2000005 || ET EXPLOIT Cisco Telnet Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Cisco_Telnet_Buffer_Overflow || url,doc.emergingthreats.net/bin/view/Main/2000005 || url,www.cisco.com/warp/public/707/cisco-sn-20040326-exploits.shtml
2000006 || ET DOS Cisco Router HTTP DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Cisco_Router_HTTP_DOS || url,doc.emergingthreats.net/bin/view/Main/2000006 || url,www.cisco.com/warp/public/707/cisco-sn-20040326-exploits.shtml
2000007 || ET EXPLOIT Catalyst SSH protocol mismatch || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Cisco_Catalyst_SSH_Protocol_Mismatch || url,doc.emergingthreats.net/bin/view/Main/2000007 || url,www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml
2000009 || ET EXPLOIT Cisco IOS HTTP DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Cisco_IOS_HTTP_DOS || url,doc.emergingthreats.net/bin/view/Main/2000009 || url,www.cisco.com/warp/public/707/ioshttpserverquery-pub.shtml
2000010 || ET DOS Cisco 514 UDP flood DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Cisco_514_UDP_DoS || url,doc.emergingthreats.net/bin/view/Main/2000010 || url,www.cisco.com/warp/public/707/IOS-cbac-dynacl-pub.shtml
2000011 || ET DOS Catalyst memory leak attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Cisco_Catalyst_memory_leak_attack || url,doc.emergingthreats.net/bin/view/Main/2000011 || url,www.cisco.com/en/US/products/products_security_advisory09186a00800b138e.shtml
2000012 || ET EXPLOIT Cisco %u IDS evasion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Cisco_%u_Evasion || url,doc.emergingthreats.net/bin/view/Main/2000012
2000013 || ET EXPLOIT Cisco IOS HTTP server DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Cisco_HTTP_Server_DoS || url,doc.emergingthreats.net/bin/view/Main/2000013
2000015 || ET P2P Phatbot Control Connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Phatbot_Control_Connection || url,doc.emergingthreats.net/bin/view/Main/2000015 || url,www.lurhq.com/phatbot.html
2000016 || ET DOS SSL Bomb DoS Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_SSL_Bomb_Attempt || url,doc.emergingthreats.net/bin/view/Main/2000016 || url,www.microsoft.com/technet/security/bulletin/MS04-011.mspx || cve,CAN-2004-0120
2000017 || ET EXPLOIT NII Microsoft ASN.1 Library Buffer Overflow Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_NETBIOS_ASN1_Overflow || url,doc.emergingthreats.net/bin/view/Main/2000017 || url,www.microsoft.com/technet/security/bulletin/ms04-007.asp
2000024 || ET MALWARE rcprograms || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Rcprograms || url,doc.emergingthreats.net/bin/view/Main/2000024 || url,sarc.com/avcenter/venc/data/adware.rcprograms.html
2000025 || ET MALWARE Gator Cookie || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Gator_Agent || url,doc.emergingthreats.net/bin/view/Main/2000025 || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
2000026 || ET MALWARE Gator Agent Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2000026
2000031 || ET EXPLOIT CVS server heap overflow attempt (target BSD) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CVS_HEAP_Overflow || url,doc.emergingthreats.net/bin/view/Main/2000031
2000032 || ET EXPLOIT LSA exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sasser_LSA || url,doc.emergingthreats.net/bin/view/Main/2000032 || url,www.upenn.edu/computing/virus/04/w32.sasser.worm.html || url,www.eeye.com/html/research/advisories/AD20040501.html
2000033 || ET EXPLOIT MS04011 Lsasrv.dll RPC exploit (WinXP) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_LSASRV_DLL_RPC_Exploit_winXP || url,doc.emergingthreats.net/bin/view/Main/2000033
2000035 || ET POLICY Hotmail Inbox Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_HOTMAIL_Mail_Use || url,doc.emergingthreats.net/2000035
2000036 || ET POLICY Hotmail Message Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_HOTMAIL_Mail_Use || url,doc.emergingthreats.net/2000036
2000037 || ET POLICY Hotmail Compose Message Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_HOTMAIL_Mail_Use || url,doc.emergingthreats.net/2000037
2000038 || ET POLICY Hotmail Compose Message Submit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_HOTMAIL_Mail_Use || url,doc.emergingthreats.net/2000038
2000039 || ET POLICY Hotmail Compose Message Submit Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_HOTMAIL_Mail_Use || url,doc.emergingthreats.net/2000039
2000040 || ET WORM Sasser FTP Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Sasser || url,doc.emergingthreats.net/2000040 || url,vil.mcafeesecurity.com/vil/content/Print125009.htm
2000041 || ET Yahoo Mail Inbox View || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2000041
2000042 || ET Yahoo Mail Message View || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2000042
2000043 || ET Yahoo Mail Message Compose Open || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2000043
2000044 || ET Yahoo Mail Message Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2000044
2000045 || ET Yahoo Mail Message Send Info Capture || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2000045
2000046 || ET EXPLOIT MS04011 Lsasrv.dll RPC exploit (Win2k) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_LSASRV_DLL_RPC_Exploit_win2k || url,doc.emergingthreats.net/bin/view/Main/2000046
2000047 || ET WORM Sasser Transfer _up.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Sasser || url,doc.emergingthreats.net/2000047 || url,vil.mcafeesecurity.com/vil/content/Print125009.htm
2000048 || ET EXPLOIT CVS server heap overflow attempt (target Linux) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CVS_HEAP_Overflow || url,doc.emergingthreats.net/bin/view/Main/2000048
2000049 || ET EXPLOIT CVS server heap overflow attempt (target Solaris) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CVS_HEAP_Overflow || url,doc.emergingthreats.net/bin/view/Main/2000049
2000306 || ET MALWARE Virtumonde Spyware siae3123.exe GET || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Virtumonde || url,doc.emergingthreats.net/bin/view/Main/2000306 || url,sarc.com/avcenter/venc/data/adware.virtumonde.html
2000307 || ET MALWARE Virtumonde Spyware siae3123.exe GET (8081) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Virtumonde || url,doc.emergingthreats.net/bin/view/Main/2000307 || url,sarc.com/avcenter/venc/data/adware.virtumonde.html
2000308 || ET MALWARE Virtumonde Spyware Information Post || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Virtumonde || url,doc.emergingthreats.net/bin/view/Main/2000308 || url,sarc.com/avcenter/venc/data/adware.virtumonde.html
2000309 || ET POLICY GotoMyPC Polling Client || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_GotoMyPC || url,doc.emergingthreats.net/2000309
2000327 || ET MALWARE Spyware 2020 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_2020search || url,doc.emergingthreats.net/bin/view/Main/2000327 || url,securityresponse.symantec.com/avcenter/venc/data/spyware.2020search.html
2000328 || ET POLICY Outbound Multiple Non-SMTP Server Emails || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Unauthorized_SMTP || url,doc.emergingthreats.net/2000328
2000329 || ET EXPLOIT mIRC <=6.12 DCC Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MIRC_Overflow || url,doc.emergingthreats.net/bin/view/Main/2000329 || bugtraq,8880
2000330 || ET P2P ed2k connection to server || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000330 || url,www.giac.org/practical/GCIH/Ian_Gosling_GCIH.pdf
2000332 || ET P2P ed2k request part || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000332 || url,www.giac.org/practical/GCIH/Ian_Gosling_GCIH.pdf
2000333 || ET P2P ed2k file request answer || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000333 || url,www.giac.org/practical/GCIH/Ian_Gosling_GCIH.pdf
2000334 || ET P2P BitTorrent peer sync || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Bittorrent_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000334 || url,bitconjurer.org/BitTorrent/protocol.html
2000335 || ET P2P Overnet (Edonkey) Server Announce || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Overnet_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000335 || url,www.overnet.com
2000336 || ET MALWARE Yesadvertising Banking Spyware RETRIEVE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Yesadvertising_Banking_Spyware || url,doc.emergingthreats.net/bin/view/Main/2000336 || url,isc.sans.org/presentations/banking_malware.pdf
2000337 || ET MALWARE Yesadvertising Banking Spyware INFORMATION SUBMIT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Yesadvertising_Banking_Spyware || url,doc.emergingthreats.net/bin/view/Main/2000337 || url,isc.sans.org/presentations/banking_malware.pdf
2000338 || ET P2P iroffer IRC Bot help message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Iroffer_IRC_Bot || url,doc.emergingthreats.net/bin/view/Main/2000338 || url,iroffer.org
2000339 || ET P2P iroffer IRC Bot offered files advertisement || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Iroffer_IRC_Bot || url,doc.emergingthreats.net/bin/view/Main/2000339 || url,iroffer.org
2000340 || ET P2P Kaaza Media desktop p2pnetworking.exe Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000340 || url,www.giac.org/practical/GCIH/Ian_Gosling_GCIH.pdf
2000341 || ET Yahoo Mail General Page View || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2000341
2000342 || ET EXPLOIT Squid NTLM Auth Overflow Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Squid_NTLM_Overflow || url,doc.emergingthreats.net/bin/view/Main/2000342 || cve,CAN-2004-0541 || url,www.idefense.com/application/poi/display?id=107
2000343 || ET WORM Possible Evaman Worm Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Evaman || url,doc.emergingthreats.net/2000343 || url,secunia.com/virus_information/10429/evaman
2000345 || ET ATTACK RESPONSE IRC - Nick change on non-std port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Non-Standard_IRC || url,doc.emergingthreats.net/bin/view/Main/2000345
2000346 || ET ATTACK RESPONSE IRC - Name response on non-std port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Non-Standard_IRC || url,doc.emergingthreats.net/bin/view/Main/2000346
2000347 || ET ATTACK RESPONSE IRC - Private message on non-std port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Non-Standard_IRC || url,doc.emergingthreats.net/bin/view/Main/2000347
2000348 || ET ATTACK RESPONSE IRC - Channel JOIN on non-std port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Non-Standard_IRC || url,doc.emergingthreats.net/bin/view/Main/2000348
2000349 || ET ATTACK RESPONSE IRC - DCC file transfer request on non-std port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Non-Standard_IRC || url,doc.emergingthreats.net/bin/view/Main/2000349
2000350 || ET ATTACK RESPONSE IRC - DCC chat request on non-std port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Non-Standard_IRC || url,doc.emergingthreats.net/bin/view/Main/2000350
2000351 || ET ATTACK RESPONSE IRC - channel join on non-std port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Non-Standard_IRC || url,doc.emergingthreats.net/bin/view/Main/2000351
2000352 || ET ATTACK RESPONSE IRC - dns request on non-std port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Non-Standard_IRC || url,doc.emergingthreats.net/bin/view/Main/2000352
2000355 || ET POLICY IRC authorization message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IRC || url,doc.emergingthreats.net/2000355
2000356 || ET POLICY IRC connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IRC || url,doc.emergingthreats.net/2000356
2000357 || ET P2P BitTorrent Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Bittorrent_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000357 || url,bitconjurer.org/BitTorrent/protocol.html
2000366 || ET MALWARE Binet (download complete) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Betterinternet || url,doc.emergingthreats.net/bin/view/Main/2000366 || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
2000367 || ET MALWARE Binet (set_pix) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Betterinternet || url,doc.emergingthreats.net/bin/view/Main/2000367 || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
2000369 || ET P2P BitTorrent Announce || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Bittorrent_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000369 || url,bitconjurer.org/BitTorrent/protocol.html
2000371 || ET MALWARE Binet (randreco.exe) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Betterinternet || url,doc.emergingthreats.net/bin/view/Main/2000371 || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
2000372 || ET EXPLOIT MS-SQL SQL Injection running SQL statements line comment || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MSSQL_Injection || url,doc.emergingthreats.net/bin/view/Main/2000372 || url,www.securitymap.net/sdm/docs/windows/mssql-checklist.html || url,www.nextgenss.com/papers/more_advanced_sql_injection.pdf
2000373 || ET EXPLOIT MS-SQL SQL Injection line comment || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MSSQL_Injection || url,doc.emergingthreats.net/bin/view/Main/2000373 || url,www.securitymap.net/sdm/docs/windows/mssql-checklist.html || url,www.nextgenss.com/papers/more_advanced_sql_injection.pdf
2000377 || ET EXPLOIT MS-SQL heap overflow attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MSSQL_Ping || url,doc.emergingthreats.net/bin/view/Main/2000377 || url,www.nextgenss.com/papers/tp-SQL2000.pdf
2000378 || ET EXPLOIT MS-SQL DOS attempt (08) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MSSQL_Ping || url,doc.emergingthreats.net/bin/view/Main/2000378 || url,www.nextgenss.com/papers/tp-SQL2000.pdf
2000379 || ET EXPLOIT MS-SQL DOS attempt (08) 1 byte || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MSSQL_Ping || url,doc.emergingthreats.net/bin/view/Main/2000379 || url,www.nextgenss.com/papers/tp-SQL2000.pdf
2000380 || ET EXPLOIT MS-SQL Spike buffer overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MSSQL_Ping || url,doc.emergingthreats.net/bin/view/Main/2000380 || bugtraq,5411
2000381 || ET EXPLOIT MS-SQL DOS bouncing packets || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MSSQL_Ping || url,doc.emergingthreats.net/bin/view/Main/2000381 || url,www.nextgenss.com/papers/tp-SQL2000.pdf
2000418 || ET POLICY Executable and linking format (ELF) file download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000418 || url,www.itee.uq.edu.au/~cristina/students/david/honoursThesis96/bff.htm
2000419 || ET POLICY PE EXE or DLL Windows file download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000419
2000420 || ET POLICY REG files version 4 download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000420 || url,www.ss64.com/nt/regedit.html
2000421 || ET POLICY REG files version 5 download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000421 || url,www.ss64.com/nt/regedit.html
2000422 || ET POLICY REG files version 5 Unicode download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000422 || url,www.ss64.com/nt/regedit.html
2000423 || ET POLICY NE EXE OS2 file download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000423 || url,www.itee.uq.edu.au/~cristina/students/david/honoursThesis96/bff.htm
2000424 || ET POLICY LX EXE OS2 file download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000424 || url,www.itee.uq.edu.au/~cristina/students/david/honoursThesis96/bff.htm
2000425 || ET POLICY NE EXE Windows 3.x file download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000425 || url,www.itee.uq.edu.au/~cristina/students/david/honoursThesis96/bff.htm
2000426 || ET POLICY EXE compressed PKWARE Windows file download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000426 || url,www.program-transformation.org/Transform/PcExeFormat
2000427 || ET POLICY PE EXE Install Windows file download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000427 || url,www.program-transformation.org/Transform/PcExeFormat
2000428 || ET POLICY ZIP file download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000428 || url,zziplib.sourceforge.net/zzip-parse.print.html
2000429 || ET POLICY Download Windows Help File CHM 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000429 || url,www.securiteam.com/windowsntfocus/6V00N000AU.html || url,www.speakeasy.org/~russotto/chm/chmformat.html
2000488 || ET EXPLOIT MS-SQL SQL Injection closing string plus line comment || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MSSQL_Injection || url,doc.emergingthreats.net/bin/view/Main/2000488 || url,www.securitymap.net/sdm/docs/windows/mssql-checklist.html || url,www.nextgenss.com/papers/more_advanced_sql_injection.pdf
2000489 || ET POLICY Download Windows Help File CHM || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2000489 || url,www.securiteam.com/windowsntfocus/6V00N000AU.html || url,www.speakeasy.org/~russotto/chm/chmformat.html
2000494 || ET WORM Possible Atak.mm Worm Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_ATAK || url,doc.emergingthreats.net/2000494 || url,securityresponse.symantec.com/avcenter/venc/data/w32.atak@mm.html
2000496 || ET DOS Microsoft SMS dos attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_MS_SMS || url,doc.emergingthreats.net/bin/view/Main/2000496 || url,www.securityfocus.com/archive/1/368911/2004-07-12/2004-07-18/0
2000499 || ET ATTACK RESPONSE FTP inaccessible directory access COM1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000499
2000500 || ET ATTACK RESPONSE FTP inaccessible directory access COM2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000500
2000501 || ET ATTACK RESPONSE FTP inaccessible directory access COM3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000501
2000502 || ET ATTACK RESPONSE FTP inaccessible directory access COM4 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000502
2000503 || ET ATTACK RESPONSE FTP inaccessible directory access LPT1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000503
2000504 || ET ATTACK RESPONSE FTP inaccessible directory access LPT2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000504
2000505 || ET ATTACK RESPONSE FTP inaccessible directory access LPT3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000505
2000506 || ET ATTACK RESPONSE FTP inaccessible directory access LPT4 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000506
2000507 || ET ATTACK RESPONSE FTP inaccessible directory access AUX || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000507
2000508 || ET ATTACK RESPONSE FTP inaccessible directory access NULL || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Hidden_FTP_File_Activity || url,doc.emergingthreats.net/bin/view/Main/2000508
2000514 || ET MALWARE IE homepage hijacking || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_General_Spyware_Install || url,doc.emergingthreats.net/bin/view/Main/2000514 || url,www.geek.com/news/geeknews/2004Jun/gee20040610025522.htm
2000519 || ET MALWARE shell browser vulnerability W9x/XP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_General_Spyware_Install || url,doc.emergingthreats.net/bin/view/Main/2000519 || url,www.packetfocus.com/shell_exploit.htm
2000520 || ET MALWARE shell browser vulnerability NT/2K || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_General_Spyware_Install || url,doc.emergingthreats.net/bin/view/Main/2000520 || url,www.packetfocus.com/shell_exploit.htm
2000536 || ET SCAN NMAP -sO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2000536
2000537 || ET SCAN NMAP -sS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2000537
2000538 || ET SCAN NMAP -sA (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2000538
2000540 || ET SCAN NMAP -sA (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2000540
2000543 || ET SCAN NMAP -f -sF || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2000543
2000544 || ET SCAN NMAP -f -sN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2000544
2000545 || ET SCAN NMAP -f -sS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2000545
2000546 || ET SCAN NMAP -f -sX || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2000546
2000559 || ET WEB THCIISLame IIS SSL Exploit Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IIS_THCOWNZIIS_443 || url,doc.emergingthreats.net/2000559 || url,isc.sans.org/diary.php?date=2004-07-17 || url,www.thc.org/exploits/THCIISSLame.c
2000560 || ET POLICY HTTP CONNECT Tunnel Attempt Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_HTTP_Tunneling_via_Proxy || url,doc.emergingthreats.net/2000560
2000562 || ET VIRUS OUTBOUND Suspicious Email Attachment || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Suspicious_Extensions || url,doc.emergingthreats.net/2000562
2000563 || ET EXPLOIT Pwdump3e Password Hash Retrieval port 445 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2000563
2000564 || ET EXPLOIT Pwdump3e pwservice.exe Access port 445 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2000564
2000565 || ET EXPLOIT Pwdump3e Session Established Reg-Entry port 139 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2000565
2000566 || ET EXPLOIT Pwdump3e Session Established Reg-Entry port 445 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2000566
2000567 || ET EXPLOIT Pwdump3e pwservice.exe Access port 139 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2000567
2000568 || ET EXPLOIT Pwdump3e Password Hash Retrieval port 139 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2000568
2000569 || ET POLICY KitCo Kcast Ticker (agtray) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Kitco_Ticker || url,doc.emergingthreats.net/2000569
2000570 || ET POLICY KitCo Kcast Ticker (autray) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Kitco_Ticker || url,doc.emergingthreats.net/2000570
2000571 || ET POLICY AOL Webmail Message Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_AOL_Webmail || url,doc.emergingthreats.net/bin/view/Main/2000571
2000572 || ET POLICY AOL Webmail Login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_AOL_Webmail || url,doc.emergingthreats.net/bin/view/Main/2000572
2000574 || ET MALWARE Bargain Buddy || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bargain_Buddy || url,doc.emergingthreats.net/bin/view/Main/2000574 || url,www.doxdesk.com/parasite/BargainBuddy.html
2000575 || ET SCAN ICMP PING IPTools || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_IPTools || url,doc.emergingthreats.net/2000575 || url,www.ks-soft.net/ip-tools.eng/index.htm || url,www.ks-soft.net/ip-tools.eng
2000577 || ET MALWARE Popuptraffic.com Bot Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Popuptraffic.com_Reporting || url,doc.emergingthreats.net/bin/view/Main/2000577 || url,popuptraffic.com
2000580 || ET MALWARE Shop At Home Select.com Install Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ShopAtHomeSelect || url,doc.emergingthreats.net/bin/view/Main/2000580 || url,www.shopathomeselect.com || url,www.spywareguide.com/product_show.php?id=700
2000581 || ET MALWARE Shop At Home Select.com Install Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ShopAtHomeSelect || url,doc.emergingthreats.net/bin/view/Main/2000581 || url,www.shopathomeselect.com || url,www.spywareguide.com/product_show.php?id=700
2000582 || ET MALWARE F1Organizer Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_F1Organizer.com || url,doc.emergingthreats.net/bin/view/Main/2000582
2000583 || ET MALWARE Mindset Interactive Install (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mindsetinteractive || url,doc.emergingthreats.net/bin/view/Main/2000583 || url,www.mindsetinteractive.com
2000584 || ET MALWARE Mindset Interactive Install (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mindsetinteractive || url,doc.emergingthreats.net/bin/view/Main/2000584 || url,www.mindsetinteractive.com
2000585 || ET MALWARE F1Organizer Install Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_F1Organizer.com || url,doc.emergingthreats.net/bin/view/Main/2000585
2000586 || ET MALWARE Ezula Related Calling Home || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2000586 || url,www.spyany.com/program/article_spw_rm_eZuLa.html || url,www.ezula.com
2000587 || ET MALWARE SpywareLabs VirtualBouncer Seeking Instructions || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spywarelabs_VirtualBouncer || url,doc.emergingthreats.net/bin/view/Main/2000587 || url,securityresponse.symantec.com/avcenter/venc/data/adware.virtualbouncer.html
2000588 || ET MALWARE TopMoxie Reporting Data to External Host || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TopMoxie || url,doc.emergingthreats.net/bin/view/Main/2000588 || url,www.topmoxie.com
2000589 || ET MALWARE TopMoxie Retrieving Data (downloads) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TopMoxie || url,doc.emergingthreats.net/bin/view/Main/2000589 || url,www.topmoxie.com
2000590 || ET MALWARE TopMoxie Retrieving Data (common) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TopMoxie || url,doc.emergingthreats.net/bin/view/Main/2000590 || url,www.topmoxie.com
2000593 || ET MALWARE Binet Ad Retrieval || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Betterinternet || url,doc.emergingthreats.net/bin/view/Main/2000593 || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
2000594 || ET MALWARE Mindset Interactive Ad Retrieval || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mindsetinteractive || url,doc.emergingthreats.net/bin/view/Main/2000594 || url,www.mindsetinteractive.com
2000595 || ET MALWARE Gator Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Gator_Agent || url,doc.emergingthreats.net/bin/view/Main/2000595 || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
2000596 || ET MALWARE Gator/Claria Data Submission || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Gator_Agent || url,doc.emergingthreats.net/bin/view/Main/2000596 || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
2000597 || ET MALWARE Gator New Code Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Gator_Agent || url,doc.emergingthreats.net/bin/view/Main/2000597 || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
2000598 || ET MALWARE Altnet PeerPoints Manager Data Submission || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Altnet_Peerpoint_Manager_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000598 || url,securityresponse.symantec.com/avcenter/venc/data/adware.topsearch.html
2000599 || ET MALWARE Fun Web Products Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2000599 || url,www.funwebproducts.com
2000600 || ET MALWARE MyWebSearch Toolbar Receiving Configuration || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_My_Web_Toolbar || url,doc.emergingthreats.net/bin/view/Main/2000600
2000601 || ET MALWARE Salongas Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Salongas || url,doc.emergingthreats.net/bin/view/Main/2000601
2000900 || ET MALWARE JoltID Agent Probing or Announcing UDP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_JoltID || url,doc.emergingthreats.net/bin/view/Main/2000900 || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
2000901 || ET MALWARE JoltID Agent Communicating TCP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_JoltID || url,doc.emergingthreats.net/bin/view/Main/2000901 || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
2000902 || ET MALWARE MarketScore.com Spyware Configuration Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MarketScore || url,doc.emergingthreats.net/bin/view/Main/2000902 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2000903 || ET MALWARE Avres Agent Receiving Instructions || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Avres || url,doc.emergingthreats.net/bin/view/Main/2000903 || url,ar.avres.net/ie/updatenew/ || url,www.avres.net
2000905 || ET MALWARE FlashPoint Agent Retrieving New Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_FlashPoint || url,doc.emergingthreats.net/bin/view/Main/2000905 || url,www.flashpoint.bm
2000906 || ET MALWARE Altnet PeerPoints Manager Start || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Altnet_Peerpoint_Manager_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000906 || url,securityresponse.symantec.com/avcenter/venc/data/adware.topsearch.html
2000907 || ET MALWARE Altnet PeerPoints Manager Settings Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Altnet_Peerpoint_Manager_Traffic || url,doc.emergingthreats.net/bin/view/Main/2000907 || url,securityresponse.symantec.com/avcenter/venc/data/adware.topsearch.html
2000908 || ET MALWARE WhenUClick.com App and Search Bar Install (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000908 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000909 || ET MALWARE WhenUClick.com App and Search Bar Install (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000909 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000910 || ET MALWARE WhenUClick.com Clock Sync App Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000910 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000911 || ET MALWARE WhenUClick.com Weather App Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000911 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000912 || ET MALWARE WhenUClick.com Clock Sync App Checkin (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000912 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000913 || ET MALWARE WhenUClick.com Clock Sync App Checkin (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000913 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000914 || ET MALWARE WhenUClick.com Weather App Checkin (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000914 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000915 || ET MALWARE WhenUClick.com Weather App Checkin (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000915 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000916 || ET MALWARE WhenUClick.com WhenUSave App Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000916 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000917 || ET MALWARE WhenUClick.com WhenUSave Data Retrieval (offersdata) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000917 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000918 || ET MALWARE WhenUClick.com Desktop Bar Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000918 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000919 || ET MALWARE WhenUClick.com WhenUSave Data Retrieval (Searchdb) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2000919 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2000920 || ET MALWARE Hotbar Install (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2000920 || url,www.hotbar.com
2000921 || ET MALWARE Hotbar Install (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2000921 || url,www.hotbar.com
2000922 || ET MALWARE Hotbar Install (3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2000922 || url,www.hotbar.com
2000923 || ET MALWARE Hotbar Agent Reporting Information || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2000923 || url,www.hotbar.com
2000924 || ET MALWARE Hotbar Agent Upgrading || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2000924 || url,www.hotbar.com
2000925 || ET MALWARE Hotbar Agent Partner Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2000925 || url,www.hotbar.com
2000927 || ET MALWARE ISearchTech.com XXXPornToolbar Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ISearchTech.com || url,doc.emergingthreats.net/bin/view/Main/2000927 || url,www.isearchtech.com
2000928 || ET MALWARE ISearchTech.com XXXPornToolbar Activity (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ISearchTech.com || url,doc.emergingthreats.net/bin/view/Main/2000928 || url,www.isearchtech.com
2000929 || ET MALWARE Hotbar Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2000929 || url,www.hotbar.com
2000930 || ET MALWARE 180solutions Update Engine || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2000930 || url,www.safer-networking.org/index.php?page=threats&detail=212
2000931 || ET MALWARE Comet Systems Spyware Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Comet_Cursor_Spyware || url,doc.emergingthreats.net/bin/view/Main/2000931
2000932 || ET MALWARE Keenvalue Update Engine || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Keenvalue || url,doc.emergingthreats.net/bin/view/Main/2000932 || url,www.safer-networking.org/index.php?page=updatehistory&detail=2003-11-24
2000934 || ET MALWARE 2020search Update Engine || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_2020search || url,doc.emergingthreats.net/bin/view/Main/2000934 || url,www.safer-networking.org/index.php?page=updatehistory&detail=2004-03-04
2000936 || ET MALWARE FlashTrack Agent Retrieving New App Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_FlashPoint || url,doc.emergingthreats.net/bin/view/Main/2000936 || url,www.flashpoint.bm
2001013 || ET MALWARE Fun Web Products SmileyCentral || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2001013 || url,www.funwebproducts.com
2001015 || ET MALWARE JoltID Agent Keep-Alive || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_JoltID || url,doc.emergingthreats.net/bin/view/Main/2001015 || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
2001016 || ET MALWARE SideStep Bar Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SideStep_Bar || url,doc.emergingthreats.net/bin/view/Main/2001016 || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
2001017 || ET MALWARE SideStep Bar Reporting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SideStep_Bar || url,doc.emergingthreats.net/bin/view/Main/2001017 || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
2001021 || ET WEB Suspicious Encrypted Webpage Content || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MISC_Encrypted_Web_Content || url,doc.emergingthreats.net/2001021
2001022 || ET EXPLOIT Invalid non-fragmented packet with fragment offset>0 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Invalid_TCP_Fragments || url,doc.emergingthreats.net/bin/view/Main/2001022
2001023 || ET EXPLOIT Invalid fragment - ACK reset || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Invalid_TCP_Fragments || url,doc.emergingthreats.net/bin/view/Main/2001023
2001024 || ET EXPLOIT Invalid fragment - illegal flags || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Invalid_TCP_Fragments || url,doc.emergingthreats.net/bin/view/Main/2001024
2001031 || ET MALWARE Casino on Net Reporting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CasinoonNet || url,doc.emergingthreats.net/bin/view/Main/2001031 || url,www.888casino.net
2001032 || ET MALWARE Casino on Net Ping Hit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CasinoonNet || url,doc.emergingthreats.net/bin/view/Main/2001032 || url,www.888casino.net
2001033 || ET MALWARE Casino on Net Data Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CasinoonNet || url,doc.emergingthreats.net/bin/view/Main/2001033 || url,www.888casino.net
2001034 || ET MALWARE Fun Web Products Agent Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2001034 || url,www.funwebproducts.com
2001035 || ET P2P Morpheus Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Morpheus || url,doc.emergingthreats.net/bin/view/Main/2001035 || url,www.morpheus.com
2001036 || ET P2P Morpheus Install ini Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Morpheus || url,doc.emergingthreats.net/bin/view/Main/2001036 || url,www.morpheus.com
2001037 || ET P2P Morpheus Update Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Morpheus || url,doc.emergingthreats.net/bin/view/Main/2001037 || url,www.morpheus.com
2001038 || ET MALWARE Ebates Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Ebates_Moe_Money_Maker || url,doc.emergingthreats.net/bin/view/Main/2001038 || url,www.pestpatrol.com/PestInfo/e/ebates_moneymaker.asp
2001040 || ET MALWARE My Search Bar Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_My_Search_Bar || url,doc.emergingthreats.net/bin/view/Main/2001040 || url,www.2-spyware.com/parasite-my-search-bar.html
2001041 || ET MALWARE Casino on Net Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CasinoonNet || url,doc.emergingthreats.net/bin/view/Main/2001041 || url,www.888casino.net
2001043 || ET MALWARE Fun Web Products MyWay Agent Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2001043 || url,www.funwebproducts.com
2001044 || ET Yahoo Briefcase Upload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2001044
2001046 || ET WORM UPX compressed file download - possible worm || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Suspicious_Extensions || url,doc.emergingthreats.net/2001046
2001047 || ET WORM UPX encrypted file download - possible worm || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Suspicious_Extensions || url,doc.emergingthreats.net/2001047
2001048 || ET EXPLOIT IE process injection iexplore.exe executable download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001048
2001050 || ET MALWARE CometSystems Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Comet_Cursor_Spyware || url,doc.emergingthreats.net/bin/view/Main/2001050
2001052 || ET EXPLOIT NTDump Session Established Reg-Entry port 139 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2001052
2001053 || ET EXPLOIT NTDump.exe Service Started port 139 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2001053
2001055 || ET MISC HP Web JetAdmin ExecuteFile admin access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_HP_Web_Jetadmin_Executefile_Access || url,doc.emergingthreats.net/2001055 || bugtraq,10224
2001056 || ET WORM W32/Sasser.worm.b || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Sasser || url,doc.emergingthreats.net/2001056 || url,securityresponse.symantec.com/avcenter/venc/data/w32.sasser.worm.html
2001057 || ET WORM W32/Sasser.worm.a || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Sasser || url,doc.emergingthreats.net/2001057 || url,securityresponse.symantec.com/avcenter/venc/data/w32.sasser.worm.html
2001058 || ET EXPLOIT libpng tRNS overflow attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_LibPNG || url,doc.emergingthreats.net/bin/view/Main/2001058 || cve,CAN-2004-0597
2001059 || ET P2P Ares traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Ares || url,doc.emergingthreats.net/bin/view/Main/2001059 || url,www.aresgalaxy.org
2001066 || ET TROJAN IE Ilookup Trojan || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Ilookup || url,doc.emergingthreats.net/2001066 || url,62.131.86.111/analysis.htm
2001075 || ET WEB-MISC cross site scripting attempt IMG onerror or onload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001075
2001076 || ET WEB-MISC cross site scripting attempt TYPE + JAVASCRIPT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001076
2001077 || ET WEB-MISC cross site scripting attempt STYLE + JAVASCRIPT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001077
2001078 || ET WEB-MISC cross site scripting attempt STYLE + JSCRIPT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001078
2001079 || ET WEB-MISC cross site scripting attempt STYLE + VBSCRIPT 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001079
2001080 || ET WEB-MISC cross site scripting attempt STYLE + VBSCRIPT 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001080
2001081 || ET WEB-MISC cross site scripting attempt STYLE + ECMACRIPT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001081
2001082 || ET WEB-MISC cross site scripting attempt STYLE + EXPRESSION 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001082
2001083 || ET WEB-MISC cross site scripting attempt STYLE + EXPRESSION 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001083
2001084 || ET WEB-MISC cross site scripting attempt using XML || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001084
2001085 || ET WEB-MISC cross site scripting attempt executing hidden Javascript 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001085
2001086 || ET WEB-MISC cross site scripting attempt executing hidden Javascript 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001086
2001087 || ET WEB-MISC cross site scripting attempt to execute Javascript code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001087
2001088 || ET WEB-MISC cross site scripting attempt to execute VBScript code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001088
2001089 || ET WEB-MISC cross site scripting attempt to access SHELL\: || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001089
2001090 || ET WEB-MISC cross site scripting stealth attempt to execute Javascript code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001090
2001091 || ET WEB-MISC cross site scripting stealth attempt to execute VBScript code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001091
2001092 || ET WEB-MISC cross site scripting stealth attempt to access SHELL\: || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Misc_CSS || url,doc.emergingthreats.net/2001092
2001095 || ET EXPLOIT IFRAME ExecCommand vulnerability || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001095 || url,www.securiteam.com/exploits/3D5Q4RFPPK.html
2001099 || ET EXPLOIT Attempt to execute VBScript code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001099
2001101 || ET EXPLOIT Stealth attempt to execute Javascript code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001101
2001102 || ET EXPLOIT Stealth attempt to execute VBScript code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001102
2001103 || ET EXPLOIT Stealth attempt to access SHELL\: || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001103
2001105 || ET EXPLOIT Javascript execution with expression eval || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001105 || url,www.securiteam.com/exploits/3D5Q4RFPPK.html
2001106 || ET EXPLOIT Javascript execution with expression eval hex || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001106 || url,www.securiteam.com/exploits/3D5Q4RFPPK.html
2001114 || ET POLICY Mozilla XPI install files download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Mozilla_XPI_Install || url,doc.emergingthreats.net/2001114
2001115 || ET POLICY MSI (microsoft installer file) download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Binary_Downloads || url,doc.emergingthreats.net/bin/view/Main/2001115
2001116 || ET DNS - Standard query response, Format error || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_DNS_Responses || url,doc.emergingthreats.net/2001116
2001117 || ET DNS - Standard query response, Name Error || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_DNS_Responses || url,doc.emergingthreats.net/2001117
2001118 || ET DNS - Standard query response, Not Implemented || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_DNS_Responses || url,doc.emergingthreats.net/2001118
2001119 || ET DNS - Standard query response, Refused || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_DNS_Responses || url,doc.emergingthreats.net/2001119
2001181 || ET EXPLOIT Internet Explorer Plugin.ocx Heap Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001181 || url,www.hnc3k.com/ievulnerabil.htm
2001182 || ET EXPLOIT IE trojan Ants3set 1.exe - process injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001182
2001185 || ET P2P Soulseek traffic (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Soulseek || url,doc.emergingthreats.net/bin/view/Main/2001185 || url,www.slsknet.org
2001186 || ET P2P Soulseek traffic (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Soulseek || url,doc.emergingthreats.net/bin/view/Main/2001186 || url,www.slsknet.org
2001187 || ET P2P Soulseek Filesearch Results || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Soulseek || url,doc.emergingthreats.net/bin/view/Main/2001187 || url,www.slsknet.org
2001188 || ET P2P Soulseek || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Soulseek || url,doc.emergingthreats.net/bin/view/Main/2001188 || url,www.slsknet.org
2001190 || ET EXPLOIT libPNG - Possible NULL-pointer crash in png_handle_iCCP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_LibPNG || url,doc.emergingthreats.net/bin/view/Main/2001190 || url,www.securiteam.com/unixfocus/5ZP0C0KDPG.html
2001191 || ET EXPLOIT libPNG - Width exceeds limit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_LibPNG || url,doc.emergingthreats.net/bin/view/Main/2001191 || url,www.securiteam.com/unixfocus/5ZP0C0KDPG.html
2001192 || ET EXPLOIT libPNG - Height exceeds limit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_LibPNG || url,doc.emergingthreats.net/bin/view/Main/2001192 || url,www.securiteam.com/unixfocus/5ZP0C0KDPG.html
2001195 || ET EXPLOIT libPNG - Possible integer overflow in allocation in png_handle_sPLT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_LibPNG || url,doc.emergingthreats.net/bin/view/Main/2001195 || url,www.securiteam.com/unixfocus/5ZP0C0KDPG.html
2001197 || ET WEB_SPECIFIC PHPNuke SQL injection attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHP_Nuke || url,doc.emergingthreats.net/2001197 || url,www.waraxe.us/index.php?modname=sa&id=35
2001198 || ET MALWARE Twaintec Download Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Betterinternet || url,doc.emergingthreats.net/bin/view/Main/2001198 || url,www.pestpatrol.com/PestInfo/t/twain-tech.asp
2001199 || ET MALWARE Twaintec Ad Retrieval || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Betterinternet || url,doc.emergingthreats.net/bin/view/Main/2001199 || url,www.pestpatrol.com/PestInfo/t/twain-tech.asp
2001202 || ET WEB_SPECIFIC PHPNuke general SQL injection attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHP_Nuke || url,doc.emergingthreats.net/2001202 || url,www.waraxe.us/?modname=sa&id=036 || url,www.waraxe.us/?modname=sa&id=030
2001205 || ET DOS Internet Explorer Memory Corruption Bug || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_IE || url,doc.emergingthreats.net/bin/view/Main/2001205 || url,www.securiteam.com/windowsntfocus/5XP051FDFM.html
2001210 || ET EXPLOIT FTP Serv-U Local Privilege Escalation Vulnerability || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Serv-U_Ftp || url,doc.emergingthreats.net/bin/view/Main/2001210 || url,www.securiteam.com/windowsntfocus/5YP0F1FDPO.html
2001211 || ET EXPLOIT FTP Serv-U directory traversal vulnerability (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Serv-U_Ftp || url,doc.emergingthreats.net/bin/view/Main/2001211 || url,www.securiteam.com/windowsntfocus/6C0041F0KO.html
2001212 || ET EXPLOIT FTP Serv-U directory traversal vulnerability (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Serv-U_Ftp || url,doc.emergingthreats.net/bin/view/Main/2001212 || url,www.securiteam.com/windowsntfocus/6C0041F0KO.html
2001213 || ET EXPLOIT FTP Serv-U LIST -l Parameter Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Serv-U_Ftp || url,doc.emergingthreats.net/bin/view/Main/2001213 || url,www.securiteam.com/windowsntfocus/5ZP0G2KCKA.html
2001215 || ET EXPLOIT FTP Serv-U Server Long Filename Stack Overflow Vulnerability || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Serv-U_Ftp || url,doc.emergingthreats.net/bin/view/Main/2001215 || url,www.securiteam.com/windowsntfocus/5OP0N1PBPG.html
2001216 || ET MALWARE Twaintec Reporting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Betterinternet || url,doc.emergingthreats.net/bin/view/Main/2001216 || url,www.pestpatrol.com/PestInfo/t/twain-tech.asp
2001217 || ET EXPLOIT Adobe Acrobat Reader Malicious URL Null Byte || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Adobe_Acrobat_BO || url,doc.emergingthreats.net/bin/view/Main/2001217 || cve,2004-0629 || url,www.securiteam.com/windowsntfocus/5BP0D20DPW.html || url,idefense.com/application/poi/display?id=126&type=vulnerabilities
2001218 || ET WEB_SPECIFIC PHPNuke general XSS attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHP_Nuke || url,doc.emergingthreats.net/2001218 || url,www.waraxe.us/?modname=sa&id=030
2001219 || ET SCAN Potential SSH Scan || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_SSH_Brute_Force || url,doc.emergingthreats.net/2001219 || url,en.wikipedia.org/wiki/Brute_force_attack
2001221 || ET MALWARE F1Organizer Config Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_F1Organizer.com || url,doc.emergingthreats.net/bin/view/Main/2001221
2001222 || ET MALWARE Default-homepage-network.com Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Default-Homepage-Network || url,doc.emergingthreats.net/bin/view/Main/2001222 || url,default-homepage-network.com/start.cgi?new-hkcu
2001223 || ET MALWARE Regnow.com Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Regnow.com || url,doc.emergingthreats.net/bin/view/Main/2001223 || url,www.regnow.com
2001224 || ET MALWARE Regnow.com Gamehouse.com Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Regnow.com || url,doc.emergingthreats.net/bin/view/Main/2001224 || url,www.gamehouse.com
2001225 || ET MALWARE Statblaster Receiving New configuration (update) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Statblaster || url,doc.emergingthreats.net/bin/view/Main/2001225 || url,securityresponse.symantec.com/avcenter/venc/data/adware.statblaster.html
2001228 || ET MALWARE Advertising.com Data Post (villains) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Advertising.com_Bot || url,doc.emergingthreats.net/bin/view/Main/2001228 || url,securityresponse.symantec.com/avcenter/venc/data/adware.fastseek.html
2001230 || ET MALWARE Advertising.com Data Post (cakedeal) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Advertising.com_Bot || url,doc.emergingthreats.net/bin/view/Main/2001230 || url,securityresponse.symantec.com/avcenter/venc/data/adware.fastseek.html
2001233 || ET WORM Possible CIA Trojan download/upload attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_CIA || url,doc.emergingthreats.net/2001233
2001235 || ET MALWARE Weatherbug || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weatherbug || url,doc.emergingthreats.net/bin/view/Main/2001235
2001238 || ET WEB Possible Xedus Webserver Directory Traversal Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Zedus_Traversal || url,doc.emergingthreats.net/2001238 || url,www.gulftech.org/?node=research&article_id=00047-08302004
2001239 || ET Cisco Device in Config Mode || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Cisco || url,doc.emergingthreats.net/bin/view/Main/2001239
2001240 || ET Cisco Device New Config Built || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Cisco || url,doc.emergingthreats.net/bin/view/Main/2001240
2001241 || ET CHAT MSN file transfer request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_MSN || url,doc.emergingthreats.net/2001241
2001242 || ET CHAT MSN file transfer accept || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_MSN || url,doc.emergingthreats.net/2001242
2001243 || ET CHAT MSN file transfer reject || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_MSN || url,doc.emergingthreats.net/2001243
2001253 || ET CHAT Yahoo IM successful logon || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001253
2001254 || ET CHAT Yahoo IM voicechat || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001254
2001255 || ET CHAT Yahoo IM ping || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001255
2001256 || ET CHAT Yahoo IM conference invitation || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001256
2001257 || ET CHAT Yahoo IM conference logon success || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001257
