LowIBM Security Server Protection for Windows, Proventia Network IDS, Proventia-G 1.1 and earlier, Proventia Network MFS, RealSecure Server Sensor, RealSecure Network, Proventia Network IPS, Proventia Desktop, Virtual Server Protection for Vmware, Proventia Server IPS for Linux technology:
This signature detects a suspicious-looking sequence of JavaScript tokens employed in code obfuscation.
IBM Security Server Protection for Windows, Proventia Network IDS, Proventia-G 1.1 and earlier, Proventia Network MFS, RealSecure Server Sensor, RealSecure Network, Proventia Network IPS, Proventia Desktop, Virtual Server Protection for Vmware, Proventia Server IPS for Linux technology: It is not possible to determine if the code that triggers this event is malicious, it may be well-formed obfuscated code designed to hide intellectual property.
Low
IBM Security Server Protection for Windows: 2.1.14.2400, IBM Security Server Protection for Windows: 1.0.914.2400, IBM Security Server Protection for Windows: 2.0.300.2400, Proventia Network IDS: XPU 29.060, Proventia-G 1.1 and earlier: XPU 29.060, Proventia Network MFS: XPU 29.060, RealSecure Server Sensor: XPU 29.060, RealSecure Network: XPU 29.060, Proventia Network IPS: XPU 29.060, Proventia Desktop: 2400, Virtual Server Protection for Vmware: 1.0, Proventia Server IPS for Linux technology: 29.060
Microsoft Windows
Suspicious Activity
General PAM heuristics.
This signature is for informational purposes only.
ISS X-Force
generic heuristic
http://www.iss.net/security_center/static/42990.php