*********************** suricata-4.0-enhanced etpro ***********************

[***] Results from Oinkmaster started Mon Aug 12 18:32:23 2019 [***]

[+++]          Added rules:          [+++]

 2027860 - ET POLICY External IP Lookup getip.pw (policy.rules)
 2400033 - ET DROP Spamhaus DROP Listed Traffic Inbound group 34 (drop.rules)
 2405114 - ET CNC Shadowserver Reported CnC Server Port 65267 Group 1 (botcc.portgrouped.rules)
 2837970 - ETPRO TROJAN Win32/DarkRAT CnC Activity (trojan.rules)
 2837971 - ETPRO TROJAN Win32/DarkRAT CnC Activity M2 (trojan.rules)
 2837972 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (MalDoc DL 2019-08-12) (current_events.rules)
 2837973 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 1) (trojan.rules)
 2837974 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 2) (trojan.rules)
 2837975 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 3) (trojan.rules)
 2837976 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 4) (trojan.rules)
 2837977 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 5) (trojan.rules)
 2837978 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837979 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837980 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837981 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837982 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837983 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837984 - ETPRO CURRENT_EVENTS Successful Scotiabank Phish 2019-08-12 (current_events.rules)
 2837985 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837986 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837987 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837988 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837989 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-08-12 (current_events.rules)
 2837990 - ETPRO CURRENT_EVENTS Successful Bank of America Phish 2019-08-12 (current_events.rules)
 2837991 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12 (current_events.rules)
 2837992 - ETPRO CURRENT_EVENTS Successful Adobe PDF Download Phish 2019-08-12 (current_events.rules)
 2837993 - ETPRO CURRENT_EVENTS Successful Manulife Bank Phish 2019-08-12 (current_events.rules)
 2837994 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-08-12 (current_events.rules)
 2837995 - ETPRO TROJAN CHRONO CnC Checkin (trojan.rules)
 2837996 - ETPRO CURRENT_EVENTS Possible Suspicious Init JS Resource Loaded (current_events.rules)
 2837997 - ETPRO TROJAN Win32/Winnti.AG Certificate Request (trojan.rules)
 2837998 - ETPRO TROJAN Win32/Winnti.AG CnC Activity (trojan.rules)
 2837999 - ETPRO MALWARE Win32/DriverPack Config Inbound (malware.rules)
 2838000 - ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC) (trojan.rules)
 2838001 - ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC) (trojan.rules)
 2838002 - ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC) (trojan.rules)
 2838003 - ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC) (trojan.rules)


[///]     Modified active rules:     [///]

 2400000 - ET DROP Spamhaus DROP Listed Traffic Inbound group 1 (drop.rules)
 2400001 - ET DROP Spamhaus DROP Listed Traffic Inbound group 2 (drop.rules)
 2400002 - ET DROP Spamhaus DROP Listed Traffic Inbound group 3 (drop.rules)
 2400003 - ET DROP Spamhaus DROP Listed Traffic Inbound group 4 (drop.rules)
 2400004 - ET DROP Spamhaus DROP Listed Traffic Inbound group 5 (drop.rules)
 2400005 - ET DROP Spamhaus DROP Listed Traffic Inbound group 6 (drop.rules)
 2400006 - ET DROP Spamhaus DROP Listed Traffic Inbound group 7 (drop.rules)
 2400007 - ET DROP Spamhaus DROP Listed Traffic Inbound group 8 (drop.rules)
 2400008 - ET DROP Spamhaus DROP Listed Traffic Inbound group 9 (drop.rules)
 2400009 - ET DROP Spamhaus DROP Listed Traffic Inbound group 10 (drop.rules)
 2400010 - ET DROP Spamhaus DROP Listed Traffic Inbound group 11 (drop.rules)
 2400011 - ET DROP Spamhaus DROP Listed Traffic Inbound group 12 (drop.rules)
 2400012 - ET DROP Spamhaus DROP Listed Traffic Inbound group 13 (drop.rules)
 2400013 - ET DROP Spamhaus DROP Listed Traffic Inbound group 14 (drop.rules)
 2400014 - ET DROP Spamhaus DROP Listed Traffic Inbound group 15 (drop.rules)
 2400015 - ET DROP Spamhaus DROP Listed Traffic Inbound group 16 (drop.rules)
 2400016 - ET DROP Spamhaus DROP Listed Traffic Inbound group 17 (drop.rules)
 2400017 - ET DROP Spamhaus DROP Listed Traffic Inbound group 18 (drop.rules)
 2400018 - ET DROP Spamhaus DROP Listed Traffic Inbound group 19 (drop.rules)
 2400019 - ET DROP Spamhaus DROP Listed Traffic Inbound group 20 (drop.rules)
 2400020 - ET DROP Spamhaus DROP Listed Traffic Inbound group 21 (drop.rules)
 2400021 - ET DROP Spamhaus DROP Listed Traffic Inbound group 22 (drop.rules)
 2400022 - ET DROP Spamhaus DROP Listed Traffic Inbound group 23 (drop.rules)
 2400023 - ET DROP Spamhaus DROP Listed Traffic Inbound group 24 (drop.rules)
 2400024 - ET DROP Spamhaus DROP Listed Traffic Inbound group 25 (drop.rules)
 2400025 - ET DROP Spamhaus DROP Listed Traffic Inbound group 26 (drop.rules)
 2400026 - ET DROP Spamhaus DROP Listed Traffic Inbound group 27 (drop.rules)
 2400027 - ET DROP Spamhaus DROP Listed Traffic Inbound group 28 (drop.rules)
 2400028 - ET DROP Spamhaus DROP Listed Traffic Inbound group 29 (drop.rules)
 2400029 - ET DROP Spamhaus DROP Listed Traffic Inbound group 30 (drop.rules)
 2400030 - ET DROP Spamhaus DROP Listed Traffic Inbound group 31 (drop.rules)
 2400031 - ET DROP Spamhaus DROP Listed Traffic Inbound group 32 (drop.rules)
 2400032 - ET DROP Spamhaus DROP Listed Traffic Inbound group 33 (drop.rules)
 2402000 - ET DROP Dshield Block Listed Source group 1 (dshield.rules)
 2403300 - ET CINS Active Threat Intelligence Poor Reputation IP group 1 (ciarmy.rules)
 2403301 - ET CINS Active Threat Intelligence Poor Reputation IP group 2 (ciarmy.rules)
 2403302 - ET CINS Active Threat Intelligence Poor Reputation IP group 3 (ciarmy.rules)
 2403303 - ET CINS Active Threat Intelligence Poor Reputation IP group 4 (ciarmy.rules)
 2403304 - ET CINS Active Threat Intelligence Poor Reputation IP group 5 (ciarmy.rules)
 2403305 - ET CINS Active Threat Intelligence Poor Reputation IP group 6 (ciarmy.rules)
 2403306 - ET CINS Active Threat Intelligence Poor Reputation IP group 7 (ciarmy.rules)
 2403307 - ET CINS Active Threat Intelligence Poor Reputation IP group 8 (ciarmy.rules)
 2403308 - ET CINS Active Threat Intelligence Poor Reputation IP group 9 (ciarmy.rules)
 2403309 - ET CINS Active Threat Intelligence Poor Reputation IP group 10 (ciarmy.rules)