2001258 || ET CHAT Yahoo IM conference message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001258
2001259 || ET CHAT Yahoo IM file transfer request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001259
2001260 || ET CHAT Yahoo IM message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001260
2001261 || ET CHAT Yahoo IM successful chat join || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001261
2001262 || ET CHAT Yahoo IM conference offer invitation || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001262
2001263 || ET CHAT Yahoo IM conference request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001263
2001264 || ET CHAT Yahoo IM conference watch || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001264
2001266 || ET MALWARE Browseraid.com Agent Reporting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Browseraid || url,doc.emergingthreats.net/bin/view/Main/2001266 || url,www.browseraid.com
2001267 || ET MALWARE Weatherbug Capture || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weatherbug || url,doc.emergingthreats.net/bin/view/Main/2001267
2001269 || ET WORM Beagle User Agent Detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Bagle_Variants || url,doc.emergingthreats.net/2001269 || url,securityresponse.symantec.com/avcenter/venc/data/w32.beagle.i@mm.html
2001273 || ET WORM Outbound W32.Novarg.A worm || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Novarg || url,doc.emergingthreats.net/2001273 || url,securityresponse.symantec.com/avcenter/venc/data/w32.mydoom.a@mm.html
2001293 || ET MALWARE Featured-Results.com Agent Reporting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Featured-results || url,doc.emergingthreats.net/bin/view/Main/2001293 || url,www.featured-results.com
2001294 || ET POLICY Dameware Remote Control Service Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Dameware || url,doc.emergingthreats.net/2001294
2001295 || ET MALWARE Browseraid.com Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001295 || url,www.browseraid.com
2001296 || ET P2P eDonkey File Status || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2001296 || url,www.edonkey.com
2001297 || ET P2P eDonkey File Status Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2001297 || url,www.edonkey.com
2001298 || ET P2P eDonkey Server Status Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2001298 || url,www.edonkey.com
2001299 || ET P2P eDonkey Server Status || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2001299 || url,www.edonkey.com
2001304 || ET MALWARE Browseraid.com Agent Updating || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Browseraid || url,doc.emergingthreats.net/bin/view/Main/2001304 || url,www.browseraid.com
2001306 || ET MALWARE Gator/Clarian Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Gator_Agent || url,doc.emergingthreats.net/bin/view/Main/2001306 || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
2001307 || ET MALWARE Wild Tangent Agent Installation || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Wild_Tangent || url,doc.emergingthreats.net/bin/view/Main/2001307 || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
2001308 || ET MALWARE Internet Optomizer Reporting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Internet_Optimizer || url,doc.emergingthreats.net/bin/view/Main/2001308 || url,securityresponse.symantec.com/avcenter/venc/data/adware.netoptimizer.html
2001309 || ET MALWARE Wild Tangent Agent Checking In || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Wild_Tangent || url,doc.emergingthreats.net/bin/view/Main/2001309 || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
2001310 || ET MALWARE Wild Tangent Agent Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Wild_Tangent || url,doc.emergingthreats.net/bin/view/Main/2001310 || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
2001311 || ET MALWARE Rdxrp.com Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Rdxrp.com || url,doc.emergingthreats.net/bin/view/Main/2001311
2001312 || ET MALWARE Rdxrp.com Traffic (Generic) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Rdxrp.com || url,doc.emergingthreats.net/bin/view/Main/2001312
2001313 || ET MALWARE Traffic Syndicate Add/Remove || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TrafficSyndicate || url,doc.emergingthreats.net/bin/view/Main/2001313
2001314 || ET MALWARE Wild Tangent Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Wild_Tangent || url,doc.emergingthreats.net/bin/view/Main/2001314 || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
2001315 || ET MALWARE Traffic Syndicate Agent Updating (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TrafficSyndicate || url,doc.emergingthreats.net/bin/view/Main/2001315
2001316 || ET MALWARE Traffic Syndicate Agent Updating (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TrafficSyndicate || url,doc.emergingthreats.net/bin/view/Main/2001316
2001317 || ET MALWARE Webhancer Data Upload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Webhancer || url,doc.emergingthreats.net/bin/view/Main/2001317 || url,securityresponse.symantec.com/avcenter/venc/data/spyware.webhancer.html
2001318 || ET MALWARE Adwave Agent Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Adwave || url,doc.emergingthreats.net/bin/view/Main/2001318 || url,www.intermute.com/spyware/HuntBar.html
2001320 || ET MALWARE Speedera Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Speedera || url,doc.emergingthreats.net/bin/view/Main/2001320
2001321 || ET MALWARE Speedera Agent (Specific) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Speedera || url,doc.emergingthreats.net/bin/view/Main/2001321
2001322 || ET MALWARE Wild Tangent New Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Wild_Tangent || url,doc.emergingthreats.net/bin/view/Main/2001322 || url,www.wildtangent.com || url,www.spyany.com/program/article_spw_rm_WildTangent.html
2001325 || ET MALWARE Websearch.com Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Websearch.com || url,doc.emergingthreats.net/bin/view/Main/2001325 || mcafee,131461
2001328 || ET POLICY SSN Detected in Clear Text (dashed) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSN_in_the_Clear || url,doc.emergingthreats.net/2001328
2001329 || ET POLICY RDP connection request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_RDP_Connections || url,doc.emergingthreats.net/2001329
2001330 || ET POLICY RDP connection confirm || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_RDP_Connections || url,doc.emergingthreats.net/2001330
2001331 || ET POLICY RDP disconnect request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_RDP_Connections || url,doc.emergingthreats.net/2001331
2001334 || ET MALWARE Ezula || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TopText_ILookup || url,doc.emergingthreats.net/bin/view/Main/2001334 || url,www.spyany.com/program/article_spw_rm_eZuLa.html || url,www.ezula.com
2001335 || ET MALWARE Ezula Installer Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TopText_ILookup || url,doc.emergingthreats.net/bin/view/Main/2001335 || url,www.spyany.com/program/article_spw_rm_eZuLa.html || url,www.ezula.com
2001337 || ET WORM Korgo.P offering executable || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_KORGO || url,doc.emergingthreats.net/2001337 || url,www.f-secure.com/v-descs/korgo_p.shtml
2001338 || ET WORM Korgo.P binary upload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_KORGO || url,doc.emergingthreats.net/2001338 || url,www.f-secure.com/v-descs/korgo_p.shtml
2001339 || ET MALWARE BInet Information Upload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Betterinternet || url,doc.emergingthreats.net/bin/view/Main/2001339 || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
2001340 || ET MALWARE LocalNRD Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Localnrd || url,doc.emergingthreats.net/bin/view/Main/2001340 || url,www.localnrd.com
2001341 || ET MALWARE OfferOptimizer.com Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Offer_Optimizer || url,doc.emergingthreats.net/bin/view/Main/2001341 || url,www.offeroptimizer.com
2001342 || ET WEB IIS ASP.net Auth Bypass / Canonicalization || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IIS_Canonicalization_Bypass || url,doc.emergingthreats.net/2001342
2001343 || ET WEB IIS ASP.net Auth Bypass / Canonicalization % 5 C || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IIS_Canonicalization_Bypass || url,doc.emergingthreats.net/2001343
2001344 || ET WEB PHP EasyDynamicPages exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_PHP_EasyDynamicPages_Exploit || url,doc.emergingthreats.net/2001344 || cve,CAN-2004-0073 || url,www.securitytracker.com/alerts/2004/Jan/1008584.html
2001345 || ET MALWARE Bonziportal Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bonzi || url,doc.emergingthreats.net/bin/view/Main/2001345 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=59256
2001346 || ET INAPPROPRIATE Kiddy Porn preteen || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Kiddy_Porn || url,doc.emergingthreats.net/bin/view/Main/2001346
2001347 || ET INAPPROPRIATE Kiddy Porn pre-teen || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Kiddy_Porn || url,doc.emergingthreats.net/bin/view/Main/2001347
2001348 || ET INAPPROPRIATE Kiddy Porn early teen || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Kiddy_Porn || url,doc.emergingthreats.net/bin/view/Main/2001348
2001349 || ET INAPPROPRIATE free XXX || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Porn || url,doc.emergingthreats.net/bin/view/Main/2001349
2001350 || ET INAPPROPRIATE hardcore anal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Porn || url,doc.emergingthreats.net/bin/view/Main/2001350
2001351 || ET INAPPROPRIATE masturbation || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Porn || url,doc.emergingthreats.net/bin/view/Main/2001351
2001352 || ET INAPPROPRIATE ejaculation || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Porn || url,doc.emergingthreats.net/bin/view/Main/2001352
2001353 || ET INAPPROPRIATE BDSM || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Porn || url,doc.emergingthreats.net/bin/view/Main/2001353
2001359 || ET MALWARE MarketScore.com Spyware Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MarketScore || url,doc.emergingthreats.net/bin/view/Main/2001359 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2001362 || ET DOS MS04-030 Attempted DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_MS04-030 || url,doc.emergingthreats.net/bin/view/Main/2001362 || url,isc.sans.org/diary.php?date=2004-10-20
2001363 || ET EXPLOIT Possible MS04-032 Windows Metafile (.emf) Heap Overflow Portbind Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS04-032 || url,doc.emergingthreats.net/bin/view/Main/2001363 || url,www.microsoft.com/technet/security/bulletin/ms04-032.mspx
2001364 || ET EXPLOIT MS04-032 Windows Metafile (.emf) Heap Overflow Connectback Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS04-032 || url,doc.emergingthreats.net/bin/view/Main/2001364 || url,www.microsoft.com/technet/security/bulletin/ms04-032.mspx
2001365 || ET WEB-MISC Alternate Data Stream source view attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IIS_ADS_Source_Code_Exposure || url,doc.emergingthreats.net/2001365 || cve,1999-0278 || url,support.microsoft.com/kb/q188806/
2001366 || ET DOS Possible Microsoft SQL Server Remote Denial Of Service Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_MSSQL_DOS || url,doc.emergingthreats.net/bin/view/Main/2001366 || bugtraq,11265
2001369 || ET EXPLOIT MS04-032 Windows Metafile (.emf) Heap Overflow Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS04-032 || url,doc.emergingthreats.net/bin/view/Main/2001369 || url,www.k-otik.com/exploits/20041020.HOD-ms04032-emf-expl2.c.php
2001374 || ET EXPLOIT MS04-032 Bad EMF file || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS04-032 || url,doc.emergingthreats.net/bin/view/Main/2001374 || url,www.sygate.com/alerts/SSR20041013-0001.htm
2001375 || ET POLICY Credit Card Number Detected in Clear (16 digit spaced) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Credit_Card_Numbers || url,doc.emergingthreats.net/2001375 || url,www.beachnet.com/~hstiles/cardtype.html
2001376 || ET POLICY Credit Card Number Detected in Clear (16 digit dashed) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Credit_Card_Numbers || url,doc.emergingthreats.net/2001376 || url,www.beachnet.com/~hstiles/cardtype.html
2001377 || ET POLICY Credit Card Number Detected in Clear (16 digit) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Credit_Card_Numbers || url,doc.emergingthreats.net/2001377 || url,www.beachnet.com/~hstiles/cardtype.html
2001378 || ET POLICY Credit Card Number Detected in Clear (15 digit) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Credit_Card_Numbers || url,doc.emergingthreats.net/2001378 || url,www.beachnet.com/~hstiles/cardtype.html
2001379 || ET POLICY Credit Card Number Detected in Clear (15 digit spaced) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Credit_Card_Numbers || url,doc.emergingthreats.net/2001379 || url,www.beachnet.com/~hstiles/cardtype.html
2001380 || ET POLICY Credit Card Number Detected in Clear (15 digit dashed) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Credit_Card_Numbers || url,doc.emergingthreats.net/2001380 || url,www.beachnet.com/~hstiles/cardtype.html
2001381 || ET POLICY Credit Card Number Detected in Clear (14 digit) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Credit_Card_Numbers || url,doc.emergingthreats.net/2001381 || url,www.beachnet.com/~hstiles/cardtype.html
2001382 || ET POLICY Credit Card Number Detected in Clear (14 digit spaced) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Credit_Card_Numbers || url,doc.emergingthreats.net/2001382 || url,www.beachnet.com/~hstiles/cardtype.html
2001383 || ET POLICY Credit Card Number Detected in Clear (14 digit dashed) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Credit_Card_Numbers || url,doc.emergingthreats.net/2001383 || url,www.beachnet.com/~hstiles/cardtype.html
2001384 || ET POLICY SSN Detected in Clear Text (spaced) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSN_in_the_Clear || url,doc.emergingthreats.net/2001384
2001385 || ET EXPLOIT Possible ShixxNote buffer-overflow + remote shell attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_ShixxNote || url,doc.emergingthreats.net/bin/view/Main/2001385 || url,aluigi.altervista.org/adv/shixxbof-adv.txt
2001386 || ET INAPPROPRIATE Kiddy Porn pthc || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Kiddy_Porn || url,doc.emergingthreats.net/bin/view/Main/2001386
2001387 || ET INAPPROPRIATE Kiddy Porn zeps || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Kiddy_Porn || url,doc.emergingthreats.net/bin/view/Main/2001387
2001388 || ET INAPPROPRIATE Kiddy Porn r@ygold || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Kiddy_Porn || url,doc.emergingthreats.net/bin/view/Main/2001388
2001389 || ET INAPPROPRIATE Kiddy Porn childlover || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Kiddy_Porn || url,doc.emergingthreats.net/bin/view/Main/2001389
2001392 || ET INAPPROPRIATE Sextracker Tracking Code Detected (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Porn || url,doc.emergingthreats.net/bin/view/Main/2001392
2001393 || ET INAPPROPRIATE Sextracker Tracking Code Detected (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Porn || url,doc.emergingthreats.net/bin/view/Main/2001393
2001395 || ET MALWARE ISearchTech.com XXXPornToolbar Activity (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ISearchTech.com || url,doc.emergingthreats.net/bin/view/Main/2001395 || url,www.isearchtech.com
2001396 || ET MALWARE Internet Optimizer Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Internet_Optimizer || url,doc.emergingthreats.net/bin/view/Main/2001396 || url,securityresponse.symantec.com/avcenter/venc/data/adware.netoptimizer.html
2001397 || ET MALWARE 180solutions Spyware (tracked event reported) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2001397 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2001398 || ET MALWARE Bfast.com Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bfast.com || url,doc.emergingthreats.net/bin/view/Main/2001398
2001399 || ET MALWARE 180solutions Spyware (action url reported) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2001399 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2001400 || ET MALWARE 180solutions Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2001400 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2001401 || ET EXPLOIT IE IFRAME Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001401
2001402 || ET POLICY ZIPPED DOC in transit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Zip_Contents || url,doc.emergingthreats.net/2001402
2001403 || ET POLICY ZIPPED XLS in transit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Zip_Contents || url,doc.emergingthreats.net/2001403
2001404 || ET POLICY ZIPPED EXE in transit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Zip_Contents || url,doc.emergingthreats.net/2001404
2001405 || ET POLICY ZIPPED PPT in transit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Zip_Contents || url,doc.emergingthreats.net/2001405
2001406 || ET POLICY Possible hidden zip extension .cpl || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Zip_Contents || url,doc.emergingthreats.net/2001406
2001407 || ET POLICY Possible hidden zip extension .pif || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Zip_Contents || url,doc.emergingthreats.net/2001407
2001408 || ET POLICY Possible hidden zip extension .scr || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Zip_Contents || url,doc.emergingthreats.net/2001408
2001409 || ET MALWARE Mastermind Related Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mastermind.com || url,doc.emergingthreats.net/bin/view/Main/2001409
2001410 || ET MALWARE Mastermind Related Reporting 8081 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mastermind.com || url,doc.emergingthreats.net/bin/view/Main/2001410
2001411 || ET MALWARE Mastermind Related Downloading mm20.ocx || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mastermind.com || url,doc.emergingthreats.net/bin/view/Main/2001411
2001413 || ET MALWARE Medis-Motor Related Downloading ast_4_mm.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mastermind.com || url,doc.emergingthreats.net/bin/view/Main/2001413
2001414 || ET MALWARE Media-Motor Related Downloading MediaMotor25.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mastermind.com || url,doc.emergingthreats.net/bin/view/Main/2001414
2001415 || ET MALWARE E2give Related Downloading IeBHOs.dll || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_E2give.com || url,doc.emergingthreats.net/bin/view/Main/2001415 || url,research.sunbelt-software.com/threatdisplay.aspx?name=E2Give&threatid=4728
2001416 || ET MALWARE E2give Related Reporting Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_E2give.com || url,doc.emergingthreats.net/bin/view/Main/2001416 || url,research.sunbelt-software.com/threatdisplay.aspx?name=E2Give&threatid=4728
2001417 || ET MALWARE E2give Related Receiving Config || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_E2give.com || url,doc.emergingthreats.net/bin/view/Main/2001417 || url,research.sunbelt-software.com/threatdisplay.aspx?name=E2Give&threatid=4728
2001418 || ET MALWARE E2give Related Downloading Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_E2give.com || url,doc.emergingthreats.net/bin/view/Main/2001418 || url,research.sunbelt-software.com/threatdisplay.aspx?name=E2Give&threatid=4728
2001419 || ET MALWARE Avres.net Downloading cpr_mm2.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mastermind.com || url,doc.emergingthreats.net/bin/view/Main/2001419
2001420 || ET MALWARE Avres.net Downloading ab1.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mastermind.com || url,doc.emergingthreats.net/bin/view/Main/2001420
2001421 || ET MALWARE Avres.net Downloading tvm_bundle.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mastermind.com || url,doc.emergingthreats.net/bin/view/Main/2001421
2001422 || ET MALWARE Avres.net Reporting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mastermind.com || url,doc.emergingthreats.net/bin/view/Main/2001422
2001423 || ET MALWARE E2give Related Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_E2give.com || url,doc.emergingthreats.net/bin/view/Main/2001423 || url,research.sunbelt-software.com/threatdisplay.aspx?name=E2Give&threatid=4728
2001424 || ET POLICY Gmail Inbox Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2001424
2001425 || ET POLICY Gmail File Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2001425
2001426 || ET POLICY Gmail Message Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Webmail || url,doc.emergingthreats.net/2001426
2001427 || ET CHAT Yahoo IM Unavailable Status || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2001427
2001430 || ET WORM Bofra Victim Accessing Reactor Page || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bofra || url,doc.emergingthreats.net/2001430 || url,us.mcafee.com/virusInfo/default.asp?id=description&virus_k=129631 || url,securityresponse.symantec.com/avcenter/venc/data/w32.bofra.e@mm.html
2001440 || ET MALWARE Abox Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Abox || url,doc.emergingthreats.net/bin/view/Main/2001440
2001441 || ET MALWARE Abox Install Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Abox || url,doc.emergingthreats.net/bin/view/Main/2001441 || url,securityresponse.symantec.com/avcenter/venc/data/adware.adultbox.html
2001442 || ET MALWARE Statblaster.MemoryWatcher Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Statblaster || url,doc.emergingthreats.net/bin/view/Main/2001442 || url,www.memorywatcher.com/eula.aspx
2001443 || ET MALWARE WhenUClick.com Desktop Bar App Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2001443 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2001444 || ET MALWARE Overpro Spyware Bundle Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Overpro || url,doc.emergingthreats.net/bin/view/Main/2001444 || url,www.wildarcade.com
2001445 || ET MALWARE PeopleOnPage Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_PeopleonPage || url,doc.emergingthreats.net/bin/view/Main/2001445 || url,www.safer-networking.org/en/threats/602.html || url,www.peopleonpage.com
2001446 || ET MALWARE PeopleOnPage Ping || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_PeopleonPage || url,doc.emergingthreats.net/bin/view/Main/2001446 || url,www.safer-networking.org/en/threats/602.html || url,www.peopleonpage.com
2001447 || ET MALWARE 2nd-thought (W32.Daqa.C) Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_2nd-Thought || url,doc.emergingthreats.net/bin/view/Main/2001447 || url,securityresponse.symantec.com/avcenter/venc/data/adware.secondthought.html
2001448 || ET MALWARE MediaTickets Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MediaTickets || url,doc.emergingthreats.net/bin/view/Main/2001448 || url,securityresponse.symantec.com/avcenter/venc/data/adware.winad.html
2001449 || ET POLICY Proxy Connection detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Unauthorized_Proxying || url,doc.emergingthreats.net/2001449
2001450 || ET MALWARE Wintools Download/Configure || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Adwave || url,doc.emergingthreats.net/bin/view/Main/2001450 || url,www.intermute.com/spyware/HuntBar.html
2001451 || ET MALWARE Bundleware Spyware Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bundleware || url,doc.emergingthreats.net/bin/view/Main/2001451
2001452 || ET MALWARE Bundleware Spyware CHM Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bundleware || url,doc.emergingthreats.net/bin/view/Main/2001452
2001453 || ET MALWARE Couponage Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Couponage || url,doc.emergingthreats.net/bin/view/Main/2001453 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453090725
2001454 || ET MALWARE Couponage Configure || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Couponage || url,doc.emergingthreats.net/bin/view/Main/2001454 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453090725
2001455 || ET MALWARE Couponage Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Couponage || url,doc.emergingthreats.net/bin/view/Main/2001455 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453090725
2001456 || ET MALWARE ContextPanel Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Contextpanel || url,doc.emergingthreats.net/bin/view/Main/2001456
2001458 || ET MALWARE Bundleware Spyware cab Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bundleware || url,doc.emergingthreats.net/bin/view/Main/2001458
2001459 || ET MALWARE Overpro Spyware Games || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Overpro || url,doc.emergingthreats.net/bin/view/Main/2001459 || url,securityresponse.symantec.com/avcenter/venc/data/adware.overpro.html
2001460 || ET MALWARE Sexmaniack Install Tracking || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Sexmaniak || url,doc.emergingthreats.net/bin/view/Main/2001460
2001461 || ET MALWARE Xpire.info Multiple Spyware Installs (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001461
2001462 || ET MALWARE Xpire.info Multiple Spyware Installs Occuring || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001462
2001463 || ET MALWARE Xpire.info Multiple Spyware Installs (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001463
2001464 || ET MALWARE Xpire.info Multiple Spyware Installs (3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001464
2001466 || ET MALWARE Xpire.info Multiple Spyware Installs (4) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001466
2001467 || ET MALWARE Xpire.info Multiple Spyware Installs (5) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001467
2001468 || ET MALWARE Xpire.info Multiple Spyware Installs CHM Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001468
2001469 || ET MALWARE Xpire.info Multiple Spyware Installs (6) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001469
2001470 || ET MALWARE Xpire.info Multiple Spyware Installs (7) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001470
2001471 || ET MALWARE Xpire.info Spyware Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001471
2001472 || ET MALWARE Xpire.info Spyware Install Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001472
2001473 || ET MALWARE Searchmeup Spyware Install (toolbar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmeup || url,doc.emergingthreats.net/bin/view/Main/2001473
2001474 || ET MALWARE Searchmeup Spyware Install (prog) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmeup || url,doc.emergingthreats.net/bin/view/Main/2001474
2001475 || ET MALWARE Searchmeup Spyware Receiving Commands || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmeup || url,doc.emergingthreats.net/bin/view/Main/2001475
2001479 || ET MALWARE Coolsearch Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Coolsearch || url,doc.emergingthreats.net/bin/view/Main/2001479
2001480 || ET MALWARE Searchmeup Spyware Install (systime) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmeup || url,doc.emergingthreats.net/bin/view/Main/2001480
2001481 || ET MALWARE MediaTickets Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MediaTickets || url,doc.emergingthreats.net/bin/view/Main/2001481 || url,securityresponse.symantec.com/avcenter/venc/data/adware.winad.html
2001482 || ET MALWARE thebestsoft4u.com Spyware Install (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Thebestsoft4u || url,doc.emergingthreats.net/bin/view/Main/2001482
2001483 || ET MALWARE Searchmeup Spyware Install (mstask) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmeup || url,doc.emergingthreats.net/bin/view/Main/2001483
2001484 || ET MALWARE Searchmeup Spyware Install (d.exe) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmeup || url,doc.emergingthreats.net/bin/view/Main/2001484
2001485 || ET MALWARE thebestsoft4u.com Spyware Install (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Thebestsoft4u || url,doc.emergingthreats.net/bin/view/Main/2001485
2001486 || ET MALWARE thebestsoft4u.com Spyware Install (3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Thebestsoft4u || url,doc.emergingthreats.net/bin/view/Main/2001486
2001487 || ET MALWARE Tibsystems Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001487
2001488 || ET MALWARE Tibsystems Spyware Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Tibsystems.com || url,doc.emergingthreats.net/bin/view/Main/2001488
2001489 || ET MALWARE Spygalaxy.ws Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spygalaxy.ws || url,doc.emergingthreats.net/bin/view/Main/2001489
2001490 || ET MALWARE ICQ-Update.biz Reporting Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ICQ-Update.biz || url,doc.emergingthreats.net/bin/view/Main/2001490
2001491 || ET MALWARE Xpire.info Install Code Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001491
2001492 || ET MALWARE ISearchTech.com XXXPornToolbar Activity (MyApp) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001492 || url,www.isearchtech.com
2001493 || ET MALWARE ISearchTech.com XXXPornToolbar Activity (IST) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001493 || url,www.isearchtech.com
2001494 || ET MALWARE Clickspring.net Spyware Reporting Successful Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Clickspring.net || url,doc.emergingthreats.net/bin/view/Main/2001494 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453082745
2001495 || ET MALWARE Outerinfo.com Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Outerinfo.com || url,doc.emergingthreats.net/bin/view/Main/2001495
2001496 || ET MALWARE Outerinfo.com Spyware Advertising Campaign Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Outerinfo.com || url,doc.emergingthreats.net/bin/view/Main/2001496
2001497 || ET MALWARE Outerinfo.com Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Outerinfo.com || url,doc.emergingthreats.net/bin/view/Main/2001497
2001498 || ET MALWARE Internet Optimizer Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001498
2001499 || ET MALWARE Look2me Spyware Activity (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Look2me || url,doc.emergingthreats.net/bin/view/Main/2001499 || url,securityresponse.symantec.com/avcenter/venc/data/adware.look2me.html
2001500 || ET MALWARE Clickspring.net Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Clickspring.net || url,doc.emergingthreats.net/bin/view/Main/2001500 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453082745
2001501 || ET MALWARE Clickspring.net Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bullseye-Network.com || url,doc.emergingthreats.net/bin/view/Main/2001501 || url,sarc.com/avcenter/venc/data/adware.bargainbuddy.html
2001503 || ET MALWARE Medialoads.com Spyware Config || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Medialoads.com || url,doc.emergingthreats.net/bin/view/Main/2001503
2001505 || ET MALWARE Smartpops.com Spyware Install rh.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Smartpops.com || url,doc.emergingthreats.net/bin/view/Main/2001505 || url,securityresponse.symantec.com/avcenter/venc/data/adware.smartpops.html
2001507 || ET MALWARE Medialoads.com Spyware Identifying Country of Origin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Medialoads.com || url,doc.emergingthreats.net/bin/view/Main/2001507
2001508 || ET MALWARE Medialoads.com Spyware Reporting (download.cgi) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Medialoads.com || url,doc.emergingthreats.net/bin/view/Main/2001508
2001509 || ET MALWARE Medialoads.com Spyware Reporting (register.cgi) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Medialoads.com || url,doc.emergingthreats.net/bin/view/Main/2001509
2001510 || ET MALWARE SurfAssistant.com Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Surfassistant.com || url,doc.emergingthreats.net/bin/view/Main/2001510 || url,securityresponse.symantec.com/avcenter/venc/data/adware.sa.html
2001513 || ET MALWARE Smartpops.com Spyware Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Smartpops.com || url,doc.emergingthreats.net/bin/view/Main/2001513 || url,securityresponse.symantec.com/avcenter/venc/data/adware.smartpops.html
2001514 || ET MALWARE SurfAssistant.com Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Surfassistant.com || url,doc.emergingthreats.net/bin/view/Main/2001514 || url,securityresponse.symantec.com/avcenter/venc/data/adware.sa.html
2001516 || ET MALWARE Smartpops.com Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Smartpops.com || url,doc.emergingthreats.net/bin/view/Main/2001516 || url,securityresponse.symantec.com/avcenter/venc/data/adware.smartpops.html
2001517 || ET MALWARE Websearch.com Outbound Dialer Retrieval || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Websearch.com || url,doc.emergingthreats.net/bin/view/Main/2001517 || mcafee,131461
2001520 || ET MALWARE Spywaremover Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Topantispyware.com || url,doc.emergingthreats.net/bin/view/Main/2001520 || url,securityresponse.symantec.com/avcenter/venc/data/adware.topantispyware.html
2001521 || ET MALWARE Spywaremover Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Callinghome.biz || url,doc.emergingthreats.net/bin/view/Main/2001521 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453087903
2001522 || ET MALWARE SpywareLabs Application Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spywarelabs_VirtualBouncer || url,doc.emergingthreats.net/bin/view/Main/2001522
2001523 || ET MALWARE Statblaster Receiving New configuration (allfiles) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Statblaster || url,doc.emergingthreats.net/bin/view/Main/2001523 || url,securityresponse.symantec.com/avcenter/venc/data/adware.statblaster.html
2001524 || ET MALWARE Statblaster Code Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Statblaster || url,doc.emergingthreats.net/bin/view/Main/2001524 || url,securityresponse.symantec.com/avcenter/venc/data/adware.statblaster.html
2001525 || ET MALWARE Virtumonde Spyware Code Download mmdom.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Virtumonde || url,doc.emergingthreats.net/bin/view/Main/2001525 || url,sarc.com/avcenter/venc/data/adware.virtumonde.html
2001526 || ET MALWARE Virtumonde Spyware Code Download bkinst.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Virtumonde || url,doc.emergingthreats.net/bin/view/Main/2001526 || url,www.lurhq.com/iframeads.html
2001529 || ET MALWARE Casalemedia Access, Likely Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Ak-networks.com || url,doc.emergingthreats.net/bin/view/Main/2001529
2001530 || ET MALWARE ak-networks.com Spyware Code Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Ak-networks.com || url,doc.emergingthreats.net/bin/view/Main/2001530
2001531 || ET MALWARE C4tdownload.com Access, Likely Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_C4tdownload.com || url,doc.emergingthreats.net/bin/view/Main/2001531 || url,sarc.com/avcenter/venc/data/adware.clickdloader.b.html
2001532 || ET MALWARE Searchmiracle.com Access, Likely Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmiracle.com || url,doc.emergingthreats.net/bin/view/Main/2001532 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.elitebar.html
2001533 || ET MALWARE Searchmiracle.com Spyware Installer silent.exe Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmiracle.com || url,doc.emergingthreats.net/bin/view/Main/2001533 || url,www.searchmiracle.com/silent.exe
2001534 || ET MALWARE Searchmiracle.com Spyware Install (silent_install) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmiracle.com || url,doc.emergingthreats.net/bin/view/Main/2001534 || url,www.searchmiracle.com
2001535 || ET MALWARE Searchmiracle.com Spyware Install (protector.exe) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmiracle.com || url,doc.emergingthreats.net/bin/view/Main/2001535 || url,www.searchmiracle.com
2001536 || ET MALWARE Spyspotter.com Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spyspotter.com || url,doc.emergingthreats.net/bin/view/Main/2001536
2001537 || ET MALWARE Spyspotter.com Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spyspotter.com || url,doc.emergingthreats.net/bin/view/Main/2001537
2001538 || ET MALWARE Oenji.com Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Oemji.com || url,doc.emergingthreats.net/bin/view/Main/2001538
2001539 || ET MALWARE Spyspotter.com Access, Likely Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Oemji.com || url,doc.emergingthreats.net/bin/view/Main/2001539
2001540 || ET MALWARE Searchmiracle.com Spyware Install (v3cab) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmiracle.com || url,doc.emergingthreats.net/bin/view/Main/2001540 || url,www.searchmiracle.com
2001541 || ET MALWARE Xpire.info Install Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Xpire.info || url,doc.emergingthreats.net/bin/view/Main/2001541
2001543 || ET EXPLOIT NTDump Session Established Reg-Entry port 445 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2001543
2001544 || ET EXPLOIT NTDump.exe Service Started port 445 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2001544
2001546 || ET WEB-MISC LINK Method || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_LINK_Method || url,doc.emergingthreats.net/2001546 || url,www.w3.org/Protocols/HTTP/Methods/Link.html
2001547 || ET VIRUS Sobig.E-F Trojan Site Download Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Sobig_Trojan_Download_Request || url,doc.emergingthreats.net/2001547 || url,securityresponse.symantec.com/avcenter/venc/data/w32.sobig.e@mm.html
2001548 || ET WORM Sasser FTP exploit attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Sasser || url,doc.emergingthreats.net/2001548 || url,www.lurhq.com/dabber.html
2001549 || ET EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sun_Java_VM || url,doc.emergingthreats.net/bin/view/Main/2001549 || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158 || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
2001550 || ET EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sun_Java_VM || url,doc.emergingthreats.net/bin/view/Main/2001550 || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158 || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
2001551 || ET EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sun_Java_VM || url,doc.emergingthreats.net/bin/view/Main/2001551 || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158 || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
2001552 || ET EXPLOIT Possible Sun Java Plugin arbitrary package access exploit (4) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sun_Java_VM || url,doc.emergingthreats.net/bin/view/Main/2001552 || cve,CAN-2004-1029 || url,www.kb.cert.org/vuls/id/760344 || url,secunia.com/advisories/13271/ || url,archives.neohapsis.com/archives/bugtraq/2004-11/0299.html || url,www.idefense.com/application/poi/display?id=158 || url,sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1 || url,jouko.iki.fi/adv/javaplugin.html
2001553 || ET SCAN Possible SSL Brute Force attack or Site Crawl || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_SSL_Brute_or_Crawl || url,doc.emergingthreats.net/2001553
2001562 || ET MALWARE MarketScore.com Spyware User Configuration and Setup Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001562 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2001563 || ET MALWARE MarketScore.com Spyware SSL Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MarketScore || url,doc.emergingthreats.net/bin/view/Main/2001563 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2001564 || ET MALWARE MarketScore.com Spyware Proxied Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MarketScore || url,doc.emergingthreats.net/bin/view/Main/2001564 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2001569 || ET SCAN Behavioral Unusual Port 445 traffic, Potential Scan or Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Netbios || url,doc.emergingthreats.net/2001569
2001570 || ET MALWARE Spyware Stormer Reporting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spywarestormer || url,doc.emergingthreats.net/bin/view/Main/2001570 || url,www.spywarestormer.com
2001571 || ET MALWARE Spyware Stormer/Error Guard Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spywarestormer || url,doc.emergingthreats.net/bin/view/Main/2001571 || url,www.spywarestormer.com
2001576 || ET MALWARE BInet Information Install Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Betterinternet || url,doc.emergingthreats.net/bin/view/Main/2001576 || url,sarc.com/avcenter/venc/data/pf/adware.betterinternet.html
2001579 || ET SCAN Behavioral Unusual Port 139 traffic, Potential Scan or Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Netbios || url,doc.emergingthreats.net/2001579
2001580 || ET SCAN Behavioral Unusual Port 137 traffic, Potential Scan or Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Netbios || url,doc.emergingthreats.net/2001580
2001581 || ET SCAN Behavioral Unusual Port 135 traffic, Potential Scan or Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Netbios || url,doc.emergingthreats.net/2001581
2001582 || ET SCAN Behavioral Unusual Port 1434 traffic, Potential Scan or Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Netbios || url,doc.emergingthreats.net/2001582
2001583 || ET SCAN Behavioral Unusual Port 1433 traffic, Potential Scan or Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Netbios || url,doc.emergingthreats.net/2001583
2001586 || ET MALWARE MarketScore.com Spyware Proxied Traffic (mitmproxy agent) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MarketScore || url,doc.emergingthreats.net/bin/view/Main/2001586 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2001587 || ET MALWARE MarketScore.com Spyware Upgrading || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MarketScore || url,doc.emergingthreats.net/bin/view/Main/2001587 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2001588 || ET MALWARE MarketScore.com Spyware Activity (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MarketScore || url,doc.emergingthreats.net/bin/view/Main/2001588 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2001589 || ET MALWARE MarketScore.com Spyware Activity (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MarketScore || url,doc.emergingthreats.net/bin/view/Main/2001589 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2001595 || ET POLICY Skype VOIP Checking Version (Startup) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Skype || url,doc.emergingthreats.net/2001595 || url,www1.cs.columbia.edu/~library/TR-repository/reports/reports-2004/cucs-039-04.pdf
2001596 || ET POLICY Skype VOIP Reporting Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Skype || url,doc.emergingthreats.net/2001596 || url,www1.cs.columbia.edu/~library/TR-repository/reports/reports-2004/cucs-039-04.pdf
2001597 || ET POLICY Netop Remote Control Usage || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Netop_Remote_Control || url,doc.emergingthreats.net/2001597 || url,www.netop.com
2001608 || ET INAPPROPRIATE Likely Porn || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Porn || url,doc.emergingthreats.net/bin/view/Main/2001608
2001609 || ET SCAN F5 BIG-IP 3DNS TCP Probe 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_F5_BIG-IP_Probe || url,doc.emergingthreats.net/2001609 || url,www.f5.com/f5products/v9intro/index.html
2001610 || ET SCAN F5 BIG-IP 3DNS TCP Probe 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_F5_BIG-IP_Probe || url,doc.emergingthreats.net/2001610 || url,www.f5.com/f5products/v9intro/index.html
2001611 || ET SCAN F5 BIG-IP 3DNS TCP Probe 3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_F5_BIG-IP_Probe || url,doc.emergingthreats.net/2001611 || url,www.f5.com/f5products/v9intro/index.html
2001616 || ET ATTACK RESPONSE Zone-H.org defacement notification || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Zone-h_Defacement || url,doc.emergingthreats.net/bin/view/Main/2001616
2001620 || ET ATTACK RESPONSE Likely Botnet Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Non-Standard_IRC || url,doc.emergingthreats.net/bin/view/Main/2001620
2001621 || ET WEB Exploit Suspected PHP Injection Attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHP_Injection || url,doc.emergingthreats.net/2001621 || cve,2002-0953
2001622 || ET EXPLOIT winhlp32 ActiveX control attack, phase 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Winhelp32 || url,doc.emergingthreats.net/bin/view/Main/2001622
2001623 || ET EXPLOIT winhlp32 ActiveX control attack, phase 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Winhelp32 || url,doc.emergingthreats.net/bin/view/Main/2001623
2001624 || ET EXPLOIT winhlp32 ActiveX control attack, phase 3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Winhelp32 || url,doc.emergingthreats.net/bin/view/Main/2001624
2001625 || ET EXPLOIT winhlp32 ActiveX control attack via EMAIL, phase 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Winhelp32 || url,doc.emergingthreats.net/bin/view/Main/2001625
2001626 || ET EXPLOIT winhlp32 ActiveX control attack via EMAIL, phase 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Winhelp32 || url,doc.emergingthreats.net/bin/view/Main/2001626
2001627 || ET EXPLOIT winhlp32 ActiveX control attack via EMAIL, phase 3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Winhelp32 || url,doc.emergingthreats.net/bin/view/Main/2001627
2001628 || ET ATTACK RESPONSE Outbound PHP Connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Outbound_PHP_Fopen || url,doc.emergingthreats.net/bin/view/Main/2001628
2001633 || ET EXPLOIT Probable MSIE XPSP2 Remote Compromise (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Winhelp32 || url,doc.emergingthreats.net/bin/view/Main/2001633 || url,freehost07.websamba.com/greyhats/sp2rc-analysis.htm
2001634 || ET EXPLOIT Probable MSIE XPSP2 Remote Compromise (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Winhelp32 || url,doc.emergingthreats.net/bin/view/Main/2001634 || url,freehost07.websamba.com/greyhats/sp2rc-analysis.htm
2001635 || ET DOS HTTP GET with newline appended || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Apache_Squ1rt || url,doc.emergingthreats.net/bin/view/Main/2001635 || cve,2004-0942
2001636 || ET DOS squ1rt Apache DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Apache_Squ1rt || url,doc.emergingthreats.net/bin/view/Main/2001636 || cve,2004-0942
2001639 || ET MALWARE Wild Tangent Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001639
2001640 || ET MALWARE Altnet PeerPoints Manager Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001640
2001641 || ET MALWARE Microgaming.com Spyware Installation (dlhelper) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Microgaming.com || url,doc.emergingthreats.net/bin/view/Main/2001641
2001643 || ET MALWARE Microgaming.com Spyware Installation (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Microgaming.com || url,doc.emergingthreats.net/bin/view/Main/2001643
2001644 || ET MALWARE Microgaming.com Spyware Reporting Installation || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Microgaming.com || url,doc.emergingthreats.net/bin/view/Main/2001644
2001645 || ET MALWARE Microgaming.com Spyware Casino App Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Microgaming.com || url,doc.emergingthreats.net/bin/view/Main/2001645
2001646 || ET MALWARE Toprebates.com Install (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TopRebates || url,doc.emergingthreats.net/bin/view/Main/2001646 || url,securityresponse.symantec.com/avcenter/venc/data/adware.webrebates.html
2001647 || ET MALWARE Toprebates.com Install (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TopRebates || url,doc.emergingthreats.net/bin/view/Main/2001647 || url,securityresponse.symantec.com/avcenter/venc/data/adware.webrebates.html
2001648 || ET MALWARE Toprebates.com User Confirming Membership || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TopRebates || url,doc.emergingthreats.net/bin/view/Main/2001648 || url,securityresponse.symantec.com/avcenter/venc/data/adware.webrebates.html
2001650 || ET MALWARE Search Scout Related Spyware (content) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchscout || url,doc.emergingthreats.net/bin/view/Main/2001650 || url,securityresponse.symantec.com/avcenter/venc/data/adware.searchscout.html
2001652 || ET MALWARE JoltID Agent New Code Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001652 || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
2001653 || ET MALWARE Search Scout Related Spyware (results) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchscout || url,doc.emergingthreats.net/bin/view/Main/2001653 || url,securityresponse.symantec.com/avcenter/venc/data/adware.searchscout.html
2001654 || ET MALWARE JoltID Agent Requesting File || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_JoltID || url,doc.emergingthreats.net/bin/view/Main/2001654 || url,forum.treweeke.com/lofiversion/index.php/t597.html || url,www.joltid.com
2001655 || ET MALWARE Comet Systems Spyware Traffic (context.xml) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Comet_Cursor_Spyware || url,doc.emergingthreats.net/bin/view/Main/2001655 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453083029
2001656 || ET MALWARE GlobalPhon.com Dialer || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_GlobalPhon || url,doc.emergingthreats.net/bin/view/Main/2001656
2001657 || ET MALWARE GlobalPhon.com Dialer Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_GlobalPhon || url,doc.emergingthreats.net/bin/view/Main/2001657
2001658 || ET MALWARE Comet Systems Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Comet_Cursor_Spyware || url,doc.emergingthreats.net/bin/view/Main/2001658
2001659 || ET MALWARE GlobalPhon.com Dialer (no_pop) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_GlobalPhon || url,doc.emergingthreats.net/bin/view/Main/2001659
2001660 || ET MALWARE GlobalPhon.com Dialer (add_ocx) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_GlobalPhon || url,doc.emergingthreats.net/bin/view/Main/2001660
2001664 || ET P2P Gnutella Connect || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Gnutella || url,doc.emergingthreats.net/bin/view/Main/2001664 || url,www.gnutella.com
2001666 || ET MALWARE Metarewards Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Metarward.com || url,doc.emergingthreats.net/bin/view/Main/2001666
2001668 || ET EXPLOIT Exploit MS05-002 Malformed .ANI stack overflow attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-002_ANI_Stack_Overflow || url,doc.emergingthreats.net/bin/view/Main/2001668
2001669 || ET WEB Proxy GET Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Apache_Open_Proxy || url,doc.emergingthreats.net/2001669
2001670 || ET WEB Proxy HEAD Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Apache_Open_Proxy || url,doc.emergingthreats.net/2001670
2001674 || ET WEB Proxy POST Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Apache_Open_Proxy || url,doc.emergingthreats.net/2001674
2001675 || ET WEB Proxy CONNECT Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Apache_Open_Proxy || url,doc.emergingthreats.net/2001675
