TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
613
Signature ID: 28099
Activity Related to Spyware Site pool.Westpop.com Vulnerability(1)
Threat Level: Warning
Signature Description: The systems are directed to a site that is capable of installing malwares in the systems.
Malwares are the softwares that pass user's activities to external sites. This signature triggers when the client tries to
access Westpop.com site which is known to install Malwares. This signature will generate log when the request is
sending to update.cgi script.
Signature ID: 28100
Activity Related to Spyware Site pool.Westpop.com Vulnerability
Threat Level: Warning
Signature Description: The systems are directed to a site that is capable of installing malwares in the systems.
Malwares are the softwares that pass user's activities to external sites. This signature triggers when the client tries to
access Westpop.com site which is known to install Malwares.
Signature ID: 28101
Activity Related to Spyware Site Weird on the Web /180 Solutions Vulnerability
Threat Level: Information
Signature Description: Spyware is a program or software that resides on an infected computer and collects various
information about the users without their informed consent. WeirdOnTheWeb is a adware program that displays many
annoying advertisements and pop-ups. It can be secretly installed on some malicious web sites. This starts
automatically on system startup and works in background. This signature triggers when the attacker attempt to access
'weirdonTheweb.net/notifier/config.ini' site which is known to install Malwares.
Signature ID: 28102
Activity Related to Spyware Site Websearch.com Vulnerability
Threat Level: Information
Signature Description: Spyware is a program or software that resides on an infected computer and collects various
information about the users without their informed consent. WebSearch is a start and search page. It connects to the
internet without user knowledge to automatically updates its files and create a user profile user personal and computer
information to sell to their advertisers. This signature triggers when the client tries to access websearch.com site which
is known install malwares.
Signature ID: 28103
Spyware 2020Search Update Engine Activity Vulnerability
Threat Level: Warning
Signature Description: The systems are directed to a site that is capable of installing malwares in the systems.
Malwares are the softwares that pass user's activities to external sites. Spyware 2020search is a search hijacker that is
installed as a Browser Helper Object Toolbar in Microsoft Internet Explorer. The spyware requests several files during
installation and sends IP and operating system version information to a server. This spyware comes bundled and installs
Spyware.Shopnav.
Signature ID: 28104
Activity Related to Spyware Site Bravesentry.com Vulnerability
Threat Level: Warning
Signature Description: Brave Sentry is a Trojan disguised as an anti-spyware application. The systems are directed to
this site that is capable of installing malwares in the systems. Malwares are the softwares that pass user's activities to
external sites. Bravesentry hijacks the user's desktop and advertises too much.