[Emerging-updates] Live Commit Output

emerging@emergingthreats.net emerging at emergingthreats.net
Thu May 28 14:17:20 EDT 2009


[***] Results from Oinkmaster started Thu May 28 14:17:20 2009 [***]

[///]     Modified active rules:     [///]

 2007993 - ET MALWARE Suspicious User Agent (2 spaces) (emerging-malware.rules)
 2009353 - ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (1) (emerging-virus.rules)
 2009354 - ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (2) (emerging-virus.rules)
 2009355 - ET MALWARE Suspicious User-Agent (runUpdater.html) (emerging-malware.rules)
 2009356 - ET MALWARE Suspicious User-Agent (runPatch.html) (emerging-malware.rules)
 2009358 - ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap Scripting Engine) (emerging-scan.rules)
 2009359 - ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap NSE) (emerging-scan.rules)
 2009360 - ET MALWARE Gumblar/Bredolab Check In (emerging-virus.rules)
 2009361 - ET WEB cmd.exe In URI - Possible Command Execution Attempt (emerging-web.rules)
 2009362 - ET WEB /system32/ in Uri - Possible Protected Directory Access Attempt (emerging-web.rules)
 2009363 - ET WEB Suspicious Chmod Usage in URI (emerging-web.rules)
 2009364 - ET WEB_SPECIFIC Beerwins PHPLinkAdmin linkadmin.php page Parameter Remote File Inclusion (emerging-web_sql_injection.rules)
 2009365 - ET WEB_SPECIFIC Beerwins PHPLinkAdmin edlink.php linkid Parameter SQL Injection (emerging-web_sql_injection.rules)
 2009366 - ET WEB_SPECIFIC EasySiteNetwork Riddles Complete Website riddle.php riddleid Parameter SQL Injection (emerging-web_sql_injection.rules)
 2009367 - ET WEB_SPECIFIC cmsWorks lib.module.php mod_root Parameter Remote File Inclusion (emerging-web_sql_injection.rules)
 2009368 - ET WEB_SPECIFIC DeluxeBB misc.php qorder Parameter SQL Injection (emerging-web_sql_injection.rules)
 2009369 - ET WEB_SPECIFIC Joomla Simple RSS Reader admin.rssreader.php mosConfig_live_site Parameter Remote File Inclusion (emerging-web_sql_injection.rules)
 2009370 - ET WEB_SPECIFIC Boonex Dolphin HTMLSax3.php Remote File Inclusion (emerging-web_sql_injection.rules)
 2009371 - ET WEB_SPECIFIC Boonex Dolphin safehtml.php Remote File Inclusion (emerging-web_sql_injection.rules)
 2009372 - ET WEB_SPECIFIC Boonex Dolphin content.inc.php Remote File Inclusion (emerging-web_sql_injection.rules)
 2009373 - ET WEB Symantec Norton Ghost EasySetupInt.dll ActiveX Multiple Remote Denial of Service (emerging-web.rules)
 2009374 - ET TROJAN Virut Counter/Check-in  (emerging-virus.rules)
 2400000 - ET DROP Spamhaus DROP Listed Traffic Inbound (emerging-drop.rules)
 2400001 - ET DROP Spamhaus DROP Listed Traffic Inbound (emerging-drop.rules)
 2400002 - ET DROP Spamhaus DROP Listed Traffic Inbound (emerging-drop.rules)
 2400003 - ET DROP Spamhaus DROP Listed Traffic Inbound (emerging-drop.rules)
 2400004 - ET DROP Spamhaus DROP Listed Traffic Inbound (emerging-drop.rules)
 2400005 - ET DROP Spamhaus DROP Listed Traffic Inbound (emerging-drop.rules)
 2400006 - ET DROP Spamhaus DROP Listed Traffic Inbound (emerging-drop.rules)
 2400007 - ET DROP Spamhaus DROP Listed Traffic Inbound (emerging-drop.rules)
 2400008 - ET DROP Spamhaus DROP Listed Traffic Inbound (emerging-drop.rules)
 2401000 - ET DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (emerging-drop-BLOCK.rules)
 2401001 - ET DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (emerging-drop-BLOCK.rules)
 2401002 - ET DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (emerging-drop-BLOCK.rules)
 2401003 - ET DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (emerging-drop-BLOCK.rules)
 2401004 - ET DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (emerging-drop-BLOCK.rules)
 2401005 - ET DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (emerging-drop-BLOCK.rules)
 2401006 - ET DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (emerging-drop-BLOCK.rules)
 2401007 - ET DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (emerging-drop-BLOCK.rules)
 2401008 - ET DROP Spamhaus DROP Listed Traffic Inbound - BLOCKING SOURCE (emerging-drop-BLOCK.rules)
 2402000 - ET DROP Dshield Block Listed Source (emerging-dshield.rules)
 2403000 - ET DROP Dshield Block Listed Source - BLOCKING (emerging-dshield-BLOCK.rules)
 2404000 - ET DROP Known Bot C&C Server Traffic (group 1)  (emerging-botcc.rules)
 2404001 - ET DROP Known Bot C&C Server Traffic (group 2)  (emerging-botcc.rules)
