[***] Summary: [***] 5 new Open rules, 15 new Pro (5 + 10). Cryptowall 2.0, VirusDoctor, revslider_show_image LFI, ComputerCop. [+++] Added rules: [+++] Open: 2019337 - ET CURRENT_EVENTS Possible Upatre SSL Cert mypreschool.sg (current_events.rules)
2019338 - ET CURRENT_EVENTS DRIVEBY Generic CollectGarbage in Hex (current_events.rules)
2019339 - ET CURRENT_EVENTS DRIVEBY Generic URLENCODED CollectGarbage (current_events.rules)
2019340 - ET CURRENT_EVENTS Possible ComputerCop Log Transmitted via SMTP (current_events.rules)
2019341 - ET CURRENT_EVENTS Cryptowall 2.0 DL URI Struct Oct 2 2014 (current_events.rules) Pro: 2808928 - ETPRO TROJAN Win32/Yektel.B Checkin (trojan.rules)
2808929 - ETPRO TROJAN Win32.VirusDoctor Checkin (trojan.rules)
2808930 - ETPRO TROJAN Trojan.Backdoor.Prosti CnC (trojan.rules)
2808931 - ETPRO MALWARE Adware.MarketScore.A Checkin (malware.rules)
2808932 - ETPRO TROJAN Win32/Bloodhound.Bancos Checkin (trojan.rules)
2808933 - ETPRO TROJAN TrojanSpy.Win32/Bancos.gen!B Checkin via SMTP (trojan.rules)
2808934 - ETPRO MOBILE_MALWARE Android Unknown Trojan Checkin (mobile_malware.rules)
2808935 - ETPRO MOBILE_MALWARE Trojan-Spy.AndroidOS.Gomal.a Checkin (mobile_malware.rules)
2808936 - ETPRO MOBILE_MALWARE Trojan-Spy.AndroidOS.Gomal.a Checkin 2 (mobile_malware.rules)
2808937 - ETPRO EXPLOIT revslider_show_image Plugin Local File Inclusion Exploit Attempt (exploit.rules)
[///] Modified active rules: [///] 2006447 - ET WEB_SERVER Possible SQL Injection Attempt UPDATE SET (web_server.rules)
2019003 - ET TROJAN Windows netstat Microsoft Windows DOS prompt command exit OUTBOUND (trojan.rules)
2806332 - ETPRO MOBILE_MALWARE Android/JSmsHiderCS.A (mobile_malware.rules)
2806513 - ETPRO TROJAN Win32.Jadtre Checkin/exe Request (trojan.rules)
2806783 - ETPRO TROJAN Win32.Xtrat.A (CnC & Exe Source) (trojan.rules)
[---] Removed rules: [---] 2002768 - ET MALWARE Corpsespyware.net Distribution - fesexy (malware.rules)
2010594 - ET TROJAN Potential FakeAV HTTP POST Check-IN (?r=) (trojan.rules)
2403335 - ET CINS Active Threat Intelligence Poor Reputation IP group 36 (ciarmy.rules)
2801950 - ETPRO TROJAN Win32/FakeSpypro Checkin (trojan.rules)
2808800 - ETPRO TROJAN Win32.Llac.bbeh downloading files (trojan.rules)
Date: 
Wednesday, October 1, 2014 - 22:00