From 5b1d4fdda0e578121166ee54e2541dd020d3f5e8 Mon Sep 17 00:00:00 2001
From: curbengh <curbengh@users.noreply.github.com>
Date: Fri, 6 Dec 2024 00:21:01 +0000
Subject: [PATCH] deploy: d7145f19e1ecd9f535686ae8518c14a7d078741e

---
 .nojekyll                                     |   0
 phishing-filter-ag.txt                        | 475 +++++++++++++++++
 phishing-filter-ag.txt.br                     | Bin 0 -> 5918 bytes
 phishing-filter-ag.txt.gz                     | Bin 0 -> 6121 bytes
 phishing-filter-agh.txt                       | 454 +++++++++++++++++
 phishing-filter-agh.txt.br                    | Bin 0 -> 5496 bytes
 phishing-filter-agh.txt.gz                    | Bin 0 -> 5697 bytes
 phishing-filter-bind.conf                     | 454 +++++++++++++++++
 phishing-filter-bind.conf.br                  | Bin 0 -> 5788 bytes
 phishing-filter-bind.conf.gz                  | Bin 0 -> 5958 bytes
 phishing-filter-dnscrypt-blocked-ips.txt      |   7 +
 phishing-filter-dnscrypt-blocked-ips.txt.br   | Bin 0 -> 186 bytes
 phishing-filter-dnscrypt-blocked-ips.txt.gz   | Bin 0 -> 213 bytes
 phishing-filter-dnscrypt-blocked-names.txt    | 454 +++++++++++++++++
 phishing-filter-dnscrypt-blocked-names.txt.br | Bin 0 -> 5432 bytes
 phishing-filter-dnscrypt-blocked-names.txt.gz | Bin 0 -> 5612 bytes
 phishing-filter-dnsmasq.conf                  | 454 +++++++++++++++++
 phishing-filter-dnsmasq.conf.br               | Bin 0 -> 5606 bytes
 phishing-filter-dnsmasq.conf.gz               | Bin 0 -> 5819 bytes
 phishing-filter-domains.txt                   | 454 +++++++++++++++++
 phishing-filter-domains.txt.br                | Bin 0 -> 5427 bytes
 phishing-filter-domains.txt.gz                | Bin 0 -> 5613 bytes
 phishing-filter-hosts.txt                     | 454 +++++++++++++++++
 phishing-filter-hosts.txt.br                  | Bin 0 -> 5563 bytes
 phishing-filter-hosts.txt.gz                  | Bin 0 -> 5753 bytes
 phishing-filter-rpz.conf                      | 459 +++++++++++++++++
 phishing-filter-rpz.conf.br                   | Bin 0 -> 5649 bytes
 phishing-filter-rpz.conf.gz                   | Bin 0 -> 5854 bytes
 phishing-filter-snort2.rules                  | 475 +++++++++++++++++
 phishing-filter-snort2.rules.br               | Bin 0 -> 7808 bytes
 phishing-filter-snort2.rules.gz               | Bin 0 -> 8258 bytes
 phishing-filter-snort3.rules                  | 475 +++++++++++++++++
 phishing-filter-snort3.rules.br               | Bin 0 -> 7739 bytes
 phishing-filter-snort3.rules.gz               | Bin 0 -> 8135 bytes
 phishing-filter-splunk.csv                    | 476 ++++++++++++++++++
 phishing-filter-splunk.csv.br                 | Bin 0 -> 6166 bytes
 phishing-filter-splunk.csv.gz                 | Bin 0 -> 6396 bytes
 phishing-filter-suricata.rules                | 475 +++++++++++++++++
 phishing-filter-suricata.rules.br             | Bin 0 -> 7782 bytes
 phishing-filter-suricata.rules.gz             | Bin 0 -> 8250 bytes
 phishing-filter-unbound.conf                  | 454 +++++++++++++++++
 phishing-filter-unbound.conf.br               | Bin 0 -> 5646 bytes
 phishing-filter-unbound.conf.gz               | Bin 0 -> 5866 bytes
 phishing-filter-vivaldi.txt                   | 475 +++++++++++++++++
 phishing-filter-vivaldi.txt.br                | Bin 0 -> 5956 bytes
 phishing-filter-vivaldi.txt.gz                | Bin 0 -> 6176 bytes
 phishing-filter.tpl                           | 457 +++++++++++++++++
 phishing-filter.tpl.br                        | Bin 0 -> 5509 bytes
 phishing-filter.tpl.gz                        | Bin 0 -> 5706 bytes
 phishing-filter.txt                           | 475 +++++++++++++++++
 phishing-filter.txt.br                        | Bin 0 -> 5815 bytes
 phishing-filter.txt.gz                        | Bin 0 -> 6001 bytes
 52 files changed, 7427 insertions(+)
 create mode 100644 .nojekyll
 create mode 100644 phishing-filter-ag.txt
 create mode 100644 phishing-filter-ag.txt.br
 create mode 100644 phishing-filter-ag.txt.gz
 create mode 100644 phishing-filter-agh.txt
 create mode 100644 phishing-filter-agh.txt.br
 create mode 100644 phishing-filter-agh.txt.gz
 create mode 100644 phishing-filter-bind.conf
 create mode 100644 phishing-filter-bind.conf.br
 create mode 100644 phishing-filter-bind.conf.gz
 create mode 100644 phishing-filter-dnscrypt-blocked-ips.txt
 create mode 100644 phishing-filter-dnscrypt-blocked-ips.txt.br
 create mode 100644 phishing-filter-dnscrypt-blocked-ips.txt.gz
 create mode 100644 phishing-filter-dnscrypt-blocked-names.txt
 create mode 100644 phishing-filter-dnscrypt-blocked-names.txt.br
 create mode 100644 phishing-filter-dnscrypt-blocked-names.txt.gz
 create mode 100644 phishing-filter-dnsmasq.conf
 create mode 100644 phishing-filter-dnsmasq.conf.br
 create mode 100644 phishing-filter-dnsmasq.conf.gz
 create mode 100644 phishing-filter-domains.txt
 create mode 100644 phishing-filter-domains.txt.br
 create mode 100644 phishing-filter-domains.txt.gz
 create mode 100644 phishing-filter-hosts.txt
 create mode 100644 phishing-filter-hosts.txt.br
 create mode 100644 phishing-filter-hosts.txt.gz
 create mode 100644 phishing-filter-rpz.conf
 create mode 100644 phishing-filter-rpz.conf.br
 create mode 100644 phishing-filter-rpz.conf.gz
 create mode 100644 phishing-filter-snort2.rules
 create mode 100644 phishing-filter-snort2.rules.br
 create mode 100644 phishing-filter-snort2.rules.gz
 create mode 100644 phishing-filter-snort3.rules
 create mode 100644 phishing-filter-snort3.rules.br
 create mode 100644 phishing-filter-snort3.rules.gz
 create mode 100644 phishing-filter-splunk.csv
 create mode 100644 phishing-filter-splunk.csv.br
 create mode 100644 phishing-filter-splunk.csv.gz
 create mode 100644 phishing-filter-suricata.rules
 create mode 100644 phishing-filter-suricata.rules.br
 create mode 100644 phishing-filter-suricata.rules.gz
 create mode 100644 phishing-filter-unbound.conf
 create mode 100644 phishing-filter-unbound.conf.br
 create mode 100644 phishing-filter-unbound.conf.gz
 create mode 100644 phishing-filter-vivaldi.txt
 create mode 100644 phishing-filter-vivaldi.txt.br
 create mode 100644 phishing-filter-vivaldi.txt.gz
 create mode 100644 phishing-filter.tpl
 create mode 100644 phishing-filter.tpl.br
 create mode 100644 phishing-filter.tpl.gz
 create mode 100644 phishing-filter.txt
 create mode 100644 phishing-filter.txt.br
 create mode 100644 phishing-filter.txt.gz

diff --git a/.nojekyll b/.nojekyll
new file mode 100644
index 000000000..e69de29bb
diff --git a/phishing-filter-ag.txt b/phishing-filter-ag.txt
new file mode 100644
index 000000000..f866479d7
--- /dev/null
+++ b/phishing-filter-ag.txt
@@ -0,0 +1,475 @@
+! Title: Phishing URL Blocklist (AdGuard)
+! Updated: 2024-12-06T00:21:00Z
+! Expires: 1 day (update frequency)
+! Homepage: https://gitlab.com/malware-filter/phishing-filter
+! License: https://gitlab.com/malware-filter/phishing-filter#license
+! Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+||1nvest.bigbantbaz.top$all
+||25116414.cc$all
+||365365news.com$all
+||365f09.com$all
+||750115.cc$all
+||823pages.pages.dev$all
+||95564339.awi.za.com$all
+||999fc.vip$all
+||a.yyyy.cf$all
+||aaaa.whilefish.xyz$all
+||accounts-microsoft365.weebly.com$all
+||accounts.0ffice365.support$all
+||aidanochka-tabys.kz$all
+||airbnb-clone-sahinur.vercel.app$all
+||akbarinewv2.morteza638n.workers.dev$all
+||alaindemeuron.wixsite.com$all
+||alexa81o.github.io$all
+||alienv2ray.pages.dev$all
+||allegr0llokalne753724pl.art$all
+||allhrteam.com$all
+||amazon-clone-by-sudip.netlify.app$all
+||ammuvicm.work$all
+||amyr.iran-cyber-net.workers.dev$all
+||antaidossiersuivamendimpayeerf33.zynekcctv.com$all
+||anuragrauniyar.github.io$all
+||appeal-voilation-policy-issues.github.io$all
+||apple-id.cc$all
+||apri.154-203-197-141.cprapid.com$all
+||arvestcreditcard.embarkdigitalonboarding.com$all
+||asdfjeiod.com$all
+||ashleyproberts.wixsite.com$all
+||astounding-trifle-b88a2b.netlify.app$all
+||att-101397.weeblysite.com$all
+||att-102641.weeblysite.com$all
+||att-107756-104508.square.site$all
+||att-108102.weeblysite.com$all
+||att-108651.square.site$all
+||att-mail-101246.weeblysite.com$all
+||att-mail-105533.weeblysite.com$all
+||att-mail-109459.weeblysite.com$all
+||att-servicce-mail.weebly.com$all
+||att-sign-in-107078.weeblysite.com$all
+||att-yahoo-mail-105061.weeblysite.com$all
+||attcom-101415.weeblysite.com$all
+||attinc-101356.weeblysite.com$all
+||attmailonlineaccountupdate.weebly.com$all
+||attnet-100294.weeblysite.com$all
+||attonlineservicesa.wixstudio.com$all
+||attonlineservicesa.wixstudio.io$all
+||attweadminservices.weebly.com$all
+||auth-sharepoint-asr.vercel.app$all
+||avertisystems.com$all
+||b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev$all
+||b35ccc.com$all
+||b35lll.com$all
+||b35www.com$all
+||bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz$all
+||bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz$all
+||bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link$all
+||bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz$all
+||bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link$all
+||bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link$all
+||bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link$all
+||bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link$all
+||bbf-alpha.vercel.app$all
+||bet365t3.com$all
+||bet938y.com$all
+||bet958c.com$all
+||bhngfd3.pages.dev$all
+||blackdasblacks.shop$all
+||blsckdagsever.pages.dev$all
+||bridge-9wdpjmsoa.pancake.run$all
+||brubreumummeddoi-4514.vercel.app$all
+||bscusdty.top$all
+||bsozvycr.icu$all
+||bt-102368.weeblysite.com$all
+||bt-106861.weeblysite.com$all
+||btjfh.weebly.com$all
+||bussinessaccounthelppage.click$all
+||bwfujmww.icu$all
+||bx.sfdsb.icu$all
+||c.cting365k.cc$all
+||c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev$all
+||can-post.cyou$all
+||celery.sa.com$all
+||cen4-six.vercel.app$all
+||cf-worker-pages-proxy.1352562939.workers.dev$all
+||cf.13084493.workers.dev$all
+||cf.iwoai.cc$all
+||cfcf-8.pages.dev$all
+||cfr-reed-taxi-wayne.trycloudflare.com$all
+||chain-trt.online$all
+||chainsolapprove.pages.dev$all
+||chat-wa.xyz$all
+||check282.tempisite.com$all
+||chore.pink$all
+||ciftcininbankasiziraatbankasi.com$all
+||claudiorojas.cl$all
+||clivenicoll44.wixsite.com$all
+||cloudflare-workers-pages-vless-a2j.pages.dev$all
+||codt.digitasianetwork.workers.dev$all
+||coinbase-com-18690.subttrepimop1005.workers.dev$all
+||coinbasewallet-verification.198-46-89-184.cprapid.com$all
+||company0rder943.weebly.com$all
+||completar-la-verificacion.vercel.app$all
+||conductibili.fun$all
+||correosprepago.bnext.es$all
+||crenadenuddoi-2258.vercel.app$all
+||cryptorectification.com$all
+||currently5267.weebly.com$all
+||currently70.weebly.com$all
+||currentlyatt909.weebly.com$all
+||d.afirkz56924.workers.dev$all
+||datagivers.com/3961f442eqd80b4e3c28f75c4ba682dd68f9.html$all
+||dio.azrealonce.workers.dev$all
+||ditgong.com$all
+||doc-online-1881.on.fleek.co$all
+||docsignauthorizationrequest.vercel.app$all
+||docusign.com.bestfinancebroker.com$all
+||duang-5dh.pages.dev$all
+||duvhkeq.pages.dev$all
+||easyaccesscommagebn.com$all
+||ebay8787.shop$all
+||ee-account-home.web.app$all
+||ee-service-help.web.app$all
+||ee-service-portal.web.app$all
+||eln3.vercel.app$all
+||enormous-orchid-howler.glitch.me$all
+||espaceparticulier.life$all
+||ets3qe9ooms8t6i8.pages.dev$all
+||excelorgo.com$all
+||falabellacom.dominiquepg.com$all
+||fdesq4.pages.dev$all
+||fdsfjiwe.com$all
+||fdsjfkweow.com$all
+||fekoulamevebouna.freewebhostmost.com$all
+||felomane390.wixsite.com$all
+||ferngos.de$all
+||fieg.84yr483rhfwieujro348ur84.workers.dev$all
+||figinstenatecom.pages.dev$all
+||finansfaizsizbasvurum.online$all
+||flow.page/uebj3h3j$all
+||forested-mirage-samba.glitch.me$all
+||formtools.com$all
+||fortradesetup.hamidamnaie.workers.dev$all
+||free-5436781.webadorsite.com$all
+||frogsrus.wixsite.com$all
+||fshraha.pages.dev$all
+||fukshumx.world$all
+||gateway.ipfs.io/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq$all
+||gazruinv.web.app$all
+||geaoolsv.pink$all
+||geminiwallete.godaddysites.com$all
+||ghjhyu.wixsite.com$all
+||gimennlouin.gitbook.io$all
+||goldenrod-rowan-submarine.glitch.me$all
+||gorgeoushome67.wixsite.com$all
+||group11-vvip-hot-girls-combi.viplch.online$all
+||gruppeflorian.com$all
+||hanisfir.shop$all
+||hedayatfreedom.hedayatkhakpour.workers.dev$all
+||hello-world-morning.freekite.workers.dev$all
+||hello-world-muddy-cloud-f45b.mfoster0425.workers.dev$all
+||helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com$all
+||heluapla.shop$all
+||hemanlau1.pages.dev$all
+||hezhouruan.552008598.workers.dev$all
+||hgcdhbxnf.weebly.com$all
+||hjrhd.top$all
+||hk04-123.pages.dev$all
+||hkmqo.top$all
+||hm.ru/medoeu$all
+||home-100317.weeblysite.com$all
+||home-102207.weeblysite.com$all
+||home-107257.weeblysite.com$all
+||homelogin7t6sdfcgvhb.weebly.com$all
+||htaflytz.baby$all
+||htaflytz.black$all
+||httap.l-teiegram.com$all
+||httpsbellsouthnet-102649sitecom.weeblysite.com$all
+||hup6r.com$all
+||hy.fuckgwf.eu.org$all
+||hypophysecto.fun$all
+||hzuayvvl.red$all
+||id2.xbenihime.us.kg$all
+||ikergalindez.github.io$all
+||info-delivery-bg.com$all
+||info-trackingcs.cc$all
+||info-trackingiax.cc$all
+||informed.deliveryhbo.top$all
+||informed.deliverytcw.top$all
+||informed.deliveryxs.top$all
+||infringement-service.com$all
+||instagram-clone-in.vercel.app$all
+||interbenefitprestaciones.referidosweb.click$all
+||iouwerty.weebly.com$all
+||ipfs.io/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq$all
+||isnworldwide88.com$all
+||jaydeep8806.github.io$all
+||jeanandpeterwilkin.wixsite.com$all
+||jetconstructionsgroup.com.au$all
+||joeandvelma.wixsite.com$all
+||journey-x-pro.com$all
+||jsdfchkdsds.weebly.com$all
+||jshattkee.weebly.com$all
+||juliusmasih27.github.io$all
+||jung-sohn.de$all
+||katiebllair.wixstudio.com$all
+||katiebllair.wixstudio.io$all
+||kdlmo.top$all
+||kenzmail0.wixsite.com$all
+||ketura2010.github.io$all
+||keucroilluxibrou-2718.vercel.app$all
+||kuconlogin-ui.godaddysites.com$all
+||latam-onipojes.vercel.app$all
+||layanan-bntuan-resmi-dna.prbu2.my.id$all
+||ledger-com-updatefirmware.aparecidovisentin.com.br$all
+||levappoprauqueu-4688.vercel.app$all
+||leyoixoimmecou-5619.vercel.app$all
+||linkbokepviralindo009.vipp.blog$all
+||liveairdclazmersn.pages.dev$all
+||lo6-cas-projects-64947843.vercel.app$all
+||maatamicklogginns.gitbook.io$all
+||madebybmr.in$all
+||madhu821.github.io$all
+||mailupdate87.weebly.com$all
+||maine619.github.io$all
+||mainnetverify.pages.dev$all
+||mazulyta.pages.dev$all
+||megrebeikenneu-2106.vercel.app$all
+||mendhfjpl.weebly.com$all
+||metacareer.com-case37169314276.com$all
+||metagalaxy.pages.dev$all
+||metamacksiologus.godaddysites.com$all
+||metemrsblogin.gitbook.io$all
+||meyetamaskiwalt.gitbook.io$all
+||mianfeijiedian.lawcpacpv.workers.dev$all
+||milanharvestfestival.com$all
+||mirobitsgt.github.io$all
+||mocp90.pages.dev$all
+||mostafa2.mehdi84888.workers.dev$all
+||movie-firebase.vercel.app$all
+||mubki.hp.peraichi.com$all
+||my-site-104564-105934.weeblysite.com$all
+||myaccountsignup.net$all
+||navy-nose-4544.typedream.app$all
+||net-flix-front-end.netlify.app$all
+||netzero-webmail-105996.weeblysite.com$all
+||new-currently-1-23-24.weeblysite.com$all
+||newattupdatemailboxkidlyverifynow.weebly.com$all
+||nfty-proj5.vercel.app$all
+||nnbsscnaceesngsetr.com$all
+||occinamete.cfd$all
+||odovsccs.weebly.com$all
+||officalourtime.weebly.com$all
+||office36503.com$all
+||ohscorgza.github.io$all
+||okm.znt.temporary.site$all
+||oliver752.github.io$all
+||online-e-commerce10.com$all
+||online-e-commerce11.com$all
+||online-e-commerce12.com$all
+||online-e-commerce5.com$all
+||online-e-commerce7.com$all
+||online-e-commerce9.com$all
+||orange234.wixsite.com$all
+||orgmail.weebly.com$all
+||ourtime.datings-information.workers.dev$all
+||p.updateinfocl.top$all
+||p.updateinfocs.top$all
+||p.updateinfoga.top$all
+||p.updateinfojq.top$all
+||p.updateinfolw.top$all
+||p.updateinfoor.top$all
+||p.updateinfooy.top$all
+||p.updateinfoqv.top$all
+||p.updateinfove.top$all
+||p.updateinfovt.top$all
+||p.updateinfowu.top$all
+||p.updateinfoxb.top$all
+||p.usertracktxz.top$all
+||pages-108-tg-cfzz-ip.pages.dev$all
+||pages.tempisite.com$all
+||pageverifycenter.com$all
+||patjimmy323.wixsite.com$all
+||paypalloginin-usa.blogspot.com$all
+||paypalloginin-usa.blogspot.hr$all
+||pcmag.anycubic.vip$all
+||port01-acf.pages.dev$all
+||portal.chiaveggies.com$all
+||pruhuffopraussou-5681.vercel.app$all
+||pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev$all
+||pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev$all
+||pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev$all
+||pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev$all
+||pub-2801359d2be54bfd8701132626efeb73.r2.dev$all
+||pub-3096005ebeae423182ccd89665564d8a.r2.dev$all
+||pub-46a5f86348ae4aceb3591d126020999f.r2.dev$all
+||pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev$all
+||pub-51f896deb233450089fc1a520e6ed957.r2.dev$all
+||pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev$all
+||pub-682ad3b65d944376b919745aae3c56d4.r2.dev$all
+||pub-722720be67154192a1102b2cf085d306.r2.dev$all
+||pub-7d056bfeb6b04852801553620fe62c0a.r2.dev$all
+||pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev$all
+||pub-873fc6a3edb941c6a17f50911dfca518.r2.dev$all
+||pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev$all
+||pub-aab4be29317b4ec296517a557db12622.r2.dev$all
+||pub-ba5a046c69974217b0431bca4ba43740.r2.dev$all
+||pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev$all
+||pub-c59cf4e950b142949df8861e60b3689d.r2.dev$all
+||pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev$all
+||pub-e5855431d98545b38408f52af50ab8a1.r2.dev$all
+||pub-ff0271d87324424a9aec83337e844a54.r2.dev$all
+||puertaselectricasprincipal.netlify.app$all
+||qaffixledger.com$all
+||qbstdfda.com$all
+||qpownthenewyhadvanceweb.weebly.com$all
+||raj-tiwarii.github.io$all
+||rebrand.ly/46wjpyr$all
+||rebrand.ly/910428$all
+||rebrand.ly/cdmd94193ab$all
+||rebrand.ly/n3yi7p6$all
+||rebrand.ly/vre1p3j$all
+||restrict-policy-nonadherence.vercel.app$all
+||reviewboss.github.io$all
+||rfgxg.top$all
+||riaayaoman.com$all
+||roadmap.binarydesignhub.com$all
+||robinhooldloegins.gitbook.io$all
+||rouzhda03.kambizmedia.workers.dev$all
+||rsjxzl.com$all
+||rtyuiuytgf.weebly.com$all
+||rubinhuud____llginnh.godaddysites.com$all
+||rudra-choudhary.github.io$all
+||s.id/p8w69$all
+||s.team-s22.com$all
+||sadekk.com$all
+||safebank.onl/107519/c90488/4a1f04e6-1517-4254-abda-f0aee8fe0ab9$all
+||sajsa.icu$all
+||salarahmad786.github.io$all
+||santanderpod.fsthosting.com$all
+||satinnaaoabbs.weebly.com$all
+||satyarthi.uk$all
+||scarce-army-wide.on-fleek.app$all
+||scearmcommnymnlty.com/cert/loks/mir$all
+||scearmcommnymnlty.com/cuce/rit/pil$all
+||scearmcommnymnlty.com/qinmot/truklop/poli$all
+||scearmcommnymnlty.com/trawbe/nunty/loki$all
+||scearmcommnymnlty.com/xul/lex/ponu$all
+||sdfvgbcvb668.weebly.com$all
+||sea.6e2efhxz.eu.org$all
+||secrbnsuppotyu9.weebly.com$all
+||secure-ledger-m-auth.webflow.io$all
+||server.2rk3.com$all
+||server.pxs7.com$all
+||setshinobi.vip$all
+||sextelegramxxx.pages.dev$all
+||shareorder711.weebly.com$all
+||shaw-101342.weeblysite.com$all
+||shaw-103098.weeblysite.com$all
+||shaw-106054.weeblysite.com$all
+||shaw-106665.weeblysite.com$all
+||shawsyncmailservercommunicationworkspace.weebly.com$all
+||sherman-relate-rev-baskets.trycloudflare.com$all
+||shobhit245.github.io$all
+||shopifysite.cn$all
+||shoptkoo.com$all
+||shoutout.wix.com/so/e1p6lravu/$all
+||sign-in-att-108611.weebly.com$all
+||sign-in-att-108611.weeblysite.com$all
+||simxtrackredirecttszz.pages.dev$all
+||sites.google.com/view/ghghdgfdgfc/home/$all
+||sjhsjjs82.weebly.com$all
+||skill-meta.com$all
+||sky-107842.weeblysite.com$all
+||smithjamessv328.wixsite.com$all
+||socx.ly$all
+||sparq.eu$all
+||spicyhotcoolsoup.s3.us-east-005.backblazeb2.com$all
+||spotifyl.vip$all
+||ssfgsfg.wixsite.com$all
+||sss.k999955.workers.dev$all
+||stonemartin1001.wixsite.com$all
+||stringroll.com$all
+||sukienffvip.doiqua-garena.io.vn$all
+||supportsecurity981.tempisite.com$all
+||talktalkserver897.weebly.com$all
+||tareq088.github.io$all
+||tbsl.by-on28.my$all
+||tcaconnect.ac-page.com$all
+||tejlksdoisd.com$all
+||telegcm.me$all
+||telegramjessica.pages.dev$all
+||telegrampx.com$all
+||telegramsexgroups.pages.dev$all
+||telezelm-ivee.icu$all
+||telgramsignal4.sg-host.com$all
+||telstra-102379.weeblysite.com$all
+||telstra-104033.weeblysite.com$all
+||telstra-104394.square.site$all
+||telstra-106968.weeblysite.com$all
+||test1.workersdev40050.workers.dev$all
+||tg-logrom.com$all
+||tktk.tktsk.shop$all
+||tokecn.im$all
+||tokeni-1601.vercel.app$all
+||towrewds.com$all
+||tpwalllet.com$all
+||trustwallet-zendesk.com$all
+||tuviaje10.com$all
+||tvjbqiyv.guru$all
+||twcht.twimobie.cc$all
+||twimobie.cc$all
+||uedy.pages.dev$all
+||ultsyncingsolana.pages.dev$all
+||upheldlog8.godaddysites.com$all
+||upholdloginorofficialsigin9.godaddysites.com$all
+||upholld-lligon.godaddysites.com$all
+||urlz.fr/tlly$all
+||usol.shop$all
+||usps.com-cgkzkukp.vip$all
+||usps.com-trackaxd.top$all
+||usps.com-trackbrs.top$all
+||usps.com-trackdht.top$all
+||usps.com-trackgee.top$all
+||usps.com-trackhsk.top$all
+||usps.com-trackivo.top$all
+||usps.com-trackjjx.top$all
+||usps.com-trackmra.top$all
+||usps.com-trackmvz.top$all
+||usps.com-trackuqg.top$all
+||usps.com-trackvgb.top$all
+||usps.com-trackwbv.top$all
+||usps.com-trackyqb.top$all
+||uspsdana.com$all
+||uspsdant.com$all
+||uspsservicetrack.blogspot.co.id$all
+||uzomadj.shop$all
+||vedi.154-203-197-141.cprapid.com$all
+||vgmrm.top$all
+||vkkvdkdcmm.weebly.com$all
+||vl1.spaceysen.cn$all
+||vobroffexagru-4404.vercel.app$all
+||vrvtn.top$all
+||w1.5114559.workers.dev$all
+||waassistance.com$all
+||wallet-diagnostic.com$all
+||walletsecured.pages.dev$all
+||web-lupqrbm0k-uniswap.vercel.app$all
+||web.tlgrm.app$all
+||webmailserv3038z.wixsite.com$all
+||wk.xzte.eu.org$all
+||wodjrvrisixc.wixsite.com$all
+||worker-dark-queen-529e.servers5555599.workers.dev$all
+||worker-hidden-frost-ba39.yoveli7450.workers.dev$all
+||worker-site.aopages.workers.dev$all
+||workflowy.com/s/att-support/6ca3iebztzztx2gi$all
+||wsa.osmqone.org.cn$all
+||wwwwwwsasasasasmmmsszz.vercel.app$all
+||x.tovip.eu.org$all
+||xhjxkj.cn$all
+||xixiajiaju.com$all
+||yahoomailquthorization.weebly.com$all
+||yungtee3.wixsite.com$all
+||zagbasamothega.dnsget.org$all
+||ziraat-kampanyasi-besbintl.xyz$all
+||zxl.cbbnbbc.nyc.mn$all
+||zzpov.top$all
diff --git a/phishing-filter-ag.txt.br b/phishing-filter-ag.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..0397f4494a8cf06a1f5865a899eb9ef1120a9e7d
GIT binary patch
literal 5918
zcmV+(7vbpPK<FW&m=Ay=WSIN^HGBI1c~3^CU&v5O5_|UYG=~2-uu)0`i=d_J{=KT|
z(dWr?rc7g2mnq?hlr}8cl1=Y@0B1l<f!Ya>Gytwr2i?{1@#&~k7FQ~2)a6)GNFs$a
zoJOV8I_5mAl#t#r`LZg*p2u+2r5K<h@pI?f7-}YMe@$niL=ldTx?g|x7Ps7QKmV|X
zx`wp;99V+=<Hf{K+s~i;rThC1#r^3ozyAE|QH1J#`x#vy2N@X|)V~bFZ*2T+82;;*
zUw{7gdxV1Zx1aIH!Ts|mW!3%ot%#|~-uVFDWe!;Ix1Y7OV=#s+p+zu6?6X6>pdhJd
z-Rr0pAJ+WKuRrYS=FTAa`z_S;%dbB@Lao33&;mi>bKk%CSwdTTep+buXrKMJl9vZw
z^l7Dk0}bf@3I6iC-;L?S+NcSOfz%8<wB_RuAjV&Q_d6!XQHfDdYeP+3Nv>oYK^d0M
z6a6p;=9uI#jxwdH8K+lmr9U-0JR`sAETs~h&lIjeAIN6FJkQ?JGgN0F(EGk`YJJ#t
z0HEg&f#J53e(&d&KiyJIB}@hwN`+iWdLf#4mmz?f>EL~^_{8@n;YkY)j^28V4M+oX
zSGtw*-a;|S5F2wsQeh3L7kXl`7%3c;{(Ck9B_zB~M)zDAKA^Zx^vY$!LI@2a91c@v
z$6j)xSNQg9s=ECmenF3!Hf}@6k*6Inovgr3T=4?m{v>6HF>eqPPLfYd9FYQ!dW>rs
zp;T!dJ3KjI*UQ|bb{CEVpccg7@5j)6?`N<(LSp#0dlwoCBw}xag(PhFo;#^QaJkli
zrS@>bj>(1nfE%%R&gpX}+^lV9)x1f)z*3;6a6=)*GRJ`s$(cjszd>?BrfR}2m`PG1
zlHj^19xe7t=qLqY11IA=kx`7)9(%E)sv?!qLO3aK$spZAWN_nrH94^+7-80A`K$A9
z3^^-r>l*PsN;X(pZS&UJa!;S%B55V~h{R|O%rr*-*2p-Fe4cu_ZFUHAm6;Ob!%mY_
zWE_MXH09S4{h;Bt>6fsdmZFs$GthSkv8EiEP(0w(lalkRI14$8=c}l;dJSvv!<#8A
ziG+my42MZ)heC;1y*LL&$wr&^=cSEelwjwDWaH$L5^zW6OP)oM*@umYl92RE8`vze
zB-s&~Xjq}U-65^JkU=fu#%S$A(M7ms)ywE@B@?)C5|)GnDramzv9vI6Q`5-VGoz6>
z3r8fAo(Kz;XoZY$1=bJF88=O27|4$J*u}m@KX$r>vRx?R>7lWiJcdhaZT=a!j4=j+
zkaod01%4|SF#2mt{rwzgzIP_Rt5h44razK0@o<?voNNycmyJ*DI`-65pyBY9`nZu_
zEOQZ`?|&jMY`q?_!}&S$qBeP4XNZXMvdQM>I>qC@KDYf^(kZZ=AjH+Dv9MqcCLi`Z
z_lL#L6J<P)BE2)mmDuySzgsrOZtIbRSX8>gRWWy=p)sWGY2$6y#30@$le=yBE(-0w
z#J5Om{g$O7-lpxYvuMt(sm|EJl2PAJMe%bjZr5E%)`aEYHuy~W$m}i7Skv>l&QJNA
z@>-tb8~I^B_So*_bG;_F4ubjEkZP2cJ*%7E%WaE1(0`B{NQtZKxUNrN%l=O0F{*#8
z$$jbTG);UH)8Wb|hohZWXAsv1>=N?ywEUflkW6OjJ=8P9)tY3*!-@Ld&HFIn%Rby}
zxK|gl;SetV{&Z=@mC|uW!5DrUD!kH+C%OP*6e$LUnux}`a6#B+uJ6!DsRu&AYg)YH
z!UD?BnuGeYQmG;!#%`#?mVf#LBkg-B!7WJU%N_5%W}pWo3mekX6WFh*n}U7s`;N}#
zK!h9xQn{<`)wNspd{k5ObKbVlVEZdhW*oTE2ojglTsn(sZ@;oF-Sk@7U$C-VJnS2g
zm8o(h+~>P|fA7~-q1<0uy{jg;5=(6hY2iw4!o`PT`M{=Obc8GGh!~L*gA53pIYS9z
zKqom{c|Hsmmi}HpjTy;l4F9TF5N-~rjoLdGoDU<Gn^xi3g~cRD4PRn6Sx<yAnKbCP
zM~;%eHyycTQn8uOBHL%ddOGq!3o&zu)No}8NN4ue6Ww86sr7{vL`NEY1G(T%NL#s2
z(<nu;!HPrQ6+$AdG&(m?Q76_McYYh=#A0%;(8vY62(?e0X+~`vqlHe9%dWW~Jx1N(
zHuz>k3P}a;4>dfY0JH!qu^e^eK_$PTQX6Bu3MZyubBscWbrx*-W(d}M=~SbW5MXbl
zwrAI<eA!$BD8I~xkaE4XibM?gZPjWXXzix8f=Af%F%E-FDP77!L?deaw?xNT6QPKn
z$*6@a%xmH<hT^cyf)6bK8WgcXArZ3QU>W^#pPXE`Z5z7{)UywM3!rtm?#NVMGBsv_
z7K-(~SHT1hQ|ByK!kE+**m55&7qksIYb}*tELo1?Et#5-5J2Lch6e}G+C0qf-Z=_B
zl<kpfW`h2><_4~=AQvI%lX>x3ja~?bAEyT+kXxqxB&{%@G;>aAKW{))$if^lg{Pp}
z5z}HB3qxD7Dze>WOGeaJBcs+M&58PmxKW#-KrjY5&d4P^G((d|jN0g{yKH+3C`F>S
z9^Q~dPB}TElzrMA(n6$LdwAilpX-L7IIxfrJCkbjZb=+rnyv&Ixb>u`sj3-~aB!Iz
z`(QS;RJRUMCs2?u_%I<r`;Q9oJwZ&I1O}#D))IMgl8aq~BWu1Q7P>@(OFiAW7QfZx
zdOS{CXX-Ivp{6PU;9F>we{jxuuezzgHcQ~wV$5Zc*K0gj&XfqWr}kBq7Cs%1)-KpP
ztRInMN$;wEhYO)g)VJR*%vZ!RxaA&U#}n5JQGi<7dR=JNT-!bYS;5`KyhB1h4@}SG
zv7{weL%8!}z=djY7omAs{S~mkOXfoNq6bP@AC{16!vqacw#N#(-8WJ_gr|nbKs|fu
z`?LXuQ%pPX)zQ59%HNSnF2;JZBYP;Y*l|w18)!pZL}x+EIjSmP%C0G}*wDAw`axIN
zgM&Rm7>YnXGm(O;NlPY~47gnGo%)iOTDl>?iLYyc6>vBAt*(9l7Friw1X#bDF1Y1M
zHRRXN!I#4DVM9DkPvr@UZMc?H9#?LN@tyd4YER*^7Ma(F$&w=5Wb_+8Sr_z_9@057
z)CGYwBhD#QS+GZv8KoD}B|C6V5ThvQXj$Lu-4QOggdJ0gxrb!3!KGa+_h77kN=zj?
zQt}0f)NXd`ntiLSUs@N;z48KJ?ToUXwB&w_BRS7-kTo}A-<Rs_shD7IJVmr?H^TLp
zN*w58E&-U)wXBdr^`V$obZ|p!`W-IsG)Ui8*jyW|P6Ec+noQa<NPGl1=A^CSN0LPE
z&fT`U--7Ol7t+w(=i0Cgg308)4+|B8D`@c-%<970IWLB~QG8Ta)i08Jps*jtrm8y%
z?`wjw!x5qI9a4lo_El}gXO$mQheV}xY$cSluAPg;y48G>pGs5LcUhfcpsw3suxF?-
zY3sIsGVr7AwDi}GE@KZ?^Nto14t$(=po_uSz;$90{U2UUO;zXZa;^rk!y5Q_w}-lQ
z?88A16JJ-{;GmH-47e0aE&2^$E<m>nu?6W&iMdi$ci~iVK|fRpQ*P=m3|THuu`fX-
z##MOaW4$ZdmW8rMTb~a1c}7~0@w|%Q82uVdVGTRdUg?&PIc!)Kh=%Ra9}{dxNInzS
z@kuu^6BtGd9-(QrsuuLyDFS@&JIjua<{Gh@?qCnXx!Ehqx88xr4jqnytU%Wo7rR;)
z+->G#1rb*`(=G4%!*#FZCJJj<saFz=;lN%gjnhTQ{le1j?(=_Q@LH&epMd9Zy4Gc>
zZ@3+Ti)%fo1`K^8BuLKHne_^B3qFgJ-q`$ma^<`L(?X#?dzcZDJ2CE%$zi#dgg5!B
zsZ<<{EeGr7s;iIg-gSl6HpFO8dJMhpP{Yb5yo&U+keb&duz0;e3ut15Pz<MGz=*jn
z*j(IuqP}5z%)3ls$+ThX1^oW@mHSm~*lo!n#{Lba<WAT$YCCOPw>fd28Ic~Q-)|v8
zgPr6Qj{L@&ks9G{-FHPyY8?_OSoc6&0(unF8QpIh#=aE2)pAieiHRDQSOl--GgCOA
zpbajcp<-%5Nw}dT?tQ{><fA}e;V&5xN~82^ig@Sn&0*is=1!y<XTaq`+DzW?I74AJ
zjd>W}^>7^2nJnIY(<eeG&PI54EHzCZAu%gr!5re<8*QsZiCIiqNdC$WWb`7~E#_qj
zDOG6&JlI9dZT3P#3eLQC&Bg|XK0!!0mR3SrcL)iwXC*aK!lqa=Jbx~BczV1WME;6!
zDQGZkm=bov#zA4}43k^^`*57#%7^?V9)JiS+o~a-Mm6(Mut@=DTOh)>f;u+X4UKnI
z$T2UyK9DP3XQR58+Lla~P}}j&OsN~oIaZ5QCP4BS-T@us<}Siz53t9{f$X)12x-;r
z35W!0Yt&FOb|c2p+9FG~$2{z(oUhl>Q($z*)delIW_%DJ(Mo(MD28D*#@Fg*3v@l`
zfdztH!$rACrJ>4BQ9?DvVdkQKzZKm^SW?&J@}YoiS&pP!kq9XSy_QhL6?L#>JAk!l
z^D%r0IwKju<W!Jq!iHkmNiH;sG7j^sb|t)s_~eX{kuXk}h+YRx{{?yXG5Na%7jMc>
zkn%;OM)K`GlE;u$`t?#Wwb}$0v8JVB<AqGw+K_<mc2etIfFqaBYVAlP+^l{p#M}$&
zB%C;aD2Nz%h`e4w=&6?nXel&rJAG1<Q>wXuK-Z!`l`~_KV3I5;5$K@cPull6VjPOJ
zkFoXRR<m)-^Hxur%m@IA$+&=Y2DvQiTA`*1)Ty=-mW{~s7)Ms^L8%5}PPcIgrUSR8
z2C_gP?@u7{3MiMYxdZu}0iC!tEs(2U$k!+p#TjXKYu{%<$@Dio4w|%uSpPgE96cTJ
zV~W-xlpLu9ZAQPlYwxh{H)os<j05iD>TRV(3~!KLVJyED>XBQ-`n8-_WOrC7q}z5A
zKtv$qb1;kqtluXh|0`|R04FX>7?MJd(%0@i>rzuIS8@@0JXelx$RIRV9*r5j70O!>
zpe<t({p1*MO$#ge->4fh^3e=p7{LPw6nX|>M>ULQKp~CwseCrMNi*#LtP<XG(0mpH
zh{0(yjINxAV530<!JK&dHTeNGH<EK@X0Uu723RExRq(;=m_aFwcX}Geku${<dNdPX
zUOXRWH4G9B0t&`Q&8&5LRtn=4%jt67lu#hOR$OR60TvCH^XNvV1~%ZoSf|%z+{o3a
z+@P({-0FE2fC>g_oOD|dk1I#7XXVf^&V?KX_bqrkf@A|KbhDhC@08S5`)M4+fC9x}
z+^DowPAHs==HPs$88~i~bh8kAQf40KNk{<XRw}n;zMB}E*kDjiqZH%JU>pZ#nDv8}
zjt^>i5;sU?JQ`&Np=A?!DJ55I@Tiz=MZaljHCQn-kSInsnZbi&lJf~b&AuGJ>4|%*
zfTJ_B7_EYF@^YBR(RmAUq%FUJ9sz_gUUMy!(V%BGYw4shmV;V-17L(fHuG^Z0xg@B
z94C-+a%N<TG3Q$Y5(c5Hn&(NdaWaG8qp=_i2tJ7+mA{mnlmOun1y0Hsp|wRb%xpkJ
z_k66Jtrs}U!Hj~<Vs_qnp+;1L;Y!cW`3^@EZZJYA>4ekstc)Lo9F^0v_J%pXNG+w{
zqnou9(r_&X?Ii;*2QV5&_X52i*fcslaV7*4Faui6-wH-81jy44EDi1<O;-sPD$tz8
zx$X4<@56U0XYK4td`xZ5JMdPId}+oz5?=R;B?h5|{b;?~1>U5E3rYz5N=-pPu@^Mn
zFQKmYahE^`^Ee2m&t6!!yIG7g2NS_b;&+%1_1<+B91n><JnbyOHfZ4CDJO6%7Sy2G
z_vHk8oW$f>cV@m{zRP%NDgodIMF>?J51+y9a8MHxlpEH}BXY%9<xEIx&e6q;iVns!
z<|#|=&+1^{bc5Z52j$FqNh|gJeP%80O1pdLcUxqtO6g@E-n;vM|L_0(zZmDS<67ro
zWlMJjh+T7cD`RR~9gk6IaIZsOYW4&;=}DwAell+bhugL)9@Xj~Xg>?DahT*dzwA5+
ztzQC0KL}K0l;cDMlY)S8K>PrR+T#GGy!r610Kf30LWBbA4sOz7E2+Xx%O!{9$d3Bj
z)LAw_O{ub&&JsWdW7z&jt<Y{LZ4I<<-X;shA_2HdM25DV=0udL7Gg40i%@ocI3(SB
ziY?pk!OLQ4ub8*`+Cz!`S??BKCA8NO;__slkoMeOt@JJC<3;J=rzzVCTn1mMr*?17
z5qvz>x5rn+@9W5^&IdbxF2<flA#$iHTMY!NkfC3{k9awxqAeyNt&_I9&&fM%FGz$;
z%1$)WpnpPTo~2P0ETE)?tZY0zhFt#m)=6rh_v)<T5d+k3Lx^-{*uUQ|M~E;+v@l3C
zjpK%DD_mI400iSBU3EUp`f8{_3XV!iz23=Aoyg8Z)7A9^c7V<T70}E*(6H=6zG4v?
zl7c6BtZCz`pd1hCn#~#-6Y}`#So0D577kAVi?l80Y+8HEy)pj~^enHMUpO8r7C8GW
zA`i?JFvaW!2rHg#C23**&TxXooFqxB&(qr2^AS@Y+%)L^%fFU&S>58@;_XYZBW|Os
z_gdfYs@bV^3o#NQ7abtoN~7^<S~2#}R_mT@_2f)XjP|eDerddYx(+BGs@6KJ9>Lyg
zZstr<6|$Qur@a!x8;Rh4P{o%X;X%_a=R0x>{*H%)!|Ipnmu=8%rJGILm{PHbhDOA4
zE9p24V;)k|p@8`l74V|^7BG2#hJ(5sJ{`ycpq?%oGCc{2*kfR?;5f8<*5jNL%$DFc
zIS^v$S)6*E8x;HuT0cuOHBxhvoS3G2O}8`)=2$9N@<rvhLVU-qx*VztNr|}FT^B9%
zFb>{WYp@boAx_len^Q=Ez2aACGImY6?fFb4;Y1t*wT3Y<V0a3Ng4TtsaE+?fsI35q
zGJt8e#EVM|FnsHhh|dD?Z~2N#&1lWehP90(RdvoLhCvP_R;n!|=B4C4eW|T&v~8_!
zifFtQom87>*!|QL$XuGi<DK8~RYo|5r?DN^dt}6F+gLgekdvPq!-=R{47po_(t@|g
zZ0Fm2!hO=Em)5E5vTLL53VSvIHJ1$E1Rb5!T<x*-^dSFAk|QKyQu<*%x1^XC&CD77
zSaU2Rq+A4)dVpB*HRGR?ow?{pjA6+s=HL<^>dULePHI7~Ikt_~>yfHBvCH;seLFfH
zF&um92>2@dZB}lkRBmo<+!jP`Yu&hoGjn^tzZ~}hft?Sx{#m%4i{W;eGwS_GD>)Lf
zwjlA|T;mnpm=7g{vnT-b^(XJ(-c5arPjnVkspqnn{mp}O+fKJRyYKzBamJA{G4t+<
ziMvqGZ0Oh{{K8T?5n@1;r=I0(>Ba3eQaO%7N{DmF1yF0a5v~#TlRx%bU4SLc7)H0@
zgj*fm9hAS03k`|=_!P4b8|f+33yuwid31&rm$Lf{EL}D}aQ%#_g<Ko`J`Fi*Pp|CW
z<t(9wuT6(LE)k<%nHc@<MI@V%4w_1pKgOP`homKzy`TtMU%fZLXL{!oW0*w8&8Nie
zsD)fZVZ;Q!p3E|8>dP#P4EoRhQWkhX^R(w_U$%r~Wh&5I_fJl^{}#HCuOD?4F8aRj
zmEE(ib~t!}?V#%~$9H{yw|9mWe#1AwJHWfwA{v6hdBg`G%OG5*cTY=0lyLWYU@=f(
zzd5wx3s9Hpf^Ay};9MgcfU7Hp8i>JaLTVAy{_M{;Qfo{y#?o|Kx^MZs=Q(nJ06_(9
A#sB~S

