY HTTP - US Top Secret, Electronic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1292 2002507 || BLEEDING-EDGE POLICY HTTP - US Secret, Electronic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1293 2002508 || BLEEDING-EDGE POLICY HTTP - US Confidential REL TO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1294 2002509 || BLEEDING-EDGE POLICY HTTP - US Top Secret REL TO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1295 2002510 || BLEEDING-EDGE POLICY HTTP - US Secret REL TO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1296 2002511 || BLEEDING-EDGE POLICY HTTP - US Confidential COMINT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1297 2002512 || BLEEDING-EDGE POLICY HTTP - US Top Secret COMINT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1298 2002513 || BLEEDING-EDGE POLICY HTTP - US Secret COMINT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1299 2002514 || BLEEDING-EDGE POLICY HTTP - US Unclassified COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1300 2002515 || BLEEDING-EDGE POLICY HTTP - US Confidential COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1301 2002516 || BLEEDING-EDGE POLICY HTTP - US Top Secret COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1302 2002517 || BLEEDING-EDGE POLICY HTTP - US Secret COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1303 2002518 || BLEEDING-EDGE POLICY HTTP - US Secret IMCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1304 2002519 || BLEEDING-EDGE POLICY HTTP - US Top Secret CNWDI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1305 2002520 || BLEEDING-EDGE POLICY HTTP - US Secret CNWDI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1306 2002521 || BLEEDING-EDGE POLICY HTTP - US Top Secret TK
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1307 2002522 || BLEEDING-EDGE POLICY HTTP - US Secret TK
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1308 2002523 || BLEEDING-EDGE POLICY HTTP - US FGI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1309 2002524 || BLEEDING-EDGE POLICY HTTP - US FOUO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1310 2002525 || BLEEDING-EDGE POLICY HTTP - US Confidential NOFORN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1311 2002526 || BLEEDING-EDGE POLICY HTTP - US Top Secret NOFORN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1312 2002527 || BLEEDING-EDGE POLICY HTTP - US Secret NOFORN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1313 2002528 || BLEEDING-EDGE POLICY HTTP - US Top Secret ORCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1314 2002529 || BLEEDING-EDGE POLICY HTTP - US Secret ORCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1315 2002530 || BLEEDING-EDGE POLICY HTTP - US Unclassified PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1316 2002531 || BLEEDING-EDGE POLICY HTTP - US Confidential PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1317 2002532 || BLEEDING-EDGE POLICY HTTP - US Top Secret PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1318 2002533 || BLEEDING-EDGE POLICY HTTP - US Secret PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1319 2002534 || BLEEDING-EDGE POLICY HTTP - US Confidential RD
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1320 2002535 || BLEEDING-EDGE POLICY HTTP - US Top Secret RD
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1321 2002536 || BLEEDING-EDGE POLICY HTTP - US Secret RD
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1322 2002537 || BLEEDING-EDGE POLICY HTTP - US SAMI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1323 2002538 || BLEEDING-EDGE POLICY HTTP - US Confidential SPECAT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1324 2002539 || BLEEDING-EDGE POLICY HTTP - US Top Secret SPECAT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1325 2002540 || BLEEDING-EDGE POLICY HTTP - US Secret SPECAT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1326 2002541 || BLEEDING-EDGE POLICY HTTP - US Top Secret STOP
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1327 2002542 || BLEEDING-EDGE POLICY HTTP - Private
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1328 2002543 || BLEEDING-EDGE POLICY HTTP - Restricted
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1329 2002544 || BLEEDING-EDGE POLICY HTTP - Confidential
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1330 2002545 || BLEEDING-EDGE POLICY HTTP - Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1331 2002546 || BLEEDING-EDGE POLICY HTTP - Top Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1332 2002547 || BLEEDING-EDGE POLICY HTTP - Sealed
