번호 | 날짜 | ID | 시그니처 (Total Ruleset: 27,111개) |
10,861 | 2015/01/20 | 2013539 | ET TROJAN BKDR_BTMINE.MNR BitCoin Miner Server Checkin; [1] |
10,860 | 2015/01/20 | 2013538 | ET TROJAN BKDR_BTMINE.MNR BitCoin Miner Retrieving New Malware From Server; [1] |
10,859 | 2015/01/20 | 2013537 | ET TROJAN BKDR_BTMINE.MNR BitCoin Miner Retrieving New IP Addresses From Server; [1] |
10,858 | 2015/01/20 | 2013536 | ET TROJAN BKDR_BTMINE.MNR BitCoin Miner Retrieving Server IP Addresses; [1] |
10,857 | 2015/01/20 | 2013535 | ET INFO HTTP Request to a *.tc domain; |
10,856 | 2015/01/20 | 2013534 | ET TROJAN VirTool.Win32/VBInject.gen!DM Checkin; [1] |
10,855 | 2015/01/20 | 2013533 | ET TROJAN Backdoor.Win32.Fynloski.A Command Response; [1,2] |
10,854 | 2015/01/20 | 2013532 | ET TROJAN Backdoor.Win32.Fynloski.A Command Request; [1,2] |
10,853 | 2015/01/20 | 2013531 | ET TROJAN MS Terminal Server User A Login, possible Morto Outbound; |
10,852 | 2015/01/20 | 2013530 | ET TROJAN Spyeye Data Exfiltration 9; |
10,851 | 2015/01/20 | 2013529 | ET TROJAN Spyeye Data Exfiltration 8; |
10,850 | 2015/01/20 | 2013528 | ET TROJAN Spyeye Data Exfiltration 7; |
10,849 | 2015/01/20 | 2013527 | ET TROJAN Spyeye Data Exfiltration 6; |
10,848 | 2015/01/20 | 2013526 | ET TROJAN Spyeye Data Exfiltration 5; |
10,847 | 2015/01/20 | 2013525 | ET TROJAN Spyeye Data Exfiltration 4; |
10,846 | 2015/01/20 | 2013524 | ET TROJAN Spyeye Data Exfiltration 3; |
10,845 | 2015/01/20 | 2013523 | ET TROJAN Spyeye Data Exfiltration 2; |
10,844 | 2015/01/20 | 2013522 | ET TROJAN Spyeye Data Exfiltration 1; |
10,843 | 2015/01/20 | 2013521 | ET TROJAN Spyeye Data Exfiltration 0; |
10,842 | 2015/01/20 | 2013520 | ET DELETED Unknown Loader *.jpg?t=0.* in http_uri; |
10,841 | 2015/01/20 | 2013519 | ET TROJAN Driveby Loader Request sn.php; |
10,840 | 2015/01/20 | 2013518 | ET TROJAN Driveby Loader Request List.php; |
10,839 | 2015/01/20 | 2013517 | ET DELETED Morto Worm Rar Download; [1] |
10,838 | 2015/01/20 | 2013516 | ET TROJAN TR/Spy.Gen checkin via dns ANY query; [1,2,3] |
10,837 | 2015/01/20 | 2013515 | ET TROJAN Potential DNS Command and Control via TXT queries; [1] |
10,836 | 2015/01/20 | 2013514 | ET TROJAN Potential DNS Command and Control via TXT queries; [1] |
10,835 | 2015/01/20 | 2013513 | ET TROJAN W32/Bancos Reporting; |
10,834 | 2015/01/20 | 2013512 | ET TROJAN Suspicious User-Agent (MadeByLc); |
10,833 | 2015/01/20 | 2013511 | ET TROJAN Win32/CazinoSilver Checkin; |
10,832 | 2015/01/20 | 2013510 | ET TROJAN W32/Lalus Trojan Downloader User Agent (Message Center); |
10,831 | 2015/01/20 | 2013509 | ET TROJAN W32/Lalus Trojan Downloader Checkin; |
10,830 | 2015/01/20 | 2013508 | ET TROJAN Downloader User-Agent HTTPGET; |
10,829 | 2015/01/20 | 2013507 | ET TROJAN Win32/Dynamer Trojan Dropper User-Agent VB Http; [1] |
10,828 | 2015/01/20 | 2013506 | ET TROJAN W32/Badlib Connectivity Check To Department of Defense Intelligence Information Systems; [1,2] |
10,827 | 2015/01/20 | 2013505 | ET POLICY GNU/Linux YUM User-Agent Outbound likely related to package management; [1] |
10,826 | 2015/01/20 | 2013504 | ET POLICY GNU/Linux APT User-Agent Outbound likely related to package management; [1] |
10,825 | 2015/01/20 | 2013503 | ET POLICY OS X Software Update Request Outbound; [1] |
10,824 | 2015/01/20 | 2013502 | ET TROJAN Win32/Wizpop Checkin; [1] |
10,823 | 2015/01/20 | 2013501 | ET DELETED Known Fraudulent DigiNotar SSL Certificate for google.com 2; [1] |
10,822 | 2015/01/20 | 2013500 | ET CURRENT_EVENTS Known Fraudulent DigiNotar SSL Certificate for google.com; [1] |
10,821 | 2015/01/20 | 2013499 | ET POLICY IncrediMail Install Callback; [1] |
10,820 | 2015/01/20 | 2013498 | ET POLICY Netflix Streaming Player Access; [1] |
10,819 | 2015/01/20 | 2013497 | ET TROJAN MS Terminal Server User A Login, possible Morto inbound; |
10,818 | 2015/01/20 | 2013496 | ET TROJAN DNS query for Morto RDP worm related domain jifr.co.be; [1] |
10,817 | 2015/01/20 | 2013495 | ET TROJAN DNS query for Morto RDP worm related domain jifr.info; [1] |
10,816 | 2015/01/20 | 2013494 | ET TROJAN DNS query for Morto RDP worm related domain qfsl.co.cc; [1] |
10,815 | 2015/01/20 | 2013493 | ET TROJAN DNS query for Morto RDP worm related domain qfsl.co.be; [1] |
10,814 | 2015/01/20 | 2013492 | ET SCAN McAfee/Foundstone Scanner Web Scan; [1] |
10,813 | 2015/01/20 | 2013491 | ET POLICY NetBIOS nbtstat Type Query Inbound; |
10,812 | 2015/01/20 | 2013490 | ET POLICY NetBIOS nbtstat Type Query Outbound; |
< 321 322 323 324 325 326 327 328 329 330 > |