 2403310 - ET CINS Active Threat Intelligence Poor Reputation IP group 11 (ciarmy.rules)
 2403311 - ET CINS Active Threat Intelligence Poor Reputation IP group 12 (ciarmy.rules)
 2403312 - ET CINS Active Threat Intelligence Poor Reputation IP group 13 (ciarmy.rules)
 2403313 - ET CINS Active Threat Intelligence Poor Reputation IP group 14 (ciarmy.rules)
 2403314 - ET CINS Active Threat Intelligence Poor Reputation IP group 15 (ciarmy.rules)
 2403315 - ET CINS Active Threat Intelligence Poor Reputation IP group 16 (ciarmy.rules)
 2403316 - ET CINS Active Threat Intelligence Poor Reputation IP group 17 (ciarmy.rules)
 2403317 - ET CINS Active Threat Intelligence Poor Reputation IP group 18 (ciarmy.rules)
 2403318 - ET CINS Active Threat Intelligence Poor Reputation IP group 19 (ciarmy.rules)
 2403319 - ET CINS Active Threat Intelligence Poor Reputation IP group 20 (ciarmy.rules)
 2403320 - ET CINS Active Threat Intelligence Poor Reputation IP group 21 (ciarmy.rules)
 2403321 - ET CINS Active Threat Intelligence Poor Reputation IP group 22 (ciarmy.rules)
 2403322 - ET CINS Active Threat Intelligence Poor Reputation IP group 23 (ciarmy.rules)
 2403323 - ET CINS Active Threat Intelligence Poor Reputation IP group 24 (ciarmy.rules)
 2403324 - ET CINS Active Threat Intelligence Poor Reputation IP group 25 (ciarmy.rules)
 2403325 - ET CINS Active Threat Intelligence Poor Reputation IP group 26 (ciarmy.rules)
 2403326 - ET CINS Active Threat Intelligence Poor Reputation IP group 27 (ciarmy.rules)
 2403327 - ET CINS Active Threat Intelligence Poor Reputation IP group 28 (ciarmy.rules)
 2403328 - ET CINS Active Threat Intelligence Poor Reputation IP group 29 (ciarmy.rules)
 2403329 - ET CINS Active Threat Intelligence Poor Reputation IP group 30 (ciarmy.rules)
 2403330 - ET CINS Active Threat Intelligence Poor Reputation IP group 31 (ciarmy.rules)
 2403331 - ET CINS Active Threat Intelligence Poor Reputation IP group 32 (ciarmy.rules)
 2403332 - ET CINS Active Threat Intelligence Poor Reputation IP group 33 (ciarmy.rules)
 2403333 - ET CINS Active Threat Intelligence Poor Reputation IP group 34 (ciarmy.rules)
 2403334 - ET CINS Active Threat Intelligence Poor Reputation IP group 35 (ciarmy.rules)
 2403335 - ET CINS Active Threat Intelligence Poor Reputation IP group 36 (ciarmy.rules)
 2403336 - ET CINS Active Threat Intelligence Poor Reputation IP group 37 (ciarmy.rules)
 2403337 - ET CINS Active Threat Intelligence Poor Reputation IP group 38 (ciarmy.rules)
 2403338 - ET CINS Active Threat Intelligence Poor Reputation IP group 39 (ciarmy.rules)
 2403339 - ET CINS Active Threat Intelligence Poor Reputation IP group 40 (ciarmy.rules)
 2403340 - ET CINS Active Threat Intelligence Poor Reputation IP group 41 (ciarmy.rules)
 2403341 - ET CINS Active Threat Intelligence Poor Reputation IP group 42 (ciarmy.rules)
 2403342 - ET CINS Active Threat Intelligence Poor Reputation IP group 43 (ciarmy.rules)
 2403343 - ET CINS Active Threat Intelligence Poor Reputation IP group 44 (ciarmy.rules)
 2403344 - ET CINS Active Threat Intelligence Poor Reputation IP group 45 (ciarmy.rules)
 2403345 - ET CINS Active Threat Intelligence Poor Reputation IP group 46 (ciarmy.rules)
 2403346 - ET CINS Active Threat Intelligence Poor Reputation IP group 47 (ciarmy.rules)
 2403347 - ET CINS Active Threat Intelligence Poor Reputation IP group 48 (ciarmy.rules)
 2403348 - ET CINS Active Threat Intelligence Poor Reputation IP group 49 (ciarmy.rules)
 2403349 - ET CINS Active Threat Intelligence Poor Reputation IP group 50 (ciarmy.rules)
 2403350 - ET CINS Active Threat Intelligence Poor Reputation IP group 51 (ciarmy.rules)
 2403351 - ET CINS Active Threat Intelligence Poor Reputation IP group 52 (ciarmy.rules)
 2403352 - ET CINS Active Threat Intelligence Poor Reputation IP group 53 (ciarmy.rules)
 2403353 - ET CINS Active Threat Intelligence Poor Reputation IP group 54 (ciarmy.rules)
 2403354 - ET CINS Active Threat Intelligence Poor Reputation IP group 55 (ciarmy.rules)
 2403355 - ET CINS Active Threat Intelligence Poor Reputation IP group 56 (ciarmy.rules)
 2403356 - ET CINS Active Threat Intelligence Poor Reputation IP group 57 (ciarmy.rules)
 2403357 - ET CINS Active Threat Intelligence Poor Reputation IP group 58 (ciarmy.rules)
 2403358 - ET CINS Active Threat Intelligence Poor Reputation IP group 59 (ciarmy.rules)
 2403359 - ET CINS Active Threat Intelligence Poor Reputation IP group 60 (ciarmy.rules)
 2403360 - ET CINS Active Threat Intelligence Poor Reputation IP group 61 (ciarmy.rules)
 2403361 - ET CINS Active Threat Intelligence Poor Reputation IP group 62 (ciarmy.rules)
 2403362 - ET CINS Active Threat Intelligence Poor Reputation IP group 63 (ciarmy.rules)
 2403363 - ET CINS Active Threat Intelligence Poor Reputation IP group 64 (ciarmy.rules)
 2403364 - ET CINS Active Threat Intelligence Poor Reputation IP group 65 (ciarmy.rules)
 2403365 - ET CINS Active Threat Intelligence Poor Reputation IP group 66 (ciarmy.rules)
 2403366 - ET CINS Active Threat Intelligence Poor Reputation IP group 67 (ciarmy.rules)
 2403367 - ET CINS Active Threat Intelligence Poor Reputation IP group 68 (ciarmy.rules)
 2403368 - ET CINS Active Threat Intelligence Poor Reputation IP group 69 (ciarmy.rules)
 2403369 - ET CINS Active Threat Intelligence Poor Reputation IP group 70 (ciarmy.rules)
 2403370 - ET CINS Active Threat Intelligence Poor Reputation IP group 71 (ciarmy.rules)
 2403371 - ET CINS Active Threat Intelligence Poor Reputation IP group 72 (ciarmy.rules)
 2403372 - ET CINS Active Threat Intelligence Poor Reputation IP group 73 (ciarmy.rules)
 2403373 - ET CINS Active Threat Intelligence Poor Reputation IP group 74 (ciarmy.rules)
 2403374 - ET CINS Active Threat Intelligence Poor Reputation IP group 75 (ciarmy.rules)
 2403375 - ET CINS Active Threat Intelligence Poor Reputation IP group 76 (ciarmy.rules)
 2403376 - ET CINS Active Threat Intelligence Poor Reputation IP group 77 (ciarmy.rules)
 2403377 - ET CINS Active Threat Intelligence Poor Reputation IP group 78 (ciarmy.rules)
 2403378 - ET CINS Active Threat Intelligence Poor Reputation IP group 79 (ciarmy.rules)
 2403379 - ET CINS Active Threat Intelligence Poor Reputation IP group 80 (ciarmy.rules)
 2403380 - ET CINS Active Threat Intelligence Poor Reputation IP group 81 (ciarmy.rules)
 2403381 - ET CINS Active Threat Intelligence Poor Reputation IP group 82 (ciarmy.rules)
 2403382 - ET CINS Active Threat Intelligence Poor Reputation IP group 83 (ciarmy.rules)
 2403383 - ET CINS Active Threat Intelligence Poor Reputation IP group 84 (ciarmy.rules)
 2403384 - ET CINS Active Threat Intelligence Poor Reputation IP group 85 (ciarmy.rules)