 2404002 - ET DROP Known Bot C&C Server Traffic (group 3)  (emerging-botcc.rules)
 2404003 - ET DROP Known Bot C&C Server Traffic (group 4)  (emerging-botcc.rules)
 2404004 - ET DROP Known Bot C&C Server Traffic (group 5)  (emerging-botcc.rules)
 2404005 - ET DROP Known Bot C&C Server Traffic (group 6)  (emerging-botcc.rules)
 2404006 - ET DROP Known Bot C&C Server Traffic (group 7)  (emerging-botcc.rules)
 2404007 - ET DROP Known Bot C&C Server Traffic (group 8)  (emerging-botcc.rules)
 2404008 - ET DROP Known Bot C&C Server Traffic (group 9)  (emerging-botcc.rules)
 2404009 - ET DROP Known Bot C&C Server Traffic (group 10)  (emerging-botcc.rules)
 2404010 - ET DROP Known Bot C&C Server Traffic (group 11)  (emerging-botcc.rules)
 2404011 - ET DROP Known Bot C&C Server Traffic (group 12)  (emerging-botcc.rules)
 2404012 - ET DROP Known Bot C&C Server Traffic (group 13)  (emerging-botcc.rules)
 2404013 - ET DROP Known Bot C&C Server Traffic (group 14)  (emerging-botcc.rules)
 2404014 - ET DROP Known Bot C&C Server Traffic (group 15)  (emerging-botcc.rules)
 2404015 - ET DROP Known Bot C&C Server Traffic (group 16)  (emerging-botcc.rules)
 2404016 - ET DROP Known Bot C&C Server Traffic (group 17)  (emerging-botcc.rules)
 2404017 - ET DROP Known Bot C&C Server Traffic (group 18)  (emerging-botcc.rules)
 2404018 - ET DROP Known Bot C&C Server Traffic (group 19)  (emerging-botcc.rules)
 2404019 - ET DROP Known Bot C&C Server Traffic (group 20)  (emerging-botcc.rules)
 2404020 - ET DROP Known Bot C&C Server Traffic (group 21)  (emerging-botcc.rules)
 2404021 - ET DROP Known Bot C&C Server Traffic (group 22)  (emerging-botcc.rules)
 2404022 - ET DROP Known Bot C&C Server Traffic (group 23)  (emerging-botcc.rules)
 2404023 - ET DROP Known Bot C&C Server Traffic (group 24)  (emerging-botcc.rules)
 2405000 - ET DROP Known Bot C&C Traffic (group 1) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405001 - ET DROP Known Bot C&C Traffic (group 2) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405002 - ET DROP Known Bot C&C Traffic (group 3) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405003 - ET DROP Known Bot C&C Traffic (group 4) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405004 - ET DROP Known Bot C&C Traffic (group 5) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405005 - ET DROP Known Bot C&C Traffic (group 6) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405006 - ET DROP Known Bot C&C Traffic (group 7) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405007 - ET DROP Known Bot C&C Traffic (group 8) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405008 - ET DROP Known Bot C&C Traffic (group 9) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405009 - ET DROP Known Bot C&C Traffic (group 10) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405010 - ET DROP Known Bot C&C Traffic (group 11) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405011 - ET DROP Known Bot C&C Traffic (group 12) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405012 - ET DROP Known Bot C&C Traffic (group 13) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405013 - ET DROP Known Bot C&C Traffic (group 14) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405014 - ET DROP Known Bot C&C Traffic (group 15) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405015 - ET DROP Known Bot C&C Traffic (group 16) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405016 - ET DROP Known Bot C&C Traffic (group 17) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405017 - ET DROP Known Bot C&C Traffic (group 18) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405018 - ET DROP Known Bot C&C Traffic (group 19) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405019 - ET DROP Known Bot C&C Traffic (group 20) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405020 - ET DROP Known Bot C&C Traffic (group 21) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405021 - ET DROP Known Bot C&C Traffic (group 22) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405022 - ET DROP Known Bot C&C Traffic (group 23) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)
 2405023 - ET DROP Known Bot C&C Traffic (group 24) - BLOCKING SOURCE (emerging-botcc-BLOCK.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to emerging-drop-BLOCK.rules (2):
        #  VERSION 1553
        #  Generated 2009-05-28 00:03:02 EDT

