ET COMPROMISED Known Compromised or Hostile Host Traffic group 3

SID: 2500004Rev: 763514 views
History
Sourceet/open
CreatedApril 28, 2011
UpdatedMay 26, 2026
Classificationmisc-attack
alert ip [116.99.174.167,116.99.174.238,117.36.231.242,118.145.243.156,118.32.101.175,119.8.150.112,120.92.10.155,120.92.105.170,123.59.232.173,124.123.125.62,125.20.210.182,129.153.121.56,129.159.149.21,130.110.250.40,130.12.180.27,130.211.54.242,130.211.57.13,130.211.80.178,131.161.204.66,134.209.239.4,13.56.253.154,136.0.251.107,138.197.39.208,138.2.102.66,138.68.243.18,138.68.40.82,139.59.157.185,139.59.41.158,14.18.114.170,142.93.103.244] any -> $HOME_NET any (msg:"ET COMPROMISED Known Compromised or Hostile Host Traffic group 3"; reference:url,danger.rulez.sk/projects/bruteforceblocker/blist.php; threshold:type limit, track by_src, seconds 60, count 1; classtype:misc-attack; sid:2500004; rev:7635; metadata:affected_product Any, attack_target Any, deployment Perimeter, tag COMPROMISED, signature_severity Major, created_at 2011_04_28, updated_at 2026_05_26;)

References

urldanger.rulez.sk/projects/bruteforceblocker/blist.php

Metadata

affected productAny
attack targetAny
deploymentPerimeter
tagCOMPROMISED
signature severityMajor
created at2011_04_28
updated at2026_05_26

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!