 2403385 - ET CINS Active Threat Intelligence Poor Reputation IP group 86 (ciarmy.rules)
 2403386 - ET CINS Active Threat Intelligence Poor Reputation IP group 87 (ciarmy.rules)
 2403387 - ET CINS Active Threat Intelligence Poor Reputation IP group 88 (ciarmy.rules)
 2403388 - ET CINS Active Threat Intelligence Poor Reputation IP group 89 (ciarmy.rules)
 2403389 - ET CINS Active Threat Intelligence Poor Reputation IP group 90 (ciarmy.rules)
 2403390 - ET CINS Active Threat Intelligence Poor Reputation IP group 91 (ciarmy.rules)
 2403391 - ET CINS Active Threat Intelligence Poor Reputation IP group 92 (ciarmy.rules)
 2403392 - ET CINS Active Threat Intelligence Poor Reputation IP group 93 (ciarmy.rules)
 2403393 - ET CINS Active Threat Intelligence Poor Reputation IP group 94 (ciarmy.rules)
 2403394 - ET CINS Active Threat Intelligence Poor Reputation IP group 95 (ciarmy.rules)
 2403395 - ET CINS Active Threat Intelligence Poor Reputation IP group 96 (ciarmy.rules)
 2403396 - ET CINS Active Threat Intelligence Poor Reputation IP group 97 (ciarmy.rules)
 2403397 - ET CINS Active Threat Intelligence Poor Reputation IP group 98 (ciarmy.rules)
 2403398 - ET CINS Active Threat Intelligence Poor Reputation IP group 99 (ciarmy.rules)
 2403399 - ET CINS Active Threat Intelligence Poor Reputation IP group 100 (ciarmy.rules)
 2405000 - ET CNC Shadowserver Reported CnC Server Port 80 Group 1 (botcc.portgrouped.rules)
 2405001 - ET CNC Shadowserver Reported CnC Server Port 81 Group 1 (botcc.portgrouped.rules)
 2405002 - ET CNC Shadowserver Reported CnC Server Port 443 Group 1 (botcc.portgrouped.rules)
 2405003 - ET CNC Shadowserver Reported CnC Server Port 1099 Group 1 (botcc.portgrouped.rules)
 2405004 - ET CNC Shadowserver Reported CnC Server Port 1101 Group 1 (botcc.portgrouped.rules)
 2405005 - ET CNC Shadowserver Reported CnC Server Port 1337 Group 1 (botcc.portgrouped.rules)
 2405006 - ET CNC Shadowserver Reported CnC Server Port 1453 Group 1 (botcc.portgrouped.rules)
 2405007 - ET CNC Shadowserver Reported CnC Server Port 1587 Group 1 (botcc.portgrouped.rules)
 2405008 - ET CNC Shadowserver Reported CnC Server Port 1598 Group 1 (botcc.portgrouped.rules)
 2405009 - ET CNC Shadowserver Reported CnC Server Port 1728 Group 1 (botcc.portgrouped.rules)
 2405010 - ET CNC Shadowserver Reported CnC Server Port 1863 Group 1 (botcc.portgrouped.rules)
 2405011 - ET CNC Shadowserver Reported CnC Server Port 1868 Group 1 (botcc.portgrouped.rules)
 2405012 - ET CNC Shadowserver Reported CnC Server Port 1875 Group 1 (botcc.portgrouped.rules)
 2405013 - ET CNC Shadowserver Reported CnC Server Port 1888 Group 1 (botcc.portgrouped.rules)
 2405014 - ET CNC Shadowserver Reported CnC Server Port 1889 Group 1 (botcc.portgrouped.rules)
 2405015 - ET CNC Shadowserver Reported CnC Server Port 1980 Group 1 (botcc.portgrouped.rules)
 2405016 - ET CNC Shadowserver Reported CnC Server Port 1982 Group 1 (botcc.portgrouped.rules)
 2405017 - ET CNC Shadowserver Reported CnC Server Port 1984 Group 1 (botcc.portgrouped.rules)
 2405018 - ET CNC Shadowserver Reported CnC Server Port 1985 Group 1 (botcc.portgrouped.rules)
 2405019 - ET CNC Shadowserver Reported CnC Server Port 1987 Group 1 (botcc.portgrouped.rules)
 2405020 - ET CNC Shadowserver Reported CnC Server Port 2000 Group 1 (botcc.portgrouped.rules)
 2405021 - ET CNC Shadowserver Reported CnC Server Port 2007 Group 1 (botcc.portgrouped.rules)
 2405022 - ET CNC Shadowserver Reported CnC Server Port 2009 Group 1 (botcc.portgrouped.rules)
 2405023 - ET CNC Shadowserver Reported CnC Server Port 2020 Group 1 (botcc.portgrouped.rules)
 2405024 - ET CNC Shadowserver Reported CnC Server Port 2293 Group 1 (botcc.portgrouped.rules)
 2405025 - ET CNC Shadowserver Reported CnC Server Port 2319 Group 1 (botcc.portgrouped.rules)
 2405026 - ET CNC Shadowserver Reported CnC Server Port 2345 Group 1 (botcc.portgrouped.rules)
 2405027 - ET CNC Shadowserver Reported CnC Server Port 2525 Group 1 (botcc.portgrouped.rules)
 2405028 - ET CNC Shadowserver Reported CnC Server Port 3030 Group 1 (botcc.portgrouped.rules)
 2405029 - ET CNC Shadowserver Reported CnC Server Port 3127 Group 1 (botcc.portgrouped.rules)
 2405030 - ET CNC Shadowserver Reported CnC Server Port 3131 Group 1 (botcc.portgrouped.rules)
 2405031 - ET CNC Shadowserver Reported CnC Server Port 3159 Group 1 (botcc.portgrouped.rules)
 2405032 - ET CNC Shadowserver Reported CnC Server Port 3211 Group 1 (botcc.portgrouped.rules)
 2405033 - ET CNC Shadowserver Reported CnC Server Port 3366 Group 1 (botcc.portgrouped.rules)
 2405034 - ET CNC Shadowserver Reported CnC Server Port 3705 Group 1 (botcc.portgrouped.rules)
 2405035 - ET CNC Shadowserver Reported CnC Server Port 3921 Group 1 (botcc.portgrouped.rules)
 2405036 - ET CNC Shadowserver Reported CnC Server Port 3926 Group 1 (botcc.portgrouped.rules)
 2405037 - ET CNC Shadowserver Reported CnC Server Port 3935 Group 1 (botcc.portgrouped.rules)
 2405038 - ET CNC Shadowserver Reported CnC Server Port 3939 Group 1 (botcc.portgrouped.rules)
 2405039 - ET CNC Shadowserver Reported CnC Server Port 4001 Group 1 (botcc.portgrouped.rules)
 2405040 - ET CNC Shadowserver Reported CnC Server Port 4042 Group 1 (botcc.portgrouped.rules)
 2405041 - ET CNC Shadowserver Reported CnC Server Port 4244 Group 1 (botcc.portgrouped.rules)
 2405042 - ET CNC Shadowserver Reported CnC Server Port 4449 Group 1 (botcc.portgrouped.rules)
 2405043 - ET CNC Shadowserver Reported CnC Server Port 4523 Group 1 (botcc.portgrouped.rules)
 2405044 - ET CNC Shadowserver Reported CnC Server Port 5050 Group 1 (botcc.portgrouped.rules)
 2405045 - ET CNC Shadowserver Reported CnC Server Port 5190 Group 1 (botcc.portgrouped.rules)
 2405046 - ET CNC Shadowserver Reported CnC Server Port 5505 Group 1 (botcc.portgrouped.rules)
 2405047 - ET CNC Shadowserver Reported CnC Server Port 5555 Group 1 (botcc.portgrouped.rules)
 2405048 - ET CNC Shadowserver Reported CnC Server Port 5656 Group 1 (botcc.portgrouped.rules)
 2405049 - ET CNC Shadowserver Reported CnC Server Port 5657 Group 1 (botcc.portgrouped.rules)
 2405050 - ET CNC Shadowserver Reported CnC Server Port 5900 Group 1 (botcc.portgrouped.rules)
 2405051 - ET CNC Shadowserver Reported CnC Server Port 6121 Group 1 (botcc.portgrouped.rules)
 2405052 - ET CNC Shadowserver Reported CnC Server Port 6532 Group 1 (botcc.portgrouped.rules)
 2405053 - ET CNC Shadowserver Reported CnC Server Port 6556 Group 1 (botcc.portgrouped.rules)
 2405054 - ET CNC Shadowserver Reported CnC Server Port 6666 Group 1 (botcc.portgrouped.rules)
 2405055 - ET CNC Shadowserver Reported CnC Server Port 6667 Group 1 (botcc.portgrouped.rules)