2001677 || ET MALWARE Webhancer Data Post || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Webhancer || url,doc.emergingthreats.net/bin/view/Main/2001677 || url,securityresponse.symantec.com/avcenter/venc/data/spyware.webhancer.html
2001678 || ET MALWARE Webhancer Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Webhancer || url,doc.emergingthreats.net/bin/view/Main/2001678 || url,securityresponse.symantec.com/avcenter/venc/data/spyware.webhancer.html
2001679 || ET MALWARE JoltID Agent P2P via Proxy Server || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_JoltID || url,doc.emergingthreats.net/bin/view/Main/2001679 || url,securityresponse.symantec.com/avcenter/venc/data/adware.p2pnetworking.html
2001682 || ET POLICY MSN IM Poll via HTTP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_MSN || url,doc.emergingthreats.net/2001682
2001683 || ET MALWARE Windows executable sent when remote host claims to send an image || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Covert_Executable_DL || url,doc.emergingthreats.net/bin/view/Main/2001683
2001684 || ET MALWARE Windows executable sent when remote host claims to send image, Win32 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Covert_Executable_DL || url,doc.emergingthreats.net/bin/view/Main/2001684
2001685 || ET MALWARE Possible Windows executable sent when remote host claims to send an image || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Covert_Executable_DL || url,doc.emergingthreats.net/bin/view/Main/2001685
2001686 || ET EXPLOIT Awstats Remote Code Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_awstats_remote_exec || url,doc.emergingthreats.net/bin/view/Main/2001686 || cve,CAN-2005-0116 || bugtraq,12298 || url,www.idefense.com/application/poi/display?id=185&type=vulnerabilities&flashstatus=false || url,awstats.sourceforge.net || url,www.k-otik.com/exploits/20050302.awstats_shell.c.php || url,www.k-otik.com/exploits/20050124.awexpl.c.php
2001689 || ET WORM Potential MySQL bot scanning for SQL server || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_MySQL || url,doc.emergingthreats.net/2001689 || url,isc.sans.org/diary.php?date=2005-01-27
2001696 || ET MALWARE Search Relevancy Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SearchRelevancy || url,doc.emergingthreats.net/bin/view/Main/2001696 || url,securityresponse.symantec.com/avcenter/venc/data/spyware.relevancy.html
2001697 || ET MALWARE ISearchTech.com XXXPornToolbar Data Submission || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ISearchTech.com || url,doc.emergingthreats.net/bin/view/Main/2001697 || url,www.isearchtech.com
2001698 || ET MALWARE YourSiteBar Data Submision || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_YourSiteBar || url,doc.emergingthreats.net/bin/view/Main/2001698 || url,www.ysbweb.com
2001699 || ET MALWARE YourSiteBar Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001699 || url,www.ysbweb.com
2001700 || ET MALWARE Windupdates.com Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Windupdates.com || url,doc.emergingthreats.net/bin/view/Main/2001700
2001701 || ET MALWARE Windupdates.com Spyware Loggin Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Windupdates.com || url,doc.emergingthreats.net/bin/view/Main/2001701
2001702 || ET MALWARE Shop at Home Select Spyware Activity (Bundle) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001702
2001703 || ET MALWARE Context Plus Spyware Activity (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001703
2001704 || ET MALWARE Context Plus Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ContextPlus.net || url,doc.emergingthreats.net/bin/view/Main/2001704
2001705 || ET MALWARE Flingstone Spyware Install (sportsinteraction) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Flingstone || url,doc.emergingthreats.net/bin/view/Main/2001705 || url,securityresponse.symantec.com/avcenter/venc/data/adware.winfavorites.html
2001706 || ET MALWARE Context Plus Spyware Activity (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001706
2001707 || ET MALWARE Shop at Home Select Spyware Activity (SAH) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001707
2001708 || ET MALWARE Shop at Home Select Spyware Heartbeat || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ShopAtHomeSelect || url,doc.emergingthreats.net/bin/view/Main/2001708 || url,securityresponse.symantec.com/avcenter/venc/data/adware.sahagent.html
2001710 || ET MALWARE Flingstone Spyware Install (cxtpls) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Flingstone || url,doc.emergingthreats.net/bin/view/Main/2001710 || url,securityresponse.symantec.com/avcenter/venc/data/adware.winfavorites.html
2001711 || ET MALWARE Likely Spambot Web-based Control Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spambots || url,doc.emergingthreats.net/bin/view/Main/2001711
2001712 || ET POLICY MyWebEx Server Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_WebEx_Traffic || url,doc.emergingthreats.net/2001712 || url,www.mywebexpc.com/how.php
2001713 || ET POLICY MyWebEx Installation || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_WebEx_Traffic || url,doc.emergingthreats.net/2001713 || url,www.mywebexpc.com/how.php
2001714 || ET POLICY MyWebEx Incoming Connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_WebEx_Traffic || url,doc.emergingthreats.net/2001714 || url,www.mywebexpc.com/how.php
2001715 || ET WORM Bropia.F Worm Propagation || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Bropia || url,doc.emergingthreats.net/2001715 || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM%5FBROPIA%2EF
2001716 || ET WEB_SPECIFIC IDN url seen.. || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_IDN || url,doc.emergingthreats.net/2001716
2001718 || ET EXPLOIT CAN-2004-1244 PNG with bad width || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS_PNG || url,doc.emergingthreats.net/bin/view/Main/2001718 || cve,2004-1214
2001719 || ET EXPLOIT CAN-2004-1244 PNG with bad height || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS_PNG || url,doc.emergingthreats.net/bin/view/Main/2001719 || cve,2004-1214
2001720 || ET EXPLOIT CAN-2004-0597 PNG with indexed color || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS_PNG || url,doc.emergingthreats.net/bin/view/Main/2001720 || cve,2004-0597
2001721 || ET EXPLOIT CAN-2004-0597 PNG with too big PLTE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS_PNG || url,doc.emergingthreats.net/bin/view/Main/2001721 || cve,2004-0597
2001722 || ET EXPLOIT CAN-2004-0597 PNG with too big hIST || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS_PNG || url,doc.emergingthreats.net/bin/view/Main/2001722 || cve,2004-0597
2001723 || ET EXPLOIT ATmaCA PoC for CORE-2004-0819 - Bad PNG || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS_PNG || url,doc.emergingthreats.net/bin/view/Main/2001723
2001724 || ET EXPLOIT libpng CAN-2004-1244 overflow attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS_PNG || url,doc.emergingthreats.net/bin/view/Main/2001724 || bugtraq,10872 || cve,2004-0597
2001725 || ET EXPLOIT MS05-014 HTML OBJECT tag local zone exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-014 || url,doc.emergingthreats.net/bin/view/Main/2001725 || url,www.microsoft.com/technet/security/bulletin/ms05-014.mspx
2001726 || ET VIRUS Trojan-Spy.Win32.Bancos Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Trojan-Spy.Win32.Bancos || url,doc.emergingthreats.net/2001726 || url,securityresponse.symantec.com/avcenter/venc/data/pwsteal.bancos.b.html
2001727 || ET EXPLOIT MS05-005 Office XP .doc Remote Code Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-005 || url,doc.emergingthreats.net/bin/view/Main/2001727 || url,www.frsirt.com/english/advisories/2005/0119 || cve,2004-0848
2001729 || ET MALWARE Tibsystems Spyware Install (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Tibsystems.com || url,doc.emergingthreats.net/bin/view/Main/2001729
2001730 || ET MALWARE A-d-w-a-r-e.com Activity (popup) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_A-d-w-a-r-e.com || url,doc.emergingthreats.net/bin/view/Main/2001730 || url,www.a-d-w-a-r-e.com
2001731 || ET MALWARE SurfSidekick Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SurfSidekick || url,doc.emergingthreats.net/bin/view/Main/2001731 || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfsidekick.html
2001732 || ET MALWARE Top Converting Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001732
2001733 || ET MALWARE CrazyWinnings.com Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CrazyWinnings.com || url,doc.emergingthreats.net/bin/view/Main/2001733
2001734 || ET MALWARE Tibsystems Spyware Install (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Tibsystems.com || url,doc.emergingthreats.net/bin/view/Main/2001734
2001735 || ET MALWARE A-d-w-a-r-e.com Activity (cmd) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_A-d-w-a-r-e.com || url,doc.emergingthreats.net/bin/view/Main/2001735 || url,www.a-d-w-a-r-e.com
2001736 || ET MALWARE UCMore Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001736
2001737 || ET MALWARE ak-networks.com Spyware Code Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Ak-networks.com || url,doc.emergingthreats.net/bin/view/Main/2001737
2001738 || ET WEB PHP vBulletin Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_PHP_vBulletin || url,doc.emergingthreats.net/2001738 || bugtraq,12542
2001742 || ET EXPLOIT Arkeia full remote access without password or authentication || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Arkeia || url,doc.emergingthreats.net/bin/view/Main/2001742 || url,metasploit.com/research/vulns/arkeia_agent
2001743 || ET TROJAN HackerDefender Root Kit Remote Connection Attempt Detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_HackerDefender || url,doc.emergingthreats.net/2001743 || url,securityresponse.symantec.com/avcenter/venc/data/backdoor.hackdefender.html
2001744 || ET MALWARE Searchmiracle.com Spyware Install (install) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmiracle.com || url,doc.emergingthreats.net/bin/view/Main/2001744 || url,www.searchmiracle.com
2001746 || ET MALWARE Enhance My Search Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001746
2001747 || ET MALWARE My-Stats.com Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_My-Stats.com || url,doc.emergingthreats.net/bin/view/Main/2001747
2001748 || ET MALWARE Pynix.dll BHO Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Pynix || url,doc.emergingthreats.net/bin/view/Main/2001748 || url,www.pynix.com
2001751 || ET EXPLOIT Nullsoft Shoutcast Server Format String Attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Shoutcast || url,doc.emergingthreats.net/bin/view/Main/2001751 || bugtraq,12096 || cve,2004-1373
2001753 || ET EXPLOIT Pwdump4 Session Established GetHash port 139 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2001753
2001754 || ET EXPLOIT Pwdump4 Session Established GetHash port 445 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Pwdump_Fgdump || url,doc.emergingthreats.net/bin/view/Main/2001754
2001761 || ET MALWARE ABX Toolbar ActiveX Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ABX_Toolbar || url,doc.emergingthreats.net/bin/view/Main/2001761 || url,isc.sans.org/diary.php?date=2005-03-04
2001762 || ET WEB_SPECIFIC phpbb Session Cookie || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPBB || url,doc.emergingthreats.net/2001762 || url,www.waraxe.us/ftopict-555.html
2001763 || ET VIRUS - W32.Opaserv Worm Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Opaserv || url,doc.emergingthreats.net/2001763 || url,www.sarc.com/avcenter/venc/data/w32.opaserv.worm.html
2001764 || ET VIRUS Bugbear@MM virus via SMTP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_BugBear || url,doc.emergingthreats.net/2001764 || url,www.symantec.com/avcenter/venc/data/w32.bugbear@mm.html
2001765 || ET VIRUS BugBear@MM virus in Network share || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_BugBear || url,doc.emergingthreats.net/2001765 || url,www.symantec.com/avcenter/venc/data/w32.bugbear@mm.html
2001766 || ET VIRUS BugBear@MM Worm Copied to Startup Folder || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_BugBear || url,doc.emergingthreats.net/2001766 || url,www.symantec.com/avcenter/venc/data/w32.bugbear@mm.html
2001767 || ET WEB ORACLE OLEDB asp error || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Oracle || url,doc.emergingthreats.net/2001767 || url,www.wiretrip.net/rfp/p/doc.asp/i2/d42.htm
2001768 || ET WEB MS SQL Server OLEDB asp error || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MSSQL || url,doc.emergingthreats.net/2001768 || url,www.wiretrip.net/rfp/p/doc.asp/i2/d42.htm
2001780 || ET EXPLOIT Solaris TTYPROMPT environment variable set || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Solaris_TTYPROMPT || url,doc.emergingthreats.net/bin/view/Main/2001780 || url,online.securityfocus.com/archive/1/293844
2001781 || ET WEB ORACLE rwcgi60 information leak attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Oracle || url,doc.emergingthreats.net/2001781 || url,www.kb.cert.org/vuls/id/997403
2001783 || ET MALWARE Media Pass ActiveX Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MediaPass || url,doc.emergingthreats.net/bin/view/Main/2001783 || url,static.windupdates.com/Release/v19/Info.txt || url,www.benedelman.org/news/010205-1.html
2001793 || ET MALWARE Incredisearch.com Spyware Ping || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Incredisearch.com || url,doc.emergingthreats.net/bin/view/Main/2001793
2001794 || ET MALWARE Incredisearch.com Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Incredisearch.com || url,doc.emergingthreats.net/bin/view/Main/2001794
2001795 || ET DOS Excessive SMTP MAIL-FROM DDoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Mail-From || url,doc.emergingthreats.net/bin/view/Main/2001795
2001796 || ET P2P Kazaa over UDP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Kazaa || url,doc.emergingthreats.net/bin/view/Main/2001796 || url,www.kazaa.com/us/index.htm
2001801 || ET POLICY ICQ Status Invisible || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_ICQ || url,doc.emergingthreats.net/2001801
2001802 || ET POLICY ICQ Status Change (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_ICQ || url,doc.emergingthreats.net/2001802
2001803 || ET POLICY ICQ Status Change (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_ICQ || url,doc.emergingthreats.net/2001803
2001804 || ET POLICY ICQ Login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_ICQ || url,doc.emergingthreats.net/2001804
2001805 || ET POLICY ICQ Message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_ICQ || url,doc.emergingthreats.net/2001805
2001806 || ET POLICY Administrator Login Detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Administrator_Login || url,doc.emergingthreats.net/bin/view/Main/2001806
2001807 || ET EXPLOIT CAN-2005-0399 Gif Vuln via http || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Mozilla-Firefox || url,doc.emergingthreats.net/bin/view/Main/2001807 || cve,2005-0399
2001808 || ET P2P LimeWire P2P Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Limewire || url,doc.emergingthreats.net/bin/view/Main/2001808 || url,www.limewire.com
2001809 || ET P2P Limewire P2P UDP Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Limewire || url,doc.emergingthreats.net/bin/view/Main/2001809 || url,www.limewire.com
2001810 || ET WEB Explit PHP remote file include exploit attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHP_Injection || url,doc.emergingthreats.net/2001810
2001811 || ET WEB Encoded javascriptdocument.write - usually hostile || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MISC_Encrypted_Web_Content || url,doc.emergingthreats.net/2001811
2001812 || ET P2P KazaaClient P2P Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Kazaa || url,doc.emergingthreats.net/bin/view/Main/2001812 || url,www.kazaa.com/us/index.htm
2001813 || ET EXPLOIT MSIE Hidden Address Bar (Phish) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2001813 || cve,2001-1410 || url,securityresponse.symantec.com/avcenter/venc/data/js.trojan.blinder.html || url,www.guninski.com/popspoof.html
2001815 || ET MALWARE Spambot Suspicious 220 Banner on Local Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spambots || url,doc.emergingthreats.net/bin/view/Main/2001815
2001841 || ET P2P UDP traffic - Likely Limewire || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Limewire || url,doc.emergingthreats.net/bin/view/Main/2001841 || url,www.limewire.com
2001846 || ET DOS -ISC- ICMP blind TCP reset DoS guessing attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_MS05-019 || url,doc.emergingthreats.net/bin/view/Main/2001846 || url,isc.sans.org/diary.php?date=2005-04-12 || url,www.microsoft.com/technet/security/bulletin/MS05-019.mspx || cve,can-2004-0790
2001848 || ET EXPLOIT MS05-021 Exchange Link State - Possible Attack (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-021 || url,doc.emergingthreats.net/bin/view/Main/2001848 || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
2001849 || ET EXPLOIT MS05-021 Exchange Link State - Possible Attack (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-021 || url,doc.emergingthreats.net/bin/view/Main/2001849 || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
2001850 || ET MALWARE Likely Trojan/Spyware Installer Requested (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_General_Requests || url,doc.emergingthreats.net/bin/view/Main/2001850
2001852 || ET MALWARE 404Search Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001852
2001853 || ET MALWARE Easy Search Bar Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001853
2001854 || ET MALWARE EZULA Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001854
2001855 || ET MALWARE Fun Web Products Spyware User Agent (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001855
2001858 || ET MALWARE Hotbar Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001858
2001862 || ET MALWARE Surf Assistant Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001862
2001864 || ET MALWARE Fun Web Products Spyware User Agent (3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001864
2001865 || ET MALWARE MyWebSearch Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001865
2001867 || ET MALWARE Search Engine 2000 Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001867
2001868 || ET MALWARE SureSeeker Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001868
2001869 || ET MALWARE Sidesearch Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001869
2001870 || ET MALWARE Surfplayer Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001870
2001871 || ET MALWARE Target Saver Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001871
2001872 || ET MALWARE Visicom Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001872
2001873 || ET EXPLOIT MS Exchange Link State Routing Chunk (maybe MS05-021) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-021 || url,doc.emergingthreats.net/bin/view/Main/2001873 || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
2001874 || ET EXPLOIT TCP Reset from MS Exchange after chunked data, probably crashed it (MS05-021) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-021 || url,doc.emergingthreats.net/bin/view/Main/2001874 || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
2001875 || ET EXPLOIT MS Exchange chunks accepted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-021 || url,doc.emergingthreats.net/bin/view/Main/2001875 || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
2001876 || ET EXPLOIT MS Exchange disliked link state chunk, but didn't die (MS05-021) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-021 || url,doc.emergingthreats.net/bin/view/Main/2001876 || url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx || url,isc.sans.org/diary.php?date=2005-04-12 || cve,CAN-2005-0560
2001879 || ET VIRUS Sober-style Ehlo - noalert || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Sober || url,doc.emergingthreats.net/2001879 || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober@mm.html
2001880 || ET VIRUS Sober-style Ehlo followed by SMTP AUTH - noalert || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Sober || url,doc.emergingthreats.net/2001880 || url,securityresponse.symantec.com/avcenter/venc/data/w32.sober@mm.html
2001882 || ET DOS ICMP Path MTU lowered below acceptable threshold || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_MS05-019 || url,doc.emergingthreats.net/bin/view/Main/2001882 || url,isc.sans.org/diary.php?date=2005-04-12 || url,www.microsoft.com/technet/security/bulletin/MS05-019.mspx || cve,CAN-2004-1060
2001884 || ET MALWARE DesktopTraffic Toolbar Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_DeskTopTraffic || url,doc.emergingthreats.net/bin/view/Main/2001884 || url,research.spysweeper.com/threat_library/threat_details.php?threat=desktoptraffic.net_hijack
2001885 || ET MALWARE Begin2Search.com Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Begin2Search || url,doc.emergingthreats.net/bin/view/Main/2001885 || url,sarc.com/avcenter/venc/data/adware.begin2search.html
2001886 || ET MALWARE ToolbarPartner Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ToolBarPartner || url,doc.emergingthreats.net/bin/view/Main/2001886 || url,toolbarpartner.com
2001887 || ET MALWARE ToolbarPartner Spyware Activity (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ToolBarPartner || url,doc.emergingthreats.net/bin/view/Main/2001887 || url,toolbarpartner.com
2001888 || ET MALWARE ToolbarPartner Spyware Activity (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ToolBarPartner || url,doc.emergingthreats.net/bin/view/Main/2001888 || url,toolbarpartner.com
2001889 || ET MALWARE ToolbarPartner Spyware Jeemp Trojan Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ToolBarPartner || url,doc.emergingthreats.net/bin/view/Main/2001889 || url,toolbarpartner.com
2001890 || ET MALWARE ToolbarPartner Spyware Agent Download (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ToolBarPartner || url,doc.emergingthreats.net/bin/view/Main/2001890 || url,toolbarpartner.com
2001891 || ET MALWARE Suspicious User Agent (agent) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001891
2001892 || ET MALWARE ToolbarPartner Spyware Agent Download (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ToolBarPartner || url,doc.emergingthreats.net/bin/view/Main/2001892 || url,toolbarpartner.com
2001893 || ET MALWARE ToolbarPartner Spyware Agent Reporting Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ToolBarPartner || url,doc.emergingthreats.net/bin/view/Main/2001893 || url,toolbarpartner.com
2001894 || ET MALWARE ToolbarPartner Spyware Agent Partner Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ToolBarPartner || url,doc.emergingthreats.net/bin/view/Main/2001894 || url,toolbarpartner.com
2001895 || ET MALWARE ToolbarPartner Spyware Spambot Retrieving Target Emails || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ToolBarPartner || url,doc.emergingthreats.net/bin/view/Main/2001895 || url,toolbarpartner.com
2001898 || ET POLICY eBay Bid Placed || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Ebay || url,doc.emergingthreats.net/2001898
2001901 || ET TROJAN Possible Bobax trojan infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_HTTP_Botnets || url,doc.emergingthreats.net/2001901 || url,www.lurhq.com/bobax.html
2001904 || ET SCAN Behavioral Unusually fast inbound Telnet Connections, Potential Scan or Brute Force || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Telnet || url,doc.emergingthreats.net/2001904 || url,www.rapid7.com/nexpose-faq-answer2.htm
2001906 || ET SCAN MYSQL 4.0 brute force root login attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Mysql || url,doc.emergingthreats.net/2001906 || url,www.redferni.uklinux.net/mysql/MySQL-323.html
2001907 || ET POLICY eBay Placing Item for sale || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Ebay || url,doc.emergingthreats.net/2001907
2001908 || ET POLICY eBay View Item || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Ebay || url,doc.emergingthreats.net/2001908
2001909 || ET POLICY eBay Watch This Item || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Ebay || url,doc.emergingthreats.net/2001909
2001910 || ET WORM AIM Bot Outbound Control Channel Open and Login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_AIM_Bot || url,doc.emergingthreats.net/2001910
2001919 || ET VIRUS Greeting card gif.exe email incoming SMTP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Postcard || url,doc.emergingthreats.net/2001919 || url,securityresponse.symantec.com/avcenter/venc/data/vbs.postcard@mm.html
2001920 || ET VIRUS Greeting card gif.exe email incoming POP3/IMAP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Postcard || url,doc.emergingthreats.net/2001920 || url,securityresponse.symantec.com/avcenter/venc/data/vbs.postcard@mm.html
2001921 || ET VIRUS Greeting card gif.exe email incoming HTTP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Postcard || url,doc.emergingthreats.net/2001921 || url,securityresponse.symantec.com/avcenter/venc/data/vbs.postcard@mm.html
2001928 || ET WEB_SPECIFIC XSS Possible Arbitrary Scripting Code Attack in phpBB (private message) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPBB || url,doc.emergingthreats.net/2001928 || url,www.securitytracker.com/alerts/2005/May/1013918.html
2001929 || ET WEB_SPECIFIC XSS Possible Arbitrary Scripting Code Attack in phpBB (signature) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPBB || url,doc.emergingthreats.net/2001929 || url,www.securitytracker.com/alerts/2005/May/1013918.html
2001932 || ET EXPLOIT wowBB view_user.php SQL Injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_wowBB || url,doc.emergingthreats.net/bin/view/Main/2001932 || bugtraq,13569
2001933 || ET VIRUS PWS Banker Trojan Sending Report of Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PWS_Banker || url,doc.emergingthreats.net/2001933 || url,securityresponse.symantec.com/avcenter/venc/data/pwsteal.banker.b.html
2001944 || ET EXPLOIT MS04-007 Kill-Bill ASN1 exploit attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS04-007 || url,doc.emergingthreats.net/bin/view/Main/2001944 || cve,CAN-2003-0818 || url,www.microsoft.com/technet/security/bulletin/MS04-007.mspx || url,www.phreedom.org/solar/exploits/msasn1-bitstring/
2001945 || ET WEB WebAPP Apage.CGI Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Apache.cgi || url,doc.emergingthreats.net/2001945 || bugtraq,13637
2001947 || ET MALWARE Zenotecnico Adware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Zenotecnico || url,doc.emergingthreats.net/bin/view/Main/2001947 || url,www.zenotecnico.com
2001949 || ET WEB_SPECIFIC Athena Web Registration Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Athena || url,doc.emergingthreats.net/2001949 || bugtraq,9349 || cve,CAN-2004-1782
2001954 || ET EXPLOIT Meteor FTP Server Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Meteor_FTP || url,doc.emergingthreats.net/bin/view/Main/2001954 || url,www.securiteam.com/exploits/5RP0Q2KFPC.html
2001959 || ET VIRUS Hotword Trojan in Transit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Hotword || url,doc.emergingthreats.net/2001959 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
2001960 || ET VIRUS Hotword Trojan inbound via http || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Hotword || url,doc.emergingthreats.net/2001960 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
2001961 || ET VIRUS Hotword Trojan - Possible File Upload CHJO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Hotword || url,doc.emergingthreats.net/2001961 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
2001962 || ET VIRUS Hotword Trojan - Possible File Upload CFXP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Hotword || url,doc.emergingthreats.net/2001962 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
2001963 || ET VIRUS Hotword Trojan - Possible FTP File Request pspv.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Hotword || url,doc.emergingthreats.net/2001963 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
2001964 || ET VIRUS Hotword Trojan - Possible FTP File Request .tea || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Hotword || url,doc.emergingthreats.net/2001964 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
2001965 || ET VIRUS Hotword Trojan - Possible FTP File Status Upload ___ || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Hotword || url,doc.emergingthreats.net/2001965 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
2001966 || ET VIRUS Hotword Trojan - Possible FTP File Status Check ___ || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Hotword || url,doc.emergingthreats.net/2001966 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.hotword.html
2001972 || ET SCAN Behavioral Unusually fast Terminal Server Traffic, Potential Scan or Infection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Term_Server || url,doc.emergingthreats.net/2001972
2001973 || ET POLICY SSH Server Banner Detected on Expected Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001973
2001974 || ET POLICY SSH Client Banner Detected on Expected Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001974
2001975 || ET POLICY SSHv2 Server KEX Detected on Expected Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001975
2001976 || ET POLICY SSHv2 Client KEX Detected on Expected Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001976
2001977 || ET POLICY SSHv2 Client New Keys detected on Expected Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001977
2001978 || ET POLICY SSH session in progress on Expected Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001978
2001979 || ET POLICY SSH Server Banner Detected on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001979
2001980 || ET POLICY SSH Client Banner Detected on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001980
2001981 || ET POLICY SSHv2 Server KEX Detected on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001981
2001982 || ET POLICY SSHv2 Client KEX Detected on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001982
2001983 || ET POLICY SSHv2 Client New Keys Detected on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001983
2001984 || ET POLICY SSH session in progress on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Non-Standard_SSH_Port || url,doc.emergingthreats.net/2001984
2001985 || ET VIRUS HTTP RBOT Challenge/Response Authentication || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_RBOT || url,doc.emergingthreats.net/2001985 || url,www.phreedom.org/solar/exploits/msasn1-bitstring || url,isc.sans.org/diary.php?date=2005-06-03
2001988 || ET EXPLOIT MySQL MaxDB Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MySQL_MaxDB || url,doc.emergingthreats.net/bin/view/Main/2001988
2001989 || ET POLICY Prospero Chat Session in Progress || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Prospero_Chat || url,doc.emergingthreats.net/2001989 || url,www.prospero.com/technology.htm
2001990 || ET EXPLOIT JamMail Jammail.pl Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Jammail || url,doc.emergingthreats.net/bin/view/Main/2001990 || bugtraq,13937
2001991 || ET EXPLOIT WebHints Scripts Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Webhints || url,doc.emergingthreats.net/bin/view/Main/2001991 || bugtraq,13930
2001992 || ET MALWARE SurfSidekick Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SurfSidekick || url,doc.emergingthreats.net/bin/view/Main/2001992 || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfsidekick.html
2001994 || ET MALWARE SurfSidekick Activity (ipixel) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SurfSidekick || url,doc.emergingthreats.net/bin/view/Main/2001994 || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfsidekick.html
2001995 || ET MALWARE UCMore Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_UCmore || url,doc.emergingthreats.net/bin/view/Main/2001995 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=58660
2001996 || ET MALWARE UCMore Spyware Activity User Agent String || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2001996
2001997 || ET MALWARE TargetNetworks.net Spyware Reporting (req) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TargetNetworks.net || url,doc.emergingthreats.net/bin/view/Main/2001997 || url,www.targetnetworks.com
2001998 || ET MALWARE UCMore Spyware Downloading Ads || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_UCmore || url,doc.emergingthreats.net/bin/view/Main/2001998 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=58660
2001999 || ET MALWARE BTGrab.com Spyware Downloading Ads || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_BTGrab.com || url,doc.emergingthreats.net/bin/view/Main/2001999 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453090726 || url,www.btgrab.com
2002000 || ET MALWARE Shopnav Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ShopNav || url,doc.emergingthreats.net/bin/view/Main/2002000 || url,securityresponse.symantec.com/avcenter/venc/data/spyware.shopnav.html
2002001 || ET MALWARE 180solutions Spyware Keywords Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2002001 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2002002 || ET MALWARE Better Internet Spyware User Agent Activity (thnall) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002002
2002003 || ET MALWARE 180solutions Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2002003 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2002004 || ET MALWARE Topconverting Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Topconverting.com || url,doc.emergingthreats.net/bin/view/Main/2002004 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2002005 || ET MALWARE Better Internet Spyware User Agent Activity (poller) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002005
2002008 || ET MALWARE Wild Tangent Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Wildmedia || url,doc.emergingthreats.net/bin/view/Main/2002008 || mcafee,122249
2002009 || ET MALWARE ESyndicate Spyware Install (esyndicateinst.exe) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ESyndicate || url,doc.emergingthreats.net/bin/view/Main/2002009 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453094058
2002010 || ET MALWARE ESyndicate Spyware Install (sepinst.exe) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ESyndicate || url,doc.emergingthreats.net/bin/view/Main/2002010 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453094058
2002011 || ET MALWARE PeopleonPage Spyware User Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002011
2002012 || ET MALWARE GrandstreetInteractive.com Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_GrandStreetInteractive.com || url,doc.emergingthreats.net/bin/view/Main/2002012
2002013 || ET MALWARE GrandstreetInteractive.com Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_GrandStreetInteractive.com || url,doc.emergingthreats.net/bin/view/Main/2002013
2002015 || ET MALWARE Internet Fuel.com Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Internet_Fuel || url,doc.emergingthreats.net/bin/view/Main/2002015
2002016 || ET MALWARE jmnad1.com Spyware Install (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Jmnad1.com || url,doc.emergingthreats.net/bin/view/Main/2002016
2002017 || ET MALWARE Overpro Spyware Install Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Overpro || url,doc.emergingthreats.net/bin/view/Main/2002017 || url,securityresponse.symantec.com/avcenter/venc/data/adware.overpro.html
2002019 || ET MALWARE jmnad1.com Spyware Install (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Jmnad1.com || url,doc.emergingthreats.net/bin/view/Main/2002019
2002021 || ET MALWARE Grandstreet Interactive Spyware User Agent Activity (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002021
2002022 || ET POLICY GotoMyPC poll.gotomypc.com Server Response to Polling Client OK || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_GotoMyPC || url,doc.emergingthreats.net/2002022
2002023 || ET TROJAN IRC USER command || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002023
2002024 || ET TROJAN IRC NICK command || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002024
2002025 || ET TROJAN IRC JOIN command || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002025
2002026 || ET TROJAN IRC PRIVMSG command || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002026
2002027 || ET TROJAN IRC PING command || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002027
2002028 || ET TROJAN IRC PONG response || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002028
2002029 || ET TROJAN BOT - channel topic scan/exploit command || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002029
2002030 || ET TROJAN BOT - potential scan/exploit command || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002030
2002031 || ET TROJAN BOT - potential update/download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002031
2002032 || ET TROJAN BOT - potential DDoS command (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002032
2002033 || ET TROJAN BOT - potential response || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002033
2002034 || ET ATTACK RESPONSE Possible /etc/passwd via HTTP (linux style) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_etc-passwd || url,doc.emergingthreats.net/bin/view/Main/2002034
2002036 || ET MALWARE Weird on the Web /180 Solutions Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weirdontheweb || url,doc.emergingthreats.net/bin/view/Main/2002036 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2002037 || ET MALWARE Shop at Home Select Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_ShopAtHomeSelect || url,doc.emergingthreats.net/bin/view/Main/2002037 || url,securityresponse.symantec.com/avcenter/venc/data/adware.sahagent.html
2002038 || ET MALWARE Shopathomeselect.com Spyware User Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002038
2002040 || ET MALWARE Topconverting Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Topconverting.com || url,doc.emergingthreats.net/bin/view/Main/2002040 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2002041 || ET MALWARE Weird on the Web /180 Solutions Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weirdontheweb || url,doc.emergingthreats.net/bin/view/Main/2002041 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2002044 || ET MALWARE OutBlaze.com Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Outblaze.com || url,doc.emergingthreats.net/bin/view/Main/2002044
2002046 || ET MALWARE TargetNetworks.net Spyware Reporting (tn) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_TargetNetworks.net || url,doc.emergingthreats.net/bin/view/Main/2002046 || url,www.targetnetworks.com
2002047 || ET MALWARE surfaccuracy Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002047 || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfaccuracy.html
2002048 || ET MALWARE 180solutions Spyware Defs Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2002048 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2002061 || ET EXPLOIT Possible BackupExec Metasploit Exploit (inbound) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Veritas_BUExec || url,doc.emergingthreats.net/bin/view/Main/2002061 || url,www.metasploit.org/projects/Framework/modules/exploits/backupexec_agent.pm || url,isc.sans.org/diary.php?date=2005-06-27
2002062 || ET EXPLOIT Possible BackupExec Metasploit Exploit (outbound) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Veritas_BUExec || url,doc.emergingthreats.net/bin/view/Main/2002062 || url,www.metasploit.org/projects/Framework/modules/exploits/backupexec_agent.pm || url,isc.sans.org/diary.php?date=2005-06-27
2002064 || ET EXPLOIT ms05-011 exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-011 || url,doc.emergingthreats.net/bin/view/Main/2002064 || url,www.frsirt.com/exploits/20050623.mssmb_poc.c.php || bugtraq,12484
2002065 || ET EXPLOIT Veritas backupexec_agent exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Veritas_BUExec || url,doc.emergingthreats.net/bin/view/Main/2002065 || url,isc.sans.org/diary.php?date=2005-06-27
2002066 || ET WEB_SPECIFIC CSV-DB CSV_DB.CGI Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CSV-DB || url,doc.emergingthreats.net/2002066 || bugtraq,14059
2002067 || ET WEB_SPECIFIC Community Link Pro Login.CGI Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Community_Link || url,doc.emergingthreats.net/2002067 || bugtraq,14097
2002068 || ET EXPLOIT NDMP Notify Connect - Possible Backup Exec Remote Agent Recon || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Veritas_BUExec || url,doc.emergingthreats.net/bin/view/Main/2002068 || url,www.ndmp.org/download/sdk_v4/draft-skardal-ndmp4-04.txt
2002069 || ET WEB_SPECIFIC Blog Spam Insert Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_BlogSpam || url,doc.emergingthreats.net/2002069 || url,www.webmasterworld.com/forum92/3683.htm || url,lists.geeklog.net/pipermail/geeklog-spam/2005-June/000020.html || url,spamhuntress.com/2005/05/14/new-block-for-bulgarians/
2002070 || ET WEB_SPECIFIC phpBB Remote Code Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPBB || url,doc.emergingthreats.net/2002070 || url,www.securiteam.com/unixfocus/6Z00R2ABPY.html || bugtraq,14086 || url,secunia.com/advisories/15845/
2002071 || ET MALWARE XupiterToolbar Spyware User Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002071 || url,castlecops.com/tk781-Xupitertoolbar_dll_t_dll.html
2002074 || ET MALWARE Win32.Stubby Spyware User Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002074 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453088437
2002076 || ET MALWARE New.net Spyware User Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002076 || url,www.pcsympathy.com/printout74.html || url,www.newdotnet.com
2002078 || ET MALWARE SideStep Spyware User Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002078
2002079 || ET MALWARE MyWaySearch Products Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002079
2002080 || ET MALWARE MySearch Products Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002080
2002082 || ET POLICY Unusual User Agent (Client) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Infotriever || url,doc.emergingthreats.net/2002082
2002083 || ET MALWARE Pacimedia Spyware 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Pacimedia || url,doc.emergingthreats.net/bin/view/Main/2002083
2002087 || ET POLICY Inbound Frequent Emails - Possible Spambot Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Unauthorized_SMTP || url,doc.emergingthreats.net/2002087
2002088 || ET MALWARE C4tdownload.com Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_C4tdownload.com || url,doc.emergingthreats.net/bin/view/Main/2002088 || url,sarc.com/avcenter/venc/data/adware.clickdloader.b.html
2002089 || ET MALWARE CWS qck.cc Spyware Installer (in.php) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CWS || url,doc.emergingthreats.net/bin/view/Main/2002089 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453076035
2002090 || ET MALWARE IEHelp.net Spyware Installer || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_IEHelp.net || url,doc.emergingthreats.net/bin/view/Main/2002090 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.domcom.html
2002091 || ET MALWARE Searchmiracle.com Spyware Install - silent.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchmiracle.com || url,doc.emergingthreats.net/bin/view/Main/2002091 || url,www.searchmiracle.com
2002092 || ET MALWARE yupsearch.com Spyware Install - protector.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Yupsearch.com || url,doc.emergingthreats.net/bin/view/Main/2002092 || url,www.yupsearch.com
2002093 || ET MALWARE Likely Trojan/Spyware Installer Requested (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_General_Requests || url,doc.emergingthreats.net/bin/view/Main/2002093
2002094 || ET MALWARE MSUpdater.net Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MSUpdater.net || url,doc.emergingthreats.net/bin/view/Main/2002094
2002095 || ET MALWARE CWS qck.cc Spyware Installer (web.php) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CWS || url,doc.emergingthreats.net/bin/view/Main/2002095 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453076035
2002096 || ET MALWARE IEHelp.net Spyware checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_IEHelp.net || url,doc.emergingthreats.net/bin/view/Main/2002096 || url,securityresponse.symantec.com/avcenter/venc/data/trojan.domcom.html
2002097 || ET MALWARE IEHelp.net Spyware User Agent Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002097
2002098 || ET MALWARE yupsearch.com Spyware Install - sideb.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Yupsearch.com || url,doc.emergingthreats.net/bin/view/Main/2002098 || url,www.yupsearch.com
2002099 || ET MALWARE 180solutions Spyware config Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2002099 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2002100 || ET WEB WPS wps_shop.cgi Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_WPS || url,doc.emergingthreats.net/2002100 || bugtraq,14245
2002101 || ET GAMES Battle.net Starcraft login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002101
2002102 || ET GAMES Battle.net Brood War login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002102
2002103 || ET GAMES Battle.net Diablo login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002103
2002104 || ET GAMES Battle.net Diablo 2 login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002104
2002105 || ET GAMES Battle.net Diablo 2 Lord of Destruction login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002105
2002106 || ET GAMES Battle.net Warcraft 2 login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002106
2002107 || ET GAMES Battle.net Warcraft 3 login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002107
2002108 || ET GAMES Battle.net Warcraft 3\: The Frozen throne login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002108
2002109 || ET GAMES Battle.net old game version || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002109
2002110 || ET GAMES Battle.net invalid version || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002110
2002111 || ET GAMES Battle.net invalid cdkey || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002111
2002112 || ET GAMES Battle.net cdkey in use || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002112
2002113 || ET GAMES Battle.net banned key || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002113
2002114 || ET GAMES Battle.net wrong product || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002114
2002115 || ET GAMES Battle.net failed account login (OLS)\: wrong password || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002115
2002116 || ET GAMES Battle.net failed account login (NLS)\: wrong password || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002116
2002117 || ET GAMES Battle.net connection reset (possible IP-Ban) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002117
2002118 || ET GAMES Battle.net user in channel || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002118
2002119 || ET GAMES Battle.net outgoing chat message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002119
2002120 || ET EXPLOIT Potential MS05-036 exploit - JPEG with embedded ICC - Excessive Profile Size || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-036 || url,doc.emergingthreats.net/bin/view/Main/2002120 || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
2002121 || ET EXPLOIT Potential MS05-036 exploit - JPEG with embedded ICC - Excessive Tag Count || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-036 || url,doc.emergingthreats.net/bin/view/Main/2002121 || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
2002122 || ET EXPLOIT Potential MS05-036 exploit - GIF with embedded ICC - Excessive Profile Size || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-036 || url,doc.emergingthreats.net/bin/view/Main/2002122 || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
2002123 || ET EXPLOIT Potential MS05-036 exploit - GIF with embedded ICC - Excessive Tag Count || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-036 || url,doc.emergingthreats.net/bin/view/Main/2002123 || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
2002124 || ET EXPLOIT Potential MS05-036 exploit - PNG with embedded ICC document || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-036 || url,doc.emergingthreats.net/bin/view/Main/2002124 || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
2002127 || ET EXPLOIT Firefox Set Wallpaper Code Execution Attempt (img) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Mozilla-Firefox || url,doc.emergingthreats.net/bin/view/Main/2002127 || url,www.mozilla.org/security/announce/mfsa2005-47.html || url,secunia.com/advisories/16043/
2002128 || ET EXPLOIT Firefox Set Wallpaper Code Execution Attempt (input) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Mozilla-Firefox || url,doc.emergingthreats.net/bin/view/Main/2002128 || url,www.mozilla.org/security/announce/mfsa2005-47.html || url,secunia.com/advisories/16043/
2002129 || ET WEB Cacti Input Validation Attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Cacti || url,doc.emergingthreats.net/2002129 || url,www.idefense.com/application/poi/display?id=266&type=vulnerabilities || url,www.idefense.com/application/poi/display?id=265&type=vulnerabilities || url,www.cacti.net
2002130 || ET WEB Oracle Reports XSS Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Oracle || url,doc.emergingthreats.net/2002130 || url,www.red-database-security.com/advisory/oracle_reports_various_css.html || url,www.oracle.com/technology/products/reports/index.html
2002131 || ET WEB Oracle Reports XML Information Disclosure || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Oracle || url,doc.emergingthreats.net/2002131 || url,www.red-database-security.com/advisory/oracle_reports_read_any_xml_file.html || url,www.oracle.com/technology/products/reports/index.html
2002132 || ET WEB Oracle Reports DESFORMAT Information Disclosure || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Oracle || url,doc.emergingthreats.net/2002132 || url,www.red-database-security.com/advisory/oracle_reports_read_any_file.html || url,www.oracle.com/technology/products/reports/index.html
2002133 || ET WEB Oracle Reports OS Command Injection Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Oracle || url,doc.emergingthreats.net/2002133 || url,www.red-database-security.com/advisory/oracle_reports_run_any_os_command.html || url,www.oracle.com/technology/products/reports/index.html
2002134 || ET EXPLOIT MS05-036 exploit - JPEG ICC r/b/g/XYZ GetColorProfileElement overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-036 || url,doc.emergingthreats.net/bin/view/Main/2002134 || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
2002137 || ET EXPLOIT MS05-036 exploit - GIF ICC r/b/g/XYZ GetColorProfileElement overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-036 || url,doc.emergingthreats.net/bin/view/Main/2002137 || cve,CVE-2005-1219 || url,www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
2002138 || ET GAMES World of Warcraft connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002138