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1333 2002548 || BLEEDING-EDGE POLICY HTTP - Sensitive
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1334 2002549 || BLEEDING-EDGE POLICY HTTP - Proprietary
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1335 2002550 || BLEEDING-EDGE POLICY HTTP - Protected
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1336 2002551 || BLEEDING-EDGE POLICY HTTP - Law Enorcement Sensitive
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1337 2002552 || BLEEDING-EDGE POLICY HTTP - Internal Use Only
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1338 2002553 || BLEEDING-EDGE POLICY HTTP - Date of Birth
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1339 2002554 || BLEEDING-EDGE POLICY HTTP - HCPCS Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1340 2002555 || BLEEDING-EDGE POLICY HTTP - ICD-10 Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1341 2002556 || BLEEDING-EDGE POLICY HTTP - FDA NDC Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1342 2002557 || BLEEDING-EDGE POLICY HTTP - ADA Procedure Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1343 2002558 || BLEEDING-EDGE POLICY HTTP - DSM-IV Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1344 2002559 || BLEEDING-EDGE POLICY HTTP - AMA CPT Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1345 2002561 || BLEEDING-EDGE POLICY HTTP - Credit Card, JCB
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1346 2002567 || BLEEDING-EDGE POLICY HTTP - Password
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1347 2002568 || BLEEDING-EDGE POLICY HTTP - Appraisal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1348 2002569 || BLEEDING-EDGE POLICY HTTP - Account Balance
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1349 2002570 || BLEEDING-EDGE POLICY HTTP - Payment History
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1350 2002571 || BLEEDING-EDGE POLICY HTTP - Annual Income
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1351 2002572 || BLEEDING-EDGE POLICY HTTP - Credit History
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1352 2002573 || BLEEDING-EDGE POLICY HTTP - Transaction History
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1353 2002574 || BLEEDING-EDGE POLICY HTTP - Customer List
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1354 2002575 || BLEEDING-EDGE POLICY High Ports - Non-US Restricted
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1355 2002576 || BLEEDING-EDGE POLICY High Ports - Non-US Confidential
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1356 2002577 || BLEEDING-EDGE POLICY High Ports - Non-US Top Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1357 2002578 || BLEEDING-EDGE POLICY High Ports - Non-US Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1358 2002579 || BLEEDING-EDGE POLICY High Ports - NATO Restricted
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1359 2002580 || BLEEDING-EDGE POLICY High Ports - NATO Confidential Atomal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1360 2002581 || BLEEDING-EDGE POLICY High Ports - NATO Confidential
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1361 2002582 || BLEEDING-EDGE POLICY High Ports - NATO COSMIC Top Secret Atomal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1362 2002583 || BLEEDING-EDGE POLICY High Ports - NATO Secret Atomal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1363 2002584 || BLEEDING-EDGE POLICY High Ports - NATO Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1364 2002585 || BLEEDING-EDGE POLICY High Ports - US Confidential, Electronic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1365 2002586 || BLEEDING-EDGE POLICY High Ports - US Top Secret, Electronic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1366 2002587 || BLEEDING-EDGE POLICY High Ports - US Secret, Electronic
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1367 2002588 || BLEEDING-EDGE POLICY High Ports - US Confidential REL TO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1368 2002589 || BLEEDING-EDGE POLICY High Ports - US Top Secret REL TO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1369 2002590 || BLEEDING-EDGE POLICY High Ports - US Secret REL TO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1370 2002591 || BLEEDING-EDGE POLICY High Ports - US Confidential COMINT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1371 2002592 || BLEEDING-EDGE POLICY High Ports - US Top Secret COMINT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1372 2002593 || BLEEDING-EDGE POLICY High Ports - US Secret COMINT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1373 2002594 || BLEEDING-EDGE POLICY High Ports - US Unclassified COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1374 2002595 || BLEEDING-EDGE POLICY High Ports - US Confidential COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1375 2002596 || BLEEDING-EDGE POLICY High Ports - US Top Secret COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1376 2002597 || BLEEDING-EDGE POLICY High Ports - US Secret COMSEC