 2405056 - ET CNC Shadowserver Reported CnC Server Port 6667 Group 2 (botcc.portgrouped.rules)
 2405057 - ET CNC Shadowserver Reported CnC Server Port 6667 Group 3 (botcc.portgrouped.rules)
 2405058 - ET CNC Shadowserver Reported CnC Server Port 6668 Group 1 (botcc.portgrouped.rules)
 2405059 - ET CNC Shadowserver Reported CnC Server Port 6669 Group 1 (botcc.portgrouped.rules)
 2405060 - ET CNC Shadowserver Reported CnC Server Port 6697 Group 1 (botcc.portgrouped.rules)
 2405061 - ET CNC Shadowserver Reported CnC Server Port 6768 Group 1 (botcc.portgrouped.rules)
 2405062 - ET CNC Shadowserver Reported CnC Server Port 6900 Group 1 (botcc.portgrouped.rules)
 2405063 - ET CNC Shadowserver Reported CnC Server Port 7000 Group 1 (botcc.portgrouped.rules)
 2405064 - ET CNC Shadowserver Reported CnC Server Port 7002 Group 1 (botcc.portgrouped.rules)
 2405065 - ET CNC Shadowserver Reported CnC Server Port 7007 Group 1 (botcc.portgrouped.rules)
 2405066 - ET CNC Shadowserver Reported CnC Server Port 7475 Group 1 (botcc.portgrouped.rules)
 2405067 - ET CNC Shadowserver Reported CnC Server Port 7654 Group 1 (botcc.portgrouped.rules)
 2405068 - ET CNC Shadowserver Reported CnC Server Port 7727 Group 1 (botcc.portgrouped.rules)
 2405069 - ET CNC Shadowserver Reported CnC Server Port 7777 Group 1 (botcc.portgrouped.rules)
 2405070 - ET CNC Shadowserver Reported CnC Server Port 7878 Group 1 (botcc.portgrouped.rules)
 2405071 - ET CNC Shadowserver Reported CnC Server Port 7890 Group 1 (botcc.portgrouped.rules)
 2405072 - ET CNC Shadowserver Reported CnC Server Port 8000 Group 1 (botcc.portgrouped.rules)
 2405073 - ET CNC Shadowserver Reported CnC Server Port 8004 Group 1 (botcc.portgrouped.rules)
 2405074 - ET CNC Shadowserver Reported CnC Server Port 8007 Group 1 (botcc.portgrouped.rules)
 2405075 - ET CNC Shadowserver Reported CnC Server Port 8021 Group 1 (botcc.portgrouped.rules)
 2405076 - ET CNC Shadowserver Reported CnC Server Port 8067 Group 1 (botcc.portgrouped.rules)
 2405077 - ET CNC Shadowserver Reported CnC Server Port 8080 Group 1 (botcc.portgrouped.rules)
 2405078 - ET CNC Shadowserver Reported CnC Server Port 8306 Group 1 (botcc.portgrouped.rules)
 2405079 - ET CNC Shadowserver Reported CnC Server Port 8372 Group 1 (botcc.portgrouped.rules)
 2405080 - ET CNC Shadowserver Reported CnC Server Port 8585 Group 1 (botcc.portgrouped.rules)
 2405081 - ET CNC Shadowserver Reported CnC Server Port 8745 Group 1 (botcc.portgrouped.rules)
 2405082 - ET CNC Shadowserver Reported CnC Server Port 8768 Group 1 (botcc.portgrouped.rules)
 2405083 - ET CNC Shadowserver Reported CnC Server Port 8782 Group 1 (botcc.portgrouped.rules)
 2405084 - ET CNC Shadowserver Reported CnC Server Port 8989 Group 1 (botcc.portgrouped.rules)
 2405085 - ET CNC Shadowserver Reported CnC Server Port 9000 Group 1 (botcc.portgrouped.rules)
 2405086 - ET CNC Shadowserver Reported CnC Server Port 9018 Group 1 (botcc.portgrouped.rules)
 2405087 - ET CNC Shadowserver Reported CnC Server Port 9095 Group 1 (botcc.portgrouped.rules)
 2405088 - ET CNC Shadowserver Reported CnC Server Port 9111 Group 1 (botcc.portgrouped.rules)
 2405089 - ET CNC Shadowserver Reported CnC Server Port 9450 Group 1 (botcc.portgrouped.rules)
 2405090 - ET CNC Shadowserver Reported CnC Server Port 9797 Group 1 (botcc.portgrouped.rules)
 2405091 - ET CNC Shadowserver Reported CnC Server Port 9800 Group 1 (botcc.portgrouped.rules)
 2405092 - ET CNC Shadowserver Reported CnC Server Port 9891 Group 1 (botcc.portgrouped.rules)
 2405093 - ET CNC Shadowserver Reported CnC Server Port 9899 Group 1 (botcc.portgrouped.rules)
 2405094 - ET CNC Shadowserver Reported CnC Server Port 10324 Group 1 (botcc.portgrouped.rules)
 2405095 - ET CNC Shadowserver Reported CnC Server Port 11830 Group 1 (botcc.portgrouped.rules)
 2405096 - ET CNC Shadowserver Reported CnC Server Port 13001 Group 1 (botcc.portgrouped.rules)
 2405097 - ET CNC Shadowserver Reported CnC Server Port 13337 Group 1 (botcc.portgrouped.rules)
 2405098 - ET CNC Shadowserver Reported CnC Server Port 15656 Group 1 (botcc.portgrouped.rules)
 2405099 - ET CNC Shadowserver Reported CnC Server Port 18888 Group 1 (botcc.portgrouped.rules)
 2405100 - ET CNC Shadowserver Reported CnC Server Port 19899 Group 1 (botcc.portgrouped.rules)
 2405101 - ET CNC Shadowserver Reported CnC Server Port 21321 Group 1 (botcc.portgrouped.rules)
 2405102 - ET CNC Shadowserver Reported CnC Server Port 22430 Group 1 (botcc.portgrouped.rules)
 2405103 - ET CNC Shadowserver Reported CnC Server Port 24300 Group 1 (botcc.portgrouped.rules)
 2405104 - ET CNC Shadowserver Reported CnC Server Port 26745 Group 1 (botcc.portgrouped.rules)
 2405105 - ET CNC Shadowserver Reported CnC Server Port 32000 Group 1 (botcc.portgrouped.rules)
 2405106 - ET CNC Shadowserver Reported CnC Server Port 32322 Group 1 (botcc.portgrouped.rules)
 2405107 - ET CNC Shadowserver Reported CnC Server Port 33333 Group 1 (botcc.portgrouped.rules)
 2405108 - ET CNC Shadowserver Reported CnC Server Port 42086 Group 1 (botcc.portgrouped.rules)
 2405109 - ET CNC Shadowserver Reported CnC Server Port 43000 Group 1 (botcc.portgrouped.rules)
 2405110 - ET CNC Shadowserver Reported CnC Server Port 51115 Group 1 (botcc.portgrouped.rules)
 2405111 - ET CNC Shadowserver Reported CnC Server Port 51987 Group 1 (botcc.portgrouped.rules)
 2405112 - ET CNC Shadowserver Reported CnC Server Port 56213 Group 1 (botcc.portgrouped.rules)
 2405113 - ET CNC Shadowserver Reported CnC Server Port 65146 Group 1 (botcc.portgrouped.rules)
 2815499 - ETPRO CURRENT_EVENTS Anonisma Paypal Phishing Uri Structure Dec 28 2015 (current_events.rules)


[///]    Modified inactive rules:    [///]

 2017993 - ET TROJAN GoonEK Jan 21 2013 (trojan.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to drop.rules (2):
        #  VERSION 2719
        #  Generated 2019-08-11 00:05:01 EDT

     -> Added to sid-msg.map (137):
        2027860 || ET POLICY External IP Lookup getip.pw
        2400033 || ET DROP Spamhaus DROP Listed Traffic Inbound group 34 || url,www.spamhaus.org/drop/drop.lasso