     -> Added to emerging-drop.rules (2):
        #  VERSION 1553
        #  Generated 2009-05-28 00:03:02 EDT

     -> Added to emerging-sid-msg.map (21):
        2009353 || ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009353 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader:Win32/Bredolab.B
        2009354 || ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009354 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader:Win32/Bredolab.B
        2009355 || ET MALWARE Suspicious User-Agent (runUpdater.html) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2009355
        2009356 || ET MALWARE Suspicious User-Agent (runPatch.html) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2009356
        2009358 || ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap Scripting Engine) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2009358
        2009359 || ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap NSE) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2009359
        2009360 || ET MALWARE Gumblar/Bredolab Check In || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009360 || url,www.martinsecurity.net/2009/05/20/inside-the-massive-gumblar-attacka-dentro-del-enorme-ataque-gumblar/
        2009361 || ET WEB cmd.exe In URI - Possible Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_General || url,doc.emergingthreats.net/2009361
        2009362 || ET WEB /system32/ in Uri - Possible Protected Directory Access Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_General || url,doc.emergingthreats.net/2009362
        2009363 || ET WEB Suspicious Chmod Usage in URI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_General || url,doc.emergingthreats.net/2009363
        2009364 || ET WEB_SPECIFIC Beerwins PHPLinkAdmin linkadmin.php page Parameter Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Beerwins || url,doc.emergingthreats.net/2009364 || bugtraq,34129 || url,milw0rm.com/exploits/8216
        2009365 || ET WEB_SPECIFIC Beerwins PHPLinkAdmin edlink.php linkid Parameter SQL Injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Beerwins || url,doc.emergingthreats.net/2009365 || bugtraq,34129 || url,milw0rm.com/exploits/8216
        2009366 || ET WEB_SPECIFIC EasySiteNetwork Riddles Complete Website riddle.php riddleid Parameter SQL Injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_EasySite || url,doc.emergingthreats.net/2009366 || url,milw0rm.com/exploits/5946 || bugtraq,29966
        2009367 || ET WEB_SPECIFIC cmsWorks lib.module.php mod_root Parameter Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_cmsWorks || url,doc.emergingthreats.net/2009367 || bugtraq,29914 || url,milw0rm.com/exploits/5921
        2009368 || ET WEB_SPECIFIC DeluxeBB misc.php qorder Parameter SQL Injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_DeluseBB || url,doc.emergingthreats.net/2009368 || url,milw0rm.com/exploits/8240 || bugtraq,34174
        2009369 || ET WEB_SPECIFIC Joomla Simple RSS Reader admin.rssreader.php mosConfig_live_site Parameter Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Joomla || url,doc.emergingthreats.net/2009369 || url,milw0rm.com/exploits/7096 || bugtraq,32265 || url,vupen.com/english/advisories/2008/3119
        2009370 || ET WEB_SPECIFIC Boonex Dolphin HTMLSax3.php Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Boonex || url,doc.emergingthreats.net/2009370 || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009371 || ET WEB_SPECIFIC Boonex Dolphin safehtml.php Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Boonex || url,doc.emergingthreats.net/2009371 || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009372 || ET WEB_SPECIFIC Boonex Dolphin content.inc.php Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Boonex || url,doc.emergingthreats.net/2009372 || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009373 || ET WEB Symantec Norton Ghost EasySetupInt.dll ActiveX Multiple Remote Denial of Service || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Symantec || url,doc.emergingthreats.net/2009373 || bugtraq,34696 || url,milw0rm.com/exploits/8523
        2009374 || ET TROJAN Virut Counter/Check-in  || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Virut || url,doc.emergingthreats.net/2009374 || url,www.threatexpert.com/reports.aspx?find=ipk8888.cn&x=0&y=0