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1377 2002598 || BLEEDING-EDGE POLICY High Ports - US Secret IMCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1378 2002599 || BLEEDING-EDGE POLICY High Ports - US Top Secret CNWDI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1379 2002600 || BLEEDING-EDGE POLICY High Ports - US Secret CNWDI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1380 2002601 || BLEEDING-EDGE POLICY High Ports - US Top Secret TK
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1381 2002602 || BLEEDING-EDGE POLICY High Ports - US Secret TK
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1382 2002603 || BLEEDING-EDGE POLICY High Ports - US FGI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1383 2002604 || BLEEDING-EDGE POLICY High Ports - US FOUO
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1384 2002605 || BLEEDING-EDGE POLICY High Ports - US Confidential NOFORN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1385 2002606 || BLEEDING-EDGE POLICY High Ports - US Top Secret NOFORN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1386 2002607 || BLEEDING-EDGE POLICY High Ports - US Secret NOFORN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1387 2002608 || BLEEDING-EDGE POLICY High Ports - US Confidential ORCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1388 2002609 || BLEEDING-EDGE POLICY High Ports - US Top Secret ORCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1389 2002610 || BLEEDING-EDGE POLICY High Ports - US Secret ORCON
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1390 2002611 || BLEEDING-EDGE POLICY High Ports - US Unclassified PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1391 2002612 || BLEEDING-EDGE POLICY High Ports - US Confidential PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1392 2002613 || BLEEDING-EDGE POLICY High Ports - US Top Secret PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1393 2002614 || BLEEDING-EDGE POLICY High Ports - US Secret PROPIN
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1394 2002615 || BLEEDING-EDGE POLICY High Ports - US Confidential RD
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1395 2002616 || BLEEDING-EDGE POLICY High Ports - US Top Secret RD
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1396 2002617 || BLEEDING-EDGE POLICY High Ports - US Secret RD
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1397 2002618 || BLEEDING-EDGE POLICY High Ports - US SAMI
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1398 2002619 || BLEEDING-EDGE POLICY High Ports - US Confidential SPECAT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1399 2002620 || BLEEDING-EDGE POLICY High Ports - US Top Secret SPECAT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1400 2002621 || BLEEDING-EDGE POLICY High Ports - US Secret SPECAT
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1401 2002622 || BLEEDING-EDGE POLICY High Ports - US Top Secret STOP
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1402 2002623 || BLEEDING-EDGE POLICY High Ports - Private
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1403 2002624 || BLEEDING-EDGE POLICY High Ports - Restricted
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1404 2002625 || BLEEDING-EDGE POLICY High Ports - Confidential
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1405 2002626 || BLEEDING-EDGE POLICY High Ports - Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1406 2002627 || BLEEDING-EDGE POLICY High Ports - Top Secret
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1407 2002628 || BLEEDING-EDGE POLICY High Ports - Sealed
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1408 2002629 || BLEEDING-EDGE POLICY High Ports - Sensitive
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1409 2002630 || BLEEDING-EDGE POLICY High Ports - Proprietary
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1410 2002631 || BLEEDING-EDGE POLICY High Ports - Protected
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1411 2002632 || BLEEDING-EDGE POLICY High Ports - Law Enorcement Sensitive
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1412 2002633 || BLEEDING-EDGE POLICY High Ports - Internal Use Only
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1413 2002634 || BLEEDING-EDGE POLICY High Ports - Date of Birth