2002139 || ET GAMES World of Warcraft failed logon || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002139
2002140 || ET GAMES Battle.net user joined channel || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002140
2002141 || ET GAMES Battle.net user left channel || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002141
2002142 || ET GAMES Battle.net received whisper message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002142
2002143 || ET GAMES Battle.net received server broadcast || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002143
2002144 || ET GAMES Battle.net joined channel || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002144
2002145 || ET GAMES Battle.net user had a flags update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002145
2002146 || ET GAMES Battle.net sent a whisper || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002146
2002147 || ET GAMES Battle.net channel full || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002147
2002148 || ET GAMES Battle.net channel doesn't exist || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002148
2002149 || ET GAMES Battle.net channel is restricted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002149
2002150 || ET GAMES Battle.net informational message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002150
2002151 || ET GAMES Battle.net error message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002151
2002152 || ET GAMES Battle.net 'emote' message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002152
2002153 || ET MALWARE EXE as User Agent - Potential Malware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002153
2002154 || ET GAMES Guild Wars connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002154
2002155 || ET GAMES Steam connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Steam || url,doc.emergingthreats.net/bin/view/Main/2002155
2002157 || ET POLICY Skype User-Agent detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Skype || url,doc.emergingthreats.net/2002157
2002158 || ET EXPLOIT XML-RPC for PHP Remote Code Injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_PHP || url,doc.emergingthreats.net/bin/view/Main/2002158 || cve,2005-1921 || url,www.securityfocus.com/bid/14088/exploit
2002160 || ET MALWARE CoolWebSearch Spyware (Feat) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002160 || url,www.doxdesk.com/parasite/CoolWebSearch.html || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453075759 || url,www.spywareguide.com/product_show.php?id=599
2002164 || ET MALWARE Hotbar Spyware User-Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002164 || url,www.pchell.com/support/hotbar.shtml || url,www.doxdesk.com/parasite/Hotbar.html
2002166 || ET MALWARE Alexa Search Toolbar User-Agent (Alexa Toolbar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002166 || url,www.spywareguide.com/product_show.php?id=418
2002167 || ET POLICY Software Install Reporting via HTTP - Wise User Agent (Wise) Sometimes Malware Related || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Wise || url,doc.emergingthreats.net/2002167 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453076771
2002169 || ET MALWARE iWon Spyware (iWonSearchAssistant) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002169 || url,www.spywareguide.com/product_show.php?id=461
2002170 || ET GAMES Battle.net incoming chat message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Battlenet || url,doc.emergingthreats.net/bin/view/Main/2002170
2002171 || ET WEB_ACTIVEX COM Object Instantiation Memory Corruption Vulnerability (group 1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-038 || url,doc.emergingthreats.net/2002171 || url,www.microsoft.com/technet/security/Bulletin/MS05-038.mspx || cve,2005-1990
2002172 || ET WEB_ACTIVEX COM Object Instantiation Memory Corruption Vulnerability (group 2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-038 || url,doc.emergingthreats.net/2002172 || url,www.microsoft.com/technet/security/Bulletin/MS05-038.mspx || cve,2005-1990
2002173 || ET WEB_ACTIVEX COM Object Instantiation Memory Corruption Vulnerability (group 3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-038 || url,doc.emergingthreats.net/2002173 || url,www.microsoft.com/technet/security/Bulletin/MS05-038.mspx || cve,2005-1990
2002174 || ET WEB_ACTIVEX CLSID Pattern Matched || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-038 || url,doc.emergingthreats.net/2002174
2002175 || ET TROJAN Srv.SSA-KeyLogger Checkin Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Srv.SSA-KeyLogger || url,doc.emergingthreats.net/2002175
2002181 || ET EXPLOIT Backup Exec Windows Agent Remote File Access - Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Veritas_BUExec || url,doc.emergingthreats.net/bin/view/Main/2002181 || url,www.frsirt.com/exploits/20050811.backupexec_dump.pm.php || url,www.frsirt.com/english/advisories/2005/1387
2002182 || ET EXPLOIT Backup Exec Windows Agent Remote File Access - Vulnerable || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Veritas_BUExec || url,doc.emergingthreats.net/bin/view/Main/2002182 || url,www.frsirt.com/exploits/20050811.backupexec_dump.pm.php || url,www.frsirt.com/english/advisories/2005/1387
2002186 || ET EXPLOIT SMB-DS Microsoft Windows 2000 Plug and Play Vulnerability || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-039 || url,doc.emergingthreats.net/bin/view/Main/2002186 || url,isc.sans.org/diary.php?date=2005-08-14 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx
2002187 || ET EXPLOIT NETBIOS SMB Microsoft Windows 2000 PNP Vuln || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-039 || url,doc.emergingthreats.net/bin/view/Main/2002187 || url,isc.sans.org/diary.php?date=2005-08-14 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx
2002188 || ET EXPLOIT NETBIOS SMB-DS Microsoft Windows 2000 PNP Vuln || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-039 || url,doc.emergingthreats.net/bin/view/Main/2002188 || url,isc.sans.org/diary.php?date=2005-08-14 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx
2002192 || ET POLICY MSN status change || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_MSN || url,doc.emergingthreats.net/2002192
2002194 || ET MALWARE Pacimedia Spyware 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Pacimedia || url,doc.emergingthreats.net/bin/view/Main/2002194
2002195 || ET MALWARE Casalemedia Spyware Reporting URL Visited1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Casalemedia.com || url,doc.emergingthreats.net/bin/view/Main/2002195
2002196 || ET MALWARE Casalemedia Spyware Reporting URL Visited2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Casalemedia.com || url,doc.emergingthreats.net/bin/view/Main/2002196
2002199 || ET EXPLOIT SMB-DS DCERPC PnP HOD bind attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-039 || url,doc.emergingthreats.net/bin/view/Main/2002199
2002200 || ET EXPLOIT SMB-DS DCERPC PnP bind attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-039 || url,doc.emergingthreats.net/bin/view/Main/2002200
2002201 || ET EXPLOIT SMB-DS DCERPC PnP QueryResConfList exploit attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-039 || url,doc.emergingthreats.net/bin/view/Main/2002201 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx || cve,CAN-2005-1983
2002202 || ET EXPLOIT SMB DCERPC PnP bind attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-039 || url,doc.emergingthreats.net/bin/view/Main/2002202
2002203 || ET EXPLOIT SMB DCERPC PnP QueryResConfList exploit attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-039 || url,doc.emergingthreats.net/bin/view/Main/2002203 || url,www.microsoft.com/technet/security/Bulletin/MS05-039.mspx || cve,CAN-2005-1983
2002296 || ET MALWARE Searchfeed.com Spyware 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchfeed.com || url,doc.emergingthreats.net/bin/view/Main/2002296 || url,www.searchfeed.com
2002297 || ET MALWARE Searchfeed.com Spyware 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchfeed.com || url,doc.emergingthreats.net/bin/view/Main/2002297 || url,www.searchfeed.com
2002298 || ET MALWARE Searchfeed.com Spyware 3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchfeed.com || url,doc.emergingthreats.net/bin/view/Main/2002298 || url,www.searchfeed.com
2002299 || ET MALWARE Searchfeed.com Spyware 4 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchfeed.com || url,doc.emergingthreats.net/bin/view/Main/2002299 || url,www.searchfeed.com
2002300 || ET MALWARE Searchfeed.com Spyware 5 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchfeed.com || url,doc.emergingthreats.net/bin/view/Main/2002300 || url,www.searchfeed.com
2002301 || ET MALWARE Searchfeed.com Spyware 6 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchfeed.com || url,doc.emergingthreats.net/bin/view/Main/2002301 || url,www.searchfeed.com
2002302 || ET MALWARE Searchfeed.com Spyware 7 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchfeed.com || url,doc.emergingthreats.net/bin/view/Main/2002302 || url,www.searchfeed.com
2002303 || ET MALWARE Searchfeed.com Spyware 8 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Searchfeed.com || url,doc.emergingthreats.net/bin/view/Main/2002303 || url,www.searchfeed.com
2002304 || ET MALWARE Advertising.com Reporting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Advertising.com_Bot || url,doc.emergingthreats.net/bin/view/Main/2002304 || url,securityresponse.symantec.com/avcenter/venc/data/adware.fastseek.html
2002305 || ET MALWARE Fun Web Products Smileychooser Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2002305 || url,www.funwebproducts.com
2002306 || ET MALWARE Fun Web Products Cursorchooser Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2002306 || url,www.funwebproducts.com
2002307 || ET MALWARE Fun Web Products Stampchooser Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2002307 || url,www.funwebproducts.com
2002308 || ET WEB_ACTIVEX Internet Explorer Vulnerable CLSID (Msdds.dll) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-038 || url,doc.emergingthreats.net/2002308 || url,www.frsirt.com/exploits/20050817.IE-Msddsdll-0day.php
2002309 || ET MALWARE Metarewards Disclaimer Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Metarward.com || url,doc.emergingthreats.net/bin/view/Main/2002309
2002310 || ET MALWARE Fun Web Products Smileychooser Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2002310 || url,www.funwebproducts.com
2002312 || ET POLICY MSN Game Loading || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_MSN || url,doc.emergingthreats.net/2002312
2002313 || ET WEB Cacti graph_image.php Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Cacti || url,doc.emergingthreats.net/2002313 || bugtraq,14042 || bugtraq,14129 || cve,CAN-2005-1524
2002314 || ET WEB PHPOutsourcing Zorum prod.php Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_PHPOutsourcing || url,doc.emergingthreats.net/2002314 || bugtraq,14601
2002315 || ET EXPLOIT Incoming Electronic Mail for UNIX Expires Header Buffer Overflow Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Elm || url,doc.emergingthreats.net/bin/view/Main/2002315 || url,www.instinct.org/elm/ || url,www.frsirt.com/exploits/20050822.elmexploit.c.php
2002316 || ET EXPLOIT Outgoing Electronic Mail for UNIX Expires Header Buffer Overflow Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Elm || url,doc.emergingthreats.net/bin/view/Main/2002316 || url,www.instinct.org/elm/ || url,www.frsirt.com/exploits/20050822.elmexploit.c.php
2002317 || ET MALWARE EZSearch Spyware Reporting Search Strings || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_EZSearch || url,doc.emergingthreats.net/bin/view/Main/2002317
2002318 || ET MALWARE EZSearch Spyware Reporting Search Category || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_EZSearch || url,doc.emergingthreats.net/bin/view/Main/2002318
2002319 || ET MALWARE EZSearch Spyware Reporting 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_EZSearch || url,doc.emergingthreats.net/bin/view/Main/2002319
2002320 || ET MALWARE Transponder Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Transponder || url,doc.emergingthreats.net/bin/view/Main/2002320 || url,www.doxdesk.com/parasite/Transponder.html
2002322 || ET WORM Possible MSN Worm Exploit php || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Kelvir || url,doc.emergingthreats.net/2002322
2002323 || ET WORM Possible MSN Worm Exploit exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Kelvir || url,doc.emergingthreats.net/2002323
2002324 || ET WORM Possible MSN Worm Exploit pif || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Kelvir || url,doc.emergingthreats.net/2002324
2002325 || ET WORM W32.kelvir.HI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Kelvir || url,doc.emergingthreats.net/2002325 || url,securityresponse.symantec.com/avcenter/venc/data/w32.kelvir.hi.html
2002327 || ET POLICY Google Talk (Jabber) Client Login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Jabber || url,doc.emergingthreats.net/2002327 || url,www.xmpp.org || url,talk.google.com
2002330 || ET POLICY Google Talk TLS Client Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Jabber || url,doc.emergingthreats.net/2002330 || url,www.xmpp.org || url,talk.google.com
2002331 || ET WEB Piranha default passwd attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Piranha || url,doc.emergingthreats.net/2002331 || nessus,10381 || cve,2000-0248 || bugtraq,1148
2002332 || ET POLICY Google IM traffic Windows client user sign-on || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Jabber || url,doc.emergingthreats.net/2002332 || url,www.google.com/talk
2002333 || ET POLICY Google IM traffic friend invited || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Jabber || url,doc.emergingthreats.net/2002333 || url,www.google.com/talk
2002334 || ET POLICY Google IM traffic Jabber client sign-on || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Jabber || url,doc.emergingthreats.net/2002334 || url,www.google.com/talk
2002335 || ET POLICY Google IM traffic Windows client user sign-off || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Jabber || url,doc.emergingthreats.net/2002335 || url,www.google.com/talk
2002348 || ET MALWARE VPP Technologies Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_VPPTechnologies || url,doc.emergingthreats.net/bin/view/Main/2002348
2002349 || ET MALWARE Alexa Spyware Reporting URL || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Alexa || url,doc.emergingthreats.net/bin/view/Main/2002349
2002350 || ET MALWARE VPP Technologies Spyware Reporting URL || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_VPPTechnologies || url,doc.emergingthreats.net/bin/view/Main/2002350
2002351 || ET MALWARE Comet Systems Spyware Update Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Comet_Cursor_Spyware || url,doc.emergingthreats.net/bin/view/Main/2002351
2002352 || ET MALWARE Comet Systems Spyware Context Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Comet_Cursor_Spyware || url,doc.emergingthreats.net/bin/view/Main/2002352
2002353 || ET MALWARE AdultfriendFinder.com Spyware Iframe Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Adultfriendfinder.com || url,doc.emergingthreats.net/bin/view/Main/2002353
2002354 || ET MALWARE 180solutions Spyware versionconfig POST || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2002354 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2002361 || ET WEB Netquery Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Netquery || url,doc.emergingthreats.net/2002361 || bugtraq,14373
2002362 || ET WEB Barracuda Spam Firewall img.pl Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Barracuda_Spam_Firewall || url,doc.emergingthreats.net/2002362 || bugtraq,14712
2002363 || ET TROJAN BOT - potential reptile commands || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002363
2002364 || ET MALWARE Weatherbug Wxbug Capture || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weatherbug || url,doc.emergingthreats.net/bin/view/Main/2002364
2002365 || ET WEB HP OpenView Network Node Manager Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_HP_Openview || url,doc.emergingthreats.net/2002365 || bugtraq,14662
2002371 || ET WEB_SPECIFIC Miva Merchant Cross Site Scripting Attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Miva || url,doc.emergingthreats.net/2002371 || url,www.frsirt.com/english/advisories/2005/1758 || url,smallbusiness.miva.com/products/mia/ || bugtraq,14828
2002376 || ET WEB IBM Lotus Domino BaseTarget XSS attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Domino_XSS || url,doc.emergingthreats.net/2002376 || bugtraq,14845
2002377 || ET WEB IBM Lotus Domino Src XSS attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Domino_XSS || url,doc.emergingthreats.net/2002377 || bugtraq,14846
2002380 || ET EXPLOIT Firefox Domain Name Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Mozilla-Firefox || url,doc.emergingthreats.net/bin/view/Main/2002380 || url,www.milw0rm.com/id.php?id=1224 || url,bugzilla.mozilla.org/show_bug.cgi?id=307259 || cve,2005-2871
2002381 || ET EXPLOIT RealPlayer/Helix Player Format String Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Realplayer || url,doc.emergingthreats.net/bin/view/Main/2002381 || cve,2005-2710 || bugtraq,14945 || url,milw0rm.com/id.php?id=1232
2002382 || ET EXPLOIT Wzdftpd SITE command arbitrary command execution attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Wzdftpd || url,doc.emergingthreats.net/bin/view/Main/2002382 || url,www.securiteam.com/exploits/5CP0R1PGUE.html || bugtraq,14935
2002383 || ET SCAN Potential FTP Brute-Force attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_FTP_Brute_Force || url,doc.emergingthreats.net/2002383
2002384 || ET TROJAN BOT - potential misc bot commands || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002384
2002385 || ET TROJAN BOT - channel topic reptile commands || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002385
2002386 || ET TROJAN BOT - channel topic misc bot commands || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2002386
2002387 || ET TROJAN Mitglieder Proxy Bot Checking In || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Mitglieder || url,doc.emergingthreats.net/2002387 || url,isc.sans.org/diary.php?storyid=722
2002388 || ET WEB vBulletin misc.php Template Name Arbitrary Code Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_PHP_vBulletin || url,doc.emergingthreats.net/2002388 || url,metasploit.com/projects/Framework/exploits.html#php_vbulletin_template || cve,2005-0511 || url,www.osvdb.org/14047
2002389 || ET EXPLOIT Vulnerable Mercury 4.01a IMAP Banner || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Mercury || url,doc.emergingthreats.net/bin/view/Main/2002389 || bugtraq,11775 || url,www.pmail.com/whatsnew/m32401.htm
2002390 || ET EXPLOIT Mercury v4.01a IMAP RENAME Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Mercury || url,doc.emergingthreats.net/bin/view/Main/2002390 || bugtraq,11775 || url,metasploit.com/projects/Framework/exploits.html#mercury_imap || url,www.pmail.com/whatsnew/m32401.htm
2002394 || ET MALWARE Adwave/MarketScore User Agent (WTA) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002394 || url,www.marketscore.com || url,www.adwave.com/our_mission.aspx
2002395 || ET MALWARE Miva User Agent (TPSystem) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002395 || url,www.findwhat.com || url,www.miva.com
2002396 || ET MALWARE Miva Spyware User Agent (Travel Update) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002396 || url,www.miva.com
2002397 || ET MALWARE Precision Targeting User Agent (XC) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002397 || url,www.precisiontargeting.com
2002398 || ET MALWARE DelFin Project User Agent (Dpi) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002398 || url,www.delfinproject.com
2002399 || ET MALWARE DelFin Project User Agent (PromulGate) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002399 || url,www.delfinproject.com
2002400 || ET MALWARE Suspicious User Agent (Microsoft Internet Explorer) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002400 || url,www.topinstalls.com
2002401 || ET MALWARE Web Search User Agent (ST3PS) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002401 || url,www.websearch.com
2002402 || ET MALWARE Suspicious Spyware Related User Agent (UtilMind HTTPGet) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002402 || url,www.websearch.com
2002403 || ET MALWARE Context Plus User Agent (PTS) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002403 || url,www.contextplus.net
2002404 || ET MALWARE Movies etc User Agent (IOInstall) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002404 || url,www.movies-etc.com
2002405 || ET MALWARE Internet Optimizer User Agent (ROGUE) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002405 || url,www.internet-optimizer.com
2002406 || ET EXPLOIT TAC Attack Directory Traversal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Tac || url,doc.emergingthreats.net/bin/view/Main/2002406 || url,cirt.dk/advisories/cirt-37-advisory.pdf || url,secunia.com/advisories/16854 || cve,2005-3040
2002407 || ET POLICY WebshotsNetClient || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_WebShots || url,doc.emergingthreats.net/2002407 || url,www.webshots.com
2002408 || ET WEB phpMyAdmin Suspicious Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_phpMyAdmin || url,doc.emergingthreats.net/2002408
2002409 || ET WEB phpMyAdmin Local File Inclusion (2.6.4-pl1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_phpMyAdmin || url,doc.emergingthreats.net/2002409 || url,www.frsirt.com/english/advisories/2005/2024 || url,securityreason.com/securityalert/69
2002410 || ET POLICY SMTP Non-US Restricted Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002410
2002411 || ET POLICY SMTP Non-US Confidential Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002411
2002412 || ET POLICY SMTP Non-US Top Secret Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002412
2002413 || ET POLICY SMTP Non-US Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002413
2002414 || ET POLICY SMTP NATO Restricted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002414
2002415 || ET POLICY SMTP NATO Confidential Atomal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002415
2002416 || ET POLICY SMTP NATO Confidential || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002416
2002417 || ET POLICY SMTP NATO COSMIC Top Secret Atomal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002417
2002418 || ET POLICY SMTP NATO Secret Atomal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002418
2002419 || ET POLICY SMTP NATO Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002419
2002420 || ET POLICY SMTP US Confidential, Electronic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002420
2002421 || ET POLICY SMTP US Top Secret, Electronic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002421
2002422 || ET POLICY SMTP US Secret, Electronic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002422
2002423 || ET POLICY SMTP US Confidential REL TO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002423
2002424 || ET POLICY SMTP US Top Secret REL TO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002424
2002425 || ET POLICY SMTP US Secret REL TO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002425
2002426 || ET POLICY SMTP US Confidential COMINT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002426
2002427 || ET POLICY SMTP US Top Secret COMINT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002427
2002428 || ET POLICY SMTP US Secret COMINT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002428
2002429 || ET POLICY SMTP US Unclassified COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002429
2002430 || ET POLICY SMTP US Confidential COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002430
2002431 || ET POLICY SMTP US Top Secret COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002431
2002432 || ET POLICY SMTP US Secret COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002432
2002433 || ET POLICY SMTP US Secret IMCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002433
2002434 || ET POLICY SMTP US Top Secret CNWDI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002434
2002435 || ET POLICY SMTP US Secret CNWDI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002435
2002436 || ET POLICY SMTP US Top Secret TK || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002436
2002437 || ET POLICY SMTP US Secret TK || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002437
2002438 || ET POLICY SMTP US FGI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002438
2002439 || ET POLICY SMTP US FOUO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002439
2002440 || ET POLICY SMTP US Confidential NOFORN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002440
2002441 || ET POLICY SMTP US Top Secret NOFORN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002441
2002442 || ET POLICY SMTP US Secret NOFORN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002442
2002443 || ET POLICY SMTP US Confidential ORCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002443
2002444 || ET POLICY SMTP US Top Secret ORCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002444
2002445 || ET POLICY SMTP US Secret ORCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002445
2002446 || ET POLICY SMTP US Unclassified PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002446
2002447 || ET POLICY SMTP US Confidential PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002447
2002448 || ET POLICY SMTP US Top Secret PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002448
2002449 || ET POLICY SMTP US Secret PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002449
2002450 || ET POLICY SMTP US Confidential RD || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002450
2002451 || ET POLICY SMTP US Top Secret RD || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002451
2002452 || ET POLICY SMTP US Secret RD || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002452
2002453 || ET POLICY SMTP US SAMI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002453
2002454 || ET POLICY SMTP US Confidential SPECAT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002454
2002455 || ET POLICY SMTP US Top Secret SPECAT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002455
2002456 || ET POLICY SMTP US Secret SPECAT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002456
2002457 || ET POLICY SMTP US Top Secret STOP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002457
2002458 || ET POLICY SMTP Private || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002458
2002459 || ET POLICY SMTP Restricted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002459
2002460 || ET POLICY SMTP Confidential || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002460
2002461 || ET POLICY SMTP Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002461
2002462 || ET POLICY SMTP Top Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002462
2002463 || ET POLICY SMTP Sealed || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002463
2002464 || ET POLICY SMTP Sensitive || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002464
2002465 || ET POLICY SMTP Proprietary || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002465
2002466 || ET POLICY SMTP Protected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002466
2002467 || ET POLICY SMTP Law Enorcement Sensitive || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002467
2002468 || ET POLICY SMTP Internal Use Only || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002468
2002469 || ET POLICY SMTP Date of Birth || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002469
2002470 || ET POLICY SMTP HCPCS Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002470
2002471 || ET POLICY SMTP ICD-10 Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002471
2002472 || ET POLICY SMTP FDA NDC Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002472
2002473 || ET POLICY SMTP ADA Procedure Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002473
2002474 || ET POLICY SMTP DSM-IV Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002474
2002475 || ET POLICY SMTP AMA CPT Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002475
2002477 || ET POLICY SMTP Credit Card, JCB || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002477
2002483 || ET POLICY SMTP Password || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002483
2002484 || ET POLICY SMTP Appraisal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002484
2002485 || ET POLICY SMTP Account Balance || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002485
2002486 || ET POLICY SMTP Payment History || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002486
2002487 || ET POLICY SMTP Annual Income || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002487
2002488 || ET POLICY SMTP Credit History || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002488
2002489 || ET POLICY SMTP Transaction History || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002489
2002490 || ET POLICY SMTP Customer List || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002490
2002491 || ET WEB_ACTIVEX COM Object MS05-052 (group 1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-038 || url,doc.emergingthreats.net/2002491 || url,www.microsoft.com/technet/security/Bulletin/MS05-052.mspx || cve,2005-2127
2002492 || ET WEB_ACTIVEX COM Object MS05-052 (group 2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-038 || url,doc.emergingthreats.net/2002492 || url,www.microsoft.com/technet/security/Bulletin/MS05-052.mspx || cve,2005-2127
2002493 || ET WEB_ACTIVEX COM Object MS05-052 (group 3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-038 || url,doc.emergingthreats.net/2002493 || url,www.microsoft.com/technet/security/Bulletin/MS05-052.mspx || cve,2005-2127
2002494 || ET WEB Versatile Bulletin Board SQL Injection Attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_VersatileBB || url,doc.emergingthreats.net/2002494 || bugtraq,15068
2002495 || ET POLICY HTTP Non-US Restricted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002495
2002496 || ET POLICY HTTP - Non-US Confidential || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002496
2002497 || ET POLICY HTTP - Non-US Top Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002497
2002498 || ET POLICY HTTP - Non-US Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002498
2002499 || ET POLICY HTTP - NATO Restricted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002499
2002500 || ET POLICY HTTP - NATO Confidential Atomal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002500
2002501 || ET POLICY HTTP - NATO Confidential || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002501
2002502 || ET POLICY HTTP - NATO COSMIC Top Secret Atomal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002502
2002503 || ET POLICY HTTP - NATO Secret Atomal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002503
2002504 || ET POLICY HTTP - NATO Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002504
2002505 || ET POLICY HTTP - US Confidential, Electronic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002505
2002506 || ET POLICY HTTP - US Top Secret, Electronic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002506
2002507 || ET POLICY HTTP - US Secret, Electronic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002507
2002508 || ET POLICY HTTP - US Confidential REL TO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002508
2002509 || ET POLICY HTTP - US Top Secret REL TO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002509
2002510 || ET POLICY HTTP - US Secret REL TO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002510
2002511 || ET POLICY HTTP - US Confidential COMINT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002511
2002512 || ET POLICY HTTP - US Top Secret COMINT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002512
2002513 || ET POLICY HTTP - US Secret COMINT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002513
2002514 || ET POLICY HTTP - US Unclassified COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002514
2002515 || ET POLICY HTTP - US Confidential COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002515
2002516 || ET POLICY HTTP - US Top Secret COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002516
2002517 || ET POLICY HTTP - US Secret COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002517
2002518 || ET POLICY HTTP - US Secret IMCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002518
2002519 || ET POLICY HTTP - US Top Secret CNWDI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002519
2002520 || ET POLICY HTTP - US Secret CNWDI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002520
2002521 || ET POLICY HTTP - US Top Secret TK || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002521
2002522 || ET POLICY HTTP - US Secret TK || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002522
2002523 || ET POLICY HTTP - US FGI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002523
2002524 || ET POLICY HTTP - US FOUO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002524
2002525 || ET POLICY HTTP - US Confidential NOFORN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002525
2002526 || ET POLICY HTTP - US Top Secret NOFORN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002526
2002527 || ET POLICY HTTP - US Secret NOFORN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002527
2002528 || ET POLICY HTTP - US Top Secret ORCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002528
2002529 || ET POLICY HTTP - US Secret ORCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002529
2002530 || ET POLICY HTTP - US Unclassified PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002530
2002531 || ET POLICY HTTP - US Confidential PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002531
2002532 || ET POLICY HTTP - US Top Secret PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002532
2002533 || ET POLICY HTTP - US Secret PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002533
2002534 || ET POLICY HTTP - US Confidential RD || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002534
2002535 || ET POLICY HTTP - US Top Secret RD || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002535
2002536 || ET POLICY HTTP - US Secret RD || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002536
2002537 || ET POLICY HTTP - US SAMI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002537
2002538 || ET POLICY HTTP - US Confidential SPECAT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002538
2002539 || ET POLICY HTTP - US Top Secret SPECAT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002539
2002540 || ET POLICY HTTP - US Secret SPECAT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002540
2002541 || ET POLICY HTTP - US Top Secret STOP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002541
2002542 || ET POLICY HTTP - Private || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002542
2002543 || ET POLICY HTTP - Restricted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002543
2002544 || ET POLICY HTTP - Confidential || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002544
2002545 || ET POLICY HTTP - Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002545
2002546 || ET POLICY HTTP - Top Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002546
2002547 || ET POLICY HTTP - Sealed || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002547
2002548 || ET POLICY HTTP - Sensitive || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002548
2002549 || ET POLICY HTTP - Proprietary || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002549
2002550 || ET POLICY HTTP - Protected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002550
2002551 || ET POLICY HTTP - Law Enorcement Sensitive || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002551
2002552 || ET POLICY HTTP - Internal Use Only || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002552
2002553 || ET POLICY HTTP - Date of Birth || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002553
2002554 || ET POLICY HTTP - HCPCS Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002554
2002555 || ET POLICY HTTP - ICD-10 Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002555
2002556 || ET POLICY HTTP - FDA NDC Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002556
2002557 || ET POLICY HTTP - ADA Procedure Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002557
2002558 || ET POLICY HTTP - DSM-IV Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002558
2002559 || ET POLICY HTTP - AMA CPT Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002559
2002561 || ET POLICY HTTP - Credit Card, JCB || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002561
2002567 || ET POLICY HTTP - Password || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002567
2002568 || ET POLICY HTTP - Appraisal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002568
2002569 || ET POLICY HTTP - Account Balance || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002569
2002570 || ET POLICY HTTP - Payment History || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002570
2002571 || ET POLICY HTTP - Annual Income || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002571
2002572 || ET POLICY HTTP - Credit History || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002572
2002573 || ET POLICY HTTP - Transaction History || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002573
2002574 || ET POLICY HTTP - Customer List || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002574
2002575 || ET POLICY High Ports - Non-US Restricted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002575
2002576 || ET POLICY High Ports - Non-US Confidential || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002576
2002577 || ET POLICY High Ports - Non-US Top Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002577
2002578 || ET POLICY High Ports - Non-US Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002578
2002579 || ET POLICY High Ports - NATO Restricted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002579
2002580 || ET POLICY High Ports - NATO Confidential Atomal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002580
2002581 || ET POLICY High Ports - NATO Confidential || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002581
2002582 || ET POLICY High Ports - NATO COSMIC Top Secret Atomal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002582
2002583 || ET POLICY High Ports - NATO Secret Atomal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002583
2002584 || ET POLICY High Ports - NATO Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002584
2002585 || ET POLICY High Ports - US Confidential, Electronic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002585
2002586 || ET POLICY High Ports - US Top Secret, Electronic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002586
2002587 || ET POLICY High Ports - US Secret, Electronic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002587
2002588 || ET POLICY High Ports - US Confidential REL TO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002588
2002589 || ET POLICY High Ports - US Top Secret REL TO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002589
2002590 || ET POLICY High Ports - US Secret REL TO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002590
2002591 || ET POLICY High Ports - US Confidential COMINT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002591
2002592 || ET POLICY High Ports - US Top Secret COMINT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002592
2002593 || ET POLICY High Ports - US Secret COMINT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002593
2002594 || ET POLICY High Ports - US Unclassified COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002594
2002595 || ET POLICY High Ports - US Confidential COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002595
2002596 || ET POLICY High Ports - US Top Secret COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002596
2002597 || ET POLICY High Ports - US Secret COMSEC || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002597
2002598 || ET POLICY High Ports - US Secret IMCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002598
2002599 || ET POLICY High Ports - US Top Secret CNWDI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002599
2002600 || ET POLICY High Ports - US Secret CNWDI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002600
2002601 || ET POLICY High Ports - US Top Secret TK || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002601
2002602 || ET POLICY High Ports - US Secret TK || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002602
2002603 || ET POLICY High Ports - US FGI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002603
2002604 || ET POLICY High Ports - US FOUO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002604
2002605 || ET POLICY High Ports - US Confidential NOFORN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002605
2002606 || ET POLICY High Ports - US Top Secret NOFORN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002606
2002607 || ET POLICY High Ports - US Secret NOFORN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002607
2002608 || ET POLICY High Ports - US Confidential ORCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002608
2002609 || ET POLICY High Ports - US Top Secret ORCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002609
2002610 || ET POLICY High Ports - US Secret ORCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002610
2002611 || ET POLICY High Ports - US Unclassified PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002611
2002612 || ET POLICY High Ports - US Confidential PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002612
2002613 || ET POLICY High Ports - US Top Secret PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002613
2002614 || ET POLICY High Ports - US Secret PROPIN || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002614
2002615 || ET POLICY High Ports - US Confidential RD || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002615
2002616 || ET POLICY High Ports - US Top Secret RD || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002616
2002617 || ET POLICY High Ports - US Secret RD || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002617
2002618 || ET POLICY High Ports - US SAMI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002618
2002619 || ET POLICY High Ports - US Confidential SPECAT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002619
2002620 || ET POLICY High Ports - US Top Secret SPECAT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002620
2002621 || ET POLICY High Ports - US Secret SPECAT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002621
2002622 || ET POLICY High Ports - US Top Secret STOP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002622
2002623 || ET POLICY High Ports - Private || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002623
2002624 || ET POLICY High Ports - Restricted || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002624
2002625 || ET POLICY High Ports - Confidential || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002625
2002626 || ET POLICY High Ports - Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002626
2002627 || ET POLICY High Ports - Top Secret || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002627
2002628 || ET POLICY High Ports - Sealed || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002628
2002629 || ET POLICY High Ports - Sensitive || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002629
2002630 || ET POLICY High Ports - Proprietary || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002630
2002631 || ET POLICY High Ports - Protected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002631
2002632 || ET POLICY High Ports - Law Enorcement Sensitive || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002632
2002633 || ET POLICY High Ports - Internal Use Only || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002633
2002634 || ET POLICY High Ports - Date of Birth || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002634
2002635 || ET POLICY High Ports - HCPCS Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002635
2002636 || ET POLICY High Ports - ICD-10 Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002636
2002637 || ET POLICY High Ports - FDA NDC Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002637
2002638 || ET POLICY High Ports - ADA Procedure Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002638
2002639 || ET POLICY High Ports - DSM-IV Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002639
2002640 || ET POLICY High Ports - AMA CPT Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002640
2002642 || ET POLICY High Ports - Credit Card, JCB || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002642
2002648 || ET POLICY High Ports - Password || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002648
2002649 || ET POLICY High Ports - Appraisal || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002649
2002650 || ET POLICY High Ports - Account Balance || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002650
2002651 || ET POLICY High Ports - Payment History || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002651
2002652 || ET POLICY High Ports - Annual Income || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002652
2002653 || ET POLICY High Ports - Credit History || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002653
2002654 || ET POLICY High Ports - Transaction History || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002654
2002655 || ET POLICY High Ports - Customer List || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/2002655
2002656 || ET EXPLOIT malformed Sack - Snort DoS-by-$um$id || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Snort || url,doc.emergingthreats.net/bin/view/Main/2002656
2002658 || ET POLICY EIN in the clear (US-IRS Employer ID Number) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IRS_Related || url,doc.emergingthreats.net/2002658 || url,policy.ssa.gov/poms.nsf/lnx/0101001001?opendocument || url,policy.ssa.gov/poms.nsf/lnx/0101001004
2002659 || ET CHAT Yahoo IM Client Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_Yahoo || url,doc.emergingthreats.net/2002659
2002660 || ET WEB RSA Web Auth Exploit Attempt - Long URL || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_RSA || url,doc.emergingthreats.net/2002660 || url,www.metasploit.com/projects/Framework/modules/exploits/rsa_iiswebagent_redirect.pm || url,secunia.com/advisories/17281
2002662 || ET WEB TWiki INCLUDE remote command execution attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Twiki || url,doc.emergingthreats.net/2002662 || bugtraq,14960
2002663 || ET WEB_SPECIFIC e107 resetcore.php SQL Injection attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_e107_SQL_Injection || url,doc.emergingthreats.net/2002663 || bugtraq,15125
2002664 || ET SCAN Nessus User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Nessus || url,doc.emergingthreats.net/2002664 || url,www.nessus.org
2002667 || ET WEB sumthin scan || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_sumthin || url,doc.emergingthreats.net/2002667 || url,www.webmasterworld.com/forum11/2100.htm
2002668 || ET WEB_SPECIFIC CutePHP CuteNews directory traversal vulnerability - show_news || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CuteNews || url,doc.emergingthreats.net/2002668 || bugtraq,15295
2002671 || ET WEB_SPECIFIC Galerie ShowGallery.php SQL Injection attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Gallery || url,doc.emergingthreats.net/2002671 || bugtraq,15313
2002673 || ET P2P MS Foldershare Login Detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Foldershare || url,doc.emergingthreats.net/bin/view/Main/2002673 || url,www.foldershare.com
2002674 || ET WEB Sony DRM Reporting 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Sony_DRM || url,doc.emergingthreats.net/2002674 || url,www.f-secure.com/v-descs/xcp_drm.shtml
2002675 || ET WEB Sony DRM Reporting 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Sony_DRM || url,doc.emergingthreats.net/2002675 || url,www.f-secure.com/v-descs/xcp_drm.shtml
2002676 || ET POLICY nstx DNS Tunnel Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_DNS_Tunnel_nstx || url,doc.emergingthreats.net/2002676 || url,nstx.dereference.de/nstx || url,savannah.nongnu.org/projects/nstx/
2002677 || ET SCAN Nikto Web App Scan in Progress || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Nikto || url,doc.emergingthreats.net/2002677 || url,www.cirt.net/code/nikto.shtml
2002678 || ET WEB_SPECIFIC Cyphor show.php SQL injection attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Cyphor || url,doc.emergingthreats.net/2002678 || bugtraq,15418
2002679 || ET WEB_ACTIVEX Sony DRM Related - CodeSupport ActiveX Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Sony_DRM || url,doc.emergingthreats.net/2002679 || url,www.hack.fi/~muzzy/sony-drm/ || url,www.frsirt.com/english/advisories/2005/2454
2002680 || ET WEB_ACTIVEX Sony DRM - Uninstaller CLSID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Sony_DRM || url,doc.emergingthreats.net/2002680 || url,www.microsoft.com/technet/security/bulletin/ms05-054.mspx || url,www.frsirt.com/english/advisories/2005/2493 || url,www.freedom-to-tinker.com/?p=931
2002681 || ET WEB_SPECIFIC Mambo Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Mambo || url,doc.emergingthreats.net/2002681 || url,www.us-cert.gov/cas/bulletins/SB07-106.html || url,isc.sans.org/diary.php?storyid=869 || url,seclists.org/lists/fulldisclosure/2005/Nov/0528.html
2002682 || ET EXPLOIT Microsoft Internet Explorer Window() Possible Code Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2002682 || cve,2005-1790 || url,www.computerterrorism.com/research/ie/ct21-11-2005 || url,secunia.com/advisories/15546
2002683 || ET WORM shell bot perl code download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Web_Bots || url,doc.emergingthreats.net/2002683
2002684 || ET WORM Shell Bot Code Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Web_Bots || url,doc.emergingthreats.net/2002684
2002685 || ET WEB Barracuda Spam Firewall img.pl Remote Directory Traversal Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Barracuda_Spam_Firewall || url,doc.emergingthreats.net/2002685 || bugtraq,14710
2002695 || ET VIRUS Generic Downloader Outbound HTTP connection - Downloading Code || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Bankem || url,doc.emergingthreats.net/2002695
2002697 || ET EXPLOIT CVSTrac filediff Arbitrary Remote Code Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CVSTrac || url,doc.emergingthreats.net/bin/view/Main/2002697 || cve,2004-1456 || bugtraq,10878
2002702 || ET EXPLOIT OSTicket Remote Code Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_OSTicket || url,doc.emergingthreats.net/bin/view/Main/2002702 || cve,CAN-2005-1439 || cve,CAN-2005-1438 || url,www.gulftech.org/?node=research&article_id=00071-05022005 || url,secunia.com/advisories/15216
