ET COMPROMISED Known Compromised or Hostile Host Traffic group 2

SID: 2500002Rev: 763513 viewsHistory

Sourceet/open

CreatedApril 28, 2011

UpdatedMay 26, 2026

Classificationmisc-attack

alert ip [116.110.151.201,116.110.151.7,116.110.152.206,116.110.155.229,116.110.155.45,116.110.159.155,116.110.159.204,116.110.18.220,116.110.19.247,116.110.208.21,116.110.211.187,116.110.212.102,116.110.219.1,116.110.223.85,116.110.2.39,116.110.4.188,116.110.9.216,116.99.168.200,116.99.168.218,116.99.170.173,116.99.170.9,116.99.170.93,116.99.170.99,116.99.171.134,116.99.171.245,116.99.172.116,116.99.172.119,116.99.172.175,116.99.172.29,116.99.173.23] any -> $HOME_NET any (msg:"ET COMPROMISED Known Compromised or Hostile Host Traffic group 2"; reference:url,danger.rulez.sk/projects/bruteforceblocker/blist.php; threshold:type limit, track by_src, seconds 60, count 1; classtype:misc-attack; sid:2500002; rev:7635; metadata:affected_product Any, attack_target Any, deployment Perimeter, tag COMPROMISED, signature_severity Major, created_at 2011_04_28, updated_at 2026_05_26;)

References

url	danger.rulez.sk/projects/bruteforceblocker/blist.php

Metadata

affected productAny

attack targetAny

deploymentPerimeter

tagCOMPROMISED

signature severityMajor

created at2011_04_28

updated at2026_05_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!