literal 0
HcmV?d00001

diff --git a/phishing-filter-ag.txt.gz b/phishing-filter-ag.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..fe40e12a6a5a9defc130a42ffd845e279a06ba95
GIT binary patch
literal 6121
zcmV<F7Z&IriwFP!000021Fd^YlkB=u?wnt-h|2&XuHAl@y=M>*FknEyVZ!8wUba<!
z$R){kxq=_hC)cB0%dS2rZqU1Tcb8I1NvV8%nbP{}Uw@Le6@UEtw_2K7_SLWd{P%zT
z^$)FLO)HK4^|yb||9K>u|J`5x^{@XNII)8N@hb|V#0w)Y$o>=re?;LQLGWLo|I>Al
zT9`k6g}*pie*NvZ_WxCCaT!I=7RTdXR3`>fVZz$l!Tj;{RbhTYeWtpvj<hq;!YgHK
zh5i~IOL~09=zo<=^ydF(@c(J=L&4-f)To(TrW!=Qc5~zZ?=SGG#|JNISuNVO(W<(U
zucvJMe<YSr0xtjk-(f!qV|^+sN_tDl&9`d!8`8F*MQIpjNtpPIJzC-{#dj}e<M@9!
zmO-&;IHf@trr)FTD0Z?k{{1Hx(}Pf?X_mxs;gebVH?m<-6h+DWNj{fC`~_b=E1#e7
z<<GTjMd>zvU2abTV`}WJ@jA)0GODy#o<9pg+hxQ5+075i5)yTN%s326+h+&KNv~Ml
z5D&6ijNiOwkec??W3B3iX9xs3YJU<qi`FN@YrzdAT0&A&<ab~zZX}EI-k+6jgx(5)
zv_$q?bYj#Bba^$>itSQcaV2@E{Kvsc^&&{oPmw0ePO$hXDjl?~YDn9QQyQP5WWf5q
z_t&;HRz<q)OdYwY{;@N<cxL2s@OxofSuWeXb=^2g)~%a)wJqA0nqc@sh4wJ&Xs^A6
zV3jcv?W3GXCweZsfh<DkGLHS*(u;;MJ8hQ*0h3CTv6l<cdoc`yAgwnk*%B+U{z1V=
z7Ec;8LMR8_Tj5Fmt)67i(ht+bi-On-i<1{7q0a_Q2G{F*8QNJ2(}KgQ;7WYa;fNb9
zF$00fs6wN&uFVj`%d?Q`jg6^Wu?$*4O3=T9^EMW$={R{-%My#Fc}^mFbP(2hVGzc}
z>7n7jvs&p9Z1^Yo>6B*pm83!Ln+v?8@Lj*RJ~`O@#3Rqr@WbGa$kwegO0v%!9-Yz@
zI`HQ@6-ior?qr09ZZfg<J}`XOMOM8hd$;xAlz(QmkXotN(t_->6!F1rF$vR;U1ZPJ
zvr0cp!Of)l7GC4wp6-$7a1&4lunVFh`N;0h>Mjpq$f{}<CawO`Zr?Uz?JNlIWdH1T
zu%^-0o~fY#gOa`Vh&l3#XtB~P#)@tmLTE@+Q6$_;qqOuAMwpjpBJ$#lurlDB^3%x+
z0<RO|#wvDB#-Z~YsT&{DwbE`}42@I9*p_#kwr%^~FwgV0fs~CFQncmV^yB$9Ols+(
z<XWd$6A?<aKE-mTot&aha#1z$$<9O9+f4d$D2-pXjko^s9fuw~%Y>QvmULvgOsdM7
zbeJauEs@TwXX-Xj$&Fu2WxKiRr$pF^B*~xSSw)f#QF@DRx8)MGms^{*)1cFm(_!wT
z+hw^nic;3pL!Ts7*3a_6lh1<sIPK<}A)K`&$$5&>j#+WmnP6Sjo|C>dS6vw)7HT^_
zMlGEhn~hO4L_N)}m!B57@?>?Fq>)WnOn5^sCpD<(oJ_6hZ<l$x=*yJO)or-8@xU%@
zXqM{o<02U+l3o~8uuWNXtNH0%Elj6_C@&%gc<JM89_INXqpCai^hUGsM~0;y>(l8J
zH_2(>`l94ur+JJ>Ti*z)q&nTKx}G#Pk*c&TiJ27nkzp+co|tn-&jXd$=n~TgS`I^^
zF_Ck8zKkhL=Dr`MHi;r}wIUNA7}C-s?NF1w1ySJujg7bJD{K+x%Wo}d{$>PqUzI%G
z0R`F;)^K9h-^Mrf3;fa6I0{q%YuJy|l2^hjW<H!d1HlZWXQUCn9{X39k!mq^W7i4J
zmGqJnP;$Q^!$!mHvca9ysN00I^(7mhO=}>Fvk%^SC1?334^8d4toJU9jsPNXedghA
z0hI^0QJ(=oyv|}S$8!gNv02R3HzhZ8(*#+=!&f+(<{MbBIEYR`$l=Bq_mWV=9u*Ps
zq9Tq&N|HeE)Oocy2xg(jbA7Q0^FU4I-mNj>fDMp3Thwb((F(ozW(%B=9V7^F*S(-w
z>D>XDw;rYk2y$I~1f(d<u%hAsuCWsIAWxDaKBmf95xLoLiAnOEvanKnS_lp#eU;u!
zfbo2*7vRj1m#u>goAuW~!vH?kzsIF*vr#R!qtzt#Q`E$Q^TrP$@nKDrM?ON$Ab(Q`
zRx8Xpd|MoorG;;iJse3xjJyHL68reD9oP~V8nrqT#IN?%DksrPrrH+ndk^WpcltO2
z^EiX4h4y(QI`226IF5hCmPQgpdpGdt5R_Z95#9<x@~jAu$WUvcK(bQ<AVT`XsM#e7
z)`PA{q(Liu_QN9glFZ8suuBebF#dwEFM;Ml7fHM~E7t*BiS}CZV$B@uy-up0kFXpn
zTj`fC*TIz5LYYCk99#LchqLsBc~Z6L2^amidX*?j^8?0u87$5iyk8sJtZ)SX-nL5`
zWv7D;Jjtiv2O>aG5fu9l+$SZF$t}%_C^?WlARVcoFM0()UvZIzWs*eV!t;P8B4$xu
zo)9T0$?}NvEH4Ycw%t?L955p{EnLdM#1VgKEA^I!aK*g4HQ`9}5SE3&Ed)H3`tIRC
zvBPjm%iAiiwcG)Rvy&}4kFK|y!Kdg_${yZdP_3|(?YtvF5|i?Jr`>#<>PB34?ShyE
z&KO1kE**$;du)P|B|qh-ZI}|mdw6fJR-MDjbhA`YABfd+&iymhW&Wi7o!<8Ge*2<V
zx>KX^lxDT$n0AI6_N&$vTm0_nv4j~2gZ={VvJsiOMu0D0L~G)UD3t0<4ivd}nc|8`
zm9Dl}y(BH6qD7>J+_?f8mpGwed(tHr=928VAy}1XIg7WR=3F+jP+K5eibjnslJZGV
zh?Mvx+%{xVBk*)<@Y!^2RR_Nm!{O{5UMX~6DYt}YgA|pYCyP$<Sl8t&#dy{#PV!Ob
zM@CY@^YzFQdgMQDySp7Zl`|!gH~4CJvT4*~_Z~9J7JGB!zD7aMaUGwZ1o#E8=3WOU
zU%46%68YWvp;u>>YPV?$+N_4_F#@TXUlU{lr0a=1GD9aiFHPd?lsi;H30L}eDQQ(1
zJsuSSN>gi6ll{KO#?)hXbrZJy(O5x9h^luiDb<(z{q;x|NITK7*Eg9(ji@#L;(Ecb
zb042i_NL?1=v39WDAj!%H4dL&UTklAl>PLZRaAmFu}s_WSqZ0&_h=&gN^!#Z3c|M1
ztLk&Tj0c;oWGDI_F;e!fTtk&=zH`q?wea;?aZjrmAPCW|TPth36RTh^0*2}QfOG5n
zd9)gbF!ZKL4lrBmRZ_RcMNTSRt+55SHx;V%I3T}(AtD5C7}cbg22OtKh-$$JVuCw%
z*rxyZ*wmyM)Tj>>#1&?hx1OWdDc!r$ksIB(MgN)Z2z`sUq6)7}QtEdltW)S9iPGbt
z14Fcz903vNNtak71>gq&cKFxlVRFgF%#>9cm&7NC-?ChA<l8-qb|gbf-uDa_07Mk-
z^t2YY8rwzy@Y6I3f;=tqqm@;R*Yw(#`!HIcb<H<PLEQwdSietU>ZZG>ZO0Bt$QN=B
zC7wXpX@skm#NmfR*`q@g1wVH<Md=S6S_P+dvYFu}tEQSBY|4_dUF^-Lgf6=_mxH|;
zEgAgQvjUD&zg211I|CO7j6%4+*MXueDcpjbt2|!bIAq(<TrYrItf}VG7o!iud9@E}
zs22m^q&9%8zKvv=rWSe0)9FYa`Bw_mTf=&NII-r*L*kGt(z>GdZC8GkeW^Sy9AMUq
zN4LRiCBeV42ByHwcUtjAkmUMK(Ku@V$+4zeRoIa&n|~r-%{vut2A&OQ?}-!MR%@)Q
zN_UTXxjcZkvWHPZMxvB<a6xB<!O&hU5FuS5+_~0mwkg$!R1n$lPIdm5ox3#s>Pu$H
zMV@cwIg^D8G30rW?GEoO2*NHO;N<lzTO7xMmpuy$SZ}O$z#f0BUU$Wc<Y|v*1x9=l
zZAXq6z;X0q@vbgK-L^ZssvB<jLHY4)kOA6898^osfM28OkVn<gX}_lt7}cn{{{|}!
z@Gp3@1RnmVXnIV4acp?oZMCow{mqqjkAPAGB%w(Zgu!lMjTo6$vTet!1hgK#=oB7g
zI?V`aub#&n<)_fwBIoFk1IR(0LD(^A5vy>r9_=k$Hj;JINsj{n4w{aU-vL`Z?Y<Sf
z5_(NH@8xO4!Oq=Sf*pP`X!RrwY(_p31pOK~VM2v`as+H0kz?iu+iAt3<W<S8gEJew
zGz*J^PCy<M$;L1N!8u2x0%T%{-~*hfs$RV&fg|F`*>4@<PQMEst;#$EMyF?Ics%35
zjV7l&IY9j#aUz7Ff<I*4n>|wLfDGwEJMGK<yQv=YDBK;c(}%nG@`D5v)Lyuq9}Mf^
z@z<n!f9uzg+lWZAM~xj~h@b+F8Ka>{A#8iUL(%iPJP!w#CLOYQhQqyQcTQv?K80Bk
zhe>qGe(MO=Pp$`x1F3UGMyVh|#ETEAihiQghOR1oAY`$uj7;O;rakBYs8$MjmV!Ib
z){>ba5gVoh^wG(d^!5E-uf+dyBHMccqz8&hYbv`x2gL>?KD#{vg^`lLU_{Mjp5*xv
z=;>e}?tULf0zn=e#7G<I*MmO@O(b&6?V1+P32eQt%My1jRm2}|fV$;*$&FlnT<>uo
zl%7nB*DE8uBux_EE`tCv1jzVagM$@iE3Y1M6ofyh#=-R?T5duElnVO1BrA#!*IT`q
zy;teP3%w}zqU2*&xbnMoIKEU}8_C<{uJt{#x}AddrCnAlPWR&Mduj~pk&Fw|S4iEq
zI7l&uOw#F`&&sEZQ*dF1v4be1+-m^>+>NZh6CddAH9@c~(5u=oK&%_t>5*zW|JK{J
zMyWJ$#oX`9Q?-JUQyT4u-HSPE(XVs+MfliEx1)wXQlp=!=}*MdPsHtu5bO;|DvFPa
zqmaz;Rqa#C&;#Hw<K5xfy_UDPs=>c&jO)ePP56Bym=A=Cd?1`J9|-OIfuQs!!t#M|
znLZFE@rhtR5a#g%;Y!~L0JJNjw%6^8pL<n0406v_9xHD*PYydTcmI4;R(F)Ul``R=
z?;FXU5!9C$8Qfk62C@wJ%ej1qV+>j2xEYlF%R1FhkTI~1R6gk!Hd48LK;#O1LFf@y
z?)P)A{lU?aNg%ktg`+`_^;niGY%yj<Bzd@ZGQ&u{Aj#vb6qJS~OR|!YgybxWQc<3G
zMB?1n(RNmh2;-0jNf07tkVGVTK@t{b0U8CedMtH6;>1sRlygE@mXs_ed0Zp`NdlhJ
zAmj&gL?IP|BoR+ALm7xXrfD2!v>+@lf`A;1$lWuAf=5)O2`zbk3c@gsvM58=LQnC2
zL>v@Z5Tt+@L?lrh<`H8&FS5+N@8bEv97#sfGSA{9#|XG)iU~s=Mp+OA?(NsX2+G4a
z3o{<%41#8PQ6xlUBuFVo*h%&y(y+uDfXSjbPSPOAi;{&TjRKJgULcX*jmXlR<>d*%
z6$c=a08?f;%XpHB6V2m;ePnq=cucdD7fBMIAl9%rB`F~yW+?{lN1USQ6a`ddr!Y;z
zA|fHucN(!W$WtBznC(aKAk8R5pFvsj)E!Tn##t1UB8%A33Faxw2}{5{6-mfXG$;v=
zaO@{SvZ6egBR|C@%SbFZEs_v_g{LwNiZDdVMbhv<uSgz3X(=u9I8QQ~le~xuY$2r-
zYMC9JAR#oNA_8hW(L}JQ$kOmc()7eB4nB(ZBPdBpkYp??Ak+xMf&>-=!=ePjPJ*Km
zS$fJ6k|2jo1kQs3gh9Q60>>`I!3dTXtV~3a1{7$vND5x&c@~N+pmCNLd_O{jBH;l|
zpxzwX4ah@Fz%i(1UgRY`*oR2-G{w?61O&r|z=FI?BLWc<NG{xuD9Zrp9!xKek|at<
zK?KWV9H7XPgrqyYf;R`2Y>~uh02DK5*)s`md4Sq31R&*lPvbU@?m~^_CEwm9Uj{Y1
zTX6ugr6zoGmprauv5VB2oIMLXuBF^z6`))Mf9|)-SCY-=VbOa+0gH?BeLLeF>?$l`
zLifZzUgT-W_Jm1`aClYwUD*XPvCn6Lz3P#a2>?-cfW5T<HlL|7`-g+Ntgh82R%%I*
zHM>iYtt1rT9YGojRH+v(9QJ;^#(nhwtyZe#trG5%W1qqx*}v7C07EvUqY}w0QketD
zqs{qx+h#1<E~6Y5TOHI>_2}juNB;lt)wV8&tv}^pdgPjTtX3nh9Vq=>6vmhQYslxU
zcs01Eq@IbkSkfRLZko3SI5E;UuE_os2B$PEzE}aDmVYHAgbj(z3*i&IBuW#HP)@uu
zAVTD&fStVNB4>pD@23|A`KBf{QteZ|FIgG)<h18P4~qMxvF<AC{gI||@UkaF5lRmr
zKgbKw7FpQ%EYca|!c2HXBO7z|GwjE^U#Na7l3@aLhlTs4>s!0B{9>@vuU0kY3(4ir
zJx3<Kw6tG?Y=7){k$tD^m(^p_s^QCN`H%g9`erJ=dL)L6TguP9uVeewiYwUmFM0EF
zswkUi_Ii!86_+4>CL&SR0G4m1Wh0oT{rbupYFZo(MS>{2M}evH+-<bGds;8@z7JGr
z_aG_KP5d@?Z5^)W^ww(KgLiem-gz}%t!US(`t^F<p~3YDqjHZMPGNYk$ePUSJI>_8
zd)P+@K%)G|4q1>UKX=Ho^m7NZ^vtDA_l>(_8~evY2j?i(%jcuj3uI8Pz}F%#z^@4r
z(=-s%#|Js4R<xEjO47Y;)oMU&xv#F@G}=a~cNU|?w*&sGRvGmL7oD}5Oyk$H)8kR@
z^F8sQ@IUqWT|lzCuGx)ytnD6wSaZAWPkQxwl~Pr^4*qhk|EsF2npY*h*_XT2d9CkU
zoAcS^(ZRAB*|wf5aJ@Ay?!qYls3#qyc_y7OW{RWyASp76T@lZop9Z2Y{_9H13<zem
zvdrDZx&ph2k<@vD80)z=KkM~gOKw2FTb8groLIXx2UAw~KAImvumKn^(xXd7V^uFY
z_q?GGgCIN_Z{7WgR&S4Q&DcoMmn9b9b0se$@hajT^gylr>7_*Xe~Ynt1ZkH7Dc4cH
ziL|Y8|KE)uFAhqn7R)a}p6`^`Qq%f$@l+4tcTXu>Mwse*sEkjTcYh4{%}bmy7glZf
zTPvIi>%Q-ypWfw+qlHQC^zKO?uD^3ZBfQgkVPX!4-9+1YauQ+_|Ioe;bnkcC#5a{!
zzdzML2OI@iA5fk?yqy2;lLVih;BWdM={$Jt|J@-gKE2e0$=UF!PS{)mWepD0%T^we
zd#$!NpSH1$j~}MlUP4>d2-f?u+kEb&=kn-1zO!o9V&+@0V+Z$cp%rf;)1$GE$8k3S
z_+Yj;#*ULD=l7zUozC<km&vb2{W_VM)z-JO>=1#(_pRl=WfXj0F&|s&yu7P@sh0G6
zMH+`%I2c*wpMV^CtUwcJPwBNdDM@SG+nVCXAuadXR#vM2*h{xJztms0eL1KRtK6Q;
zXa;k?E~uJYGd9D<>AYyGmnPTkMgKdEYV(oCYx|K_3GtCu<1|0f<fJ~*&gbh#TBpfp
z+I0I!8!y#I8erB(+Dxa9wB_>qIPTPEb9(nC`&-lFl6&Q`Ex>(W{*5=}JN&#o<_RJ8
zFZkC}Q`PBiv#P0SCf;z?b$g#ZwV}TPn8k?x8(B<>Ivo~QQt8o4lHlMq`J^Y?Z>E_;
zKMlhqO^=>8&xF838|(7g&GZkuN6uCCE?Zzb+8wF#ok0SudhIw|H0^@M10XXqa>3mq
zT@G#Gw7d7VC!C9eIKLgl)4B1lH?+K=>RIu#o-`ukl^u<_zxd`vH{N9wqW99MfYV+B
zrb*pbaVVPmxLR_KF{OqafE44xU(_U8c}fnQ_G8q#2BPlLIqu~!{XN4lU+X`~x(EEP
zjFDIhdb78iy++kDIhm31Dbrm5Io#gAbz)w>40-(5b)9igZzpnRxDIl>$?jU8ug&?J
z*;QWQ*YQ1WB)I+~Fn2VU?c><J(k^3PSs{+9+c#1HWfP=nwWx^Cds89We6QpF*xW<1
v?;chYBRwh%vUS^T-m~AXfKin8lrq0xnBP5DeY*|n+ZX%~!0Wy-2|WM+?j;2E

literal 0
HcmV?d00001

diff --git a/phishing-filter-agh.txt b/phishing-filter-agh.txt
new file mode 100644
index 000000000..396fe2dbe
--- /dev/null
+++ b/phishing-filter-agh.txt
@@ -0,0 +1,454 @@
+! Title: Phishing URL Blocklist (AdGuard Home)
+! Updated: 2024-12-06T00:21:00Z
+! Expires: 1 day (update frequency)
+! Homepage: https://gitlab.com/malware-filter/phishing-filter
+! License: https://gitlab.com/malware-filter/phishing-filter#license
+! Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+||1nvest.bigbantbaz.top^
+||25116414.cc^
+||365365news.com^
+||365f09.com^
+||750115.cc^
+||823pages.pages.dev^
+||95564339.awi.za.com^
+||999fc.vip^
+||a.yyyy.cf^
+||aaaa.whilefish.xyz^
+||accounts-microsoft365.weebly.com^
+||accounts.0ffice365.support^
+||aidanochka-tabys.kz^
+||airbnb-clone-sahinur.vercel.app^
+||akbarinewv2.morteza638n.workers.dev^
+||alaindemeuron.wixsite.com^
+||alexa81o.github.io^
+||alienv2ray.pages.dev^
+||allegr0llokalne753724pl.art^
+||allhrteam.com^
+||amazon-clone-by-sudip.netlify.app^
+||ammuvicm.work^
+||amyr.iran-cyber-net.workers.dev^
+||antaidossiersuivamendimpayeerf33.zynekcctv.com^
+||anuragrauniyar.github.io^
+||appeal-voilation-policy-issues.github.io^
+||apple-id.cc^
+||apri.154-203-197-141.cprapid.com^
+||arvestcreditcard.embarkdigitalonboarding.com^
+||asdfjeiod.com^
+||ashleyproberts.wixsite.com^
+||astounding-trifle-b88a2b.netlify.app^
+||att-101397.weeblysite.com^
+||att-102641.weeblysite.com^
+||att-107756-104508.square.site^
+||att-108102.weeblysite.com^
+||att-108651.square.site^
+||att-mail-101246.weeblysite.com^
+||att-mail-105533.weeblysite.com^
+||att-mail-109459.weeblysite.com^
+||att-servicce-mail.weebly.com^
+||att-sign-in-107078.weeblysite.com^
+||att-yahoo-mail-105061.weeblysite.com^
+||attcom-101415.weeblysite.com^
+||attinc-101356.weeblysite.com^
+||attmailonlineaccountupdate.weebly.com^
+||attnet-100294.weeblysite.com^
+||attonlineservicesa.wixstudio.com^
+||attonlineservicesa.wixstudio.io^
+||attweadminservices.weebly.com^
+||auth-sharepoint-asr.vercel.app^
+||avertisystems.com^
+||b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev^
+||b35ccc.com^
+||b35lll.com^
+||b35www.com^
+||bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz^
+||bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz^
+||bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link^
+||bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz^
+||bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link^
+||bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link^
+||bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link^
+||bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link^
+||bbf-alpha.vercel.app^
+||bet365t3.com^
+||bet938y.com^
+||bet958c.com^
+||bhngfd3.pages.dev^
+||blackdasblacks.shop^
+||blsckdagsever.pages.dev^
+||bridge-9wdpjmsoa.pancake.run^
+||brubreumummeddoi-4514.vercel.app^
+||bscusdty.top^
+||bsozvycr.icu^
+||bt-102368.weeblysite.com^
+||bt-106861.weeblysite.com^
+||btjfh.weebly.com^
+||bussinessaccounthelppage.click^
+||bwfujmww.icu^
+||bx.sfdsb.icu^
+||c.cting365k.cc^
+||c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev^
+||can-post.cyou^
+||celery.sa.com^
+||cen4-six.vercel.app^
+||cf-worker-pages-proxy.1352562939.workers.dev^
+||cf.13084493.workers.dev^
+||cf.iwoai.cc^
+||cfcf-8.pages.dev^
+||cfr-reed-taxi-wayne.trycloudflare.com^
+||chain-trt.online^
+||chainsolapprove.pages.dev^
+||chat-wa.xyz^
+||check282.tempisite.com^
+||chore.pink^
+||ciftcininbankasiziraatbankasi.com^
+||claudiorojas.cl^
+||clivenicoll44.wixsite.com^
+||cloudflare-workers-pages-vless-a2j.pages.dev^
+||codt.digitasianetwork.workers.dev^
+||coinbase-com-18690.subttrepimop1005.workers.dev^
+||coinbasewallet-verification.198-46-89-184.cprapid.com^
+||company0rder943.weebly.com^
+||completar-la-verificacion.vercel.app^
+||conductibili.fun^
+||correosprepago.bnext.es^
+||crenadenuddoi-2258.vercel.app^
+||cryptorectification.com^
+||currently5267.weebly.com^
+||currently70.weebly.com^
+||currentlyatt909.weebly.com^
+||d.afirkz56924.workers.dev^
+||dio.azrealonce.workers.dev^
+||ditgong.com^
+||doc-online-1881.on.fleek.co^
+||docsignauthorizationrequest.vercel.app^
+||docusign.com.bestfinancebroker.com^
+||duang-5dh.pages.dev^
+||duvhkeq.pages.dev^
+||easyaccesscommagebn.com^
+||ebay8787.shop^
+||ee-account-home.web.app^
+||ee-service-help.web.app^
+||ee-service-portal.web.app^
+||eln3.vercel.app^
+||enormous-orchid-howler.glitch.me^
+||espaceparticulier.life^
+||ets3qe9ooms8t6i8.pages.dev^
+||excelorgo.com^
+||falabellacom.dominiquepg.com^
+||fdesq4.pages.dev^
+||fdsfjiwe.com^
+||fdsjfkweow.com^
+||fekoulamevebouna.freewebhostmost.com^
+||felomane390.wixsite.com^
+||ferngos.de^
+||fieg.84yr483rhfwieujro348ur84.workers.dev^
+||figinstenatecom.pages.dev^
+||finansfaizsizbasvurum.online^
+||forested-mirage-samba.glitch.me^
+||formtools.com^
+||fortradesetup.hamidamnaie.workers.dev^
+||free-5436781.webadorsite.com^
+||frogsrus.wixsite.com^
+||fshraha.pages.dev^
+||fukshumx.world^
+||gazruinv.web.app^
+||geaoolsv.pink^
+||geminiwallete.godaddysites.com^
+||ghjhyu.wixsite.com^
+||gimennlouin.gitbook.io^
+||goldenrod-rowan-submarine.glitch.me^
+||gorgeoushome67.wixsite.com^
+||group11-vvip-hot-girls-combi.viplch.online^
+||gruppeflorian.com^
+||hanisfir.shop^
+||hedayatfreedom.hedayatkhakpour.workers.dev^
+||hello-world-morning.freekite.workers.dev^
+||hello-world-muddy-cloud-f45b.mfoster0425.workers.dev^
+||helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com^
+||heluapla.shop^
+||hemanlau1.pages.dev^
+||hezhouruan.552008598.workers.dev^
+||hgcdhbxnf.weebly.com^
+||hjrhd.top^
+||hk04-123.pages.dev^
+||hkmqo.top^
+||home-100317.weeblysite.com^
+||home-102207.weeblysite.com^
+||home-107257.weeblysite.com^
+||homelogin7t6sdfcgvhb.weebly.com^
+||htaflytz.baby^
+||htaflytz.black^
+||httap.l-teiegram.com^
+||httpsbellsouthnet-102649sitecom.weeblysite.com^
+||hup6r.com^
+||hy.fuckgwf.eu.org^
+||hypophysecto.fun^
+||hzuayvvl.red^
+||id2.xbenihime.us.kg^
+||ikergalindez.github.io^
+||info-delivery-bg.com^
+||info-trackingcs.cc^
+||info-trackingiax.cc^
+||informed.deliveryhbo.top^
+||informed.deliverytcw.top^
+||informed.deliveryxs.top^
+||infringement-service.com^
+||instagram-clone-in.vercel.app^
+||interbenefitprestaciones.referidosweb.click^
+||iouwerty.weebly.com^
+||isnworldwide88.com^
+||jaydeep8806.github.io^
+||jeanandpeterwilkin.wixsite.com^
+||jetconstructionsgroup.com.au^
+||joeandvelma.wixsite.com^
+||journey-x-pro.com^
+||jsdfchkdsds.weebly.com^
+||jshattkee.weebly.com^
+||juliusmasih27.github.io^
+||jung-sohn.de^
+||katiebllair.wixstudio.com^
+||katiebllair.wixstudio.io^
+||kdlmo.top^
+||kenzmail0.wixsite.com^
+||ketura2010.github.io^
+||keucroilluxibrou-2718.vercel.app^
+||kuconlogin-ui.godaddysites.com^
+||latam-onipojes.vercel.app^
+||layanan-bntuan-resmi-dna.prbu2.my.id^
+||ledger-com-updatefirmware.aparecidovisentin.com.br^
+||levappoprauqueu-4688.vercel.app^
+||leyoixoimmecou-5619.vercel.app^
+||linkbokepviralindo009.vipp.blog^
+||liveairdclazmersn.pages.dev^
+||lo6-cas-projects-64947843.vercel.app^
+||maatamicklogginns.gitbook.io^
+||madebybmr.in^
+||madhu821.github.io^
+||mailupdate87.weebly.com^
+||maine619.github.io^
+||mainnetverify.pages.dev^
+||mazulyta.pages.dev^
+||megrebeikenneu-2106.vercel.app^
+||mendhfjpl.weebly.com^
+||metacareer.com-case37169314276.com^
+||metagalaxy.pages.dev^
+||metamacksiologus.godaddysites.com^
+||metemrsblogin.gitbook.io^
+||meyetamaskiwalt.gitbook.io^
+||mianfeijiedian.lawcpacpv.workers.dev^
+||milanharvestfestival.com^
+||mirobitsgt.github.io^
+||mocp90.pages.dev^
+||mostafa2.mehdi84888.workers.dev^
+||movie-firebase.vercel.app^
+||mubki.hp.peraichi.com^
+||my-site-104564-105934.weeblysite.com^
+||myaccountsignup.net^
+||navy-nose-4544.typedream.app^
+||net-flix-front-end.netlify.app^
+||netzero-webmail-105996.weeblysite.com^
+||new-currently-1-23-24.weeblysite.com^
+||newattupdatemailboxkidlyverifynow.weebly.com^
+||nfty-proj5.vercel.app^
+||nnbsscnaceesngsetr.com^
+||occinamete.cfd^
+||odovsccs.weebly.com^
+||officalourtime.weebly.com^
+||office36503.com^
+||ohscorgza.github.io^
+||okm.znt.temporary.site^
+||oliver752.github.io^
+||online-e-commerce10.com^
+||online-e-commerce11.com^
+||online-e-commerce12.com^
+||online-e-commerce5.com^
+||online-e-commerce7.com^
+||online-e-commerce9.com^
+||orange234.wixsite.com^
+||orgmail.weebly.com^
+||ourtime.datings-information.workers.dev^
+||p.updateinfocl.top^
+||p.updateinfocs.top^
+||p.updateinfoga.top^
+||p.updateinfojq.top^
+||p.updateinfolw.top^
+||p.updateinfoor.top^
+||p.updateinfooy.top^
+||p.updateinfoqv.top^
+||p.updateinfove.top^
+||p.updateinfovt.top^
+||p.updateinfowu.top^
+||p.updateinfoxb.top^
+||p.usertracktxz.top^
+||pages-108-tg-cfzz-ip.pages.dev^
+||pages.tempisite.com^
+||pageverifycenter.com^
+||patjimmy323.wixsite.com^
+||paypalloginin-usa.blogspot.com^
+||paypalloginin-usa.blogspot.hr^
+||pcmag.anycubic.vip^
+||port01-acf.pages.dev^
+||portal.chiaveggies.com^
+||pruhuffopraussou-5681.vercel.app^
+||pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev^
+||pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev^
+||pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev^
+||pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev^
+||pub-2801359d2be54bfd8701132626efeb73.r2.dev^
+||pub-3096005ebeae423182ccd89665564d8a.r2.dev^
+||pub-46a5f86348ae4aceb3591d126020999f.r2.dev^
+||pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev^
+||pub-51f896deb233450089fc1a520e6ed957.r2.dev^
+||pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev^
+||pub-682ad3b65d944376b919745aae3c56d4.r2.dev^
+||pub-722720be67154192a1102b2cf085d306.r2.dev^
+||pub-7d056bfeb6b04852801553620fe62c0a.r2.dev^
+||pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev^
+||pub-873fc6a3edb941c6a17f50911dfca518.r2.dev^
+||pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev^
+||pub-aab4be29317b4ec296517a557db12622.r2.dev^
+||pub-ba5a046c69974217b0431bca4ba43740.r2.dev^
+||pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev^
+||pub-c59cf4e950b142949df8861e60b3689d.r2.dev^
+||pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev^
+||pub-e5855431d98545b38408f52af50ab8a1.r2.dev^
+||pub-ff0271d87324424a9aec83337e844a54.r2.dev^
+||puertaselectricasprincipal.netlify.app^
+||qaffixledger.com^
+||qbstdfda.com^
+||qpownthenewyhadvanceweb.weebly.com^
+||raj-tiwarii.github.io^
+||restrict-policy-nonadherence.vercel.app^
+||reviewboss.github.io^
+||rfgxg.top^
+||riaayaoman.com^
+||roadmap.binarydesignhub.com^
+||robinhooldloegins.gitbook.io^
+||rouzhda03.kambizmedia.workers.dev^
+||rsjxzl.com^
+||rtyuiuytgf.weebly.com^
+||rubinhuud____llginnh.godaddysites.com^
+||rudra-choudhary.github.io^
+||s.team-s22.com^
+||sadekk.com^
+||sajsa.icu^
+||salarahmad786.github.io^
+||santanderpod.fsthosting.com^
+||satinnaaoabbs.weebly.com^
+||satyarthi.uk^
+||scarce-army-wide.on-fleek.app^
+||sdfvgbcvb668.weebly.com^
+||sea.6e2efhxz.eu.org^
+||secrbnsuppotyu9.weebly.com^
+||secure-ledger-m-auth.webflow.io^
+||server.2rk3.com^
+||server.pxs7.com^
+||setshinobi.vip^
+||sextelegramxxx.pages.dev^
+||shareorder711.weebly.com^
+||shaw-101342.weeblysite.com^
+||shaw-103098.weeblysite.com^
+||shaw-106054.weeblysite.com^
+||shaw-106665.weeblysite.com^
+||shawsyncmailservercommunicationworkspace.weebly.com^
+||sherman-relate-rev-baskets.trycloudflare.com^
+||shobhit245.github.io^
+||shopifysite.cn^
+||shoptkoo.com^
+||sign-in-att-108611.weebly.com^
+||sign-in-att-108611.weeblysite.com^
+||simxtrackredirecttszz.pages.dev^
+||sjhsjjs82.weebly.com^
+||skill-meta.com^
+||sky-107842.weeblysite.com^
+||smithjamessv328.wixsite.com^
+||socx.ly^
+||sparq.eu^
+||spicyhotcoolsoup.s3.us-east-005.backblazeb2.com^
+||spotifyl.vip^
+||ssfgsfg.wixsite.com^
+||sss.k999955.workers.dev^
+||stonemartin1001.wixsite.com^
+||stringroll.com^
+||sukienffvip.doiqua-garena.io.vn^
+||supportsecurity981.tempisite.com^
+||talktalkserver897.weebly.com^
+||tareq088.github.io^
+||tbsl.by-on28.my^
+||tcaconnect.ac-page.com^
+||tejlksdoisd.com^
+||telegcm.me^
+||telegramjessica.pages.dev^
+||telegrampx.com^
+||telegramsexgroups.pages.dev^
+||telezelm-ivee.icu^
+||telgramsignal4.sg-host.com^
+||telstra-102379.weeblysite.com^
+||telstra-104033.weeblysite.com^
+||telstra-104394.square.site^
+||telstra-106968.weeblysite.com^
+||test1.workersdev40050.workers.dev^
+||tg-logrom.com^
+||tktk.tktsk.shop^
+||tokecn.im^
+||tokeni-1601.vercel.app^
+||towrewds.com^
+||tpwalllet.com^
+||trustwallet-zendesk.com^
+||tuviaje10.com^
+||tvjbqiyv.guru^
+||twcht.twimobie.cc^
+||twimobie.cc^
+||uedy.pages.dev^
+||ultsyncingsolana.pages.dev^
+||upheldlog8.godaddysites.com^
+||upholdloginorofficialsigin9.godaddysites.com^
+||upholld-lligon.godaddysites.com^
+||usol.shop^
+||usps.com-cgkzkukp.vip^
+||usps.com-trackaxd.top^
+||usps.com-trackbrs.top^
+||usps.com-trackdht.top^
+||usps.com-trackgee.top^
+||usps.com-trackhsk.top^
+||usps.com-trackivo.top^
+||usps.com-trackjjx.top^
+||usps.com-trackmra.top^
+||usps.com-trackmvz.top^
+||usps.com-trackuqg.top^
+||usps.com-trackvgb.top^
+||usps.com-trackwbv.top^
+||usps.com-trackyqb.top^
+||uspsdana.com^
+||uspsdant.com^
+||uspsservicetrack.blogspot.co.id^
+||uzomadj.shop^
+||vedi.154-203-197-141.cprapid.com^
+||vgmrm.top^
+||vkkvdkdcmm.weebly.com^
+||vl1.spaceysen.cn^
+||vobroffexagru-4404.vercel.app^
+||vrvtn.top^
+||w1.5114559.workers.dev^
+||waassistance.com^
+||wallet-diagnostic.com^
+||walletsecured.pages.dev^
+||web-lupqrbm0k-uniswap.vercel.app^
+||web.tlgrm.app^
+||webmailserv3038z.wixsite.com^
+||wk.xzte.eu.org^
+||wodjrvrisixc.wixsite.com^
+||worker-dark-queen-529e.servers5555599.workers.dev^
+||worker-hidden-frost-ba39.yoveli7450.workers.dev^
+||worker-site.aopages.workers.dev^
+||wsa.osmqone.org.cn^
+||wwwwwwsasasasasmmmsszz.vercel.app^
+||x.tovip.eu.org^
+||xhjxkj.cn^
+||xixiajiaju.com^
+||yahoomailquthorization.weebly.com^
+||yungtee3.wixsite.com^
+||zagbasamothega.dnsget.org^
+||ziraat-kampanyasi-besbintl.xyz^
+||zxl.cbbnbbc.nyc.mn^
+||zzpov.top^
diff --git a/phishing-filter-agh.txt.br b/phishing-filter-agh.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..e50fd5b3e48ace2891a5fe35f6bab6eaa787bd17
GIT binary patch
literal 5496
zcmV-;6^H8KkfR}@m=Ay=WSIN^HUH`Rc}+&QI%H@iDAug=G{qk_uu+Z#55ctF-<#T~
zQYaZJnv#w>WYKvEsi&s%d;kBP`)ghJN^`pxcO4aHb|rhpveLgS`%=;o<s*r_<Rwcc
z#9T2Hty!|@G*nyC;>TEddw)d(L<C&6rZUtby}1Zu#zt1t|JbiT=N8xLx1WF9eBFFn
ze|9WE`FMrkYy0_=zq0?(q1YdUZGZa9uRs5GY)7}h{dBSKf{cs|)4vYGZ*2T+82<a0
zUw{7YK77IY+t2u8;raQK4aR=l`H1PsJoP|*Z4OxRx1X)GqenVc-vVe(PKgjMC`gcv
z{pEohO<VcPuRl6#V^<LV{bpM6%dbCTq1WGj7=obiQTP`>t8ZJc&+yIc@-u!fd41t8
znUth|3k{h6P5tt_-;L?S+Nk!chSW5?wB_Uf{_?xuF*%Nt7zH&Z$;KziC)q?$JN;PY
zh9#w7mcuy80=i<HLD5RT(=DDkZ?s4`3C<S^m!~h3E?Snw8G8CH7Xy8s=b^?W3<3Z>
zQV4V`i{8(BLyxKysYI86-gp5%NqQmb@YKuT>~wI>8+@b^gO7%{uzS`VJCFwYsdTUW
zv-zTvCMM*Bq{8M?FZ9G>Fi<#9{Bpa7;uBscqcN9;FHBq|dgZcXq1J!^yScQ9*h^0I
z^0&mQ?<E0mP-CWz74<pCgU58T0uSTVzu)$Kl_7+@Lr6GFJ~MFy3gnm}Y^ArUTgXIs
zb0VZjKcsf+k3E@2f_Kk@Gsb>;6LBYr-G2)81rjlj#zGP{x_-RWz}sA_$5OjLA!4#V
z9`GO*$2onUgu5~AM906>3#<it@(&b}I~)f>AZPYLbB4*Glm<vgm&0cQ5^n_z_waf@
zbd-Xyfs=8W$tXr@j`OEeH_wY?6V(T5Elkh(F}$m)NKU#0dIKwSf7QAV`do?sbqn|$
zC2K6LHe<53+|yN;Nh{t3Bw8t8n%AYRk#QLLGRtUfMF?>9*d)d|=UGl<9E2PcRi~W3
zR{<?j&+GR%tD59k)QsQ*YD$=xDAYBOlJl#x2)U>Sj~FmchO~>qtIe;8_(bXT8D>=x
z+6F30dooPyT5fWDI*d__66RE&%${&bG~ANWiYgDH_Sb>ANXXp77}z2zBNY+y4XhwL
z_q=uMGaMCptF;S_1$HIH#p-P%<0U)hNn-+4Ri#fX&5x0)&i?uIs3k7K63L_^!hj)a
zLPq!m#tqhLJI`boNJM<iYCfVLk?y|ie|>P=H)SwEb7_pJ`HozM5K_PhI`R{N+Y5RO
z?%GrTyvLcJ$i%(LX=kSDw^C;AFCG2KqPMv2d~VkfQ=2^XhpW_uo%}%6Kdp2@?u4n=
zD<YiVGq2MwkL&aSQC=pQ{9dPc?d@`l*P2d&?F1n%KgG(tKA3#j`#xV5zHgA>Jc@Ky
zA6H`U_qq41wb{2L39(M;@|RM3p{Bv7{qf{SFUUZAP9~#i_$d>bxQ35NTfNI#5g*;6
z?JVeXZ&PRNU`bE+7e)M72%0Sl$(k@6><-^KADMl`8ESgJ*ZD2qQ(o(P+<_nFYmWU{
zzgG)FW5MgM@u>!B*t^;Jvp%NC1Kk(7hLrep9oO~sY>l6!Up@8r1)(c_o9CJDVm@s7
zW`DHv>I}m6f?0i@-<I#W2+3rY&OtphT>cj~Jglgns6U7HH~VtEW31L^&B0&%^X<}z
zE2ZNMf-$@sPIxi2BL=msZwQU{LZWdYeE@6=S5MLoQi->VEv?S-F&QmS!$SRDRBAqx
ztYhnD>;FkYR_e19Z&xJCWsgs+8R!AYz>c)^1k;OM7woaeh}LFLgd7F(<E!b_w#Pv0
zsB3=D#}w*Kf5G9TFFq;E-~FWYXDi)4Zc{O)?zJkZaMg#nM>G(nQNIE2CSI<8;&ov#
z{-)L0s?(m&P}6)``6Tyo`x`NQVDm6q!Y5;i7?Bf=3<z5|LkVI)EA>x%J`5L@{@K2b
zX)C0jdl3fAg}mCRdGhuqV!-myYEpVKm;|Z*=Hd$Dh*6`F2I?+3O1>XDa>?Yx7QUD~
zzm{=y<bx7o;n`V#W$^U1aK;hU?(f&QLJFcK4Q@{^coNc9o}&};Feo#Or*7aAX{FJj
zK}|of=5VUByE?J<aT_#pftEl=%VdgCcYX`syoF}V1?kZ%CL8aX@yRDYvlOa-eF10*
zYB4Q%fm2HUK&2)m`{_?i-sBL3Fomi}qWlflJAS%|%?Pj${)5>zYKN_?9=tj^hj~WS
zs7MC(e<w991Fc=RR`BpKALB5{V*E0gcWT5l?IIl)MZ`qZLPjM_Me1348j8iT2;Lb0
zq9R~}LIPBLtdWUVK~A=tc0#sM>N++(lg(JJCl+e1nQHIWpje-a3MR0adWXL<#-y5u
zDbLYzLDNWKXo+6pFfPL**)*ff^7m*S?p;A^%doupYbiKi_E$~|6YK@k#Duq?;k+Az
zHwUyeThfCz8zRcDPe!FiniF*aai=DOfZ+!wjFpRji9^47SG94$wAplUsGQS~0*zOY
zBO5L$oAl5jtwh>Q(%jg7ZaaQ6ApSz47`n+ZPPIhywE{IfYF4v8Ux`T6pGJa6FuG9W
zVu-e_K%yGgCmVdtogut63W?KcVajD)idQDNn9W<V<tt#JYw+76G-?BS&cbm#j(}$C
z!DFE@56taStNe>g&atXCc@<QFx51FhYI;T-L|#Myrq-O7Q_g=o9<ArXS*%}C(PKDU
z-N#=DS5ZH1zc62^9dOS*K*ST*m=HjtGesBbE!P$mHG}mUa)g9@8Ptf)VM%M=F5U*&
z<4Toyicq|4?(*0_C3B&AQR3Ow`PHY|FhN7oBm{ua{N?Jvztz7Q>e)+=dRBM2L~ZSs
zL|<Ta`5QzH4S-9jjI^AC5e?DINP+ccy4?CfH;CRsOyIi)u)<EH;M1%I-aBcqx!k#T
zC9kz~*V3J<TY(LzvG=`hJ>DA<!KOaW3UBE?okFIs2<R?3mA+W9p@~*3Lb_%P)(-zF
zNiNszvppS;cB_w=QpnvWPaN0Upmz{Dd{s;(TT=1`iPWxRKt#g2qu1n$x!3LkdP=s5
zS1h?7<4DfaA7smo#94XO_d@$P(1F2hErpBXR2=9+E*|>q88%41I$!J?T6mywe#quX
zlgxdCJ+drqAc%=YGGS<##Ai`<`Hty&!>78n4;l9UIpT!WG`d_HmO(ICw)ikm(c6M?
zRu;@;E0(+yYDe*%`c&O2xdRIE2p#m_s)SxUh7LynHxW{RK1ztO;k%@YtwW+x&LT9H
zi^9m$YV4-(<dlDQ`;^UEmHM_1@lct?o7?vI&0weGh_em@A43`xLMdZ|qM1pIAp1GD
zsaj{&bJGY<YT&}tUK$mbB!V?gUgp){pn){>xR$UO23kP_Vz8RH@g|$Zf<^!BI&m85
z$5ax;L#J09>*Xl+C3{H53mo~_o{FaBalg~{c6iP+(1LySU3kmrtugt{N2I;dy|~@)
zSXKx@!a8rTE8~;PWNvNsL$rp*JQgpHnQD91z8>h|zRQ+~mR6S7bSuj9l{Itic-LE)
zz`*$zHqce!hYSB45sqQUy52%!hy0{-Ah-aK*32jaE1jN!s3NE`)xYrMbHA{(M+6LC
zQ&)u9j<`}e`UjpFj3!DA6E~e7gapY>%(T9I*nK4SpbxgG2(2n705B-@C!aGyvL}WJ
z#V6%n5<cX1B-9L$U02&~tE~@SKXrrFcEmj2dhoqQsD5KJ2_-$Pq~<M+jlaeY&7%$h
zd<iS92LP#TWVazofVpFOqh0cW*tTQq1!f>6sPyEH-IVM@=(pD;cf#h;U`_4a<kWu;
zO}Zazx)h*6Bsuvbf3Q}e2Y6cRQxTn7heQh2=!s20kD@!H@u9vy@i0-Q6~BPQ=Wum5
zm@9dG3I`N4-saO+OwAjP1Epl~3CEF-0)1t%rbJANhF%Q#WPfKLBbwZaoW=#JlTW+O
zJ07PmU3YmNhBwn62c5nmx7|1qe6c3L8?n@+NgW|i#DL%F?*~n*WD<**l`soM1a|r5
z%^vc)`jqM@4D)0q`q8mapVC@vU9qv{pqUAu>MA!O8Nnx{Qd-DL37eNAn}P5Y;qBpR
zkkf;>7S!l>ObI(-<1kU<7L(oF=Lr7dI%@Rz>5vMH`9;X*aa#B&*gQeDTp_@Xk%<jr
z=;gut9P-+$$l=0odMveh<YtT!@u^1C-8!n<Ali6H4*kcYH95QnxXc0OILFky=mVr}
znt{z`su<|L<VoLMt&PvEvN@LFp-Ngl6`b$DXvEEWC6p51Xi!ZO=L@cJr49Y2UGJW5
z2R*QWH=BPD4`~*(9*9Yx=Y1_)#N%Ttv;3O6r3iL`^}7>Exgrr#2zn+#VT+lG<_%Ib
z<$}M7`L-#+WNjaM!e-+hCKqb_zOQAOMiO3Rh596rkuXk}2pfZj%tNYEbiQ|Q!!vFh
zrF@MwE4lVexq7nQ-aI8;t4UxGYg#KdQE$t}_yi-!qQ+TYmo}f(m}5G*5&R^C+>7~n
zodLk+m>9UXww)ue!TQ3eaOOSIH#P7^&joNSYNye%3~n?_7KyB`5gg&MVu^9cM!x$T
zj^~WcOx~Zf`J@F6{kvuyDLPaxs~LzjAt5tFD^WoR;31m`(SvqA1dE#>(Q5acZ4J3X
z$j>)qxI*W0wol0K8T!PtZ6U9I!CQ-p%g~(J+x>2cx^-b36lp6l?tO_rjy1$X4idsH
zGKUC1r0UIU`}i0i&UklP2Rz5ADEW#eTBKKyg15FFxrK^s<^DxYgq1>iOxND@52%T&
zVI*K&@d=vpSZ4EZ;=1}nz4Iu2>(0sdNUhTQqSW|f9bJ<_C_XvVdUQri&VT@A7?bE`
z%YZ9dScd<FU6YZIdJw}14nUw#3kWk#!>9)oQX3Z~ptGG7Qx?EX!Wj;VFJb^OSfz*2
z=I|VB)QBLM6_35>22@;2&L_Qq;ma_<g)6&dfELR%N}-)q^DvH_O>9Dkdgj|Z=fg4$
zgG7yhg7Hx?W2{=HiF>h2t8(~6Vgl*Z#DxMBU{G_pjCN$xzy@B1^zI{RJMw9q?4XQL
z+^A&{fD;T-Tj|b9yrdkRS|*E{aW3RAxGp&}f@A|uXcsxVz)n&b<>qk^0}2#_w&SGC
zWW|KDRvcVF6$8ulB<&&upC`SH%Pb@Saw8{Opuo<I&1}#(&7&0K!eAT+rkQbrl9mtC
z_6l~8lXj>lJqRVc!fz@0#0G~GGhG!_C5-|j76uZ<XlFe*uuO7315As{A*gER&P>43
z>P3uZf^l|oSjN#h19BWUK?OAe2(6vsN=#aTTG*nbm0BAP(<N{KT4-boA7?Gluw|0t
z3{uWkk8EPh1zv-MK}=>^mRYcI)`Q@qHXt+zK8qnrFef=r0)#~rI8Ry&r3~s}VFMz%
zw_@aCoWMm6dK7FCi*?SgX~b#Jd{T>bfyEJp9kiGxX@ynGGHEvmIZjqB%4z0;CY6+e
zk9JW~NX?ZPl#>jc96&1=-P?3-VDo6z%$X2OzyfF#e|3RM2#|L}SQ`AZLvqC%sO(Lt
zwv+b-=ls1wVTY%RuddBH3x4{MFH>43;q`31JXrTigrXk>KBV~ziubY~*3HAkn?{qF
zoN@xYVL?z{a?m66xn?@on#{0U?^S5niU)WAlvT5zJA;jIQ0)_xhmc2UWF$yC?bDWX
zupuMvD$|``wdDS876wjth}yr*Jn3_;)X)8@%3e!*y6;b0aVb%Hev^B*|L_0(zyBA)
zN@)5`)o)w6EkMkcyWJG1+B$>8%RwZS={xsR!Q#IAtol^2So&8XK!GiSoz;{U5TDv5
zi{;3cy4t|)YUU8H`it8HkU?urv15hyKxvz&efP5&C<X~Lk`o|fkmf`TB((otq*`~b
z+MIf_<f`e-7lBU5&~5jNLpds%q7%2Rd3*X2F=Ki`vUnDem|g%i22v@jqQGLYz8Nb!
zkBQ!wJMKF3#vB~TAT9CL?}pU077*|ImfFZoL6&C2c^r#nY;bXLLJ3AgTunYK>grB|
z6iTK^n)OLW6(yAf4K~)3fel708e8N=Hn2os;;{lWBn40MzjK;FwdeX&x2!kcn2;kW
zv*p9PQY}utBW=$)HswPx?$$b5Z@mK5R@LzF))2#mN!zT|_w6B%pRImARk1vhyAOe^
zv8#OfgW1kNb(a-=+vv$H>&cl?6`eJkn}+Al`~%9DVt=rC^K7}%uz5w?Y?aeq31OHM
z%PxZCcL?yJp1Ko{+`N0j=yP4&THTtdSu5Qs`1K_mkECeAGH*T(!x)=4bQ5^ms_#4M
zyT|0*=?`kN|8^iNm~GS4XL@!ap_Ae)dl0@oiyAd-pjE?9GUj%v7C7cQG${BTlzNq>
zYoPieIWa|JE3Rq=SmHVu^2zSz)9@4aYO}A_I}>m<(Hz4js;dvy>J5;?0_=R;2{;PG
ziZ>!UO^vkZ{m2r3A|61Eh9Mf*cJDt3T350e|N1XhZ3Xx#q2{G3(C)>+H>}<o@<lKj
zt3G!>E&P{k!`jAS(SP4k41*koNo89}$ZN?lX64>?+V)m=6AYfOKWh^8(L+z3tPNyB
z__UU<vcyU%(GDxz4gp)`<kBfuL3>ZNpQ!t8tzXfkYGprXJ3spCpOdb=H2CvhW^1%v
zK4$F^^Ot!w>S&QOy@z%Hgq3!)93Tw^(GME_>>;m8)LQ-6auCa>TmTN!L#Wo*87^_2
zj9^I!e$6S^>Y78_8oeGn%ZXX{cklZ#+tm$^Y6-ZFRg#MWU8(}RH3ci8g01cf{FxPe
zKDUxs;9{Jwg8p3<oU2xF>2v4j8;jd+SDPRG&eW()2cy?4=_&X=vA;Qj{dC$5JJB+*
zv*#L1eD&$v_tWmy#CR06&M;EZJM>gc!cjl79%(+}4QuH{h=B~3J<HkBv-fMHavX(}
z3@*n7P^-U<jV0!T&b*}cuqIuuj@e0craE?p^wx!%gnoRBj>ArR^7VqFSfI||v4yon
zPo{0O<O5f)+`0d2r}x`XoAdq3_EXN{tG`VQtQ{xU&C$qpck+m23sTu4s{A(1(gq|V
zxpod<wMW-qM+0BzlTQqO7DqxF4YQ9zZV73y(^sIm#&1q5b6NXMyS~LLJeV=Ys(VNp
z3MLCk)v9_I+}r2gKk2-{?Qahs51;;p>~FZ=;!7El4I}qYPisTOs)}A%HB^W<LQ=j0
uwW+SyGAHymgY3ZndO@h3Xsp_&7KnAP{@#Hat&`S<rpM4&&Y|}`^0WguT*W5<