     -> Added to emerging-sid-msg.map.txt (21):
        2009353 || ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009353 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader:Win32/Bredolab.B
        2009354 || ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009354 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader:Win32/Bredolab.B
        2009355 || ET MALWARE Suspicious User-Agent (runUpdater.html) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2009355
        2009356 || ET MALWARE Suspicious User-Agent (runPatch.html) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/MALWARE/MALWARE_USER_Agents || url,doc.emergingthreats.net/2009356
        2009358 || ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap Scripting Engine) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2009358
        2009359 || ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap NSE) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_NMAP || url,doc.emergingthreats.net/2009359
        2009360 || ET MALWARE Gumblar/Bredolab Check In || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009360 || url,www.martinsecurity.net/2009/05/20/inside-the-massive-gumblar-attacka-dentro-del-enorme-ataque-gumblar/
        2009361 || ET WEB cmd.exe In URI - Possible Command Execution Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_General || url,doc.emergingthreats.net/2009361
        2009362 || ET WEB /system32/ in Uri - Possible Protected Directory Access Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_General || url,doc.emergingthreats.net/2009362
        2009363 || ET WEB Suspicious Chmod Usage in URI || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_General || url,doc.emergingthreats.net/2009363
        2009364 || ET WEB_SPECIFIC Beerwins PHPLinkAdmin linkadmin.php page Parameter Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Beerwins || url,doc.emergingthreats.net/2009364 || bugtraq,34129 || url,milw0rm.com/exploits/8216
        2009365 || ET WEB_SPECIFIC Beerwins PHPLinkAdmin edlink.php linkid Parameter SQL Injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Beerwins || url,doc.emergingthreats.net/2009365 || bugtraq,34129 || url,milw0rm.com/exploits/8216
        2009366 || ET WEB_SPECIFIC EasySiteNetwork Riddles Complete Website riddle.php riddleid Parameter SQL Injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_EasySite || url,doc.emergingthreats.net/2009366 || url,milw0rm.com/exploits/5946 || bugtraq,29966
        2009367 || ET WEB_SPECIFIC cmsWorks lib.module.php mod_root Parameter Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_cmsWorks || url,doc.emergingthreats.net/2009367 || bugtraq,29914 || url,milw0rm.com/exploits/5921
        2009368 || ET WEB_SPECIFIC DeluxeBB misc.php qorder Parameter SQL Injection || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_DeluseBB || url,doc.emergingthreats.net/2009368 || url,milw0rm.com/exploits/8240 || bugtraq,34174
        2009369 || ET WEB_SPECIFIC Joomla Simple RSS Reader admin.rssreader.php mosConfig_live_site Parameter Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Joomla || url,doc.emergingthreats.net/2009369 || url,milw0rm.com/exploits/7096 || bugtraq,32265 || url,vupen.com/english/advisories/2008/3119
        2009370 || ET WEB_SPECIFIC Boonex Dolphin HTMLSax3.php Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Boonex || url,doc.emergingthreats.net/2009370 || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009371 || ET WEB_SPECIFIC Boonex Dolphin safehtml.php Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Boonex || url,doc.emergingthreats.net/2009371 || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009372 || ET WEB_SPECIFIC Boonex Dolphin content.inc.php Remote File Inclusion || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_Boonex || url,doc.emergingthreats.net/2009372 || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009373 || ET WEB Symantec Norton Ghost EasySetupInt.dll ActiveX Multiple Remote Denial of Service || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Symantec || url,doc.emergingthreats.net/2009373 || bugtraq,34696 || url,milw0rm.com/exploits/8523
        2009374 || ET TROJAN Virut Counter/Check-in  || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Virut || url,doc.emergingthreats.net/2009374 || url,www.threatexpert.com/reports.aspx?find=ipk8888.cn&x=0&y=0

[---]     Removed non-rule lines:    [---]

     -> Removed from emerging-drop-BLOCK.rules (2):
        #  VERSION 1552
        #  Generated 2009-05-27 00:03:02 EDT

     -> Removed from emerging-drop.rules (2):
        #  VERSION 1552
        #  Generated 2009-05-27 00:03:02 EDT