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1414 2002635 || BLEEDING-EDGE POLICY High Ports - HCPCS Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1415 2002636 || BLEEDING-EDGE POLICY High Ports - ICD-10 Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1416 2002637 || BLEEDING-EDGE POLICY High Ports - FDA NDC Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1417 2002638 || BLEEDING-EDGE POLICY High Ports - ADA Procedure Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1418 2002639 || BLEEDING-EDGE POLICY High Ports - DSM-IV Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1419 2002640 || BLEEDING-EDGE POLICY High Ports - AMA CPT Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1420 2002642 || BLEEDING-EDGE POLICY High Ports - Credit Card, JCB
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1421 2002648 || BLEEDING-EDGE POLICY High Ports - Password
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1422 2002649 || BLEEDING-EDGE POLICY High Ports - Appraisal
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1423 2002650 || BLEEDING-EDGE POLICY High Ports - Account Balance
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1424 2002651 || BLEEDING-EDGE POLICY High Ports - Payment History
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1425 2002652 || BLEEDING-EDGE POLICY High Ports - Annual Income
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1426 2002653 || BLEEDING-EDGE POLICY High Ports - Credit History
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1427 2002654 || BLEEDING-EDGE POLICY High Ports - Transaction History
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1428 2002655 || BLEEDING-EDGE POLICY High Ports - Customer List
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1429 2002656 || BLEEDING-EDGE EXPLOIT malformed Sack --Snort DoS-by-$um$id
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1430 2002658 || BLEEDING-EDGE POLICY EIN in the clear (US-IRS Employer ID Number) || url,policy.ssa.gov/poms.nsf/lnx/0101001001?opendocument || url,policy.ssa.gov/poms.nsf/lnx/0101001004
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1430 2002658 || BLEEDING-EDGE POLICY EIN in the clear (US-IRS Employer ID Number) || url,policy.ssa.gov/poms.nsf/lnx/0101001001?opendocument || url,policy.ssa.gov/poms.nsf/lnx/0101001004
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1431 2002659 || BLEEDING-EDGE CHAT Yahoo IM Client Install
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1432 2002660 || BLEEDING-EDGE WEB RSA Web Auth Exploit Attempt - Long URL || url,www.metasploit.com/projects/Framework/modules/exploits/rsa_iiswebagent_redirect.pm || url,secunia.com/advisories/17281
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1432 2002660 || BLEEDING-EDGE WEB RSA Web Auth Exploit Attempt - Long URL || url,www.metasploit.com/projects/Framework/modules/exploits/rsa_iiswebagent_redirect.pm || url,secunia.com/advisories/17281
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1433 2002661 || BLEEDING-EDGE EXPLOIT Snort Back Orifice pre-processor buffer overflow attempt || url,xforce.iss.net/xforce/alerts/id/207 || url,isc.sans.org/diary.php?storyid=770 || url,isc.sans.org/diary.php?storyid=782
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1433 2002661 || BLEEDING-EDGE EXPLOIT Snort Back Orifice pre-processor buffer overflow attempt || url,xforce.iss.net/xforce/alerts/id/207 || url,isc.sans.org/diary.php?storyid=770 || url,isc.sans.org/diary.php?storyid=782
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1433 2002661 || BLEEDING-EDGE EXPLOIT Snort Back Orifice pre-processor buffer overflow attempt || url,xforce.iss.net/xforce/alerts/id/207 || url,isc.sans.org/diary.php?storyid=770 || url,isc.sans.org/diary.php?storyid=782
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1434 2002662 || BLEEDING-EDGE WEB TWiki INCLUDE remote command execution attempt || bugtraq,14960
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1435 2002663 || BLEEDING-EDGE WEB e107 resetcore.php SQL Injection attempt || bugtraq,15125
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1436 2002664 || BLEEDING-EDGE SCAN Nessus User Agent || url,www.nessus.org
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1437 2002665 || BLEEDING-EDGE VIRUS Bagle.dk SMTP Inbound || url,vil.nai.com/vil/content/v_136751.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1438 2002666 || BLEEDING-EDGE VIRUS Bagle.dk SMTP Outbound || url,vil.nai.com/vil/content/v_136751.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1439 2002667 || BLEEDING-EDGE WEB sumthin scan || url,www.webmasterworld.com/forum11/2100.htm