literal 0
HcmV?d00001

diff --git a/phishing-filter-agh.txt.gz b/phishing-filter-agh.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..59066f3225001a10c5565cee1dd93712f40cffd9
GIT binary patch
literal 5697
zcmV-H7QX2piwFP!000021D#q+v+KH2p7Sd<#pF_jef*AnW>8QtU_kMhFo4p_wqn_G
zB-xHr{CGY&iPwsgb-2Yk`|Q1}mRhY=tNZJg{_@wqOQ*!|zy76_wv|Kk>p%YWpMU+G
z(yUX`x?g|#TmFv|G5ps*>0bQxU;O2-{}?%Og8%+2iIOaclOQVoJ&Jx$;@_j_KSBS8
z>nM$|zyFGVakBpU)3o*fRU2`c#K2b1!}A(RgIQbWM*I73zcmno(2(i=x1Okl7!lM`
zIbnVqA96juG5Vh+6NCN#4E`&19||V_rYFO^n0ge$*3FOqn_uA7P7hwvu~sP68Qt8-
zZ%+k<e@`5t1YG{-f8t>l)`e6ylnjoNTj=!oUmzrT92Z%fg^c;nw8-&i5R3JkA1!rM
zJ-<$Q6vz3abD5-GIX1li&Bg3nt2{5VG_69i$nZv<Bde;aSvbpWRuZoG30b{;;3r&K
zsYLBpcU^B=D`R>ZoDF)(jJCRVkR)7$plW^ceD(>Wx`x7h2Rn_UHg2OzP6o}|js(!d
zYQyf%SQ<LefGItQz!GR`GT|(sWEGO}E?!58k<h}Nggv;48!6Iq2p4TSVfK|0MdZLm
zFD9cwlvgXA*kx1VO3GM=kByT0-YUf~Cx)!AN+U{%#zac#j;KML^7NEsBLsRZMX45I
zkbdXhlbaqMi=b;@Coacu5KhT@-Ivk#(=1uP$$f8FO(+e)z?BLUp#R&N1_!-qYb6>d
zIg?%tT=pYbg)nuRhPQPP9b<0ZMS=cEW5_hfm6*eF$59X!%vvhqBm^EcEPD;4wG$S9
z?5ji|`NO!#Xk-}YS&&3&5Lc%l&f<`bhK#<;V`}5Ani;`y0&w<2(PQH}F2R^UHB_U~
zpM+<B%j>g{`ip^Wl~_lkp$(YPaSN@3d3gqbGqQ$sv@A(N-}LNU5Jz!ZogVi2!ek>R
zIAcE&Pp7=VKUp4?p}oL~iO_fY>QI8gkE6>Xk3S9TiBw*!BrARx`{<G9*w#PnQDu4c
zLk}wqOpJ-G>+yJcx@?9(4t|x<sr-S-N?NUVaiZb}RpB?kpe)Wm)8)XneaL@Uu%AE=
z3J3e)IPNb0U25zv7)42yeP(oLa$mZzWV0KG6R7{JJ`ZzuZV`m{a(MPR$}zb%ur0QA
z)N*hEv2Sh)pHAA<I??a`n#MF2RmOun$?G6vgau_Gk{~Szt0T@SKb?Xo3VI=KtYPPD
z8vC%5rVBBVlJ4mUXqq#|cCKlzl=}9yEX)2y>dpu$RK0Y=biR$VUi&1wwt3Mdgi>Qp
zsa$9;=cJchG+laf%h(UDkf9uF8`i1|wqG8u|G}`%m|bpJPv*<4o1)9dWk!$?`N9UK
zZ_AwB__fxqUz%aggqum0{UO69k#tP*TXMUtmqcA|Dp&Jp@|x3e8Is#&y>^;X*0tl1
zWlb?G^1+ZVf`-`7?!gV-Q<CgFCwb4DIGaMSzES6FXzkTBR*03lo==IQbLWaFNycQL
z#r5)|cpF33_F0~|jHQHk<Z{xZPR`k^>~Om*^Tk}|d}(guRiz`lu(4a4%g^F5P9(iB
zn3u{~a%=hN+^o#xqo^+;1qv9_Vi}j^B9o>+5A;Th>1S@WncCColy=!^<mRH~=;mcg
zh-z<yHBz5$PG3(3;^#WAYhq_je&*JSk!SYY)ALB>HMyj;g9YPk(3Hp}Jzu7rWy>&(
zv&xc0T%9PyCvLP3h#FgRI2TlStl-k!K!vN)a{d09mtUsc4o%I|*LX}7VI3!S``3oH
zy`v?ntZ&8+W5&Y>BY7i&YT@I#w^;p121Ys&nrXPxCu+phPkk>q*D}a*pss`9mQ9ws
z^$E_X)wda&7D_g4-&-h2i%))ZqZQ>x-$~uMZV&E-PKfbvQ1;;q0U$@eppYR#-_^U+
z)49hvf6jglZOtuxenW$BxeZj^Jz_RXqvRCD9L|REAd5vBP?3-zsnSH`B#Q*kz3)k*
zXc1;Qw-<+K3ItLgoDU-&DgdyuRo~|lN|-gYJDdbO&JbL#2Mw}1xC5GC+nfNQ{knz-
z2}xc+is}e=SPf!SW?7YfAjw4&`CMBK-sS6_v)Tkk2o8LCmBB&)jY4Nupt6bA$_M19
zv@MV#K!gkLVPS8xT0wH7XK~=%5(kD)4*_`3x};1(c=}O(-&)pcOfx=C1e3MHk(UF`
zcSo$e0qha?_}GUi;^UCfXM(7q?oDzQgJfDM_|O9k`dZFIxAvjjS;2e)lAI5+YmSZF
zFqoADvDA-x)2{YHS`lnPy)3E-(49I5JCMB|5q<NYhAbW|y8s(6f%-RG8OBu^WJOR`
z;FTR=BL2Z)TqDDUsj~EN5Ihz9hzS(gnKIAxU|M?M6D*!eCByoDsF^lKXgeC8CF+n4
z@KvF(8_9@)a4}5VVNa60Jn}Q^=&*TUxi8}>(ge1HQ)`|Sr=z$}+9~>p0%%c1)q%=G
zQX|UW@}f$zqiQ`YAvYsDXlCM_>KgrpqPb?l-Hf5^GKNVbq6q;fpdVxp`aFEmM&7oC
zZ8<fL^Q#8XbMjq1<B)=0%K=VPP@^&ZKHWqBz;oWdS{a|_wiB1vMnUWfe+IL};2spZ
z>r_y(mZ$Qx`*I<IhwBSkr1_zbEDymzdVsRPyTu<!KF=iTg{X$~utqUx)9c9w+OSq~
zOtrw1g^lt#d)RNDK-iHmSP;M*n~)$HM7a7+aW=h(O6%U1fJ+DWBd(Z8n`VcdH8N5v
z6k-+>$~Ca1gx<$}=V~tOC3|H8k6xeUBEI_AbKNaM@A$43ot_jD!C6qKi-a|N9#-AL
zLHC=Je)dzk$9Ye2mJcqZ7G`L)pL6??q6y1vHCdUOwqB%|&PJzMIhpd!G;27L0SI>h
zQuoVx72X?+t%<zB*TFZ;lbQN&KDNgB!dM>kaD<Id_mLpJDj!{Xr?uJvG#Z@2$+ZIc
zLD&*tR?-hdz8wp%h9J+<;#B&eO9|KJWzj}A)=Y0{Wo=tST5?#))Y*3GuYMB6eM^G_
zImu!EZeWcdUetMa_>J(JeD{bVY&0jFZ=ru*PSc*-bvnw>NaXbc9J?HR7EZP99(hTl
z6}*<wJTQ7e7=~Bww_?bv+8WrMfL;5e<9*bDz0uPc$H6?y5hm|~MjB<kucy-2fE4(A
z?NVc=5wH}djBxQ}(UL)0c&z=rwt^G5Hm`M<cKG=0TGEYrGRMvF^)MZ5$_#pK244m6
zLpv|!AN7U5UV|;<1$CCwu&-g_!bDk;e;7A11SHAf#Sy|y4bdn7Be0c+Rw0kGOEDF;
zZt}DyAwi&#^@_dR7b(<4Mn%3Y5+?}pIexW{R@_=F5}q*3^CXJOyei+MX&7(mb*K-H
zzdf6lKM`fyMZOk#K)Y?%U-aGuJL<FFH2zf1cu<oh`UC1I$$z3MjpKZBh2=GC=9V6X
zb);6SyM>g{^|iqx@q3FSW2gd$l(R8kC9$o@>b;-U2tD@{J}I)wOW+;H2YIHk*uzY_
zBB-;jS?W+sA*}n}IO?%oErPUu#{Bj+k#(LGAnSHcB~QXD1$t_6ra~O|ZW}7GHw{s~
zKzMsCbjhLC0T&)}nKhuhci!6JdRPZzW%hwPUs@%(erq<!B*G`7mhL<FMssZWk#@D;
zNI2*4C;$=9AonGkb-u{gKT3}Bh>qldLjo;`TDs9Y-3>y)#EgLR_Z3C&#`fGo>IoSD
zGM(4$mv-2W;Uc*x%V+DEtXzn(ETiI8lV?HT|M>{tXBMfTp`#-@3kTe0o$<&Gzif_a
z!y9DFE6y4$_$*XU-iG494Pp(hK8e^Hz1_AQxBOVHIa@$>*NI~}>5Paz*&a~1O-={#
zCjc9(+u;!xJ76UYRRmt|t)%pscxTjc)$hCCiQ(oeU2j3SLqIbmiQ?#0j806<XsOh6
zm4IGTkeuQpSnVdLaXY)gBtOO(MI5X{4|3FJw7w2kaMjqUfDR5m3^|kSWxxR?Mnk70
z?AK6kXGsa<&}PdC?zK4tfZpGefD!&?u%lU8*r$AeMspuEV;&9AKLPGcNCe8G{7S4^
zUbRH>4agVdMO+<wAfi&>&T$4*@W)n1z|e?QBV3Pe?p<a9^>ZXpw;rB%c=e)67XiY7
zH<vRUh7I6+vQwEIAz@Fvs&Ej%7788gAp-XRA9STX(*EJ`-A-i^zwVmf;=7K@V~POM
zAp8oC0|t1-EyFq7KJ?@^!O0#VNe}lbsDLBGI9NrD<9Aqz7<gNs$7A8QM>@r@Uw07i
zl_JtpTvTbCC8y$hFL+3DJxYW2-j`jZhKAr!KbadkiQZVc+2m1yV%=ES&Lbmtqyl8r
zLY}4I9&RYIFu?C|KE~5tDl)Y9D~1~X%bDy2P{2t|rL&DY=vcE6==XIwzz?J*uyWCI
zS!QMV7P@;_wZ964x}mD0k|)~9upPru7$T8G>_V)8SIKsBP-MPxUZtN3*8TdtCqu3^
zZMQ_ec_8x|3>qnTmLutR>nMO@5KkZT`UqMpc@2PL5fHG|$9oTa-h=^i67*TSuc}YA
z_dzVdo}C79kfcG9eeMSzdbeuNk?LzFxmxcwJ0K-_wX>mi>vr7ogU*J5A_W|fRS7#Z
zK=ON-*Nh=&@YWNudh<CNKE*P2^yk`NDIy=9kd^h~6Vcx{MthM_x5zn7b0e=7p}Ri3
z4Q?ykXhVDr>v2b;xA=R?lf!^}X1x_gdcP>R>*o}2r1)o2@*^q#k#hQxvR?pW4S)zq
z`c@^v+CN+YJ=KRD1+=ii9e&)49fw0OhWCy4U6^`CvzJ!;skI@WTF;kHt!nwys?EpN
z^;7F*{?s~)kFD-g>oR?6z0z;30ACy8bJzWz{$6p5qcU(!!0OvAkmIYLxqrMB2z~SY
z{4n7$+E=?fBOI<Nl7Yikj$|E?QF_nn<Gm$Y1hk`ee@2gX3&|tvNfVM`WfPVAwZE^J
zL~%e^eGvU#Nr7)8vp`Jza`U5^+NrL$*lz6>xshzY9`<pfL6ntgQ431rnq@`JNJdJQ
zB)O<hJRxZrnq;30-QzT-Q5MDU%On$7S&@vzMTACyoDbq1x}W%|OiE4&E3%rUq)e+U
zB3Z;s8pZs`J&CChBujV(-gP9(l;&w#(2B6MiXw9CUiv%BiYHX$8LfGFisCp;ilhK^
zrl<7KJ&md&igH9|BC;fn%Y-prRz>08UGVbAJu66FmqnVD=njWSF;&dtq==HpzsWdu
zr#w!JxZqLApi@>>RYpWXqMUMg_w3L;k84Z~ypp78mLoB(Y8DfusG<<OLKgViy~s;e
z)+a<PC|YC@CM!x-@T?FgTBb+Yi!vcRrA5xGEK5(&U|gNDoDh++9HS21Pf2o0A}Weg
zoM&;BkQf;tO<0Y5nWsQ6hwePe3knq%u!S=B+mPpJkwmp9685%DWzI^%GO*1>7V{I0
zYQht2?1_+~s*l{uQ(Civq=M5bi}720s`IFdV<ZqHkB>G(${40dX<epeR?w1^RZ>Ch
zoKo0Zaoi?CXhuZ>M0KK>U`bWv@rmU5iBoKCk{r5Il9MPaSW!WL3C2VjP5@2`CD3aY
zy>&10Q<0GjX;&tocM8-3(}^l<tPscUEU#Fdi7JmM0A7_<ye`Wk7DYtUqOAC#yNE@`
zBbvctISdw%f!2U9u(`4-YkHJj<Yk^iTn=^Ma6&y%S?39XHVO0;AG+6dg!~1EC{3~~
z$w);6D^u)}D6@>@uQmfe3&5p-)(wKa9g+Vs3D0&!Iv0X~f4yfXPuFyz*72I}H&T~T
zFa8=0AZBd|pM53U=e(~0(U5cC085ROuW{e!%n-sopU4b)0PYvSOzemVjR0I+sJ4d}
zG^TE@%`;#aNsx5;g6uxECcGy|X8?c<GHMS8A5X~cWDr`d6<1pLn(F~KBQw0UoB;83
zq^A-Y5b*Och#Pyp-gcOb1b>p#>Y8Is%1nN)Y2yElAEkU2)P98dX5xkftkn~5J$QOq
zua9=fIc>6I9gEbd>%P9uh)j>$N{dXxkQT|*sXUYstbg=0aA8Kx!`eDu*#7ov$a?HD
z5TXgCN0bQKN{j<2pSHS&McTteKn%dSFJgpx2=137kG-?Jo*T+$TI{#DJ1;@PLL{PY
z5%#}oP*yNQhwWV()LFd^0<adrBXRBnf9>Kc#<c=kek@NIe_NfHF8vy{HH}w$`f76i
z)u6r?XzwjoC)8GByI!xa5qo==qWy*1DUOdKwPe}e;bfm4Ej_4+V&%`&BFeKrpcX~`
z1J$kr^Dy+jK#yLh;c>a<Ep@wSc@tLvk@}*90v5wRGyI?JppMUXxwh4`l`hHhgB7)U
zgv+=~G(1~er}q-h^DWf#-PXJ2e(LbDOxa&Ibm*VG`RhYxZ@0tloLhT7+cG)w@1#<J
z&#%8)R$s3zKW|l!^_`I{Sv#jmd4!2pvumifDlPPCF0k4A?{HtOcFf;Y_-dO?foKCk
ztPA|D?p7dI<Oa;JbAo9@b!xXfTQ~UgHX$5d2h39CZ>4za^njER$;J>zQT#U2`O2oz
zUr(6q)JZYaHD(OCmY0bH4e?jD*v)XhZ{PhX>2|`TTPpz1H*^iy+WG(Q_EuKMQj7!7
zON5O7#Z(-%Dx_<m2WYk5H0T&%dKj>sAz{J&A;yD+ID<cAwEU|H$CCArtC;5@J!79>
z>#wHpB#zgY!Dzwp-m0PYeZWnqK0tOVp3W1E+Yo=RtFq8GLHq6E4^$|aY;RLepB@T+
zb;zQRZw<e70J1*5X8fWS)yKCl2pBGYngrI7!Oo(ii6C!6j$-tFVc<H~h4{;M`}K>{
zonS*K`{&0X1D_Wh0<hDI5ewg=lpFmGoDyFeF_U$VcM3Ow&|>$X<fd7Y^S7+t&1ZU%
z>l`+dxhs2NEi%VN_Hf4HQSU!|PJ$n*W|MN>`S~ncD>59+U>aND1A9|`46`6_aUX$L
zo2|GZiL(CYwfecg;(=1KK_>sP3&hy<I@!_QOMy*y>!xmep7fotc{Fm}FRES%)Y#7i
z-n!3(Mu^XZ7F+R=AZPuVa6Vr@6M92_Ak4SVgz3_JCIAzBCM<OROjs{3Be>u4UG>|y
z`~Lm7&)J54Pv;+n_vr?t$j|$R&4?}k*X!%K=}rHXVeYz_cbxV8!2`}J4!5woS}{BV
z<E*K-GI1r1nSv~fjt}8xGrQr*dWpk4j<Y;}d%d*~0+(l<huY8i9;Xi2v>7~(W3Ple
zUgEE(19&M=(|9qokGcSe!7jkbuOfLU@8AXdZw*hRkw$5GJI0))3$HhPej&L<^Rt-^
z0?3uU^}fGa<HU5qWfEct@}z<b+~SJO{ZIA2{`;U-a*hGD!FqvR(kfi_ER;m59Q`n4
zo0{mm7LHv2nzijOh^Suj$DS?Qk0p=)`o6awcf2ae9~2)^zt((h&)4q!;Bl2#_&)rZ
zp3B}|etR`uzCRZ_n9w>6jT7RnPIV&<kQ(VVvaW`Ne6S5%@MGfp)3*S*ihuh>tPH5I
n$U2;QKB~K2fd(iYkYR_z%EEq=@pc>a<H-Fl(>AGBb2I<|kl-)o

literal 0
HcmV?d00001

diff --git a/phishing-filter-bind.conf b/phishing-filter-bind.conf
new file mode 100644
index 000000000..1addee3f2
--- /dev/null
+++ b/phishing-filter-bind.conf
@@ -0,0 +1,454 @@
+# Title: Phishing Domains BIND Blocklist
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+zone "1nvest.bigbantbaz.top" { type master; notify no; file "null.zone.file"; };
+zone "25116414.cc" { type master; notify no; file "null.zone.file"; };
+zone "365365news.com" { type master; notify no; file "null.zone.file"; };
+zone "365f09.com" { type master; notify no; file "null.zone.file"; };
+zone "750115.cc" { type master; notify no; file "null.zone.file"; };
+zone "823pages.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "95564339.awi.za.com" { type master; notify no; file "null.zone.file"; };
+zone "999fc.vip" { type master; notify no; file "null.zone.file"; };
+zone "a.yyyy.cf" { type master; notify no; file "null.zone.file"; };
+zone "aaaa.whilefish.xyz" { type master; notify no; file "null.zone.file"; };
+zone "accounts-microsoft365.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "accounts.0ffice365.support" { type master; notify no; file "null.zone.file"; };
+zone "aidanochka-tabys.kz" { type master; notify no; file "null.zone.file"; };
+zone "airbnb-clone-sahinur.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "akbarinewv2.morteza638n.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "alaindemeuron.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "alexa81o.github.io" { type master; notify no; file "null.zone.file"; };
+zone "alienv2ray.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "allegr0llokalne753724pl.art" { type master; notify no; file "null.zone.file"; };
+zone "allhrteam.com" { type master; notify no; file "null.zone.file"; };
+zone "amazon-clone-by-sudip.netlify.app" { type master; notify no; file "null.zone.file"; };
+zone "ammuvicm.work" { type master; notify no; file "null.zone.file"; };
+zone "amyr.iran-cyber-net.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "antaidossiersuivamendimpayeerf33.zynekcctv.com" { type master; notify no; file "null.zone.file"; };
+zone "anuragrauniyar.github.io" { type master; notify no; file "null.zone.file"; };
+zone "appeal-voilation-policy-issues.github.io" { type master; notify no; file "null.zone.file"; };
+zone "apple-id.cc" { type master; notify no; file "null.zone.file"; };
+zone "apri.154-203-197-141.cprapid.com" { type master; notify no; file "null.zone.file"; };
+zone "arvestcreditcard.embarkdigitalonboarding.com" { type master; notify no; file "null.zone.file"; };
+zone "asdfjeiod.com" { type master; notify no; file "null.zone.file"; };
+zone "ashleyproberts.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "astounding-trifle-b88a2b.netlify.app" { type master; notify no; file "null.zone.file"; };
+zone "att-101397.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-102641.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-107756-104508.square.site" { type master; notify no; file "null.zone.file"; };
+zone "att-108102.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-108651.square.site" { type master; notify no; file "null.zone.file"; };
+zone "att-mail-101246.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-mail-105533.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-mail-109459.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-servicce-mail.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "att-sign-in-107078.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-yahoo-mail-105061.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "attcom-101415.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "attinc-101356.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "attmailonlineaccountupdate.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "attnet-100294.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "attonlineservicesa.wixstudio.com" { type master; notify no; file "null.zone.file"; };
+zone "attonlineservicesa.wixstudio.io" { type master; notify no; file "null.zone.file"; };
+zone "attweadminservices.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "auth-sharepoint-asr.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "avertisystems.com" { type master; notify no; file "null.zone.file"; };
+zone "b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev" { type master; notify no; file "null.zone.file"; };
+zone "b35ccc.com" { type master; notify no; file "null.zone.file"; };
+zone "b35lll.com" { type master; notify no; file "null.zone.file"; };
+zone "b35www.com" { type master; notify no; file "null.zone.file"; };
+zone "bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz" { type master; notify no; file "null.zone.file"; };
+zone "bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz" { type master; notify no; file "null.zone.file"; };
+zone "bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link" { type master; notify no; file "null.zone.file"; };
+zone "bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz" { type master; notify no; file "null.zone.file"; };
+zone "bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link" { type master; notify no; file "null.zone.file"; };
+zone "bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link" { type master; notify no; file "null.zone.file"; };
+zone "bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link" { type master; notify no; file "null.zone.file"; };
+zone "bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link" { type master; notify no; file "null.zone.file"; };
+zone "bbf-alpha.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "bet365t3.com" { type master; notify no; file "null.zone.file"; };
+zone "bet938y.com" { type master; notify no; file "null.zone.file"; };
+zone "bet958c.com" { type master; notify no; file "null.zone.file"; };
+zone "bhngfd3.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "blackdasblacks.shop" { type master; notify no; file "null.zone.file"; };
+zone "blsckdagsever.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "bridge-9wdpjmsoa.pancake.run" { type master; notify no; file "null.zone.file"; };
+zone "brubreumummeddoi-4514.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "bscusdty.top" { type master; notify no; file "null.zone.file"; };
+zone "bsozvycr.icu" { type master; notify no; file "null.zone.file"; };
+zone "bt-102368.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "bt-106861.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "btjfh.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "bussinessaccounthelppage.click" { type master; notify no; file "null.zone.file"; };
+zone "bwfujmww.icu" { type master; notify no; file "null.zone.file"; };
+zone "bx.sfdsb.icu" { type master; notify no; file "null.zone.file"; };
+zone "c.cting365k.cc" { type master; notify no; file "null.zone.file"; };
+zone "c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev" { type master; notify no; file "null.zone.file"; };
+zone "can-post.cyou" { type master; notify no; file "null.zone.file"; };
+zone "celery.sa.com" { type master; notify no; file "null.zone.file"; };
+zone "cen4-six.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "cf-worker-pages-proxy.1352562939.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "cf.13084493.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "cf.iwoai.cc" { type master; notify no; file "null.zone.file"; };
+zone "cfcf-8.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "cfr-reed-taxi-wayne.trycloudflare.com" { type master; notify no; file "null.zone.file"; };
+zone "chain-trt.online" { type master; notify no; file "null.zone.file"; };
+zone "chainsolapprove.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "chat-wa.xyz" { type master; notify no; file "null.zone.file"; };
+zone "check282.tempisite.com" { type master; notify no; file "null.zone.file"; };
+zone "chore.pink" { type master; notify no; file "null.zone.file"; };
+zone "ciftcininbankasiziraatbankasi.com" { type master; notify no; file "null.zone.file"; };
+zone "claudiorojas.cl" { type master; notify no; file "null.zone.file"; };
+zone "clivenicoll44.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "cloudflare-workers-pages-vless-a2j.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "codt.digitasianetwork.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "coinbase-com-18690.subttrepimop1005.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "coinbasewallet-verification.198-46-89-184.cprapid.com" { type master; notify no; file "null.zone.file"; };
+zone "company0rder943.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "completar-la-verificacion.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "conductibili.fun" { type master; notify no; file "null.zone.file"; };
+zone "correosprepago.bnext.es" { type master; notify no; file "null.zone.file"; };
+zone "crenadenuddoi-2258.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "cryptorectification.com" { type master; notify no; file "null.zone.file"; };
+zone "currently5267.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "currently70.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "currentlyatt909.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "d.afirkz56924.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "dio.azrealonce.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "ditgong.com" { type master; notify no; file "null.zone.file"; };
+zone "doc-online-1881.on.fleek.co" { type master; notify no; file "null.zone.file"; };
+zone "docsignauthorizationrequest.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "docusign.com.bestfinancebroker.com" { type master; notify no; file "null.zone.file"; };
+zone "duang-5dh.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "duvhkeq.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "easyaccesscommagebn.com" { type master; notify no; file "null.zone.file"; };
+zone "ebay8787.shop" { type master; notify no; file "null.zone.file"; };
+zone "ee-account-home.web.app" { type master; notify no; file "null.zone.file"; };
+zone "ee-service-help.web.app" { type master; notify no; file "null.zone.file"; };
+zone "ee-service-portal.web.app" { type master; notify no; file "null.zone.file"; };
+zone "eln3.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "enormous-orchid-howler.glitch.me" { type master; notify no; file "null.zone.file"; };
+zone "espaceparticulier.life" { type master; notify no; file "null.zone.file"; };
+zone "ets3qe9ooms8t6i8.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "excelorgo.com" { type master; notify no; file "null.zone.file"; };
+zone "falabellacom.dominiquepg.com" { type master; notify no; file "null.zone.file"; };
+zone "fdesq4.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "fdsfjiwe.com" { type master; notify no; file "null.zone.file"; };
+zone "fdsjfkweow.com" { type master; notify no; file "null.zone.file"; };
+zone "fekoulamevebouna.freewebhostmost.com" { type master; notify no; file "null.zone.file"; };
+zone "felomane390.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "ferngos.de" { type master; notify no; file "null.zone.file"; };
+zone "fieg.84yr483rhfwieujro348ur84.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "figinstenatecom.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "finansfaizsizbasvurum.online" { type master; notify no; file "null.zone.file"; };
+zone "forested-mirage-samba.glitch.me" { type master; notify no; file "null.zone.file"; };
+zone "formtools.com" { type master; notify no; file "null.zone.file"; };
+zone "fortradesetup.hamidamnaie.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "free-5436781.webadorsite.com" { type master; notify no; file "null.zone.file"; };
+zone "frogsrus.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "fshraha.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "fukshumx.world" { type master; notify no; file "null.zone.file"; };
+zone "gazruinv.web.app" { type master; notify no; file "null.zone.file"; };
+zone "geaoolsv.pink" { type master; notify no; file "null.zone.file"; };
+zone "geminiwallete.godaddysites.com" { type master; notify no; file "null.zone.file"; };
+zone "ghjhyu.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "gimennlouin.gitbook.io" { type master; notify no; file "null.zone.file"; };
+zone "goldenrod-rowan-submarine.glitch.me" { type master; notify no; file "null.zone.file"; };
+zone "gorgeoushome67.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "group11-vvip-hot-girls-combi.viplch.online" { type master; notify no; file "null.zone.file"; };
+zone "gruppeflorian.com" { type master; notify no; file "null.zone.file"; };
+zone "hanisfir.shop" { type master; notify no; file "null.zone.file"; };
+zone "hedayatfreedom.hedayatkhakpour.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "hello-world-morning.freekite.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "hello-world-muddy-cloud-f45b.mfoster0425.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com" { type master; notify no; file "null.zone.file"; };
+zone "heluapla.shop" { type master; notify no; file "null.zone.file"; };
+zone "hemanlau1.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "hezhouruan.552008598.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "hgcdhbxnf.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "hjrhd.top" { type master; notify no; file "null.zone.file"; };
+zone "hk04-123.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "hkmqo.top" { type master; notify no; file "null.zone.file"; };
+zone "home-100317.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "home-102207.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "home-107257.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "homelogin7t6sdfcgvhb.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "htaflytz.baby" { type master; notify no; file "null.zone.file"; };
+zone "htaflytz.black" { type master; notify no; file "null.zone.file"; };
+zone "httap.l-teiegram.com" { type master; notify no; file "null.zone.file"; };
+zone "httpsbellsouthnet-102649sitecom.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "hup6r.com" { type master; notify no; file "null.zone.file"; };
+zone "hy.fuckgwf.eu.org" { type master; notify no; file "null.zone.file"; };
+zone "hypophysecto.fun" { type master; notify no; file "null.zone.file"; };
+zone "hzuayvvl.red" { type master; notify no; file "null.zone.file"; };
+zone "id2.xbenihime.us.kg" { type master; notify no; file "null.zone.file"; };
+zone "ikergalindez.github.io" { type master; notify no; file "null.zone.file"; };
+zone "info-delivery-bg.com" { type master; notify no; file "null.zone.file"; };
+zone "info-trackingcs.cc" { type master; notify no; file "null.zone.file"; };
+zone "info-trackingiax.cc" { type master; notify no; file "null.zone.file"; };
+zone "informed.deliveryhbo.top" { type master; notify no; file "null.zone.file"; };
+zone "informed.deliverytcw.top" { type master; notify no; file "null.zone.file"; };
+zone "informed.deliveryxs.top" { type master; notify no; file "null.zone.file"; };
+zone "infringement-service.com" { type master; notify no; file "null.zone.file"; };
+zone "instagram-clone-in.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "interbenefitprestaciones.referidosweb.click" { type master; notify no; file "null.zone.file"; };
+zone "iouwerty.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "isnworldwide88.com" { type master; notify no; file "null.zone.file"; };
+zone "jaydeep8806.github.io" { type master; notify no; file "null.zone.file"; };
+zone "jeanandpeterwilkin.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "jetconstructionsgroup.com.au" { type master; notify no; file "null.zone.file"; };
+zone "joeandvelma.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "journey-x-pro.com" { type master; notify no; file "null.zone.file"; };
+zone "jsdfchkdsds.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "jshattkee.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "juliusmasih27.github.io" { type master; notify no; file "null.zone.file"; };
+zone "jung-sohn.de" { type master; notify no; file "null.zone.file"; };
+zone "katiebllair.wixstudio.com" { type master; notify no; file "null.zone.file"; };
+zone "katiebllair.wixstudio.io" { type master; notify no; file "null.zone.file"; };
+zone "kdlmo.top" { type master; notify no; file "null.zone.file"; };
+zone "kenzmail0.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "ketura2010.github.io" { type master; notify no; file "null.zone.file"; };
+zone "keucroilluxibrou-2718.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "kuconlogin-ui.godaddysites.com" { type master; notify no; file "null.zone.file"; };
+zone "latam-onipojes.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "layanan-bntuan-resmi-dna.prbu2.my.id" { type master; notify no; file "null.zone.file"; };
+zone "ledger-com-updatefirmware.aparecidovisentin.com.br" { type master; notify no; file "null.zone.file"; };
+zone "levappoprauqueu-4688.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "leyoixoimmecou-5619.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "linkbokepviralindo009.vipp.blog" { type master; notify no; file "null.zone.file"; };
+zone "liveairdclazmersn.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "lo6-cas-projects-64947843.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "maatamicklogginns.gitbook.io" { type master; notify no; file "null.zone.file"; };
+zone "madebybmr.in" { type master; notify no; file "null.zone.file"; };
+zone "madhu821.github.io" { type master; notify no; file "null.zone.file"; };
+zone "mailupdate87.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "maine619.github.io" { type master; notify no; file "null.zone.file"; };
+zone "mainnetverify.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "mazulyta.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "megrebeikenneu-2106.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "mendhfjpl.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "metacareer.com-case37169314276.com" { type master; notify no; file "null.zone.file"; };
+zone "metagalaxy.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "metamacksiologus.godaddysites.com" { type master; notify no; file "null.zone.file"; };
+zone "metemrsblogin.gitbook.io" { type master; notify no; file "null.zone.file"; };
+zone "meyetamaskiwalt.gitbook.io" { type master; notify no; file "null.zone.file"; };
+zone "mianfeijiedian.lawcpacpv.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "milanharvestfestival.com" { type master; notify no; file "null.zone.file"; };
+zone "mirobitsgt.github.io" { type master; notify no; file "null.zone.file"; };
+zone "mocp90.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "mostafa2.mehdi84888.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "movie-firebase.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "mubki.hp.peraichi.com" { type master; notify no; file "null.zone.file"; };
+zone "my-site-104564-105934.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "myaccountsignup.net" { type master; notify no; file "null.zone.file"; };
+zone "navy-nose-4544.typedream.app" { type master; notify no; file "null.zone.file"; };
+zone "net-flix-front-end.netlify.app" { type master; notify no; file "null.zone.file"; };
+zone "netzero-webmail-105996.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "new-currently-1-23-24.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "newattupdatemailboxkidlyverifynow.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "nfty-proj5.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "nnbsscnaceesngsetr.com" { type master; notify no; file "null.zone.file"; };
+zone "occinamete.cfd" { type master; notify no; file "null.zone.file"; };
+zone "odovsccs.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "officalourtime.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "office36503.com" { type master; notify no; file "null.zone.file"; };
+zone "ohscorgza.github.io" { type master; notify no; file "null.zone.file"; };
+zone "okm.znt.temporary.site" { type master; notify no; file "null.zone.file"; };
+zone "oliver752.github.io" { type master; notify no; file "null.zone.file"; };
+zone "online-e-commerce10.com" { type master; notify no; file "null.zone.file"; };
+zone "online-e-commerce11.com" { type master; notify no; file "null.zone.file"; };
+zone "online-e-commerce12.com" { type master; notify no; file "null.zone.file"; };
+zone "online-e-commerce5.com" { type master; notify no; file "null.zone.file"; };
+zone "online-e-commerce7.com" { type master; notify no; file "null.zone.file"; };
+zone "online-e-commerce9.com" { type master; notify no; file "null.zone.file"; };
+zone "orange234.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "orgmail.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "ourtime.datings-information.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfocl.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfocs.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfoga.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfojq.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfolw.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfoor.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfooy.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfoqv.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfove.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfovt.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfowu.top" { type master; notify no; file "null.zone.file"; };
+zone "p.updateinfoxb.top" { type master; notify no; file "null.zone.file"; };
+zone "p.usertracktxz.top" { type master; notify no; file "null.zone.file"; };
+zone "pages-108-tg-cfzz-ip.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "pages.tempisite.com" { type master; notify no; file "null.zone.file"; };
+zone "pageverifycenter.com" { type master; notify no; file "null.zone.file"; };
+zone "patjimmy323.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "paypalloginin-usa.blogspot.com" { type master; notify no; file "null.zone.file"; };
+zone "paypalloginin-usa.blogspot.hr" { type master; notify no; file "null.zone.file"; };
+zone "pcmag.anycubic.vip" { type master; notify no; file "null.zone.file"; };
+zone "port01-acf.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "portal.chiaveggies.com" { type master; notify no; file "null.zone.file"; };
+zone "pruhuffopraussou-5681.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-2801359d2be54bfd8701132626efeb73.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-3096005ebeae423182ccd89665564d8a.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-46a5f86348ae4aceb3591d126020999f.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-51f896deb233450089fc1a520e6ed957.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-682ad3b65d944376b919745aae3c56d4.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-722720be67154192a1102b2cf085d306.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-7d056bfeb6b04852801553620fe62c0a.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-873fc6a3edb941c6a17f50911dfca518.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-aab4be29317b4ec296517a557db12622.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-ba5a046c69974217b0431bca4ba43740.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-c59cf4e950b142949df8861e60b3689d.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-e5855431d98545b38408f52af50ab8a1.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-ff0271d87324424a9aec83337e844a54.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "puertaselectricasprincipal.netlify.app" { type master; notify no; file "null.zone.file"; };
+zone "qaffixledger.com" { type master; notify no; file "null.zone.file"; };
+zone "qbstdfda.com" { type master; notify no; file "null.zone.file"; };
+zone "qpownthenewyhadvanceweb.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "raj-tiwarii.github.io" { type master; notify no; file "null.zone.file"; };
+zone "restrict-policy-nonadherence.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "reviewboss.github.io" { type master; notify no; file "null.zone.file"; };
+zone "rfgxg.top" { type master; notify no; file "null.zone.file"; };
+zone "riaayaoman.com" { type master; notify no; file "null.zone.file"; };
+zone "roadmap.binarydesignhub.com" { type master; notify no; file "null.zone.file"; };
+zone "robinhooldloegins.gitbook.io" { type master; notify no; file "null.zone.file"; };
+zone "rouzhda03.kambizmedia.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "rsjxzl.com" { type master; notify no; file "null.zone.file"; };
+zone "rtyuiuytgf.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "rubinhuud____llginnh.godaddysites.com" { type master; notify no; file "null.zone.file"; };
+zone "rudra-choudhary.github.io" { type master; notify no; file "null.zone.file"; };
+zone "s.team-s22.com" { type master; notify no; file "null.zone.file"; };
+zone "sadekk.com" { type master; notify no; file "null.zone.file"; };
+zone "sajsa.icu" { type master; notify no; file "null.zone.file"; };
+zone "salarahmad786.github.io" { type master; notify no; file "null.zone.file"; };
+zone "santanderpod.fsthosting.com" { type master; notify no; file "null.zone.file"; };
+zone "satinnaaoabbs.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "satyarthi.uk" { type master; notify no; file "null.zone.file"; };
+zone "scarce-army-wide.on-fleek.app" { type master; notify no; file "null.zone.file"; };
+zone "sdfvgbcvb668.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sea.6e2efhxz.eu.org" { type master; notify no; file "null.zone.file"; };
+zone "secrbnsuppotyu9.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "secure-ledger-m-auth.webflow.io" { type master; notify no; file "null.zone.file"; };
+zone "server.2rk3.com" { type master; notify no; file "null.zone.file"; };
+zone "server.pxs7.com" { type master; notify no; file "null.zone.file"; };
+zone "setshinobi.vip" { type master; notify no; file "null.zone.file"; };
+zone "sextelegramxxx.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "shareorder711.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "shaw-101342.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "shaw-103098.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "shaw-106054.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "shaw-106665.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "shawsyncmailservercommunicationworkspace.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sherman-relate-rev-baskets.trycloudflare.com" { type master; notify no; file "null.zone.file"; };
+zone "shobhit245.github.io" { type master; notify no; file "null.zone.file"; };
+zone "shopifysite.cn" { type master; notify no; file "null.zone.file"; };
+zone "shoptkoo.com" { type master; notify no; file "null.zone.file"; };
+zone "sign-in-att-108611.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sign-in-att-108611.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "simxtrackredirecttszz.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "sjhsjjs82.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "skill-meta.com" { type master; notify no; file "null.zone.file"; };
+zone "sky-107842.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "smithjamessv328.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "socx.ly" { type master; notify no; file "null.zone.file"; };
+zone "sparq.eu" { type master; notify no; file "null.zone.file"; };
+zone "spicyhotcoolsoup.s3.us-east-005.backblazeb2.com" { type master; notify no; file "null.zone.file"; };
+zone "spotifyl.vip" { type master; notify no; file "null.zone.file"; };
+zone "ssfgsfg.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "sss.k999955.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "stonemartin1001.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "stringroll.com" { type master; notify no; file "null.zone.file"; };
+zone "sukienffvip.doiqua-garena.io.vn" { type master; notify no; file "null.zone.file"; };
+zone "supportsecurity981.tempisite.com" { type master; notify no; file "null.zone.file"; };
+zone "talktalkserver897.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "tareq088.github.io" { type master; notify no; file "null.zone.file"; };
+zone "tbsl.by-on28.my" { type master; notify no; file "null.zone.file"; };
+zone "tcaconnect.ac-page.com" { type master; notify no; file "null.zone.file"; };
+zone "tejlksdoisd.com" { type master; notify no; file "null.zone.file"; };
+zone "telegcm.me" { type master; notify no; file "null.zone.file"; };
+zone "telegramjessica.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "telegrampx.com" { type master; notify no; file "null.zone.file"; };
+zone "telegramsexgroups.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "telezelm-ivee.icu" { type master; notify no; file "null.zone.file"; };
+zone "telgramsignal4.sg-host.com" { type master; notify no; file "null.zone.file"; };
+zone "telstra-102379.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "telstra-104033.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "telstra-104394.square.site" { type master; notify no; file "null.zone.file"; };
+zone "telstra-106968.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "test1.workersdev40050.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "tg-logrom.com" { type master; notify no; file "null.zone.file"; };
+zone "tktk.tktsk.shop" { type master; notify no; file "null.zone.file"; };
+zone "tokecn.im" { type master; notify no; file "null.zone.file"; };
+zone "tokeni-1601.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "towrewds.com" { type master; notify no; file "null.zone.file"; };
+zone "tpwalllet.com" { type master; notify no; file "null.zone.file"; };
+zone "trustwallet-zendesk.com" { type master; notify no; file "null.zone.file"; };
+zone "tuviaje10.com" { type master; notify no; file "null.zone.file"; };
+zone "tvjbqiyv.guru" { type master; notify no; file "null.zone.file"; };
+zone "twcht.twimobie.cc" { type master; notify no; file "null.zone.file"; };
+zone "twimobie.cc" { type master; notify no; file "null.zone.file"; };
+zone "uedy.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "ultsyncingsolana.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "upheldlog8.godaddysites.com" { type master; notify no; file "null.zone.file"; };
+zone "upholdloginorofficialsigin9.godaddysites.com" { type master; notify no; file "null.zone.file"; };
+zone "upholld-lligon.godaddysites.com" { type master; notify no; file "null.zone.file"; };
+zone "usol.shop" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-cgkzkukp.vip" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackaxd.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackbrs.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackdht.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackgee.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackhsk.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackivo.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackjjx.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackmra.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackmvz.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackuqg.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackvgb.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackwbv.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackyqb.top" { type master; notify no; file "null.zone.file"; };
+zone "uspsdana.com" { type master; notify no; file "null.zone.file"; };
+zone "uspsdant.com" { type master; notify no; file "null.zone.file"; };
+zone "uspsservicetrack.blogspot.co.id" { type master; notify no; file "null.zone.file"; };
+zone "uzomadj.shop" { type master; notify no; file "null.zone.file"; };
+zone "vedi.154-203-197-141.cprapid.com" { type master; notify no; file "null.zone.file"; };
+zone "vgmrm.top" { type master; notify no; file "null.zone.file"; };
+zone "vkkvdkdcmm.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "vl1.spaceysen.cn" { type master; notify no; file "null.zone.file"; };
+zone "vobroffexagru-4404.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "vrvtn.top" { type master; notify no; file "null.zone.file"; };
+zone "w1.5114559.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "waassistance.com" { type master; notify no; file "null.zone.file"; };
+zone "wallet-diagnostic.com" { type master; notify no; file "null.zone.file"; };
+zone "walletsecured.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "web-lupqrbm0k-uniswap.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "web.tlgrm.app" { type master; notify no; file "null.zone.file"; };
+zone "webmailserv3038z.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "wk.xzte.eu.org" { type master; notify no; file "null.zone.file"; };
+zone "wodjrvrisixc.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "worker-dark-queen-529e.servers5555599.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "worker-hidden-frost-ba39.yoveli7450.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "worker-site.aopages.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "wsa.osmqone.org.cn" { type master; notify no; file "null.zone.file"; };
+zone "wwwwwwsasasasasmmmsszz.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "x.tovip.eu.org" { type master; notify no; file "null.zone.file"; };
+zone "xhjxkj.cn" { type master; notify no; file "null.zone.file"; };
+zone "xixiajiaju.com" { type master; notify no; file "null.zone.file"; };
+zone "yahoomailquthorization.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "yungtee3.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "zagbasamothega.dnsget.org" { type master; notify no; file "null.zone.file"; };
+zone "ziraat-kampanyasi-besbintl.xyz" { type master; notify no; file "null.zone.file"; };
+zone "zxl.cbbnbbc.nyc.mn" { type master; notify no; file "null.zone.file"; };
+zone "zzpov.top" { type master; notify no; file "null.zone.file"; };
diff --git a/phishing-filter-bind.conf.br b/phishing-filter-bind.conf.br
new file mode 100644
index 0000000000000000000000000000000000000000..37f6d690c5bd41257e1198b24fd091bbac9b4acd
GIT binary patch
literal 5788
zcmV;N7Gvpx%@Tn8tr_&)=W^<r*^uBXNu0TDNcjN|rA4p_+Pby>H>-x+w`wI1g>%T2
zNF+icdGo6(^R_b0Q9aF(a3-8HcfvWx9@hueZ&g4=wu}re%)x!T!}1Uo7uj;;$ThZP
z$&w{YMn=ZV$jFwF$bJk}x~039cu)~JX-7Z3E?eAjKfnHV4RsA^dDV8jzJCAD{`wDJ
zgt9Y++J5-y^-sqhJoodfas3@+WMokPI1E3t@#kUq_aA<G{n7Ub1?$hR@#Wxt{noBV
zFMmnIqRHOB{libMY#(yKf<M33){eFqTSALq%5cvP@q&URnWJAFsbW8S`iGxhz17V|
zF!-s0p8DaZ7eRRS=T}jXKZW<#|K4i}ZSDB{(5$h~8@G~|2YyvNEA$VcL9z26D)NuK
zejL+@wNVom1F0E!Xv@csum5|Q4=ugQ_?BN@m&hP?zf%6?Wj8W>{b)MFDHcwDw*KQU
zumArAX_+xOj!KMzT8k>emE=ki1mp<wJyk!<m~uJEVH{<~Jk2=qELZwfY7S3~({z?n
z3C?E<SD+8%vT*Y}drQwi0Yw9P-}g<ezgq(Upz&d#JDnW;-p?(I!8NR8<bhG9M7fgm
zLNxI%HwS-|4&Dcg53FCpd+>t;<G~W#fHW|7rCTAK4nr}?5F2wsQeh3L7kXl`7%3c8
ze!ATZl#uW`8QpVf_<-U%(JPk?3zhp2!C35&9ec@%Ug6vC<JQ~0h+oiSrX6O2A!BTS
zfazof?uNa1w8kgOGQ^lShzTdjCnk<afvkcU*D@yKmf)j1yfcE@Wo}Zt3x}QLWMlC6
zeSF{h8SG9&h{(FfU1%tfh`kLKlCaU`?c3BKxLj+%QhPXI$K=9(z>Qcu=k&P~Zq~N5
zxZ6YO1(pImg&PXV9&sE9k(@b1esw?s*ewzEN{;<x8Ic4xU=lmtpF&3|2pc#V=ZTDB
zr1rR!jJU<i3+F=_V_<p*^b(;CHb!=s6Q>Cr6Y9S5T%CVo$cb(rb&Yr*B^xZQc84pq
z<(@LzF-R-HM<hmTV5Uv)Z;gz@$meOy#ZNdvY!_2vgkz^kDl!g24w_D0IDJD#enCIU
z^<a%wa!hKlLx@#o5)%p-b_=EC9Bi6}oMAEa)shvFO2IP1OC&6bghX*B4U<kdk)$jZ
zxlV&>CQsVDKUy@3QR2QUB&!pb#0MLdK`>^WPU$77QIW7QS~Rd(B%UUmlA(_k`uys)
z?n1_oIrN9ET`1ymPEwS0*xO2^Lr#Q0GYHfv%-V^i1xXUFtl{4?qmeiZM<kP;2n&{I
zg^X|o)(_4ZH%(+1$d35f#lA&9cDjYK9ou`Np)seqHC$S2bCNZeF-A-v3cW{v7x=AU
z!04|n_4jj}`QDlMu2OAG(EXQ`iHFPV;bePoxNLlC*RiLj0u6_+)W?l{gDFN}iJ8mu
z!q)2%JDi_0FKUy=b%uy2FPm(Bu2Vej>vP+$C7lA>2|~a>v9MqcCLi`Z_lL#L6J<P)
zBE2)mmDuySzgsrOZtIbRSX8<Kthoyfjk}BZaPBs9Ss>mgle=yBE(-0w#J5Om{g$O7
z-lpxYvuMt(sm|EJl2PAJk&yR!FuU$TvL-ACx4~!1M`mwv#+shbb$-g{l-Kec-^dU9
zvB!2VpVM5Jbr8(QhE$`p>{;FPUT$0Df&PQsKuTO)$8~)ITlRM{k5T<?F3gv{PSeCU
zF&(aaayZ&~bp~;Lz%C(APs`t_2+3rY-a|bzz+B9VhZFU^oA+VDmwmX|aIY?8!y#P!
z{pr$*E2ZO%f-(FyR0zKDWI08Ku|gP>8z$R$r<QYUGuJn&`&MdO18Z8m<FYHV9^*Tx
zUyDi?l@L*$t?yW_br=~^c^WLiElB3e9q+wnpa&!i8`9Df?pZ`P1^eFj9i7X82ssMk
z%WJj0x^^$jl%A>iId5BNu>F}#zfIvv1Hr40(({!nnD+K73mTYSE7Lrv^9bS}4v5mF
ztEhPA{9eAl_v@;eynbo*t{PlrX{l`?EnLY>e)p$XKCo#R9pTD4B1YuIAOpf?&QO9F
z&`Eyya6Swdmi}HpjTtGe3jSGG5O3zNHfrx&F8RfX<)(Fstr09HL2CH+4o_K6gxW6Y
zAiD)QO8(w-<dR9nW<HC&+luvc<bxJs=4dkwSB5}m74X&*JwE(Y>kBD}jx_iNa>1RD
zwsId!1dl>CR0`O;LP(^QMyKGo_}*J{ydng2II$FRx<VrtaOFhpBVd|Q<)X2N?mVA%
z%?0Vf74EdbHyct&S~mNkh9?w&_5<8xx>0wgfF-}7QXA2=iEv^HHpeK0sQ)rjX8p#X
zp82WBV*>&9rlS|KYjhpu=^8+1M~<F@=L+;I5<%o_N~?LGwVT!o9%0YNI1F-k{92H`
zr4c=+4nfCR6QPKn$*9GW6w_~NgrPVrv*64NV7??`gF+%?<gArp7<ye!uG@AsBqT^Z
zBh4=N{V3Oq;U6rS8eOpTC|0z)3MO!vI%94FV^YI^u;o5lE@&HRpjMaYMZ2;l;w_n)
zNWj6X)im7I0<<;{^J}|s6nrS#Bh}1AGX{}%08haMT}>?BrregiGW>$emaqcTlZ;xA
zG$-mK;zn&o4GT;lG7obJ4{;LRMICCR{=jA1cLRmMsiG&-BBjThGTu@&4bUMiM7niE
zssq>0b;A!r(B7pwu%6Akmh*T`yDuynxb>tbdCAj=WP0inm1mHmVOI7CaSc=;nexhn
z7Ifs2hxlqjOq{+$Ou2Z8|9p~*U4tWQz9JU7L|xkC=+3pXYaZh<JdR@|(qq6vHJ8yI
zx&pS!KRD;SSKU;Y3KbT=7Go~UQsdBrp0|k5SzK``fU^ysjz{lV1Kwf%hzu9jyXxQJ
z!mYTjzWsJ#zOWsETka8dJkevn0IKW0>q4{U+IE2k>OPtx<{c99d6-^AJeIWN`oP=z
zjDQQ(;x0n-vid7vf0xXK?nSc&hx)LDR2wE}NSYE55)6V<yLt#u4Ud6(_R{xxzUOnX
zDT+F>hXRZ0t^vD&4v7Q^nQY5BE_#D)&#*xBm5$N+L08y=gFQiDxu6L|i4<H-T0oq+
z0hi0UK77ebEnSta9(-L3tUy)KzSXtw--1jmI&1}B;3++%bFlRm1hN_LDU1;d4hVF1
zy$k7*9XKcU$0f;{Sl0J?_j)~S2|K0~a}P-~mP8!EJcHrY7hx*dk&-V+q;?Z?NP~n;
z`^>VkVD6O-gn6V4Me(^M_hTH%d4_|mxe=>4Uga>t1bdORqg{JE68fmH2l|*x0N(mR
zyFv=phZ0@U!40h^deP;b{wUa1*z6Uh=;**sYnVxc9}sInGWPSW2Bq6i(4D(=_z&xj
zcp(kleMV}_Aeh|e?!!XG;0jt9I;MP1yq@nv-6%e)tLhiYJy6&WmE(mCmjE8v7&{yh
z>R^Wyp^rVgzv2`4DAFNODQ$htkh3oFMp&#{%{O_WOs4C*tZvoWTerc+QU(o!Y}al7
z<Ye8MceG|0_^6W3Fq_8M07gwr0<qI=6H`;wdAppeA)Flze7xI3ZI&fK2HGTu&!ybp
zppi5TxD@jzVzdi0TVnD|)qew~#9TWIn>2Mb*?y>kNZiyZKy0}@#U5x55n+iQ`B?9Y
zwq<#L*{x59`#d8p$m5>if@Ab+FoiYjNPDGQHlty~vOqLCRNyg&S`W!*;wdBDn-~cQ
z!Rc7dCu!>%`jszf2l$>h%8rg^I@#6q+E>SGR<jo*{jD3gcOc#=96={?eUosCcMNuO
zOC`d}opS(o%p(N}$LO|YK_4r1mI2m{FlEHmZ)${)`-P?5LyRA4VqwA8MWR|`^xkm$
zy|6&*LACby8zDh*Za}JWg}4Qa<@dd@Im~eDqzn+JN1;EqjEs=niE)SI?#R6)yvbJ~
z2^S&oD7CO|uDW{P6z{r1Ya1fY*3e_<b%z>OHjz>xds;}%Ym%w9kqufv6C;FTK6D+3
z5i>p6&BcAB2sTWQwU-=%?Z}3$7x2d<LDkMAHte?K5M%!aQ*tM48Wj>&w{COd>&+oO
z$kaMQga$jwDIEEYHOXFtySF^m5tCYnL<-hD5SM@+#dJpZn+Cp+M|VnY(G#Nfek2As
z_|^Gp3I`Ol!R0elOf4*AkFo4=_X)?5j{-ezwG~7tUAMD{h<6U(9QGY;?nJ6_#(q>t
zo5>p<XDBT1lX)0kgK!+w8582x1x|!eoQ?48SZb00#9~&&f}U%;c%yBVC^3ski{)Rj
z1G%?_V7Hi;C8SiPzTnlWkmfdfp&{X_z}ht%dnD*CY5Pz@s~dsCEsj(wMIytLuxYKy
z;8~>+c6fTc8(^G4;8M_F*f1sRgpGru#=5}dR{uVX&PmjIcC@;H4H{CZBcDb!^HH!#
z?V%D2MEKTJfDLvNqWTFr=B3vmExKdFz0___j%6Kx$2-}gZmU{KG|YztNFKvGpj#4Y
ziU^lIz#gZ}_%(ZokXAP+jxRpk681vLt`2orT0c;QY>#;$t?rR)0}qVuxVoT)*5Y^K
z?r??pP*7)BijH9FcC!V#9`wKh!LH#fZqkg1cN3w6cL-BvF5t2K_JtOPC3TNbXehz=
z=3yk|ibO~uC@SHK`zp+`1*z?-kKs$4PFg`QIbSzk!sgNQC32zhzhTNeD|k8KMKo|5
zh>V1B!o)sC&^%;7F7}xG-GYnvIBY`7*O(M0-)>e;1=(IspedPJZ32r}(^9dOb0k|E
z5{ww>QS0X;b&*{@tF<x=dg#?F5OXh1Po+T&z6+BbIJyQ{tIcJ3U=)bwZKqFa#zbB&
zV26k4=g7@6UlS(D5=phViBSsQ2|C$vD8{R!Rcr*c7^o#TwI(>fGjU_A2jiAmrsT4?
zmvXuW>Kb~vlBEu6pdtgqvwYA&0?;RFqvY;NjLKBdW&zOV{Q+&_1^VOy%G{vM=LCID
z1Z5g%b9K14zeZG4&&}3u?faaFwP*(z2Tj^StbZO7j=32{B!{suprkx2^>&Z^+!XB{
z_WkCJcl)se?gOF}0%Z2X3Q|{F>yaDw<kqs4uH9jwkZ#*ea1jpHKeaH71gs|`YE4vR
zy9PLMS%Ro2ew4m;@8$Z#TBYwg=n-z$9^H^ZXs$dOGkPnOw;(`U#w7a5G2ogORxtmE
z=!T4ZG=msM@BjjZo<Z1A4Wk)QNMrr3dWy+SnrR1MmGG8>=Cc?;3{IP2bU8YJjRp|}
zbK-6m;Rn>*NY0g+!SZ<+;D&2Ils&@im_aFwcX}Geku${<dNdP1eSbd8Y8WIM1Qd*q
znpx}gtdviGEu7BL?-B~6*NO`bD8QoOavt5t)W8OR|5DukD&t13M&$-=h2~bzvj9{u
zNaG}^AmCHw==H1|8pgSh!vGz@+YuxiP@$XU1igil+G;<IgBVbt7>pa0w#o^GlhGWY
zr_c->H%hu$2tFw@kMkrX0CFppE4bcbVr*iAK{bt1j5C9A9GGF&4_Z1tsMF`TK`P_X
zC^HBxn^N15k}EcNRLnNf-a<>O!HSuIL@~O_3?3YloKFC1_Uh)tChn~Qj?T<5L$C_Q
z$;)9LN9QfbQA1w=dIS*0c+Is?MuVQ&tfiC2SPtscI{+AAkj;FYj6lm~CC3S*oSYe%
zVhnl@0}=+IteWRZuyHbj;G?l13<y4n;nYtkIVl0cAqt$7F+yvLW|-N4i12N!oUIo)
z%fXC-&0=;Q+JYKU4TdW{JLoNNMBxS_l#)(3J<rPcLC8@#J!@|m^bJx=DfsASErm2(
zi$QzIz{>%Qh7rD__XC?orzg&YU;<`9tNBw6pcVpTzxE=Q1{Vfqvjht@rkWJe{MUTI
z`|#ByL1iZk`!TgS?*Nx~<jeKkdcx~oqk4g!rUb&HHc;SATDYKuAR7g}(w9oGExg3e
zloPlW3p(SFfSIO2!fY_P)?`oAFW+Ud94P_d1|w_SYB@fG+u@)lBq(=yG#1(m5%pmv
zq&4U0Vn%yt8P=@7u;l)%4hBv)*iCrivPtofZK?0?vqaq#rQJRByDfH7qV)3I*}MCn
z|M{Q)iBWS%omFMw(9&H2V%OZ=x&VSt>mYH-DeR;&w&l2j!)?Qq>brvH%GOXJLV<M$
zH))k_UIYCcmK>HNJL+q5!hjtShFAG~T_k`E#;gpMUWIl;X=|W;!xgbmERwj5oG9AA
zKyxCFi7@-?PpHnHi?OFso?~(IUDgOxAw$1@AN!_QMO#dY-DXF-`<&2q+Y1t<RIwA+
zOkj-<Aw5w^RABLpJYiNgo>GGDem=f+;w{SLQZ^1p#O8e)hC-_V?BDNKT1a9@kl3L{
zOygM1{t8#@5?urXhS@Sc%o=P{gA`zrQWAoCC%Z&Si4<0HM?E>*1MY%2Rg$ABeJr~|
z`Ugd5ND7|hI`~nj`hjf;b<JiCjR`qYt*`kAzSPH>uuZmYIp>naH*#WBNz&S`3pqZ?
z`C<RAm<>w&VH;X~o}Q;6-fMlot7c`fvV|Clt}HS(e%qKUq`R+h4{Z%vU5R>frkBq0
zSF`=nc%#YV0p&xnpCiHEYi>crd9}ogR8D&(;jTIHKuerlWE|l^!(zL~-;XzrrnOQ1
zQvFgHL9KKPbgzbV7eYdo(-`n}jKeUdmN%<hh`x@C?R)htVDkP92X#4oI*<k2%VtPJ
zrf1hn!vzy=u|`6>XFaZnLr{14Ovg|y^la|Y01XO$2CZSrHB%!sH_3@<y0`LYnuS>U
z9$4~*o81z|cigJWp*nO~MqKRf=E-4<YvGNx25ZpbAWr`HW;9k{ulTi8R-`8K!t<Ib
z2`8e!z;76n3BGdk9R;lmS)D5`+=R6ih>xPnG{a@c^$|n-%*#(k@L5C>z3fdNHOGnB
zXjt1g>?~}R5W^scVW_BWAu%r{@9!nswzko>wYs^WDr(Cc+C;;S$V-9fe#jtvzq{qD
zjMqsxMLWCzCLFQ#ohzOB>d)_k$zk2ly8UoJkTtqXv7K-83HM2tUOKMwyzJU&yTYDL
zKwm8~pfaJOv;6aVY!iOaT(%)cNJCrDj};d?^jWlMKJ3SuQHLSrVn7iDh}FBSV)MS5
zC^`~jSaL$2Zq2ce@_RiJQ&eJ??b-Tv%vKhWlG%8&@O46Wl^cUhsbG*>8yK`8f<bHD
zz@TtuFzEgMf=PP;(CB=?p#E9FpmQ-`&}B|Y{{EzryWs)1`y;r{dt<)7NH(uf<;HYk
zlHdO19o)N<HuFSx1Pz&<%U<@UmT+#{={9HgT{;n-aimKFle{Y?p}2QuGs3qB{K8T?
z5n>4Hndw>1mL8hp8mSydA!Ve$9Tz~Yp*Hm*)Vg3C`HBm$q_uMeEK<6rs(|AVXA2h^
z68rHfW*;`vQ>Ygl)eP!cS+}^99htKVRtY|E{m4i2eQosnG+aGz9anbma+XlT*QStA
zb&NPD8#z*?*AU5Oq_Rv=<p)J(+NV3D$FKyx0nXHRVt~)|&L_q&2}uLn9Vw<|$doJv
z`e+53>;CzDnz=0fpL=~6RX7LxzSlJ|2^t76eIQLoroUW%*Y|gO=eI<^;Tzx`;N3}=
z9DN0B@A`z`l3{qOkGrR(A=;vyOdnVbRM>M{aRKU5U9eRO4Xf#s4dNM=D%3y>RufW-
afkmg^^NrLRlZ>%6-Inh4KB?z9GMfv%e;UaE