     -> Removed from emerging-sid-msg.map (81):
        2009353 || ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (1) || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader:Win32/Bredolab.B
        2009354 || ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (2) || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader:Win32/Bredolab.B
        2009355 || ET MALWARE Suspicious User-Agent (runUpdater.html)
        2009356 || ET MALWARE Suspicious User-Agent (runPatch.html)
        2009358 || ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap Scripting Engine)
        2009359 || ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap NSE)
        2009360 || ET MALWARE Gumblar/Bredolab Check In || url,www.martinsecurity.net/2009/05/20/inside-the-massive-gumblar-attacka-dentro-del-enorme-ataque-gumblar/
        2009361 || ET WEB cmd.exe In URI - Possible Command Execution Attempt
        2009362 || ET WEB /system32/ in Uri - Possible Protected Directory Access Attempt
        2009363 || ET WEB Suspicious Chmod Usage in URI
        2009364 || ET WEB_SPECIFIC Beerwins PHPLinkAdmin linkadmin.php page Parameter Remote File Inclusion || bugtraq,34129 || url,milw0rm.com/exploits/8216
        2009365 || ET WEB_SPECIFIC Beerwins PHPLinkAdmin edlink.php linkid Parameter SQL Injection || bugtraq,34129 || url,milw0rm.com/exploits/8216
        2009366 || ET WEB_SPECIFIC EasySiteNetwork Riddles Complete Website riddle.php riddleid Parameter SQL Injection || url,milw0rm.com/exploits/5946 || bugtraq,29966
        2009367 || ET WEB_SPECIFIC cmsWorks lib.module.php mod_root Parameter Remote File Inclusion || bugtraq,29914 || url,milw0rm.com/exploits/5921
        2009368 || ET WEB_SPECIFIC DeluxeBB misc.php qorder Parameter SQL Injection || url,milw0rm.com/exploits/8240 || bugtraq,34174
        2009369 || ET WEB_SPECIFIC Joomla Simple RSS Reader admin.rssreader.php mosConfig_live_site Parameter Remote File Inclusion || url,milw0rm.com/exploits/7096 || bugtraq,32265 || url,vupen.com/english/advisories/2008/3119
        2009370 || ET WEB_SPECIFIC Boonex Dolphin HTMLSax3.php Remote File Inclusion || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009371 || ET WEB_SPECIFIC Boonex Dolphin safehtml.php Remote File Inclusion || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009372 || ET WEB_SPECIFIC Boonex Dolphin content.inc.php Remote File Inclusion || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009373 || ET WEB Symantec Norton Ghost EasySetupInt.dll ActiveX Multiple Remote Denial of Service || bugtraq,34696 || url,milw0rm.com/exploits/8523
        2009374 || ET TROJAN Virut Counter/Check-in  || url,www.threatexpert.com/reports.aspx?find=ipk8888.cn&x=0&y=0
        2500186 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (94) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500187 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (94) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500188 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (95) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500189 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (95) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500190 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (96) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500191 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (96) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500192 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (97) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500193 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (97) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500194 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (98) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500195 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (98) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500196 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (99) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500197 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (99) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500198 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (100) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500199 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (100) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500200 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (101) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500201 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (101) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500202 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (102) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500203 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (102) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500204 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (103) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500205 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (103) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500206 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (104) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500207 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (104) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500208 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (105) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500209 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (105) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500210 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (106) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500211 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (106) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500212 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (107) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500213 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (107) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500214 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (108) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500215 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (108) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510186 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (94) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510187 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (94) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510188 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (95) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510189 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (95) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510190 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (96) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510191 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (96) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510192 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (97) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510193 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (97) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510194 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (98) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510195 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (98) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510196 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (99) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510197 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (99) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510198 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (100) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510199 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (100) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510200 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (101) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510201 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (101) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510202 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (102) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510203 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (102) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510204 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (103) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510205 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (103) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510206 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (104) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510207 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (104) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510208 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (105) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510209 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (105) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510210 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (106) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510211 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (106) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510212 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (107) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510213 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (107) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510214 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (108) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510215 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (108) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts