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1440 2002668 || BLEEDING-EDGE WEB CutePHP CuteNews directory traversal vulnerability || bugtraq,15295
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1441 2002669 || BLEEDING-EDGE TROJAN Potential New Spambot Proxy Control Channel -- Please report hits to bleeding-sigs@bleedingsnort.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1442 2002670 || BLEEDING-EDGE CURRENT EVENTS Malware Altered Host - DNS to Malicious DNS Server (tcp) || url,isc.sans.org/diary.php?storyid=819
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1443 2002671 || BLEEDING-EDGE WEB Galerie ShowGallery.php SQL Injection attempt || bugtraq,15313
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1444 2002672 || BLEEDING-EDGE CURRENT EVENTS Malware Altered Host - DNS to Malicious DNS Server (udp) || url,isc.sans.org/diary.php?storyid=819
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1445 2002673 || BLEEDING-EDGE P2P MS Foldershare Login Detected || url,www.foldershare.com
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1446 2002674 || BLEEDING-EDGE MALWARE Sony DRM Reporting 2 || url,www.sysinternals.com/blog/2005/11/more-on-sony-dangerous-decloaking.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1447 2002675 || BLEEDING-EDGE MALWARE Sony DRM Reporting 1 || url,www.sysinternals.com/blog/2005/11/more-on-sony-dangerous-decloaking.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1448 2002676 || BLEEDING-EDGE POLICY nstx DNS Tunnel Outbound || url,nstx.dereference.de/nstx || url,savannah.nongnu.org/projects/nstx/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1448 2002676 || BLEEDING-EDGE POLICY nstx DNS Tunnel Outbound || url,nstx.dereference.de/nstx || url,savannah.nongnu.org/projects/nstx/
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1449 2002677 || BLEEDING-EDGE SCAN Nikto Web App Scan in Progress || url,www.cirt.net/code/nikto.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1450 2002678 || BLEEDING-EDGE WEB Cyphor show.php SQL injection attempt || bugtraq,15418
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1451 2002679 || BLEEDING-EDGE Malware Sony DRM Related -- CodeSupport ActiveX Attempt || url,www.hack.fi/~muzzy/sony-drm/ || url,www.frsirt.com/english/advisories/2005/2454
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1451 2002679 || BLEEDING-EDGE Malware Sony DRM Related -- CodeSupport ActiveX Attempt || url,www.hack.fi/~muzzy/sony-drm/ || url,www.frsirt.com/english/advisories/2005/2454
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1452 2002680 || BLEEDING-EDGE Malware Sony DRM -- Uninstaller CLSID || url,www.frsirt.com/english/advisories/2005/2493 || url,www.freedom-to-tinker.com/?p=931
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1452 2002680 || BLEEDING-EDGE Malware Sony DRM -- Uninstaller CLSID || url,www.frsirt.com/english/advisories/2005/2493 || url,www.freedom-to-tinker.com/?p=931
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1453 2002681 || BLEEDING-EDGE EXPLOIT Mambo Exploit || url,isc.sans.org/diary.php?storyid=869 || url,seclists.org/lists/fulldisclosure/2005/Nov/0528.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1453 2002681 || BLEEDING-EDGE EXPLOIT Mambo Exploit || url,isc.sans.org/diary.php?storyid=869 || url,seclists.org/lists/fulldisclosure/2005/Nov/0528.html
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1454 2002682 || BLEEDING-EDGE CURRENT EVENTS Microsoft Internet Explorer Window() Possible Code Execution || cve,2005-1790 || url,www.computerterrorism.com/research/ie/ct21-11-2005 || url,secunia.com/advisories/15546
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1454 2002682 || BLEEDING-EDGE CURRENT EVENTS Microsoft Internet Explorer Window() Possible Code Execution || cve,2005-1790 || url,www.computerterrorism.com/research/ie/ct21-11-2005 || url,secunia.com/advisories/15546
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1455 2002683 || BLEEDING-EDGE WEB shell bot perl code download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1456 2002684 || BLEEDING-EDGE WEB Shell Bot Code Download
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1457 2002685 || BLEEDING-EDGE WEB Barracuda Spam Firewall img.pl Remote Directory Traversal Attempt || bugtraq,14710
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1458 2002686 || BLEEDING-EDGE VIRUS Sober.AA (.Z,.AG,.X,.Y,.W) worm SMTP Outbound || url,www.norman.com/Virus/Virus_descriptions/25962 || url,cme.mitre.org/data/list.html#681
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1458 2002686 || BLEEDING-EDGE VIRUS Sober.AA (.Z,.AG,.X,.Y,.W) worm SMTP Outbound || url,www.norman.com/Virus/Virus_descriptions/25962 || url,cme.mitre.org/data/list.html#681