literal 0
HcmV?d00001

diff --git a/phishing-filter-bind.conf.gz b/phishing-filter-bind.conf.gz
new file mode 100644
index 0000000000000000000000000000000000000000..2728595092316e876679dc220cc7c1fea9d6e361
GIT binary patch
literal 5958
zcmV-M7rE#kiwFP!000021GHRCkMlTkzUNmob}k7JY4mM*=C;@X2@nJUvU|y`NR}j8
z6e*LGWI4!xPf_l7g2m<(avJa3ZFgG_i^XEqQ^k*;zWyw|!e74reUfgHdi?s6SwL#{
z^~Zntw?BRTQ5ilf>HOdQ^!1ljfJgDmS5;I^R#sWj{kbT9smfo9;y>x{|MXg=Mfb~B
z`6b}|`upwr{MTUdxuNFgKhS6X*(|uiNbODDukM$he;%oMU^zF-&kLvnEM|jL9_`QT
zw?yCX>FIx!9JTxZJp7aTJW3${VK&Qym}W(NeJnixk6(l}ZQoeZ^9hxjtr_3&^AFYJ
ze*zB-2<2@we*K};J35~;IWo|m!8`Y6{lnLPefe|6uLT@6{OgxCUJfVy`1Olqp~v*5
zR2~rW@cs|Ke*O2a-+)zHmR(aeIp;Ajb=T5AjfV@pi9{NTdo0SWEy}Wu>{MUX!Ejvu
z`7UseLA$qY*VOerhePIXi0$G1ejj+g%c#+Z{G_j(4^bfWl^+xRb_kaJI^R)foSRL1
zmo1W8<ILd6BJu-~sWVn*Kd|#+7-(_^V7INSu|5h_3ebj6Gh{SZPnXYe3Xqm*mT^Vz
zG6&=ZHk<EA4n*a!#trw(z)G5>dzCNLYkWgj_c}j}ozX^HI4JVs0vFt@AyD~p(qr_P
zDSSa+n*7^YN)v}BQSX(7GtHz1rEs)`Qf3CF@z&P2s#$5EB27xEiG~N3XzeXPFTRb5
zotfK&Tyu?H5kj;%Ez7n`zFhVb2Xxw8S|CABhBhPllG&v8G(U}VlE5~(!-87KWrY*b
z4t1TsPmMF@evei)%~KdHY+9aR6PfF}BB*RPQh}E=kgFk9ac0uFjf^){8wxWiB7-HY
zR_0~fWK~gT<^7hGO_}r6!Wy6>Rciz5;T8q4B(NgKg&f%|Bq;#Mw3(q_2DTL2juXQJ
zrHL2VO$yJ|8nR{zH>q5q^Ax^9M>B8bK%>U`9x9e>K6{^)MOoi(-|;qy&=+V$95XrS
z?bdemqiKsich8NecpkvxfqN1-xwL)PmMO)glu3o*s+umbtl!9OOYZS^LB2QbJu$LF
zOQDG4)kG?~7;xpNGpU2M6}LXI&?ijB{HE@rOFTsgAs9$gwrO#t=9iyn6B}Mogwcu!
z>NipUr1R-Ull&wJUR3uct>7P_KPHF{E`RTdX_?;@J2LEhe;|lO>L1vt^t|~ga}&9_
z)ky6#aLLjag7MOw^xzU*XJ933@!p86t=b`LIPk3Ru*&KV_)rMJ#O;<9MYbTm`N$v5
zwl4WB?VMA`l=QL0l+`WgJh~TktLSg>D93R`qrfm*l&FSd*4yK~?&e&o<~6n5TmfU&
z-fDTUMefxi1&(ul^T)bq-^pCAgUbgsXV;6!62iA2L&M$iZWh>|yBWK=U5}kUiS5BP
zH}7L_-r_YFzZ|398}vIg&F><}SV^{4?Ynxv&u68cZ`G=Owe29-dg$u?JYTb6jL*}m
zn`Z3vA-@F?2eO>z{~Rd=WmOWI$6mDy_xP|K@?}(yMo;c#M~8Sazlg0;Y@dC%Rn=N)
z*1ev|)o}^Jr=@8t-|!m549}ZcP4#GY<@Eb`>`(jL+hcsMFIBJn$=CTDpXt@X1xWVf
z<o;C4tM?>skMZQTU2%9~%|PqAJJ#cP%4%F5n!Q=KrI%u`+jP6#>bbeC!aj{${eEl}
zsOb%Sl;-yK=5@2AuGX}}0B$#sUWy4<(YVLL9xIct>RGdyJS@c+R)ak1$8&3Wb7;Np
zs;Me`dF(Ky6l};qtrH}Q6AVMm(AUup4gJ0D&lE6iAMffXJr1HyQ@3IY_$<I(KV9yo
zxK#wET!14_LL-<+LMz3H+5HgfV{v5lD`*Zg=62I@xEr&$E!(o75JqNATQ;c-&+*L(
zf5tA#FlXL7Iip<iEehvKz3VPz-g04febQWo`NuFNqMvMYE)Zt-okL8h)?ko1SCYrM
zsbkn43-P4bQF-NV5RS#-kVm0ZY$R7VN7n9mT~xQC6hwZx$eI%Cj9~>?b+0RIp(#+b
zfeY6~aiHBE)6-WhRA`4pWSB!JZ91Rx)5Pfn71}d*(aUQbbwkPjE0Jg5L-r|XXP0x#
zR%>2oPAPQNcBJKds&Y3U2(;*%=3Xa+l!pNsYhwfHpidJU_+T@OC^8Q(nH_M_XS_YR
zGMgAwD6qwj{sdBI-unELen(?DqsW4+*)fp@Ch*kpSVqn#<a5<mIc3zVOySD;WJvvM
zBqQW<@I=j}CLTV6lW%DO{P&w^5fy~`i8T*!6cys2<c?Z$qZH+iiOT%{YsTL`!+krA
zT~S!epn4>-AtT6fUu!5%f<_-&OXf997(9pBRfO!jdy%`1c~9{|E@mx@qD|e@5f)>8
zMh;sJl3(j(d3o=%rpx*}$<U-)j-tnjjGl!RXzxv(h`0n)k{@iQ;I~fj(1}DL$Y`+<
zV_;Ire262_+*pgotv2keGC9+f6XximAT4STsJDxhS5@1m>bE^tPfm%t{+n6E4%J58
z*Iu1%)!kAJ{}0Stks1-azZdsJs3M0!+WFmf_o_)Xg+n<T-WJ1RF2{7Jel+o`!ou+E
zLj%Z(^d(V(d{Br)x=kc(SX>I_a%1KDGR$k=BGKS9mQO8gp^2b?oDuFIH6_u=tReMA
zt7QW{X04dgL?f~7(~QqFU<mG{{ExyVb#fs@7Cq;Y!P(#XTXd}iG5bzUv&k%Bb&JIg
zG(mnZ;$$J+O$-_K$AL-$s&t*mwox0qn9XIz@<|F(<w2QWKB};fHeaF`JGvD(MK<dx
zLsybul^o&_y{n&iH)e6Y?_{Dh2w$W~W5?)a#sL&CR0@Kl5N09fO@3&N_MC%2_iWO1
zb`WlO$OGeLa*ts?&_u6y4LF-k!Gb$7n$D09l#|jdnT+$xRm_ORS7sqzUK4jtlv)gE
z^=QIaM4?C=^S(K4)7N$y4vE{tn!4#X+b5$010^P!p3>kkm}MFx3IWg!Am5ZzQqHh%
zc3TqU_yh4vdPrmoC8}fCw!1J$<BSM;@y4j=1#bfKmKe4}zpeQMixjYEkjdy)F#oJ=
z>h9Ku;xGeYY!aijW^{H-wvBFZlZ6QqS=2VWX<J@FiAuyEjYNPqsrM9tc0>p!vqu+V
zMhwB=lUZXv8UaFFCI4u19H+;0ZmGs}lnZLD3@I?|ie<*kk^5stqbM7-Mr76;pfk6z
z<=Q--W?GLFw~_cupnxHVOr!>DwzVv?eU~dyBA<=YDi>-nOop=}isX*>cB9?a6$hdo
z5~6wa1X?=ED5H7xgaRnl4PJ;SO#c0Lo?u?hW>Y!2a7N2y*JRHYV|Cbd9GaZN==~mT
zY&7Art0b5WP0R9SFafY=sy1PJD+h;CSPHeo&j(T=13t6uT1v}B**v?gbHmuy1LUx*
zVY@N;sOZ5*wZW<&!Qc~9Qm~b2y!wRiiHwFa+`Mh8qUhUupG?~$7ZZEwAyGkQde}+C
zt~gI~5zbd8+FdZs%hN=QM4mD1)~w5v+tI&KtE%`NP;XV68dVvh!8hMIG4OGpSSq9O
zFsReNa|Y~80~B_W#36ZDbCr3d^uop;eYy_phOE|^%}<}Lzg5@V!^nh$BH=h~YZqNk
zo6daL_&gp%j$2ObAP#Ib>vTHg-o)1Wr}qZuzN_3~6u*_C%3ln%oQSLCMCa$IE=uyn
zBdBoT@SWx$l+=UC1coI&duA-U`f=e=%Ef0Q3EV}lpZ^t_gjWJMyP(K_ba-OX9{X=F
zJwK9TzFY!G;_;N(p#E`g1mnlr`EdAe`95kXQ?1%bO;6CQ!9n^p6dA51K?>0p2ejd2
zV@MaH_clqh9ccZTD7;9gFZy~&fqfr~_JC6$u6<v0X=eHZL4y`6<+S#Yie^-*1nhyH
z8?pr(R$A%Bm5^QQFA%k_>0wA@v7=fbnW#i?HJ;fkY(|O(3;bl7g%hcckv!Z4-p`oo
z_|Icga&z>coT^(QGurf+IWy_Vdg=^bQWq6a7M$$p(Ekk@*Wp>HB|1vXsNdnFSF)n^
zjDE9F6=jiTSZCb0HBzbVB^k}%th$w{HY3a%xrd9>XPZn~PgCG2`WP)&^B}Y|;wm_U
zr_7l4lnZARe-@bu4f$%>R^`i?%P3B$P>g7=Jwl(eeuK12xKoD&r|+EN+b$i&Y5Bc~
zZR1+oNgrmlust{2vZm`(jjO`b$d{4JLb=73wOx5ng)H^V%#7<U?L~J@QQSi<Z>5yW
zjB(IAl6w$b!FxgLbeim6nJ(jS?Qwlj0^%}Cx|&<xq+0r2AecH49_l_#B<&Jad>0VN
zPPW)w>PVbv>#H)2Hwv!uGdKEFTaChHTNo@fm4KSE>ubkaqFYrKcyH?TiI!*<94#`W
zgpuSVZ(b6OOk|0u#WXzDR0qx%BzjMN@3T24Od_mrWp}U3rn+@0&?#evSE^AWyd@kT
zl7?m?CG;u78G++s9lK&>stJzgC9<2tik44>DnSn@9}-1a4pDIM75KWRsuwR(fu25B
zpbYe1?ht+8cahdG>D}lP`2fS$dy&Yj3?;b(5WB!h$iC_OWTp3o*hILlkK6%GtyE56
zW3$YsHDA$!<Wuzi^ySRL6uNFU>6&me#Jx^=VZn0#xCc#+db@6eih<LxpP4oev!-pD
zJirJWuC9vIYpB=`O1`qe8tpT3wW;p8A(%H>lO4!@+`VzXr@YHT<B|Qg`!*}Hs?Mq=
zEk5POA65{0z|3owLY<!&tj&=q9_hiK7maHZ%@wVgb6f*Qbb55?qs!)obEzRji<}Qp
zxrm`$!*QOfeqq8DgP_c2y<9LQXt=kqh(6qGCdZ8(-;gE(n0d+H+Fu8WjD>IpFY=Bf
zbJcrqZIwvC&kpYEK*|z~xh$ep_&1PcddMm{WSboEmK-tq0$8#^Jz`ZSJC#LqCE?Xl
zKimR&a7m6Z`z&*O4yPm{J8S+45CNL2*s9%Mp}CZ3Bcw!oJX4~nBPE)#Nzu-fXwN+*
z+Kx%ld`h%qONsVk3D6wcYh~BJqVMzmoD?mKKJ#P7hxa>^Ynr_51Cs2ZaDe;pRgPhe
zGak=B<g%P~Ri|?KE1WB+s{#?~^$xCzt6Po#9g(M~68Fj%7<14k-<XWP9z2}<Das7^
zkjR8SCy6LWh8@RI#+Qj!yG`3LTs3{?uF88~CQ4S;jb%mC*WG}Ol>=|OfkOj5uc{V@
zo2a1fb6Z6#g_<erk`+x+!T``<)8C=tWmnKIv1u8pKT$I`aqFvI0PwCEcny7hZwhD%
z(X*lysd`hD3=x`2G}M=&z`kZ}U3csbyuKF&q-v%QcTnC%#jtJIAo^QTmUY!t9ny&1
z>O{@d#l0(v78wFIRbBQK=c2!NUAWI*^r?E&bkGicS2sO1LkTjYu9c#!x}qw=UH_??
zVWO<NvJ*wm$+mfazc+v#6fF}iy-w6jTMncmfvl?QrY(y8KJXISs=yA#y}c!BrfYlN
z54V!$4w9`E)VZ$booG6|vA#|<HeFwVs9D#Fd(+f6vgGo9Yuf**?Mj!NM|J2E+2sYi
zJk2d(uuZ&>0A8Pdgws9q&5!woZhA>qb?RVSLV%Vd09AGzM<W`hE{eLygsSSCv%D=J
z&$B`lU7s~vmRUtLjLdi?aEerDa~d9|5$9!9WWB12j%<21ylbFicpF@?T-GA%K^ABT
zYJjTksqUt!%f73iR8q7o$G`Hr=UJQQ60J4QscafFIhtl6`lf7HB^qejqD8TAA<&Li
zRMQhcFrkXJ%xl3^SF{z+Yv8<=0!=|t5Dg=ML&mDEYEh3194lkE0^#Z=0QH+?WW!Xv
zt{5<>aC+jr5v*y@v}G+C0;Q;i>3G}qOtm}{IV)P$%D!o;TveGUtEQDi!>C*_nF)rL
zU!vh}Tbx80<7i8pw&?|xY!q)eM{!70FI@al-Lj_V1)x>~>RnDWOy6fkjca~g7K{}P
zT2Nh6;_OrnW58)_8lG#wsabX2>JHr7>b29j^QH3Sf1vO6`OPAU-AaCh^Rk!G%weCm
zIRfq6s*Y;}xd+CDkfTZCII{3cygtBcP2(30Ii)BZ|Jzz(H7m$bSrv#lXg1PT?OGke
zIHHafwja(R_MmJvzy+beI$9(K<O1(h=oRcGRS2v7wDpREMZnRRS<Xg<T4<tpwKdy4
zO32D|f<@?i32|#Gr=xYR^NtQrTYqhOyZk^^BW1VnEVoVm4`1^fvW7;|bOpOf3rRPc
zO^zY>L89lu+X74Cis%@C1F5Dd9_8gAmbKEs3>L-(@F+@@&h0{zpH(XRHZtv<4+IPZ
z-C$hs&949kgrJHFBIX6wk2>9=^7UN@XqgkR%aw#A`_!z-my{^dRy*16gXnfq{mmL1
zea{NgN)@Uf&zqpO$*InY_37J&W}+p#$ZoSL`AJA!l0eH8D)IZ-9I@)DY+yw$>{P~I
z<pcFTT^$eQLx)N8EewxCI=z~on!WQpX*`8b{|FNZ_Ub&R67dMf)3=0CHuw2KEwi?v
zN3Al>{tu{C#feefwRRyq`c=>n#og8)vc0ggcnFoq#Hj4@B%{yZ6~66w&U6#1Gc5<K
z8;uyXFBm6UrAG6{&wiiy8jIv76I~+m+uP{3KNa0f`!8S;b<@lFM9V@uxIpXZ-F*{T
zo!97IFV_@Q&tcN@oP<2tc%&=Tmp8PgYeBt!!J?eo%c7wQn>o{+=^Ry6j`qTSaIX-D
zfydd=_%1Nvgep8&rkhI?A|-)+_93{K;Z`Dkd;NYsJ4dgit{?E5Ob~eBo?3iyGO7^g
z@ofprcx#?zIoXx^P?2j*d@CcjO<JvekCI5G(Vq>H0RpuwTJLm^GrQkb!Ou=n`>Sno
zx@fqEc?v(@^|NWIN<BQ@`zLD}nkCE&H>cuC%!<}xiJIZQgU+lgn(q|4<lCSj@>bOg
zpC8KH$#^K-&UQ;A#nbPm_=WZr_d+yF)Gz4!B)LgM!tMK0rR?Y~@K*DZ=v}E;X90pe
zml$|*XO_Al83~9L5fu#%JiSqB%0`s`0JDs=cjh0!Wy`3#i2j3GwWK{_ymCJOU2;&L
z7_PS&)e_`~WHzX=(F8Gm@>7bx+!Ree<;|qJHPuTj$f}c&_d(=%_vWzbkkQ^v{|*d*
zvx=X2c60uRr~g)~R4&>n>9<|Oiy)iZ?=SJu*PafWjWb$DH~Q2cdND$)NS+oVm`zEd
zs=saa;jkaFmdy++(XzI^M->7cLqqD8N7yHRGU(OVr+7lc>;kiFOFzymlX=#IS!tp1
zF-O~{&Ar{Xq;#0>X`9}$CzZbepOZM8(FAn=1{BuO0?N_T0uD;i0*+`3Ndfh4XaQfZ
zlNNBXKn%Fww1C@Zpat9qK?`_@ofh!=kX)e*OGC8jdvH7j&JWMmbBlkbaYquEY`0lJ
zzM>8EuB1+L&XOW4lf12yoaI#QiuPf#ORP-yY1-u^yJaErOzd->K4F2&sWs9ez8eu%
zcXh&Gw}i2bs-fp@cfZCyx+70{o-@wLy8Img&S~dEYEi5les<$h!?1?9c}D~Iji*YQ
z-Ql4`GH>sX6-zcH+p66GZz2(g)GR*_b|C=zjewO|+1ymV(PK)_8)4!j=ZBFmyIbw_
z*^yn{x2vTDJ0+h@sWst6tJ1F@)A8_X>Gb|P*r=t%fqIMjng}S{^fJ4eb<OC!3_n9X
zj|j|Hi>aU;q{c0u@IRDjr0qMNmxG_LWm#N^htW)qu;B}y^myGn$JaT%BJcIoC!Y23
zdy7@u3r1tYbp8C<ev4>nyS8=kN|Du}-7pB0?PC0>21w=V2IXS~@@=V^Oz`wF1g8_B
ooY1SEW1EWJ=bUyztU`3@dUfd%CG-1!n}{v$Up;7OT5Xm90Jp2tm;e9(

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnscrypt-blocked-ips.txt b/phishing-filter-dnscrypt-blocked-ips.txt
new file mode 100644
index 000000000..13153c7ac
--- /dev/null
+++ b/phishing-filter-dnscrypt-blocked-ips.txt
@@ -0,0 +1,7 @@
+# Title: Phishing IPs Blocklist
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+
diff --git a/phishing-filter-dnscrypt-blocked-ips.txt.br b/phishing-filter-dnscrypt-blocked-ips.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..cc3019d544f28f069617f7476a84396851ece411
GIT binary patch
literal 186
zcmV;r07d_yXbAuy7QesxmNW-w^RWr-eL!YAVBc;y+1<;wK*G9$E{-8hG(A~}irH~!
z0yOYj+>3EF%-AqJ9hYm2{#YF|PN;!b0PG55rhbfO^U-wuoKAT@<LUHI4IGNVjMSJh
zgCa_FJpkGRVy!2aJ!&A^OCWTWVI)Z~f}L(Aj*zI^T;b#*Qb*BY5(Fc<LJcgb(*WA2
oOHu=U;4y;%HYFK{(9Oh1@xn~x8=u*Ze7zDAR_b^!62Z0+0Xhg&7ytkO

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnscrypt-blocked-ips.txt.gz b/phishing-filter-dnscrypt-blocked-ips.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..5250f9d2622d57159d3a0891d7608a07cb473ecf
GIT binary patch
literal 213
zcmV;`04o0<iwFP!000021D%k|3c@fDMfZNiKsO53q(xk0DGCZM1a;$XOvfgeHZe)@
z@%2WnKj3nhd(IsugT0Q11Z<TKO1Cwvw*ltH%8St<4l+2n3L{klN?uO$qRjbh&$%cI
z!TB-mmv^T<1px(A_<&*e$-~*xwWC%(Mk%wh4LPh+jf&9)!C0MI@idXPVGWuaddkn*
zMDon_hxBuzH(F8~{(&>|MU!M_J1^g7T1V|C_U6ZsT&n9`I!Z;xT)eHH$bKK0EHL5;
PlV$J%Lw43WE&%`lgBD>6