        2405014 || ET CNC Shadowserver Reported CnC Server Port 1889 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405015 || ET CNC Shadowserver Reported CnC Server Port 1980 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405016 || ET CNC Shadowserver Reported CnC Server Port 1982 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405017 || ET CNC Shadowserver Reported CnC Server Port 1984 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405018 || ET CNC Shadowserver Reported CnC Server Port 1985 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405019 || ET CNC Shadowserver Reported CnC Server Port 1987 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405020 || ET CNC Shadowserver Reported CnC Server Port 2000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405021 || ET CNC Shadowserver Reported CnC Server Port 2007 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405022 || ET CNC Shadowserver Reported CnC Server Port 2009 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405023 || ET CNC Shadowserver Reported CnC Server Port 2020 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405024 || ET CNC Shadowserver Reported CnC Server Port 2293 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405025 || ET CNC Shadowserver Reported CnC Server Port 2319 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405026 || ET CNC Shadowserver Reported CnC Server Port 2345 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405027 || ET CNC Shadowserver Reported CnC Server Port 2525 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405028 || ET CNC Shadowserver Reported CnC Server Port 3030 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405029 || ET CNC Shadowserver Reported CnC Server Port 3127 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405030 || ET CNC Shadowserver Reported CnC Server Port 3131 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405031 || ET CNC Shadowserver Reported CnC Server Port 3159 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405032 || ET CNC Shadowserver Reported CnC Server Port 3211 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405033 || ET CNC Shadowserver Reported CnC Server Port 3366 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405034 || ET CNC Shadowserver Reported CnC Server Port 3705 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405035 || ET CNC Shadowserver Reported CnC Server Port 3921 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405036 || ET CNC Shadowserver Reported CnC Server Port 3926 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405037 || ET CNC Shadowserver Reported CnC Server Port 3935 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405038 || ET CNC Shadowserver Reported CnC Server Port 3939 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405039 || ET CNC Shadowserver Reported CnC Server Port 4001 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405040 || ET CNC Shadowserver Reported CnC Server Port 4042 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405041 || ET CNC Shadowserver Reported CnC Server Port 4244 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405042 || ET CNC Shadowserver Reported CnC Server Port 4449 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405043 || ET CNC Shadowserver Reported CnC Server Port 4523 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405044 || ET CNC Shadowserver Reported CnC Server Port 5050 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405045 || ET CNC Shadowserver Reported CnC Server Port 5190 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405046 || ET CNC Shadowserver Reported CnC Server Port 5505 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405047 || ET CNC Shadowserver Reported CnC Server Port 5555 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405048 || ET CNC Shadowserver Reported CnC Server Port 5656 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405049 || ET CNC Shadowserver Reported CnC Server Port 5657 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405050 || ET CNC Shadowserver Reported CnC Server Port 5900 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405051 || ET CNC Shadowserver Reported CnC Server Port 6121 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405052 || ET CNC Shadowserver Reported CnC Server Port 6532 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405053 || ET CNC Shadowserver Reported CnC Server Port 6556 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405054 || ET CNC Shadowserver Reported CnC Server Port 6666 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405055 || ET CNC Shadowserver Reported CnC Server Port 6667 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405056 || ET CNC Shadowserver Reported CnC Server Port 6667 Group 2 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405057 || ET CNC Shadowserver Reported CnC Server Port 6667 Group 3 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405058 || ET CNC Shadowserver Reported CnC Server Port 6668 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405059 || ET CNC Shadowserver Reported CnC Server Port 6669 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405060 || ET CNC Shadowserver Reported CnC Server Port 6697 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405061 || ET CNC Shadowserver Reported CnC Server Port 6768 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405062 || ET CNC Shadowserver Reported CnC Server Port 6900 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405063 || ET CNC Shadowserver Reported CnC Server Port 7000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405064 || ET CNC Shadowserver Reported CnC Server Port 7002 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405065 || ET CNC Shadowserver Reported CnC Server Port 7007 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405066 || ET CNC Shadowserver Reported CnC Server Port 7475 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405067 || ET CNC Shadowserver Reported CnC Server Port 7654 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405068 || ET CNC Shadowserver Reported CnC Server Port 7727 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405069 || ET CNC Shadowserver Reported CnC Server Port 7777 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405070 || ET CNC Shadowserver Reported CnC Server Port 7878 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405071 || ET CNC Shadowserver Reported CnC Server Port 7890 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405072 || ET CNC Shadowserver Reported CnC Server Port 8000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405073 || ET CNC Shadowserver Reported CnC Server Port 8004 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405074 || ET CNC Shadowserver Reported CnC Server Port 8007 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405075 || ET CNC Shadowserver Reported CnC Server Port 8021 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405076 || ET CNC Shadowserver Reported CnC Server Port 8067 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405077 || ET CNC Shadowserver Reported CnC Server Port 8080 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405078 || ET CNC Shadowserver Reported CnC Server Port 8306 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405079 || ET CNC Shadowserver Reported CnC Server Port 8372 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405080 || ET CNC Shadowserver Reported CnC Server Port 8585 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405081 || ET CNC Shadowserver Reported CnC Server Port 8745 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405082 || ET CNC Shadowserver Reported CnC Server Port 8768 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405083 || ET CNC Shadowserver Reported CnC Server Port 8782 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405084 || ET CNC Shadowserver Reported CnC Server Port 8989 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405085 || ET CNC Shadowserver Reported CnC Server Port 9000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405086 || ET CNC Shadowserver Reported CnC Server Port 9018 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405087 || ET CNC Shadowserver Reported CnC Server Port 9095 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405088 || ET CNC Shadowserver Reported CnC Server Port 9111 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405089 || ET CNC Shadowserver Reported CnC Server Port 9450 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405090 || ET CNC Shadowserver Reported CnC Server Port 9797 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405091 || ET CNC Shadowserver Reported CnC Server Port 9800 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405092 || ET CNC Shadowserver Reported CnC Server Port 9891 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405093 || ET CNC Shadowserver Reported CnC Server Port 9899 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405094 || ET CNC Shadowserver Reported CnC Server Port 10324 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405095 || ET CNC Shadowserver Reported CnC Server Port 11830 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405096 || ET CNC Shadowserver Reported CnC Server Port 13001 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405097 || ET CNC Shadowserver Reported CnC Server Port 13337 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405098 || ET CNC Shadowserver Reported CnC Server Port 15656 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405099 || ET CNC Shadowserver Reported CnC Server Port 18888 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405100 || ET CNC Shadowserver Reported CnC Server Port 19899 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405101 || ET CNC Shadowserver Reported CnC Server Port 21321 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405102 || ET CNC Shadowserver Reported CnC Server Port 22430 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405103 || ET CNC Shadowserver Reported CnC Server Port 24300 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405104 || ET CNC Shadowserver Reported CnC Server Port 26745 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405105 || ET CNC Shadowserver Reported CnC Server Port 32000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405106 || ET CNC Shadowserver Reported CnC Server Port 32322 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405107 || ET CNC Shadowserver Reported CnC Server Port 33333 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405108 || ET CNC Shadowserver Reported CnC Server Port 42086 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405109 || ET CNC Shadowserver Reported CnC Server Port 43000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405110 || ET CNC Shadowserver Reported CnC Server Port 51115 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405111 || ET CNC Shadowserver Reported CnC Server Port 51987 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405112 || ET CNC Shadowserver Reported CnC Server Port 56213 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405113 || ET CNC Shadowserver Reported CnC Server Port 65146 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405114 || ET CNC Shadowserver Reported CnC Server Port 65267 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2837970 || ETPRO TROJAN Win32/DarkRAT CnC Activity || md5,344720685cc57fa7e7db6175e0624c91
        2837971 || ETPRO TROJAN Win32/DarkRAT CnC Activity M2 || md5,344720685cc57fa7e7db6175e0624c91
        2837972 || ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (MalDoc DL 2019-08-12) || md5,434a5d5d5e44d6e24651b748171804bb
        2837973 || ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 1) || md5,410825656513191db20d93b7d5dad110 || url,mining.bitcoin.cz/stratum-mining || url,www.btcguild.com/new_protocol.php || url,research.zscaler.com/2013/12/bitcoin-mining-operation-seen-across.html
        2837974 || ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 2) || md5,b8776ed8c6c58a4771fc801d5fca4210 || url,mining.bitcoin.cz/stratum-mining || url,www.btcguild.com/new_protocol.php || url,research.zscaler.com/2013/12/bitcoin-mining-operation-seen-across.html
        2837975 || ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 3) || md5,b7a6c03e211368307e491b71030d0a83 || url,mining.bitcoin.cz/stratum-mining || url,www.btcguild.com/new_protocol.php || url,research.zscaler.com/2013/12/bitcoin-mining-operation-seen-across.html
        2837976 || ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 4) || md5,efc4ae74e527731911603434118361a1 || url,mining.bitcoin.cz/stratum-mining || url,www.btcguild.com/new_protocol.php || url,research.zscaler.com/2013/12/bitcoin-mining-operation-seen-across.html
        2837977 || ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-08-12 5) || md5,c9c13118fa9da74efd6f75a5bef703df || url,mining.bitcoin.cz/stratum-mining || url,www.btcguild.com/new_protocol.php || url,research.zscaler.com/2013/12/bitcoin-mining-operation-seen-across.html
        2837978 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837979 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837980 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837981 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837982 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837983 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837984 || ETPRO CURRENT_EVENTS Successful Scotiabank Phish 2019-08-12