     -> Removed from emerging-sid-msg.map.txt (81):
        2009353 || ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (1) || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader:Win32/Bredolab.B
        2009354 || ET TROJAN Bredolab/Gumblar Downloader Communicating With Controller (2) || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader:Win32/Bredolab.B
        2009355 || ET MALWARE Suspicious User-Agent (runUpdater.html)
        2009356 || ET MALWARE Suspicious User-Agent (runPatch.html)
        2009358 || ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap Scripting Engine)
        2009359 || ET SCAN Nmap Scripting Engine User-Agent Detected (Nmap NSE)
        2009360 || ET MALWARE Gumblar/Bredolab Check In || url,www.martinsecurity.net/2009/05/20/inside-the-massive-gumblar-attacka-dentro-del-enorme-ataque-gumblar/
        2009361 || ET WEB cmd.exe In URI - Possible Command Execution Attempt
        2009362 || ET WEB /system32/ in Uri - Possible Protected Directory Access Attempt
        2009363 || ET WEB Suspicious Chmod Usage in URI
        2009364 || ET WEB_SPECIFIC Beerwins PHPLinkAdmin linkadmin.php page Parameter Remote File Inclusion || bugtraq,34129 || url,milw0rm.com/exploits/8216
        2009365 || ET WEB_SPECIFIC Beerwins PHPLinkAdmin edlink.php linkid Parameter SQL Injection || bugtraq,34129 || url,milw0rm.com/exploits/8216
        2009366 || ET WEB_SPECIFIC EasySiteNetwork Riddles Complete Website riddle.php riddleid Parameter SQL Injection || url,milw0rm.com/exploits/5946 || bugtraq,29966
        2009367 || ET WEB_SPECIFIC cmsWorks lib.module.php mod_root Parameter Remote File Inclusion || bugtraq,29914 || url,milw0rm.com/exploits/5921
        2009368 || ET WEB_SPECIFIC DeluxeBB misc.php qorder Parameter SQL Injection || url,milw0rm.com/exploits/8240 || bugtraq,34174
        2009369 || ET WEB_SPECIFIC Joomla Simple RSS Reader admin.rssreader.php mosConfig_live_site Parameter Remote File Inclusion || url,milw0rm.com/exploits/7096 || bugtraq,32265 || url,vupen.com/english/advisories/2008/3119
        2009370 || ET WEB_SPECIFIC Boonex Dolphin HTMLSax3.php Remote File Inclusion || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009371 || ET WEB_SPECIFIC Boonex Dolphin safehtml.php Remote File Inclusion || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009372 || ET WEB_SPECIFIC Boonex Dolphin content.inc.php Remote File Inclusion || bugtraq,30136 || url,milw0rm.com/exploits/6024
        2009373 || ET WEB Symantec Norton Ghost EasySetupInt.dll ActiveX Multiple Remote Denial of Service || bugtraq,34696 || url,milw0rm.com/exploits/8523
        2009374 || ET TROJAN Virut Counter/Check-in  || url,www.threatexpert.com/reports.aspx?find=ipk8888.cn&x=0&y=0
        2500186 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (94) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500187 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (94) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500188 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (95) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500189 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (95) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500190 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (96) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500191 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (96) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500192 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (97) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500193 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (97) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500194 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (98) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500195 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (98) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500196 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (99) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500197 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (99) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500198 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (100) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500199 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (100) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500200 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (101) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500201 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (101) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500202 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (102) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500203 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (102) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500204 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (103) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500205 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (103) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500206 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (104) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500207 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (104) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500208 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (105) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500209 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (105) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500210 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (106) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500211 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (106) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500212 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (107) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500213 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (107) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500214 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP (108) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2500215 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP (108) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510186 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (94) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510187 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (94) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510188 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (95) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510189 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (95) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510190 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (96) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510191 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (96) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510192 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (97) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510193 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (97) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510194 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (98) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510195 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (98) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510196 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (99) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510197 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (99) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510198 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (100) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510199 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (100) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510200 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (101) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510201 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (101) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510202 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (102) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510203 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (102) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510204 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (103) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510205 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (103) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510206 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (104) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510207 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (104) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510208 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (105) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510209 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (105) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510210 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (106) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510211 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (106) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510212 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (107) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510213 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (107) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510214 || ET COMPROMISED Known Compromised or Hostile Host Traffic TCP - BLOCKING (108) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts
        2510215 || ET COMPROMISED Known Compromised or Hostile Host Traffic UDP - BLOCKING (108) || url,doc.emergingthreats.net/bin/view/Main/CompromisedHosts



More information about the Emerging-updates mailing list