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnscrypt-blocked-names.txt b/phishing-filter-dnscrypt-blocked-names.txt
new file mode 100644
index 000000000..3774dabfa
--- /dev/null
+++ b/phishing-filter-dnscrypt-blocked-names.txt
@@ -0,0 +1,454 @@
+# Title: Phishing Names Blocklist
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+1nvest.bigbantbaz.top
+25116414.cc
+365365news.com
+365f09.com
+750115.cc
+823pages.pages.dev
+95564339.awi.za.com
+999fc.vip
+a.yyyy.cf
+aaaa.whilefish.xyz
+accounts-microsoft365.weebly.com
+accounts.0ffice365.support
+aidanochka-tabys.kz
+airbnb-clone-sahinur.vercel.app
+akbarinewv2.morteza638n.workers.dev
+alaindemeuron.wixsite.com
+alexa81o.github.io
+alienv2ray.pages.dev
+allegr0llokalne753724pl.art
+allhrteam.com
+amazon-clone-by-sudip.netlify.app
+ammuvicm.work
+amyr.iran-cyber-net.workers.dev
+antaidossiersuivamendimpayeerf33.zynekcctv.com
+anuragrauniyar.github.io
+appeal-voilation-policy-issues.github.io
+apple-id.cc
+apri.154-203-197-141.cprapid.com
+arvestcreditcard.embarkdigitalonboarding.com
+asdfjeiod.com
+ashleyproberts.wixsite.com
+astounding-trifle-b88a2b.netlify.app
+att-101397.weeblysite.com
+att-102641.weeblysite.com
+att-107756-104508.square.site
+att-108102.weeblysite.com
+att-108651.square.site
+att-mail-101246.weeblysite.com
+att-mail-105533.weeblysite.com
+att-mail-109459.weeblysite.com
+att-servicce-mail.weebly.com
+att-sign-in-107078.weeblysite.com
+att-yahoo-mail-105061.weeblysite.com
+attcom-101415.weeblysite.com
+attinc-101356.weeblysite.com
+attmailonlineaccountupdate.weebly.com
+attnet-100294.weeblysite.com
+attonlineservicesa.wixstudio.com
+attonlineservicesa.wixstudio.io
+attweadminservices.weebly.com
+auth-sharepoint-asr.vercel.app
+avertisystems.com
+b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev
+b35ccc.com
+b35lll.com
+b35www.com
+bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz
+bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz
+bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link
+bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz
+bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link
+bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link
+bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link
+bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link
+bbf-alpha.vercel.app
+bet365t3.com
+bet938y.com
+bet958c.com
+bhngfd3.pages.dev
+blackdasblacks.shop
+blsckdagsever.pages.dev
+bridge-9wdpjmsoa.pancake.run
+brubreumummeddoi-4514.vercel.app
+bscusdty.top
+bsozvycr.icu
+bt-102368.weeblysite.com
+bt-106861.weeblysite.com
+btjfh.weebly.com
+bussinessaccounthelppage.click
+bwfujmww.icu
+bx.sfdsb.icu
+c.cting365k.cc
+c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev
+can-post.cyou
+celery.sa.com
+cen4-six.vercel.app
+cf-worker-pages-proxy.1352562939.workers.dev
+cf.13084493.workers.dev
+cf.iwoai.cc
+cfcf-8.pages.dev
+cfr-reed-taxi-wayne.trycloudflare.com
+chain-trt.online
+chainsolapprove.pages.dev
+chat-wa.xyz
+check282.tempisite.com
+chore.pink
+ciftcininbankasiziraatbankasi.com
+claudiorojas.cl
+clivenicoll44.wixsite.com
+cloudflare-workers-pages-vless-a2j.pages.dev
+codt.digitasianetwork.workers.dev
+coinbase-com-18690.subttrepimop1005.workers.dev
+coinbasewallet-verification.198-46-89-184.cprapid.com
+company0rder943.weebly.com
+completar-la-verificacion.vercel.app
+conductibili.fun
+correosprepago.bnext.es
+crenadenuddoi-2258.vercel.app
+cryptorectification.com
+currently5267.weebly.com
+currently70.weebly.com
+currentlyatt909.weebly.com
+d.afirkz56924.workers.dev
+dio.azrealonce.workers.dev
+ditgong.com
+doc-online-1881.on.fleek.co
+docsignauthorizationrequest.vercel.app
+docusign.com.bestfinancebroker.com
+duang-5dh.pages.dev
+duvhkeq.pages.dev
+easyaccesscommagebn.com
+ebay8787.shop
+ee-account-home.web.app
+ee-service-help.web.app
+ee-service-portal.web.app
+eln3.vercel.app
+enormous-orchid-howler.glitch.me
+espaceparticulier.life
+ets3qe9ooms8t6i8.pages.dev
+excelorgo.com
+falabellacom.dominiquepg.com
+fdesq4.pages.dev
+fdsfjiwe.com
+fdsjfkweow.com
+fekoulamevebouna.freewebhostmost.com
+felomane390.wixsite.com
+ferngos.de
+fieg.84yr483rhfwieujro348ur84.workers.dev
+figinstenatecom.pages.dev
+finansfaizsizbasvurum.online
+forested-mirage-samba.glitch.me
+formtools.com
+fortradesetup.hamidamnaie.workers.dev
+free-5436781.webadorsite.com
+frogsrus.wixsite.com
+fshraha.pages.dev
+fukshumx.world
+gazruinv.web.app
+geaoolsv.pink
+geminiwallete.godaddysites.com
+ghjhyu.wixsite.com
+gimennlouin.gitbook.io
+goldenrod-rowan-submarine.glitch.me
+gorgeoushome67.wixsite.com
+group11-vvip-hot-girls-combi.viplch.online
+gruppeflorian.com
+hanisfir.shop
+hedayatfreedom.hedayatkhakpour.workers.dev
+hello-world-morning.freekite.workers.dev
+hello-world-muddy-cloud-f45b.mfoster0425.workers.dev
+helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com
+heluapla.shop
+hemanlau1.pages.dev
+hezhouruan.552008598.workers.dev
+hgcdhbxnf.weebly.com
+hjrhd.top
+hk04-123.pages.dev
+hkmqo.top
+home-100317.weeblysite.com
+home-102207.weeblysite.com
+home-107257.weeblysite.com
+homelogin7t6sdfcgvhb.weebly.com
+htaflytz.baby
+htaflytz.black
+httap.l-teiegram.com
+httpsbellsouthnet-102649sitecom.weeblysite.com
+hup6r.com
+hy.fuckgwf.eu.org
+hypophysecto.fun
+hzuayvvl.red
+id2.xbenihime.us.kg
+ikergalindez.github.io
+info-delivery-bg.com
+info-trackingcs.cc
+info-trackingiax.cc
+informed.deliveryhbo.top
+informed.deliverytcw.top
+informed.deliveryxs.top
+infringement-service.com
+instagram-clone-in.vercel.app
+interbenefitprestaciones.referidosweb.click
+iouwerty.weebly.com
+isnworldwide88.com
+jaydeep8806.github.io
+jeanandpeterwilkin.wixsite.com
+jetconstructionsgroup.com.au
+joeandvelma.wixsite.com
+journey-x-pro.com
+jsdfchkdsds.weebly.com
+jshattkee.weebly.com
+juliusmasih27.github.io
+jung-sohn.de
+katiebllair.wixstudio.com
+katiebllair.wixstudio.io
+kdlmo.top
+kenzmail0.wixsite.com
+ketura2010.github.io
+keucroilluxibrou-2718.vercel.app
+kuconlogin-ui.godaddysites.com
+latam-onipojes.vercel.app
+layanan-bntuan-resmi-dna.prbu2.my.id
+ledger-com-updatefirmware.aparecidovisentin.com.br
+levappoprauqueu-4688.vercel.app
+leyoixoimmecou-5619.vercel.app
+linkbokepviralindo009.vipp.blog
+liveairdclazmersn.pages.dev
+lo6-cas-projects-64947843.vercel.app
+maatamicklogginns.gitbook.io
+madebybmr.in
+madhu821.github.io
+mailupdate87.weebly.com
+maine619.github.io
+mainnetverify.pages.dev
+mazulyta.pages.dev
+megrebeikenneu-2106.vercel.app
+mendhfjpl.weebly.com
+metacareer.com-case37169314276.com
+metagalaxy.pages.dev
+metamacksiologus.godaddysites.com
+metemrsblogin.gitbook.io
+meyetamaskiwalt.gitbook.io
+mianfeijiedian.lawcpacpv.workers.dev
+milanharvestfestival.com
+mirobitsgt.github.io
+mocp90.pages.dev
+mostafa2.mehdi84888.workers.dev
+movie-firebase.vercel.app
+mubki.hp.peraichi.com
+my-site-104564-105934.weeblysite.com
+myaccountsignup.net
+navy-nose-4544.typedream.app
+net-flix-front-end.netlify.app
+netzero-webmail-105996.weeblysite.com
+new-currently-1-23-24.weeblysite.com
+newattupdatemailboxkidlyverifynow.weebly.com
+nfty-proj5.vercel.app
+nnbsscnaceesngsetr.com
+occinamete.cfd
+odovsccs.weebly.com
+officalourtime.weebly.com
+office36503.com
+ohscorgza.github.io
+okm.znt.temporary.site
+oliver752.github.io
+online-e-commerce10.com
+online-e-commerce11.com
+online-e-commerce12.com
+online-e-commerce5.com
+online-e-commerce7.com
+online-e-commerce9.com
+orange234.wixsite.com
+orgmail.weebly.com
+ourtime.datings-information.workers.dev
+p.updateinfocl.top
+p.updateinfocs.top
+p.updateinfoga.top
+p.updateinfojq.top
+p.updateinfolw.top
+p.updateinfoor.top
+p.updateinfooy.top
+p.updateinfoqv.top
+p.updateinfove.top
+p.updateinfovt.top
+p.updateinfowu.top
+p.updateinfoxb.top
+p.usertracktxz.top
+pages-108-tg-cfzz-ip.pages.dev
+pages.tempisite.com
+pageverifycenter.com
+patjimmy323.wixsite.com
+paypalloginin-usa.blogspot.com
+paypalloginin-usa.blogspot.hr
+pcmag.anycubic.vip
+port01-acf.pages.dev
+portal.chiaveggies.com
+pruhuffopraussou-5681.vercel.app
+pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev
+pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev
+pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev
+pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev
+pub-2801359d2be54bfd8701132626efeb73.r2.dev
+pub-3096005ebeae423182ccd89665564d8a.r2.dev
+pub-46a5f86348ae4aceb3591d126020999f.r2.dev
+pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev
+pub-51f896deb233450089fc1a520e6ed957.r2.dev
+pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev
+pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+pub-722720be67154192a1102b2cf085d306.r2.dev
+pub-7d056bfeb6b04852801553620fe62c0a.r2.dev
+pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev
+pub-873fc6a3edb941c6a17f50911dfca518.r2.dev
+pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev
+pub-aab4be29317b4ec296517a557db12622.r2.dev
+pub-ba5a046c69974217b0431bca4ba43740.r2.dev
+pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev
+pub-c59cf4e950b142949df8861e60b3689d.r2.dev
+pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev
+pub-e5855431d98545b38408f52af50ab8a1.r2.dev
+pub-ff0271d87324424a9aec83337e844a54.r2.dev
+puertaselectricasprincipal.netlify.app
+qaffixledger.com
+qbstdfda.com
+qpownthenewyhadvanceweb.weebly.com
+raj-tiwarii.github.io
+restrict-policy-nonadherence.vercel.app
+reviewboss.github.io
+rfgxg.top
+riaayaoman.com
+roadmap.binarydesignhub.com
+robinhooldloegins.gitbook.io
+rouzhda03.kambizmedia.workers.dev
+rsjxzl.com
+rtyuiuytgf.weebly.com
+rubinhuud____llginnh.godaddysites.com
+rudra-choudhary.github.io
+s.team-s22.com
+sadekk.com
+sajsa.icu
+salarahmad786.github.io
+santanderpod.fsthosting.com
+satinnaaoabbs.weebly.com
+satyarthi.uk
+scarce-army-wide.on-fleek.app
+sdfvgbcvb668.weebly.com
+sea.6e2efhxz.eu.org
+secrbnsuppotyu9.weebly.com
+secure-ledger-m-auth.webflow.io
+server.2rk3.com
+server.pxs7.com
+setshinobi.vip
+sextelegramxxx.pages.dev
+shareorder711.weebly.com
+shaw-101342.weeblysite.com
+shaw-103098.weeblysite.com
+shaw-106054.weeblysite.com
+shaw-106665.weeblysite.com
+shawsyncmailservercommunicationworkspace.weebly.com
+sherman-relate-rev-baskets.trycloudflare.com
+shobhit245.github.io
+shopifysite.cn
+shoptkoo.com
+sign-in-att-108611.weebly.com
+sign-in-att-108611.weeblysite.com
+simxtrackredirecttszz.pages.dev
+sjhsjjs82.weebly.com
+skill-meta.com
+sky-107842.weeblysite.com
+smithjamessv328.wixsite.com
+socx.ly
+sparq.eu
+spicyhotcoolsoup.s3.us-east-005.backblazeb2.com
+spotifyl.vip
+ssfgsfg.wixsite.com
+sss.k999955.workers.dev
+stonemartin1001.wixsite.com
+stringroll.com
+sukienffvip.doiqua-garena.io.vn
+supportsecurity981.tempisite.com
+talktalkserver897.weebly.com
+tareq088.github.io
+tbsl.by-on28.my
+tcaconnect.ac-page.com
+tejlksdoisd.com
+telegcm.me
+telegramjessica.pages.dev
+telegrampx.com
+telegramsexgroups.pages.dev
+telezelm-ivee.icu
+telgramsignal4.sg-host.com
+telstra-102379.weeblysite.com
+telstra-104033.weeblysite.com
+telstra-104394.square.site
+telstra-106968.weeblysite.com
+test1.workersdev40050.workers.dev
+tg-logrom.com
+tktk.tktsk.shop
+tokecn.im
+tokeni-1601.vercel.app
+towrewds.com
+tpwalllet.com
+trustwallet-zendesk.com
+tuviaje10.com
+tvjbqiyv.guru
+twcht.twimobie.cc
+twimobie.cc
+uedy.pages.dev
+ultsyncingsolana.pages.dev
+upheldlog8.godaddysites.com
+upholdloginorofficialsigin9.godaddysites.com
+upholld-lligon.godaddysites.com
+usol.shop
+usps.com-cgkzkukp.vip
+usps.com-trackaxd.top
+usps.com-trackbrs.top
+usps.com-trackdht.top
+usps.com-trackgee.top
+usps.com-trackhsk.top
+usps.com-trackivo.top
+usps.com-trackjjx.top
+usps.com-trackmra.top
+usps.com-trackmvz.top
+usps.com-trackuqg.top
+usps.com-trackvgb.top
+usps.com-trackwbv.top
+usps.com-trackyqb.top
+uspsdana.com
+uspsdant.com
+uspsservicetrack.blogspot.co.id
+uzomadj.shop
+vedi.154-203-197-141.cprapid.com
+vgmrm.top
+vkkvdkdcmm.weebly.com
+vl1.spaceysen.cn
+vobroffexagru-4404.vercel.app
+vrvtn.top
+w1.5114559.workers.dev
+waassistance.com
+wallet-diagnostic.com
+walletsecured.pages.dev
+web-lupqrbm0k-uniswap.vercel.app
+web.tlgrm.app
+webmailserv3038z.wixsite.com
+wk.xzte.eu.org
+wodjrvrisixc.wixsite.com
+worker-dark-queen-529e.servers5555599.workers.dev
+worker-hidden-frost-ba39.yoveli7450.workers.dev
+worker-site.aopages.workers.dev
+wsa.osmqone.org.cn
+wwwwwwsasasasasmmmsszz.vercel.app
+x.tovip.eu.org
+xhjxkj.cn
+xixiajiaju.com
+yahoomailquthorization.weebly.com
+yungtee3.wixsite.com
+zagbasamothega.dnsget.org
+ziraat-kampanyasi-besbintl.xyz
+zxl.cbbnbbc.nyc.mn
+zzpov.top
diff --git a/phishing-filter-dnscrypt-blocked-names.txt.br b/phishing-filter-dnscrypt-blocked-names.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..9cd88818119986e83f813d2e4c2944534a183f77
GIT binary patch
literal 5432
zcmV-8702q~D0v~Gm=Ay=WSIMB&i?uOX{!74CiqHFeD!W0;{guJNN@-``uD1;?X)`8
zsnlUgAC^+7O>okeAuHeeA3A@KDW7BtAbJ2O=Z?*H0Hs_==z<UTN;!>En%${X#8W``
zJ}O$1e!IZQ(k5quH?KL_7+UqFMiG%R`8Ai<kSz;ux~;U}C%Md0zxz42IKN*%f4}*<
z`LzD9KT&@qq&)cAUcdYKm!oRc{`#3!gF!|{hUuS&;TIc!4a0xFe)sct-@_NIzkbFa
z3-`}ow2}I8ryyod=Kjmq?|%C0bHIwfezw+*NoZMp3!s^2ix4g-Na#!b`5=d;rC-1M
zQByO!g81)7rv3H1A4yQ_uOA*@QTXiqH$SUyTdz;^&0NZ->t6Euz@Pb&rGE<z_<iqd
zOeYQi)qd5GnudqAe7u+($4QKW8uQ|l<dYl?s1=elH!Q!JW;u+bET<~Q`H`&jr=ziW
zz7{Db!TCbr^7Mg?j(u4cXXxpV7ts5@Z))5N0DvC<1Ex!ne(&ccsR~gKpb8rBNzw~Z
zhr2GhkeLq7d4o?>0&*|#7A|Y`FWP}L(08T#^8#OV(!_+EkW|=w>V=+I3<e6v@q%4L
z@d>Y!(U?oa2PUo(y>i*HbV-8%7gh0z*h^0I@?WVV1a%Ae1vO^M`l0*$g5WWotia8b
zwm-f0h{_N`-XSEMC7+o%0tL$T5VkT)NUenkPfj#f=$q7T{c-W5Oz`f0w8q#^Zz7rJ
z#0%nGs4tL+xiuD&u+cwwse!k-R*$82e?r7$eLUbsERJ*f+zEGM+DSsN)C;Tydh$1v
zt~EFggh0;hgMN#X10Kc5baW}44M@Bd54;4{@z7BU!Uj&pWhSE-sX5MXjx@=N6cW7z
zIwwv~$T7a_kwi`t9pn}_=v=LPqtBZ+r)~l7qhyVx)se~8mV5db0n&<h0f|-$m}X`7
z*2p-Fe3>Q8Q3d9{3O0#xoAWFuG7drxifT4SKWK?b>Sa2fdRLPiH_{{cK#L?36D{&;
zrR4k-7a^Cnqc+5hcP~yPcr*Dm5uZA>#$i@fpgC?MW0}LmllM%H&wY(zlm%|_$t;u0
z{=prw3v^l&ZR<uVPsqN$2DXT5NEM`~8dea5jcnceTnMDqXzfB%EMJT58@+AB6v>AZ
z>48Ai9r+VW^R|a5$UjbxTH+!skxV)w3>cy&WQ0#(++eM?^Gt?;M8wCe<}LaW>F&$^
zC;cXTo3bUEOJhu(MJ_`Kzk)+?(HVi;3wjLh+Eaf&$C>ZQ#CMa^&V0UKrOe!4I{K4E
zZ*krE+^!?0HhJm~SE&m-c>s+|YaA0gVe0jW2<PX_>$J<`I(<Ntmq{i+*C`(Rb-BfB
zO{c(if)H1~#mc-sn0(mt+#eP`Pmtj}igZ>VS7OiS{_a_8vu{TdVx7|EugdL(ng*Zt
zr|WM$CIIn1nT)34yG&@}8r~vp^;_18c<UBzXF;EPn>u3$OM3c#h{MmZh}oi$tO>)x
z?(muOk=a|Ep{D0^ouBeK<+VP?H}J!J%(36==Xy+HEO`AfKGh%%dp0}2*V`0%p!*=#
zkP@G+<GMbct?`}oqo@8cCUK>2^E~ri%!e(X?2mR{ok7?hFssk=)ADyNLNb}9b5PF=
zSO3c!9#+(M)bB(4FZ*!4W31L^&B0&%{pr$(E2ZNMf-(FyobXE1j(DJg#B+_NIN7)u
zegNCT)%|-)DxuxtmR4uE=|kU4vrvELl{%REONW|1+xp)KA(X%Hi?=J1<+8^+)(rH3
zWMD^HdV1;7b-^BcjA(84M95JPX|1ML+iovrFS_REyiK9r^p{rXt@24><}xOw+1AqS
z?KX9w>t3rWiC1NX7YqjC73x0QU;1+W9j~iN>z7t%t4{DU)HI(~KFQrA4v66cn}^X7
zJ{e2Ih@5C-K-j_=N)Q8DsU`gRFkD#rd;2t|E&3epl^Za?`>c(cJNK8tfaRvu(ef~u
z1gZYZo_6DiQ=kxr51$+*e{VW+$>hWqzPJp{G>(pZP(my`FXyiezAN8!#t}7q$7@_6
z1<{fQUr#Q$6Vg`h1Msn6@{m6J20oEi8r94sarK(RdAu%hVx^W18o6NpV*H>p#b}iJ
zh94-C*>XV|G5WlWcg^_ZQ{dDcs(*X|XbEHkCB!rzD)|kSn(!IapP0PKAqe3<IOwK~
zi`RR0hB`F_*qhW$wvGBL>FOagabX?HlxY=-sr+xNX&Gqky0wCbkNFsfL2kn?r*Vl!
z0;^%taZyA}L@i`g!jqy=k;hOhmPK&!h3t<6Y*0vmDz7wxlyu6;cGFHHwm@A^uamD#
z<$5lh`kJW@$Qo0uFH<mq#nk8FOBj=C2&UXe%LPp%9O>Y_AO>~AE!i{^C}%Ev9v<pI
zYs;{_2e%ZQFZ&~>g$eF~UDx3$=s7OU;BC6C*^kWFY={W%nT$$}G$-l;;!aJ@2fql6
zzmbc7I)Rbj618<zx7qZvP$#27E{&kcvG!u6rJwAORwC^tFk80$+;;q=0uVsLY1QNi
zn8Y;CY^dQ@vzm2g8j+|Th2R*VtbvpiqKn6o=%i`pL145Pg!ihDcxMbuxh#jUXOfHA
zyd_({0v5W4*s+5~e4Qun+jtyx%hZF%LgVaVy|7jO!6oNdRhzsvu;JHW$YpiH5)OiV
z9)MfIDIn$jr{ggiTXYudM{M8C+3Mc@!V<RncKe0-N@{?6?g1j6xP$=*8vIvWsJC2O
z)Q4EmJLCun`7+FFlf#nM+|c>)avoQz#9f5qWpkIu{w|pd)r*oTU*}h!YQqE#yWpf1
zhWvolfq$xhG}N<~9`%~)a)AKNmPB7*jXGD48rX`9a%5W0!EFRkEKy+Dk`ZYApc_PQ
zAtvxL4E;3|Dfl!ido@*q&E>v7uH?0r9t72Mbt|v|;pV>At;cWWI}7%;!c)3Wr+la@
z0%fsNtMV1cizuQBq-(Zdt&Jq4*Il>wcK25ORv$5?kh@RuAg;>*_kc0&6;sKUlzc%V
zwd)viJK1vinq4vXD&e3bgqrtQazDnAoTop?mK%ZMSXHQ8dpKcoFdOr6(G=T(F6822
zDm`L@<g4?=yrG2~8b3R1jx<T%H`p;pk>`M$Br;)EoWOP{b8IJV`U>ma+B<YV7rP}+
zNKK>5wP6_qlN(kZ1}b`65O|Z(EqMuxBcXN_pQ%sPt&%&S5RbSudPjP8Ukn|N09%fb
z0`zgXwGE%8HB226l@d+vK`x34kJZ>sf0NU$x$Rvx>p`j8K44>lFPGo;_{jxs$`N}X
z20n()^lhRT8>D9@5itxpx2alZ)^pRel{IkTZV!b(ohjf|?(em=1_uqKp~tnLD2S|q
z>Onw~#E?3h#L{f^&Yg%%Kc?~<zbSZbSuaPiFUZpPwcSTPw!5Nf**Ff^_H?+<Gth$e
z<t?LMjmd95BJGv#>&x$0RtS*M><=(f@X2MetEBxVS_@)^jD2!b-7E2JvWM?|u|%}A
zj^w7t!##5%nz`Qo);mC-5j>X-1*Ha;Y#A4i*wdWeMUaowNTF+7w?%1Agoc%(>Hsi-
zCL#W?htK`O((Yl@d`<HN;OT@?$?6+!y!rD=4HKuVZ-fNNV(9C*eAqqUR`tdP87oyo
zK<-FT=&yH1NcO}KVZ*ZAOTwFceP5CaqPF(7+iGKe?|0pxwH+}dP!GP>2-R<Frnao7
zmDIc?!_urBnnxW1_<}-AM{cRluib_?kou14K|@^3mTAY<3+xDTHax03c2lwsp?|$D
zxf3>zPFQa5CZ`Ft2GYIi9!7u$k>uo${KmSm8sO&snG&5^heQh2=!s20kD@!H@uuFs
z!VU_hc(Vkp!Bw>Yu--p~0}2{%^XV(5=G~*l<rVOR<H$#WzMNAn5tAZ%Gy~q*f3uGf
zP3}Za<5HxNPrJ@L9;Yw!>b*P+@47z@y0;*DceW>jFV+NjB9@xemL=qg7>Ia+ztOZx
zCb5WF2``98U`r5h_K?@rr&R41?20JUw~mGSl<>{1D>e=Zj2vOcoXWG!M(_!HBNjJO
z!sdeu(6C2@r-!>i@+jh3P@~^5CG3Qa!$h?wCcC-!5n4@SgF{h65_Em1$meld_$b&s
z6<d3S0ACVxY!IXKZ{u^wYp-I1OJ}LERF1nCcP-*w0k6BOFlWp5@sJ$)w?}J^y#rk4
z0CSvns3iITX@h{}-9V&O)t9`hY>Bn;aII{PWuRWkOJ_9&7>&4DuY^)&4);D~iSq>`
zDv^o%?0WZfJLrK0yxIIcze&dt+2xZ!JX>A3cst(v9}K^y4$QOH?!iVR<%&c|A?Q+T
z+!j0^+5`KObHRVf&aGO4$)eC|!nXTw3b|0@tgSA~^nSvNL`7RgM#4B@qF@Rdhzj-D
zbpGz%hFj{YQocmSNUq&;V-CrjeW#>rH3<x2O>4zw7){w2pFkD@Q{(I_+k94I9;7Gv
zRp40&xtAcEdshh4BnO_SY(FDy_4R?}Yt4J4Piii{nhW3=fR8I#dsWSn6(`OcdekhA
zeR3Rn?cVK)j8A~ghulAb`RWCunM+|DL+CM=6>pd44T;qzE78!zMHbfE<UyAqlu4MN
zAjIs)u8~)W{Qg7^R|~m3_8s|iws7KOx5!t&;j4K?zb9|@_I(<JSk7`B6lp6l?s<qm
zws!KB3;qN7WbG#5Y<lx<Zy)2$8DA>K0r&AU^Vo_K8KhUxA782-xfR*xR$hmRuu@33
z>Dosy!LhD0j0B7uQ{ruRH=BnO*VT(q>rwjFol}B|TD9D>)Hqm2*JKciPY$&noe`5W
zAV3+$B)Zu$;EEPDoC~pQGV)OmVi>^z2o!1oVa90~^?*WZ<I0CT+gUMX0n8+v;h^{;
z1`vZ)dKhiLe}Rn}5d^d1IGS!i#kJ&o(hC^A3<I=GMRh`0EYm23c2>>9IC3_z2_5R0
zH%HEgWf}&F8UY34qhiKbwM<ixcuA}JeMVve>D0u90u*3SbGeLmWYfTg0J69{C2dDO
zjguXe5sDkNECO(XL24`0qr@)d=+rV<)Qoc>hanBanGqx#a6-GtIfXt+Wt5x8K@2ER
z4BC#9GLsb(&RTIuAu9%!>q**02tH4G8JAf|0OUqac059#8JpRlahgXd#)ZK+4ooxS
z1|=;Yre+Uzkdt<(Cp`!yXL&QE<P#elPRuNiu$43lj93^*6r-K>;J`A;`3x{EuHRv+
znL9H9N2?bxnhD0)$zd5s>kP<ood_G$2q3g}iYqZ`1!`f7l2&SMI81G509t5d3m<1K
z(6D8a;|x;HR*!6AES)zRBn)CQ)3VHhjk6vEAGHCYLGW1&<-?uiJP8mMQQ$mjEtE2-
zhlLG@m=49r#W;bB9P}vIA{OgXkZHte(0o#hO`+q6!VX$YleEIBWtp@agd8WU7UeWc
zVM!&W;G<oX6jE~~2IV9JCkN09#&np@4Qw8*nmH4K30MG);@2&r5(4C|151NHWMXRZ
z1}Yy+v=B-@;GF*&-Y8IPA6=Vu7BbW$U%`k%!t34$KH!Ntb<a=>yh-yH6z}yY_;6E-
zH!X%=o^k@aVL{~7DV+%Yrbg#ldtkWryGm|T@c=hKZe)1d&R`=PRQm+w=J8M}3VYdf
z<!Q?~*pLxe6AZ?^mfWAs!ocYcQTvC=BcAi6zQ2!s=v~^~eZSj^UhvX~QQo`#zyJHc
z{|mvEpT}m+`j&1B5VPfOH$%hGf`-XMB$XKmohn$|_b;_~g<wvw3IPgi5$vp{`arSp
zOBTzKEp@eFk}_q1Rh?fy0c6nHW;&t@?S|4ePy7C=28uyKlVZe4&d{6)Dh*3wC)K)h
z)#lVw42$$;M+kI6hHm>lfQ6-^DLV0CdTDoGsuWBwNW3^63Cs=fAF#@BQaF}?Tn8&V
zuY-Aa9p5^$Mjwi0<c+^-^bklb--P)6epMlc%#oK>J&)r^Xd7H?fQW+8&aZ|Ki+WYl
zAcf>KNxk05*kWX2z<5jb6qbPX3$bmNan!Ix@AszyG$aL2^56H&s|K?I)Gh1HHzwrT
zP}uU}-IypTE7SIzTgtYOsUU9iXSzx_rb_eiYd6IUFRrH5=b81M@2$SyRk2=YcOL?A
z^Jo^kQMh@jg<wSAHiF^W_2f($P)A;~`O<K|>H+0LvA^o!&AsKupJWw+F;z}`B}_j?
z0$K=W76Lq|x2V!1H}CGS?)0O&wYqgEdaZP)%+5tZrO03;l+a$rVHoSN24w-Gl4KoG
z-#sShPJd9F{ig$2AzIa$`b^LCqKM&!&@bQaMU6Hk@E+kKS!0$|i%b8S4GMk+rB0;j
z8mPWWPE65wznTH|rV56fN$u_6JM7hFUu|AC;A$f7EpI|~-dL+Q7=YY$vEy6MQXp3R
zLSA#L#V0+F9PuZjsL~pS3J}Ta8U(E?*#acd)~KyOJUrsOI7%!-3~VE3Q_UAaV{$x~
zF)d;CV#C_TMH}6(Ervl3i`w2+67pJdtYhEXPTSt<4sqj;#?F~Uef&yIp4hvBrn<G|
ztHi9B=k17EqykR#^`+BTs`C6K>tx-#DV@Yk-N!R(=UadLebTj;{%V)m8f}-4S$hOv
zg|DkRS_DPyp@|ys>uPd<v><su2(5jDyeeg6^kd824WDvxl64QEMx5qnsjzjyk`Vlw
zQ<?Uf!|c*}J+do_S@&n}`?1xvy-<WC;fwOSv{JfMDZ4eP6;W!dyOck()cgIFj0IXc
zAF2LXrOs7LUHV+?{*-5S>5<uq8P_!ml4C8wZv;HFv_Cn5eb4?+aH3^8=FT;icnxsw
z`)PM;ViYsR8Ahs>^t)oxAnKX*>JbpXu$E4Q82B!^vz#rRf6g^hIgUa~B8TMysMY^i
z`IvdoO(APNtjS85-E<-L!R&So9-Rv{3H|sK9fzIt<m&~;NPw|fY+)@iM^?9M^MR{J
zTz9>8`h6PODNVVueV4QN>c6HeP68vebA`~-ONe9(QmM?Ve4E=cp`;dJode2td2OBs
zzR)|L82l`x4XuMiO+ubxvCIQ2&|KpuCpDLKQ7G42s=`5!F;?a4oExw{gX*D^X!>sN
z@BXgd;OoC0-X7k)K{h4q=lBo|g!Q05cTa0W#4joyST$6LKS9581!_}Wu?>yzTr{!+
i`=cRLPc&BTQwzkIV|~7X8m*JohNj!lm|o9w<P8F=pr^V3

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnscrypt-blocked-names.txt.gz b/phishing-filter-dnscrypt-blocked-names.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..da75e24bec83b98aa874ea46ad7a605b09aecdfb
GIT binary patch
literal 5612
zcmV<I6%*<oiwFP!000021D$$HucSPa=KlPOlD<v1)bMh@yvx>%)Qi!mrRmwsrsW&p
z#9-1kkmRqQ$B?HADzm1gIdwS@w!`6YIO2&g|M>AA(kb!xkALr^?c~`0_@87D_Q$^}
z&3YxR`})U^|2=Wy1poU-5+zv>CqY#FM-=^?#D7Q8|3UkIe@xN{`}dFd2PfN)f13CH
zKN=(Mvl!X-&*<}SdJq$7F;VB-WdHu_uNLzX8ZtfnH4wEDBZ5XMC(K{dOO)3;M*k1V
z#AyG22LD4HL&4;K>De$Zrk=#Ock|=_<p+3m^NW{stP@K0Mz>G$*SAi>|3)041YF{A
z5!QuNwv>#Hl4t1j^p)gsTx4+;GWL}gIsT4fwVtDYZK8UAEb}OibKj>*Qm+de9{+Q(
zeARhgWNBK5WR>BQ>;vk$Zdka;>5GILenQrK5&VQ}CzWXY0v_A*i!i3=(b-^-%xJ3{
zhe^X#2&%T7&v%C~Y8q(6x7vA{v~gcVax!Yx^(4RwHyifgCk-8Gz?2?EU<nj3n{W}(
zoeIeWVR}l8#0r-r9Kb|8Ns(4#xN6f2b1a7_B1bL;F&m8*`LNQ7Ll`9<q>6R;QoGb3
zNii;oA=^nIL@CjlNGaVDHHtD%%Osm1ftOmT4)c=X;5d+{9$)g(EwD3}Q#cBzWV0O-
z55v4jHtZteZ8M=X1Vc6|On{zO*+&PpXlo@Xvs`c<MlOemY(khOO~dClik>mI9MeNR
zq%~w7<wneTS<@tl3KlIDaS{?v8pgN<(%Kn|ymV9|kldRFnT!nMJPVR24dS{C;w%o?
zWXR;({dC4#ATxr)R*B)E7_c2Zm*7XB0;)muHoJGWytxUfUqfxD#5Ng?Rl^!CyJ8(o
z#E%P{kqyM5RYekdRikr39K~r}zO3ul@VzC$8Ti~%mU)3+SsqoPz0WwVq3`i(tuXZS
zxT?tGw*do@%FB^t#ivoP<~+wv{kgf$^7>P=6$X~V#NO|6h<u}L$3TvLK~Y(K8orTE
z>z^V-#V38>mlr>a^AC-3WV?>@Piymh^{8<6UPt=yw7-doEdz@vsk09(j^W2Dg(bTY
zI2;)LUw819>f9;_ALRJm;WGE^y1;hWtVzq!1;k$c2A-X?n{{G1oFk2CF6xX2d6G9l
z#s~|lLL@<25Y|MTQ(l%q6a|A2Pu8+qHcvy?OVfv#LP@tDSDNOGv4dZlE2X|4*L6J}
zNz)r4g=*G*oNv!*(c6$@k1j9zgivZsnaY(8a!CfsMcb#PTc=@kg$(7?*sxK3us?Wj
z`{LGQ%&yODAj^HxZPDk`y1*%md}Slk&vnV3{LyGPtnIjD!Yw4r{>-gSB%PA{nLMA{
zJyG|k%GENNyy0|O$K-k69=)cN_1!dPSzC;&d~xHepdogw_pIQ~B*|_|k`K&@n<)ev
zT6N3D&OS_Qh1jSY_?#%Z^sbnbWJ*R_Jno+b+qtoB$nwNxEG4`r_fk(fxn+y8<MX~Q
zcXMCzwS7(xl}_x=rhaShe-MmuBI%vMbX3lgXUEH1yD^hbqPdF{;dD%kbz0ZEOxoc#
z(kCtEKd@@d+?8dS_E|Y`bJucm%Q`1Sbx*=tsmrI+kJ3Q!T<1+g?4rpZSao9JnY|74
zHc|OV?kVkIoiKNr61k?g`<%0E9mi==S(1o{6NPwVMVo-AsUv4=r^1I}mmVf4T%A_i
z&*!{)8EiMU4Np&Dk1E1?PVD~MhPDH|pvrn0HW2*JeU0R;2<nwjx4~kG6B!xlMQG*`
zjWac39_C>XoNF0mIRMI8K+9&!-L@kbYV~u$ZiJG}UvzioY4PUa_J*Q*_iEJLn(pih
z=#20QH)3Co3ZQE8f`<$t5E@&X`8MEu?$bR&+i*+w7w82(u!ZV+9}Za>C1n(IxCF+7
zEEZ`%MM8q4P7{%nED}8T9wLpRRhaqK-5r7!qIq+65sdiY3*5#wjVXi@W((~BvVaaV
zIQGX`HLM8^KoIQ84iGXQTL`C|<OOD~FK~f1Xo;#UtJB}<a@9oc%V@x|I&B?mOkjlI
zKwS?RtOST6bY=sFnR%mpxZ7pxfT9qPU3hrqgJ89SkVY@!%&;R4eD<>o2+R7UN<ui=
zN&eg<)@ksayu~uvIGjW|;@I`X$|v9uaj%!7vm)N<8+{}2)e7%&5u;>UDLAq-boeFn
zOKJ9{wMAk71Crd%Vrq^p*|Cb11d+-QxvEWjsjLY0Fj*CK1h7h-!*<F+PY7)J$NsAa
zj4r?~N`TxQaD{PQ1z8bPH5g?V6or2{EL&u_Fm;xmP1iSp6ET4zKiM(Q?rb4?<TEUl
zN+rVv$Bk)Ygtn9MS&k0r2v-pb`vssj5-!GhKZ8k<R~I&Bn;dopoPG+u%P@o6=+u@c
zMR^hKyP=Fek`bWms6IFGkTi&x&%CIU?4mgz)5+5aj~bcyt;x0eg(10S!C`*TVim&_
z5h;Yg@zlP}V<I2;wUN(#0ejYmvvyi0y3M|y=ND2mHgbfk64Yo+dCW2sV9%U)Cu8CB
z()Hqgq6lI)cof(b#tb0SLtlcDttzYX@RvdaFSiqPNIOICsJ$4VzhFz?{n017Pl|~8
z)uP7qybv*JGw9g{+OSS?uwUUz!dCgbF&xB~uoGc00RSB~Bdsxr5Dm!Argu?mJ=hAc
z;_L~;1I)E)4*=F6aiT~-iPsd@09q2-oQ|DnxUl!^G!|a7xye<$TJ5drSD_Eo(}-Tr
z3c1T7C{#g0q~ikX>fi^5-52hilpb&lQ=GE%nQnv`TkR+LYNTkxD%(s}rKW3EDdwBe
zX;#gqy4q8NV?6@gjew+H{F9u1yKO_{6Rrk_b(zgPeEYNp_K#5<=_~RmpK&6gIjI!w
zgVS0akP&ar;6Pac@Edjnh>Z**kyrcmYYp-&Ey~KrDoVIEzZQq&-kSNE05!HVq$6jc
z=iYYn@bHWk|7vkmW;rfDZKD;$OSK#xwH1D^4kskSR&&Dn9v=^}+wRtF^JT_XBCj0b
zJmu(fL8^7{A$F@3+=bCRFnUGYg7X{pbo-=|7WN`whTgipe>ihBdY<AqSQa_KJYCRA
zqpWwPRQgha0*9C4TQeg=ZD4%x#QWfmjMBne9LJ~=oWP-YUBVK>*K6OAe$unK=-by!
zbg(Nb7_=FE{^`f{UaUWMgiqXpJ$wXBmeX)(V3)!~S(5)gXku{jlEYIX?3o4<QQ#w>
z3=c9w9%uJrE^O20X+uH+2acQ-n{=#7sF_TPe6I=ykKh)cwz?C~4oiXy3iCXPqAIVe
zs{}3M9es?=*|T;x)A1cWb$#UPVrLxJ^}}5sjo2igkEQWj+WcxtlITxOWs-kvQW|Hi
zbOrKz)-D~r$mK|*HunrEq1)-rBTBqFGKDH|NQheVs-WyuHScz;h9^JrM<nyLpVFV?
z-vyYb;_%wthTzBgc5Om2hp<XeCOvhVMM%?oVC<eV*_K5CkMS?blkh=-BRUv=h$Gmy
zUlLkwiSp&5=cy<n$3_QSc-UdKfF2%jC*u6G9u~%|hgKJoB#&>J0qhOG$9MGDi?;^H
z*3S(O`%TB$!{J7B{SFc@Nv!i#pW#(^k{5V@>{l49Q#8^|-o5Pr0;XXET&piGc`tHc
zVX0?8SK#o|7D_wrXJkb_T2(vgMm8?QR8>)N($Y;3xK=*F>6le2=-}cFZo&bnSZ6#|
z!Ncwy_9#r|ubakTz6dpt>mVG3QEb7(<KBbf&8+LW<(GW_hFssdUR(+gH-x>}4uE%E
zQl2H95#O!uMjupqAO(z21it24f%x2l@jX|=v5CDHpS}`u4Ou+`f+0y1N2f`9F*Bp3
zQu9LsY|KGY#uotA&(P0)n1WfpyKO}rc36*c(l?M!0~LHBG#}8>!EFG`+d&2#VRkZf
zPQqaeCI3<a`I*^~>`|$KZykKG8Z7WXgCQ)^!nEWI8W{{(z+MBY&ItT7;A?deScy%`
zhnC3dfN+Ami0ex;Vi5(Xnid38f2MQ<I0(N#;r#3N%NsXT%K`771H9XKa#>0j0o<(L
z^&5__4d4N?vdS(9XdqrCuv>70)<%1dT>}C$-ROWca`Z3VTqW^oJN&L4il{EA7W7g0
zm0Y@xa6~))K9_|D@|@w$&VhP>BNIsFVHYDbmLNsFNGwL)HMi+f%^Lvl8Mfd+pMKdQ
zE#sn2<18tQpIzXW$m23Sh=b3}rG^6Fz}`#-J;Y!v-Hqy^9I@?#ZSP@%yEGvHH$vW|
z;64;9vNFKPX}QFpK`JtKNBOtGKe>>j)CJt6sdTn=XZ>k50o0u&M{FexfoY14%POm?
zYls_QivAJ>s)RBw3Y=*#!)^*EVTc6oJ!ahkzv#WHTV%f4S*LFW$6@=vdjR^M_oDpQ
zNR}-aH8Q*`M=I&INg%Ex68X7&>}iyI1ORF9xY)W&1scy!VE`Zm{jRar^;@NM6l?G^
zBMRamNrNQ&&<W1#utv{|>PIiR+762wfuc|5GB$48&qaP#%s5gcA|n95uwx5EdIUwy
zkXjRO2O(?tm&PHtj9omZ_7^e8yJqAGgLrH4S2WR4Ino_c9n(I^X>WBugwN6K>Ag0@
z*D`!<T<?*q%#(B1BXQfa>A_15_qeltqsM=sC!gv0XL9+Od|ZG*R)o?dz19z~y5DQ<
z-+IB`Ao$wgh|WiPe74ysJoeAGGqneY3(3BbTJlD^-QP%ReIse}PTJl`_vMYWh<B2E
zBdzlr=|R6qz#TilagXD=@hGpvQ5Cp0V9oOx$mw*_kEd(x$I}kWX2N5W7t!4iNVXKn
z^}Hh!*(M}1-huhJXvrQs?4;d))!dn{i6Ji!$+)qZ%H#IZC)H7moV+<pd1TsfCu9)_
zB`^0mnYo*rW)FbY?hy_t-09FwGYul-qD3PpjT@E~4I>$;Sd!$TDS1NDDm2M42l~co
zOrtD{;rmD?vZ^K-i;D<Eft&*(o%@!&tdfco!iub6DXG#ri%1snibgTN@J(VW1j!Pf
zfol_qDy4av7PKY|*>prMeJg*XQ}cw1JfjV-$|#Q0q(}<DL0YEgzG+k!QIsQ~5s@Wn
zTqTV0sxAtDLCmWQ->e{cQx!<Y(HCxrVv?B0Nf9NHzdXM5r94iHxZqL6pgvaBbw)%%
zqMUL#(d^tej~mR0Se~S5mLngk8x|8}MxqeBMn-b#TjUk1ni63E3Kdy|X^M&!JS#*=
ztMnpoQ6+?@w8(j#WoZdz#dVqGgou>o7;^4gCP|q@6!~qOXK|g77&!?|ScB}0rwH-q
zzC6kc3RM=^>MHl@&hxZLqDB-6yY5Amvx=|`40DmiyrfY>c!I4f2`TF4!nZ2Zh7}}5
zwpnK}p5n5}qdJZOhe;k^?15A<42;sIN~^4(6{+f^hNwBEFr?zL7lhD^iUeq*q?uqz
zUF2~|^1S2}o0lZ#zLex7$_iH0P*s8fQ3i{K$x{LqX3@28k(WhAGGq#wfPN{$Jj^1h
zv2{XR`m(%cO(yC*qQE?LR`aH+idYm8O^d4L=e{Bq8INcNBjm6_gk0Jn?8BI<x@zb}
zUXfRM4iPyPj{^o}L{*a~1d1cjN__6yG!XzfjzgMcS(1^O2v()o3Q=Vl$xrqG4+vDE
z080%5r=5_LF$phpK?iq&;Q2T}_wG#Y)H>eqqtJh!^y)7n5cs!_@WmG(eHM0#JBHi>
z2XtnnJjGC-zhPGQeSbgd5ztluUa$*JG6D!{rP`kF_D$11+TCj#Nsu%6a@#SNCVW6D
zPJtB+Qag{3UZ0_Sc|13ES}U%!@I|#VSVS80>^K2F=*d7OU_3zMB`g|ydpr+ph`e%^
z^XA%1<-*LK|2*^m#E()Q$9L~Y*38_HfOUH2od+4e7UiQ0@*<lY;J^a*_x<bfhIrsF
zax9>;Asw=SvN~t1)_-1sT;EKZhmCc<9{K&bg7xu!Bt#QRFL((J8!-;hbMC(^fIAZb
zF@T^xK@Rm892IH53rJO$ma>HwKku&&7J`I@NJP^iioS{!Rxm@y{aYC5slIjxf)v3k
zgBt>0;`XJ#MgbZ6WeDRh;}X-Sum1b{^swdY-T6<4^ig%g>%$4PS6m*C$0-c%*X7z@
zLzHoR5uhXM{v|;6_HD$g36Y}uLsJpu*`Jz<BLCE6w~=`qb}YmLw|RVBNqF1Z>)KcO
z1R$Bue32vz{953CEV6L>;Udd+ns(A9S$?*JPER<xhZN)f>Uw>Y0lvSq`2Gy!H{JZH
z_1B8z@Ypev|4zo=uQ>aBp4EQq?CoZ&<ifU>N(DZ}d%bSH0#|+5fB}oR`S0ZHk|xy!
zJXy^iq1wKnFms2Y;Q>yg(~kLSu`j>a6p$_u#Ja#=X6=Pcq~nOT2Ll)*)S?c%u}zD=
z*BRhodW82nzm`d@(<4$DK<6=zqWC(-`7)N#udgHQ+)FVw4W<aWmiL(iE%7&1*q3m@
zUL2o??T0|Rtp)_U;z>Za-v2wSrK&IKyaTIyg#7Z?UOQ@4NVh<bP}i`1IYyX9y3Slk
zSa947`;p=Xo{-4$*E`M(8+^_C`}o|TblBx-FTY!+$FDJX#gW^~UG}%GPoahYnUdJu
z6exRVe~YEE(6&MMeK~?AsEzD*;pN-MLcdzG=>1EhQ!60k<rAh~O-22F#SZ7|;_q#R
z$Qeu|x@<ErKj5~}N9oq}t`G5_?T_-d)4gD0D2M%Nl!3>(=P2d$YQ)M97w;y2W1+-r
z!DhDZb&vW)>MiWy)ZM&Da{Epl-EyOMxh-Kk8|ZIk9nzUq4sdnC7hliMv*73I$*i1r
zGd`!&ij3z?oTpCsaMxDvfe3ATC`6pnW>1hMQP$r!)qm)$c%YPQkuJWsW9mayvz_cw
z{b~DWKljsq;(k(h_dy;<h5t&W#(tpk&V8V^LVTchQ0+TaF8TxYc6)rF4u*W9F3%6t
z`QCn@B20duu5|f8-R{5oa=&wjD)$%n^W{|_-$$HtMqdk^pMXC6cBp=VSN?x~<+!wi
z8TJ{MzF&CH*)W`4%%b9O4@sL9qmLeorrtEfgS2K2vMjoM>#~@|jXS$F4)Zw9^8ES{
z$4Us?igg|o?i0L@0iabodW6DG)B_vvll1}^1Ztk{h7M65AaL3h(C#FF2bvC^X83;l
z4z+2NR?my8Ui<Lz#PbWIteW4<V&Hlo?Aq`6LWL942lrWsG02k|K4$mGHupdEZ;L!e
zbdq!QZVc9in4Q+)rWc_kGO_4W|9wWHkJVn<0rj*U?g%?xRKE@D{$t7O&oB(u2i}t=
zye<2%^IG1cyFL1wANr6Fcp3bi_vP(hQhF`j&mR|@ZD5<n)(LT~T|7w(7(xaOq~DT|
zkG6$(^D`aaxC8*r{>u+yWk7`m4t8q)Xy*AqXry#Rx)zQb3y1OR`JD7|82&HqI%&Kn
GF8}~zF#hiV