        2837985 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837986 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837987 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837988 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837989 || ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-08-12
        2837990 || ETPRO CURRENT_EVENTS Successful Bank of America Phish 2019-08-12
        2837991 || ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-08-12
        2837992 || ETPRO CURRENT_EVENTS Successful Adobe PDF Download Phish 2019-08-12
        2837993 || ETPRO CURRENT_EVENTS Successful Manulife Bank Phish 2019-08-12
        2837994 || ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-08-12
        2837995 || ETPRO TROJAN CHRONO CnC Checkin || md5,0eeea8ba35c4f0ac74fbd25cb2ce0139
        2837996 || ETPRO CURRENT_EVENTS Possible Suspicious Init JS Resource Loaded || url,blog.coinbase.com/responding-to-firefox-0-days-in-the-wild-d9c85a57f15b
        2837997 || ETPRO TROJAN Win32/Winnti.AG Certificate Request || md5,04fb0ccf3ef309b1cd587f609ab0e81e
        2837998 || ETPRO TROJAN Win32/Winnti.AG CnC Activity || md5,04fb0ccf3ef309b1cd587f609ab0e81e
        2837999 || ETPRO MALWARE Win32/DriverPack Config Inbound || md5,f79e0da931f3dbb5ddb670375b5a9b91
        2838000 || ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC)
        2838001 || ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC)
        2838002 || ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC)
        2838003 || ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC)

[---]     Removed non-rule lines:    [---]

     -> Removed from drop.rules (2):
        #  VERSION 2718
        #  Generated 2019-08-04 00:05:02 EDT

     -> Removed from sid-msg.map (102):
        2405014 || ET CNC Shadowserver Reported CnC Server Port 1980 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405015 || ET CNC Shadowserver Reported CnC Server Port 1982 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405016 || ET CNC Shadowserver Reported CnC Server Port 1984 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405017 || ET CNC Shadowserver Reported CnC Server Port 1985 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405018 || ET CNC Shadowserver Reported CnC Server Port 1987 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405019 || ET CNC Shadowserver Reported CnC Server Port 2000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405020 || ET CNC Shadowserver Reported CnC Server Port 2007 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405021 || ET CNC Shadowserver Reported CnC Server Port 2009 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405022 || ET CNC Shadowserver Reported CnC Server Port 2020 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405023 || ET CNC Shadowserver Reported CnC Server Port 2293 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405024 || ET CNC Shadowserver Reported CnC Server Port 2319 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405025 || ET CNC Shadowserver Reported CnC Server Port 2345 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405026 || ET CNC Shadowserver Reported CnC Server Port 2525 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405027 || ET CNC Shadowserver Reported CnC Server Port 3030 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405028 || ET CNC Shadowserver Reported CnC Server Port 3127 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405029 || ET CNC Shadowserver Reported CnC Server Port 3131 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405030 || ET CNC Shadowserver Reported CnC Server Port 3159 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405031 || ET CNC Shadowserver Reported CnC Server Port 3211 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405032 || ET CNC Shadowserver Reported CnC Server Port 3366 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405033 || ET CNC Shadowserver Reported CnC Server Port 3705 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405034 || ET CNC Shadowserver Reported CnC Server Port 3921 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405035 || ET CNC Shadowserver Reported CnC Server Port 3926 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405036 || ET CNC Shadowserver Reported CnC Server Port 3935 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405037 || ET CNC Shadowserver Reported CnC Server Port 3939 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405038 || ET CNC Shadowserver Reported CnC Server Port 4001 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405039 || ET CNC Shadowserver Reported CnC Server Port 4042 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405040 || ET CNC Shadowserver Reported CnC Server Port 4244 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405041 || ET CNC Shadowserver Reported CnC Server Port 4449 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405042 || ET CNC Shadowserver Reported CnC Server Port 4523 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405043 || ET CNC Shadowserver Reported CnC Server Port 5050 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405044 || ET CNC Shadowserver Reported CnC Server Port 5190 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405045 || ET CNC Shadowserver Reported CnC Server Port 5505 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405046 || ET CNC Shadowserver Reported CnC Server Port 5555 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405047 || ET CNC Shadowserver Reported CnC Server Port 5656 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405048 || ET CNC Shadowserver Reported CnC Server Port 5657 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405049 || ET CNC Shadowserver Reported CnC Server Port 5900 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405050 || ET CNC Shadowserver Reported CnC Server Port 6121 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405051 || ET CNC Shadowserver Reported CnC Server Port 6532 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405052 || ET CNC Shadowserver Reported CnC Server Port 6556 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405053 || ET CNC Shadowserver Reported CnC Server Port 6666 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405054 || ET CNC Shadowserver Reported CnC Server Port 6667 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405055 || ET CNC Shadowserver Reported CnC Server Port 6667 Group 2 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405056 || ET CNC Shadowserver Reported CnC Server Port 6667 Group 3 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405057 || ET CNC Shadowserver Reported CnC Server Port 6668 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405058 || ET CNC Shadowserver Reported CnC Server Port 6669 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405059 || ET CNC Shadowserver Reported CnC Server Port 6697 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405060 || ET CNC Shadowserver Reported CnC Server Port 6768 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405061 || ET CNC Shadowserver Reported CnC Server Port 6900 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405062 || ET CNC Shadowserver Reported CnC Server Port 7000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405063 || ET CNC Shadowserver Reported CnC Server Port 7002 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405064 || ET CNC Shadowserver Reported CnC Server Port 7007 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405065 || ET CNC Shadowserver Reported CnC Server Port 7475 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405066 || ET CNC Shadowserver Reported CnC Server Port 7654 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405067 || ET CNC Shadowserver Reported CnC Server Port 7727 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405068 || ET CNC Shadowserver Reported CnC Server Port 7777 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405069 || ET CNC Shadowserver Reported CnC Server Port 7878 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405070 || ET CNC Shadowserver Reported CnC Server Port 7890 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405071 || ET CNC Shadowserver Reported CnC Server Port 8000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405072 || ET CNC Shadowserver Reported CnC Server Port 8004 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405073 || ET CNC Shadowserver Reported CnC Server Port 8007 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405074 || ET CNC Shadowserver Reported CnC Server Port 8021 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405075 || ET CNC Shadowserver Reported CnC Server Port 8067 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405076 || ET CNC Shadowserver Reported CnC Server Port 8080 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405077 || ET CNC Shadowserver Reported CnC Server Port 8306 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405078 || ET CNC Shadowserver Reported CnC Server Port 8372 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405079 || ET CNC Shadowserver Reported CnC Server Port 8585 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405080 || ET CNC Shadowserver Reported CnC Server Port 8745 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405081 || ET CNC Shadowserver Reported CnC Server Port 8768 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405082 || ET CNC Shadowserver Reported CnC Server Port 8782 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405083 || ET CNC Shadowserver Reported CnC Server Port 8989 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405084 || ET CNC Shadowserver Reported CnC Server Port 9000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405085 || ET CNC Shadowserver Reported CnC Server Port 9018 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405086 || ET CNC Shadowserver Reported CnC Server Port 9095 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405087 || ET CNC Shadowserver Reported CnC Server Port 9111 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405088 || ET CNC Shadowserver Reported CnC Server Port 9450 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405089 || ET CNC Shadowserver Reported CnC Server Port 9797 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405090 || ET CNC Shadowserver Reported CnC Server Port 9800 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405091 || ET CNC Shadowserver Reported CnC Server Port 9891 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405092 || ET CNC Shadowserver Reported CnC Server Port 9899 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405093 || ET CNC Shadowserver Reported CnC Server Port 10324 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405094 || ET CNC Shadowserver Reported CnC Server Port 11830 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405095 || ET CNC Shadowserver Reported CnC Server Port 13001 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405096 || ET CNC Shadowserver Reported CnC Server Port 13337 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405097 || ET CNC Shadowserver Reported CnC Server Port 15656 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405098 || ET CNC Shadowserver Reported CnC Server Port 18888 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405099 || ET CNC Shadowserver Reported CnC Server Port 19899 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405100 || ET CNC Shadowserver Reported CnC Server Port 21321 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405101 || ET CNC Shadowserver Reported CnC Server Port 22430 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405102 || ET CNC Shadowserver Reported CnC Server Port 24300 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405103 || ET CNC Shadowserver Reported CnC Server Port 26745 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405104 || ET CNC Shadowserver Reported CnC Server Port 32000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405105 || ET CNC Shadowserver Reported CnC Server Port 32322 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405106 || ET CNC Shadowserver Reported CnC Server Port 33333 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405107 || ET CNC Shadowserver Reported CnC Server Port 42086 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405108 || ET CNC Shadowserver Reported CnC Server Port 43000 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405109 || ET CNC Shadowserver Reported CnC Server Port 51115 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405110 || ET CNC Shadowserver Reported CnC Server Port 51987 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405111 || ET CNC Shadowserver Reported CnC Server Port 56213 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405112 || ET CNC Shadowserver Reported CnC Server Port 65146 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2405113 || ET CNC Shadowserver Reported CnC Server Port 65267 Group 1 || url,www.shadowserver.org || url,doc.emergingthreats.net/bin/view/Main/BotCC
        2520188 || ET TOR Known Tor Exit Node Traffic group 95 || url,doc.emergingthreats.net/bin/view/Main/TorRules
        2523452 || ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 727 || url,doc.emergingthreats.net/bin/view/Main/TorRules