2002703 || ET EXPLOIT GuppY error.php Arbitrary Remote Code Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Guppy || url,doc.emergingthreats.net/bin/view/Main/2002703 || bugtraq,15609
2002704 || ET POLICY HTTP - US Confidential ORCON || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Classified_Information || url,doc.emergingthreats.net/bin/view/Main/2002704
2002707 || ET MALWARE iframebiz - adv***.php || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_iframebiz || url,doc.emergingthreats.net/bin/view/Main/2002707 || url,isc.sans.org/diary.php?storyid=868 || url,iframecash.biz
2002708 || ET MALWARE iframebiz - sploit.anr || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_iframebiz || url,doc.emergingthreats.net/bin/view/Main/2002708 || url,isc.sans.org/diary.php?storyid=868 || url,iframecash.biz
2002709 || ET MALWARE iframebiz - loaderadv***.jar || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_iframebiz || url,doc.emergingthreats.net/bin/view/Main/2002709 || url,isc.sans.org/diary.php?storyid=868 || url,iframecash.biz
2002710 || ET MALWARE iframebiz - loadadv***.exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_iframebiz || url,doc.emergingthreats.net/bin/view/Main/2002710 || url,isc.sans.org/diary.php?storyid=868 || url,iframecash.biz
2002711 || ET WEB includer.cgi Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_CGI || url,doc.emergingthreats.net/2002711 || url,isc.sans.org/diary.php?storyid=823
2002721 || ET WEB Cisco IOS HTTP set enable password attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Cisco || url,doc.emergingthreats.net/2002721 || url,www.infohacking.com/INFOHACKING_RESEARCH/Our_Advisories/cisco/index.html || bugtraq,15602 || cve,2005-3921
2002722 || ET POLICY MP3 File Transfer Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_MP3_Files || url,doc.emergingthreats.net/2002722 || url,filext.com/detaillist.php?extdetail=mp3&Search=Search
2002723 || ET POLICY MP3 File Transfer Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_MP3_Files || url,doc.emergingthreats.net/2002723 || url,filext.com/detaillist.php?extdetail=mp3&Search=Search
2002724 || ET WEB_ACTIVEX MciWndx ActiveX Control || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-054 || url,doc.emergingthreats.net/2002724 || url,www.microsoft.com/technet/security/bulletin/ms05-054.mspx
2002725 || ET WEB_ACTIVEX COM Object Instantiation Memory Corruption Vulnerability MS05-054 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS05-054 || url,doc.emergingthreats.net/2002725 || url,www.microsoft.com/technet/security/bulletin/ms05-054.mspx || cve,2005-2831
2002728 || ET TROJAN Ransky or variant backdoor communication ping || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Ransky || url,doc.emergingthreats.net/2002728 || url,www.sophos.com/virusinfo/analyses/trojranckcx.html
2002729 || ET POLICY Outbound Hamachi VPN Connection Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Hamachi_VPN || url,doc.emergingthreats.net/2002729 || url,www.hamachi.cc
2002730 || ET WEB PHPGedView Remote Script Code Execution attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_PHPGedView || url,doc.emergingthreats.net/2002730 || bugtraq,15983
2002731 || ET WEB PHP Generic phpbb arbitrary command attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPBB || url,doc.emergingthreats.net/2002731 || url,cve.mitre.org/cgi-bin/cvekey.cgi?keyword=phpbb_root_path
2002733 || ET EXPLOIT WMF Escape Record Exploit - All Ports - v3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_WMF || url,doc.emergingthreats.net/bin/view/Main/2002733 || url,www.frsirt.com/english/advisories/2005/3086
2002734 || ET EXPLOIT WMF Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_WMF || url,doc.emergingthreats.net/bin/view/Main/2002734 || url,www.frsirt.com/exploits/20051228.ie_xp_pfv_metafile.pm.php
2002735 || ET MALWARE Zenotecnico Adware 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Zenotecnico || url,doc.emergingthreats.net/bin/view/Main/2002735 || url,www.zenotecnico.com
2002736 || ET MALWARE Trafficsector.com Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Trafficsector || url,doc.emergingthreats.net/bin/view/Main/2002736
2002737 || ET MALWARE Zenotecnico Spyware Install Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Zenotecnico || url,doc.emergingthreats.net/bin/view/Main/2002737 || url,www.zenotecnico.com
2002738 || ET MALWARE SurfSidekick Activity (rinfo) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SurfSidekick || url,doc.emergingthreats.net/bin/view/Main/2002738 || url,securityresponse.symantec.com/avcenter/venc/data/adware.surfsidekick.html
2002739 || ET MALWARE iDownloadAgent Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002739
2002740 || ET MALWARE adservs.com Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_adservs.com || url,doc.emergingthreats.net/bin/view/Main/2002740
2002741 || ET EXPLOIT WMF Escape Record Exploit - Web Only - version 3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_WMF || url,doc.emergingthreats.net/bin/view/Main/2002741 || url,www.frsirt.com/english/advisories/2005/3086
2002742 || ET EXPLOIT WMF Escape Record Exploit - Version 3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_WMF || url,doc.emergingthreats.net/bin/view/Main/2002742 || url,www.frsirt.com/english/advisories/2005/3086
2002743 || ET EXPLOIT WMF Escape Record Exploit - Web Only - all versions || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_WMF || url,doc.emergingthreats.net/bin/view/Main/2002743 || url,www.frsirt.com/english/advisories/2005/3086
2002749 || ET POLICY Reserved IP Space Traffic - Bogon Nets 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Bogon_Nets || url,doc.emergingthreats.net/bin/view/Main/2002749 || url,www.cymru.com/Documents/bogon-list.html
2002750 || ET POLICY Reserved IP Space Traffic - Bogon Nets 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Bogon_Nets || url,doc.emergingthreats.net/bin/view/Main/2002750 || url,www.cymru.com/Documents/bogon-list.html
2002751 || ET POLICY Reserved IP Space Traffic - Bogon Nets 3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Bogon_Nets || url,doc.emergingthreats.net/bin/view/Main/2002751 || url,www.cymru.com/Documents/bogon-list.html
2002752 || ET POLICY Reserved Internal IP Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Bogon_Nets || url,doc.emergingthreats.net/bin/view/Main/2002752 || url,www.cymru.com/Documents/bogon-list.html
2002757 || ET EXPLOIT WMF Escape Record Exploit - Web Only - version 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_WMF || url,doc.emergingthreats.net/bin/view/Main/2002757 || url,www.frsirt.com/english/advisories/2005/3086
2002758 || ET EXPLOIT WMF Escape Record Exploit - Version 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_WMF || url,doc.emergingthreats.net/bin/view/Main/2002758 || url,www.frsirt.com/english/advisories/2005/3086
2002759 || ET EXPLOIT WMF Escape Record Exploit - All Ports - v1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_WMF || url,doc.emergingthreats.net/bin/view/Main/2002759 || url,www.frsirt.com/english/advisories/2005/3086
2002760 || ET P2P GnucDNA UDP Ultrapeer Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Gnutella || url,doc.emergingthreats.net/bin/view/Main/2002760
2002761 || ET P2P Gnutella TCP Ultrapeer Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Gnutella || url,doc.emergingthreats.net/bin/view/Main/2002761
2002762 || ET TROJAN Torpig Reporting User Activity (x25) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Torpig || url,doc.emergingthreats.net/2002762 || url,www.sophos.com/virusinfo/analyses/trojtorpigr.html
2002763 || ET TROJAN Dumador Reporting User Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Dumador || url,doc.emergingthreats.net/2002763 || url,www.norman.com/Virus/Virus_descriptions/24279/
2002765 || ET MALWARE Corpsespyware.net BlackListed Malicious Domain - google.vc || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Corpsespyware || url,doc.emergingthreats.net/bin/view/Main/2002765 || url,www.securityfocus.com/infocus/1745
2002766 || ET MALWARE Corpsespyware.net BlackList - pcpeek || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Corpsespyware || url,doc.emergingthreats.net/bin/view/Main/2002766 || url,www.securityfocus.com/infocus/1745
2002767 || ET MALWARE Corpsespyware.net Distribution - bos.biz || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Corpsespyware || url,doc.emergingthreats.net/bin/view/Main/2002767 || url,www.securityfocus.com/infocus/1745
2002768 || ET MALWARE Corpsespyware.net Distribution - fesexy || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Corpsespyware || url,doc.emergingthreats.net/bin/view/Main/2002768 || url,www.securityfocus.com/infocus/1745
2002769 || ET MALWARE Corpsespyware.net Distribution - studiolacase || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Corpsespyware || url,doc.emergingthreats.net/bin/view/Main/2002769 || url,www.securityfocus.com/infocus/1745
2002770 || ET MALWARE Corpsespyware.net - msits.exe access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Corpsespyware || url,doc.emergingthreats.net/bin/view/Main/2002770 || url,www.securityfocus.com/infocus/1745
2002771 || ET MALWARE Corpsespyware.net - msys.exe access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Corpsespyware || url,doc.emergingthreats.net/bin/view/Main/2002771 || url,www.securityfocus.com/infocus/1745
2002773 || ET TROJAN FSG Packed Binary via HTTP Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_FSG_Packer || url,doc.emergingthreats.net/2002773 || url,www.securityfocus.com/infocus/1745
2002774 || ET MALWARE Corpsespyware.net Blind Data Upload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Corpsespyware || url,doc.emergingthreats.net/bin/view/Main/2002774 || url,www.securityfocus.com/infocus/1745
2002775 || ET TROJAN Goldun Reporting User Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Goldun || url,doc.emergingthreats.net/2002775 || url,www.avira.com/en/threats/TR_Spy_Goldun_de_1_details.html
2002776 || ET TROJAN SickleBot Reporting User Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Sicklebot || url,doc.emergingthreats.net/2002776
2002777 || ET WEB Light Weight Calendar 'date' Arbitrary Remote Code Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Light_Weight_Calendar || url,doc.emergingthreats.net/2002777
2002780 || ET TROJAN Goldun Reporting User Activity 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Goldun || url,doc.emergingthreats.net/2002780 || url,www.avira.com/en/threats/TR_Spy_Goldun_de_1_details.html
2002781 || ET TROJAN w32agent.dsi Posting Info || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002781 || url,nepenthes.sourceforge.net/analysis\:w32agent.dsi
2002782 || ET TROJAN w32agent.dsi Domain Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002782 || url,nepenthes.sourceforge.net/analysis\:w32agent.dsi
2002783 || ET EXPLOIT Java runtime.exec() call || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sun_Javascript || url,doc.emergingthreats.net/bin/view/Main/2002783 || url,www.mullingsecurity.com
2002784 || ET EXPLOIT Java private function call sun.misc.unsafe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sun_Javascript || url,doc.emergingthreats.net/bin/view/Main/2002784 || url,www.mullingsecurity.com
2002785 || ET EXPLOIT Java field reflector call java.lang.reflect.field || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sun_Javascript || url,doc.emergingthreats.net/bin/view/Main/2002785 || url,www.mullingsecurity.com
2002786 || ET EXPLOIT Javascript unsafe applet call || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sun_Javascript || url,doc.emergingthreats.net/bin/view/Main/2002786 || url,www.mullingsecurity.com
2002787 || ET EXPLOIT Javascript Securitymanager class applet call || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Sun_Javascript || url,doc.emergingthreats.net/bin/view/Main/2002787 || url,www.mullingsecurity.com
2002790 || ET TROJAN Haxdoor Reporting User Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_HaxDoor || url,doc.emergingthreats.net/2002790 || url,www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=BKDR_HAXDOOR.DI
2002791 || ET EXPLOIT MISC Computer Associates Negative Content-Length Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CA || url,doc.emergingthreats.net/bin/view/Main/2002791 || cve,2005-3653 || bugtraq,16354
2002796 || ET POLICY X-Box Live Connecting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Xbox || url,doc.emergingthreats.net/2002796 || url,www.microsoft.com/xbox/
2002799 || ET EXPLOIT MS05-005 Office XP .rtf Remote Code Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS05-005 || url,doc.emergingthreats.net/bin/view/Main/2002799 || url,www.frsirt.com/english/advisories/2005/0119 || cve,2004-0848
2002800 || ET WEB_SPECIFIC PHP PHPNuke Remote File Inclusion Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHP_Injection || url,doc.emergingthreats.net/2002800 || url,www.zone-h.org/en/advisories/read/id=8694/
2002801 || ET WEB_SPECIFIC Google Desktop User-Agent Detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Google || url,doc.emergingthreats.net/2002801 || url,news.com.com/2100-1032_3-6038197.html
2002802 || ET EXPLOIT Windows Media Player parsing BMP file with 0 size offset to start of image || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS06-005 || url,doc.emergingthreats.net/bin/view/Main/2002802 || bugtraq,16633 || cve,2006-0006 || url,www.microsoft.com/technet/security/Bulletin/MS06-005.mspx || url,www.milw0rm.com/id.php?id=1500
2002803 || ET EXPLOIT BMP with invalid bfOffBits || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS06-005 || url,doc.emergingthreats.net/bin/view/Main/2002803 || bugtraq,16633 || cve,2006-0006 || url,www.microsoft.com/technet/security/Bulletin/ms06-005.mspx
2002804 || ET MALWARE Spyaxe Spyware DB Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spyaxe || url,doc.emergingthreats.net/bin/view/Main/2002804
2002805 || ET MALWARE Spyaxe Spyware DB Version Check || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spyaxe || url,doc.emergingthreats.net/bin/view/Main/2002805
2002806 || ET MALWARE Spyaxe Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spyaxe || url,doc.emergingthreats.net/bin/view/Main/2002806
2002807 || ET MALWARE Spyaxe Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002807
2002808 || ET MALWARE Spyaxe Spyware User Agent 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002808
2002809 || ET ATTACK RESPONSE Hostile FTP Server Banner (StnyFtpd) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Malicious_FTP || url,doc.emergingthreats.net/bin/view/Main/2002809
2002810 || ET ATTACK RESPONSE Hostile FTP Server Banner (Reptile) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Malicious_FTP || url,doc.emergingthreats.net/bin/view/Main/2002810
2002811 || ET ATTACK RESPONSE Hostile FTP Server Banner (Bot Server) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Malicious_FTP || url,doc.emergingthreats.net/bin/view/Main/2002811
2002812 || ET TROJAN PWS-LDPinch Reporting User Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PWS-LDPinch || url,doc.emergingthreats.net/2002812
2002814 || ET P2P Direct Connect Traffic (client-server) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Direct_Connect || url,doc.emergingthreats.net/bin/view/Main/2002814 || url,en.wikipedia.org/wiki/Direct_connect_file-sharing_application
2002815 || ET WEB_SPECIFIC Plume CMS prepend.php Remote File Inclusion attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Plume_CMS || url,doc.emergingthreats.net/2002815 || nessus,20972 || bugtraq,16662 || cve,CVE-2006-0725
2002816 || ET MALWARE DelFin Project Spyware (payload) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Delfin || url,doc.emergingthreats.net/bin/view/Main/2002816
2002817 || ET MALWARE DelFin Project Spyware (setup) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Delfin || url,doc.emergingthreats.net/bin/view/Main/2002817
2002820 || ET MALWARE Hotbar Agent Subscription POST || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2002820 || url,www.hotbar.com
2002821 || ET MALWARE SideStep Bar Reporting Data (sbstart) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SideStep_Bar || url,doc.emergingthreats.net/bin/view/Main/2002821 || url,www.spyany.com/program/article_spw_rm_SideStep.html || url,www.sidestep.com
2002822 || ET POLICY Wget User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002822 || url,www.gnu.org/software/wget
2002823 || ET POLICY POSSIBLE Web Crawl using Wget || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002823 || url,www.gnu.org/software/wget/
2002824 || ET POLICY CURL User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002824 || url,curl.haxx.se
2002825 || ET POLICY POSSIBLE Web Crawl using Curl || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002825 || url,curl.haxx.se
2002826 || ET POLICY fetch User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002826 || url,gobsd.com/code/freebsd/lib/libfetch
2002827 || ET POLICY POSSIBLE Crawl using Fetch || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002827 || url,gobsd.com/code/freebsd/lib/libfetch
2002828 || ET POLICY googlebot User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002828 || url,www.google.com/webmasters/bot.html
2002829 || ET POLICY Googlebot Crawl || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002829 || url,www.google.com/webmasters/bot.html
2002830 || ET POLICY msnbot User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002830 || url,search.msn.com/msnbot.htm
2002831 || ET POLICY Msnbot Crawl || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002831 || url,search.msn.com/msnbot.htm
2002832 || ET POLICY Yahoo Crawler User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002832 || url,mms-mmcrawler-support@yahoo-inc.com
2002833 || ET POLICY Yahoo Crawler Crawl || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002833 || url,mms-mmcrawler-support@yahoo-inc.com
2002836 || ET MALWARE MyWebSearch Toolbar Traffic (bar config download) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_My_Web_Toolbar || url,doc.emergingthreats.net/bin/view/Main/2002836
2002837 || ET WEB PmWiki Globals Variables Overwrite Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_PMWiki || url,doc.emergingthreats.net/2002837 || nessus,20891 || bugtraq,16421 || cve,CVE-2006-0479
2002838 || ET WEB_SPECIFIC Google Search Appliance browsing the Internet || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Google || url,doc.emergingthreats.net/2002838 || url,www.google.com/enterprise/gsa/index.html
2002839 || ET MALWARE My Search Spyware Config Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_My_Search_Bar || url,doc.emergingthreats.net/bin/view/Main/2002839
2002840 || ET MALWARE Freeze.com Spyware/Adware (Install) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Freeze.com || url,doc.emergingthreats.net/bin/view/Main/2002840
2002841 || ET MALWARE Freeze.com Spyware/Adware (Install Registration) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Freeze.com || url,doc.emergingthreats.net/bin/view/Main/2002841
2002842 || ET SCAN MYSQL 4.1 brute force root login attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Mysql || url,doc.emergingthreats.net/2002842 || url,www.redferni.uklinux.net/mysql/MySQL-Protocol.html
2002843 || ET DOS Microsoft Streaming Server Malformed Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_MS00-038 || url,doc.emergingthreats.net/bin/view/Main/2002843 || url,www.microsoft.com/technet/security/bulletin/ms00-038.mspx || bugtraq,1282
2002844 || ET WEB WebDAV search overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Webdav || url,doc.emergingthreats.net/2002844 || cve,2003-0109
2002845 || ET EXPLOIT MSSQL Hello Overflow Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MSSQL_Hello || url,doc.emergingthreats.net/bin/view/Main/2002845 || bugtraq,5411 || cve,2002-1123
2002846 || ET WEB Minishare GET Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Minishare || url,doc.emergingthreats.net/2002846 || bugtraq,11620 || cve,2004-2271
2002847 || ET WEB WebAdmin User Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_WebAdmin || url,doc.emergingthreats.net/2002847 || cve,2003-471
2002848 || ET EXPLOIT SIP UDP Softphone INVITE overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_SIP || url,doc.emergingthreats.net/bin/view/Main/2002848 || cve,2006-0189 || bugtraq,16213
2002849 || ET WEB_SPECIFIC Google Appliance External Proxy Stylesheet || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Google || url,doc.emergingthreats.net/2002849 || cve,2005-3758 || bugtraq,15509
2002850 || ET FTP USER login flowbit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_HP-UX || url,doc.emergingthreats.net/bin/view/Main/2002850
2002851 || ET FTP HP-UX LIST command without login || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_HP-UX || url,doc.emergingthreats.net/bin/view/Main/2002851 || bugtraq,15138 || cve,2005-3296
2002852 || ET EXPLOIT HP-UX Printer LPD Command Insertion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_HP-UX || url,doc.emergingthreats.net/bin/view/Main/2002852 || bugtraq,15136 || cve,2005-3277
2002853 || ET DOS FreeBSD NFS RPC Kernel Panic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_FreeBSD || url,doc.emergingthreats.net/bin/view/Main/2002853 || bugtraq,19017 || cve,2006-0900
2002855 || ET GAMES Blizzard Downloader || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Blizzard || url,doc.emergingthreats.net/bin/view/Main/2002855 || url,www.worldofwarcraft.com/info/faq/blizzarddownloader.html
2002856 || ET MALWARE Suspicious POST to ROBOTS.TXT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Unknown || url,doc.emergingthreats.net/bin/view/Main/2002856
2002857 || ET TROJAN Win32.VB.aie Reporting User Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32.VB.aie || url,doc.emergingthreats.net/2002857
2002858 || ET MALWARE Fun Web Products StationaryChooser Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2002858 || url,www.funwebproducts.com
2002859 || ET TROJAN PassSickle Reporting User Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PassSickle || url,doc.emergingthreats.net/2002859
2002860 || ET EXPLOIT Internet Explorer createTextRange Code Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2002860 || cve,2006-1359 || bugtraq,17196
2002861 || ET WEB_ACTIVEX Danim.dll and Dxtmsft.dll COM Objects || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS06-013 || url,doc.emergingthreats.net/2002861 || url,www.microsoft.com/technet/security/bulletin/ms06-013.mspx || cve,2006-1186
2002862 || ET EXPLOIT PeerCast Url Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Peercast || url,doc.emergingthreats.net/bin/view/Main/2002862 || bugtraq,17040 || cve,2006-1148
2002863 || ET WEB osCommerce vulnerable web application extras update.php exists || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_OSCommerce || url,doc.emergingthreats.net/2002863 || url,retrogod.altervista.org/oscommerce_22_adv.html
2002864 || ET WEB osCommerce extras/update.php disclosure || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_OSCommerce || url,doc.emergingthreats.net/2002864 || url,retrogod.altervista.org/oscommerce_22_adv.html
2002865 || ET WEB MISC Novell GroupWise Messenger Accept Language Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Novell || url,doc.emergingthreats.net/2002865 || bugtraq,17503 || cve,2006-0992
2002866 || ET POLICY Winpcap Installation in Progress || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Winpcap_Install || url,doc.emergingthreats.net/2002866 || url,www.winpcap.org
2002867 || ET WEB Horde 3.0.9-3.1.0 Help Viewer Remote PHP Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Horde || url,doc.emergingthreats.net/2002867 || bugtraq,17292 || cve,2006-1491 || url,www.milw0rm.com/exploits/1660
2002868 || ET WEB Horde Web Mail Help Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Horde || url,doc.emergingthreats.net/2002868 || bugtraq,17292 || cve,2006-1491
2002869 || ET WEB WebAttacker kit (exploit1 ie0601) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Webattacker_Kit || url,doc.emergingthreats.net/2002869
2002870 || ET WEB WebAttacker kit (exploit ie0604) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Webattacker_Kit || url,doc.emergingthreats.net/2002870
2002871 || ET WEB WebAttacker kit (bug ie0604) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Webattacker_Kit || url,doc.emergingthreats.net/2002871
2002872 || ET POLICY Myspace Login Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Myspace || url,doc.emergingthreats.net/2002872
2002874 || ET MALWARE Metafisher/Goldun z User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002874
2002876 || ET MALWARE Small-EM/Divo/PassSickle User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002876
2002877 || ET MALWARE BankSnif/Nethelper User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002877
2002878 || ET POLICY iTunes User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Itunes || url,doc.emergingthreats.net/2002878 || url,hcsoftware.sourceforge.net/jason-rohrer/itms4all/
2002879 || ET WEB_SPECIFIC PHP phpMyAgenda rootagenda Remote File Include Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_phpMyAgenda || url,doc.emergingthreats.net/2002879 || bugtraq,17670 || cve,2006-2009
2002880 || ET SNMP Cisco Non-Trap PDU request on SNMPv1 trap port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Cisco_SNMP || url,doc.emergingthreats.net/bin/view/Main/2002880 || bugtraq,10186 || cve,2004-0714
2002881 || ET SNMP Cisco Non-Trap PDU request on SNMPv2 trap port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Cisco_SNMP || url,doc.emergingthreats.net/bin/view/Main/2002881 || bugtraq,10186 || cve,2004-0714
2002882 || ET SNMP Cisco Non-Trap PDU request on SNMPv3 trap port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Cisco_SNMP || url,doc.emergingthreats.net/bin/view/Main/2002882 || bugtraq,10186 || cve,2004-0714
2002886 || ET EXPLOIT SYS get_domain_index_metadata Privilege Escalation Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Oracle || url,doc.emergingthreats.net/bin/view/Main/2002886 || bugtraq,17699
2002887 || ET EXPLOIT SYS get_domain_index_tables Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Oracle || url,doc.emergingthreats.net/bin/view/Main/2002887 || bugtraq,17699
2002888 || ET EXPLOIT SYS get_v2_domain_index_tables Privilege Escalation Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Oracle || url,doc.emergingthreats.net/bin/view/Main/2002888 || bugtraq,17699
2002889 || ET WEB JuniperSetup Control Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Juniper || url,doc.emergingthreats.net/2002889 || url,www.eeye.com/html/research/advisories/AD20060424.html
2002892 || ET VIRUS Mytob.X [clam] SMTP Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Nugache || url,doc.emergingthreats.net/2002892 || url,www3.ca.com/securityadvisor/virusinfo/virus.aspx?ID=42326
2002893 || ET VIRUS Mytob.X [clam] SMTP Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Nugache || url,doc.emergingthreats.net/2002893 || url,www3.ca.com/securityadvisor/virusinfo/virus.aspx?ID=42326
2002894 || ET VIRUS W32.Nugache SMTP Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Nugache || url,doc.emergingthreats.net/2002894 || url,www.symantec.com/avcenter/venc/data/w32.nugache.a@mm.html
2002895 || ET VIRUS W32.Nugache SMTP Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Nugache || url,doc.emergingthreats.net/2002895 || url,www.symantec.com/avcenter/venc/data/w32.nugache.a@mm.html
2002896 || ET EXPLOIT Symantec Scan Engine Request Password Hash || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Symantec || url,doc.emergingthreats.net/bin/view/Main/2002896 || bugtraq,17637 || cve,2006-0230
2002897 || ET WEB Horde README access probe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Horde || url,doc.emergingthreats.net/2002897 || url,csirt.terradon.com/postarchive.php?month=4&year=2006#article28 || cve,CVE-2006-1491
2002898 || ET WEB_SPECIFIC PHP Web Calendar Remote File Inclusion Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHP_Web_Calendar || url,doc.emergingthreats.net/2002898 || cve,2005-2717 || bugtraq,14651
2002899 || ET WEB_SPECIFIC PHP VWar Remote File Inclusion get_header.php || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_VWar || url,doc.emergingthreats.net/2002899 || bugtraq,17358 || cve,2006-1636 || url,www.milw0rm.com/exploits/1632
2002900 || ET WEB CGI AWstats Migrate Command Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Awstats || url,doc.emergingthreats.net/2002900 || bugtraq,17844
2002901 || ET WEB_SPECIFIC PHP Aardvark Topsites PHP CONFIG[PATH] Remote File Include Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Aardvark || url,doc.emergingthreats.net/2002901 || url,www.osvdb.org/25158 || cve,CVE-2006-2149
2002902 || ET WEB_SPECIFIC PHP VWar Remote File Inclusion functions_install.php || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_VWar || url,doc.emergingthreats.net/2002902 || bugtraq,17290 || cve,2006-1503
2002903 || ET EXPLOIT x86 PexFnstenvMov/Sub Encoder || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Metasploit_Encoders || url,doc.emergingthreats.net/bin/view/Main/2002903
2002904 || ET EXPLOIT x86 Alpha2 GetEIPs Encoder || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Metasploit_Encoders || url,doc.emergingthreats.net/bin/view/Main/2002904
2002905 || ET EXPLOIT x86 Countdown Encoder || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Metasploit_Encoders || url,doc.emergingthreats.net/bin/view/Main/2002905
2002906 || ET EXPLOIT x86 PexAlphaNum Encoder || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Metasploit_Encoders || url,doc.emergingthreats.net/bin/view/Main/2002906
2002907 || ET EXPLOIT x86 PexCall Encoder || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Metasploit_Encoders || url,doc.emergingthreats.net/bin/view/Main/2002907
2002908 || ET EXPLOIT x86 JmpCallAdditive Encoder || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Metasploit_Encoders || url,doc.emergingthreats.net/bin/view/Main/2002908
2002910 || ET SCAN Potential VNC Scan 5800-5820 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_VNC || url,doc.emergingthreats.net/2002910
2002911 || ET SCAN Potential VNC Scan 5900-5920 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_VNC || url,doc.emergingthreats.net/2002911
2002912 || ET EXPLOIT VNC Possible Vulnerable Server Response || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002912 || cve,2006-2369 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002913 || ET EXPLOIT VNC Client response || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002913 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002914 || ET EXPLOIT VNC Server VNC Auth Offer || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002914 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002915 || ET EXPLOIT VNC Authentication Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002915 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002916 || ET EXPLOIT RealVNC Authentication Bypass Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002916 || cve,2006-2369 || url,archives.neohapsis.com/archives/fulldisclosure/2006-05/0356.html || url,secunia.com/advisories/20107/
2002917 || ET EXPLOIT RealVNC Server Authentication Bypass Successful || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002917 || cve,2006-2369 || url,archives.neohapsis.com/archives/fulldisclosure/2006-05/0356.html || url,secunia.com/advisories/20107/
2002918 || ET EXPLOIT VNC Server VNC Auth Offer - No Challenge string || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002918 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002919 || ET EXPLOIT VNC Good Authentication Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002919 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002920 || ET POLICY VNC Authentication Failure || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002920 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002921 || ET EXPLOIT VNC Multiple Authentication Failures || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002921 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002922 || ET POLICY VNC Authentication Successful || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002922 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002923 || ET EXPLOIT VNC Server Not Requiring Authentication (case 2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002923 || cve,2006-2369 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002924 || ET EXPLOIT VNC Server Not Requiring Authentication || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_RealVNC || url,doc.emergingthreats.net/bin/view/Main/2002924 || cve,2006-2369 || url,www.cl.cam.ac.uk/Research/DTG/attarchive/vnc/rfbproto.pdf
2002925 || ET INAPPROPRIATE Google Image Search, Safe Mode Off || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/INAPPROPRIATE/INAPPROPRIATE_Google || url,doc.emergingthreats.net/bin/view/Main/2002925
2002926 || ET SNMP Cisco Non-Trap PDU request on SNMPv1 random port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Cisco_SNMP || url,doc.emergingthreats.net/bin/view/Main/2002926 || bugtraq,10186 || cve,2004-0714
2002927 || ET SNMP Cisco Non-Trap PDU request on SNMPv2 random port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Cisco_SNMP || url,doc.emergingthreats.net/bin/view/Main/2002927 || bugtraq,10186 || cve,2004-0714
2002928 || ET SNMP Cisco Non-Trap PDU request on SNMPv3 random port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Cisco_SNMP || url,doc.emergingthreats.net/bin/view/Main/2002928 || bugtraq,10186 || cve,2004-0714
2002929 || ET TROJAN Haxdoor Reporting User Activity 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_HaxDoor || url,doc.emergingthreats.net/2002929
2002931 || ET MALWARE CWS Trafcool.biz Related Installer || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CWS || url,doc.emergingthreats.net/bin/view/Main/2002931 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453076035
2002932 || ET MALWARE CWS Related Installer || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CWS || url,doc.emergingthreats.net/bin/view/Main/2002932 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453076035
2002933 || ET MALWARE CWS Spy-Sheriff.com Infeced Buy Page Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CWS || url,doc.emergingthreats.net/bin/view/Main/2002933 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453076035
2002934 || ET POLICY libwww-perl User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002934 || url,www.linpro.no/lwp/
2002935 || ET POLICY libwww-perl User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002935 || url,www.linpro.no/lwp/
2002937 || ET WEB WebAttacker kit (ie0606) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Webattacker_Kit || url,doc.emergingthreats.net/2002937
2002938 || ET TROJAN elitekeylogger v1.0 reporting - Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_EliteKeyLogger || url,doc.emergingthreats.net/2002938
2002940 || ET TROJAN XP keylogger v2.1 mail report - Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_XP_Keylogger || url,doc.emergingthreats.net/2002940
2002941 || ET TROJAN elitekeylogger v1.0 reporting - Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_EliteKeyLogger || url,doc.emergingthreats.net/2002941
2002942 || ET TROJAN XP keylogger v2.1 mail report - Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_XP_Keylogger || url,doc.emergingthreats.net/2002942
2002943 || ET POLICY python.urllib User Agent Web Crawl || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002943 || url,docs.python.org/lib/module-urllib.html
2002944 || ET POLICY python.urllib User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002944 || url,docs.python.org/lib/module-urllib.html
2002945 || ET POLICY Java Url Lib User Agent Web Crawl || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002945 || url,www.mozilla.org/docs/netlib/seealso/netmods.html
2002946 || ET POLICY Java Url Lib User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Web_Crawling || url,doc.emergingthreats.net/2002946 || url,www.mozilla.org/docs/netlib/seealso/netmods.html
2002947 || ET WEB MISC PunkBuster Server webkey Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Punkbuster || url,doc.emergingthreats.net/2002947 || url,aluigi.altervista.org/adv/pbwebbof-adv.txt
2002948 || ET POLICY External Windows Update in Progress || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Windows_Updates || url,doc.emergingthreats.net/2002948 || url,windowsupdate.microsoft.com
2002949 || ET POLICY Windows Update in Progress || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Windows_Updates || url,doc.emergingthreats.net/2002949 || url,windowsupdate.microsoft.com
2002950 || ET POLICY TOR 1.0 Server Key Retrieval || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Tor || url,doc.emergingthreats.net/2002950 || url,tor.eff.org
2002951 || ET POLICY TOR 1.0 Status Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Tor || url,doc.emergingthreats.net/2002951 || url,tor.eff.org
2002952 || ET POLICY TOR 1.0 Inbound Circuit Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Tor || url,doc.emergingthreats.net/2002952 || url,tor.eff.org
2002953 || ET POLICY TOR 1.0 Outbound Circuit Traffic || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Tor || url,doc.emergingthreats.net/2002953 || url,tor.eff.org
2002954 || ET MALWARE Bravesentry.com Fake Antispyware Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bravesentry || url,doc.emergingthreats.net/bin/view/Main/2002954 || url,research.sunbelt-software.com/threatdisplay.aspx?name=BraveSentry&threatid=44152 || url,www.bravesentry.com
2002955 || ET MALWARE Bestcount.net Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bestcount.net || url,doc.emergingthreats.net/bin/view/Main/2002955 || url,reports.internic.net/cgi/whois?whois_nic=bestcount.net&type=domain
2002956 || ET MALWARE Bestcount.net Spyware Downloading vxgame || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bestcount.net || url,doc.emergingthreats.net/bin/view/Main/2002956 || url,reports.internic.net/cgi/whois?whois_nic=bestcount.net&type=domain
2002957 || ET MALWARE Bestcount.net Spyware Initial Infection Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bestcount.net || url,doc.emergingthreats.net/bin/view/Main/2002957 || url,reports.internic.net/cgi/whois?whois_nic=bestcount.net&type=domain
2002959 || ET TROJAN Tibs Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Tibs || url,doc.emergingthreats.net/2002959
2002960 || ET TROJAN Tibs Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Tibs || url,doc.emergingthreats.net/2002960
2002961 || ET TROJAN Tibs Checkin 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Tibs || url,doc.emergingthreats.net/2002961
2002962 || ET TROJAN Tibs Code Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Tibs || url,doc.emergingthreats.net/2002962
2002963 || ET TROJAN Generic Spambot-Spyware Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Tibs || url,doc.emergingthreats.net/2002963
2002964 || ET TROJAN Generic Spyware Update Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Tibs || url,doc.emergingthreats.net/2002964
2002965 || ET TROJAN Generic Spambot Spam Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Tibs || url,doc.emergingthreats.net/2002965
2002966 || ET MALWARE Elitemediagroup.net Spyware Config Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Elitemediagroup.net || url,doc.emergingthreats.net/bin/view/Main/2002966 || url,elitemediagroup.net
2002967 || ET MALWARE Dollarrevenue.com Spyware Code Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Dollarrevenue.net || url,doc.emergingthreats.net/bin/view/Main/2002967 || url,dollarrevenue.com
2002970 || ET MALWARE VB WinHTTP User Agent - Possible Malware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2002970
2002971 || ET WEB_ACTIVEX Wmm2fxa.dll COM Object Instantiation Memory Corruption || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS06-021 || url,doc.emergingthreats.net/2002971 || url,www.microsoft.com/technet/security/bulletin/ms06-021.mspx || bugtraq,18328 || cve,2006-1303
2002972 || ET WEB PHP ZeroBoard .htaccess upload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_PHP_ZeroBoard || url,doc.emergingthreats.net/2002972 || url,secunia.com/advisories/20592/
2002973 || ET SCAN Behavioral Unusual Port 3127 traffic, Potential Scan or Backdoor || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_Backdoors || url,doc.emergingthreats.net/2002973
2002974 || ET TROJAN Backdoor.Hupigon Possible Control Connection Being Established || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Backdoor.Hupigon || url,doc.emergingthreats.net/2002974 || url,www.avira.com/en/threats/section/fulldetails/id_vir/1051/bds_hupigon.bo.html
2002975 || ET TROJAN Backdoor.Hupigon INFECTION - Reporting Host Type || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Backdoor.Hupigon || url,doc.emergingthreats.net/2002975 || url,www.avira.com/en/threats/section/fulldetails/id_vir/1051/bds_hupigon.bo.html
2002976 || ET TROJAN Banker.Delf Infection - Sending Initial Email to Owner || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Delf || url,doc.emergingthreats.net/2002976 || url,www.avira.com/en/threats/section/details/id_vir/1836/tr_banker.delf.df735649.html
2002977 || ET TROJAN Banload Downloader Infection - Sending initial email to owner || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Banload.Downloader || url,doc.emergingthreats.net/2002977 || url,www.viruslist.com/en/viruses/encyclopedia?virusid=95586
2002978 || ET TROJAN Banker.Delf Infection variant 2 - Sending Initial Email to Owner || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Delf || url,doc.emergingthreats.net/2002978 || url,www.avira.com/en/threats/section/details/id_vir/1836/tr_banker.delf.df735649.html
2002979 || ET POLICY SC-KeyLog Keylogger Installed - Sending Initial Email Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SC-KeyLog || url,doc.emergingthreats.net/2002979 || url,www.soft-central.net/keylog.php
2002980 || ET TROJAN Banker.Delf Infection variant 3 - Sending Initial Email to Owner || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Delf || url,doc.emergingthreats.net/2002980 || url,www.avira.com/en/threats/section/details/id_vir/1836/tr_banker.delf.df735649.html
2002981 || ET TROJAN Banker.Delf Infection variant 4 - Sending Initial Email to Owner || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Delf || url,doc.emergingthreats.net/2002981 || url,www.avira.com/en/threats/section/details/id_vir/1836/tr_banker.delf.df735649.html
2002982 || ET TROJAN GENERAL Possible Trojan Sending Initial Email to Owner - INFECTADO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_General || url,doc.emergingthreats.net/2002982
2002983 || ET TROJAN GENERAL Possible Trojan Sending Initial Email to Owner - SUCCESSO || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_General || url,doc.emergingthreats.net/2002983
2002984 || ET MALWARE SpySherriff Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SpySherriff || url,doc.emergingthreats.net/bin/view/Main/2002984
2002986 || ET POLICY ICQ Install Direct download - Not normal mode of install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_IM_ICQ || url,doc.emergingthreats.net/2002986
2002987 || ET MALWARE Jupitersatellites.biz Spyware Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SpySherriff || url,doc.emergingthreats.net/bin/view/Main/2002987
2002988 || ET MALWARE Possible Spambot Checking in to Spam || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spambots || url,doc.emergingthreats.net/bin/view/Main/2002988
2002989 || ET MALWARE Possible Spambot getting new exe url || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spambots || url,doc.emergingthreats.net/bin/view/Main/2002989
2002990 || ET MALWARE Possible Spambot Pulling IP List to Spam || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spambots || url,doc.emergingthreats.net/bin/view/Main/2002990
2002991 || ET MALWARE Possible Spambot getting new exe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spambots || url,doc.emergingthreats.net/bin/view/Main/2002991
2002992 || ET SCAN Rapid POP3 Connections - Possible Brute Force Attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_General_Services || url,doc.emergingthreats.net/2002992
2002993 || ET SCAN Rapid POP3S Connections - Possible Brute Force Attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_General_Services || url,doc.emergingthreats.net/2002993
2002994 || ET SCAN Rapid IMAP Connections - Possible Brute Force Attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_General_Services || url,doc.emergingthreats.net/2002994
2002995 || ET SCAN Rapid IMAPS Connections - Possible Brute Force Attack || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_General_Services || url,doc.emergingthreats.net/2002995
2002996 || ET WEB PHP GeekLog Remote File Include Vulnerability || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_GeekLog || url,doc.emergingthreats.net/2002996 || url,securitydot.net/xpl/exploits/vulnerabilities/articles/1122/exploit.html
2002997 || ET WEB PHP Remote File Inclusion (monster list http) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_PHP || url,doc.emergingthreats.net/2002997 || url,www.sans.org/top20/
2002998 || ET SMTP HELO Non-Displayable Characters MailEnable Denial of Service || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_MailEnable || url,doc.emergingthreats.net/bin/view/Main/2002998 || bugtraq,18630 || cve,2006-3277
2002999 || ET MALWARE /jk/exp.wmf Exploit Code Load Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Unknown || url,doc.emergingthreats.net/bin/view/Main/2002999
2003000 || ET MALWARE PopupSh.ocx Access Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Unknown || url,doc.emergingthreats.net/bin/view/Main/2003000
2003002 || ET POLICY TLS/SSL Client Hello on Unusual Port TLS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003002
2003003 || ET POLICY TLS/SSL Client Hello on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003003
2003004 || ET POLICY TLS/SSL Client Hello on Unusual Port Case 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003004
2003005 || ET POLICY TLS/SSL Client Hello on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003005
2003006 || ET POLICY TLS/SSL Client Key Exchange on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003006
2003007 || ET POLICY TLS/SSL Client Key Exchange on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003007
2003008 || ET POLICY TLS/SSL Client Cipher Set on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003008
2003009 || ET POLICY TLS/SSL Client Cipher Set on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003009
2003010 || ET POLICY TLS/SSL Server Hello on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003010
2003011 || ET POLICY TLS/SSL Server Hello on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003011
2003012 || ET POLICY TLS/SSL Server Certificate Exchange on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003012
2003013 || ET POLICY TLS/SSL Server Certificate Exchange on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003013
2003014 || ET POLICY TLS/SSL Server Key Exchange on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003014
2003015 || ET POLICY TLS/SSL Server Key Exchange on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003015
2003016 || ET POLICY TLS/SSL Server Hello Done on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003016
2003017 || ET POLICY TLS/SSL Server Hello Done on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003017
2003018 || ET POLICY TLS/SSL Server Cipher Set on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003018
2003019 || ET POLICY TLS/SSL Server Cipher Set on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003019
2003020 || ET POLICY TLS/SSL Encrypted Application Data on Unusual Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003020
2003021 || ET POLICY TLS/SSL Encrypted Application Data on Unusual Port SSLv3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003021
2003022 || ET POLICY Skype Bootstrap Node (udp) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Skype || url,doc.emergingthreats.net/2003022 || url,www1.cs.columbia.edu/~library/TR-repository/reports/reports-2004/cucs-039-04.pdf
2003023 || ET EXPLOIT IE StructuredGraphicsControl SourceURL Bug MoBB#6 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2003023 || cve,2006-3427 || url,browserfun.blogspot.com/2006/07/mobb-6-structuredgraphicscontrol.html
2003025 || ET MALWARE Unknown Web Bot Controller Accessed || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Unknown || url,doc.emergingthreats.net/bin/view/Main/2003025
2003026 || ET POLICY Known SSL traffic on port 443 being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003026
2003027 || ET POLICY Known SSL traffic on port 8000 being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003027
2003028 || ET POLICY Known SSL traffic on port 8080 being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003028
2003029 || ET POLICY Known SSL traffic on port 8200 being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003029
2003030 || ET POLICY Known SSL traffic on port 8443 being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003030
2003031 || ET POLICY Known SSL traffic on port 5222 (Jabber) being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003031
2003032 || ET POLICY Known SSL traffic on port 5223 (Jabber) being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003032
2003033 || ET POLICY Known SSL traffic on port 2967 (Symantec) being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003033
2003034 || ET MALWARE Trojan.Downloader.Time2Pay.AQ || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Time2Pay || url,doc.emergingthreats.net/bin/view/Main/2003034 || url,research.sunbelt-software.com
2003035 || ET POLICY Known SSL traffic on port 3128 (proxy) being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003035
2003036 || ET POLICY Known SSL traffic on port 8080 (proxy) being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003036
2003037 || ET POLICY Known SSL traffic on port 8292 (Bloomberg) being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003037
2003038 || ET POLICY Known SSL traffic on port 8294 (Bloomberg) being excluded from SSL Alerts || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_SSL_TLS_on_High_Port || url,doc.emergingthreats.net/2003038
2003039 || ET EXPLOIT UPnP DLink M-Search Overflow Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Dlink || url,doc.emergingthreats.net/bin/view/Main/2003039 || url,www.eeye.com/html/research/advisories/AD20060714.html
2003040 || ET POLICY PCMesh Anonymous Proxy client connect || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_PCMesh || url,doc.emergingthreats.net/2003040
2003041 || ET VIRUS Win32.SMTP-Mailer SMTP Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Win32_Mailer || url,doc.emergingthreats.net/2003041 || url,www.hauri.net/virus/virusinfo_read.php?code=TRW3000774&start=1 || url,research.sunbelt-software.com/threatdisplay.aspx?name=Win32.SMTP-Mailer&threatid=48095