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnsmasq.conf b/phishing-filter-dnsmasq.conf
new file mode 100644
index 000000000..2cabacff1
--- /dev/null
+++ b/phishing-filter-dnsmasq.conf
@@ -0,0 +1,454 @@
+# Title: Phishing Domains dnsmasq Blocklist
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+address=/1nvest.bigbantbaz.top/0.0.0.0
+address=/25116414.cc/0.0.0.0
+address=/365365news.com/0.0.0.0
+address=/365f09.com/0.0.0.0
+address=/750115.cc/0.0.0.0
+address=/823pages.pages.dev/0.0.0.0
+address=/95564339.awi.za.com/0.0.0.0
+address=/999fc.vip/0.0.0.0
+address=/a.yyyy.cf/0.0.0.0
+address=/aaaa.whilefish.xyz/0.0.0.0
+address=/accounts-microsoft365.weebly.com/0.0.0.0
+address=/accounts.0ffice365.support/0.0.0.0
+address=/aidanochka-tabys.kz/0.0.0.0
+address=/airbnb-clone-sahinur.vercel.app/0.0.0.0
+address=/akbarinewv2.morteza638n.workers.dev/0.0.0.0
+address=/alaindemeuron.wixsite.com/0.0.0.0
+address=/alexa81o.github.io/0.0.0.0
+address=/alienv2ray.pages.dev/0.0.0.0
+address=/allegr0llokalne753724pl.art/0.0.0.0
+address=/allhrteam.com/0.0.0.0
+address=/amazon-clone-by-sudip.netlify.app/0.0.0.0
+address=/ammuvicm.work/0.0.0.0
+address=/amyr.iran-cyber-net.workers.dev/0.0.0.0
+address=/antaidossiersuivamendimpayeerf33.zynekcctv.com/0.0.0.0
+address=/anuragrauniyar.github.io/0.0.0.0
+address=/appeal-voilation-policy-issues.github.io/0.0.0.0
+address=/apple-id.cc/0.0.0.0
+address=/apri.154-203-197-141.cprapid.com/0.0.0.0
+address=/arvestcreditcard.embarkdigitalonboarding.com/0.0.0.0
+address=/asdfjeiod.com/0.0.0.0
+address=/ashleyproberts.wixsite.com/0.0.0.0
+address=/astounding-trifle-b88a2b.netlify.app/0.0.0.0
+address=/att-101397.weeblysite.com/0.0.0.0
+address=/att-102641.weeblysite.com/0.0.0.0
+address=/att-107756-104508.square.site/0.0.0.0
+address=/att-108102.weeblysite.com/0.0.0.0
+address=/att-108651.square.site/0.0.0.0
+address=/att-mail-101246.weeblysite.com/0.0.0.0
+address=/att-mail-105533.weeblysite.com/0.0.0.0
+address=/att-mail-109459.weeblysite.com/0.0.0.0
+address=/att-servicce-mail.weebly.com/0.0.0.0
+address=/att-sign-in-107078.weeblysite.com/0.0.0.0
+address=/att-yahoo-mail-105061.weeblysite.com/0.0.0.0
+address=/attcom-101415.weeblysite.com/0.0.0.0
+address=/attinc-101356.weeblysite.com/0.0.0.0
+address=/attmailonlineaccountupdate.weebly.com/0.0.0.0
+address=/attnet-100294.weeblysite.com/0.0.0.0
+address=/attonlineservicesa.wixstudio.com/0.0.0.0
+address=/attonlineservicesa.wixstudio.io/0.0.0.0
+address=/attweadminservices.weebly.com/0.0.0.0
+address=/auth-sharepoint-asr.vercel.app/0.0.0.0
+address=/avertisystems.com/0.0.0.0
+address=/b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev/0.0.0.0
+address=/b35ccc.com/0.0.0.0
+address=/b35lll.com/0.0.0.0
+address=/b35www.com/0.0.0.0
+address=/bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz/0.0.0.0
+address=/bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz/0.0.0.0
+address=/bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link/0.0.0.0
+address=/bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz/0.0.0.0
+address=/bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link/0.0.0.0
+address=/bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link/0.0.0.0
+address=/bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link/0.0.0.0
+address=/bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link/0.0.0.0
+address=/bbf-alpha.vercel.app/0.0.0.0
+address=/bet365t3.com/0.0.0.0
+address=/bet938y.com/0.0.0.0
+address=/bet958c.com/0.0.0.0
+address=/bhngfd3.pages.dev/0.0.0.0
+address=/blackdasblacks.shop/0.0.0.0
+address=/blsckdagsever.pages.dev/0.0.0.0
+address=/bridge-9wdpjmsoa.pancake.run/0.0.0.0
+address=/brubreumummeddoi-4514.vercel.app/0.0.0.0
+address=/bscusdty.top/0.0.0.0
+address=/bsozvycr.icu/0.0.0.0
+address=/bt-102368.weeblysite.com/0.0.0.0
+address=/bt-106861.weeblysite.com/0.0.0.0
+address=/btjfh.weebly.com/0.0.0.0
+address=/bussinessaccounthelppage.click/0.0.0.0
+address=/bwfujmww.icu/0.0.0.0
+address=/bx.sfdsb.icu/0.0.0.0
+address=/c.cting365k.cc/0.0.0.0
+address=/c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev/0.0.0.0
+address=/can-post.cyou/0.0.0.0
+address=/celery.sa.com/0.0.0.0
+address=/cen4-six.vercel.app/0.0.0.0
+address=/cf-worker-pages-proxy.1352562939.workers.dev/0.0.0.0
+address=/cf.13084493.workers.dev/0.0.0.0
+address=/cf.iwoai.cc/0.0.0.0
+address=/cfcf-8.pages.dev/0.0.0.0
+address=/cfr-reed-taxi-wayne.trycloudflare.com/0.0.0.0
+address=/chain-trt.online/0.0.0.0
+address=/chainsolapprove.pages.dev/0.0.0.0
+address=/chat-wa.xyz/0.0.0.0
+address=/check282.tempisite.com/0.0.0.0
+address=/chore.pink/0.0.0.0
+address=/ciftcininbankasiziraatbankasi.com/0.0.0.0
+address=/claudiorojas.cl/0.0.0.0
+address=/clivenicoll44.wixsite.com/0.0.0.0
+address=/cloudflare-workers-pages-vless-a2j.pages.dev/0.0.0.0
+address=/codt.digitasianetwork.workers.dev/0.0.0.0
+address=/coinbase-com-18690.subttrepimop1005.workers.dev/0.0.0.0
+address=/coinbasewallet-verification.198-46-89-184.cprapid.com/0.0.0.0
+address=/company0rder943.weebly.com/0.0.0.0
+address=/completar-la-verificacion.vercel.app/0.0.0.0
+address=/conductibili.fun/0.0.0.0
+address=/correosprepago.bnext.es/0.0.0.0
+address=/crenadenuddoi-2258.vercel.app/0.0.0.0
+address=/cryptorectification.com/0.0.0.0
+address=/currently5267.weebly.com/0.0.0.0
+address=/currently70.weebly.com/0.0.0.0
+address=/currentlyatt909.weebly.com/0.0.0.0
+address=/d.afirkz56924.workers.dev/0.0.0.0
+address=/dio.azrealonce.workers.dev/0.0.0.0
+address=/ditgong.com/0.0.0.0
+address=/doc-online-1881.on.fleek.co/0.0.0.0
+address=/docsignauthorizationrequest.vercel.app/0.0.0.0
+address=/docusign.com.bestfinancebroker.com/0.0.0.0
+address=/duang-5dh.pages.dev/0.0.0.0
+address=/duvhkeq.pages.dev/0.0.0.0
+address=/easyaccesscommagebn.com/0.0.0.0
+address=/ebay8787.shop/0.0.0.0
+address=/ee-account-home.web.app/0.0.0.0
+address=/ee-service-help.web.app/0.0.0.0
+address=/ee-service-portal.web.app/0.0.0.0
+address=/eln3.vercel.app/0.0.0.0
+address=/enormous-orchid-howler.glitch.me/0.0.0.0
+address=/espaceparticulier.life/0.0.0.0
+address=/ets3qe9ooms8t6i8.pages.dev/0.0.0.0
+address=/excelorgo.com/0.0.0.0
+address=/falabellacom.dominiquepg.com/0.0.0.0
+address=/fdesq4.pages.dev/0.0.0.0
+address=/fdsfjiwe.com/0.0.0.0
+address=/fdsjfkweow.com/0.0.0.0
+address=/fekoulamevebouna.freewebhostmost.com/0.0.0.0
+address=/felomane390.wixsite.com/0.0.0.0
+address=/ferngos.de/0.0.0.0
+address=/fieg.84yr483rhfwieujro348ur84.workers.dev/0.0.0.0
+address=/figinstenatecom.pages.dev/0.0.0.0
+address=/finansfaizsizbasvurum.online/0.0.0.0
+address=/forested-mirage-samba.glitch.me/0.0.0.0
+address=/formtools.com/0.0.0.0
+address=/fortradesetup.hamidamnaie.workers.dev/0.0.0.0
+address=/free-5436781.webadorsite.com/0.0.0.0
+address=/frogsrus.wixsite.com/0.0.0.0
+address=/fshraha.pages.dev/0.0.0.0
+address=/fukshumx.world/0.0.0.0
+address=/gazruinv.web.app/0.0.0.0
+address=/geaoolsv.pink/0.0.0.0
+address=/geminiwallete.godaddysites.com/0.0.0.0
+address=/ghjhyu.wixsite.com/0.0.0.0
+address=/gimennlouin.gitbook.io/0.0.0.0
+address=/goldenrod-rowan-submarine.glitch.me/0.0.0.0
+address=/gorgeoushome67.wixsite.com/0.0.0.0
+address=/group11-vvip-hot-girls-combi.viplch.online/0.0.0.0
+address=/gruppeflorian.com/0.0.0.0
+address=/hanisfir.shop/0.0.0.0
+address=/hedayatfreedom.hedayatkhakpour.workers.dev/0.0.0.0
+address=/hello-world-morning.freekite.workers.dev/0.0.0.0
+address=/hello-world-muddy-cloud-f45b.mfoster0425.workers.dev/0.0.0.0
+address=/helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com/0.0.0.0
+address=/heluapla.shop/0.0.0.0
+address=/hemanlau1.pages.dev/0.0.0.0
+address=/hezhouruan.552008598.workers.dev/0.0.0.0
+address=/hgcdhbxnf.weebly.com/0.0.0.0
+address=/hjrhd.top/0.0.0.0
+address=/hk04-123.pages.dev/0.0.0.0
+address=/hkmqo.top/0.0.0.0
+address=/home-100317.weeblysite.com/0.0.0.0
+address=/home-102207.weeblysite.com/0.0.0.0
+address=/home-107257.weeblysite.com/0.0.0.0
+address=/homelogin7t6sdfcgvhb.weebly.com/0.0.0.0
+address=/htaflytz.baby/0.0.0.0
+address=/htaflytz.black/0.0.0.0
+address=/httap.l-teiegram.com/0.0.0.0
+address=/httpsbellsouthnet-102649sitecom.weeblysite.com/0.0.0.0
+address=/hup6r.com/0.0.0.0
+address=/hy.fuckgwf.eu.org/0.0.0.0
+address=/hypophysecto.fun/0.0.0.0
+address=/hzuayvvl.red/0.0.0.0
+address=/id2.xbenihime.us.kg/0.0.0.0
+address=/ikergalindez.github.io/0.0.0.0
+address=/info-delivery-bg.com/0.0.0.0
+address=/info-trackingcs.cc/0.0.0.0
+address=/info-trackingiax.cc/0.0.0.0
+address=/informed.deliveryhbo.top/0.0.0.0
+address=/informed.deliverytcw.top/0.0.0.0
+address=/informed.deliveryxs.top/0.0.0.0
+address=/infringement-service.com/0.0.0.0
+address=/instagram-clone-in.vercel.app/0.0.0.0
+address=/interbenefitprestaciones.referidosweb.click/0.0.0.0
+address=/iouwerty.weebly.com/0.0.0.0
+address=/isnworldwide88.com/0.0.0.0
+address=/jaydeep8806.github.io/0.0.0.0
+address=/jeanandpeterwilkin.wixsite.com/0.0.0.0
+address=/jetconstructionsgroup.com.au/0.0.0.0
+address=/joeandvelma.wixsite.com/0.0.0.0
+address=/journey-x-pro.com/0.0.0.0
+address=/jsdfchkdsds.weebly.com/0.0.0.0
+address=/jshattkee.weebly.com/0.0.0.0
+address=/juliusmasih27.github.io/0.0.0.0
+address=/jung-sohn.de/0.0.0.0
+address=/katiebllair.wixstudio.com/0.0.0.0
+address=/katiebllair.wixstudio.io/0.0.0.0
+address=/kdlmo.top/0.0.0.0
+address=/kenzmail0.wixsite.com/0.0.0.0
+address=/ketura2010.github.io/0.0.0.0
+address=/keucroilluxibrou-2718.vercel.app/0.0.0.0
+address=/kuconlogin-ui.godaddysites.com/0.0.0.0
+address=/latam-onipojes.vercel.app/0.0.0.0
+address=/layanan-bntuan-resmi-dna.prbu2.my.id/0.0.0.0
+address=/ledger-com-updatefirmware.aparecidovisentin.com.br/0.0.0.0
+address=/levappoprauqueu-4688.vercel.app/0.0.0.0
+address=/leyoixoimmecou-5619.vercel.app/0.0.0.0
+address=/linkbokepviralindo009.vipp.blog/0.0.0.0
+address=/liveairdclazmersn.pages.dev/0.0.0.0
+address=/lo6-cas-projects-64947843.vercel.app/0.0.0.0
+address=/maatamicklogginns.gitbook.io/0.0.0.0
+address=/madebybmr.in/0.0.0.0
+address=/madhu821.github.io/0.0.0.0
+address=/mailupdate87.weebly.com/0.0.0.0
+address=/maine619.github.io/0.0.0.0
+address=/mainnetverify.pages.dev/0.0.0.0
+address=/mazulyta.pages.dev/0.0.0.0
+address=/megrebeikenneu-2106.vercel.app/0.0.0.0
+address=/mendhfjpl.weebly.com/0.0.0.0
+address=/metacareer.com-case37169314276.com/0.0.0.0
+address=/metagalaxy.pages.dev/0.0.0.0
+address=/metamacksiologus.godaddysites.com/0.0.0.0
+address=/metemrsblogin.gitbook.io/0.0.0.0
+address=/meyetamaskiwalt.gitbook.io/0.0.0.0
+address=/mianfeijiedian.lawcpacpv.workers.dev/0.0.0.0
+address=/milanharvestfestival.com/0.0.0.0
+address=/mirobitsgt.github.io/0.0.0.0
+address=/mocp90.pages.dev/0.0.0.0
+address=/mostafa2.mehdi84888.workers.dev/0.0.0.0
+address=/movie-firebase.vercel.app/0.0.0.0
+address=/mubki.hp.peraichi.com/0.0.0.0
+address=/my-site-104564-105934.weeblysite.com/0.0.0.0
+address=/myaccountsignup.net/0.0.0.0
+address=/navy-nose-4544.typedream.app/0.0.0.0
+address=/net-flix-front-end.netlify.app/0.0.0.0
+address=/netzero-webmail-105996.weeblysite.com/0.0.0.0
+address=/new-currently-1-23-24.weeblysite.com/0.0.0.0
+address=/newattupdatemailboxkidlyverifynow.weebly.com/0.0.0.0
+address=/nfty-proj5.vercel.app/0.0.0.0
+address=/nnbsscnaceesngsetr.com/0.0.0.0
+address=/occinamete.cfd/0.0.0.0
+address=/odovsccs.weebly.com/0.0.0.0
+address=/officalourtime.weebly.com/0.0.0.0
+address=/office36503.com/0.0.0.0
+address=/ohscorgza.github.io/0.0.0.0
+address=/okm.znt.temporary.site/0.0.0.0
+address=/oliver752.github.io/0.0.0.0
+address=/online-e-commerce10.com/0.0.0.0
+address=/online-e-commerce11.com/0.0.0.0
+address=/online-e-commerce12.com/0.0.0.0
+address=/online-e-commerce5.com/0.0.0.0
+address=/online-e-commerce7.com/0.0.0.0
+address=/online-e-commerce9.com/0.0.0.0
+address=/orange234.wixsite.com/0.0.0.0
+address=/orgmail.weebly.com/0.0.0.0
+address=/ourtime.datings-information.workers.dev/0.0.0.0
+address=/p.updateinfocl.top/0.0.0.0
+address=/p.updateinfocs.top/0.0.0.0
+address=/p.updateinfoga.top/0.0.0.0
+address=/p.updateinfojq.top/0.0.0.0
+address=/p.updateinfolw.top/0.0.0.0
+address=/p.updateinfoor.top/0.0.0.0
+address=/p.updateinfooy.top/0.0.0.0
+address=/p.updateinfoqv.top/0.0.0.0
+address=/p.updateinfove.top/0.0.0.0
+address=/p.updateinfovt.top/0.0.0.0
+address=/p.updateinfowu.top/0.0.0.0
+address=/p.updateinfoxb.top/0.0.0.0
+address=/p.usertracktxz.top/0.0.0.0
+address=/pages-108-tg-cfzz-ip.pages.dev/0.0.0.0
+address=/pages.tempisite.com/0.0.0.0
+address=/pageverifycenter.com/0.0.0.0
+address=/patjimmy323.wixsite.com/0.0.0.0
+address=/paypalloginin-usa.blogspot.com/0.0.0.0
+address=/paypalloginin-usa.blogspot.hr/0.0.0.0
+address=/pcmag.anycubic.vip/0.0.0.0
+address=/port01-acf.pages.dev/0.0.0.0
+address=/portal.chiaveggies.com/0.0.0.0
+address=/pruhuffopraussou-5681.vercel.app/0.0.0.0
+address=/pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev/0.0.0.0
+address=/pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev/0.0.0.0
+address=/pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev/0.0.0.0
+address=/pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev/0.0.0.0
+address=/pub-2801359d2be54bfd8701132626efeb73.r2.dev/0.0.0.0
+address=/pub-3096005ebeae423182ccd89665564d8a.r2.dev/0.0.0.0
+address=/pub-46a5f86348ae4aceb3591d126020999f.r2.dev/0.0.0.0
+address=/pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev/0.0.0.0
+address=/pub-51f896deb233450089fc1a520e6ed957.r2.dev/0.0.0.0
+address=/pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev/0.0.0.0
+address=/pub-682ad3b65d944376b919745aae3c56d4.r2.dev/0.0.0.0
+address=/pub-722720be67154192a1102b2cf085d306.r2.dev/0.0.0.0
+address=/pub-7d056bfeb6b04852801553620fe62c0a.r2.dev/0.0.0.0
+address=/pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev/0.0.0.0
+address=/pub-873fc6a3edb941c6a17f50911dfca518.r2.dev/0.0.0.0
+address=/pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev/0.0.0.0
+address=/pub-aab4be29317b4ec296517a557db12622.r2.dev/0.0.0.0
+address=/pub-ba5a046c69974217b0431bca4ba43740.r2.dev/0.0.0.0
+address=/pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev/0.0.0.0
+address=/pub-c59cf4e950b142949df8861e60b3689d.r2.dev/0.0.0.0
+address=/pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev/0.0.0.0
+address=/pub-e5855431d98545b38408f52af50ab8a1.r2.dev/0.0.0.0
+address=/pub-ff0271d87324424a9aec83337e844a54.r2.dev/0.0.0.0
+address=/puertaselectricasprincipal.netlify.app/0.0.0.0
+address=/qaffixledger.com/0.0.0.0
+address=/qbstdfda.com/0.0.0.0
+address=/qpownthenewyhadvanceweb.weebly.com/0.0.0.0
+address=/raj-tiwarii.github.io/0.0.0.0
+address=/restrict-policy-nonadherence.vercel.app/0.0.0.0
+address=/reviewboss.github.io/0.0.0.0
+address=/rfgxg.top/0.0.0.0
+address=/riaayaoman.com/0.0.0.0
+address=/roadmap.binarydesignhub.com/0.0.0.0
+address=/robinhooldloegins.gitbook.io/0.0.0.0
+address=/rouzhda03.kambizmedia.workers.dev/0.0.0.0
+address=/rsjxzl.com/0.0.0.0
+address=/rtyuiuytgf.weebly.com/0.0.0.0
+address=/rubinhuud____llginnh.godaddysites.com/0.0.0.0
+address=/rudra-choudhary.github.io/0.0.0.0
+address=/s.team-s22.com/0.0.0.0
+address=/sadekk.com/0.0.0.0
+address=/sajsa.icu/0.0.0.0
+address=/salarahmad786.github.io/0.0.0.0
+address=/santanderpod.fsthosting.com/0.0.0.0
+address=/satinnaaoabbs.weebly.com/0.0.0.0
+address=/satyarthi.uk/0.0.0.0
+address=/scarce-army-wide.on-fleek.app/0.0.0.0
+address=/sdfvgbcvb668.weebly.com/0.0.0.0
+address=/sea.6e2efhxz.eu.org/0.0.0.0
+address=/secrbnsuppotyu9.weebly.com/0.0.0.0
+address=/secure-ledger-m-auth.webflow.io/0.0.0.0
+address=/server.2rk3.com/0.0.0.0
+address=/server.pxs7.com/0.0.0.0
+address=/setshinobi.vip/0.0.0.0
+address=/sextelegramxxx.pages.dev/0.0.0.0
+address=/shareorder711.weebly.com/0.0.0.0
+address=/shaw-101342.weeblysite.com/0.0.0.0
+address=/shaw-103098.weeblysite.com/0.0.0.0
+address=/shaw-106054.weeblysite.com/0.0.0.0
+address=/shaw-106665.weeblysite.com/0.0.0.0
+address=/shawsyncmailservercommunicationworkspace.weebly.com/0.0.0.0
+address=/sherman-relate-rev-baskets.trycloudflare.com/0.0.0.0
+address=/shobhit245.github.io/0.0.0.0
+address=/shopifysite.cn/0.0.0.0
+address=/shoptkoo.com/0.0.0.0
+address=/sign-in-att-108611.weebly.com/0.0.0.0
+address=/sign-in-att-108611.weeblysite.com/0.0.0.0
+address=/simxtrackredirecttszz.pages.dev/0.0.0.0
+address=/sjhsjjs82.weebly.com/0.0.0.0
+address=/skill-meta.com/0.0.0.0
+address=/sky-107842.weeblysite.com/0.0.0.0
+address=/smithjamessv328.wixsite.com/0.0.0.0
+address=/socx.ly/0.0.0.0
+address=/sparq.eu/0.0.0.0
+address=/spicyhotcoolsoup.s3.us-east-005.backblazeb2.com/0.0.0.0
+address=/spotifyl.vip/0.0.0.0
+address=/ssfgsfg.wixsite.com/0.0.0.0
+address=/sss.k999955.workers.dev/0.0.0.0
+address=/stonemartin1001.wixsite.com/0.0.0.0
+address=/stringroll.com/0.0.0.0
+address=/sukienffvip.doiqua-garena.io.vn/0.0.0.0
+address=/supportsecurity981.tempisite.com/0.0.0.0
+address=/talktalkserver897.weebly.com/0.0.0.0
+address=/tareq088.github.io/0.0.0.0
+address=/tbsl.by-on28.my/0.0.0.0
+address=/tcaconnect.ac-page.com/0.0.0.0
+address=/tejlksdoisd.com/0.0.0.0
+address=/telegcm.me/0.0.0.0
+address=/telegramjessica.pages.dev/0.0.0.0
+address=/telegrampx.com/0.0.0.0
+address=/telegramsexgroups.pages.dev/0.0.0.0
+address=/telezelm-ivee.icu/0.0.0.0
+address=/telgramsignal4.sg-host.com/0.0.0.0
+address=/telstra-102379.weeblysite.com/0.0.0.0
+address=/telstra-104033.weeblysite.com/0.0.0.0
+address=/telstra-104394.square.site/0.0.0.0
+address=/telstra-106968.weeblysite.com/0.0.0.0
+address=/test1.workersdev40050.workers.dev/0.0.0.0
+address=/tg-logrom.com/0.0.0.0
+address=/tktk.tktsk.shop/0.0.0.0
+address=/tokecn.im/0.0.0.0
+address=/tokeni-1601.vercel.app/0.0.0.0
+address=/towrewds.com/0.0.0.0
+address=/tpwalllet.com/0.0.0.0
+address=/trustwallet-zendesk.com/0.0.0.0
+address=/tuviaje10.com/0.0.0.0
+address=/tvjbqiyv.guru/0.0.0.0
+address=/twcht.twimobie.cc/0.0.0.0
+address=/twimobie.cc/0.0.0.0
+address=/uedy.pages.dev/0.0.0.0
+address=/ultsyncingsolana.pages.dev/0.0.0.0
+address=/upheldlog8.godaddysites.com/0.0.0.0
+address=/upholdloginorofficialsigin9.godaddysites.com/0.0.0.0
+address=/upholld-lligon.godaddysites.com/0.0.0.0
+address=/usol.shop/0.0.0.0
+address=/usps.com-cgkzkukp.vip/0.0.0.0
+address=/usps.com-trackaxd.top/0.0.0.0
+address=/usps.com-trackbrs.top/0.0.0.0
+address=/usps.com-trackdht.top/0.0.0.0
+address=/usps.com-trackgee.top/0.0.0.0
+address=/usps.com-trackhsk.top/0.0.0.0
+address=/usps.com-trackivo.top/0.0.0.0
+address=/usps.com-trackjjx.top/0.0.0.0
+address=/usps.com-trackmra.top/0.0.0.0
+address=/usps.com-trackmvz.top/0.0.0.0
+address=/usps.com-trackuqg.top/0.0.0.0
+address=/usps.com-trackvgb.top/0.0.0.0
+address=/usps.com-trackwbv.top/0.0.0.0
+address=/usps.com-trackyqb.top/0.0.0.0
+address=/uspsdana.com/0.0.0.0
+address=/uspsdant.com/0.0.0.0
+address=/uspsservicetrack.blogspot.co.id/0.0.0.0
+address=/uzomadj.shop/0.0.0.0
+address=/vedi.154-203-197-141.cprapid.com/0.0.0.0
+address=/vgmrm.top/0.0.0.0
+address=/vkkvdkdcmm.weebly.com/0.0.0.0
+address=/vl1.spaceysen.cn/0.0.0.0
+address=/vobroffexagru-4404.vercel.app/0.0.0.0
+address=/vrvtn.top/0.0.0.0
+address=/w1.5114559.workers.dev/0.0.0.0
+address=/waassistance.com/0.0.0.0
+address=/wallet-diagnostic.com/0.0.0.0
+address=/walletsecured.pages.dev/0.0.0.0
+address=/web-lupqrbm0k-uniswap.vercel.app/0.0.0.0
+address=/web.tlgrm.app/0.0.0.0
+address=/webmailserv3038z.wixsite.com/0.0.0.0
+address=/wk.xzte.eu.org/0.0.0.0
+address=/wodjrvrisixc.wixsite.com/0.0.0.0
+address=/worker-dark-queen-529e.servers5555599.workers.dev/0.0.0.0
+address=/worker-hidden-frost-ba39.yoveli7450.workers.dev/0.0.0.0
+address=/worker-site.aopages.workers.dev/0.0.0.0
+address=/wsa.osmqone.org.cn/0.0.0.0
+address=/wwwwwwsasasasasmmmsszz.vercel.app/0.0.0.0
+address=/x.tovip.eu.org/0.0.0.0
+address=/xhjxkj.cn/0.0.0.0
+address=/xixiajiaju.com/0.0.0.0
+address=/yahoomailquthorization.weebly.com/0.0.0.0
+address=/yungtee3.wixsite.com/0.0.0.0
+address=/zagbasamothega.dnsget.org/0.0.0.0
+address=/ziraat-kampanyasi-besbintl.xyz/0.0.0.0
+address=/zxl.cbbnbbc.nyc.mn/0.0.0.0
+address=/zzpov.top/0.0.0.0
diff --git a/phishing-filter-dnsmasq.conf.br b/phishing-filter-dnsmasq.conf.br
new file mode 100644
index 0000000000000000000000000000000000000000..21195e64d6725bfe5522e0a293f5643ec1c3998c
GIT binary patch
literal 5606
zcmV<C6&dRBcxM72$DIHC*T1H^e?x|+1jQe^-9E+v2IWZb5KMoss%G?g^61NyWz6jv
zB~9iCO^${sV}I`hI)8{MpJED-3b<7;Ri)t}6-*<T3Z{aoNabgmz!Xa9eJg7&!<st+
zlc>q1a&yLL5vQg!!dE7lgwFEfAO9R%++x4|`TNb+&8PLJw%67lyCXvV{<M{`!PoZ7
zAOHNzk%(b``_sSv3NkV>O#eI#zh&cZhv7ee`Qx9zyANNm{`P15vGDx-MQX(#cQ9hk
zWS+nL<&S?#-sXT6fBUnwc67&*)wci|jT0h-3ks5)7Jof5rvBSizx?sffOTs}kpJU4
zy7HGl{%I3N{p}An5EMRd_%}bRZ(EPg^v(GD+;}f}ec@LOZKr<=4KSbo1=YXf55JD-
z#M-F#tA^AxytL)x*MWYW0on;B$8i#)pvC|=_$2uxs}M8b`WeCv%l!?{au`P$wV@ct
z_GqO)J&MH>t{WC9C&Bqb;qvr_bmp}zi!=1}Wt$(+=XoA#+}#@ifbOdVy7tr2`*|<w
zUY-h-jBPNErGQV8UWht8`O!i->EN6<_@uUHw<ptEa3$;D4y1v8D&4bjeEOo3CMM*B
zq{8M?FZ9G>Fi<#(ePY=)6rb=q8I8F#d|~1$(JPl73$9HF;Jni&VlO$-%isNwQp!mI
zZ%|{VZL*@za0z=%CoAw&@bKTSyI+?fguFvYI7>b=aRdqovqIR)*h9(Lt_W{Vs2Zmq
zQoHqsmsgbF-Sb!)V?Vu#*l`6}K2M>(KqBVRSV+Q#$CH=Tz}sA_$5OjLA!4#V9`GO*
z$2onUgu5~AEJpfMFR&Kq$v;p~yufiF1af8{=B7N^S=9&`O1*@B@qonJPKo|?KZcG{
z5H@f!E;AX$NX>EddX#MQGQzNF2&R}kJ^sr4K5Z0o8rNZPBE%r8TK7Sp6Ua{80zOB{
z8cVAUb9-&Mr{tCiX~nyML@NbMw}Q#7k#QLLGWTn0A_zVdY!c(5^DHMa4nhu!PM4g1
zkb-PbFSo{1oobR}v{nQk3aFfkNewe(QgVLg7a^D79gd6`#?-?w3U3a-CgKw=YaeEn
z2-2FvMX7$6D(ec9<8$4k7-fi4eKOT^iB`BWI!T=v7|r3S{32mR*FCUBB*YS72sW`o
zPkFgpw?2n*A2jUNE+lWYlZP_cy={cv)Ard@3xPUe?L4tGPw`PGjDJp#TH+!skxV)w
z3>cy&WQ0#(++eM?^Gt?;M8wyu<|FzM>F&$^mo*3QZNQeIxirS48js5m!u`MsoPpm2
zZZGIDxNA@S^B!k@A`|x}r=78He@dCTzjX8`i{9e8^SNC|Ol|ViAFfgtcJhlmL82zH
zBISgs*DE5N-!re%E|2T<0a0EinfzX-c<t?Si`SY?f$an#w!dR#ULQ=p?0ugv3*R@$
za2`cEtB)(O_xs#?*4pgbk%U;Mbop)m_CigAPy5rFN3TeL_?%2e)9_O!G;s|dk+yo5
zwIV*cMcY}>=ia8y*uj#X?r-+-b0x%VQApN=;b3?8&iTmfBhFCM`@PO@`JVDx-{TJa
zFkf@*&-y*Bh!_iAe~nKyNW<RE&Y$%$MIPwB$Tg(Ir|Y<`uV-ugB>n2Cf2@eO(zkh@
z`7Y+emT&e)JFm_lY%iGA=lN~<o{Nx7X6YQ%GsE`3aKpoj`ic5;Xn(UW*E_~)ebyZO
z#XsLJjkr=e&L9}WyWxbJsU2Zz>HS-1q?m&=-eDwSTex}v0!h_HC2whUmQ$C=Lz))q
z&!SRB*cEVfz1{l%pFxlDcr4zoNS4bUpI9@{1CoIqY3V7%!JzAcJ@y#U+U$vtqd=C7
zYI?QpVb40IYktqi6zWZXMbbnWpA<q@JE^%bzHT444fU4pwN51YI=kV@3V=kN${*Zr
zaxT|D@w&<(<EGWwsv$aUsA)c}e3Com`iB@kuz46Q;ghjMjL3;b281n~p#(9Ym2*UU
zJ`5L@{@K2bX=>iTdld#q>jrD1=E*seg8|D!D_fel!6ZoacimrU9APSS(g2qSIZD1C
zI&#V6#1_7=99c7tj(ku;EF3t7zcP3X#&*UL)dPO4afK8_OB&psT<|2Mtvq{U<$(|-
zU}540K9N=$B|0cj53M;I_HpnN^C4k_MlP5EP#|S7#i-cRr*GPgn=Kcl$EY^ec-M?i
zKFR7PL-nsO0PP<rQR+diHqVkjP^k$(S@0(&Z*mAiurM<as<w)Jy<KvKb94gigQ1Pt
zHp+KhRXs@5ytE6Ri)&USMDU@3nwEjqu3Ia3_?VAz7-S^;V&w1Bh{SLi&~Z^jOhheY
zRDy|A<$s9}#bQ|mA9w(MTEGT{1W0tXp?9<!<Yc>Phtyn=x<Ok#GTCCT2a0R0nQCd}
zqfxBD;|eCQnEKGZ{)|cWFHCukmJ6DO9zx+nFB14Bgh#SzMuP_Z0L;UKbZBiEmiKH}
z3eK1PmD9pR#RH>Y!CR2Mugc&hR9iFmztLtxhK8jlqf#TyiMoKeQ<DP#O9<?Ror`~w
ziDKK}wbg-Tv+02$8=MNSRmnKphpwNJxr95Ul}NkwIoY<K+m2r_&<QZfx?ytEo%qr9
zp9pGr)U0MY<tjun&FVzy0d$#rfs2S-wm>o=dj|%|WKan2;X~qBwlU?h{?ccYT+HSz
z+42>z&^3stE73Uat4Hd6DIWX%boAh{P)WZVY?rsnzqsTat7?;<q!Pi~V8~@<dkYRU
z6CyxUn04H0as0RA(K;nNi}fp#OvKshKK{aMGPZu)eqp{~7Qj9C01;1IyGa1mdW^eJ
zZ@IQeau7ncBIF1O`7%r<4u>VJIrnbYUgB}3N<2j<UN(1m?4OdkP`#+m-`4rnr`j+<
zLsXJc1RbsGsssO4|7xgbFFn!$hRa36>a-;K0;`Zabkxv@a1pd9E$1LG0Ig)9z`AkE
zr1gVt5WR(%zz<kZ5l$inpJqiO$JAhRxi!a?yw=jilJZ^M3T%KcXW#4A<DJ0@!NMfC
z!dtpeXE!xg1cdlGNgJ_ZlV|hvIHYT~U@h@aL17ct?Xx|-Z0%MbF{O~ZPts;wvCI7i
z>d4Q<RI(){Uyw-cIw~i~RlI85zGCimz=Qdao|(@qxgX<5&eI=c%Z=!Dd8KNE_8OsZ
z!E9|0m*h+2Ko@fHFgl+t8zf(yFU}1uJkVOtCYvMuCu`qe*Lizra-hB|WK!{YqDRKD
zfbZqKl|ozH+DGegFzc2$AvKLI*M?;fOvW_+Fi_Fkg1TZ&A*-#r_FbqQ#dqpcb*tnK
zD8xgM9tMsBU1uGJ4o3jl5mJCY_6KvrcL6y^heV~cnW#lBsw9c8#%}sfj>L(veadFJ
zYh&97RWV(f5NF%tH%GBHN33%g_^3iq;RlDYVGw2}Q9qxBxlPqNv!0tq$(RN%Jnf|x
z2xJhDp18iIs=+}6Y3Ok+3OUq(!@P?o1Wc%Hu}LgtfhojW$)faQDtC*A8pM>Wm!sH?
zEZo3SaO7iqDw>w5{!VRghvz&4EjaS-N8U1eYfOIg5oxb<Psr(aEGq=Xsqa_mw#z4%
ziA`0QhiJ+JAvLRs%BFJbv){sbxNo~lL`#zmvgsB)H}qgMa|OHW6^vofmPaErNoB?*
zB~QsmrEM9WkJEN7uiDz+LX&!9{Y<RX3<&hDFiBG6Pl@~7FD&ip8m6ylU<Het07}6b
zA9!qPA}cjawO;x`NRX`I&`Y^|*u75uVIORUGkTrc0Q}J?^yiFZgk(<)5uzTGdrA0^
zTeL(0gHc2Jw%cm!V=F#&gVuILNUI0m4RfOVjm=1!cTX#+c}tXPmUd_!bqL^#LW=<I
znrxKahS(RZ9n-6=^FmxZc5J<XB_FwX2ZbHGDcOh6Z?8-4gw3O%V8`A~PNR6Oq<bo@
z%L6osBqx9557y|708eW?u82;pLm~xh^u#8hN70?p_)tFr@?f^67ugWgS>jsDV7&C@
z6b>k8yv?Vtn3`v<@3O=*{)FSmM}fZTZyiKT3KIu|fKT>!_A#Q#oycii!Yt&|uJew^
z>B~TTMIMHC%O3|dJ9E8u^NHY#H38m;rKWkmB;<)0kjZA_gQit7iABsxFvKE4^`zaK
zJ>+%uDOCy??BeFF9~}$z2_p8^6&u?dG+b6oWhlWB7|n6Ss)q>el(0$G=yp4aM|gX9
z8o(U{a4o3O@0b#H!p333UJEeU&3%qgl&i48-)90aP)VsoK9AGFN5SSP+)G#?z+Em2
z8$@MMbA1kZ?X@f764XX4wZVB|h0KUg5~A+BSQ!nzjfdpWe>_^&q!j@!bAUNcTKIa=
z2S}Saj%I;L$+_W6Hd_t8w)PM|n`0S}rssvOGXso9+^knZDRLc+N4FE_3(Ac>G>ES0
zdiQiY=z#^i+5AmBq>9kWMohx$L)pT`rSY-Rv;CU7jhG7{SO_mfQm#mZ6oRg{E^IMA
zbI&tSxI0|%H!*mvgJ80DM@GVCBfObhsO?phEz7he;YB37EhZyjoG=lx2+j5cQk<ak
zy?Yy;z8*g1tJm4dwPzsoFKexPQqr}W1O~CDwPGXR9oZP4p!Yl)HE#B4Mz;B^#?T||
z&y?8?A@^b+>=7KSFoO&nNZ(d?552z7BTDlg>6@B@$;bute(rWxdZv%V&yq#R<ld-y
z;SsGt#vyxi0}seJ5bW-d*MXS(vY?T8HH>S)YRhFc4$~^08Oe`U!kjSW3VjF~J!m(8
zKmkmk1!u$cv*x%$j-PLi;mS3aem*&V&s<OJXUp;G>vn5VQJ5RY?CpL}s3Yy-aZseK
z#JKk*{+PGe-Coqh0LaEi=2t;_ZAJU|7$44f!?q82j@>)(Rl97HUV%b=X6un#m`Yo@
zrp82ADWu1A?Tz3;&m(;p2^fbUrVUEUY#vTrS5Nws9;I*HIqJSpE49AvYCKsvx+a5A
zd~&Gu=!}@00RhS|Ceh870avuJto;}0nv8tZgBV6|00M<tK$vkFMm?aA+PDaM#B689
zlm#%8aE628ix@x*R_S51seb?)H6jRR#lykC4XC)5oKJcI!<S)zGgr2vC-B8GjZ$c5
z)jW(NXA_&yp`Q8ayYpe0hC!l6K*9K^m@!r@)8r9Rg;lBlCNY6@YT`lx3NWa-Tt+*x
zX<&o5gon#7(stz2IN3oNp}0}YA^;~Cq_%SFyZA&oI<-s|HRD{!Vc5FdnGqx#a6-Gt
zdFvUIR7SaZ9K?VE#h~ptDKl9y;j9&htw$&Zmg`B{MF>7mdKs5lNC4zUPB!a3V`gk-
zgT`qdr5G0m<2W$Qj2o1+e3(w3VFx*BhkDY3P_pW?A|;>L;BaE5q4WwRjRGSU1`@?+
zXFWKuOmaR0Op8msSE!jgGXY1d7crU%#@WeX8At03$gzF*3Q!|}(Ap`k#H1Cdg)K^2
zskPxSolp1xT4-boA7?Gluw|0t3{uWkk8EOW>p2=E3}Q0Vvdn^wvmOK=wE>|)@L3EI
z^oB{!lK^261<sS!LMelKSlEDw+cz<CF;3tj2R#b5h{d`s?bC?Up!uX0yY&nlQP@F?
zX_8i0wJei%gOKB7)uNnc+lgK(DFq+xqNI?TD={c188|tBRxobg(z$`nqg69!LNEaf
zpi%rqGAbcJUN&KA@CTOdDc(T!Q}w{5T<;6c`CAr5m<kg4>e{Tc0AU>YG7H?5@On01
zMUc^w$-6Wc_>kr=DBjc1AphN5ylGA^V^dCGH!Nt9LY|74^I>$IYfU18Tkn<Ra1;;l
zfFhn!h{ZG52nW?ZL3tb>HIF^F0PVC-Th76TjM{a&WZ-j4?(b${;B<$m{p%g+;YmuV
zpZg6NXhD0r?@wEGXQK3cj_uw4-~avJ|AipcDt8l(v@P8hAZE+mZVVF@<3N$cfk-Oj
zS|nAlxbOFe_*AeNO?`y`1-1xwR>FE-ownK~i{;3cy4uVzX#PsP@*T}c02#FAQae_m
zJy6=_Y2P6n28u!AMazl8VI$3nm_NC<-H)l(ovSvdo~(Q+DW?sAPRP)0_p2Q%sc4E$
zK8f|Tr!SH2GQA)X35!Tfu)r1p9G3|w6<BPkBeAmcSP^Kwj=Rphxw4LA6}~HsaW`}u
zj1BR=Z<-dpP|%;ahIt%|YHo1(_2ed)3O^)#Sk%x=gA~fANm}(uhGAw%z2I&5Fh!9U
zhAWy`c`3MwC8`D9DnLV0@Fd5kS$4JVO?ln2-h5+1_OM-BKD;Z9j|3B??K!8T`haO(
zZ=PzB6oiUQ)5n|3%opGE=&inQyK2E_tDjF*EH~SC9|DmolVJFx-!EG=IXn8cEfnw)
z>dBd6Hyf+j+%!CQHhMt$QtUT}H_w*a(h0ok9UYa^UWt=GCpN%n6cQ`Ii+YfjbL8gT
z6MAe@s#~jDvu@Q&_XRe}k!CBn00LW4qMmUW#+Z52MZ*dW6qxVScaO=r(;w7k|Ls6l
zFz|g*>N7nXEOX<=aj{9hJ&PKp39$46d}sZ%3bm+d&gKRMzk^as)N~D0KO`rnXsqq4
zn}Iba3^3$_l3<GP6ZUGeuNLUV1Fj|-X=#J7^bgkRjVee34|?25l@y2-Z@qU}HNp+=
zdko@F#L3@m7@`DwVR=E&x{}SP@`AHnTLJ%>+~#FQkZQ%?BRlg{17C!{?u?IWr^S<J
zcf;Do?$QE_rx*q~be|;JN<v;sj_)aHd)sN-Tis2#aDS#TOrk#CZ6r@*GISFBw3e^p
z$I^|W9af5g0@l}>(p6sr{oRFWkh%lweK{YJT)m_1{OGTLPP+EeggSqjt<iS*n6*a>
z8#+Mvj#krX^w1`6kX}d60aEu7{a8Sy-jG*CcH8~fasb<>TofOchfu9{@0KNoRtHN$
z@M}(i!qgmEi`nZDFbQJT{oVV1%nrk#I0pxT+eB}UvtnJUV!JiPE2849?uz}H6@Nar
z@>n3}^HtoxtKxIjiZ6WzeZDbr+W{!e3nBX0RLe3<XqG_T-JC^Ee{%%;X|RvwiFU<{
z80Q*Gd`bDa@2B0ZiE*yC&oELF{pp{Ii8MCOtov~W@P@T?BE;Z68sjWyOHZx2Mk>cq
zNa;&haskxp_gU@7ysP8ycI#nHe6nu?%6LcLc7!{yU#Lmw$G7M>?4&1OFF1+{BBXdN
ztR;eIJkd+w16MDFDDT?o{Wj#3GjnD8DQEH3-zGN1EhlSh>16G#>k-Koq;#LC@=IAu
z4X|j~T3cX8u&QQD17GNqPYiw*GrSrJW^@!X<~;;DeFd6p{O0uNxvVWwzrGYJ+^iU5
z<&enL1j8H9)FjL{d~ct7|D>3L+ut5O9zGq_xVi^i@9=d4qj$FEJUy)qQAaoKg;hg^
zxI^<KR-iW36<ZOQQ>aOH@L5a+R8KTk?NbYmsZ00Xff}uo)`q6X&{+1Tc;6!rsWN5l
A0RR91