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1459 2002687 || BLEEDING-EDGE VIRUS Sober.AA (.Z,.AG,.X,.Y,.W) worm SMTP Inbound || url,www.norman.com/Virus/Virus_descriptions/25962 || url,cme.mitre.org/data/list.html#681
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1459 2002687 || BLEEDING-EDGE VIRUS Sober.AA (.Z,.AG,.X,.Y,.W) worm SMTP Inbound || url,www.norman.com/Virus/Virus_descriptions/25962 || url,cme.mitre.org/data/list.html#681
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1460 2002688 || BLEEDING-EDGE VIRUS Bagle.EO or EP Inbound || url,www.f-secure.com/v-descs/bagle_ep.shtml || url,www.f-secure.com/v-descs/bagle_eo.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1460 2002688 || BLEEDING-EDGE VIRUS Bagle.EO or EP Inbound || url,www.f-secure.com/v-descs/bagle_ep.shtml || url,www.f-secure.com/v-descs/bagle_eo.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1461 2002689 || BLEEDING-EDGE VIRUS Bagle.EO or EP Outbound || url,www.f-secure.com/v-descs/bagle_ep.shtml || url,www.f-secure.com/v-descs/bagle_eo.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1461 2002689 || BLEEDING-EDGE VIRUS Bagle.EO or EP Outbound || url,www.f-secure.com/v-descs/bagle_ep.shtml || url,www.f-secure.com/v-descs/bagle_eo.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1462 2002690 || BLEEDING-EDGE VIRUS Bagle.ES or ET Inbound || url,www.f-secure.com/v-descs/bagle_es.shtml || url,www.f-secure.com/v-descs/bagle_et.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1462 2002690 || BLEEDING-EDGE VIRUS Bagle.ES or ET Inbound || url,www.f-secure.com/v-descs/bagle_es.shtml || url,www.f-secure.com/v-descs/bagle_et.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1463 2002691 || BLEEDING-EDGE VIRUS Bagle.ES or ET Outbound || url,www.f-secure.com/v-descs/bagle_es.shtml || url,www.f-secure.com/v-descs/bagle_et.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1463 2002691 || BLEEDING-EDGE VIRUS Bagle.ES or ET Outbound || url,www.f-secure.com/v-descs/bagle_es.shtml || url,www.f-secure.com/v-descs/bagle_et.shtml
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1464 2002692 || BLEEDING-EDGE CURRENT EVENTS Bagle.Gen HTTP Get Traffic - Possible Infected Host
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1465 2002693 || BLEEDING-EDGE VIRUS Generic Downloader Inbound
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1466 2002694 || BLEEDING-EDGE VIRUS Generic Downloader Outbound
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1467 2002695 || BLEEDING-EDGE VIRUS Generic Downloader Outbound HTTP connection - Downloading Code
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1468 2002696 || BLEEDING-EDGE MALWARE Trojan Bankem Reporting User Activity
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1469 2002697 || BLEEDING-EDGE EXPLOIT CVSTrac filediff Arbitrary Remote Code Execution || cve,CVE-2004-14562 || bugtraq,10878
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1470 2002698 || BLEEDING-EDGE WORM Netsky.P (variant 2) - SMTP incoming || url,secunia.com/search/?search=netsky.p
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1471 2002699 || BLEEDING-EDGE VIRUS Win32.Bagle.f (.AH,.AJ,Trojan.Lodear.D) Trojan Activity - download attempt || url,www-secure.symantec.com/avcenter/venc/data/trojan.lodear.d.html || url,www.trendmicro.com.au/consumer/vinfo/encyclopedia.php?LYstr=VMAINDATA&vNav=3&VName=TROJ_BAGLE.AH
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1471 2002699 || BLEEDING-EDGE VIRUS Win32.Bagle.f (.AH,.AJ,Trojan.Lodear.D) Trojan Activity - download attempt || url,www-secure.symantec.com/avcenter/venc/data/trojan.lodear.d.html || url,www.trendmicro.com.au/consumer/vinfo/encyclopedia.php?LYstr=VMAINDATA&vNav=3&VName=TROJ_BAGLE.AH
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1472 2002700 || BLEEDING-EDGE WORM Netsky.P (variant 2) - SMTP outgoing || url,secunia.com/search/?search=netsky.p
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1473 2002701 || BLEEDING-EDGE EXPLOIT shellbot code injection attempt
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1474 2002702 || BLEEDING-EDGE EXPLOIT OSTicket Remote Code Execution Attempt || cve,CAN-2005-1439 || cve,CAN-2005-1438 || url,www.gulftech.org/?node=research&article_id=00071-05022005 || url,secunia.com/advisories/15216
./snortrules-BLEEDING-2.4/rules/bleeding-sid-msg.map : 1474 2002702 || BLEEDING-EDGE EXPLOIT OSTicket Remote Code Execution Attempt || cve,CAN-2005-1439 || cve,CAN-2005-1438 || url,www.gulftech.org/?node=research&article_id=00071-05022005 || url,secunia.com/advisories/15216