2003045 || ET POLICY Real.com Game Arcade Install (User agent) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Real.com_Game_Installs || url,doc.emergingthreats.net/2003045
2003046 || ET POLICY Real.com Game Arcade Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Real.com_Game_Installs || url,doc.emergingthreats.net/2003046
2003047 || ET POLICY Proxy Judge Discovery/Evasion (prxjdg.cgi) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Proxy_Judge || url,doc.emergingthreats.net/2003047
2003048 || ET POLICY Proxy Judge Discovery/Evasion (proxyjudge.cgi) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Proxy_Judge || url,doc.emergingthreats.net/2003048
2003055 || ET MALWARE Suspicious 220 Banner on Local Port || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Off_Port_FTP || url,doc.emergingthreats.net/bin/view/Main/2003055
2003056 || ET WEB-MISC EiQNetworks Security Analyzer Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_eIQnetworks || url,doc.emergingthreats.net/2003056 || url,secunia.com/advisories/21211/ || cve,2006-3838
2003057 || ET MALWARE 180solutions Spyware Actionlibs Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2003057 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2003058 || ET MALWARE 180solutions (Zango) Spyware Installer Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2003058 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2003059 || ET MALWARE 180solutions (Zango) Spyware TB Installer Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2003059 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2003060 || ET MALWARE 180solutions (Zango) Spyware Local Stats Post || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2003060 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2003061 || ET MALWARE 180solutions (Zango) Spyware Event Activity Post || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2003061 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2003062 || ET MALWARE 180 Solutions (Zango Installer) User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003062
2003063 || ET WEB WebAttacker RootLauncher || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Webattacker_Kit || url,doc.emergingthreats.net/2003063
2003064 || ET EXPLOIT Cisco-MARS/JBoss jmx-console POST || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Cisco_Mars || url,doc.emergingthreats.net/bin/view/Main/2003064 || bugtraq,19071
2003065 || ET EXPLOIT Cisco-MARS/JBoss Remote Command Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Cisco_Mars || url,doc.emergingthreats.net/bin/view/Main/2003065 || bugtraq,19071
2003066 || ET TROJAN Torpig Reporting User Activity (wur8) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Torpig || url,doc.emergingthreats.net/2003066 || url,www.sophos.com/virusinfo/analyses/trojtorpigr.html
2003067 || ET EXPLOIT DOS Microsoft Windows SRV.SYS MAILSLOT  || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS06-035 || url,doc.emergingthreats.net/bin/view/Main/2003067 || url,www.microsoft.com/technet/security/bulletin/MS06-035.mspx || url,www.milw0rm.com/exploits/2057
2003068 || ET SCAN Potential SSH Scan OUTBOUND || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_SSH_Brute_Force || url,doc.emergingthreats.net/2003068 || url,en.wikipedia.org/wiki/Brute_force_attack
2003069 || ET POLICY Anonymous Proxy Traffic from Inside || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_PCMesh || url,doc.emergingthreats.net/2003069
2003070 || ET WORM Korgo.U Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_KORGO || url,doc.emergingthreats.net/2003070 || url,www.f-secure.com/v-descs/korgo_u.shtml
2003071 || ET ATTACK RESPONSE Possible /etc/passwd via HTTP (BSD style) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_etc-passwd || url,doc.emergingthreats.net/bin/view/Main/2003071
2003072 || ET EXPLOIT Linksys WRT54g Authentication Bypass Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Linksys || url,doc.emergingthreats.net/bin/view/Main/2003072 || url,secunia.com/advisories/21372/
2003073 || ET TROJAN ICMP Banking Trojan sending encrypted stolen data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_ICMP_Tunnel || url,doc.emergingthreats.net/2003073 || url,www.websensesecuritylabs.com/alerts/alert.php?AlertID=570
2003074 || ET MALWARE Content-loader.com Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Contentloader.com || url,doc.emergingthreats.net/bin/view/Main/2003074
2003075 || ET MALWARE Content-loader.com Spyware Install 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Contentloader.com || url,doc.emergingthreats.net/bin/view/Main/2003075
2003076 || ET MALWARE Content-loader.com (ownusa.info) Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Contentloader.com || url,doc.emergingthreats.net/bin/view/Main/2003076
2003077 || ET WEB_ACTIVEX COM Object MS06-042 (group 1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS06-042 || url,doc.emergingthreats.net/2003077 || url,www.microsoft.com/technet/security/Bulletin/MS06-042.mspx || cve,2006-3638
2003078 || ET WEB_ACTIVEX COM Object MS06-042 (group 2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS06-042 || url,doc.emergingthreats.net/2003078 || url,www.microsoft.com/technet/security/Bulletin/MS06-042.mspx || cve,2006-3638
2003079 || ET WEB_ACTIVEX COM Object MS06-042 (group 3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS06-042 || url,doc.emergingthreats.net/2003079 || url,www.microsoft.com/technet/security/Bulletin/MS06-042.mspx || cve,2006-3638
2003080 || ET WEB_ACTIVEX COM Object MS06-042 (group 4) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_MS06-042 || url,doc.emergingthreats.net/2003080 || url,www.microsoft.com/technet/security/Bulletin/MS06-042.mspx || cve,2006-3638
2003081 || ET EXPLOIT NETBIOS SMB DCERPC NetrpPathCanonicalize request (possible MS06-040) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS06-040 || url,doc.emergingthreats.net/bin/view/Main/2003081 || url,www.microsoft.com/technet/security/bulletin/MS06-040.mspx
2003082 || ET EXPLOIT NETBIOS SMB-DS DCERPC NetrpPathCanonicalize request (possible MS06-040) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS06-040 || url,doc.emergingthreats.net/bin/view/Main/2003082 || url,www.microsoft.com/technet/security/bulletin/MS06-040.mspx
2003083 || ET TROJAN Dialer || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Dialers || url,doc.emergingthreats.net/2003083 || url,isc.sans.org/diary.php?storyid=1388
2003084 || ET MALWARE TROJAN_VB Microjoin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Dropper.Microjoin || url,doc.emergingthreats.net/bin/view/Main/2003084 || url,de.trendmicro-europe.com/consumer/vinfo/encyclopedia.php?VName=TROJ_VB.AWW
2003085 || ET WEB TWiki Configure Script TYPEOF Remote Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Twiki || url,doc.emergingthreats.net/2003085 || bugtraq,19188 || cve,CVE-2006-3819
2003086 || ET WEB Barracuda Spam Firewall preview_email.cgi Remote Command Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Barracuda_Spam_Firewall || url,doc.emergingthreats.net/2003086 || bugtraq,19276
2003087 || ET WEB Barracuda Spam Firewall preview_email.cgi Remote Directory Traversal Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Barracuda_Spam_Firewall || url,doc.emergingthreats.net/2003087 || bugtraq,19276
2003089 || ET GAMES STEAM Connection (v2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/GAMES/GAMES_Steam || url,doc.emergingthreats.net/bin/view/Main/2003089
2003092 || ET POLICY Gmail gtalk || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Gtalk || url,doc.emergingthreats.net/2003092
2003093 || ET POLICY iMesh 6 User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_iMesh || url,doc.emergingthreats.net/2003093
2003094 || ET TROJAN VMM Detecting Torpig/Anserin/Sinowal Trojan || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Torpig || url,doc.emergingthreats.net/2003094
2003095 || ET TROJAN (UPX) VMM Detecting Torpig/Anserin/Sinowal Trojan || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Torpig || url,doc.emergingthreats.net/2003095
2003096 || ET POLICY Possible Image Spam Inbound (simple rule) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_ImageSpam || url,doc.emergingthreats.net/2003096
2003097 || ET POLICY Possible Image Spam Inbound (complex rule) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_ImageSpam || url,doc.emergingthreats.net/2003097
2003098 || ET WEB PHP Remote File Inclusion (monster list ftp) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_PHP || url,doc.emergingthreats.net/2003098 || url,www.sans.org/top20/
2003099 || ET WEB-MISC Poison Null Byte || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_URI || url,doc.emergingthreats.net/2003099 || url,www.security-assessment.com/Whitepapers/0x00_vs_ASP_File_Uploads.pdf || cve,2006-3602 || cve,2006-4458 || cve,2006-4542
2003100 || ET POLICY Porn-Sports-Gambling site designed to bypass restrictions || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_bodog.com || url,doc.emergingthreats.net/2003100 || url,www.bodog.com
2003102 || ET WEB_ACTIVEX Microsoft Multimedia Controls - ActiveX control's spline function call CLSID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003102 || cve,2006-4446 || url,www.osvdb.org/displayvuln.php?osvdb_id=28841
2003103 || ET WEB_ACTIVEX Microsoft Multimedia Controls - ActiveX control's spline function call Object || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003103 || cve,2006-4446 || url, www.osvdb.org/displayvuln.php?osvdb_id=28841
2003104 || ET WEB_ACTIVEX Microsoft Multimedia Controls - ActiveX control's KeyFrame function call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003104 || cve,2006-4777 || url,www.osvdb.org/displayvuln.php?osvdb_id=28842
2003105 || ET WEB_ACTIVEX Microsoft Multimedia Controls - ActiveX control's KeyFrame function call Object || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003105 || cve,2006-4777 || url,www.osvdb.org/displayvuln.php?osvdb_id=28842
2003109 || ET EXPLOIT Microsoft Internet Explorer VML Fill Method Attribute Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2003109 || bugtraq,20096 || cve,2006-4868
2003110 || ET EXPLOIT MSIE WebViewFolderIcon setSlice invalid memory copy || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2003110 || cve,2006-3730 || url,osvdb.org/27110 || url, riosec.com/msie-setslice-vuln
2003115 || ET TROJAN - Trojan.Proxy.PPAgent.t (updatea) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PPAgent || url,doc.emergingthreats.net/2003115 || url,original.avira.com/en/threats/vdf_history.html?id_vdf=2738
2003116 || ET TROJAN - Trojan.Proxy.PPAgent.t (updateb) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PPAgent || url,doc.emergingthreats.net/2003116 || url,original.avira.com/en/threats/vdf_history.html?id_vdf=2738
2003117 || ET VIRUS SHELLCODE CLET polymorphic payload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Polymorphic_Experimental || url,doc.emergingthreats.net/2003117 || url,toorcon.org/2006/conference.html?id=29
2003118 || ET VIRUS SHELLCODE Shikata Ga Nai polymorphic payload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Polymorphic_Experimental || url,doc.emergingthreats.net/2003118 || url,toorcon.org/2006/conference.html?id=29
2003119 || ET VIRUS SHELLCODE ADMutate polymorphic payload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Polymorphic_Experimental || url,doc.emergingthreats.net/2003119 || url,toorcon.org/2006/conference.html?id=29
2003120 || ET POLICY Possible Image Spam Inbound (3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_ImageSpam || url,doc.emergingthreats.net/2003120
2003121 || ET POLICY docs.google.com Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Google || url,doc.emergingthreats.net/2003121 || url,docs.google.com
2003122 || ET POLICY Possible docs.google.com Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Google || url,doc.emergingthreats.net/2003122 || url,docs.google.com
2003132 || ET TROJAN BOT - potential DDoS command (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2003132
2003138 || ET TROJAN SpamThru trojan peer exchange || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_SpamThru || url,doc.emergingthreats.net/2003138 || url,www.secureworks.com/analysis/spamthru/
2003139 || ET TROJAN SpamThru trojan SMTP test successful || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_SpamThru || url,doc.emergingthreats.net/2003139 || url,www.secureworks.com/analysis/spamthru/
2003140 || ET TROJAN SpamThru trojan update request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_SpamThru || url,doc.emergingthreats.net/2003140 || url,www.secureworks.com/analysis/spamthru/
2003141 || ET TROJAN SpamThru trojan AV DLL request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_SpamThru || url,doc.emergingthreats.net/2003141 || url,www.secureworks.com/analysis/spamthru/
2003142 || ET TROJAN SpamThru trojan spam template request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_SpamThru || url,doc.emergingthreats.net/2003142 || url,www.secureworks.com/analysis/spamthru/
2003143 || ET TROJAN SpamThru trojan spam run report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_SpamThru || url,doc.emergingthreats.net/2003143 || url,www.secureworks.com/analysis/spamthru/
2003144 || ET TROJAN SpamThru trojan AV scan report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_SpamThru || url,doc.emergingthreats.net/2003144 || url,www.secureworks.com/analysis/spamthru/
2003145 || ET EXPLOIT Novell HttpStk Remote Code Execution Attempt /nds || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Novell_HTTPSTK || url,doc.emergingthreats.net/bin/view/Main/2003145
2003146 || ET EXPLOIT Novell HttpStk Remote Code Execution Attempt /dhost || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Novell_HTTPSTK || url,doc.emergingthreats.net/bin/view/Main/2003146
2003147 || ET EXPLOIT Novell HttpStk Remote Code Execution Attempt /dhost (linewrap) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Novell_HTTPSTK || url,doc.emergingthreats.net/bin/view/Main/2003147
2003148 || ET EXPLOIT Novell HttpStk Remote Code Execution Attempt /nds (linewrap) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Novell_HTTPSTK || url,doc.emergingthreats.net/bin/view/Main/2003148
2003149 || ET ATTACK RESPONSE Possible /etc/passwd via SMTP (linux style) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_etc-passwd || url,doc.emergingthreats.net/bin/view/Main/2003149
2003150 || ET ATTACK RESPONSE Possible /etc/passwd via SMTP (BSD style) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_etc-passwd || url,doc.emergingthreats.net/bin/view/Main/2003150
2003151 || ET MALWARE Fun Web Products SmileyCentral IEsp2 Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Fun_Web_Products || url,doc.emergingthreats.net/bin/view/Main/2003151 || url,www.myfuncards.com
2003152 || ET WEB_SPECIFIC CutePHP CuteNews directory traversal vulnerability - show_archives || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CuteNews || url,doc.emergingthreats.net/2003152 || bugtraq,15295
2003153 || ET MALWARE Bestcount.net Spyware Exploit Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bestcount.net || url,doc.emergingthreats.net/bin/view/Main/2003153 || url,reports.internic.net/cgi/whois?whois_nic=bestcount.net&type=domain
2003154 || ET MALWARE Bestcount.net Spyware Data Upload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bestcount.net || url,doc.emergingthreats.net/bin/view/Main/2003154 || url,reports.internic.net/cgi/whois?whois_nic=bestcount.net&type=domain
2003155 || ET POLICY Microsoft TEREDO IPv6 tunneling || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_MS_Teredo_Tunnel || url,doc.emergingthreats.net/2003155
2003156 || ET WEB Crewbox Proxy Scan || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Apache_Open_Proxy || url,doc.emergingthreats.net/2003156
2003157 || ET TROJAN Agobot-SDBot Commands || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2003157
2003158 || ET WEB_ACTIVEX Microsoft WMIScriptUtils.WMIObjectBroker object call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003158 || url,www.microsoft.com/technet/security/bulletin/ms06-073.mspx || cve,2006-4704 || url,secunia.com/advisories/22603 || url,www.securityfocus.com/bid/20843
2003159 || ET WEB_ACTIVEX Microsoft VsmIDE.DTE object call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003159
2003160 || ET WEB_ACTIVEX Microsoft DExplore.AppObj.8.0 object call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003160
2003161 || ET WEB_ACTIVEX Microsoft VisualStudio.DTE.8.0 object call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003161
2003162 || ET WEB_ACTIVEX Microsoft Microsoft.DbgClr.DTE.8.0 object call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003162
2003163 || ET WEB_ACTIVEX Microsoft VsaIDE.DTE object call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003163
2003164 || ET WEB_ACTIVEX Microsoft Business Object Factory object call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003164
2003165 || ET WEB_ACTIVEX Microsoft Outlook Data Object object call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003165
2003166 || ET WEB_ACTIVEX Microsoft Outlook.Application object call CSLID || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003166
2003167 || ET WEB tikiwiki featured link XSS attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_tikiwiki || url,doc.emergingthreats.net/2003167 || url,www.securityfocus.com/archive/1/450268/30/0
2003168 || ET POLICY Winamp Streaming User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Winamp || url,doc.emergingthreats.net/2003168
2003170 || ET MALWARE Zango Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2003170 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2003171 || ET SCAN IBM NSA User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_IBM_NSA || url,doc.emergingthreats.net/2003171 || url,ftp.inf.utfsm.cl/pub/Docs/IBM/Tivoli/pdfs/sg246021.pdf
2003172 || ET P2P Manolito Search Query || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Blubster || url,doc.emergingthreats.net/bin/view/Main/2003172 || url,www.blubster.com
2003173 || ET EXPLOIT Possible UTF-8 encoded Shellcode Detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Generic_Shellcode || url,doc.emergingthreats.net/bin/view/Main/2003173
2003174 || ET EXPLOIT Possible UTF-16 encoded Shellcode Detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Generic_Shellcode || url,doc.emergingthreats.net/bin/view/Main/2003174
2003175 || ET TROJAN Warezov/Stration Challenge || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Warezov || url,doc.emergingthreats.net/2003175 || url,www.sophos.com/security/analyses/w32strationbo.html
2003176 || ET TROJAN Warezov/Stration Challenge Response || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Warezov || url,doc.emergingthreats.net/2003176 || url,www.sophos.com/security/analyses/w32strationbo.html
2003179 || ET POLICY exe download without User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_EXE_NoUserAgent || url,doc.emergingthreats.net/2003179
2003180 || ET TROJAN Possible Warezov/Stration Data Post to Controller || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Warezov || url,doc.emergingthreats.net/2003180 || url,www.sophos.com/security/analyses/w32strationbo.html
2003182 || ET TROJAN Prg Trojan v0.1-v0.3 Data Upload || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PRG || url,doc.emergingthreats.net/2003182 || url,www.securescience.net/FILES/securescience/10378/pubMalwareCaseStudy.pdf
2003183 || ET TROJAN Prg Trojan Server Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PRG || url,doc.emergingthreats.net/2003183 || url,www.securescience.net/FILES/securescience/10378/pubMalwareCaseStudy.pdf
2003184 || ET TROJAN Prg Trojan v0.1 Binary In Transit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PRG || url,doc.emergingthreats.net/2003184 || url,www.securescience.net/FILES/securescience/10378/pubMalwareCaseStudy.pdf
2003185 || ET TROJAN Prg Trojan v0.2 Binary In Transit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PRG || url,doc.emergingthreats.net/2003185 || url,www.securescience.net/FILES/securescience/10378/pubMalwareCaseStudy.pdf
2003186 || ET TROJAN Prg Trojan v0.3 Binary In Transit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PRG || url,doc.emergingthreats.net/2003186 || url,www.securescience.net/FILES/securescience/10378/pubMalwareCaseStudy.pdf
2003187 || ET TROJAN Win32.Lager Trojan Initial Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Lager.Win32 || url,doc.emergingthreats.net/2003187 || url,www.viruslist.com/en/viruses/encyclopedia?virusid=87732
2003188 || ET TROJAN Win32.Lager Trojan Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Lager.Win32 || url,doc.emergingthreats.net/2003188 || url,www.viruslist.com/en/viruses/encyclopedia?virusid=87732
2003189 || ET TROJAN Win32.Lager Trojan Reporting (gcu) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Lager.Win32 || url,doc.emergingthreats.net/2003189 || url,www.viruslist.com/en/viruses/encyclopedia?virusid=87732
2003190 || ET TROJAN Win32.Lager Trojan Reporting Spam || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Lager.Win32 || url,doc.emergingthreats.net/2003190 || url,www.viruslist.com/en/viruses/encyclopedia?virusid=87732
2003192 || ET VOIP INVITE Message Flood || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VOIP/VOIP_Flooding || url,doc.emergingthreats.net/2003192
2003193 || ET VOIP REGISTER Message Flood || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VOIP/VOIP_Flooding || url,doc.emergingthreats.net/2003193
2003194 || ET VOIP Multiple Unauthorized SIP Responses || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VOIP/VOIP_Unauth || url,doc.emergingthreats.net/2003194
2003195 || ET POLICY Unusual number of DNS No Such Name Responses || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_DNS_Responses || url,doc.emergingthreats.net/2003195
2003196 || ET EXPLOIT FTP .message file write || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_ProFTPD || url,doc.emergingthreats.net/bin/view/Main/2003196 || url,www.milw0rm.com/exploits/2856
2003197 || ET EXPLOIT ProFTPD .message file overflow attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_ProFTPD || url,doc.emergingthreats.net/bin/view/Main/2003197 || url,www.milw0rm.com/exploits/2856
2003198 || ET EXPLOIT TFTP Invalid Mode in file Get || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_TFTP_Mode || url,doc.emergingthreats.net/bin/view/Main/2003198
2003199 || ET EXPLOIT TFTP Invalid Mode in file Put || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_TFTP_Mode || url,doc.emergingthreats.net/bin/view/Main/2003199
2003200 || ET MALWARE Suspicious User Agent (MSIE XPSP2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003200
2003201 || ET MALWARE Thespyguard.com Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Kliksoftware || url,doc.emergingthreats.net/bin/view/Main/2003201 || url,www.kliksoftware.com || url,www.thespyguard.com
2003202 || ET MALWARE Thespyguard.com Spyware Update Check || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Kliksoftware || url,doc.emergingthreats.net/bin/view/Main/2003202 || url,www.thespyguard.com || url,www.kliksoftware.com
2003203 || ET MALWARE Hitvirus Fake AV Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Kliksoftware || url,doc.emergingthreats.net/bin/view/Main/2003203 || url,www.kliksoftware.com
2003204 || ET MALWARE Thespyguard.com Spyware Updating || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Kliksoftware || url,doc.emergingthreats.net/bin/view/Main/2003204 || url,www.thespyguard.com || url,www.kliksoftware.com
2003205 || ET MALWARE Suspicious User Agent (Informer from RBC) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003205 || url,www.kliksoftware.com
2003206 || ET EXPLOIT Quicktime .mov File Requested || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MOV_Javascript || url,doc.emergingthreats.net/bin/view/Main/2003206
2003207 || ET EXPLOIT Quicktime .mov File with embedded Javascript || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MOV_Javascript || url,doc.emergingthreats.net/bin/view/Main/2003207
2003208 || ET TROJAN pBot (PHP bot) Commands || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2003208
2003209 || ET MALWARE Best-targeted-traffic.com Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Best-Targeted-Traffic.com || url,doc.emergingthreats.net/bin/view/Main/2003209
2003210 || ET MALWARE Best-targeted-traffic.com Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Best-Targeted-Traffic.com || url,doc.emergingthreats.net/bin/view/Main/2003210
2003211 || ET MALWARE Best-targeted-traffic.com Spyware Ping || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Best-Targeted-Traffic.com || url,doc.emergingthreats.net/bin/view/Main/2003211
2003214 || ET POLICY Pingdom.com Monitoring detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Pingdom_Monitoring || url,doc.emergingthreats.net/2003214 || url,royal.pingdom.com/?p=46
2003215 || ET POLICY Pingdom.com Monitoring Node Active || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Pingdom_Monitoring || url,doc.emergingthreats.net/2003215 || url,royal.pingdom.com/?p=46
2003216 || ET MALWARE Conduit Connect Toolbar (Many report to be benign) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Conduit_Connect || url,doc.emergingthreats.net/bin/view/Main/2003216 || url,www.conduit.com
2003217 || ET MALWARE 180solutions (Zango) Spyware Installer Config 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2003217 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2003218 || ET MALWARE Conduit Connect Toolbar Message Download(Many report to be benign) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Conduit_Connect || url,doc.emergingthreats.net/bin/view/Main/2003218 || url,www.conduit.com
2003219 || ET MALWARE Alexa Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Alexa || url,doc.emergingthreats.net/bin/view/Main/2003219
2003221 || ET MALWARE MySearchNow.com Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MySearchnow.com || url,doc.emergingthreats.net/bin/view/Main/2003221 || url,www.mysearchnow.com
2003222 || ET MALWARE MyWebSearch Toolbar Receiving Config 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_My_Web_Toolbar || url,doc.emergingthreats.net/bin/view/Main/2003222
2003223 || ET MALWARE Zango-Hotbar User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003223
2003224 || ET MALWARE Megaupload Spyware User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003224 || url,www.budsinc.com
2003230 || ET EXPLOIT Microsoft IE FTP URL Arbitrary Command Injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IE_Vulnerabilities || url,doc.emergingthreats.net/bin/view/Main/2003230 || cve,2004-1166 || url,osvdb.org/12299
2003231 || ET WEB_ACTIVEX Possible Microsoft IE Install Engine Inseng.dll Arbitrary Code Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003231 || cve,2004-0216 || url, osvdb.org/10705
2003232 || ET WEB_ACTIVEX Possible Microsoft IE Install Engine Inseng.dll Arbitrary Code Execution (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003232 || cve,2004-0216 || url, osvdb.org/10705
2003233 || ET WEB_ACTIVEX Possible Microsoft IE Shell.Application ActiveX Arbitrary Command Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003233 || cve,2004-2291 || url, osvdb.org/7913
2003234 || ET WEB_ACTIVEX Possible Microsoft IE Shell.Application ActiveX Arbitrary Command Execution (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003234 || cve,2004-2291 || url, osvdb.org/7913
2003236 || ET DOS NetrWkstaUserEnum Request with large Preferred Max Len || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_MS_SMB || url,doc.emergingthreats.net/bin/view/Main/2003236 || cve,2006-6723
2003237 || ET EXPLOIT MultiTech SIP UDP Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_SIP || url,doc.emergingthreats.net/bin/view/Main/2003237 || cve,2005-4050
2003238 || ET TROJAN W32.Downloader Tibs.jy Reporting to C&C || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Tibs || url,doc.emergingthreats.net/2003238
2003239 || ET TROJAN W32.Downloader Tibs.jy Reporting to C&C (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Tibs || url,doc.emergingthreats.net/2003239
2003240 || ET MALWARE New.net Spyware updating || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_New.net || url,doc.emergingthreats.net/bin/view/Main/2003240 || url,www.new.net
2003241 || ET MALWARE New.net Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_New.net || url,doc.emergingthreats.net/bin/view/Main/2003241 || url,www.new.net
2003242 || ET MALWARE Websearch.com Cab Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Websearch.com || url,doc.emergingthreats.net/bin/view/Main/2003242 || mcafee,131461
2003243 || ET MALWARE Suspicious User Agent (Download Agent) Possibly Related to TrinityAcquisitions.com || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003243
2003244 || ET TROJAN HackerDefender.HE Root Kit Control Connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_HackerDefender || url,doc.emergingthreats.net/2003244 || url,securityresponse.symantec.com/avcenter/venc/data/backdoor.hackdefender.html
2003245 || ET TROJAN HackerDefender.HE Root Kit Control Connection Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_HackerDefender || url,doc.emergingthreats.net/2003245 || url,securityresponse.symantec.com/avcenter/venc/data/backdoor.hackdefender.html
2003250 || ET EXPLOIT Symantec Remote Management RTVScan Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Symantec || url,doc.emergingthreats.net/bin/view/Main/2003250 || url,research.eeye.com/html/advisories/published/AD20060612.html || cve,2006-3455
2003251 || ET MALWARE SpySheriff Intial Phone Home || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_SpySherriff || url,doc.emergingthreats.net/bin/view/Main/2003251 || url,vil.nai.com/vil/content/v_135033.htm
2003253 || ET MALWARE MarketScore Spyware Uploading Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MarketScore || url,doc.emergingthreats.net/bin/view/Main/2003253 || url,www.spysweeper.com/remove-marketscore.html || url,www.marketscore.com
2003254 || ET MALWARE SOCKSv5 Port 25 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003254 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003255 || ET MALWARE SOCKSv5 Port 25 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003255 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003256 || ET MALWARE SOCKSv4 Port 25 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003256 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003257 || ET MALWARE SOCKSv5 Port 25 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003257 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003258 || ET MALWARE SOCKSv5 DNS Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003258 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003259 || ET MALWARE SOCKSv5 DNS Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003259 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003260 || ET MALWARE SOCKSv5 HTTP Proxy Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003260 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003261 || ET MALWARE SOCKSv5 HTTP Proxy Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003261 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003262 || ET MALWARE SOCKSv4 HTTP Proxy Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003262 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003263 || ET MALWARE SOCKSv4 HTTP Proxy Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003263 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003266 || ET MALWARE SOCKSv5 Port 443 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003266 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003267 || ET MALWARE SOCKSv5 Port 443 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003267 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003268 || ET MALWARE SOCKSv4 Port 443 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003268 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003269 || ET MALWARE SOCKSv4 Port 443 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003269 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003270 || ET MALWARE SOCKSv5 Port 5190 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003270 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003271 || ET MALWARE SOCKSv5 Port 5190 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003271 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003272 || ET MALWARE SOCKSv4 Port 5190 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003272 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003273 || ET MALWARE SOCKSv5 Port 5190 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003273 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003274 || ET MALWARE SOCKSv5 Port 1863 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003274 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003275 || ET MALWARE SOCKSv5 Port 1863 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003275 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003276 || ET MALWARE SOCKSv4 Port 1863 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003276 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003277 || ET MALWARE SOCKSv4 Port 1863 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003277 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003278 || ET MALWARE SOCKSv5 Port 5050 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003278 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003279 || ET MALWARE SOCKSv5 Port 5050 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003279 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003280 || ET MALWARE SOCKSv4 Port 5050 Inbound Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003280 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003281 || ET MALWARE SOCKSv4 Port 5050 Inbound Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003281 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003282 || ET MALWARE SOCKSv4 Inbound Connect Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003282 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003283 || ET MALWARE SOCKSv4 Inbound Connect Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003283 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003284 || ET MALWARE SOCKSv5 IPv6 Inbound Connect Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003284 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003285 || ET MALWARE SOCKSv5 IPv6 Inbound Connect Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003285 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003286 || ET MALWARE SOCKSv5 UDP Proxy Inbound Connect Request (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003286 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003287 || ET MALWARE SOCKSv5 UDP Proxy Inbound Connect Request (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003287 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003288 || ET MALWARE SOCKSv4 Bind Inbound (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003288 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003289 || ET MALWARE SOCKSv4 Bind Inbound (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003289 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003290 || ET MALWARE SOCKSv5 Bind Inbound (Linux Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003290 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003291 || ET MALWARE SOCKSv5 Bind Inbound (Windows Source) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Socks_Proxy || url,doc.emergingthreats.net/bin/view/Main/2003291 || url,www.ietf.org/rfc/rfc3089.txt || url,www.ietf.org/rfc/rfc1961.txt || url,www.ietf.org/rfc/rfc1929.txt || url,www.ietf.org/rfc/rfc1928.txt || url,ss5.sourceforge.net/socks4A.protocol.txt || url,ss5.sourceforge.net/socks4.protocol.txt || url,en.wikipedia.org/wiki/SOCKS || url,handlers.sans.org/wsalusky/rants/
2003292 || ET WORM Allaple ICMP Sweep Ping Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Allaple || url,doc.emergingthreats.net/2003292 || url,isc.sans.org/diary.html?storyid=2451 || url,www.sophos.com/virusinfo/analyses/w32allapleb.html
2003293 || ET WORM Allaple ICMP Sweep Reply Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Allaple || url,doc.emergingthreats.net/2003293 || url,isc.sans.org/diary.html?storyid=2451 || url,www.sophos.com/virusinfo/analyses/w32allapleb.html
2003294 || ET WORM Allaple ICMP Sweep Ping Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Allaple || url,doc.emergingthreats.net/2003294 || url,isc.sans.org/diary.html?storyid=2451 || url,www.sophos.com/virusinfo/analyses/w32allapleb.html
2003295 || ET WORM Allaple ICMP Sweep Reply Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Allaple || url,doc.emergingthreats.net/2003295 || url,isc.sans.org/diary.html?storyid=2451 || url,www.sophos.com/virusinfo/analyses/w32allapleb.html
2003296 || ET TROJAN Possible Web-based DDoS-command being issued || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Lager.Win32 || url,doc.emergingthreats.net/2003296
2003297 || ET MALWARE Travel Update Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Travel_Update || url,doc.emergingthreats.net/bin/view/Main/2003297
2003298 || ET MALWARE KMIP.net Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Kmip.net || url,doc.emergingthreats.net/bin/view/Main/2003298 || url,www.kmip.net
2003302 || ET TROJAN psyBNC IRC Server Connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_IRC_Bots || url,doc.emergingthreats.net/2003302 || url,en.wikipedia.org/wiki/PsyBNC
2003303 || ET POLICY FTP Login Attempt (non-anonymous) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_FTP_Login || url,doc.emergingthreats.net/2003303
2003304 || ET MALWARE Effectivebrands.com Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Effectivebrands.com || url,doc.emergingthreats.net/bin/view/Main/2003304
2003305 || ET MALWARE Zango-Hotbar User Agent (zbu-hb-) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003305
2003306 || ET MALWARE 180solutions Spyware (tracked event 2 reporting) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2003306 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2003307 || ET MALWARE Comet Systems Spyware Cursor DL || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Comet_Cursor_Spyware || url,doc.emergingthreats.net/bin/view/Main/2003307
2003308 || ET P2P Edonkey IP Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003308 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003309 || ET P2P Edonkey IP Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003309 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003310 || ET P2P Edonkey Publicize File || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003310 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003311 || ET P2P Edonkey Publicize File ACK || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003311 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003312 || ET P2P Edonkey Connect Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003312 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003313 || ET P2P Edonkey Connect Reply and Server List || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003313 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003314 || ET P2P Edonkey Search Request (by file hash) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003314 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003315 || ET P2P Edonkey Search Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003315 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003316 || ET P2P Edonkey IP Query End || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003316 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003317 || ET P2P Edonkey Search Request (any type file) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003317 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003318 || ET P2P Edonkey Get Sources Request (by hash) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003318 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003319 || ET P2P Edonkey Search Request (search by name) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003319 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003320 || ET P2P Edonkey Search Results || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003320 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003321 || ET P2P Edonkey Server Message || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003321 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003322 || ET P2P Edonkey Server List || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003322 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003323 || ET P2P Edonkey Client to Server Hello || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003323 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003324 || ET P2P Edonkey Server Status || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Edonkey_Traffic || url,doc.emergingthreats.net/bin/view/Main/2003324 || url,www.giac.org/certified_professionals/practicals/gcih/0446.php
2003325 || ET POLICY SMTP Executable attachment || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_EXE || url,doc.emergingthreats.net/2003325
2003326 || ET WEB-CLIENT Apple Quicktime RTSP Overflow (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Apple || url,doc.emergingthreats.net/2003326 || bugtraq,21829 || cve,2007-0015
2003327 || ET WEB-CLIENT Apple Quicktime RTSP Overflow (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Apple || url,doc.emergingthreats.net/2003327 || bugtraq,21829 || cve,2007-0015
2003328 || ET WEB_ACTIVEX NCTAudioFile2 ActiveX SetFormatLikeSample() Buffer Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_NCTAudiofile2 || url,doc.emergingthreats.net/2003328 || url,secunia.com/advisories/23475/ || cve,2007-0018
2003329 || ET EXPLOIT Centrality IP Phone (PA-168 Chipset) Session Hijacking || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_IP_Phone || url,doc.emergingthreats.net/bin/view/Main/2003329 || url,www.milw0rm.com/exploits/3189
2003330 || ET POLICY Possible Spambot Host DNS MX Query High Count || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_TROJAN_DNS_Lookups || url,doc.emergingthreats.net/2003330
2003331 || ET WEB_SPECIFIC PHP Generic membreManager.php remote file include || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Membremanager || url,doc.emergingthreats.net/2003331 || bugtraq,22287
2003332 || ET EXPLOIT GuppY error.php POST Arbitrary Remote Code Execution || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Guppy || url,doc.emergingthreats.net/bin/view/Main/2003332 || bugtraq,15609
2003333 || ET WEB_SPECIFIC PHP Gnopaster Common.php remote file include || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Gnopaster || url,doc.emergingthreats.net/2003333 || bugtraq,18180
2003334 || ET WEB Cacti cmd.php Remote Arbitrary SQL Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Cacti || url,doc.emergingthreats.net/2003334 || bugtraq,21799 || cve,CVE-2006-6799
2003335 || ET MALWARE 2search.org User Agent (2search) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003335
2003336 || ET MALWARE AntiVermins.com Fake Antispyware Package User Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003336
2003337 || ET MALWARE Suspicious User Agent (Autoupdate) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003337
2003340 || ET MALWARE Baidu.com Spyware Bar Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Baidu.com || url,doc.emergingthreats.net/bin/view/Main/2003340 || url,www.pctools.com/mrc/infections/id/BaiDu/
2003341 || ET MALWARE Baidu.com Spyware Bar Pulling Content || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Baidu.com || url,doc.emergingthreats.net/bin/view/Main/2003341 || url,www.pctools.com/mrc/infections/id/BaiDu/
2003342 || ET MALWARE www.baidu.com Spyware User Agent (bar-get) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003342
2003343 || ET MALWARE CNSMin Spyware User Agent (CnsMin Agent) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003343
2003344 || ET MALWARE Trinityacquisitions.com and Maximumexperience.com Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MaxExp_TrinityAcquisitions.com || url,doc.emergingthreats.net/bin/view/Main/2003344
2003345 || ET MALWARE Download UBAgent User Agent - lop.com and other spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003345 || url,www.spywareinfo.com/articles/lop/
2003346 || ET MALWARE Errorsafe.com Fake antispyware User Agent (ErrorSafe Updater) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003346
2003347 || ET MALWARE Gamehouse.com User Agent (GAMEHOUSE.NET.URL) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003347
2003348 || ET MALWARE Gamehouse.com Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Gamehouse.com || url,doc.emergingthreats.net/bin/view/Main/2003348 || url,www.gamehouse.com
2003351 || ET MALWARE MyGlobalSearch Spyware bar update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MyGlobalSearch || url,doc.emergingthreats.net/bin/view/Main/2003351
2003352 || ET MALWARE MyGlobalSearch Spyware bar update 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_MyGlobalSearch || url,doc.emergingthreats.net/bin/view/Main/2003352
2003353 || ET MALWARE Winferno Registry Fix Spyware Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Wininferno.com || url,doc.emergingthreats.net/bin/view/Main/2003353
2003354 || ET MALWARE Yourscreen.com Spyware Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Yourscreen.com || url,doc.emergingthreats.net/bin/view/Main/2003354
2003355 || ET MALWARE Yourscreen.com Spyware User Agent (FreezeInet) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003355
2003356 || ET MALWARE Freeze.com Spyware Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Wininferno.com || url,doc.emergingthreats.net/bin/view/Main/2003356
2003358 || ET MALWARE Catchonlife.com Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Catchonlife.com || url,doc.emergingthreats.net/bin/view/Main/2003358
2003360 || ET MALWARE Effectivebrands.com Spyware Checkin 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Effectivebrands.com || url,doc.emergingthreats.net/bin/view/Main/2003360
2003362 || ET MALWARE Freeze.com Spyware/Adware (Pulling Ads) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Freeze.com || url,doc.emergingthreats.net/bin/view/Main/2003362
2003363 || ET MALWARE Spamblockerutility.com-Hotbar User Agent (sbu-hb-) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003363
2003364 || ET MALWARE Hotbar Agent Adopt/Zango || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2003364 || url,www.hotbar.com
2003365 || ET MALWARE Hotbar Zango Toolbar Spyware User Agent (ZangoToolbar ) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003365
2003366 || ET MALWARE qsrch.com/Casalemedia Spyware Reporting URL Visited3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Casalemedia.com || url,doc.emergingthreats.net/bin/view/Main/2003366
2003367 || ET MALWARE www.baidu.com Spyware User Agent (sobar-post) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003367
2003368 || ET MALWARE Web-nexus.net Spyware User Agent (z_v5.2.7) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003368
2003369 || ET EXPLOIT CA BrightStor ARCserve Mobile Backup LGSERVER.EXE Heap Corruption || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CA || url,doc.emergingthreats.net/bin/view/Main/2003369 || cve,2007-0449
2003370 || ET EXPLOIT Computer Associates Brightstor ARCServer Backup RPC Server (Catirpc.dll) DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CA || url,doc.emergingthreats.net/bin/view/Main/2003370 || url,www.milw0rm.com/exploits/3248
2003371 || ET WEB_SPECIFIC PHP Portail Includes.php remote file include || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Portail || url,doc.emergingthreats.net/2003371 || bugtraq,22361
2003372 || ET WEB_SPECIFIC PHPEventMan remote file include || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPEventman || url,doc.emergingthreats.net/2003372 || bugtraq,22358
2003375 || ET MALWARE Spy-Not.com Spyware Pulling Fake Sigs || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spy-not.com || url,doc.emergingthreats.net/bin/view/Main/2003375
2003376 || ET MALWARE Instafinder.com spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Instafinder.com || url,doc.emergingthreats.net/bin/view/Main/2003376
2003377 || ET MALWARE Spy-Not.com Spyware Updating || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Spy-not.com || url,doc.emergingthreats.net/bin/view/Main/2003377
2003378 || ET EXPLOIT Computer Associates Mobile Backup Service LGSERVER.EXE Stack Overflow || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CA || url,doc.emergingthreats.net/bin/view/Main/2003378 || url,www.milw0rm.com/exploits/3244 
2003379 || ET EXPLOIT Computer Associates BrightStor ARCserve Backup for Laptops LGServer.exe DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CA || url,doc.emergingthreats.net/bin/view/Main/2003379 || url,www.securityfocus.com/archive/1/archive/1/458650/100/0/threaded
2003380 || ET TROJAN Suspicious User-Agent - Possible Trojan Downloader (ver18/ver19, etc) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Downloader_General || url,doc.emergingthreats.net/2003380
2003381 || ET POLICY McAfee Update User Agent -NOT HOSTILE- (McAfee AutoUpdate) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_McAffee || url,doc.emergingthreats.net/2003381
2003383 || ET MALWARE Hotbar Tools Spyware User Agent (hbtools) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003383
2003384 || ET MALWARE SpamBlockerUtility Fake Anti-Spyware User Agent (SpamBlockerUtility x.x.x) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003384
2003385 || ET MALWARE sgrunt Dialer User Agent (sgrunt) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003385 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453096347
2003387 || ET MALWARE dialno Dialer User Agent (dialno) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003387 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453096347
2003388 || ET MALWARE Hotbar Keywords Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Hotbar || url,doc.emergingthreats.net/bin/view/Main/2003388 || url,www.hotbar.com
2003389 || ET MALWARE WhenUClick.com Application Version Check || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2003389 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2003390 || ET MALWARE SurfAccuracy.com Spyware Updating || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Surfaccuracy.com || url,doc.emergingthreats.net/bin/view/Main/2003390 || url,www.symantec.com/security_response/writeup.jsp?docid=2005-062716-0109-99
2003391 || ET MALWARE SurfAccuracy.com Spyware Pulling Ads || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Surfaccuracy.com || url,doc.emergingthreats.net/bin/view/Main/2003391 || url,www.symantec.com/security_response/writeup.jsp?docid=2005-062716-0109-99
2003392 || ET TROJAN Warezov/Stration Communicating with Controller || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Warezov || url,doc.emergingthreats.net/2003392 || url,www.avira.com/en/threats/section/fulldetails/id_vir/3242/tr_dldr.warezov.df.html || url,www.sophos.com/security/analyses/w32strationbo.html