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnsmasq.conf.gz b/phishing-filter-dnsmasq.conf.gz
new file mode 100644
index 0000000000000000000000000000000000000000..13574bd6ffa04b5bef50a3e9dfe1a93d7365042b
GIT binary patch
literal 5819
zcmV;s7DVYEiwFP!000021Dsn)kK{UXzWY}c@GdrBsU>QEfG@@v@WBTI9$$Rp5|o&t
zL?x*umA~FWW%U~jT4Ls#UaG5-AA@8tmM=*5Z(n~^vxeWl{<~AIQ)Bz}7c)>bx-T)h
zfx7$GziY#Lt=#-izkU7hB<Kv{_b-x=JW5HFlz&Z<-%0v=lKdaG|Hore7ToV&>6f7U
z*FP@@{!3c8FEH}`Ul8-3W`K#dIAk}^ll%S0j}~V@S<KDwW1xDY79y$i4ED$LJ*n@X
zvG;!|4x{@=I{&6$T~WyYn8k8GO*6rGz<mFI{X$vY@-0ivyaTO!YuYFM@l!kTU+7F3
zMJZGWT&erFAL+P)n`5S0M#q`aXFQwfM-m^u{{|yPnwEK*$DIG#n3V<o8DVqB;AibJ
zY0lfKB1zNYRBTN$uW1**z6w}>#WY1x=2_OnbW`z@o{!NqjpXsFPS!=^9e>4Ko;2aF
zc<Yn~=~evLpC=g3%`(m|8Wgw289C!x;|+l6{d_Jzd&G&9xT7BKmT59}KEWzMN5i|G
zM!0Rei~F-FD9c6`acxG39K~&3Y`g+mh>q!Ww&b2st8lkg5)U{oJZYKLW4syLgT2r*
z)#z0M23V{?sCqax!^H|UJZPPo_}d<pIm0LzS7PZN+FYtNv^LS&^i+>f6<I~{372)M
zEUi0S3>_|JHPELSztzO{$Sp!m@d&e4a=%d2Ff6O$!=ah8=H151QWUx~uo237qr-8=
z9W~A=ge+>M1B^lq6Wsx<%(D2okI-{IuNO<eou#d%%cyp0gX*0opgLNO(sWk1?8#vG
z*dyiKg31o})DS6g>X3A@Do%?$B1smdO%<hi8uQ80$#*!Nvh~r0TM!tKs1-2`Xneg;
zI0cGZ!3=)r1JikLC*%#3xf1R=4f|vbY9AdcY?N+BxAQ|qvsDt;$m*IB_QnF{IZBf>
zYpQRb4h(QW3C73|p;c9s_)lIWb?oj7M*i4$xq{ay{6oogS)}hpVw%)`aU?H4lKYJ>
z3N+L|fp7An`3Ud8qO);0I)+22N2_*>)adn?RP{##?6foHk7Xp~M;nEodnM&*@d;Xu
z{IHkeBbEB8m{DUW{!R)nzVUADXt6j*LYn-OL0$vAlnag?UNU3sGyg!3(||G08&EMI
z=lbpup8qm;k?YVjC!@wWqV7$y!p2#--OVsuunU&50-9Vz1u0~dbIPN-1QKN><uVb1
ziK>c{BpLvoyydrinTEJmwvTZVTFvLdnq>v&{9?qc&{|)%ZQFLyMrCh7ftFi8F1P2j
zntdSoqbtguP{ypSGPSWmtz=LF+CHo1Z5qb8RI!?*i>2<P<C{}5@-1HG+-=W%pzD1#
zZP^#owjzmvV&fw>&uz`0;vvmEZ0)$_Ft0Sv|AhFKC^nJeNuJOBPW1h$3%yRZkb+Iy
zNS^oo(Hq8i-%Vqlx8=C0Z}DOS7Nc$Tr?N4JDw^L`QVe{Cn=OG4t-j@B=N`6o06Uup
zu@KGHel8b6CNi?}asP1Yhj`u%c|qo!XH@j`UYW^|TfS;HKJVLlxA(Q!+UNAp*~IUB
z>i72k>D0NPirqQ7fi5_CcA~nqJGaFI@(vkt>oF_0Y1{6Kw8L#=PgX9U%9eKNs;bKR
zyqbi)8#T@Awh*ejC*`d&)pItF%Hq-rQ%FhOYUro3JD5c7ZUehbOg+dwV?BBrdOORg
z+OpeyDR{n(<Fx9W5O~Z`!h6|FMpRE74f-|%&z9%x!dYN$vU<O6Eb1%w?8a7#EW|9C
zro0!_9sj!6b!RmX)6Rp?_HY$JX;z6AqGl7*ZE&djiH@B15Zh%uLodw2GAzRYLKqe0
z1=dwTMLE7WG4JQ48FS{jqN&A-FDI=BEy>FFIr2c3^#^&8%{SQv!#rD%<zf<X-<b_-
z(a9??=Ey_O3}%zdZNRvBzJ^Eaq;TxK6|DdhZ;PhXpR!h-C8SDHfeC?&C{H1a7!Vqf
zCL>VLJONSo{E#Kd26nl1_ZfL1GI<$H5S)5ijioc+&DpF#gWY3yQIcXUpCgHR1oxfG
z=v7cehw(*7bsu|-^nw&6&b|qk8(bnZsq?(a-U8KTs5;l4#97oK>*vx&7C>N)`cTnE
zv51LhyJMxb2&p{@J=Z{o6(y4KIern23xqQobz{v6!8vqv#-Y!nKktC|q$V+Ph)G?W
zHSY{gb~=q{T*(=OyBaZ)_tdE;7JhX8{^3HLrk*ufbEC*y^cg^{Fe+}e#ta-RU;d`d
zZ;No>Cb4R4k0`kXwPOSt@lkU*MUg*x8E<UD_@z3C4gy@4O%l6>%`<w08q9?Jv-nKF
z=8O0_LNixV@uM1z)25E{GO8PtoQDfY{1Aibo>&34$+KY4@mL&-+DOws2IPLgpp%(V
zEEqwU(khl`0h=3Z!MMr#gFh3q5wl<n?gVIIqyom}2<wCtb$DdEPcxbv4*rK~&KI`e
z1jbqK1u3hr3VtH1<TD)7_a<qASP@f+Z24J~4avis?u!KawBSp74)3sYYpyDPVR-Zk
z3uq#BiXj3S9smY-a|-t5pf4?qRnJ3_$B``t=aBxf-{L#^DZ~uXQjM6nfmwsozL?lT
z$2KZN7xFi;tX&WH5Co{(F*oA(ILv@JcCq)s=w4TKb-_^pqVE(Nb!PCjBRgL#0>2Bi
z$S32Efc{jH>Ht)aSy00;8atT9MaJ?@37q1FSut+4Kc0?<lb8=~q8$AUi$1<+g<!4Z
z8E$sj9U5Z>S7Uh;Oi=K^2^!m8l)RE^%0MF%L^BWuD_MoMGhJAw6yWZ8XgFjl@}@Sp
z>hEr{-@shdh!T3UXgVP0WVo#~mY7>{2Rfu0!$CLBducOZWX~{82NQ_|JGREp{G?4m
z8`t@6^E$Jg+!QP~YqGpvZ2iXZB_@{<YxI%M;MEvXk9RUBsd{1-#SF17b{Q@?fW-KS
zaz!*?!fpKl_rPe#fUv_b8>24{3$S^%7^5A`%M^DM>ufrVRJ{pSeiNc1&&sOy^q5g$
zY(UA@w9YPXjwGe)EbVAeS4;1@WqA0>Y4K}&i@|nL<9h9)El{tF^@7&4;LZJ&qakjM
zz?OsfU#PF`Zr#3w*VU>4#t{jN8vRK#Gp0X1Ickl@TxpGntl5xEBfl7qi;2+ow&=%z
z5yb~Pp9_N%v1XalG+I|RVd$BoR$1*lqhZS525B7Q%I;dbOjx>O*g(Q`F219qa+nz}
zB6A0VVtVzKgFz+!{;}_9Kbggb&COrkndsQ`XfSs4C*)pG@7MZyPvjwcbWq1g<^_uf
zi2(#`l9S@Cl!+sGQ}{DS>TM-1f?=tQb)7HkVv*+eaw(l`i%im(BJomkM+>}A73hUd
znqI03V;8dJG~^2%JUdhz=HIv|NRre=Q@>e7%SFc?qYToU?q)l2URig2;;)H=Ckb6Y
z+|5OIv{8Rjo2Bos55BR4Bp+idQhbKh27_}omrh9Dt{n@jW2RE?^D}0Y?V)CWa&p!_
z(<#=`446#p)n(jq`|WeCGf3KA2il~}8@~>pKHjcsnaT@-*6m2*dEag_h9$;maR!;p
z)a?$5w>fA0-E*P)y6V`%Nz_$>#1Dp*TZfS@#xUQX45H93TdMt~=`(cUrbcNZ0lpNp
zd&DkS$AQAc#d{0|+?`hHe}_@@aS5^mi1_D_9lNmJUyw83K14p;B@p8~<{T_Nev-_q
z^}5+#bq?Pbwkll1sS(2(?g&UVPo6LwWgoh%1tdKF&ebQ#i?b(XmJRH@2i-!s@d&D$
z5>VIYm>b;%z*N^s8QSq1P-H-2!i;M-rE#~yY3v3w)~If_zDmV!j<j~vEcE2u>1I&8
zSV0f;jaUq(Bka+`A1hrze8lK_;Y9dS=jJ-BBYOy6UEPq+FaA-E>PQt-(1InFGu?Q~
zQhTiLa1c!~^S-&vI)|PO*$X{f_(2cj)8Ev+A=W(-N=r$SCZVPEuyAXX*2_a-nYl!y
zO2dZ){eqi+MDS=)A22jcXY?8~s>$3C6B4bFkf0?-Y@9KxM)={NB7r5xWZ6REVUN{G
z^wS_(u*bR3>%I~x(BK~~;UM^xqqnWfp@*yQ!rGq6SaC*XvUI^xYl-r*4r@WfZq&o5
zVZi*bL`9i4VLY;3hE@EuV%gw>ut}1}bG``^mub&Btbk@BxTenm8O0dN`P!5b(j)IU
zH%uZf!qk;lbsjE;2kN&5Ll8~?w{vtsc06E_!ge;;SdFKx-BOb@WNY4NUprKX4~_hT
zIq(_{3mY*{AE#=;H#-A;E=Ul9WzB%p02pA3M49LVDF)1-=3o?^yiMU}0Rv#zM+<x%
z-S`cHtV+u!OLJ0{*L^Tc(?@tsh#LGwkutb<nDF1bA$EbmI(B$&c%xxI#Jk?tVRIOZ
z#fSuTQy_d<qUpvb%BMBVg9oMQ*u9?ONc^i-dU1J;MYdsTcI_Or1;eK%2`UWh3@Rzc
z5a@)e^SXXR)d!3j{^cW@1#Vl|7#7y6xSQe$ELFU_IDH@X$ZyZ_!lumqi;pII|6pR+
zf4<LC?YJE8!+r&gbls!TIEeBh&*OQY09%mjp3c{^TdCC}lGY&YK~oODIl{&#SghfI
z{d}v^H1FS&jIc$2oa#ntM6!tFpY+1a{fZKPG-e*X5_*66`DnJF$BlB{k04kCcWfM)
zb9|&6z>Teg`GUF|&ecf0=fqr|WFCW=#c>|yBE~<fq*(LXSq<<W>R(_c7gx}xa~vy(
zCk=Un>4*3^&d24FvDDxBoxZs;2RE(?5)}42^FFR!2Cq`26X#R=1(<#cBp(8c4{_Cp
zxQhqCs52}HNcQFi4EN#f!?2&5j@FE2hKpW>$?IYz7=EVs<pRC~*XKO&?=bE?rls#O
zxBGjH-ri%3{Q$GS$K2QVm=!+2%<nPV@*eYGml!M`k6L$rT)bF+-H)b89nEdT<?|V-
zDU`EbO>eG<J?Ir1Iry6M3N_!5s_q%d!bUyOeWLo{2%g_NdazSBnfXuSyAzr{@qxB6
z9e2Jkb@2e+-|-}AM7azq=XDc=*_N(=?DdNFOm^uODGz4v+`-iAG?*Nwg+)nTXQc$j
zQpxjDa+=ec6H<Vz1ff|STXHci?3`vPOY$T|zCm-y>xSk$Eff3@@`B;Af}JZ-)ua}b
z@-mk^qjlEg3C$Bxvm_Pakx9w`Xih|q<H`i;j1^f{vWD`kNfH|FT>E#TjUWt)oJmnv
zNt$M)Bqg9Gsw~(!OPVrC3gplfa+0Mr;at>BS^EDCA?onRc}WXdmswt8XH3crr;&=3
zlnF`v|C9)KW+KhXv=m9rao2d=G&zNmCIu77Q}STvB9%BvtZPV?<wcUzjpQjUNCG8@
zrl^9Q%cADBtdP&)#zLOpM9P|%A}^t0brxQ8SraNURu-bk^Q^)>N}DP#D20p{C?nXp
zBBUY-gR)ACJZ%U~(}Xa>Wl|R+!`da-StLcta7#<H(z@{5UKCkL5(y>YZ;YfacujeZ
zLl%&yqGE}pf}oLAl$MPQk6c%o<R#5OuqIFOyR?!;(xj<C4=d8JZPPkMcVbM|S)G@x
zrgcLaTyDV_dPx~J5=vRlfc$?Y*P`q!3WJ|W$69UmX?B93q9`rk_31a*cK6>IK)0vo
zoaqn{LLm8aDI%{Y$yk+^kNoz8JbzMxVwR@C&IEEuvPbnOafebIA<6KB<DEbNcP>j#
zIzRH~BZG`G6cXHLg4hE^JSkDg7z=l<^0KNkR^|yo$XI42t&8GuV~>Q~A4N%no!O0L
zG$9$DL5fEZO?FZv^uUu+ltoR#Yi4<o=eSIYEXGR<S)LSio&xR{An$L%&UKxnPrR$1
z_cY7W3`$^CaYq?pMV3Jxl5NzX2)6{Qj6$PXzZ4%Ujv6M6P~L!s^ZM}vxz)g%XhUo2
z$$fjj<YH3-5qxYd(Anl(SpRIuv{TSU1_83-JY+vx-!Cr3{0d%1IRb4NqM|B{DiuQj
zx)7;@)iJ7W*2ZmaC=RfJ4Z?dCAb}3>iU~p-wNYjP=C4}ML5yUrl!6M$Y-By?6;N{8
zTMCF`dKd`b2kRXO8@x()>+W#^D6>s`+DsFUo2kjpahm8~_!7c;wAu@f5j9Z-QPs+c
zwiYY}xNWU57$Ti|5Q_%N`rg;pp>^cU7u6s@K|27d{-C2?+k&l;GWC))uC=i#7~WbX
zZ866PAc2rDLPg3AlxcZ9IieA|0+iAS)UZW1*bvJx`lLQN<yO;rZb&tg$3Gdqo~JU1
zA1q~ciw3hVGNxIj$avHvq7alP16Gq_(bpY3L^l1(<{{KVE^c-*W%H<0)!%(19t5vd
zKYawoma)oD_}<mN8YYgo<GQXPd-kY6kv6IDdAo&|*}`(v^knDdS6^DR&WfwFk0j47
z(>@;gC0f0Wl?BTmhFbhRjo$=Adn+6%Rws*Qh?{LlKp+yse=}-U-6Q+2WcKP-l9rn^
z%Y&z@l`m8=pOuX6cGF8wXy;e|^{aS0+eIIFfRTJy4}@up7j2TJ(fb~hsjk&sr;9W^
zlb#C^S&y=>eY3Is;)=Kp$lVSG{4n3sA`CUPtkzgKBKjx|>Ww#os|8hPD@|oHh-}PJ
z-w}65477=C{_l|xB49^*-t$bnMsSOT=d|j&!S~6uQ6cw;O3M5sWknk~vccvJj<+Pa
zos4R199l_V5tp8N&c?dNdB;@p_XJS`Hn|riIi6j@`YGW)?nG|35<%~YCjsGfZ+|~$
zv?#+N8iP-NCq)rDP=;s`lP!`X%EI8-X;VQZ#}P$2hAR4$V>lniI-D1-TT>qaUb5BT
zOwjsWz#V?VJ12Btex$E8@EB~zYyF6M>$AajCWeU5jJXv*k{rX?Tw#&Lx`|qELM76o
zkibzp^E@wL{g*sTF4V{VL4HTf9IVy-m-bO!sNzAx%iMlP1v!=BNln5>$25_U$YD>i
zj_FMw;~(97(zlH4SvAIda5s%Svi_K$`EBH)*g`!vqj}j3MZtV~r6z5@bp|^_gH3yk
zLNm=AI<HUN%pH02ZH}8sxx{CwS`(Xv4`_feXLe1nabh$WWt@buiradwrGPPbbf#C!
zEI4S23nn)bA4mdCbg7P@2M3{T#%_7Fx1f;_ypiLT4mf>}q)hsyKf&3i-}|Y5xi!N-
zWQYER)svq0UoxWf6*AhID`X90SIAlvwF_i?mRHESZoNV_D7Zv6?^npCcXNddQN|Ur
zh0IsTws&AOYK7k;T1Tt#w|=wAj)(l|On0WTOgrLr+IfU^M!WC-ecQ#{3~F$%Ywr7*
z_Ou#?pq`(_Ek4ZiO|#Ky7SEE{Gt5?K)D&e|5-uH`)oe!hl$KkZ-)>o+pVSd90I15f
zv2GgotiN|J<<N{4BUd4^4{oHP+YM1<B&OF}ks;|L#4dV)S8$ouePmF(58mb<9=a#@
zVh>w~OCPU0Hu_NVB59{)g~r`los9IU-lU-V=shtuMtNGIqCadto!eJ=#{JI_EvFQ_
z*9!TISnOWLo1B^8&+JUQe+M`w3G&1Ba0d;s)WaL?X}f->6fVb0!}n(x25r$%Xp8LC
zX6<PoSJ$>%`_B2am9MC`@jbcOe0;Nq-Qf41C1AmWwoPMW7(0p2?a(0Zg+ZE@H4xKL
zH)w=7r~fGkje0oh6+!ceFirSqgu5tpUlDr{G7?h7<5tCkW8M4ylK;I<{{}Ua@q6%0
F0083BSKt5u

literal 0
HcmV?d00001

diff --git a/phishing-filter-domains.txt b/phishing-filter-domains.txt
new file mode 100644
index 000000000..e59541a0f
--- /dev/null
+++ b/phishing-filter-domains.txt
@@ -0,0 +1,454 @@
+# Title: Phishing Domains Blocklist
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+1nvest.bigbantbaz.top
+25116414.cc
+365365news.com
+365f09.com
+750115.cc
+823pages.pages.dev
+95564339.awi.za.com
+999fc.vip
+a.yyyy.cf
+aaaa.whilefish.xyz
+accounts-microsoft365.weebly.com
+accounts.0ffice365.support
+aidanochka-tabys.kz
+airbnb-clone-sahinur.vercel.app
+akbarinewv2.morteza638n.workers.dev
+alaindemeuron.wixsite.com
+alexa81o.github.io
+alienv2ray.pages.dev
+allegr0llokalne753724pl.art
+allhrteam.com
+amazon-clone-by-sudip.netlify.app
+ammuvicm.work
+amyr.iran-cyber-net.workers.dev
+antaidossiersuivamendimpayeerf33.zynekcctv.com
+anuragrauniyar.github.io
+appeal-voilation-policy-issues.github.io
+apple-id.cc
+apri.154-203-197-141.cprapid.com
+arvestcreditcard.embarkdigitalonboarding.com
+asdfjeiod.com
+ashleyproberts.wixsite.com
+astounding-trifle-b88a2b.netlify.app
+att-101397.weeblysite.com
+att-102641.weeblysite.com
+att-107756-104508.square.site
+att-108102.weeblysite.com
+att-108651.square.site
+att-mail-101246.weeblysite.com
+att-mail-105533.weeblysite.com
+att-mail-109459.weeblysite.com
+att-servicce-mail.weebly.com
+att-sign-in-107078.weeblysite.com
+att-yahoo-mail-105061.weeblysite.com
+attcom-101415.weeblysite.com
+attinc-101356.weeblysite.com
+attmailonlineaccountupdate.weebly.com
+attnet-100294.weeblysite.com
+attonlineservicesa.wixstudio.com
+attonlineservicesa.wixstudio.io
+attweadminservices.weebly.com
+auth-sharepoint-asr.vercel.app
+avertisystems.com
+b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev
+b35ccc.com
+b35lll.com
+b35www.com
+bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz
+bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz
+bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link
+bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz
+bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link
+bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link
+bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link
+bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link
+bbf-alpha.vercel.app
+bet365t3.com
+bet938y.com
+bet958c.com
+bhngfd3.pages.dev
+blackdasblacks.shop
+blsckdagsever.pages.dev
+bridge-9wdpjmsoa.pancake.run
+brubreumummeddoi-4514.vercel.app
+bscusdty.top
+bsozvycr.icu
+bt-102368.weeblysite.com
+bt-106861.weeblysite.com
+btjfh.weebly.com
+bussinessaccounthelppage.click
+bwfujmww.icu
+bx.sfdsb.icu
+c.cting365k.cc
+c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev
+can-post.cyou
+celery.sa.com
+cen4-six.vercel.app
+cf-worker-pages-proxy.1352562939.workers.dev
+cf.13084493.workers.dev
+cf.iwoai.cc
+cfcf-8.pages.dev
+cfr-reed-taxi-wayne.trycloudflare.com
+chain-trt.online
+chainsolapprove.pages.dev
+chat-wa.xyz
+check282.tempisite.com
+chore.pink
+ciftcininbankasiziraatbankasi.com
+claudiorojas.cl
+clivenicoll44.wixsite.com
+cloudflare-workers-pages-vless-a2j.pages.dev
+codt.digitasianetwork.workers.dev
+coinbase-com-18690.subttrepimop1005.workers.dev
+coinbasewallet-verification.198-46-89-184.cprapid.com
+company0rder943.weebly.com
+completar-la-verificacion.vercel.app
+conductibili.fun
+correosprepago.bnext.es
+crenadenuddoi-2258.vercel.app
+cryptorectification.com
+currently5267.weebly.com
+currently70.weebly.com
+currentlyatt909.weebly.com
+d.afirkz56924.workers.dev
+dio.azrealonce.workers.dev
+ditgong.com
+doc-online-1881.on.fleek.co
+docsignauthorizationrequest.vercel.app
+docusign.com.bestfinancebroker.com
+duang-5dh.pages.dev
+duvhkeq.pages.dev
+easyaccesscommagebn.com
+ebay8787.shop
+ee-account-home.web.app
+ee-service-help.web.app
+ee-service-portal.web.app
+eln3.vercel.app
+enormous-orchid-howler.glitch.me
+espaceparticulier.life
+ets3qe9ooms8t6i8.pages.dev
+excelorgo.com
+falabellacom.dominiquepg.com
+fdesq4.pages.dev
+fdsfjiwe.com
+fdsjfkweow.com
+fekoulamevebouna.freewebhostmost.com
+felomane390.wixsite.com
+ferngos.de
+fieg.84yr483rhfwieujro348ur84.workers.dev
+figinstenatecom.pages.dev
+finansfaizsizbasvurum.online
+forested-mirage-samba.glitch.me
+formtools.com
+fortradesetup.hamidamnaie.workers.dev
+free-5436781.webadorsite.com
+frogsrus.wixsite.com
+fshraha.pages.dev
+fukshumx.world
+gazruinv.web.app
+geaoolsv.pink
+geminiwallete.godaddysites.com
+ghjhyu.wixsite.com
+gimennlouin.gitbook.io
+goldenrod-rowan-submarine.glitch.me
+gorgeoushome67.wixsite.com
+group11-vvip-hot-girls-combi.viplch.online
+gruppeflorian.com
+hanisfir.shop
+hedayatfreedom.hedayatkhakpour.workers.dev
+hello-world-morning.freekite.workers.dev
+hello-world-muddy-cloud-f45b.mfoster0425.workers.dev
+helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com
+heluapla.shop
+hemanlau1.pages.dev
+hezhouruan.552008598.workers.dev
+hgcdhbxnf.weebly.com
+hjrhd.top
+hk04-123.pages.dev
+hkmqo.top
+home-100317.weeblysite.com
+home-102207.weeblysite.com
+home-107257.weeblysite.com
+homelogin7t6sdfcgvhb.weebly.com
+htaflytz.baby
+htaflytz.black
+httap.l-teiegram.com
+httpsbellsouthnet-102649sitecom.weeblysite.com
+hup6r.com
+hy.fuckgwf.eu.org
+hypophysecto.fun
+hzuayvvl.red
+id2.xbenihime.us.kg
+ikergalindez.github.io
+info-delivery-bg.com
+info-trackingcs.cc
+info-trackingiax.cc
+informed.deliveryhbo.top
+informed.deliverytcw.top
+informed.deliveryxs.top
+infringement-service.com
+instagram-clone-in.vercel.app
+interbenefitprestaciones.referidosweb.click
+iouwerty.weebly.com
+isnworldwide88.com
+jaydeep8806.github.io
+jeanandpeterwilkin.wixsite.com
+jetconstructionsgroup.com.au
+joeandvelma.wixsite.com
+journey-x-pro.com
+jsdfchkdsds.weebly.com
+jshattkee.weebly.com
+juliusmasih27.github.io
+jung-sohn.de
+katiebllair.wixstudio.com
+katiebllair.wixstudio.io
+kdlmo.top
+kenzmail0.wixsite.com
+ketura2010.github.io
+keucroilluxibrou-2718.vercel.app
+kuconlogin-ui.godaddysites.com
+latam-onipojes.vercel.app
+layanan-bntuan-resmi-dna.prbu2.my.id
+ledger-com-updatefirmware.aparecidovisentin.com.br
+levappoprauqueu-4688.vercel.app
+leyoixoimmecou-5619.vercel.app
+linkbokepviralindo009.vipp.blog
+liveairdclazmersn.pages.dev
+lo6-cas-projects-64947843.vercel.app
+maatamicklogginns.gitbook.io
+madebybmr.in
+madhu821.github.io
+mailupdate87.weebly.com
+maine619.github.io
+mainnetverify.pages.dev
+mazulyta.pages.dev
+megrebeikenneu-2106.vercel.app
+mendhfjpl.weebly.com
+metacareer.com-case37169314276.com
+metagalaxy.pages.dev
+metamacksiologus.godaddysites.com
+metemrsblogin.gitbook.io
+meyetamaskiwalt.gitbook.io
+mianfeijiedian.lawcpacpv.workers.dev
+milanharvestfestival.com
+mirobitsgt.github.io
+mocp90.pages.dev
+mostafa2.mehdi84888.workers.dev
+movie-firebase.vercel.app
+mubki.hp.peraichi.com
+my-site-104564-105934.weeblysite.com
+myaccountsignup.net
+navy-nose-4544.typedream.app
+net-flix-front-end.netlify.app
+netzero-webmail-105996.weeblysite.com
+new-currently-1-23-24.weeblysite.com
+newattupdatemailboxkidlyverifynow.weebly.com
+nfty-proj5.vercel.app
+nnbsscnaceesngsetr.com
+occinamete.cfd
+odovsccs.weebly.com
+officalourtime.weebly.com
+office36503.com
+ohscorgza.github.io
+okm.znt.temporary.site
+oliver752.github.io
+online-e-commerce10.com
+online-e-commerce11.com
+online-e-commerce12.com
+online-e-commerce5.com
+online-e-commerce7.com
+online-e-commerce9.com
+orange234.wixsite.com
+orgmail.weebly.com
+ourtime.datings-information.workers.dev
+p.updateinfocl.top
+p.updateinfocs.top
+p.updateinfoga.top
+p.updateinfojq.top
+p.updateinfolw.top
+p.updateinfoor.top
+p.updateinfooy.top
+p.updateinfoqv.top
+p.updateinfove.top
+p.updateinfovt.top
+p.updateinfowu.top
+p.updateinfoxb.top
+p.usertracktxz.top
+pages-108-tg-cfzz-ip.pages.dev
+pages.tempisite.com
+pageverifycenter.com
+patjimmy323.wixsite.com
+paypalloginin-usa.blogspot.com
+paypalloginin-usa.blogspot.hr
+pcmag.anycubic.vip
+port01-acf.pages.dev
+portal.chiaveggies.com
+pruhuffopraussou-5681.vercel.app
+pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev
+pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev
+pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev
+pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev
+pub-2801359d2be54bfd8701132626efeb73.r2.dev
+pub-3096005ebeae423182ccd89665564d8a.r2.dev
+pub-46a5f86348ae4aceb3591d126020999f.r2.dev
+pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev
+pub-51f896deb233450089fc1a520e6ed957.r2.dev
+pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev
+pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+pub-722720be67154192a1102b2cf085d306.r2.dev
+pub-7d056bfeb6b04852801553620fe62c0a.r2.dev
+pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev
+pub-873fc6a3edb941c6a17f50911dfca518.r2.dev
+pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev
+pub-aab4be29317b4ec296517a557db12622.r2.dev
+pub-ba5a046c69974217b0431bca4ba43740.r2.dev
+pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev
+pub-c59cf4e950b142949df8861e60b3689d.r2.dev
+pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev
+pub-e5855431d98545b38408f52af50ab8a1.r2.dev
+pub-ff0271d87324424a9aec83337e844a54.r2.dev
+puertaselectricasprincipal.netlify.app
+qaffixledger.com
+qbstdfda.com
+qpownthenewyhadvanceweb.weebly.com
+raj-tiwarii.github.io
+restrict-policy-nonadherence.vercel.app
+reviewboss.github.io
+rfgxg.top
+riaayaoman.com
+roadmap.binarydesignhub.com
+robinhooldloegins.gitbook.io
+rouzhda03.kambizmedia.workers.dev
+rsjxzl.com
+rtyuiuytgf.weebly.com
+rubinhuud____llginnh.godaddysites.com
+rudra-choudhary.github.io
+s.team-s22.com
+sadekk.com
+sajsa.icu
+salarahmad786.github.io
+santanderpod.fsthosting.com
+satinnaaoabbs.weebly.com
+satyarthi.uk
+scarce-army-wide.on-fleek.app
+sdfvgbcvb668.weebly.com
+sea.6e2efhxz.eu.org
+secrbnsuppotyu9.weebly.com
+secure-ledger-m-auth.webflow.io
+server.2rk3.com
+server.pxs7.com
+setshinobi.vip
+sextelegramxxx.pages.dev
+shareorder711.weebly.com
+shaw-101342.weeblysite.com
+shaw-103098.weeblysite.com
+shaw-106054.weeblysite.com
+shaw-106665.weeblysite.com
+shawsyncmailservercommunicationworkspace.weebly.com
+sherman-relate-rev-baskets.trycloudflare.com
+shobhit245.github.io
+shopifysite.cn
+shoptkoo.com
+sign-in-att-108611.weebly.com
+sign-in-att-108611.weeblysite.com
+simxtrackredirecttszz.pages.dev
+sjhsjjs82.weebly.com
+skill-meta.com
+sky-107842.weeblysite.com
+smithjamessv328.wixsite.com
+socx.ly
+sparq.eu
+spicyhotcoolsoup.s3.us-east-005.backblazeb2.com
+spotifyl.vip
+ssfgsfg.wixsite.com
+sss.k999955.workers.dev
+stonemartin1001.wixsite.com
+stringroll.com
+sukienffvip.doiqua-garena.io.vn
+supportsecurity981.tempisite.com
+talktalkserver897.weebly.com
+tareq088.github.io
+tbsl.by-on28.my
+tcaconnect.ac-page.com
+tejlksdoisd.com
+telegcm.me
+telegramjessica.pages.dev
+telegrampx.com
+telegramsexgroups.pages.dev
+telezelm-ivee.icu
+telgramsignal4.sg-host.com
+telstra-102379.weeblysite.com
+telstra-104033.weeblysite.com
+telstra-104394.square.site
+telstra-106968.weeblysite.com
+test1.workersdev40050.workers.dev
+tg-logrom.com
+tktk.tktsk.shop
+tokecn.im
+tokeni-1601.vercel.app
+towrewds.com
+tpwalllet.com
+trustwallet-zendesk.com
+tuviaje10.com
+tvjbqiyv.guru
+twcht.twimobie.cc
+twimobie.cc
+uedy.pages.dev
+ultsyncingsolana.pages.dev
+upheldlog8.godaddysites.com
+upholdloginorofficialsigin9.godaddysites.com
+upholld-lligon.godaddysites.com
+usol.shop
+usps.com-cgkzkukp.vip
+usps.com-trackaxd.top
+usps.com-trackbrs.top
+usps.com-trackdht.top
+usps.com-trackgee.top
+usps.com-trackhsk.top
+usps.com-trackivo.top
+usps.com-trackjjx.top
+usps.com-trackmra.top
+usps.com-trackmvz.top
+usps.com-trackuqg.top
+usps.com-trackvgb.top
+usps.com-trackwbv.top
+usps.com-trackyqb.top
+uspsdana.com
+uspsdant.com
+uspsservicetrack.blogspot.co.id
+uzomadj.shop
+vedi.154-203-197-141.cprapid.com
+vgmrm.top
+vkkvdkdcmm.weebly.com
+vl1.spaceysen.cn
+vobroffexagru-4404.vercel.app
+vrvtn.top
+w1.5114559.workers.dev
+waassistance.com
+wallet-diagnostic.com
+walletsecured.pages.dev
+web-lupqrbm0k-uniswap.vercel.app
+web.tlgrm.app
+webmailserv3038z.wixsite.com
+wk.xzte.eu.org
+wodjrvrisixc.wixsite.com
+worker-dark-queen-529e.servers5555599.workers.dev
+worker-hidden-frost-ba39.yoveli7450.workers.dev
+worker-site.aopages.workers.dev
+wsa.osmqone.org.cn
+wwwwwwsasasasasmmmsszz.vercel.app
+x.tovip.eu.org
+xhjxkj.cn
+xixiajiaju.com
+yahoomailquthorization.weebly.com
+yungtee3.wixsite.com
+zagbasamothega.dnsget.org
+ziraat-kampanyasi-besbintl.xyz
+zxl.cbbnbbc.nyc.mn
+zzpov.top
diff --git a/phishing-filter-domains.txt.br b/phishing-filter-domains.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..056b3541d7152a72beb62b02a17b929ff5a3b22b
GIT binary patch
literal 5427
zcmV-370l}4IC&wWm=Ay=WSIMB&i?uOX{!74CiqHFeD!W0;{guJNN@-``uD18YMbiR
zhc$gzN~JczNneJndhdPc{6VICk|}`X0ic{aHs1l1av`Y;KHMwiG)if9r&1A5A>I3^
zXifU<0w>FxoC)5%=44}N)tefFh?McyT;4*wN_%`b4ZNCH@^?Sy7PqxuKYzdZy7{#J
z^me@d$VhSUwY`4#^Djr`y8ZPtu7-n*j11F155q4u{u+k=eEsg{@4kmGSbzPDKNjwv
zzt~Ii$DM?jJ(>G2U%&flah(HJ{PnZ7b__$u>RSNKzOo46f`Wv?<ev|MSX$@ncRz}1
zMpqE~UEg%Pe)l5_dj0jo1uP1m-T&ri^=<3*8NQjz`SjdNULW`~XVUa<p#jH-?lq<p
zYopq)8dB5n(3X!EljAsvQBY%Ee3E>U{Q<Q?lHrEsSKBOyag^nB#W+6_mHu=j7SGor
z<s>*?C|sUCu+h;k%i;_@{qX{N-}g<8djSB@BY?nw$<y!syku1)3Idct13pQ5A?k3~
zr53W&!8vd6iOE3b1>VA?t^P$jkOum$bbnspi%y!DkQ0&$n@_#a6N|w>;W%EfYbZY9
zbut=rY52gzRialeJC-IH5a7Zpbt3kX6TSRb?uejX0l%QeOj$p2pI;C>rjr%8nbQ8p
z*B(|GLdZLWgtO!`6Gxyxxf#M%#tGG$i}2(`bBVr5?baU`KuQJg?nh^g{q!c1c}~0_
z-i7)CiI`hsAqgA(!<QO(n``x0YWF8ZOxDK(Zp7j^r_Y^mH>RB=1WUcZTA(L?Lup!r
z<3I@H%syzi7&+uolnh9Z!s&p-Tk*ilU>yq`r66qJWL#!4ijkV*4CiQ<yhtHwCeS)D
zdP<J5U6aIf8tNdoxIy=7-5Y)0yg79XcpoKeEUorTy0+ZY$5|k)co&dprGRNx_HK=g
z!^oFe!dz8g?yF#v7`Hmlaw6j(<e;c-<Me}-n5bT+;i-Q$$#Ekyf)BJPGBL3tuU1OV
zUvUv~X+Lg5)cE)EK!P`$UlZ}EQL7zhRRtR4b~2VaOgwqd<oG<$C`MV}cAv~rxojWY
zk!4`RnzXGKsUji!1{&BRs-Y^Vr3O|Igbi%n`dkR4)oSfRW2|1w`?q@Ah%r(RDAEUk
zsynhLmgcPwDab!gk6Pj)ERjq)A`BR!CS-(9VBBD>w)0Gefkec|tmZBH5$W#B{zv`B
zeH*d`noDC$op~-p2)}|$ap`G++Y5RO?%Gp-KgXHx$i#P()6TrUU!~04Upo4eMQ?H4
z`P{A}rZ#!%4_B!RJ9z+&%W51KI$`SdhzRHB%<Htv<2rpnl$S{+Ki4T9`*pd+YfY!X
zc7hOBzs1VDKA3#i^V}a6K2MP0Jc@KyA6H_}=l<?lYqM`h5@Maw<*$nEg_;JR_NSX}
zJuU$8KADWB;k!&|;u_u}ZS`B$ig@c5ZD&EBdz(6A2TOYTeu%@*@rc=?kgN&A!S3*x
z^O4zGoS~-YbDf{^IpwuJ$2ai9e9W=m>*so0Vk~(5F+SBG4SO~_zt`Iod7%3s*N_sQ
zuH(8so~`kn^rNT#F)neXZ}U9!UCf6qpX`rzUY$YM9x$uV^V9NoE<!SyrE^fv3|Ifl
z8y;5Fchv7g`!D-&y<@D_XU)N1{Qc?Dh%2Sz41zKIHk|Ov(2n?^lEe#*rZ~~K7=8fT
z!qxqIQYxX{?3Pw%x#>gi%&<^@7L~e~=1Yf~KFj(a2_cog@Qb%AlI60;JJt;JfMj4t
zT6%iv(sjWedyHsp_C&~05b3O@SKDqcW)HgN=e$j!-t?DN=&kZeVdhdMrP<cd?d>*o
zVCr70Dv4EPg%=G5;x+0(m%sGo`a53NE}dUmovk{do}s4swDL*rCUHm%AJ{yMmhj0~
zB1YsyBLl(~&QO9F&`K>)pAW-@rN6gNW7?w6=3a#X1H9MTsJU~084Or%S{*GPgGrF;
zzwGHSjyMGxVfg6DQS$euBbQ80Y~hQ`&`jg#$Ok3F!t*lz%HW&wO=lcY-FK|U6;co_
zY4G*rf;%B?<vs)-4<--kE8oB;(n_P6nG#p6Ih@JsVkcJW*r1UM#xF(?CR2>Ysc-m>
zvY9Oxq%mWim+`I{pL`0PdPDV(F90opHqb&;^P!U8P^k%@LH&uzn;e1=?t_bN#<*C$
z=V!1}MS#6YO=a7tztUMf1ScM><C!v}A~BW!Z8a?etzEZP@bEDo<1ol=_~kS%)<|eI
zN;)ozh>56$j7oS?EH3gHip8=BF20cck$?>f2~g!VMv{_lIoWR7iNxlp>*;m+mC0Ps
zhSOX#)gf79iuGj*Ca{?LID83XQjNfr`)IkKX@nykq8H4dX1FDrW&+jBrO(4d4QOo{
zmiOS6g7am6<g_rsJ+SL0JOw?+B^kW!Y-{!-Q#KnSg1aZ9QX|cYx`4P-lk>qZ0^@Jx
z;-5xf<hNLDO*L&cy)4wpX_(7mXgb<nwCw38JEWCJy9vzZZ9lgiKdAr(P(ZDl93hja
z=2;nPxYev?o!N;<RF6iG3{ciUN)pk<6G(K@RP!J(S_Hy-MM%6c7N%SlMA$va#cbY^
zEnfi(T|?~HMI*k>l=p2sj=N>+!DFG3_NZRiD*xb;bF8XOUK^C**I>wHb;9Bf!h8{c
zThd7&W&Nk)(Hom}7VAfB-^<zR-u}W8W%cd$3-guK0QcMjL_Bd30|7MrFS$@}xwfbe
zv7mp*5fbuc7}qw3C9Qc!=f}%=T&WUw5sH`1T^{?pWG+-MN~Y>Mzxq@gCTQ3MH?7d+
z`>hWAQ~jf%p1t&_*L0T)2xzw?`T}dzxoXtFR$P`N)p8DQBfw(u0t=U%h1L(cLG%`4
z0x!eRUOSP3PqVUDQ#9CI?g!&aUTf(=P%T%t0vix+?|a>P{8qlBU|%adrTcWshrS|E
z7Cp79Sh2rI5tSfavjuByB#~Zo-QL^X_gZiD5mO4e`xFo2$_#K1DAOJ>m264L7bH@<
zjv=?3Emy7S6?3l=4mv`rdAB9^V;sqO`h#q_5ipKdg(|d%6D9?-F&~#rDLc@GTs#b=
zM{JOMb-vg)v~WY?XP3>9CYk#NJL)L&9B`9(Cd`Tv;0|Su@1#vzVY6F%hwkTMx5Npl
zX>_?ZEQ4Tj!_vb*MQ;m2Zz{f}E@E*w)Q;ja^{Kj5at9RR5x2J8QOoX&p~Dei^AS>j
zK6baU;j_4gtwW+x;>mr;MN#3i8oTLla@sYsy~}1jD1F-pY)tayvfCa%xxlSCV*kUy
z$IzL*O%P*)^2{V+hC$~xRqM=pZko2D1}@y~p&+O`1-#0Ay|&iipn){>xE2%zku^{~
z2uV^5X|hQyyKTGkCL-03sr)8x3ZFaH%Ter0vNV2e_mPk7u4q~|jzhLR9q#iCw4i-?
z%jj2Q@|%xHd!_sO@;jCl0%SDn1B~Q+a+yq)blgO1LCjFmPhqNiCBIGb@V(EMh?dro
z*mQq*XHGyf*W2HE2lz9>=c=J#)Zn5m7sVp>G`n{Z)MGU=@ETWc(V7!sV5PV^08F4s
z$RGCcxnEe?-HnE?X`BE+9akz@f5VM9e_p9!;*|4^kRVwUeJz&{y9eAV-q=86t!fC!
zJsTAI>zxsjJuyVsuqgME@Frj1mr_C0*4%bmZOrfgt{b$rBW48Z!S@=W`i;%h7WK4}
znzv+Fnzcjos6zl>P>5;BE%f=d+Ymd_+%Y|9h=<v-?bv#OsUY``$8^VTO7<c2uh%7a
z!sgKl%k16cG@w>Px>wz!2+$ysocxjBSU1)K+}uB1qEqXTNWmICu?gr=bZ0c))Z15>
zqR@&rOK1(Qs|A4dz9}3~(0H3qUokcB9yKnnfF~SBJ__^&ovMkL6wzZD@Xr35eT-;w
zCvqB>B8`07b>8tfeHmBp<zaX?{c+Iwg0{OeJrR7dCcqQ1)TFi?Ay33W#1s6Drd2YD
zMa)WgK_UWMf_Srsyskc_YQJDIqDbF57V1;NH@B|X*d@?&#EjXMXA9E~99tt7w^G99
zgG<n`PlTt3yFv08;#yFn-!UcZgpI>QwJ#>Sx%UzF+KCMgMh!{O^c^Cf$7$iCVDnUL
z%@qQCNieZNjLyG}&mph9iVZHFrN>e^?qS@Gh<62|?ykb@ExV3~<j}u8T663l;4%l8
z<FrEs(FaHy1guU3(Oz|5@?_a!YvbV>*&NG2y_OfxY6>tKakE|trOX`8Kc$KD1tTh%
ziF@sO_jEhxfd#zT{JpqI!x7mPlR!LMUATBV-t!NZUsDI>`D=o(5lOis5mE@c*qX2f
z&xiei{mHoCzhru=nqaahw4Sg{08S<sYMiyzWtrYjc#)`Ri^xbACrlJfLIY8uzA~M^
zySL$%x{8!9k+G6%_t=<CGH358=~_(!gILpAu^C2NHpVA-7z=@^arTvMKC3aSC;c+;
zG=$uX8P5ACm}wFN_tUnYlD6vlK>s@P9_f>sh_B}Y`V7#IYnggg%#sBs;SD8f9!sAX
zhorraJ(2MVuz8T@Coo^PpgnU5jO!5k%w^TLt8GKp+C(K3nnYx2+$Ij%hY%)i0)ddd
zAG=0gA@chZIb1E|^4NFe&)LF>kKH0){pPP073H3++1vNoP{neF<Df`eiE+<E{4v|<
zD-Zn-_|xbngEo8eZ*L#t%^B|%>wx?Csd;?W5?Q2IpdVkV9=QeC>sDTeiLg>gx9Qqj
zFhQ`cF^mL^D=A6az0Ky~#C7#csPia&>&_9uc&$|KS!x`vqiZq<#V3bakIsn684#ch
zV-nqL8E{1l%jZJunv8tZgBV6|00M<tK$vkFMm?aA+PLr`&vsT!SpYK$XE-Rnhylc4
zl^#Z$_AjteBZ6R7T*uN4sJND#PkI5vmtlaNE2~Zji)9+6(9WuP7)Q<~Hlag3^X>5Y
zuuQ`sQ6r#Wd{oRBtCndp5-)C5+NUKZkWNipC_n)QHJ8h1M>Y*?Fd)mPlhStN(>U2d
z8KJmQ%OU_L7^Jq+Jxc6Uj!rF;Ma?)Dav0nwoEbr~0VlMJoL%UXR7SaZ9K?VE#h~pt
zDKl9y;j9%07qVhtxt^q5gy8d}mvNbe1VC=&WXloy%-GBZjnh0zF)j?oabTJmHz;ZO
zFm1cBgPgQOJ?TLx+2qZTl22@KI5E>7VJm4A7_l&rC`LQ$!GUFx^BG`TT-sr)nL9H9
zN2?bxnhD0)$zd5s>kP<oOoR<;1Q1#~#g&+}0=2M3Nh`HB9Hu=q04+4Kg^#lqXxK8z
zaRw=8t4B65=FS@p5(Y7uX<25$##s-7kJ^CHAowhX@ZnB!o&*SsC~%&%7D^e^!@>qc
zbO&SPVw}K54tf-95sP&$$TZ?KXg;aMy3lb%VFxXyNm^mmvP{|yLXMMFi*lN|u%wbw
z@X;<x3aPmggL0CAlLKf4qdP?B1~!jY&729r1T26?@yE@g5(4C@3rmAPWnxP41}Y*<
z<`4=#;GF+5-ngKYeROTsS@6)0d>JEh39oyD_<$tlradDq@FvY)P`sz3Aj3^A-ZUG2
zamoqoh6OdJ?$wC^I8{2=nt<ij@49l^iU+ts<wp5!J%f#KQ0)_x8_C0<DE!6K6{jud
zU_(a5n#3^fvE=@276wjth}u739{HXv_5FSLL;uq5?)%+V?S&{kkK*3#|NY<p{a*;Y
z{9HC}wr=UR05Mzcc4IVLJ5ZP`L{b@p(5-^SegD#US1{%Ts}P{T7QxPHiVqNrddXrr
zvZbyzoump`;FadrP5>FS=9vzwLc5`~&C|ZWs)1sV0Hrt)l2bG%qLqf8*g>`KT(vp%
zWW%Clwue9`Wazf<qp)yPG({&oOh4`JOO%}H1&I_VB2jaL`VVkrSQUZAAlJpp&f}op
zy~nrCyupW}S@R}d)p`h^mTyA*e!rv;P3DNqs+`BM5XJ@<8X%%z?C`7M!=hf*G)SR1
zP13A)GQ1d72AH>GPi6@iU#Q#mD5HTTO20o9pdl%ElK;PFZq=9-pl(@jzA+(3LvG85
zcO}u1SE}tf?+k6BLP5ORXPQE|YGwHN<(py!8CTWn^EAEhd#mqvRV?ZB?n5AA9`oY2
z7H)2;6Rhal1~FW-o}4KL>hNneUmEULJ)nFj_E$Z;xwqU9l)S27Y?aeq3D%DjgBB_?
za{(UIGpg{&&AU5{ok3K$R=4J2)=GEK>>Q-36fukh3hiechA|#*sw}`%lGkDN-D7g@
z^ar)se>#vAtX18q&-6?$h!{?ULHTwsYUC*a`3N6r#4N5Bk^VIs6#NWI9Z%CWP<@k}
zn4<B1H3Rrf9Spfs>}}vX?A2yptzSCeYNFm-okBI<SgSWW0QKl1$2Xp%K&<#xdCjQ?
zpZL6Fh(8gRDx+bD0G6ztLD0IA%|Oz&TeTIihew<jSBRyE0d3^oD)}N{Os?0ZOpBR4
z->|l^YunCiieZpLSC_YyguIp<<CO1hr)_U_S8?MH$Ih5Uef&yKp76U8rMjc#t3>TG
zFWO<XNCvF*O{Ftis`mUW>qOm;X&uJR#K+TW=UadLebTj;{%V)m8f}-4S$kB#N?%uW
zv>Ft>hqly!TvwF?q>dE*fV2(}@~ViD)sHP7w|vS)NH#r$YH^yECBl{kOG5B#PGLG~
z4$WosdU%%-v+mE{_hZ(zzu^*+fUlO{V^`9pD%q_mt%yon-Ie^AmEP~KVl2?o`6%_z
zs&uYe>C)#S_a{8Jy+_T79yd0oB*$2i+z9&6!v5q4_TBuS;6#gb%$#d1@iD-;@2B0Z
ziE){+&M;E4WZo4M1<}u}hetsC!df~JV!*p(&T_VN|2fx4<v0o{fgFwtpjQ8b<)h|>
zO@*}euqG~LR&#{-gIVne9-9j_3H|sK9fzIt<m&}TA%NM;x3HGzqmtV-`M}k)T=%?o
z`h6PmDNVVueV4QN>c1u|R)G`XxkiBL1w^t1>8dQMd^e}1q7;j8=b&Y~sy0spU+A4r
z41N}?4U2=hCLq^X4)eeYG}rjaNzY~N3hjEAtZ*@7jFtGhTLZ>3kRDb=+jo0^_jmLL
zU;p*+_VDf-qAB4#+XrAEjf275J*^E<e^K(ls-Z&s8TzFwP@C$CEjPls7-R?ZM?<Kd
dXsp_&7JxHH`+Ng6S|_ayO}C*jy`JaD69OG<z8nAm

