시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
1,5112015/01/20 2003245  ET TROJAN HackerDefender.HE Root Kit Control Connection Reply; [1,2
1,5102015/01/20 2003244  ET TROJAN HackerDefender.HE Root Kit Control Connection; [1,2
1,5092015/01/20 2003243  ET MALWARE User-Agent (Download Agent) Possibly Related to TrinityAcquisitions.com; [1
1,5082015/01/20 2003242  ET DELETED Websearch.com Cab Download; [1
1,5072015/01/20 2003241  ET MALWARE New.net Spyware Checkin; [1,2
1,5062015/01/20 2003240  ET MALWARE New.net Spyware updating; [1,2
1,5052015/01/20 2003239  ET TROJAN W32.Downloader Tibs.jy Reporting to C&C (2); [1
1,5042015/01/20 2003238  ET TROJAN W32.Downloader Tibs.jy Reporting to C&C; [1
1,5032015/01/20 2003237  ET VOIP MultiTech SIP UDP Overflow; [1
1,5022015/01/20 2003236  ET DOS NetrWkstaUserEnum Request with large Preferred Max Len; [1
1,5012015/01/20 2003234  ET ACTIVEX ACTIVEX Possible Microsoft IE Shell.Application ActiveX Arbitrary Command Execution (2); [1,2
1,5002015/01/20 2003233  ET ACTIVEX Possible Microsoft IE Shell.Application ActiveX Arbitrary Command Execution; [1,2
1,4992015/01/20 2003232  ET ACTIVEX Possible Microsoft IE Install Engine Inseng.dll Arbitrary Code Execution (2); [1,2
1,4982015/01/20 2003231  ET ACTIVEX ACTIVEX Possible Microsoft IE Install Engine Inseng.dll Arbitrary Code Execution; [1,2
1,4972015/01/20 2003230  ET WEB_CLIENT Microsoft IE FTP URL Arbitrary Command Injection; [1,2
1,4962015/01/20 2003224  ET MALWARE Megaupload Spyware User-Agent (Megaupload); [1,2
1,4952015/01/20 2003223  ET DELETED Zango-Hotbar User-Agent (zb-hb); [1
1,4942015/01/20 2003222  ET MALWARE MyWebSearch Toolbar Receiving Config 2; [1
1,4932015/01/20 2003221  ET MALWARE MySearchNow.com Spyware; [1,2
1,4922015/01/20 2003219  ET MALWARE Alexa Spyware Reporting; [1
1,4912015/01/20 2003218  ET MALWARE Conduit Connect Toolbar Message Download(Many report to be benign); [1,2
1,4902015/01/20 2003217  ET MALWARE 180solutions (Zango) Spyware Installer Config 2; [1,2
1,4892015/01/20 2003215  ET POLICY Pingdom.com Monitoring Node Active; [1,2
1,4882015/01/20 2003214  ET POLICY Pingdom.com Monitoring detected; [1,2
1,4872015/01/20 2003211  ET MALWARE Best-targeted-traffic.com Spyware Ping; [1
1,4862015/01/20 2003210  ET MALWARE Best-targeted-traffic.com Spyware Install; [1
1,4852015/01/20 2003209  ET MALWARE Best-targeted-traffic.com Spyware Checkin; [1
1,4842015/01/20 2003208  ET TROJAN IRC pBot PHP Bot Commands; [1
1,4832015/01/20 2003205  ET MALWARE User-Agent (Informer from RBC); [1,2
1,4822015/01/20 2003204  ET MALWARE Thespyguard.com Spyware Updating; [1,2,3
1,4812015/01/20 2003203  ET MALWARE Hitvirus Fake AV Install; [1,2
1,4802015/01/20 2003202  ET MALWARE Thespyguard.com Spyware Update Check; [1,2,3
1,4792015/01/20 2003201  ET MALWARE Thespyguard.com Spyware Install; [1,2,3
1,4782015/01/20 2003200  ET DELETED User-Agent (MSIE XPSP2); [1
1,4772015/01/20 2003199  ET EXPLOIT TFTP Invalid Mode in file Put; [1
1,4762015/01/20 2003198  ET EXPLOIT TFTP Invalid Mode in file Get; [1
1,4752015/01/20 2003197  ET EXPLOIT ProFTPD .message file overflow attempt; [1,2
1,4742015/01/20 2003196  ET EXPLOIT FTP .message file write; [1,2
1,4732015/01/20 2003195  ET POLICY Unusual number of DNS No Such Name Responses; [1
1,4722015/01/20 2003194  ET VOIP Multiple Unauthorized SIP Responses TCP; [1
1,4712015/01/20 2003193  ET VOIP REGISTER Message Flood TCP; [1
1,4702015/01/20 2003192  ET VOIP INVITE Message Flood TCP; [1
1,4692015/01/20 2003190  ET TROJAN Win32.Lager Trojan Reporting Spam; [1,2
1,4682015/01/20 2003189  ET TROJAN Win32.Lager Trojan Reporting (gcu); [1,2
1,4672015/01/20 2003188  ET TROJAN Win32.Lager Trojan Reporting; [1,2
1,4662015/01/20 2003187  ET TROJAN Win32.Lager Trojan Initial Checkin; [1,2
1,4652015/01/20 2003186  ET DELETED Prg Trojan v0.3 Binary In Transit; [1,2
1,4642015/01/20 2003185  ET DELETED Prg Trojan v0.2 Binary In Transit; [1,2
1,4632015/01/20 2003184  ET DELETED Prg Trojan v0.1 Binary In Transit; [1,2
1,4622015/01/20 2003183  ET TROJAN Prg Trojan Server Reply; [1,2
< 511  512  513  514  515  516  517  518  519  520 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.