2003394 || ET MALWARE User Agent Containing http\:// - Suspicious - Likely Spyware/Trojan || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003394
2003396 || ET MALWARE Mysearch.com/Morpheus Bar Spyware User-Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003396
2003397 || ET MALWARE Zango Seekmo Bar Spyware User-Agent (Seekmo Toolbar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003397
2003398 || ET MALWARE Morpheus Spyware Install User-Agent (SmartInstaller) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003398
2003399 || ET MALWARE Spyhealer Fake Anti-Spyware Install User-Agent (SpyHealer) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003399
2003400 || ET EXPLOIT US-ASCII Obfuscated script || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Obfuscated_Scripting || url,doc.emergingthreats.net/bin/view/Main/2003400 || url,www.securityfocus.com/archive/1/437948/30/0/threaded || cve,2006-3227 || url,www.internetdefence.net/2007/02/06/Javascript-payload
2003401 || ET EXPLOIT US-ASCII Obfuscated VBScript download file || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Obfuscated_Scripting || url,doc.emergingthreats.net/bin/view/Main/2003401 || url,www.securityfocus.com/archive/1/437948/30/0/threaded || cve,2006-3227 || url,www.internetdefence.net/2007/02/06/Javascript-payload
2003402 || ET EXPLOIT US-ASCII Obfuscated VBScript execute command || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Obfuscated_Scripting || url,doc.emergingthreats.net/bin/view/Main/2003402 || url,www.securityfocus.com/archive/1/437948/30/0/threaded || cve,2006-3227 || url,www.internetdefence.net/2007/02/06/Javascript-payload
2003403 || ET EXPLOIT US-ASCII Obfuscated VBScript || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Obfuscated_Scripting || url,doc.emergingthreats.net/bin/view/Main/2003403 || url,www.securityfocus.com/archive/1/437948/30/0/threaded || cve,2006-3227 || url,www.internetdefence.net/2007/02/06/Javascript-payload
2003404 || ET MALWARE WhenUClick.com WhenUSave Data Retrieval (DataChunksGZ) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_WhenUSearch.com || url,doc.emergingthreats.net/bin/view/Main/2003404 || url,www.kephyr.com/spywarescanner/library/whenusearch/index.phtml || url,www.whenusearch.com
2003405 || ET MALWARE Freeze.com Spyware User-Agent (YourScreen123) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003405
2003406 || ET MALWARE Mysearch.com Spyware User-Agent (iMeshBar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003406
2003407 || ET MALWARE searchenginebar.com Spyware User-Agent (RX Bar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003407
2003408 || ET TROJAN Downloader-1355 Checking In || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Downloader-1355 || url,doc.emergingthreats.net/2003408
2003409 || ET POLICY Majestic-12 Spider Bot User-Agent (MJ12bot) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Majestic-12 || url,doc.emergingthreats.net/2003409 || url,www.majestic12.co.uk/
2003410 || ET POLICY FTP Login Successful (non-anonymous) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_FTP_Login || url,doc.emergingthreats.net/2003410
2003411 || ET EXPLOIT Solaris telnet USER environment vuln Attack inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Solaris_TelnetUserEnv || url,doc.emergingthreats.net/bin/view/Main/2003411 || url,isc.sans.org/diary.html?n&storyid=2220 || url,riosec.com/solaris-telnet-0-day
2003412 || ET EXPLOIT Solaris telnet USER environment vuln Attack outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Solaris_TelnetUserEnv || url,doc.emergingthreats.net/bin/view/Main/2003412 || url,isc.sans.org/diary.html?n&storyid=2220 || url,riosec.com/solaris-telnet-0-day
2003414 || ET MALWARE Epilot.com Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Epilot.com || url,doc.emergingthreats.net/bin/view/Main/2003414 || url,www.intermute.com/spysubtract/researchcenter/ClientMan.html
2003415 || ET EXPLOIT Firefox Cookie Manipulation Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Mozilla-Firefox || url,doc.emergingthreats.net/bin/view/Main/2003415 || cve,2007-0981
2003416 || ET MALWARE Epilot.com Spyware Reporting Clicks || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Epilot.com || url,doc.emergingthreats.net/bin/view/Main/2003416 || url,www.intermute.com/spysubtract/researchcenter/ClientMan.html
2003417 || ET MALWARE CNSMIN (3721.com) Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CNSMIN || url,doc.emergingthreats.net/bin/view/Main/2003417 || url,www.spyany.com/program/article_spy_rm_CnsMin.html
2003418 || ET MALWARE CNSMIN (3721.com) Spyware Activity 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CNSMIN || url,doc.emergingthreats.net/bin/view/Main/2003418 || url,www.spyany.com/program/article_spy_rm_CnsMin.html
2003419 || ET MALWARE CNSMIN (3721.com) Spyware Activity 3 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CNSMIN || url,doc.emergingthreats.net/bin/view/Main/2003419 || url,www.spyany.com/program/article_spy_rm_CnsMin.html
2003420 || ET MALWARE Weatherbug Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weatherbug || url,doc.emergingthreats.net/bin/view/Main/2003420
2003421 || ET MALWARE Weatherbug Design60 Upload Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weatherbug || url,doc.emergingthreats.net/bin/view/Main/2003421
2003422 || ET MALWARE Weatherbug Command Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weatherbug || url,doc.emergingthreats.net/bin/view/Main/2003422
2003423 || ET MALWARE Weatherbug Design60 Upload Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weatherbug || url,doc.emergingthreats.net/bin/view/Main/2003423
2003424 || ET VIRUS Sality Trojan Web Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Sality || url,doc.emergingthreats.net/2003424 || url,www.sophos.com/security/analyses/w32salityu.html
2003425 || ET MALWARE clickspring.com Spyware Install User-Agent (CS Fingerprint Module) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003425
2003426 || ET MALWARE Outerinfo.com Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Outerinfo.com || url,doc.emergingthreats.net/bin/view/Main/2003426
2003427 || ET WORM Bagle Worm User-Agent (DEBUT.TMP) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Bagle_Variants || url,doc.emergingthreats.net/2003427
2003428 || ET MALWARE Surfaccuracy.com Spyware Install User-Agent (SF Installer) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003428
2003429 || ET MALWARE xxxtoolbar.com Spyware Install User-Agent || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003429
2003431 || ET TROJAN Unnamed Generic.Malware http get || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Generic.Malware || url,doc.emergingthreats.net/2003431
2003432 || ET TROJAN Nukebot related infection - Unique HTTP get request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Nukebot || url,doc.emergingthreats.net/2003432 || url,www.websense.com/securitylabs/alerts/alert.php?AlertID=743
2003433 || ET TROJAN Nukebot Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Nukebot || url,doc.emergingthreats.net/2003433 || url,www.websense.com/securitylabs/alerts/alert.php?AlertID=743
2003434 || ET EXPLOIT Trend Micro Web Interface Auth Bypass Vulnerable Cookie Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Trend_Micro || url,doc.emergingthreats.net/bin/view/Main/2003434 || url,www.trendmicro.com/download/product.asp?productid=20 || url,labs.idefense.com/intelligence/vulnerabilities/display.php?id=477
2003435 || ET TROJAN Stormy Variant HTTP Request || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Stormy || url,doc.emergingthreats.net/2003435
2003436 || ET TROJAN Warezov/Stration Communicating with Controller 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Warezov || url,doc.emergingthreats.net/2003436 || url,www.avira.com/en/threats/section/fulldetails/id_vir/3242/tr_dldr.warezov.df.html || url,www.sophos.com/security/analyses/w32strationbo.html
2003437 || ET P2P Ares over UDP || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Ares || url,doc.emergingthreats.net/bin/view/Main/2003437
2003438 || ET MALWARE Abcsearch.com Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Abcsearch.com || url,doc.emergingthreats.net/bin/view/Main/2003438
2003439 || ET MALWARE Dropspam.com Spyware Install User-Agent (DSInstall) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003439
2003440 || ET MALWARE Dropspam.com Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Dropspam.com || url,doc.emergingthreats.net/bin/view/Main/2003440
2003441 || ET MALWARE Webbuying.net Spyware Install User-Agent (wbi_v0.90) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003441
2003442 || ET MALWARE Webbuying.net Spyware Installing || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Webbuying.net || url,doc.emergingthreats.net/bin/view/Main/2003442
2003444 || ET MALWARE Deskwizz.com Spyware Install Code Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Deskwizz.com || url,doc.emergingthreats.net/bin/view/Main/2003444
2003445 || ET MALWARE Deskwizz.com Spyware Install INI Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Deskwizz.com || url,doc.emergingthreats.net/bin/view/Main/2003445
2003446 || ET MALWARE Adware Command Client Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Adware_Command || url,doc.emergingthreats.net/bin/view/Main/2003446 || url,www.nuker.com/container/details/adware_command.php
2003449 || ET MALWARE Webbuying.net Spyware Install User-Agent 2 (wb v1.6.4) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003449
2003450 || ET MALWARE Specificclick.net Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Specificclick.net || url,doc.emergingthreats.net/bin/view/Main/2003450
2003451 || ET MALWARE K8l.info Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_k8l.info || url,doc.emergingthreats.net/bin/view/Main/2003451
2003453 || ET POLICY Netvacy.com Anonymizing Proxy Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Netvacy.com || url,doc.emergingthreats.net/2003453
2003454 || ET POLICY Yahoo 360 Social Site Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Yahoo360 || url,doc.emergingthreats.net/2003454
2003455 || ET POLICY Hi5.com Social Site Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Hi5.com || url,doc.emergingthreats.net/2003455
2003456 || ET POLICY Gazzag.com Social Site Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Gazzag.com || url,doc.emergingthreats.net/2003456
2003457 || ET POLICY Metacafe.com Social Site Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Metacafe.com || url,doc.emergingthreats.net/2003457
2003458 || ET POLICY Orkut.com Social Site Access || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Orkut.com || url,doc.emergingthreats.net/2003458
2003462 || ET MALWARE CoolDeskAlert Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_CoolDeskAlert || url,doc.emergingthreats.net/bin/view/Main/2003462 || url,www.benedelman.org/spyware/images/bannerfarms-ad_w_a_r_e-globalstore-log-061006.html || url,cooldeskalert.com
2003463 || ET MALWARE Suspicious User-Agent (Toolbar) Possibly Malware/Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003463
2003464 || ET ATTACK RESPONSE Unusual FTP Server Banner (warFTPd) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Malicious_FTP || url,doc.emergingthreats.net/bin/view/Main/2003464 || url,www.warftp.org
2003465 || ET ATTACK RESPONSE Unusual FTP Server Banner (freeFTPd) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_Malicious_FTP || url,doc.emergingthreats.net/bin/view/Main/2003465 || url,www.freeftp.com
2003466 || ET WEB PHP Attack Tool Morfeus F Scanner || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Morfeus_Scan || url,doc.emergingthreats.net/2003466 || url,www.webmasterworld.com/search_engine_spiders/3227720.htm
2003467 || ET MALWARE Oemji.com Spyware Settings Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Oemji.com || url,doc.emergingthreats.net/bin/view/Main/2003467 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453094187
2003468 || ET MALWARE Oemji Spyware User-Agent (Oemji) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003468
2003469 || ET POLICY AOL Toolbar User-Agent (AOLToolbar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_AOL_Toolbar || url,doc.emergingthreats.net/bin/view/Main/2003469
2003470 || ET MALWARE Winsoftware.com Spyware User-Agent (Updater) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003470
2003471 || ET MALWARE Winsoftware.com Spyware Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Winsoftware.com || url,doc.emergingthreats.net/bin/view/Main/2003471
2003472 || ET MALWARE DelFin Project Spyware (setup-alt) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Delfin || url,doc.emergingthreats.net/bin/view/Main/2003472
2003473 || ET MALWARE DelFin Project Spyware (payload-alt) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Delfin || url,doc.emergingthreats.net/bin/view/Main/2003473
2003474 || ET VOIP Asterisk Register with no URI or Version DOS Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VOIP/VOIP_Asterisk_DOS || url,doc.emergingthreats.net/2003474 || url,tools.ietf.org/html/rfc3261 || url,labs.musecurity.com/advisories/MU-200703-01.txt
2003475 || ET P2P ABC Torrent User-Agent (ABC/ABC-3.1.0) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_ABC_Torrent_client || url,doc.emergingthreats.net/bin/view/Main/2003475 || url,pingpong-abc.sourceforge.net
2003476 || ET MALWARE Virusblast.com Fake AV/Anti-Spyware User-Agent (ad-protect) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003476 || url,www.virusblast.com || url,spywarewarrior.com/rogue_anti-spyware.htm
2003477 || ET MALWARE Terminexor.com Spyware User-Agent (DInstaller2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003477 || url,netrn.net/spywareblog/archives/2004/12/23/more-rip-off-ware-terminexor || url,www.terminexor.com
2003478 || ET MALWARE Errornuker.com Fake Anti-Spyware User-Agent (ERRORNUKER) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003478 || url,www.errornuker.com || url,www.spywarewarrior.com/rogue_anti-spyware.htm
2003479 || ET POLICY Radmin Remote Control Session Setup Initiate || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Radmin || url,doc.emergingthreats.net/2003479 || url,www.radmin.com
2003480 || ET POLICY Radmin Remote Control Session Setup Response || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Radmin || url,doc.emergingthreats.net/2003480 || url,www.radmin.com
2003481 || ET POLICY Radmin Remote Control Session Authentication Initiate || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Radmin || url,doc.emergingthreats.net/2003481 || url,www.radmin.com
2003482 || ET POLICY Radmin Remote Control Session Authentication Response || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Radmin || url,doc.emergingthreats.net/2003482 || url,www.radmin.com
2003484 || ET WORM Allaple Unique HTTP Request - Possibly part of DDOS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Allaple || url,isc.sans.org/diary.html?storyid=2451 || url,doc.emergingthreats.net/2003484
2003486 || ET MALWARE Drivecleaner.com Spyware User-Agent (DriveCleaner Updater) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003486 || url,research.sunbelt-software.com/threatdisplay.aspx?name=DriveCleaner&threatid=44533 || url,www.drivecleaner.com
2003487 || ET MALWARE url404.com Spyware User-Agent (Httper) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003487 || url,www.spywareguide.com/product_show.php?id=581
2003489 || ET MALWARE malwarewipeupdate.com Spyware User-Agent (MalwareWipe) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003489 || url,research.sunbelt-software.com/threatdisplay.aspx?name=MalwareWipe&threatid=43086 || url,www.malwarewipeupdate.com
2003490 || ET MALWARE Mirar Spyware User-Agent (Mirar_KeywordContent) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003490 || url,www3.ca.com/securityadvisor/pest/pest.aspx?id=453078818
2003491 || ET MALWARE Suspicious Misspelled Mozilla User-Agent (Mozila/4.0...) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003491
2003492 || ET MALWARE Suspicious Mozilla User-Agent - Likely Fake (Mozilla/4.0) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003492
2003493 || ET MALWARE AskSearch Spyware User-Agent (AskSearchAssistant) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003493
2003494 || ET MALWARE AskSearch Toolbar Spyware User-Agent (AskTBar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003494
2003495 || ET MALWARE HSN.com Toolbar Spyware User-Agent (HSN) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003495
2003496 || ET MALWARE AskSearch Toolbar Spyware User-Agent (AskBar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003496
2003497 || ET MALWARE Suspicious User-Agent (ms) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003497
2003498 || ET MALWARE Gamehouse.com Related Spyware User-Agent (Sprout Game) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003498
2003499 || ET MALWARE SpyDawn.com Fake Anti-Spyware User-Agent (SpyDawn) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003499 || url,www.spywareguide.com/spydet_3366_spydawn.html
2003500 || ET MALWARE Adwave.com Related Spyware User-Agent (STBHOGet) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003500
2003501 || ET MALWARE Bestoffersnetwork.com Related Spyware User-Agent (TBONAS) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003501 || url,research.sunbelt-software.com/threatdisplay.aspx?name=BestOffersNetworks&threatid=43670
2003502 || ET MALWARE Sysupdates.com Related Spyware User-Agent (TM_SEARCH3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003502
2003503 || ET MALWARE AAValue.com Related Spyware User-Agent (Toolbar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003503 || url,research.sunbelt-software.com/threatdisplay.aspx?name=EZ-Tracks%20Toolbar&threatid=41189
2003504 || ET MALWARE E2give Spyware Reporting (check url) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_E2give.com || url,doc.emergingthreats.net/bin/view/Main/2003504 || url,research.sunbelt-software.com/threatdisplay.aspx?name=E2Give&threatid=4728
2003505 || ET MALWARE Toplist.cz Related Spyware User-Agent (BWL Toplist) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003505
2003506 || ET MALWARE Alawar Toolbar Spyware User-Agent (Alawar Toolbar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003506 || url,www.bleepingcomputer.com/uninstall/68/Alawar-Toolbar.html
2003508 || ET WEB_SPECIFIC Wordpress wp-login.php redirect_to credentials stealing attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Wordpress || url,doc.emergingthreats.net/2003508 || url,www.inliniac.net/blog/?p=71
2003513 || ET MALWARE Suspicious Mozilla User-Agent typo (MOzilla/4.0) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003513
2003514 || ET WEB_ACTIVEX Possible Microsoft Internet Explorer ADODB.Redcordset Double Free Memory Exploit - MS07-009 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_IE_Vulnerabilities || url,doc.emergingthreats.net/2003514 || url,www.microsoft.com/technet/security/Bulletin/MS07-009.mspx || url,www.milw0rm.com/exploits/3577
2003515 || ET TROJAN Snatch Reporting User Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Snatch || url,doc.emergingthreats.net/2003515
2003516 || ET WEB_SPECIFIC Xoops Articles modules print.php SQL injection attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Xoops || url,doc.emergingthreats.net/2003516 || bugtraq,23160
2003517 || ET WEB_SPECIFIC iPhotoAlbum header.php remote file include || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Xoops || url,doc.emergingthreats.net/2003517 || bugtraq,23189
2003518 || ET EXPLOIT Computer Associates Brightstor ARCServe Backup Mediasvr.exe Remote Exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CA || url,doc.emergingthreats.net/bin/view/Main/2003518 || url,www.milw0rm.com/exploits/3604
2003519 || ET EXPLOIT MS ANI exploit || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_MS_ANI || url,doc.emergingthreats.net/bin/view/Main/2003519
2003520 || ET WEB EXPLOIT webCalendar Remote File include || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_WebCalendar || url,doc.emergingthreats.net/2003520 || url,www.securityfocus.com/archive/1/462957
2003525 || ET MALWARE Supergames.aavalue.com Spyware || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_aavalue.com || url,doc.emergingthreats.net/bin/view/Main/2003525 || url,research.sunbelt-software.com/threatdisplay.aspx?name=EZ-Tracks%20Toolbar&threatid=41189
2003526 || ET MALWARE KMIP.net Spyware 2 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Kmip.net || url,doc.emergingthreats.net/bin/view/Main/2003526 || url,www.kmip.net
2003527 || ET MALWARE WinSoftware.com Spyware User-Agent (WinSoftware) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003527 || url,research.sunbelt-software.com/threatdisplay.aspx?name=WinSoftware%20Corporation%2c%20Inc.%20(v)&threatid=90037
2003528 || ET MALWARE WinSoftware.com Spyware User-Agent (NetInstaller) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003528 || url,research.sunbelt-software.com/threatdisplay.aspx?name=WinSoftware%20Corporation,%20Inc.%20(v)&threatid=90037
2003529 || ET MALWARE Msgplus.net Spyware/Adware User-Agent (MsgPlus3) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003529 || url,research.sunbelt-software.com/threatdisplay.aspx?name=Messenger%20Plus!&threatid=14931
2003530 || ET MALWARE Suspicious Mozilla User-Agent Separator - likely Fake (Mozilla/4.0+(compatible +MSIE+) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003530
2003531 || ET MALWARE Antivermins.com Spyware/Adware User-Agent (AntiVermeans) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003531 || url,www.bleepingcomputer.com/forums/topic69886.htm
2003532 || ET MALWARE CommonName.com Spyware/Adware User-Agent (CommonName Agent) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003532 || url,www.pestpatrol.com/spywarecenter/pest.aspx?id=453078618
2003533 || ET MALWARE Sytes.net Related Spyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Sytes.net || url,doc.emergingthreats.net/bin/view/Main/2003533 || url,www.sophos.com/security/analyses/w32forbotdv.html
2003534 || ET MALWARE Weatherbug Vista Gadget Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Weatherbug || url,doc.emergingthreats.net/bin/view/Main/2003534
2003535 || ET ATTACK RESPONSE r57 phpshell footer detected || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_PHP_Shells || url,doc.emergingthreats.net/bin/view/Main/2003535 || url,www.pestpatrol.com/spywarecenter/pest.aspx?id=453096755
2003536 || ET ATTACK RESPONSE r57 phpshell source being uploaded || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/ATTACK_RESPONSE/ATTACK_RESPONSE_PHP_Shells || url,doc.emergingthreats.net/bin/view/Main/2003536 || url,www.pestpatrol.com/spywarecenter/pest.aspx?id=453096755
2003537 || ET TROJAN Trojan.Duntek establishing remote connection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Duntek || url,doc.emergingthreats.net/2003537 || url,www.symantec.com/security_response/writeup.jsp?docid=2006-102514-0554-99
2003538 || ET TROJAN Klom.A Connecting to Controller || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Klom || url,doc.emergingthreats.net/2003538 || url,www.bitdefender.com/VIRUS-1000126-en--Trojan.Klom.A.html
2003541 || ET MALWARE Bravesentry.com Fake Antispyware Updating || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bravesentry || url,doc.emergingthreats.net/bin/view/Main/2003541 || url,research.sunbelt-software.com/threatdisplay.aspx?name=BraveSentry&threatid=44152 || url,www.bravesentry.com
2003542 || ET MALWARE Bravesentry.com/Protectwin.com Fake Antispyware Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Bravesentry || url,doc.emergingthreats.net/bin/view/Main/2003542 || url,research.sunbelt-software.com/threatdisplay.aspx?name=BraveSentry&threatid=44152 || url,www.bravesentry.com
2003543 || ET MALWARE Winfixmaster.com Fake Anti-Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Winfixmaster.com || url,doc.emergingthreats.net/bin/view/Main/2003543
2003544 || ET MALWARE Winfixmaster.com Fake Anti-Spyware User-Agent (WinFixMaster) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003544
2003545 || ET MALWARE Winfixmaster.com Fake Anti-Spyware User-Agent 2 (WinFix Master) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003545
2003546 || ET MALWARE Suspicious User-Agent (downloader) - Used by Winfixmaster.com Fake Anti-Spyware and Others || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003546
2003547 || ET MALWARE Privacyprotector.com Fake Anti-Spyware Install || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Privacyprotector.com || url,doc.emergingthreats.net/bin/view/Main/2003547
2003548 || ET MALWARE Privacyprotector.com Fake Anti-Spyware Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Privacyprotector.com || url,doc.emergingthreats.net/bin/view/Main/2003548
2003549 || ET TROJAN Bandook v1.2 Initial Connection and Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003550 || ET TROJAN Bandook v1.2 Get Processes || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003551 || ET TROJAN Bandook v1.2 Kill Process Command || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003552 || ET TROJAN Bandook v1.2 Reporting Socks Proxy Active || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003553 || ET TROJAN Bandook v1.2 Reporting Socks Proxy Off || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003554 || ET TROJAN Bandook v1.2 Client Ping Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003555 || ET TROJAN Bandook v1.35 Initial Connection and Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003556 || ET TROJAN Bandook v1.35 Keepalive Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003557 || ET TROJAN Bandook v1.35 Keepalive Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003558 || ET TROJAN Bandook v1.35 Create Registry Key Command Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003559 || ET TROJAN Bandook v1.35 Create Directory Command Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003560 || ET TROJAN Bandook v1.35 Window List Command Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003561 || ET TROJAN Bandook v1.35 Window List Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003562 || ET TROJAN Bandook v1.35 Get Processes Command Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003563 || ET TROJAN Bandook v1.35 Start Socks5 Proxy Command Send || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003564 || ET TROJAN Bandook v1.35 Socks5 Proxy Start Command Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003565 || ET TROJAN Bandook v1.35 Get Processes Command Reply || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bandook || url,doc.emergingthreats.net/bin/view/Main/TrojanBandook || url,research.sunbelt-software.com/threatdisplay.aspx?name=Bandook&threatid=40408 || url,www.nuclearwintercrew.com
2003566 || ET MALWARE Suspicious User-Agent (DIALER) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003566
2003567 || ET MALWARE Winsoftware.com Fake AV User-Agent (DNS Extractor) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003567
2003568 || ET MALWARE Evidencenuker.com Fake AV Updating || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_EvidenceNuker.com || url,doc.emergingthreats.net/bin/view/Main/2003568 || url,www.evidencenuker.com
2003569 || ET MALWARE Evidencenuker.com Fake AV/Anti-Spyware User-Agent (EVNUKER) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003567
2003570 || ET MALWARE CoolWebSearch Spyware User-Agent (iefeatsl) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003570 || url,www.applicationsignatures.com/backend/index.php
2003575 || ET MALWARE Gator/Clarian Spyware Posting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Gator_Agent || url,doc.emergingthreats.net/bin/view/Main/2003575 || url,www3.ca.com/securityadvisor/pest/content.aspx?q=67999
2003576 || ET MALWARE Security-updater.com Spyware Posting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Security-updater.com || url,doc.emergingthreats.net/bin/view/Main/2003576
2003577 || ET MALWARE Mirarsearch.com Spyware Posting Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Mirarsearch.com || url,doc.emergingthreats.net/bin/view/Main/2003577
2003578 || ET MALWARE Baidu.com Spyware Bar Pulling Data || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Baidu.com || url,doc.emergingthreats.net/bin/view/Main/2003578 || url,www.pctools.com/mrc/infections/id/BaiDu/
2003579 || ET MALWARE Findwhat.com Spyware (clickthrough) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Findwhat.com || url,doc.emergingthreats.net/bin/view/Main/2003579
2003580 || ET MALWARE Findwhat.com Spyware (sendtracker) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Findwhat.com || url,doc.emergingthreats.net/bin/view/Main/2003580
2003581 || ET MALWARE Findwhat.com Spyware (sendmedia) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Findwhat.com || url,doc.emergingthreats.net/bin/view/Main/2003581
2003582 || ET MALWARE MalwareWiped.com Spyware User-Agent (MalwareWiped) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003582
2003583 || ET MALWARE Suspicious User-Agent (update) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003583
2003584 || ET MALWARE Suspicious User-Agent (Updater) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003584
2003585 || ET MALWARE Suspicious User-Agent (Windows Updates Manager) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003585
2003586 || ET MALWARE Suspicious User-Agent (WinXP Pro Service Pack 2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2003586
2003588 || ET VIRUS Worm.Pyks HTTP C&C Traffic (User-Agent skw00001) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Pyks || url,doc.emergingthreats.net/2003588
2003589 || ET VIRUS Worm.Pyks HTTP C&C Post Traffic (User-Agent h9tslbw0) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/WORM_Pyks || url,doc.emergingthreats.net/2003589
2003590 || ET TROJAN Downloader-5265/Torpig/Anserin/Sinowal Unique UA (MSID [...) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Downloader-5265 || url,doc.emergingthreats.net/2003590
2003595 || ET POLICY exe download via HTTP - Informational || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_EXE_HTTP || url,doc.emergingthreats.net/2003595
2003597 || ET POLICY Google Calendar in Use || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Google || url,doc.emergingthreats.net/2003597 || url,www.computerworld.com.au/index.php?id=1687889918&eid=-255
2003598 || ET TROJAN Diazom Trojan User-Agent in Use (cv_v2.0.1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Diazom || url,doc.emergingthreats.net/2003598 || url,ww.symantec.com/enterprise/security_response/writeup.jsp?docid=2007-032316-0426-99&tabid=2
2003599 || ET POLICY Groove.net Virtual Office Suite Install/Startup Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Groove.net || url,doc.emergingthreats.net/bin/view/Main/GrooveNet || url,www.groove.net
2003600 || ET POLICY Groove.net Virtual Office Suite Install Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Groove.net || url,doc.emergingthreats.net/bin/view/Main/GrooveNet || url,www.groove.net
2003601 || ET POLICY Groove.net Virtual Office In Use || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Groove.net || url,doc.emergingthreats.net/bin/view/Main/GrooveNet || url,www.groove.net
2003602 || ET POLICY Groove.net Virtual Office Local Service Discovery Broadcast || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Groove.net || url,doc.emergingthreats.net/bin/view/Main/GrooveNet || url,www.groove.net
2003603 || ET TROJAN W32.Virut.A joining an IRC Channel || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Virut || url,doc.emergingthreats.net/2003603 || url,www.bitcrank.net
2003604 || ET MALWARE Baidu.com Agent User-Agent (Desktop Web System) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003604
2003605 || ET MALWARE Baidu.com Spyware Bar Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Baidu.com || url,doc.emergingthreats.net/bin/view/Main/2003605 || url,www.pctools.com/mrc/infections/id/BaiDu/
2003606 || ET MALWARE Alexa Spyware Reporting URL Visited || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Alexa || url,doc.emergingthreats.net/bin/view/Main/2003606
2003607 || ET MALWARE Cnzz.com/Baidu Related Spyware Stat Reporting || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Cnzz.com || url,doc.emergingthreats.net/bin/view/Main/2003607 || url,vil.nai.com/vil/content/v_140364.htm
2003608 || ET MALWARE Baidu.com Related Agent User-Agent (iexp) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003608
2003610 || ET MALWARE Zango Spyware (tbrequest data post) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_180Solutions || url,doc.emergingthreats.net/bin/view/Main/2003610 || url,securityresponse.symantec.com/avcenter/venc/data/pf/adware.180search.html
2003611 || ET MALWARE Malwarealarm.com Fake AV/AntiSpyware Updating || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Malwarealarm.com || url,doc.emergingthreats.net/bin/view/Main/2003611 || url,sunbeltblog.blogspot.com/2007/04/another-fake-security-scam-site_9466.html
2003612 || ET MALWARE Malwarealarm.com Fake AV/AntiSpyware Download || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Malwarealarm.com || url,doc.emergingthreats.net/bin/view/Main/2003612 || url,sunbeltblog.blogspot.com/2007/04/another-fake-security-scam-site_9466.html
2003613 || ET MALWARE EELoader User-Agent - Unknown (multiple) Malware Packages || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003613
2003614 || ET VIRUS WinUpack Modified PE Header Inbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_PE_Headers || url,doc.emergingthreats.net/bin/view/Main/WinPEHeaders
2003615 || ET VIRUS WinUpack Modified PE Header Outbound || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_PE_Headers || url,doc.emergingthreats.net/bin/view/Main/WinPEHeaders
2003616 || ET WEB DataCha0s Web Scanner/Robot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_DataCha0s || url,doc.emergingthreats.net/2003616 || url,www.internetofficer.com/web-robot/datacha0s.html
2003617 || ET MALWARE MyWebSearch Toolbar Posting Activity Report || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_My_Web_Toolbar || url,doc.emergingthreats.net/bin/view/Main/2003617
2003619 || ET MALWARE Alexa Spyware Redirecting User || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Alexa || url,doc.emergingthreats.net/bin/view/Main/2003619
2003620 || ET MALWARE 51yes.com Spyware Reporting User Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_51yes.com || url,doc.emergingthreats.net/bin/view/Main/2003620
2003621 || ET MALWARE MyWay Spyware Posting Activity Report - Dell Related || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_My_Web_Toolbar || url,doc.emergingthreats.net/bin/view/Main/2003621
2003622 || ET MALWARE Suspicious User-Agent outbound (bot) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003622
2003623 || ET POLICY Centralops.net Domain Dossier Utility Probe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Centralops.net || url,doc.emergingthreats.net/bin/view/Main/2003623 || url,centralops.net
2003624 || ET MALWARE Trafficadvance.net Spyware User-Agent (Internet 1.0) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003624
2003625 || ET MALWARE dns-look-up.com Spyware User-Agent (KRSystem) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003625
2003626 || ET MALWARE Suspicious Double User-Agent (User-Agent\: User-Agent\: ) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003626
2003627 || ET MALWARE Internet-optimizer.com Related Spyware User-Agent (SexTrackerWSI) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003627
2003630 || ET MALWARE Baidu.com Spyware Sobar Bar Activity || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_Baidu.com || url,doc.emergingthreats.net/bin/view/Main/2003630 || url,www.pctools.com/mrc/infections/id/BaiDu/
2003631 || ET POLICY Centralops.net Probe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Centralops.net || url,doc.emergingthreats.net/bin/view/Main/2003631 || url,centralops.net
2003632 || ET VIRUS Zlob User Agent - updating (internetsecurity) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Zlob || url,doc.emergingthreats.net/2003632 || url,secubox.aldria.com/topic-post1618.html#post1618
2003634 || ET WEB_SPECIFIC Suspicious User-Agent - get-minimal - Possible Vuln Scan || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_get-minimal_UA || url,doc.emergingthreats.net/2003634
2003635 || ET TROJAN Generic Password Stealer User Agent Detected (RookIE) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_PWS_Generic || url,doc.emergingthreats.net/2003635
2003636 || ET VIRUS Sality Virus User Agent Detected (KUKU) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Sality || url,doc.emergingthreats.net/2003636
2003637 || ET TROJAN Inject.BV Trojan User Agent Detected (faserx) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Inject || url,doc.emergingthreats.net/2003637
2003638 || ET VIRUS AV-Killer.Win32 User Agent Detected (p4r4z1t3v3.one14.J) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Win32_AV-Killer || url,doc.emergingthreats.net/2003638
2003639 || ET MALWARE Adload.Generic Spyware User-Agent (ProxyDown) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003639
2003640 || ET MALWARE Adload.Generic Spyware User-Agent (91castInstallKernel) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003640
2003641 || ET TROJAN Downloader.Small User Agent Detected (NetScafe) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Downloader_General || url,doc.emergingthreats.net/2003641
2003644 || ET MALWARE Generic.Malware.dld User-Agent (Sickloader) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003644
2003645 || ET TROJAN Generic.Malware.SFL User-Agent (Rescue/9.11) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Generic.Malware || url,doc.emergingthreats.net/2003645
2003646 || ET TROJAN Downloader.VB.TX User Agent Detected (Microsoft URL Control) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Downloader_General || url,doc.emergingthreats.net/2003646
2003647 || ET TROJAN Backdoor.Irc.MFV User Agent Detected (IRC-U) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Downloader_General || url,doc.emergingthreats.net/2003647
2003648 || ET TROJAN Clicker.BC User Agent Detected (linkrunner) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Downloader_General || url,doc.emergingthreats.net/2003648
2003649 || ET TROJAN Hupigon User Agent Detected (SykO) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Hupington || url,doc.emergingthreats.net/2003649
2003650 || ET TROJAN Dialer-715 Install Checkin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Dialers || url,doc.emergingthreats.net/2003650
2003651 || ET VIRUS Sality Virus User Agent Detected (SPM_ID=) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/VIRUS_Sality || url,doc.emergingthreats.net/2003651
2003652 || ET MALWARE CoolStreaming Toolbar (Conduit related) User-Agent (Coolstreaming Tool-Bar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003652
2003653 || ET POLICY Boitho.com Distributed Crawler in use - User-Agent (boitho.com-dc) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Boitho.com || url,doc.emergingthreats.net/bin/view/Main/2003653
2003654 || ET MALWARE Effectivebrands.com Spyware User-Agent (GTBank) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003654
2003655 || ET MALWARE Trafficadvance.net Spyware User-Agent (Internet 1.0) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003655
2003656 || ET MALWARE debelizombi.com (Rizo) related Spyware User-Agent (mc_v1.2.6) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003656 || url,www.f-secure.com/v-descs/rizo.shtml
2003657 || ET MALWARE Suspicious User-Agent (MSIE) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003657
2003658 || ET MALWARE qq.com related Spyware User-Agent (QQGame) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003658
2003659 || ET MALWARE Unusual Referer String (human) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003659
2003660 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt - Headerfile.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003660 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003661 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt -- latest_files.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003661 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003662 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt -- latest_posts.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003662 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003663 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt -- groups_headerfile.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003663 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003664 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt -- filters_headerfile.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003664 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003665 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt -- links.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003665 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003666 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt -- menu_headerfile.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003666 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003667 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt -- latest_news.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003667 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003668 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt -- settings_headerfile.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003668 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003669 || ET WEB_SPECIFIC TopTree Remote Inclusion Attempt -- tpl_message.php right_file || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Top_Tree || url,doc.emergingthreats.net/2003669 || url,www.milw0rm.com/exploits/3854 || cve,CVE-2007-2544
2003670 || ET WEB_SPECIFIC Workbench Survival Guide Remote Inclusion Attempt -- headerfile.php path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_workbench_survival_guide || url,doc.emergingthreats.net/2003670 || url,www.milw0rm.com/exploits/3848 || cve,CVE-2007-2542
2003671 || ET WEB_SPECIFIC Versado CMS Remote Inclusion Attempt -- ajax_listado.php urlModulo || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Versado_CMS || url,doc.emergingthreats.net/2003671 || url,www.milw0rm.com/exploits/3847 || cve,CVE-2007-2541
2003672 || ET WEB_SPECIFIC PMECMS Remote Inclusion Attempt -- mod_image_index.php config[pathMod] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PMECMS || url,doc.emergingthreats.net/2003672 || url,www.milw0rm.com/exploits/3852 || cve,CVE-2007-2540
2003673 || ET WEB_SPECIFIC PMECMS Remote Inclusion Attempt -- mod_liens_index.php config[pathMod] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PMECMS || url,doc.emergingthreats.net/2003673 || url,www.milw0rm.com/exploits/3852 || cve,CVE-2007-2540
2003674 || ET WEB_SPECIFIC PMECMS Remote Inclusion Attempt -- mod_liste_index.php config[pathMod] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PMECMS || url,doc.emergingthreats.net/2003674 || url,www.milw0rm.com/exploits/3852 || cve,CVE-2007-2540
2003675 || ET WEB_SPECIFIC PMECMS Remote Inclusion Attempt -- mod_special_index.php config[pathMod] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PMECMS || url,doc.emergingthreats.net/2003675 || url,www.milw0rm.com/exploits/3852 || cve,CVE-2007-2540
2003676 || ET WEB_SPECIFIC PMECMS Remote Inclusion Attempt -- mod_texte_index.php config[pathMod] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PMECMS || url,doc.emergingthreats.net/2003676 || url,www.milw0rm.com/exploits/3852 || cve,CVE-2007-2540
2003677 || ET WEB_SPECIFIC Berylium2 Remote Inclusion Attempt -- berylium-classes.php beryliumroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Berylium2 || url,doc.emergingthreats.net/2003677 || url,www.milw0rm.com/exploits/3869 || cve,CVE-2007-2531
2003678 || ET WEB_SPECIFIC Tropicalm Remote Inclusion Attempt -- dosearch.php RESPATH || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Tropicalm || url,doc.emergingthreats.net/2003678 || url,www.milw0rm.com/exploits/3865 || cve,CVE-2007-2530
2003679 || ET WEB_SPECIFIC DynamicPAD Remote Inclusion Attempt -- dp_logs.php HomeDir || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Dynamicpad || url,doc.emergingthreats.net/2003679 || url,milw0rm.com/exploits/3868 || cve,CVE-2007-2527
2003680 || ET WEB_SPECIFIC DynamicPAD Remote Inclusion Attempt -- index.php HomeDir || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Dynamicpad || url,doc.emergingthreats.net/2003680 || url,milw0rm.com/exploits/3868 || cve,CVE-2007-2527
2003681 || ET WEB_SPECIFIC Persism CMS Remote Inclusion Attempt -- users_headerfile.php System || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Persism_CMS || url,doc.emergingthreats.net/2003681 || url,www.milw0rm.com/exploits/3853 || cve,CVE-2007-2545
2003682 || ET WEB_SPECIFIC E-Gads Remote Inclusion Attempt -- common.php locale || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_E-Gads || url,doc.emergingthreats.net/2003682 || url,www.milw0rm.com/exploits/3846 || cve,CVE-2007-2521
2003683 || ET WEB_SPECIFIC PHP Turbulence Remote Inclusion Attempt -- turbulence.php GLOBALS[tcore] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHP_Turbulence || url,doc.emergingthreats.net/2003683 || url,www.securityfocus.com/bid/23580 || cve,CVE-2007-2504
2003684 || ET WEB_SPECIFIC MXBB Remote Inclusion Attempt -- faq.php module_root_path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_mxbb || url,doc.emergingthreats.net/2003684 || url,www.milw0rm.com/exploits/3833 || cve,CVE-2007-2493
2003685 || ET WEB_SPECIFIC Wordpress Remote Inclusion Attempt -- wptable-button.php wpPATH || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Wordpress || url,doc.emergingthreats.net/2003685 || url,www.milw0rm.com/exploits/3824 || cve,CVE-2007-2484
2003686 || ET WEB_SPECIFIC Wordpress Remote Inclusion Attempt -- wordtube-button.php wpPATH || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Wordpress || url,doc.emergingthreats.net/2003686 || url,www.milw0rm.com/exploits/3825 || cve,CVE-2007-2481
2003687 || ET WEB_SPECIFIC TurnKeyWebTools Remote Inclusion Attempt -- payflow_pro.php abs_path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_TurnkeyWebTools || url,doc.emergingthreats.net/2003687 || url,www.securityfocus.com/bid/23662 || cve,CVE-2007-2474
2003688 || ET WEB_SPECIFIC TurnKeyWebTools Remote Inclusion Attempt -- global.php abs_path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_TurnkeyWebTools || url,doc.emergingthreats.net/2003688 || url,www.securityfocus.com/bid/23662 || cve,CVE-2007-2474
2003689 || ET WEB_SPECIFIC TurnKeyWebTools Remote Inclusion Attempt -- libsecure.php abs_path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_TurnkeyWebTools || url,doc.emergingthreats.net/2003689 || url,www.securityfocus.com/bid/23662 || cve,CVE-2007-2474
2003690 || ET WEB_SPECIFIC Firefly Remote Inclusion Attempt -- config.php DOCUMENT_ROOT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Firefly || url,doc.emergingthreats.net/2003690 || url,www.frsirt.com/english/advisories/2007/1554 || cve,CVE-2007-2460
2003691 || ET WEB_SPECIFIC Pixaria Gallery Remote Inclusion Attempt -- psg.smarty.lib.php cfg[sys][base_path] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Pixaria_Gallery || url,doc.emergingthreats.net/2003691 || url,www.frsirt.com/english/advisories/2007/1390 || cve,CVE-2007-2458
2003692 || ET WEB_SPECIFIC VM Watermark Remote Inclusion Attempt -- watermark.php GALLERY_BASEDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_VM_Watermark || url,doc.emergingthreats.net/2003692 || url,www.milw0rm.com/exploits/3857 || cve,CVE-2007-2575
2003693 || ET WEB_SPECIFIC PHPtree Remote Inclusion Attempt -- cms2.php s_dir || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPtree || url,doc.emergingthreats.net/2003693 || url,www.milw0rm.com/exploits/3860 || cve,CVE-2007-2573
2003694 || ET WEB_SPECIFIC NoAH Remote Inclusion Attempt -- mfa_theme.php tpls || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_NoAH || url,doc.emergingthreats.net/2003694 || url,www.milw0rm.com/exploits/3861 || cve,CVE-2007-2572
2003696 || ET WEB_SPECIFIC Wikivi5 Remote Inclusion Attempt -- show.php sous_rep || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Wikivi5 || url,doc.emergingthreats.net/2003696 || url,www.milw0rm.com/exploits/3863 || cve,CVE-2007-2570
2003698 || ET WEB_SPECIFIC pfa CMS Remote Inclusion index.php abs_path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pfa_CMS || url,doc.emergingthreats.net/2003698 || url,www.securityfocus.com/archive/1/archive/1/467840/100/0/threaded || cve,CVE-2007-2559
2003699 || ET WEB_SPECIFIC pfa CMS Remote Inclusion checkout.php abs_path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pfa_CMS || url,doc.emergingthreats.net/2003699 || url,www.securityfocus.com/archive/1/archive/1/467840/100/0/threaded || cve,CVE-2007-2559
2003700 || ET WEB_SPECIFIC pfa CMS Remote Inclusion libsecure.php abs_path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pfa_CMS || url,doc.emergingthreats.net/2003700 || url,www.securityfocus.com/archive/1/archive/1/467840/100/0/threaded || cve,CVE-2007-2559
2003701 || ET WEB_SPECIFIC pfa CMS Remote Inclusion index.php repinc || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pfa_CMS || url,doc.emergingthreats.net/2003701 || url,www.securityfocus.com/archive/1/archive/1/467827/100/0/threaded || cve,CVE-2007-2558
2003702 || ET WEB_SPECIFIC Pixaria Gallery Remote Inclusion class.Smarty.php cfg[sys][base_path] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Pixaria_Gallery || url,doc.emergingthreats.net/2003702 || url,www.milw0rm.com/exploits/3733 || cve,CVE-2007-2457
2003703 || ET WEB_SPECIFIC phpMyPortal Remote Inclusion Attempt -- articles.inc.php GLOBALS[CHEMINMODULES] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPMyPortal || url,doc.emergingthreats.net/2003703 || url,www.milw0rm.com/exploits/3879 || cve,CVE-2007-2594
2003704 || ET WEB_SPECIFIC AForum Remote Inclusion func.php CommonAbsDir || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_AForum || url,doc.emergingthreats.net/2003704 || url,www.milw0rm.com/exploits/3884 || cve,CVE-2007-2596
2003705 || ET WEB TellTarget CMS Remote Inclusion site_conf.php ordnertiefe || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003705 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003706 || ET WEB TellTarget CMS Remote Inclusion class.csv.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003706 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003707 || ET WEB TellTarget CMS Remote Inclusion produkte_nach_serie.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003707 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003708 || ET WEB TellTarget CMS Remote Inclusion ref_kd_rubrik.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003708 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003709 || ET WEB TellTarget CMS Remote Inclusion hg_referenz_jobgalerie.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003709 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003710 || ET WEB TellTarget CMS Remote Inclusion surfer_anmeldung_NWL.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003710 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003711 || ET WEB TellTarget CMS Remote Inclusion produkte_nach_serie_alle.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003711 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003712 || ET WEB TellTarget CMS Remote Inclusion surfer_aendern.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003712 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003713 || ET WEB TellTarget CMS Remote Inclusion referenz.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003713 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003714 || ET WEB TellTarget CMS Remote Inclusion lay.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003714 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003715 || ET WEB TellTarget CMS Remote Inclusion ref_kd_rubrik.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003715 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003716 || ET WEB_SPECIFIC LaVague Remote Inclusion Attempt -- printbar.php views_path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_LaVague || url,doc.emergingthreats.net/2003716 || url,www.milw0rm.com/exploits/3870 || cve,CVE-2007-2607
2003717 || ET WEB_SPECIFIC miplex2 Remote Inclusion SmartyFU.class.php system || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Miplex2 || url,doc.emergingthreats.net/2003717 || url,www.milw0rm.com/exploits/3878 || cve,CVE-2007-2608
2003718 || ET WEB_SPECIFIC gnuedu Remote Inclusion Attempt -- lom.php ETCDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_gnuedu || url,doc.emergingthreats.net/2003718 || url,www.milw0rm.com/exploits/3876 || cve,CVE-2007-2609
2003719 || ET WEB_SPECIFIC gnuedu Remote Inclusion Attempt -- lom_update.php ETCDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_gnuedu || url,doc.emergingthreats.net/2003719 || url,www.milw0rm.com/exploits/3876 || cve,CVE-2007-2609
2003720 || ET WEB_SPECIFIC gnuedu Remote Inclusion Attempt -- check-lom.php ETCDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_gnuedu || url,doc.emergingthreats.net/2003720 || url,www.milw0rm.com/exploits/3876 || cve,CVE-2007-2609
2003721 || ET WEB_SPECIFIC gnuedu Remote Inclusion Attempt -- weigh_keywords.php ETCDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_gnuedu || url,doc.emergingthreats.net/2003721 || url,www.milw0rm.com/exploits/3876 || cve,CVE-2007-2609
2003722 || ET WEB_SPECIFIC gnuedu Remote Inclusion Attempt -- logout.php ETCDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_gnuedu || url,doc.emergingthreats.net/2003722 || url,www.milw0rm.com/exploits/3876 || cve,CVE-2007-2609
2003723 || ET WEB_SPECIFIC gnuedu Remote Inclusion Attempt -- help.php ETCDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_gnuedu || url,doc.emergingthreats.net/2003723 || url,www.milw0rm.com/exploits/3876 || cve,CVE-2007-2609
2003724 || ET WEB_SPECIFIC gnuedu Remote Inclusion Attempt -- index.php ETCDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_gnuedu || url,doc.emergingthreats.net/2003724 || url,www.milw0rm.com/exploits/3876 || cve,CVE-2007-2609
2003725 || ET WEB_SPECIFIC gnuedu Remote Inclusion Attempt -- login.php ETCDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_gnuedu || url,doc.emergingthreats.net/2003725 || url,www.milw0rm.com/exploits/3876 || cve,CVE-2007-2609
2003726 || ET WEB_SPECIFIC CGX Remote Inclusion Attempt -- mtdialogo.php pathCGX || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CGX || url,doc.emergingthreats.net/2003726 || url,www.milw0rm.com/exploits/3874 || cve,CVE-2007-2611
2003727 || ET WEB_SPECIFIC CGX Remote Inclusion Attempt -- ltdialogo.php pathCGX || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CGX || url,doc.emergingthreats.net/2003727 || url,www.milw0rm.com/exploits/3874 || cve,CVE-2007-2611
2003728 || ET WEB_SPECIFIC CGX Remote Inclusion Attempt -- logingecon.php pathCGX || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CGX || url,doc.emergingthreats.net/2003728 || url,www.milw0rm.com/exploits/3874 || cve,CVE-2007-2611
2003729 || ET WEB_SPECIFIC CGX Remote Inclusion Attempt -- login.php pathCGX || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CGX || url,doc.emergingthreats.net/2003729 || url,www.milw0rm.com/exploits/3874 || cve,CVE-2007-2611
2003730 || ET WEB_SPECIFIC PHPHtmlLib Remote Inclusion Attempt -- widget8.php phphtmllib || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHtmlLib || url,doc.emergingthreats.net/2003730 || url,www.securityfocus.com/archive/1/archive/1/467837/100/0/threaded || cve,CVE-2007-2614
2003731 || ET WEB_SPECIFIC PHPLojaFacil Remote Inclusion Attempt -- ftp.php path_local || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPLojaFacil || url,doc.emergingthreats.net/2003731 || url,www.milw0rm.com/exploits/3875 || cve,CVE-2007-2615
2003732 || ET WEB_SPECIFIC PHPLojaFacil Remote Inclusion Attempt -- db.php path_local || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPLojaFacil || url,doc.emergingthreats.net/2003732 || url,www.milw0rm.com/exploits/3875 || cve,CVE-2007-2615
2003733 || ET WEB_SPECIFIC PHPLojaFacil Remote Inclusion Attempt -- libs_ftp.php path_local || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPLojaFacil || url,doc.emergingthreats.net/2003733 || url,www.milw0rm.com/exploits/3875 || cve,CVE-2007-2615
2003735 || ET WEB_SPECIFIC PHPSecurityAdmin Remote Inclusion Attempt -- logout.php PSA_PATH || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPSecurityAdmin || url,doc.emergingthreats.net/2003735 || url,www.securityfocus.com/bid/23801 || cve,CVE-2007-2628
2003736 || ET WEB_SPECIFIC AForum Remote Inclusion Attempt -- errormsg.php header || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_AForum || url,doc.emergingthreats.net/2003736 || url,secunia.com/advisories/25224 || cve,CVE-2007-2634
2003737 || ET WEB_SPECIFIC CJG Explorer Remote Inclusion Attempt -- pcltrace.lib.php g_pcltar_lib_dir || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CJG_Explorer || url,doc.emergingthreats.net/2003737 || url,www.milw0rm.com/exploits/3915 || cve,CVE-2007-2660
2003738 || ET WEB_SPECIFIC Beacon Remote Inclusion Attempt -- splash.lang.php languagePath || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Beacon || url,doc.emergingthreats.net/2003738 || url,www.milw0rm.com/exploits/3909 || cve,CVE-2007-2663
2003739 || ET WEB_SPECIFIC Yaap Remote Inclusion Attempt -- common.php root_path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Yaap || url,doc.emergingthreats.net/2003739 || url,www.milw0rm.com/exploits/3908 || cve,CVE-2007-2664
2003740 || ET WEB_SPECIFIC PHPFirstPost Remote Inclusion Attempt block.php Include || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPFirstPost || url,doc.emergingthreats.net/2003740 || url,www.milw0rm.com/exploits/3906 || cve,CVE-2007-2665
2003741 || ET WEB_SPECIFIC Open Translation Engine Remote Inclusion Attempt -- header.php ote_home || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_OTE || url,doc.emergingthreats.net/2003741 || url,www.milw0rm.com/exploits/3838 || cve,CVE-2007-2676
2003742 || ET WEB_SPECIFIC PHPChess Remote Inclusion Attempt -- language.php config || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPChess || url,doc.emergingthreats.net/2003742 || url,www.milw0rm.com/exploits/3837 || cve,CVE-2007-2677
2003743 || ET WEB_SPECIFIC PHPChess Remote Inclusion Attempt -- layout_admin_cfg.php Root_Path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPChess || url,doc.emergingthreats.net/2003743 || url,www.milw0rm.com/exploits/3837 || cve,CVE-2007-2677
2003744 || ET WEB_SPECIFIC PHPChess Remote Inclusion Attempt -- layout_cfg.php Root_Path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPChess || url,doc.emergingthreats.net/2003744 || url,www.milw0rm.com/exploits/3837 || cve,CVE-2007-2677
2003745 || ET WEB_SPECIFIC PHPChess Remote Inclusion Attempt -- layout_t_top.php Root_Path || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPChess || url,doc.emergingthreats.net/2003745 || url,www.milw0rm.com/exploits/3837 || cve,CVE-2007-2677
2003746 || ET WEB_SPECIFIC Simple PHP Script Gallery Remote Inclusion index.php gallery || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_SimplePHP_Script_Gallery || url,doc.emergingthreats.net/2003746 || url,www.securityfocus.com/bid/23534 || cve,CVE-2007-2679
2003747 || ET WEB_SPECIFIC gnuedu Remote Inclusion Attempt -- lom.php ETCDIR || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_gnuedu || url,doc.emergingthreats.net/2003747 || url,www.milw0rm.com/exploits/3876 || cve,CVE-2007-2609
2003749 || ET MALWARE QQHelper related Spyware User-Agent (H) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003749
2003750 || ET EXPLOIT CA Brightstor ARCServe caloggerd DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CA || url,doc.emergingthreats.net/bin/view/Main/2003750 || url,www.milw0rm.com/exploits/3939
2003751 || ET EXPLOIT CA Brightstor ARCServe Mediasvr DoS || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_CA || url,doc.emergingthreats.net/bin/view/Main/2003751 || url, www.milw0rm.com/exploits/3940
2003752 || ET WEB_SPECIFIC CreaScripts CreaDirectory SQL Injection Attempt -- error.asp id SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Creascripts || url,doc.emergingthreats.net/2003752 || url,www.milw0rm.com/exploits/3767 || cve,CVE-2007-2342
2003753 || ET WEB_SPECIFIC CreaScripts CreaDirectory SQL Injection Attempt -- error.asp id UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Creascripts || url,doc.emergingthreats.net/2003753 || url,www.milw0rm.com/exploits/3767 || cve,CVE-2007-2342
2003754 || ET WEB_SPECIFIC CreaScripts CreaDirectory SQL Injection Attempt -- error.asp id INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Creascripts || url,doc.emergingthreats.net/2003754 || url,www.milw0rm.com/exploits/3767 || cve,CVE-2007-2342
2003755 || ET WEB_SPECIFIC CreaScripts CreaDirectory SQL Injection Attempt -- error.asp id DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Creascripts || url,doc.emergingthreats.net/2003755 || url,www.milw0rm.com/exploits/3767 || cve,CVE-2007-2342
2003756 || ET WEB_SPECIFIC CreaScripts CreaDirectory SQL Injection Attempt -- error.asp id ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Creascripts || url,doc.emergingthreats.net/2003756 || url,www.milw0rm.com/exploits/3767 || cve,CVE-2007-2342
2003757 || ET WEB_SPECIFIC CreaScripts CreaDirectory SQL Injection Attempt -- error.asp id UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Creascripts || url,doc.emergingthreats.net/2003757 || url,www.milw0rm.com/exploits/3767 || cve,CVE-2007-2342
2003758 || ET WEB_SPECIFIC John Mordo Jobs SQL Injection Attempt -- index.php cid SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_John_Mordo || url,doc.emergingthreats.net/2003758 || url,www.milw0rm.com/exploits/3672 || cve,CVE-2007-2370
2003759 || ET WEB_SPECIFIC John Mordo Jobs SQL Injection Attempt -- index.php cid UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_John_Mordo || url,doc.emergingthreats.net/2003759 || url,www.milw0rm.com/exploits/3672 || cve,CVE-2007-2370
2003760 || ET WEB_SPECIFIC John Mordo Jobs SQL Injection Attempt -- index.php cid INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_John_Mordo || url,doc.emergingthreats.net/2003760 || url,www.milw0rm.com/exploits/3672 || cve,CVE-2007-2370
2003761 || ET WEB_SPECIFIC John Mordo Jobs SQL Injection Attempt -- index.php cid DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_John_Mordo || url,doc.emergingthreats.net/2003761 || url,www.milw0rm.com/exploits/3672 || cve,CVE-2007-2370
2003762 || ET WEB_SPECIFIC John Mordo Jobs SQL Injection Attempt -- index.php cid ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_John_Mordo || url,doc.emergingthreats.net/2003762 || url,www.milw0rm.com/exploits/3672 || cve,CVE-2007-2370
2003763 || ET WEB_SPECIFIC John Mordo Jobs SQL Injection Attempt -- index.php cid UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_John_Mordo || url,doc.emergingthreats.net/2003763 || url,www.milw0rm.com/exploits/3672 || cve,CVE-2007-2370
2003764 || ET WEB_SPECIFIC WF-Links (wflinks) SQL Injection Attempt -- viewcat.php cid SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_WF-Links || url,doc.emergingthreats.net/2003764 || url,www.milw0rm.com/exploits/3670 || cve,CVE-2007-2373
2003765 || ET WEB_SPECIFIC WF-Links (wflinks) SQL Injection Attempt -- viewcat.php cid UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_WF-Links || url,doc.emergingthreats.net/2003765 || url,www.milw0rm.com/exploits/3670 || cve,CVE-2007-2373
2003766 || ET WEB_SPECIFIC WF-Links (wflinks) SQL Injection Attempt -- viewcat.php cid INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_WF-Links || url,doc.emergingthreats.net/2003766 || url,www.milw0rm.com/exploits/3670 || cve,CVE-2007-2373
2003767 || ET WEB_SPECIFIC WF-Links (wflinks) SQL Injection Attempt -- viewcat.php cid DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_WF-Links || url,doc.emergingthreats.net/2003767 || url,www.milw0rm.com/exploits/3670 || cve,CVE-2007-2373
2003768 || ET WEB_SPECIFIC WF-Links (wflinks) SQL Injection Attempt -- viewcat.php cid ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_WF-Links || url,doc.emergingthreats.net/2003768 || url,www.milw0rm.com/exploits/3670 || cve,CVE-2007-2373
2003769 || ET WEB_SPECIFIC WF-Links (wflinks) SQL Injection Attempt -- viewcat.php cid UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_WF-Links || url,doc.emergingthreats.net/2003769 || url,www.milw0rm.com/exploits/3670 || cve,CVE-2007-2373
2003770 || ET WEB_SPECIFIC E-Annu SQL Injection Attempt -- home.php a SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_E-Annu || url,doc.emergingthreats.net/2003770 || url,www.securityfocus.com/bid/23727 || cve,CVE-2007-2416
2003771 || ET WEB_SPECIFIC E-Annu SQL Injection Attempt -- home.php a UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_E-Annu || url,doc.emergingthreats.net/2003771 || url,www.securityfocus.com/bid/23727 || cve,CVE-2007-2416
2003772 || ET WEB_SPECIFIC E-Annu SQL Injection Attempt -- home.php a INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_E-Annu || url,doc.emergingthreats.net/2003772 || url,www.securityfocus.com/bid/23727 || cve,CVE-2007-2416
2003773 || ET WEB_SPECIFIC E-Annu SQL Injection Attempt -- home.php a DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_E-Annu || url,doc.emergingthreats.net/2003773 || url,www.securityfocus.com/bid/23727 || cve,CVE-2007-2416
2003774 || ET WEB_SPECIFIC E-Annu SQL Injection Attempt -- home.php a ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_E-Annu || url,doc.emergingthreats.net/2003774 || url,www.securityfocus.com/bid/23727 || cve,CVE-2007-2416
2003775 || ET WEB_SPECIFIC E-Annu SQL Injection Attempt -- home.php a UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_E-Annu || url,doc.emergingthreats.net/2003775 || url,www.securityfocus.com/bid/23727 || cve,CVE-2007-2416
2003776 || ET WEB_SPECIFIC Burak Yilmaz Blog SQL Injection Attempt -- bry.asp id SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Burak || url,doc.emergingthreats.net/2003776 || url,www.securityfocus.com/bid/23678 || cve,CVE-2007-2420
2003777 || ET WEB_SPECIFIC Burak Yilmaz Blog SQL Injection Attempt -- bry.asp id UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Burak || url,doc.emergingthreats.net/2003777 || url,www.securityfocus.com/bid/23678 || cve,CVE-2007-2420
2003778 || ET WEB_SPECIFIC Burak Yilmaz Blog SQL Injection Attempt -- bry.asp id INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Burak || url,doc.emergingthreats.net/2003778 || url,www.securityfocus.com/bid/23678 || cve,CVE-2007-2420
2003779 || ET WEB_SPECIFIC Burak Yilmaz Blog SQL Injection Attempt -- bry.asp id DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Burak || url,doc.emergingthreats.net/2003779 || url,www.securityfocus.com/bid/23678 || cve,CVE-2007-2420
2003780 || ET WEB_SPECIFIC Burak Yilmaz Blog SQL Injection Attempt -- bry.asp id ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Burak || url,doc.emergingthreats.net/2003780 || url,www.securityfocus.com/bid/23678 || cve,CVE-2007-2420
2003781 || ET WEB_SPECIFIC Burak Yilmaz Blog SQL Injection Attempt -- bry.asp id UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Burak || url,doc.emergingthreats.net/2003781 || url,www.securityfocus.com/bid/23678 || cve,CVE-2007-2420
2003782 || ET WEB_SPECIFIC pnFlashGames SQL Injection Attempt -- index.php cid SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pnFlashGames || url,doc.emergingthreats.net/2003782 || url,www.milw0rm.com/exploits/3813 || cve,CVE-2007-2427
2003783 || ET WEB_SPECIFIC pnFlashGames SQL Injection Attempt -- index.php cid UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pnFlashGames || url,doc.emergingthreats.net/2003783 || url,www.milw0rm.com/exploits/3813 || cve,CVE-2007-2427
2003784 || ET WEB_SPECIFIC pnFlashGames SQL Injection Attempt -- index.php cid INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pnFlashGames || url,doc.emergingthreats.net/2003784 || url,www.milw0rm.com/exploits/3813 || cve,CVE-2007-2427
2003785 || ET WEB_SPECIFIC pnFlashGames SQL Injection Attempt -- index.php cid DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pnFlashGames || url,doc.emergingthreats.net/2003785 || url,www.milw0rm.com/exploits/3813 || cve,CVE-2007-2427
2003786 || ET WEB_SPECIFIC pnFlashGames SQL Injection Attempt -- index.php cid ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pnFlashGames || url,doc.emergingthreats.net/2003786 || url,www.milw0rm.com/exploits/3813 || cve,CVE-2007-2427
2003787 || ET WEB_SPECIFIC pnFlashGames SQL Injection Attempt -- index.php cid UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_pnFlashGames || url,doc.emergingthreats.net/2003787 || url,www.milw0rm.com/exploits/3813 || cve,CVE-2007-2427
2003788 || ET WEB_SPECIFIC FileRun SQL Injection Attempt -- index.php fid SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FileRun || url,doc.emergingthreats.net/2003788 || url,www.securityfocus.com/bid/23752 || cve,CVE-2007-2469
2003789 || ET WEB_SPECIFIC FileRun SQL Injection Attempt -- index.php fid UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FileRun || url,doc.emergingthreats.net/2003789 || url,www.securityfocus.com/bid/23752 || cve,CVE-2007-2469
2003790 || ET WEB_SPECIFIC FileRun SQL Injection Attempt -- index.php fid INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FileRun || url,doc.emergingthreats.net/2003790 || url,www.securityfocus.com/bid/23752 || cve,CVE-2007-2469
2003791 || ET WEB_SPECIFIC FileRun SQL Injection Attempt -- index.php fid DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FileRun || url,doc.emergingthreats.net/2003791 || url,www.securityfocus.com/bid/23752 || cve,CVE-2007-2469
2003792 || ET WEB_SPECIFIC FileRun SQL Injection Attempt -- index.php fid ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FileRun || url,doc.emergingthreats.net/2003792 || url,www.securityfocus.com/bid/23752 || cve,CVE-2007-2469
2003793 || ET WEB_SPECIFIC FileRun SQL Injection Attempt -- index.php fid UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FileRun || url,doc.emergingthreats.net/2003793 || url,www.securityfocus.com/bid/23752 || cve,CVE-2007-2469
2003794 || ET WEB_SPECIFIC CMS Made Simple SQL Injection Attempt -- stylesheet.php templateid SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CMS_Made_Simple || url,doc.emergingthreats.net/2003794 || url,www.securityfocus.com/bid/23753 || cve,CVE-2007-2473
2003795 || ET WEB_SPECIFIC CMS Made Simple SQL Injection Attempt -- stylesheet.php templateid UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CMS_Made_Simple || url,doc.emergingthreats.net/2003795 || url,www.securityfocus.com/bid/23753 || cve,CVE-2007-2473
2003796 || ET WEB_SPECIFIC CMS Made Simple SQL Injection Attempt -- stylesheet.php templateid INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CMS_Made_Simple || url,doc.emergingthreats.net/2003796 || url,www.securityfocus.com/bid/23753 || cve,CVE-2007-2473
2003797 || ET WEB_SPECIFIC CMS Made Simple SQL Injection Attempt -- stylesheet.php templateid ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CMS_Made_Simple || url,doc.emergingthreats.net/2003797 || url,www.securityfocus.com/bid/23753 || cve,CVE-2007-2473
2003798 || ET WEB_SPECIFIC CMS Made Simple SQL Injection Attempt -- stylesheet.php templateid UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CMS_Made_Simple || url,doc.emergingthreats.net/2003798 || url,www.securityfocus.com/bid/23753 || cve,CVE-2007-2473
2003799 || ET WEB_SPECIFIC v4bJournal module PostNuke SQL Injection Attempt -- index.php id SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PostNuke || url,doc.emergingthreats.net/2003799 || url,www.milw0rm.com/exploits/3835 || cve,CVE-2007-2492
2003800 || ET WEB_SPECIFIC v4bJournal module PostNuke SQL Injection Attempt -- index.php id UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PostNuke || url,doc.emergingthreats.net/2003800 || url,www.milw0rm.com/exploits/3835 || cve,CVE-2007-2492
2003801 || ET WEB_SPECIFIC v4bJournal module PostNuke SQL Injection Attempt -- index.php id INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PostNuke || url,doc.emergingthreats.net/2003801 || url,www.milw0rm.com/exploits/3835 || cve,CVE-2007-2492
2003802 || ET WEB_SPECIFIC v4bJournal module PostNuke SQL Injection Attempt -- index.php id DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PostNuke || url,doc.emergingthreats.net/2003802 || url,www.milw0rm.com/exploits/3835 || cve,CVE-2007-2492
2003803 || ET WEB_SPECIFIC v4bJournal module PostNuke SQL Injection Attempt -- index.php id ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PostNuke || url,doc.emergingthreats.net/2003803 || url,www.milw0rm.com/exploits/3835 || cve,CVE-2007-2492
2003804 || ET WEB_SPECIFIC v4bJournal module PostNuke SQL Injection Attempt -- index.php id UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PostNuke || url,doc.emergingthreats.net/2003804 || url,www.milw0rm.com/exploits/3835 || cve,CVE-2007-2492
2003805 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_USER SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003805 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003806 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_USER UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003806 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003807 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_USER INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003807 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003808 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_USER DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003808 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003809 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_USER ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003809 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003810 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_USER UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003810 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003811 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_PASS SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003811 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003812 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_PASS UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003812 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003813 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_PASS INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003813 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003814 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_PASS DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003814 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003815 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_PASS ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003815 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003816 || ET WEB_SPECIFIC phpHoo3 SQL Injection Attempt -- admin.php ADMIN_PASS UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPHoo3 || url,doc.emergingthreats.net/2003816 || url,www.securityfocus.com/bid/23854 || cve,CVE-2007-2534
2003817 || ET WEB_SPECIFIC RunCms SQL Injection Attempt -- debug_show.php executed_queries SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunCMS || url,doc.emergingthreats.net/2003817 || url,www.milw0rm.com/exploits/3850 || cve,CVE-2007-2538
2003818 || ET WEB_SPECIFIC RunCms SQL Injection Attempt -- debug_show.php executed_queries UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunCMS || url,doc.emergingthreats.net/2003818 || url,www.milw0rm.com/exploits/3850 || cve,CVE-2007-2538
2003819 || ET WEB_SPECIFIC RunCms SQL Injection Attempt -- debug_show.php executed_queries INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunCMS || url,doc.emergingthreats.net/2003819 || url,www.milw0rm.com/exploits/3850 || cve,CVE-2007-2538
2003820 || ET WEB_SPECIFIC RunCms SQL Injection Attempt -- debug_show.php executed_queries DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunCMS || url,doc.emergingthreats.net/2003820 || url,www.milw0rm.com/exploits/3850 || cve,CVE-2007-2538
2003821 || ET WEB_SPECIFIC RunCms SQL Injection Attempt -- debug_show.php executed_queries ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunCMS || url,doc.emergingthreats.net/2003821 || url,www.milw0rm.com/exploits/3850 || cve,CVE-2007-2538
2003822 || ET WEB_SPECIFIC RunCms SQL Injection Attempt -- debug_show.php executed_queries UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunCMS || url,doc.emergingthreats.net/2003822 || url,www.milw0rm.com/exploits/3850 || cve,CVE-2007-2538
2003823 || ET WEB_SPECIFIC Flashgames SQL Injection Attempt -- game.php lid SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Flashgames || url,doc.emergingthreats.net/2003823 || url,www.milw0rm.com/exploits/3849 || cve,CVE-2007-2543
2003824 || ET WEB_SPECIFIC Flashgames SQL Injection Attempt -- game.php lid UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Flashgames || url,doc.emergingthreats.net/2003824 || url,www.milw0rm.com/exploits/3849 || cve,CVE-2007-2543
2003825 || ET WEB_SPECIFIC Flashgames SQL Injection Attempt -- game.php lid INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Flashgames || url,doc.emergingthreats.net/2003825 || url,www.milw0rm.com/exploits/3849 || cve,CVE-2007-2543
2003826 || ET WEB_SPECIFIC Flashgames SQL Injection Attempt -- game.php lid DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Flashgames || url,doc.emergingthreats.net/2003826 || url,www.milw0rm.com/exploits/3849 || cve,CVE-2007-2543
2003827 || ET WEB_SPECIFIC Flashgames SQL Injection Attempt -- game.php lid ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Flashgames || url,doc.emergingthreats.net/2003827 || url,www.milw0rm.com/exploits/3849 || cve,CVE-2007-2543
2003828 || ET WEB_SPECIFIC Flashgames SQL Injection Attempt -- game.php lid UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Flashgames || url,doc.emergingthreats.net/2003828 || url,www.milw0rm.com/exploits/3849 || cve,CVE-2007-2543
2003829 || ET WEB_SPECIFIC ResManager SQL Injection Attempt -- edit_day.php id_reserv SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ResManager || url,doc.emergingthreats.net/2003829 || url,www.milw0rm.com/exploits/3931 || cve,CVE-2007-2735
2003830 || ET WEB_SPECIFIC ResManager SQL Injection Attempt -- edit_day.php id_reserv UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ResManager || url,doc.emergingthreats.net/2003830 || url,www.milw0rm.com/exploits/3931 || cve,CVE-2007-2735
2003831 || ET WEB_SPECIFIC ResManager SQL Injection Attempt -- edit_day.php id_reserv INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ResManager || url,doc.emergingthreats.net/2003831 || url,www.milw0rm.com/exploits/3931 || cve,CVE-2007-2735
2003832 || ET WEB_SPECIFIC ResManager SQL Injection Attempt -- edit_day.php id_reserv DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ResManager || url,doc.emergingthreats.net/2003832 || url,www.milw0rm.com/exploits/3931 || cve,CVE-2007-2735
2003833 || ET WEB_SPECIFIC ResManager SQL Injection Attempt -- edit_day.php id_reserv ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ResManager || url,doc.emergingthreats.net/2003833 || url,www.milw0rm.com/exploits/3931 || cve,CVE-2007-2735
2003834 || ET WEB_SPECIFIC ResManager SQL Injection Attempt -- edit_day.php id_reserv UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ResManager || url,doc.emergingthreats.net/2003834 || url,www.milw0rm.com/exploits/3931 || cve,CVE-2007-2735
2003835 || ET WEB_SPECIFIC MyConference SQL Injection Attempt -- index.php cid SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MyConference || url,doc.emergingthreats.net/2003835 || url,www.frsirt.com/english/advisories/2007/1830 || cve,CVE-2007-2737
2003836 || ET WEB_SPECIFIC MyConference SQL Injection Attempt -- index.php cid UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MyConference || url,doc.emergingthreats.net/2003836 || url,www.frsirt.com/english/advisories/2007/1830 || cve,CVE-2007-2737
2003837 || ET WEB_SPECIFIC MyConference SQL Injection Attempt -- index.php cid INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MyConference || url,doc.emergingthreats.net/2003837 || url,www.frsirt.com/english/advisories/2007/1830 || cve,CVE-2007-2737
2003838 || ET WEB_SPECIFIC MyConference SQL Injection Attempt -- index.php cid DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MyConference || url,doc.emergingthreats.net/2003838 || url,www.frsirt.com/english/advisories/2007/1830 || cve,CVE-2007-2737
2003839 || ET WEB_SPECIFIC MyConference SQL Injection Attempt -- index.php cid ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MyConference || url,doc.emergingthreats.net/2003839 || url,www.frsirt.com/english/advisories/2007/1830 || cve,CVE-2007-2737
2003840 || ET WEB_SPECIFIC MyConference SQL Injection Attempt -- index.php cid UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MyConference || url,doc.emergingthreats.net/2003840 || url,www.frsirt.com/english/advisories/2007/1830 || cve,CVE-2007-2737
2003841 || ET WEB_SPECIFIC Glossaire SQL Injection Attempt -- glossaire-p-f.php sid UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Glossaire || url,doc.emergingthreats.net/2003841 || url,www.milw0rm.com/exploits/3932 || cve,CVE-2007-2738
2003842 || ET WEB_SPECIFIC Glossaire SQL Injection Attempt -- glossaire-p-f.php sid INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Glossaire || url,doc.emergingthreats.net/2003842 || url,www.milw0rm.com/exploits/3932 || cve,CVE-2007-2738
2003843 || ET WEB_SPECIFIC Glossaire SQL Injection Attempt -- glossaire-p-f.php sid DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Glossaire || url,doc.emergingthreats.net/2003843 || url,www.milw0rm.com/exploits/3932 || cve,CVE-2007-2738
2003844 || ET WEB_SPECIFIC Glossaire SQL Injection Attempt -- glossaire-p-f.php sid ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Glossaire || url,doc.emergingthreats.net/2003844 || url,www.milw0rm.com/exploits/3932 || cve,CVE-2007-2738
2003845 || ET WEB_SPECIFIC Glossaire SQL Injection Attempt -- glossaire-p-f.php sid UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Glossaire || url,doc.emergingthreats.net/2003845 || url,www.milw0rm.com/exploits/3932 || cve,CVE-2007-2738
2003846 || ET WEB_SPECIFIC FAQEngine SQL Injection Attempt -- question.php questionref SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FAQEngine || url,doc.emergingthreats.net/2003846 || url,www.milw0rm.com/exploits/3943 || cve,CVE-2007-2749
2003847 || ET WEB_SPECIFIC FAQEngine SQL Injection Attempt -- question.php questionref UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FAQEngine || url,doc.emergingthreats.net/2003847 || url,www.milw0rm.com/exploits/3943 || cve,CVE-2007-2749
2003848 || ET WEB_SPECIFIC FAQEngine SQL Injection Attempt -- question.php questionref INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FAQEngine || url,doc.emergingthreats.net/2003848 || url,www.milw0rm.com/exploits/3943 || cve,CVE-2007-2749
2003849 || ET WEB_SPECIFIC FAQEngine SQL Injection Attempt -- question.php questionref DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FAQEngine || url,doc.emergingthreats.net/2003849 || url,www.milw0rm.com/exploits/3943 || cve,CVE-2007-2749
2003850 || ET WEB_SPECIFIC FAQEngine SQL Injection Attempt -- question.php questionref ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FAQEngine || url,doc.emergingthreats.net/2003850 || url,www.milw0rm.com/exploits/3943 || cve,CVE-2007-2749
2003851 || ET WEB_SPECIFIC FAQEngine SQL Injection Attempt -- question.php questionref UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_FAQEngine || url,doc.emergingthreats.net/2003851 || url,www.milw0rm.com/exploits/3943 || cve,CVE-2007-2749
2003852 || ET WEB_SPECIFIC SimpNews SQL Injection Attempt -- print.php newsnr SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_SimpleNews || url,doc.emergingthreats.net/2003852 || url,www.milw0rm.com/exploits/3942 || cve,CVE-2007-2750
2003853 || ET WEB_SPECIFIC SimpNews SQL Injection Attempt -- print.php newsnr UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_SimpleNews || url,doc.emergingthreats.net/2003853 || url,www.milw0rm.com/exploits/3942 || cve,CVE-2007-2750
2003854 || ET WEB_SPECIFIC SimpNews SQL Injection Attempt -- print.php newsnr INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_SimpleNews || url,doc.emergingthreats.net/2003854 || url,www.milw0rm.com/exploits/3942 || cve,CVE-2007-2750
2003855 || ET WEB_SPECIFIC SimpNews SQL Injection Attempt -- print.php newsnr DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_SimpleNews || url,doc.emergingthreats.net/2003855 || url,www.milw0rm.com/exploits/3942 || cve,CVE-2007-2750
2003856 || ET WEB_SPECIFIC SimpNews SQL Injection Attempt -- print.php newsnr ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_SimpleNews || url,doc.emergingthreats.net/2003856 || url,www.milw0rm.com/exploits/3942 || cve,CVE-2007-2750
2003857 || ET WEB_SPECIFIC SimpNews SQL Injection Attempt -- print.php newsnr UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_SimpleNews || url,doc.emergingthreats.net/2003857 || url,www.milw0rm.com/exploits/3942 || cve,CVE-2007-2750
2003858 || ET WEB_SPECIFIC RunawaySoft Haber portal 1.0 SQL Injection Attempt -- devami.asp id SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunawaySoft || url,doc.emergingthreats.net/2003858 || url,www.milw0rm.com/exploits/3936 || cve,CVE-2007-2752
2003859 || ET WEB_SPECIFIC RunawaySoft Haber portal 1.0 SQL Injection Attempt -- devami.asp id UNION SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunawaySoft || url,doc.emergingthreats.net/2003859 || url,www.milw0rm.com/exploits/3936 || cve,CVE-2007-2752
2003860 || ET WEB_SPECIFIC RunawaySoft Haber portal 1.0 SQL Injection Attempt -- devami.asp id INSERT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunawaySoft || url,doc.emergingthreats.net/2003860 || url,www.milw0rm.com/exploits/3936 || cve,CVE-2007-2752
2003861 || ET WEB_SPECIFIC RunawaySoft Haber portal 1.0 SQL Injection Attempt -- devami.asp id DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunawaySoft || url,doc.emergingthreats.net/2003861 || url,www.milw0rm.com/exploits/3936 || cve,CVE-2007-2752
2003862 || ET WEB_SPECIFIC RunawaySoft Haber portal 1.0 SQL Injection Attempt -- devami.asp id ASCII || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunawaySoft || url,doc.emergingthreats.net/2003862 || url,www.milw0rm.com/exploits/3936 || cve,CVE-2007-2752
2003863 || ET WEB_SPECIFIC RunawaySoft Haber portal 1.0 SQL Injection Attempt -- devami.asp id UPDATE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_RunawaySoft || url,doc.emergingthreats.net/2003863 || url,www.milw0rm.com/exploits/3936 || cve,CVE-2007-2752
2003864 || ET POLICY Outbound SMTP on port 587 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Unauthorized_SMTP || url,doc.emergingthreats.net/2003864
2003865 || ET WEB_SPECIFIC CMS Made Simple SQL Injection Attempt -- stylesheet.php templateid DELETE || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_CMS_Made_Simple || url,doc.emergingthreats.net/2003865 || url,www.securityfocus.com/bid/23753 || cve,CVE-2007-2473
2003866 || ET WEB_SPECIFIC Glossaire SQL Injection Attempt -- glossaire-p-f.php sid SELECT || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Glossaire || url,doc.emergingthreats.net/2003866 || url,www.milw0rm.com/exploits/3932 || cve,CVE-2007-2738
2003867 || ET WEB TellTarget CMS Remote Inclusion 3_lay.php tt_docroot || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_TellTarget_CMS || url,doc.emergingthreats.net/2003867 || url,www.milw0rm.com/exploits/3885 || cve,CVE-2007-2597
2003869 || ET SCAN ProxyReconBot CONNECT method to Mail || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_ReconBot || url,doc.emergingthreats.net/2003869
2003870 || ET SCAN ProxyReconBot POST method to Mail || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_ReconBot || url,doc.emergingthreats.net/2003870
2003871 || ET WEB_SPECIFIC Ripe Website Manager XSS Attempt -- index.php ripeformpost || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Ripe_Website || url,doc.emergingthreats.net/2003871 || url,www.securityfocus.com/bid/23597 || cve,CVE-2007-2206
2003872 || ET WEB_SPECIFIC Redoable XSS Attempt -- searchloop.php s || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Redoable || url,doc.emergingthreats.net/2003872 || url,www.securityfocus.com/archive/1/archive/1/468892/100/0/threaded || cve,CVE-2007-2757
2003873 || ET WEB_SPECIFIC Redoable XSS Attempt -- header.php s || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Redoable || url,doc.emergingthreats.net/2003873 || url,www.securityfocus.com/archive/1/archive/1/468892/100/0/threaded || cve,CVE-2007-2757
2003874 || ET WEB_SPECIFIC vDesk Webmail XSS Attempt -- printcal.pl || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_vDesk || url,doc.emergingthreats.net/2003874 || url,www.securityfocus.com/bid/24022 || cve,CVE-2007-2745
2003875 || ET WEB_SPECIFIC fotolog XSS Attempt -- all_photos.html user || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_fotolog || url,doc.emergingthreats.net/2003875 || url,www.securityfocus.com/archive/1/archive/1/468316/100/0/threaded || cve,CVE-2007-2724
2003876 || ET WEB_SPECIFIC EQdkp XSS Attempt -- listmembers.php show || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_EQdkp || url,doc.emergingthreats.net/2003876 || url,www.securityfocus.com/bid/23951 || cve,CVE-2007-2716
2003877 || ET WEB_SPECIFIC EQdkp XSS Attempt -- stats.php show || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_EQdkp || url,doc.emergingthreats.net/2003877 || url,www.securityfocus.com/bid/23951 || cve,CVE-2007-2716
2003878 || ET WEB_SPECIFIC Open Translation Engine (OTE) XSS Attempt -- header.php ote_home || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_OTE || url,doc.emergingthreats.net/2003878 || url,www.milw0rm.com/exploits/3838 || cve,CVE-2007-2676
2003879 || ET WEB_SPECIFIC PHPChain XSS Attempt -- settings.php catid || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPChain || url,doc.emergingthreats.net/2003879 || url,www.securityfocus.com/bid/23761 || cve,CVE-2007-2670
2003880 || ET WEB_SPECIFIC PHPChain XSS Attempt -- cat.php catid || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_PHPChain || url,doc.emergingthreats.net/2003880 || url,www.securityfocus.com/bid/23761 || cve,CVE-2007-2670
2003881 || ET WEB_SPECIFIC SonicBB XSS Attempt -- search.php part || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_SonicBB || url,doc.emergingthreats.net/2003881 || url,www.netvigilance.com/advisory0020 || cve,CVE-2007-1903
2003882 || ET WEB_SPECIFIC PHP Multi User Randomizer (phpMUR) XSS Attempt -- configure_plugin.tpl.php edit_plugin || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MUR || url,doc.emergingthreats.net/2003882 || url,www.securityfocus.com/bid/23917 || cve,CVE-2007-2632
2003883 || ET WEB_SPECIFIC PHP Multi User Randomizer (phpMUR) XSS Attempt -- phpinfo.php 1 || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MUR || url,doc.emergingthreats.net/2003883 || url,www.securityfocus.com/bid/23917 || cve,CVE-2007-2632
2003884 || ET WEB_SPECIFIC PHP Multi User Randomizer (phpMUR) XSS Attempt -- phpinfo.php a || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MUR || url,doc.emergingthreats.net/2003884 || url,www.securityfocus.com/bid/23917 || cve,CVE-2007-2632
2003885 || ET WEB_SPECIFIC WordPress XSS Attempt -- sidebar.php || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Wordpress || url,doc.emergingthreats.net/2003885 || url,www.securityfocus.com/archive/1/archive/1/467360/100/0/threaded || cve,CVE-2007-2627
2003886 || ET WEB_SPECIFIC All In One Control Panel (AIOCP) XSS Attempt -- cp_authorization.php || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_AIOCP || url,doc.emergingthreats.net/2003886 || url,www.frsirt.com/english/advisories/2007/1637 || cve,CVE-2007-2625
2003887 || ET WEB_SPECIFIC All In One Control Panel (AIOCP) XSS Attempt -- cp_config.php || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_AIOCP || url,doc.emergingthreats.net/2003887 || url,www.securityfocus.com/bid/23790 || cve,CVE-2007-2624
2003888 || ET WEB_SPECIFIC TutorialCMS (Photoshop Tutorials) XSS Attempt -- browseCat.php catFile || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Tutorial_CMS || url,doc.emergingthreats.net/2003888 || url,www.milw0rm.com/exploits/3887 || cve,CVE-2007-2600
2003889 || ET WEB_SPECIFIC TutorialCMS (Photoshop Tutorials) XSS Attempt -- browseSubCat.php catFile || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Tutorial_CMS || url,doc.emergingthreats.net/2003889 || url,www.milw0rm.com/exploits/3887 || cve,CVE-2007-2600
2003890 || ET WEB_SPECIFIC TutorialCMS (Photoshop Tutorials) XSS Attempt -- openTutorial.php id || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Tutorial_CMS || url,doc.emergingthreats.net/2003890 || url,www.milw0rm.com/exploits/3887 || cve,CVE-2007-2600
2003891 || ET WEB_SPECIFIC TutorialCMS (Photoshop Tutorials) XSS Attempt -- topFrame.php id || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Tutorial_CMS || url,doc.emergingthreats.net/2003891 || url,www.milw0rm.com/exploits/3887 || cve,CVE-2007-2600
2003892 || ET WEB_SPECIFIC TutorialCMS (Photoshop Tutorials) XSS Attempt -- editListing.php id || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Tutorial_CMS || url,doc.emergingthreats.net/2003892 || url,www.milw0rm.com/exploits/3887 || cve,CVE-2007-2600
2003893 || ET WEB_SPECIFIC TutorialCMS (Photoshop Tutorials) XSS Attempt -- search.php search || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Tutorial_CMS || url,doc.emergingthreats.net/2003893 || url,www.milw0rm.com/exploits/3887 || cve,CVE-2007-2600
2003894 || ET WEB_SPECIFIC Nokia Intellisync Mobile Suite XSS Attempt -- dev_logon.asp username || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Nokia_Intellisync || url,doc.emergingthreats.net/2003894 || url,www.securityfocus.com/archive/1/archive/1/468048/100/0/threaded || cve,CVE-2007-2592
2003895 || ET WEB_SPECIFIC Nokia Intellisync Mobile Suite XSS Attempt -- registerAccount.asp || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Nokia_Intellisync || url,doc.emergingthreats.net/2003895 || url,www.securityfocus.com/archive/1/archive/1/468048/100/0/threaded || cve,CVE-2007-2592
2003896 || ET WEB_SPECIFIC Nokia Intellisync Mobile Suite XSS Attempt -- create_account.asp || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Nokia_Intellisync || url,doc.emergingthreats.net/2003896 || url,www.securityfocus.com/archive/1/archive/1/468048/100/0/threaded || cve,CVE-2007-2592
2003897 || ET WEB Adobe RoboHelp XSS Attempt whstart.js || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Adobe || url,doc.emergingthreats.net/2003897 || url,www.securityfocus.com/archive/1/archive/1/468360/100/0/threaded || cve,CVE-2007-1280
2003898 || ET WEB Adobe RoboHelp XSS Attempt whcsh_home.htm || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Adobe || url,doc.emergingthreats.net/2003898 || url,www.securityfocus.com/archive/1/archive/1/468360/100/0/threaded || cve,CVE-2007-1280
2003899 || ET WEB Adobe RoboHelp XSS Attempt wf_startpage.js || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Adobe || url,doc.emergingthreats.net/2003899 || url,www.securityfocus.com/archive/1/archive/1/468360/100/0/threaded || cve,CVE-2007-1280
2003900 || ET WEB Adobe RoboHelp XSS Attempt wf_startqs.htm || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Adobe || url,doc.emergingthreats.net/2003900 || url,www.securityfocus.com/archive/1/archive/1/468360/100/0/threaded || cve,CVE-2007-1280
2003901 || ET WEB Adobe RoboHelp XSS Attempt WindowManager.dll || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Adobe || url,doc.emergingthreats.net/2003901 || url,www.securityfocus.com/archive/1/archive/1/468360/100/0/threaded || cve,CVE-2007-1280
2003902 || ET WEB_SPECIFIC Apache Tomcat XSS Attempt -- implicit-objects.jsp || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Tomcat || url,doc.emergingthreats.net/2003902 || url,www.frsirt.com/english/advisories/2007/1729 || cve,CVE-2006-7195
2003903 || ET WEB Microsoft SharePoint XSS Attempt default.aspx || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Sharepoint || url,doc.emergingthreats.net/2003903 || url,www.securityfocus.com/bid/23832 || cve,CVE-2007-2581
2003904 || ET WEB Microsoft SharePoint XSS Attempt index.php form[mail] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Sharepoint || url,doc.emergingthreats.net/2003904 || url,www.securityfocus.com/bid/23834 || cve,CVE-2007-2579
2003905 || ET WEB_SPECIFIC ACP3 XSS Attempt -- index.php form[mods] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ACP3 || url,doc.emergingthreats.net/2003905 || url,www.securityfocus.com/bid/23834 || cve,CVE-2007-2579
2003906 || ET WEB_SPECIFIC ACP3 XSS Attempt -- index.php form || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ACP3 || url,doc.emergingthreats.net/2003906 || url,www.securityfocus.com/bid/23834 || cve,CVE-2007-2579
2003907 || ET WEB_SPECIFIC ACP3 XSS Attempt -- download.php id || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ACP3 || url,doc.emergingthreats.net/2003907 || url,www.securityfocus.com/bid/23834 || cve,CVE-2007-2579
2003908 || ET WEB_SPECIFIC ACP3 XSS Attempt -- index.php form[cat] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ACP3 || url,doc.emergingthreats.net/2003908 || url,www.securityfocus.com/bid/23834 || cve,CVE-2007-2579
2003909 || ET WEB_SPECIFIC ACP3 XSS Attempt -- index.php form[cat] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ACP3 || url,doc.emergingthreats.net/2003909 || url,www.securityfocus.com/bid/23834 || cve,CVE-2007-2579
2003910 || ET WEB_SPECIFIC ACP3 XSS Attempt -- index.php form[name] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ACP3 || url,doc.emergingthreats.net/2003910 || url,www.securityfocus.com/bid/23834 || cve,CVE-2007-2579
2003911 || ET WEB_SPECIFIC ACP3 XSS Attempt -- index.php form[message] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ACP3 || url,doc.emergingthreats.net/2003911 || url,www.securityfocus.com/bid/23834 || cve,CVE-2007-2579
2003912 || ET WEB_SPECIFIC ACP3 XSS Attempt -- index.php form[mail] || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_ACP3 || url,doc.emergingthreats.net/2003912 || url,www.securityfocus.com/bid/23834 || cve,CVE-2007-2579
2003913 || ET WEB_SPECIFIC Kayako eSupport XSS Attempt -- index.php _m || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Kayako || url,doc.emergingthreats.net/2003913 || url,www.securityfocus.com/archive/1/archive/1/467832/100/0/threaded || cve,CVE-2007-2562
2003914 || ET WEB_SPECIFIC Podium CMS XSS Attempt -- Default.aspx id || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Podium || url,doc.emergingthreats.net/2003914 || url,www.securityfocus.com/archive/1/archive/1/467823/100/0/threaded || cve,CVE-2007-2555
2003915 || ET WEB_SPECIFIC Advanced Guestbook XSS Attempt -- picture.php picture || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Advanced_Guestbook || url,doc.emergingthreats.net/2003915 || url,www.securityfocus.com/bid/23873 || cve,CVE-2007-0605
2003916 || ET WEB_SPECIFIC WikkaWiki (Wikka Wiki) XSS Attempt -- usersettings.php name || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Wikkawiki || url,doc.emergingthreats.net/2003916 || url,www.securityfocus.com/bid/23894 || cve,CVE-2007-2551
2003917 || ET WEB_SPECIFIC TurnkeyWebTools SunShop Shopping Cart XSS Attempt -- index.php l || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_TurnkeyWebTools || url,doc.emergingthreats.net/2003917 || url,www.securityfocus.com/bid/23856 || cve,CVE-2007-2547
2003918 || ET WEB_SPECIFIC Minh Nguyen Duong Obie Website Mini Web Shop XSS Attempt -- sendmail.php || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MNDO || url,doc.emergingthreats.net/2003918 || url,www.securityfocus.com/bid/23847 || cve,CVE-2007-2532
2003919 || ET WEB_SPECIFIC Minh Nguyen Duong Obie Website Mini Web Shop XSS Attempt -- order_form.php || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_MNDO || url,doc.emergingthreats.net/2003919 || url,www.securityfocus.com/bid/23847 || cve,CVE-2007-2532
2003920 || ET WEB_SPECIFIC DVDdb XSS Attempt -- loan.php movieid || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_DVDdb || url,doc.emergingthreats.net/2003920 || url,www.securityfocus.com/bid/23764 || cve,CVE-2007-2499
2003921 || ET WEB_SPECIFIC DVDdb XSS Attempt -- listmovies.php s || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_DVDdb || url,doc.emergingthreats.net/2003921 || url,www.securityfocus.com/bid/23764 || cve,CVE-2007-2499
2003922 || ET WEB_SPECIFIC Sendcard XSS Attempt -- sendcard.php form || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Sendcard || url,doc.emergingthreats.net/2003922 || url,www.secunia.com/advisories/25085 || cve,CVE-2007-2472
2003924 || ET WEB WebHack Control Center User-Agent Inbound (WHCC/) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_WebHack || url,doc.emergingthreats.net/2003924 || url,www.governmentsecurity.org/forum/index.php?showtopic=5112&pid=28561&mode=threaded&start=
2003925 || ET WEB WebHack Control Center User-Agent Outbound (WHCC/) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_WebHack || url,doc.emergingthreats.net/2003925 || url,www.governmentsecurity.org/forum/index.php?showtopic=5112&pid=28561&mode=threaded&start=
2003926 || ET MALWARE Personalweb Spyware User-Agent (PWMI/1.0) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003926
2003927 || ET MALWARE Suspicious User-Agent (HTTPTEST) - Seen used by downloaders || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003927
2003928 || ET MALWARE Mirar Bar Spyware User-Agent (Mbar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003928
2003929 || ET MALWARE Mirar Bar Spyware User-Agent (Mirar_Toolbar) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003929
2003930 || ET MALWARE Suspicious User-Agent (Snatch-System) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/bin/view/Main/2003930
2003931 || ET TROJAN Banker.Delf User-Agent (Varlok_11000) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Delf || url,doc.emergingthreats.net/