literal 0
HcmV?d00001

diff --git a/phishing-filter-domains.txt.gz b/phishing-filter-domains.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..27a0314c1481e9523a6809db969460b6c1ecf1d3
GIT binary patch
literal 5613
zcmV<J6%y(niwFP!000021D$$HucSPa=KlPOlD<v1H1Kl2yvtU%)Qee+G(DTyjC=!}
z7);s*lKl1a81hs>WmdP;r!EJ44Tr-|JQ3y}KmJ2HCI0^LzdC6<IkrFkRS!gt_Q$^{
z&3YxR`})U^|1)vo1poU-5+zv>CqY#FM-=^?#D7Q8|3&@3Jtk>{{rgA!gOlyYKh1ml
zAB_?BS&VG^XSDfuJ&1|4n5uJbvVZ^eSBsem4VfPP8i-nn5kVuB6Xvh!CCuv`z5l0V
zVzmFA&i_zHR}AvM^=z0IQ%_>toB96#;|Ip-=GR!#u}&z}8{Iz1U*B2@|CKmG2}X&>
zMOYV7*-|n(N}i$9(^rzmagoJY$k<m}<oG*^)%p?rYZKM`W0^;BoclIal6qa(@c5sL
z<*Ux~B1_XcB&!UcWbaVdb;H6%PG2P4@DsA;i{K|*JE=tD7x37gUxYC|kIn{zWJX)v
zI7}L@LQu8s<9s&=qo#p2e65|QNgMY?BqyV0T~7k6aI;~L@uZ<64VcoS2rPjDW)m&~
zx>F&UAWTn*kyzo9gaZZ<Pg11S7_Qp%!W_#X3Rc9$AZDXcBOg{eaR{TtgH*8&Uuu^c
zMN*7QV#sz<2vJJ3CQ?fGM2(`%(=y2>NZ_Sbs>8fwI7S@EQ;#os=@!_T%PAa%Q?l6(
ziHBicBpY@S@wS;z8iFnx6(&H-tL&qLTC}wiC9_<}AVw~SiEKicCQZZVHj17xw;a<$
zJ)|{c9_2>Nd0EpWhzb@h6>$<0P8!Cz1=89Xi@Y>cB9Pph2APZu<2(zJC=KGe4B{*f
z*<{G%>-}`bTOc!n!&Zsmp%}0oJ(n1dKm}Bz(A(_Z*z)Ekq<(d^of6w*G*%63xa^8`
zFcIG`a7H!|hgKCy=v9r*1#uLob@{TcU)}eb1ZUuLO<Cpzer0)7h4wz<xQ4#PtF}Vd
z&;6<*kKZ}~pp=&*$%;?CUe$Syo%(Zio#pkXYAXyZg^9i0<q-Kw*^Yr6{eq&h`qX_R
zoz_1^h>B18z%MU;7Uv%-<;Zp&=bzT*$JL|4*?S%718IK~6I+HMqNL6~3~_WnRw*pm
zjlki+=>NKbw^Zj=LHGa<@oI3Hdv;x5J8agZ<>&%puegC{C+%jP7!GixG0jDt@gPs~
zCde3JK~;z(NDIQ6h;z!zGKivJ5aP*NcFX2z2zzPz5K}1W_Tx&^oH2Hcm*z^T@5gmr
zk4Mt<Mo6KWwIAo(b6WH^B-x|Oi#{Qg8dIinrGs3OL2}XdY3bH!7+oPlIW;zHR3GdQ
z9&KNvH5s$(GaJZqUvyja`Lr$oWs$FJWcs--*^@sS?S{1-mrS^YWZ9obYZFPQB!4E)
z=XOuj{i$-bOeSwQoz^jV-nU1uDP?^(jak+f<0@aH@m0_eJJ$Q50B4e9w<XC3=EThu
zf(@;@Wn*U_rnN$B)D3)26kU2(%t<mOBP|~H&w}lvv2Mun#APfcyeIckPdd3}i?ZYM
zzAkrjU-GqmP7jq%?9QfsYwv#$jBz6AoxyZe&XQ-x%UioKlTV_#ixlp3OpA3|*Sk#G
z;WpAIE#^NA)tI>}%QEe=a^mK$<>Z!iPKfHBgtbzaPp2QHf#A8$n}*m$lRpgAiHT?S
zHqhHd<s-SLw1;)V+-XYWn%?en&a!nJr$uE+A|6f@;%z9}1Vl|8Ia@mw-VM9-FhSw!
zwAy|?=he$#yRmI}dUAVI5!Q2J_un?O9q0vB)|X)eG5)!&k-QZ_z4GZcSS)cOBO|>C
z%{-!Vrbf)eJPd+!ErTovK{*R(*=)Jnb_PSOelFOJP_p@p?qHr4ZwR+n6xBPbQFm*)
zGZfGn?h`O#UqA&?HF?291{Vm8t<8KJa6b3x9-(cxrTYu?0t{@Sy574(mPSb##T<~p
zc#y>+4X8*+kkn}+a*{=Y=N=)_C|ZS?Z{6L&X~CN}XNX|LJ74fNwrNZulrURp50V9T
zm;u-yXVtJKI0!+oD?5P8d~6{=ImrvmTwmw{YfuwaSyrdNm&;WXxi6!^kkx7HSYrYs
z1PAMS$Y3R46rnR4ILyo&<=x#bTL%^ehwQ=wm5&0e6@)Z;5$6Fr;xNvBc0plTpHxW*
zpq=E;O=6wKxRbY7CL4#7C`TN-o>=(=9U|`aax_-NgTB!>0<2bemx~xB(@Fuz&eY+T
z%rB+cm(~`A{SQcTJBz6~wq)ljRuXtB-{q<{?WM9J*xh7R)Dg%kbq?Dp2R*^D<saLx
zo-n!qyC^|&cfu9MbrobqP}LYHyRazy!(rJX!-c7{^lZAm3L_B{DDrbS=7&35h#vV2
zOQllDu)%R-+8CkjWPFsPLplN~LSer^)JDR^IPYgLN%HD4jM*lKUBO5{h2CYDG1}<V
zmM2Ad5$?O9j6N2_LDx}zuHqqS;4z<hQ773&bKa+urxBhtGVxoLYxRpma?OIn{Gi1u
zhAF~R2!Z3NeVyk--tlWApZfy#s1IlDv`jRceLFv1NKx6y5l|(l(U|g>WhUUBIqy!!
z!sn&y#r;$wh~0oFuq*T#P)rYf2}-uAtjYr~g$Q1-6LbhWLl4wm43xiUOW^V7Q@Ia{
zi27Bd#`L@pF={jD*#_FMPI3&t0!zYH`M5D0#FwxWVK4y@9X2DZG4K!#ik(gGqSkt_
z6==m73B&_~YttSCtU=&J5r7h}DXu}ZB(ymlJJE1q@7bv@P_wzoRlI8Lt?5^x57yI&
zUe5}#%OWULK|+M%0_*C4gTs!6dn1K-e-tTB+4)R2!i=r<lYBK&v|*KPCaY4@HLDc!
z&FD0%W>a15sll-xLGDISQZN2VPQTr@A@T{R!C_ryGY{XG*1-PJiz9qR9OWZU1T-g=
zqJD5%tAjG)%^4ghD?on3j)1X|VI=ZuzkaPjo~1=ud0#~d*XGya5ZqfcUjv}Vc7}B1
zEcD#lZXO<fV8y>$9F<v)%TL>A1@TfX2covZ@6`c9B5XA$obUee5WDSe-8NrlY$f8#
z5#T9D9}7~gdrz@jtpFEB^T6m8ehc6??BVuFB`xelzzn^0dwe*LYV<tCaj-0Mf_b{2
zl}1?)rd0Y=g2D(d#kXcggxbLPfW&*}j*QX*EskT<2~GegUYD@M@b%hvq@VO`F8cO4
z6CLb|3I=UPAAkCOy%+0`4S|VUu)B|-$#NPF4eU~wC`<C+J53A_FFBABZqGE3h=L!1
zWq6Vi@;JK}b77k{Pa6^v061b+Y|^nRp=L5E^1Uh;Je*s6+Uia`J1hwh6y|vnMO9u`
zR|#6iJNg)#GqQF!)A5}>b$#UXVrL%L^}}5smDnU7kEQWj*!-$WlITxWWs-laQW|Hi
zbOqvj)-D~r$mK|*HunrEq1)-rGfKQVGKDH|2#8wq%Ao97H4i&h1Ids05y5=zr}QWJ
zcLC<9I8eLW;QUzMu1zTB5LStjNl)Eo;nMW(7`x|8wq;S^WBg0<Bz#cthz`ad;t2Nb
zmxPvEqI|mOc}j}NvC#n+o_3fmpa%l(g*gALhlMfgsnw-OlE-(M0qqUH`*-x%i?<5L
z*3T6W`(2K+hr<o;`t2lMl33@nKEo^TBro&;(XTLAr)Z>`JiP4$0;XXEpw%arJc=A#
zSn3(n6+Ha3h0>1u8CemJR@Gi~BO4cDs;a0sY3U{ipp{Pm9kWUW9bC}hCLEZGb;ffQ
zJnZPOdtowv-84G$MW}&XJK-pdVhbLg_Z}tQ%(|Xieu?*Qi1nT8#U%l8gWH?!0D9LY
z<yq1h{@v<s^iHJ*Q$P<zfHl_)#OE6H@3|U|P3*<^^qG*W%j)3}3`wFmI!)S(nHepW
znjaEmV-Ausz7Vi}hJN<L6wLA+wiR*MVLi%8-%xbwsDOpgd_YGB*Z`NegA6#_>}2Si
zgu@m}{-p%sGqW?<BU1xx9elDHL*Rb~Ls+DRX~`EgGU&2kcnzvL!|~6cuhm6hB{nS|
zS|X|g!wK>tt}oT_MHHlJTHs9mnbHyHAaH-e`Pc22H*TnwgWf*}pxbzYETxM8Fza{y
zhU04kAV5}D*@XcO#H$2$i_xI9(Vl(R0LM%>Iv|W3{Yy7jNqpK4ziWpgstc?2R}R9j
z<kEBm5bgZ?oE9F)a|WE99rXYp6A0yD7b7&5AVj@LEJofnx9O728$j?Gw%}l&e%T@|
z<DyREEGdhhO@K?}ahV>4gOALmh5`U!Zzh8lVlbBOMs-n+*!Ir0_cXy>s^EYdA#YM}
z?}`;!8EE9RTzt?V6&brD{oCN5T*#5?0&mh(I@`Ll{xq9F>Q0iww~~gyG)2c{l~vW%
z#SJh;e~AKBLKznY&a{_dH-(chM1uDovu=T3^q$o%GN0|N)3=1<uzlY>fc?*VQvPcs
z%NC3p5nh%flyuu9;Md`a{9NAmG)g`KkTf7Jw(gRF#`9Ac5C}oPbF6j!mMI;@8vKli
zf;dRhAjv*70(c$P=*Ob^(Mztj!{SD;=##mOjobEfk)IVajue5&2*NMy*n*KBPEj+2
z*2LRE$Qu5oamX!W7v$9bA_j5Sj5uKsZ#DjkCOR@lx<jaA+9x^ft?q~LIl4W(*M|69
zhR==b-E)<Ba&CGAZhJI6c*y~e`>=22@gK^Q&*k~&;_`FxaRCNd;YySAnm@qme$Tak
z>jirQ=WBz*J0Ick*=DEk*gs#-)b1QEMfR<zC2vKy`&*G(--@((FWTOU?#o-zBHoMK
zThThd6+P&85qQT=aNOg#ZamT}aa0Aa4OsJh268%`^yBH8`|)LmWi#Qq$*a)a;7GO<
z%=Nq@6WJyNG9JLZU$kWR9d^?0zpC!c*TfK)hh*H?OyzNV>4WMhMoiwEr92{SzzJCd
zT*(VQCo^|*)9en=+TFt;ggYI&X{JGhShQ#arE$ZuqG2Q>6-$y_G$l_+T7@P#=0Mvx
zjcJrcF|dzhBCBeWvABp(C=hc%q;uPnmsL`6LRgVCEG1Q1XA#LFUePG#mvNJr3PG}j
zXBf4KM3vG!O$%BRhG;q>m$sF^(W!YtMV`@yS7j8(X;LHw=pZfAbK5kkizv$B(1^&A
zG_DfHcvTmLzaZw-W!$VFc~cb##?clqL@`Os<D`g^$X^~`+EN~;MO^TxVo)Ee>N+E$
zAW=>^Kr}nI&Ep0$!j~s$n&pUx>W0Mxk&!3_uMv@)+7@}ms-}b+fI>wUVVa_11<wjm
z(ki{kTT}_*DJ^ndXIWZ8S#e!vIUyotIl7$NmPt}35k-6(=UH4QBt}d^6V@O)<0)MH
zxh;?Kf<l!Awz|r_y7N3OlBf|y!mfK!<*Xts!+^QSVqVgyAw0p>m4p;^a~ZcP(}oo!
zMYLIGF`nYG$)h@sL5E2mU+jTYF$|2-rb?@<pcSd=q=u+Dr7)!8vKNHVjEV$oqokQ&
zNnPY|N%Fkp6q}bM=eCsOB+3d_)KFD|4p9b+hRIU`6=u=3ZIPEnMlwVSnSg#N+&s)8
zs<CxKT-vg{W=$sQJfh${byoAHs)|??5lxG#=I6E|78#Fd1|#IKLAYGn!0p4Bs=8|E
zMP89tc@7ad7LNl4WkgkzCj^Qk&`Nx6+cXgfIgUe`WLc7tng~{<*a}f)8Ocxf00aap
zQJ|#;j?+#E%9sQSUD&~$z<E9n(!GPpom$5mekA(ulV1Hr1RVd?5x)2Yq>sW*e#eko
z;K0s|lqVnR<2TIezVGixJ%ZW_&<l3qNk)J{tyJ6d-M(qsN4ul8kpwY=Pq!U&X~GAD
z;uKuLAhh!g>Gc`Pm*;b1r?uir3!hXwlSPCv&yExDgPsgjg2sb1UfiOwx5x9~hKMU?
zId87LWG>9?$De2Z|L~)f=keV;lQlCpBw(GMdFM&SuSI$9g1E>g2RX2y{eAy>yuly%
ziyRB;Y)FSFpsdajtM#8(Al5gN=3!%<&qscLu3){t9|_Tf(hFZg#YT(+^_=@J3*yd1
zKny6T50FDW21iEP?*c;ArKN14#n1bzV+cXQLL{Q;;6-1_3M-hQ<NhrS^i*G)gF%Ym
z6~PUGPjUOyU!%Yb{W65{mvM>d(^vcbeR|mP_3r$qL;A?N;q~E!+A}VX$K&J%_v>=)
zuOZ4fz6j8fb^j6|d;2!xRRvE`{h_Le^6XDlMUj81vfIc!4?7m(iQ7EBt|Yu|?Ro91
zd;*lrN4^M>1%54nAB!m5ez?f8ou-|1NtT~2q0<wN?jgmvzq(!@X@Ku9Extbk`As)}
zs{OShIXrgG<iC^g_bbjmpJ%n-I(xg>D!B~XOQixI;=NuspMk4BY`}m;+(7ZIUDBkw
zkSD9zBUIZL6lU%)G&}$_I_;Rx7W?#zO+o1bL97e>W!9d^L^uv_dkg?$gj&>LH@0c<
z_c{XrriXj4^J|*aIz1wk0d*eZD2lIroKIsJ{rWn>&b<_4(_o5_Yk8kZ&=P-Bg?$MZ
z?8WhU*nSA4+iFm-E1v{)>;1pOTB`aI&N~csj}Tw}+G|Ix3h5T;5$YPYFUJVe2-lel
z2@8&!Vc%2SFeW6j{Pm7A!v>%8{ysi8C>?fr+RN{n>G7)%UUB61beH|D=~Jj7K%^vg
zm_o_k*xzEQEVOOVeP52C3Th+!U3mHSvCyyDEPDUa=u`^|dHICtS5;BJU$FyxUHrYR
z5IKX1M3-#_=Lg+3`bgcn-t{5=v;C3YcDfgA4CSytjWY0D_w1#dUX57!0r76~Hx^2~
z7HnqgUiYX^gx<m)pzh{HlG}Ia=$0G3%WVnU*+73Q>k!VYasbo`pL{((&w`(`C$n-M
zW_(Pi6&cT)I8UAM?yjxg9TDnwR|r3)%^o02qO8Ads{hbf@jxlrB3yj0$JB?aW;@v<
z`_uN%e(tCJ#QiMY;e$Mm4F9#18vCJ?ckV-JE5wJ=4yt`Gm5csRdb>S7ln#b`DqWr*
zO6Pm~p%iZNL+MJF52f4vS6l9P?oj3a;(oro66AZ2bIj;-q4N{ehu;p>FF@u0^ee}u
z9n7%Lxb*$Pd(MX83^9v}!`&rqR*c?zESh@L5D(ItImoi;@~z8a7B}w0t#O#gahB)T
zk2qFB04vscQn*j>ItHLt?dTZ_JCz>XfS;@v#2`@fbT@Q}`T&m8uAp`&0X)%kK$_wE
z?c3F+QCdAOP`&oy<B8`NM_Dz$nZ*ElAMD!h_(Fvf(+Brih%v~M8W^)9vd#TZ{o5js
z9-ZVIts8@N!Dpv+xambGiAXH^)PA3l=wr2)dQd%WhdbPk7u9dWy8l@6`ZElJ^^W(X
z32)2Z?Yx%v=x&ex=DR-R11N*P^S-?OOG>Y$`}yO7vkh$X*g7Guxr--hK|{!(!Sq`a
z^3k?HH$T(yjY|O1?7#dVRt8j9@L;F*k7k|^xJF7xglplrv2Yl_p3g}ihvEMNaCjWe
HC@%m2C1>zl

literal 0
HcmV?d00001

diff --git a/phishing-filter-hosts.txt b/phishing-filter-hosts.txt
new file mode 100644
index 000000000..49373d966
--- /dev/null
+++ b/phishing-filter-hosts.txt
@@ -0,0 +1,454 @@
+# Title: Phishing Hosts Blocklist
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+0.0.0.0 1nvest.bigbantbaz.top
+0.0.0.0 25116414.cc
+0.0.0.0 365365news.com
+0.0.0.0 365f09.com
+0.0.0.0 750115.cc
+0.0.0.0 823pages.pages.dev
+0.0.0.0 95564339.awi.za.com
+0.0.0.0 999fc.vip
+0.0.0.0 a.yyyy.cf
+0.0.0.0 aaaa.whilefish.xyz
+0.0.0.0 accounts-microsoft365.weebly.com
+0.0.0.0 accounts.0ffice365.support
+0.0.0.0 aidanochka-tabys.kz
+0.0.0.0 airbnb-clone-sahinur.vercel.app
+0.0.0.0 akbarinewv2.morteza638n.workers.dev
+0.0.0.0 alaindemeuron.wixsite.com
+0.0.0.0 alexa81o.github.io
+0.0.0.0 alienv2ray.pages.dev
+0.0.0.0 allegr0llokalne753724pl.art
+0.0.0.0 allhrteam.com
+0.0.0.0 amazon-clone-by-sudip.netlify.app
+0.0.0.0 ammuvicm.work
+0.0.0.0 amyr.iran-cyber-net.workers.dev
+0.0.0.0 antaidossiersuivamendimpayeerf33.zynekcctv.com
+0.0.0.0 anuragrauniyar.github.io
+0.0.0.0 appeal-voilation-policy-issues.github.io
+0.0.0.0 apple-id.cc
+0.0.0.0 apri.154-203-197-141.cprapid.com
+0.0.0.0 arvestcreditcard.embarkdigitalonboarding.com
+0.0.0.0 asdfjeiod.com
+0.0.0.0 ashleyproberts.wixsite.com
+0.0.0.0 astounding-trifle-b88a2b.netlify.app
+0.0.0.0 att-101397.weeblysite.com
+0.0.0.0 att-102641.weeblysite.com
+0.0.0.0 att-107756-104508.square.site
+0.0.0.0 att-108102.weeblysite.com
+0.0.0.0 att-108651.square.site
+0.0.0.0 att-mail-101246.weeblysite.com
+0.0.0.0 att-mail-105533.weeblysite.com
+0.0.0.0 att-mail-109459.weeblysite.com
+0.0.0.0 att-servicce-mail.weebly.com
+0.0.0.0 att-sign-in-107078.weeblysite.com
+0.0.0.0 att-yahoo-mail-105061.weeblysite.com
+0.0.0.0 attcom-101415.weeblysite.com
+0.0.0.0 attinc-101356.weeblysite.com
+0.0.0.0 attmailonlineaccountupdate.weebly.com
+0.0.0.0 attnet-100294.weeblysite.com
+0.0.0.0 attonlineservicesa.wixstudio.com
+0.0.0.0 attonlineservicesa.wixstudio.io
+0.0.0.0 attweadminservices.weebly.com
+0.0.0.0 auth-sharepoint-asr.vercel.app
+0.0.0.0 avertisystems.com
+0.0.0.0 b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev
+0.0.0.0 b35ccc.com
+0.0.0.0 b35lll.com
+0.0.0.0 b35www.com
+0.0.0.0 bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz
+0.0.0.0 bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz
+0.0.0.0 bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link
+0.0.0.0 bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz
+0.0.0.0 bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link
+0.0.0.0 bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link
+0.0.0.0 bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link
+0.0.0.0 bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link
+0.0.0.0 bbf-alpha.vercel.app
+0.0.0.0 bet365t3.com
+0.0.0.0 bet938y.com
+0.0.0.0 bet958c.com
+0.0.0.0 bhngfd3.pages.dev
+0.0.0.0 blackdasblacks.shop
+0.0.0.0 blsckdagsever.pages.dev
+0.0.0.0 bridge-9wdpjmsoa.pancake.run
+0.0.0.0 brubreumummeddoi-4514.vercel.app
+0.0.0.0 bscusdty.top
+0.0.0.0 bsozvycr.icu
+0.0.0.0 bt-102368.weeblysite.com
+0.0.0.0 bt-106861.weeblysite.com
+0.0.0.0 btjfh.weebly.com
+0.0.0.0 bussinessaccounthelppage.click
+0.0.0.0 bwfujmww.icu
+0.0.0.0 bx.sfdsb.icu
+0.0.0.0 c.cting365k.cc
+0.0.0.0 c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev
+0.0.0.0 can-post.cyou
+0.0.0.0 celery.sa.com
+0.0.0.0 cen4-six.vercel.app
+0.0.0.0 cf-worker-pages-proxy.1352562939.workers.dev
+0.0.0.0 cf.13084493.workers.dev
+0.0.0.0 cf.iwoai.cc
+0.0.0.0 cfcf-8.pages.dev
+0.0.0.0 cfr-reed-taxi-wayne.trycloudflare.com
+0.0.0.0 chain-trt.online
+0.0.0.0 chainsolapprove.pages.dev
+0.0.0.0 chat-wa.xyz
+0.0.0.0 check282.tempisite.com
+0.0.0.0 chore.pink
+0.0.0.0 ciftcininbankasiziraatbankasi.com
+0.0.0.0 claudiorojas.cl
+0.0.0.0 clivenicoll44.wixsite.com
+0.0.0.0 cloudflare-workers-pages-vless-a2j.pages.dev
+0.0.0.0 codt.digitasianetwork.workers.dev
+0.0.0.0 coinbase-com-18690.subttrepimop1005.workers.dev
+0.0.0.0 coinbasewallet-verification.198-46-89-184.cprapid.com
+0.0.0.0 company0rder943.weebly.com
+0.0.0.0 completar-la-verificacion.vercel.app
+0.0.0.0 conductibili.fun
+0.0.0.0 correosprepago.bnext.es
+0.0.0.0 crenadenuddoi-2258.vercel.app
+0.0.0.0 cryptorectification.com
+0.0.0.0 currently5267.weebly.com
+0.0.0.0 currently70.weebly.com
+0.0.0.0 currentlyatt909.weebly.com
+0.0.0.0 d.afirkz56924.workers.dev
+0.0.0.0 dio.azrealonce.workers.dev
+0.0.0.0 ditgong.com
+0.0.0.0 doc-online-1881.on.fleek.co
+0.0.0.0 docsignauthorizationrequest.vercel.app
+0.0.0.0 docusign.com.bestfinancebroker.com
+0.0.0.0 duang-5dh.pages.dev
+0.0.0.0 duvhkeq.pages.dev
+0.0.0.0 easyaccesscommagebn.com
+0.0.0.0 ebay8787.shop
+0.0.0.0 ee-account-home.web.app
+0.0.0.0 ee-service-help.web.app
+0.0.0.0 ee-service-portal.web.app
+0.0.0.0 eln3.vercel.app
+0.0.0.0 enormous-orchid-howler.glitch.me
+0.0.0.0 espaceparticulier.life
+0.0.0.0 ets3qe9ooms8t6i8.pages.dev
+0.0.0.0 excelorgo.com
+0.0.0.0 falabellacom.dominiquepg.com
+0.0.0.0 fdesq4.pages.dev
+0.0.0.0 fdsfjiwe.com
+0.0.0.0 fdsjfkweow.com
+0.0.0.0 fekoulamevebouna.freewebhostmost.com
+0.0.0.0 felomane390.wixsite.com
+0.0.0.0 ferngos.de
+0.0.0.0 fieg.84yr483rhfwieujro348ur84.workers.dev
+0.0.0.0 figinstenatecom.pages.dev
+0.0.0.0 finansfaizsizbasvurum.online
+0.0.0.0 forested-mirage-samba.glitch.me
+0.0.0.0 formtools.com
+0.0.0.0 fortradesetup.hamidamnaie.workers.dev
+0.0.0.0 free-5436781.webadorsite.com
+0.0.0.0 frogsrus.wixsite.com
+0.0.0.0 fshraha.pages.dev
+0.0.0.0 fukshumx.world
+0.0.0.0 gazruinv.web.app
+0.0.0.0 geaoolsv.pink
+0.0.0.0 geminiwallete.godaddysites.com
+0.0.0.0 ghjhyu.wixsite.com
+0.0.0.0 gimennlouin.gitbook.io
+0.0.0.0 goldenrod-rowan-submarine.glitch.me
+0.0.0.0 gorgeoushome67.wixsite.com
+0.0.0.0 group11-vvip-hot-girls-combi.viplch.online
+0.0.0.0 gruppeflorian.com
+0.0.0.0 hanisfir.shop
+0.0.0.0 hedayatfreedom.hedayatkhakpour.workers.dev
+0.0.0.0 hello-world-morning.freekite.workers.dev
+0.0.0.0 hello-world-muddy-cloud-f45b.mfoster0425.workers.dev
+0.0.0.0 helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com
+0.0.0.0 heluapla.shop
+0.0.0.0 hemanlau1.pages.dev
+0.0.0.0 hezhouruan.552008598.workers.dev
+0.0.0.0 hgcdhbxnf.weebly.com
+0.0.0.0 hjrhd.top
+0.0.0.0 hk04-123.pages.dev
+0.0.0.0 hkmqo.top
+0.0.0.0 home-100317.weeblysite.com
+0.0.0.0 home-102207.weeblysite.com
+0.0.0.0 home-107257.weeblysite.com
+0.0.0.0 homelogin7t6sdfcgvhb.weebly.com
+0.0.0.0 htaflytz.baby
+0.0.0.0 htaflytz.black
+0.0.0.0 httap.l-teiegram.com
+0.0.0.0 httpsbellsouthnet-102649sitecom.weeblysite.com
+0.0.0.0 hup6r.com
+0.0.0.0 hy.fuckgwf.eu.org
+0.0.0.0 hypophysecto.fun
+0.0.0.0 hzuayvvl.red
+0.0.0.0 id2.xbenihime.us.kg
+0.0.0.0 ikergalindez.github.io
+0.0.0.0 info-delivery-bg.com
+0.0.0.0 info-trackingcs.cc
+0.0.0.0 info-trackingiax.cc
+0.0.0.0 informed.deliveryhbo.top
+0.0.0.0 informed.deliverytcw.top
+0.0.0.0 informed.deliveryxs.top
+0.0.0.0 infringement-service.com
+0.0.0.0 instagram-clone-in.vercel.app
+0.0.0.0 interbenefitprestaciones.referidosweb.click
+0.0.0.0 iouwerty.weebly.com
+0.0.0.0 isnworldwide88.com
+0.0.0.0 jaydeep8806.github.io
+0.0.0.0 jeanandpeterwilkin.wixsite.com
+0.0.0.0 jetconstructionsgroup.com.au
+0.0.0.0 joeandvelma.wixsite.com
+0.0.0.0 journey-x-pro.com
+0.0.0.0 jsdfchkdsds.weebly.com
+0.0.0.0 jshattkee.weebly.com
+0.0.0.0 juliusmasih27.github.io
+0.0.0.0 jung-sohn.de
+0.0.0.0 katiebllair.wixstudio.com
+0.0.0.0 katiebllair.wixstudio.io
+0.0.0.0 kdlmo.top
+0.0.0.0 kenzmail0.wixsite.com
+0.0.0.0 ketura2010.github.io
+0.0.0.0 keucroilluxibrou-2718.vercel.app
+0.0.0.0 kuconlogin-ui.godaddysites.com
+0.0.0.0 latam-onipojes.vercel.app
+0.0.0.0 layanan-bntuan-resmi-dna.prbu2.my.id
+0.0.0.0 ledger-com-updatefirmware.aparecidovisentin.com.br
+0.0.0.0 levappoprauqueu-4688.vercel.app
+0.0.0.0 leyoixoimmecou-5619.vercel.app
+0.0.0.0 linkbokepviralindo009.vipp.blog
+0.0.0.0 liveairdclazmersn.pages.dev
+0.0.0.0 lo6-cas-projects-64947843.vercel.app
+0.0.0.0 maatamicklogginns.gitbook.io
+0.0.0.0 madebybmr.in
+0.0.0.0 madhu821.github.io
+0.0.0.0 mailupdate87.weebly.com
+0.0.0.0 maine619.github.io
+0.0.0.0 mainnetverify.pages.dev
+0.0.0.0 mazulyta.pages.dev
+0.0.0.0 megrebeikenneu-2106.vercel.app
+0.0.0.0 mendhfjpl.weebly.com
+0.0.0.0 metacareer.com-case37169314276.com
+0.0.0.0 metagalaxy.pages.dev
+0.0.0.0 metamacksiologus.godaddysites.com
+0.0.0.0 metemrsblogin.gitbook.io
+0.0.0.0 meyetamaskiwalt.gitbook.io
+0.0.0.0 mianfeijiedian.lawcpacpv.workers.dev
+0.0.0.0 milanharvestfestival.com
+0.0.0.0 mirobitsgt.github.io
+0.0.0.0 mocp90.pages.dev
+0.0.0.0 mostafa2.mehdi84888.workers.dev
+0.0.0.0 movie-firebase.vercel.app
+0.0.0.0 mubki.hp.peraichi.com
+0.0.0.0 my-site-104564-105934.weeblysite.com
+0.0.0.0 myaccountsignup.net
+0.0.0.0 navy-nose-4544.typedream.app
+0.0.0.0 net-flix-front-end.netlify.app
+0.0.0.0 netzero-webmail-105996.weeblysite.com
+0.0.0.0 new-currently-1-23-24.weeblysite.com
+0.0.0.0 newattupdatemailboxkidlyverifynow.weebly.com
+0.0.0.0 nfty-proj5.vercel.app
+0.0.0.0 nnbsscnaceesngsetr.com
+0.0.0.0 occinamete.cfd
+0.0.0.0 odovsccs.weebly.com
+0.0.0.0 officalourtime.weebly.com
+0.0.0.0 office36503.com
+0.0.0.0 ohscorgza.github.io
+0.0.0.0 okm.znt.temporary.site
+0.0.0.0 oliver752.github.io
+0.0.0.0 online-e-commerce10.com
+0.0.0.0 online-e-commerce11.com
+0.0.0.0 online-e-commerce12.com
+0.0.0.0 online-e-commerce5.com
+0.0.0.0 online-e-commerce7.com
+0.0.0.0 online-e-commerce9.com
+0.0.0.0 orange234.wixsite.com
+0.0.0.0 orgmail.weebly.com
+0.0.0.0 ourtime.datings-information.workers.dev
+0.0.0.0 p.updateinfocl.top
+0.0.0.0 p.updateinfocs.top
+0.0.0.0 p.updateinfoga.top
+0.0.0.0 p.updateinfojq.top
+0.0.0.0 p.updateinfolw.top
+0.0.0.0 p.updateinfoor.top
+0.0.0.0 p.updateinfooy.top
+0.0.0.0 p.updateinfoqv.top
+0.0.0.0 p.updateinfove.top
+0.0.0.0 p.updateinfovt.top
+0.0.0.0 p.updateinfowu.top
+0.0.0.0 p.updateinfoxb.top
+0.0.0.0 p.usertracktxz.top
+0.0.0.0 pages-108-tg-cfzz-ip.pages.dev
+0.0.0.0 pages.tempisite.com
+0.0.0.0 pageverifycenter.com
+0.0.0.0 patjimmy323.wixsite.com
+0.0.0.0 paypalloginin-usa.blogspot.com
+0.0.0.0 paypalloginin-usa.blogspot.hr
+0.0.0.0 pcmag.anycubic.vip
+0.0.0.0 port01-acf.pages.dev
+0.0.0.0 portal.chiaveggies.com
+0.0.0.0 pruhuffopraussou-5681.vercel.app
+0.0.0.0 pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev
+0.0.0.0 pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev
+0.0.0.0 pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev
+0.0.0.0 pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev
+0.0.0.0 pub-2801359d2be54bfd8701132626efeb73.r2.dev
+0.0.0.0 pub-3096005ebeae423182ccd89665564d8a.r2.dev
+0.0.0.0 pub-46a5f86348ae4aceb3591d126020999f.r2.dev
+0.0.0.0 pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev
+0.0.0.0 pub-51f896deb233450089fc1a520e6ed957.r2.dev
+0.0.0.0 pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev
+0.0.0.0 pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+0.0.0.0 pub-722720be67154192a1102b2cf085d306.r2.dev
+0.0.0.0 pub-7d056bfeb6b04852801553620fe62c0a.r2.dev
+0.0.0.0 pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev
+0.0.0.0 pub-873fc6a3edb941c6a17f50911dfca518.r2.dev
+0.0.0.0 pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev
+0.0.0.0 pub-aab4be29317b4ec296517a557db12622.r2.dev
+0.0.0.0 pub-ba5a046c69974217b0431bca4ba43740.r2.dev
+0.0.0.0 pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev
+0.0.0.0 pub-c59cf4e950b142949df8861e60b3689d.r2.dev
+0.0.0.0 pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev
+0.0.0.0 pub-e5855431d98545b38408f52af50ab8a1.r2.dev
+0.0.0.0 pub-ff0271d87324424a9aec83337e844a54.r2.dev
+0.0.0.0 puertaselectricasprincipal.netlify.app
+0.0.0.0 qaffixledger.com
+0.0.0.0 qbstdfda.com
+0.0.0.0 qpownthenewyhadvanceweb.weebly.com
+0.0.0.0 raj-tiwarii.github.io
+0.0.0.0 restrict-policy-nonadherence.vercel.app
+0.0.0.0 reviewboss.github.io
+0.0.0.0 rfgxg.top
+0.0.0.0 riaayaoman.com
+0.0.0.0 roadmap.binarydesignhub.com
+0.0.0.0 robinhooldloegins.gitbook.io
+0.0.0.0 rouzhda03.kambizmedia.workers.dev
+0.0.0.0 rsjxzl.com
+0.0.0.0 rtyuiuytgf.weebly.com
+0.0.0.0 rubinhuud____llginnh.godaddysites.com
+0.0.0.0 rudra-choudhary.github.io
+0.0.0.0 s.team-s22.com
+0.0.0.0 sadekk.com
+0.0.0.0 sajsa.icu
+0.0.0.0 salarahmad786.github.io
+0.0.0.0 santanderpod.fsthosting.com
+0.0.0.0 satinnaaoabbs.weebly.com
+0.0.0.0 satyarthi.uk
+0.0.0.0 scarce-army-wide.on-fleek.app
+0.0.0.0 sdfvgbcvb668.weebly.com
+0.0.0.0 sea.6e2efhxz.eu.org
+0.0.0.0 secrbnsuppotyu9.weebly.com
+0.0.0.0 secure-ledger-m-auth.webflow.io
+0.0.0.0 server.2rk3.com
+0.0.0.0 server.pxs7.com
+0.0.0.0 setshinobi.vip
+0.0.0.0 sextelegramxxx.pages.dev
+0.0.0.0 shareorder711.weebly.com
+0.0.0.0 shaw-101342.weeblysite.com
+0.0.0.0 shaw-103098.weeblysite.com
+0.0.0.0 shaw-106054.weeblysite.com
+0.0.0.0 shaw-106665.weeblysite.com
+0.0.0.0 shawsyncmailservercommunicationworkspace.weebly.com
+0.0.0.0 sherman-relate-rev-baskets.trycloudflare.com
+0.0.0.0 shobhit245.github.io
+0.0.0.0 shopifysite.cn
+0.0.0.0 shoptkoo.com
+0.0.0.0 sign-in-att-108611.weebly.com
+0.0.0.0 sign-in-att-108611.weeblysite.com
+0.0.0.0 simxtrackredirecttszz.pages.dev
+0.0.0.0 sjhsjjs82.weebly.com
+0.0.0.0 skill-meta.com
+0.0.0.0 sky-107842.weeblysite.com
+0.0.0.0 smithjamessv328.wixsite.com
+0.0.0.0 socx.ly
+0.0.0.0 sparq.eu
+0.0.0.0 spicyhotcoolsoup.s3.us-east-005.backblazeb2.com
+0.0.0.0 spotifyl.vip
+0.0.0.0 ssfgsfg.wixsite.com
+0.0.0.0 sss.k999955.workers.dev
+0.0.0.0 stonemartin1001.wixsite.com
+0.0.0.0 stringroll.com
+0.0.0.0 sukienffvip.doiqua-garena.io.vn
+0.0.0.0 supportsecurity981.tempisite.com
+0.0.0.0 talktalkserver897.weebly.com
+0.0.0.0 tareq088.github.io
+0.0.0.0 tbsl.by-on28.my
+0.0.0.0 tcaconnect.ac-page.com
+0.0.0.0 tejlksdoisd.com
+0.0.0.0 telegcm.me
+0.0.0.0 telegramjessica.pages.dev
+0.0.0.0 telegrampx.com
+0.0.0.0 telegramsexgroups.pages.dev
+0.0.0.0 telezelm-ivee.icu
+0.0.0.0 telgramsignal4.sg-host.com
+0.0.0.0 telstra-102379.weeblysite.com
+0.0.0.0 telstra-104033.weeblysite.com
+0.0.0.0 telstra-104394.square.site
+0.0.0.0 telstra-106968.weeblysite.com
+0.0.0.0 test1.workersdev40050.workers.dev
+0.0.0.0 tg-logrom.com
+0.0.0.0 tktk.tktsk.shop
+0.0.0.0 tokecn.im
+0.0.0.0 tokeni-1601.vercel.app
+0.0.0.0 towrewds.com
+0.0.0.0 tpwalllet.com
+0.0.0.0 trustwallet-zendesk.com
+0.0.0.0 tuviaje10.com
+0.0.0.0 tvjbqiyv.guru
+0.0.0.0 twcht.twimobie.cc
+0.0.0.0 twimobie.cc
+0.0.0.0 uedy.pages.dev
+0.0.0.0 ultsyncingsolana.pages.dev
+0.0.0.0 upheldlog8.godaddysites.com
+0.0.0.0 upholdloginorofficialsigin9.godaddysites.com
+0.0.0.0 upholld-lligon.godaddysites.com
+0.0.0.0 usol.shop
+0.0.0.0 usps.com-cgkzkukp.vip
+0.0.0.0 usps.com-trackaxd.top
+0.0.0.0 usps.com-trackbrs.top
+0.0.0.0 usps.com-trackdht.top
+0.0.0.0 usps.com-trackgee.top
+0.0.0.0 usps.com-trackhsk.top
+0.0.0.0 usps.com-trackivo.top
+0.0.0.0 usps.com-trackjjx.top
+0.0.0.0 usps.com-trackmra.top
+0.0.0.0 usps.com-trackmvz.top
+0.0.0.0 usps.com-trackuqg.top
+0.0.0.0 usps.com-trackvgb.top
+0.0.0.0 usps.com-trackwbv.top
+0.0.0.0 usps.com-trackyqb.top
+0.0.0.0 uspsdana.com
+0.0.0.0 uspsdant.com
+0.0.0.0 uspsservicetrack.blogspot.co.id
+0.0.0.0 uzomadj.shop
+0.0.0.0 vedi.154-203-197-141.cprapid.com
+0.0.0.0 vgmrm.top
+0.0.0.0 vkkvdkdcmm.weebly.com
+0.0.0.0 vl1.spaceysen.cn
+0.0.0.0 vobroffexagru-4404.vercel.app
+0.0.0.0 vrvtn.top
+0.0.0.0 w1.5114559.workers.dev
+0.0.0.0 waassistance.com
+0.0.0.0 wallet-diagnostic.com
+0.0.0.0 walletsecured.pages.dev
+0.0.0.0 web-lupqrbm0k-uniswap.vercel.app
+0.0.0.0 web.tlgrm.app
+0.0.0.0 webmailserv3038z.wixsite.com
+0.0.0.0 wk.xzte.eu.org
+0.0.0.0 wodjrvrisixc.wixsite.com
+0.0.0.0 worker-dark-queen-529e.servers5555599.workers.dev
+0.0.0.0 worker-hidden-frost-ba39.yoveli7450.workers.dev
+0.0.0.0 worker-site.aopages.workers.dev
+0.0.0.0 wsa.osmqone.org.cn
+0.0.0.0 wwwwwwsasasasasmmmsszz.vercel.app
+0.0.0.0 x.tovip.eu.org
+0.0.0.0 xhjxkj.cn
+0.0.0.0 xixiajiaju.com
+0.0.0.0 yahoomailquthorization.weebly.com
+0.0.0.0 yungtee3.wixsite.com
+0.0.0.0 zagbasamothega.dnsget.org
+0.0.0.0 ziraat-kampanyasi-besbintl.xyz
+0.0.0.0 zxl.cbbnbbc.nyc.mn
+0.0.0.0 zzpov.top
diff --git a/phishing-filter-hosts.txt.br b/phishing-filter-hosts.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..ffdb1b5a96effb3e9f8776a19e00ac35d01217bf
GIT binary patch
literal 5563
zcmV;s6-4UcDCr@hm=Ay=WSIMy^Z)<9zfHA&3h<Pmc<P_Z7zY@XCBa27{k^)<<;_)B
zdR)0F-MS5#QVywTT-w#X_a)}O76-97NRHB_C>+_{vGl(#0hfS_tP|h>IDs}INA{d!
z8Cs8v77&iC<6YKO=hnLnr*kPmEJRj%Zeys~IsYB8N)+Mfi2cFO*y7&(*U#T?zHUCP
zKYy2Nt3M?qG5Fek`-7i<Ih<DQub*1=eUOonVfyD`_{GLw!|<QK{lU*)--j<)fBlR<
z7M`C!^&|G<h9G86=J~VV{@^FRO%7P`*U#44Q3>N#-va2w8xkR0P>_T#_PZlE;<Vd;
z`-2}ewZ0vQ{6Ws#_S+x)lmxZ@`bh%>h3CEh@@MsJ>+Wg3nYn!KyO+Ga@Vj(bM*j*L
zq__6lKwrP)&zMfEjcUJYNKL~_TRtG(jLC7F#3-mS(@lJme3H2YzS*98x?!1IW0u1>
zO8cr}JpBeL{dA|r)A+Y8Qci;Ng~H|O3yw{)EQ>Sr^nsfU=<_@eHE!wx0HDhgf$H}d
zdOz=0TmVzF60`#-rcFLcdLioY_$2|G>EN6<coIvP<)nEF^K`Yi18Jb2O84!N^+hL5
zOvnjIh0Uj4=!wN(pm0Rs*w{4`pYS>vjkz>@Vd5&$E0-Nh(r6H1R+%Odd&!Aj{x0>5
zfDa3JgBmj}0^9m*?8##~S%D|f!+#R)KT?Je@(v;4EcwjD5h%o14`C~{nBnWn2yaet
z9i$&pyY<IxQU!u{&oMs6etHw5XEm7_Pocg*BIeOpNWvEX6Gv*`ZLZa0sokFtF<BoE
zco2)@oW4)O-I#U;(cjbytOa`V50s>t<~R@nIkOM=IzkrU)KAch150HAiMPcW=P>&`
zbd-Xyfs=8W$tXr@j`7<uf<#L#Bls6^YlIFwGP2{#Xif+X>Zjdeebu@T`s`eH)Ggq1
zl&rC|S|XO!mV0t@29Q>~3rMt5z;qT3Z;gz@$d|cBaGXS_tH35P?sJ~yM8-kLK~aoP
z>4OD1UtQMWRGOOP=!hP{hcF9fViG~Gs+62x=|#vTy!4BH!zJ+%2i#14O~j|f81XPG
zCy~qv2Q%kkO50maj^|QGF-pKwd@?z6nJ%y+?XZaENbBY#N=m})D0N_qaF#epQb@xJ
z1@bv+-TDk{t7S%O7m`NOnjb!+w~dep(qdjlK%nB-6(^SFX#++>_2cPLOI(B{l1WE|
z0YlV;jPMDJ8?4oKp2;wfi1?b-d_+GY-F?~r^y2M(Ls4~TE{!pMROB**Fc}EK(|;py
zdqI!EU3==E_c-$tnYcGO?TmK+PRh*vrK3Mt^cL5h&+R&5YLln_aFx2SlP|WGPIP%z
z=!B`)D<YiVGq2MwkL&aSQC=pQ{9dPc?d@`l*P2d&?F1oKKg7zsKA3#j`#xV5zHgA>
zJc@KyA6H`U_qq41wb{2L39(M;@~f%rg_;JR_S3va&k8_%P9~#i_$d>bxQ35NTfNI#
z5g*;6?JVeXZ&PRNU`bE+H?a7ejhHP8$(k@6><-^KADMl`8ESgJ*ZD2qQ(o(P+<_nF
zYmWU{zw23vvEcRB_*8>5?A`4ASszp6f$oc3LrQ$Qj_dk*w#HA=ub%p2R^m$E=6UA3
zm=9aN*&pq^I)kviU{;^!x8-{-LNb}9b5PF=tN&#i9#+&()SpB9n|-<7F;?rd=HM^>
z`F3f<mC|tr!5H2RCtPXT5l)0#!xW7qREEZjb=}w&uAb?cq^cyYwzN9SNfM;xH4F8#
zQYk}XHJ@8ITL1kNT>D3|c)KE5E_-}p%|H)G26m*SC&2x=>w-P@7}477iIAg+WbJBt
zwe6vXThcYZ=VJ=>reCpv6vQWmKsind(^u8)<2H1s>s~ABj8vqJGo(Z0Wy-c$_Vrw@
zf8uoot@cf;vsD|kW2k99t$dO@Df6uuKCpQhE#Z@~M2yIZMh1i}oS_6Upp{s$IUj}#
zOaE-&#x%v2(p?n;1l0@HM$MDGuLlE`hgQPgqroId^>;ShW*i|3Ws>2&Cr8QmLq{%|
zoY=w_lChhNqaz=b5DSMX_g4m=1l62zL=~&gYg{1((UJzYCl@>kX)DiyC21g0?C}}8
zfls8BMq50F;qEnu@#<zh(X*NxG;#qxL%vyOic#rIa$j(2nJpKjN3BgX-ZkTsPXdJD
zQ2px*K%2mDKn^_qq$Pi#QWMPl_9rH9atK0@mzMa885F5|dWr&y5@4SwF37e~diVC~
zfrWRFMKs4it4K(n1G}1*f!3~DD|q;rk8v2JU3xJ!+chGP=rJ7^MZ`qZLPjMhbWy6{
zaVQqcB6xKKu!jU}P)GnT<{ED4y;n}Qn>H-pZK*>+;-E%jxsEYaUo+K$j@>9$m_Y>-
zSWF#1T_IyqwP4C~v|P}%h}y%e^dg~i9UjT1IYJUp?(=YP39T)|a`)d-aK7xXoE9c>
z1?W2+-hv!XE(W)IYis6v7T9b^75Z&tRBEI-Q5O(*YBC(q+dvE&x%f8`P(qWnwj|SS
zHr)>RMX69qlz5S4V<ssf@YEr#MB1$&yR-e=cKn)xK#z#URFk9NGl|ZV22jJJW;M5I
zw<8kNE))4AG{Ux^#}HW$1qtqV3<Cm+ED-K_L*j{IV9KQ%ly@e%n9W<V<tt#JYmgaj
zLnHDM$H{yX9!uRb_298kIhzHfhpqB2E;+}l+T^il19%$@xvWe<)PeBt#sH5^=+Lk#
z_;1IfG`MmW>sPqjkh9f&{Dn3es2{gqm@lJgaL+wJ#1p$dQGf~!2VJPQTw83X>=wL-
z93dfJ2K;AoSkjsUWZ4}LJg!uUrwGN%<}Q!@Q!*E-7gaZ!I=}i<8zyL&1iUyx5&d1O
z1OHb4YN%%~J+>>V%SF{-wj}xjtF$R!)R2wX2~dHSb6|r&7#}UrUD6C_{h%8}Zy_e|
zbrsUhOr+q`tmv4^8f-56(QqZNwRE9`TUWON8${UL_qz3Xdwz4UMh&m<mhRJ8uGJMG
zMoG@rPg$`Xkp^H8(luMKmeyiK-SxVCwx@@(+3F*v6ms`T{)7F>*!CbRe^*Q;TT=1`
ziPWy62#=TSbJk@m=3Z+y;9#zg?^tp_#*v(-KggCFQ8Cck@G07hIrkdOmg(3jR09XP
zkc$Tta}72~zB*sb8(Mgv<=;Y^Bb}u08|*q3eqMvTIGRajM2NZq>kQqaux^(0ZtWuy
zJP>tDoRFGEmutf^2qqmEd>E+cZ9xTuB;}X7^7$mxj^aD@sk&8i2NdEVzv|mDQsC-h
z=x_vZ7a;}cW3kgVe7hbpbx2f7ZQBUsqC)9$HFnc?a;;$b_9>g?5Y%lSbP8PFroy(z
zZ?<r9j#%0-@KN+8f?XuW2H`W4sFCq|Zd0|+tmmfVl+eJ1r@d6w#4`b|%zEuugM$Xr
z(BoR9!>HK+6psoaB1_WQB$nXy?VJU+KtHB3Re7i~Gj6>c#oj@d)wIncAKO#Wv`l2R
zvb`Oi^9-~gLiroKW%SmV{N^LlUg_?d+3#3Z2qN}Wui$s3Pc9P`_g)^NTPXyPbXVJ%
z%2wEKd-ZVdSCxpCx}9Ou<%11$5t_L&-gO6BMpTkYgaRw{*hSY#ktoAY?MYc_3B97q
z68r0t8_}y_rP@>w%mapI@S`4m?iZH!6f@1&gfBo%xxG@x>IWYEV=<+MDJSAT2nmwa
ztv-Xxhutee_V{2^DasYo0@Q94`nd}-Lb4}@2o5FWUJ^d!<~bRrP=#D>yREh!y?^Qk
zt?h^azV_gIjZpo@=2%YA(@JXI5`obzJ2a0v1n@<=>Hx~>c7ff7Sitlh(<=>jK<1cs
zY`wq_5O@LIuXpUGWFJDmy)L;EHjhlo^1Yj!5YGrn_f2vS12l*vCx7G*R>#x;PwpQP
zqEqXTNWmICu?gr=bZ0a^)K_&H6zFo{9*J}tdwm3j>ibhTprG+KpT1&ho*me@SRZ`C
zapa>w?{=^_5tEAC{v7bh{?0x|G`SNwjSJ{>KJ7a1c$~iAms|5N+;x8(RLgDM_3A|M
z#hL(b#8Ol95f}1A3`juy|Db7=OkxqU64bpCAzA(OW)FE?eM*&{0Tufc`q8mapA4#P
zU9mCip~R3xO|3Y}Wf6SB)Zkk;Qo_bFb5)QYBfLF44UG3=TnlRSJEnx4uyL4T?H-fe
z+~?5DU{{UepJ)I^kdz%qK9AGFN5SR^y!r|O?x5<}AW9`i)8~-aUW+w$HL1o@bJ_th
zsYQGoRO(K$rfy(OJS2zy<I$3P-UD3b0CSvl$~~eFkTw;g^m7VEs8nC_PfxP0Esv^Z
zb1Xxw<^1s0lwARgM%=7dLMb*0Q69^P^93a^{7U*=y52qA4tih#Z#KVC9#W8~IaDU0
z5fij<aZ`Ns^M+qjS2&0L0j4t@Nx32sQV9B%r;06lYg>MRA6f2#zX{l+IKgDKqH4kh
z%UMJ&)OtEW%Q7uacoC_|i%LeqIAJ0}44U!{(jTJpy?Yy;xg>AO7bzRbwWke8DGT}c
zNlDjg5*Wmq){2dhGG$|Y0@{2GHO_juw)w2a^k(F%JuHKedjZur3kC3q3<LL*xA#EJ
zx4uAc@p+H*O--b!<^u9yn|@c$+)UnCvgkx8gpxrTOCiHJOqw0$?2KoFZH8Q*jrj}~
zL_OuexJ-3KxvY9+sSXInYoHR&kBI!Z^W(rlX$!(`Z$ig!_daViv=u`8d_xOYh`F4#
zC$#Sw;)!Rig?9A|ytPtMK2pK#?S2<1>h94vDAHD9-1`!Lw4UU@4&?UWPv&+4!(*Mi
zw~vqU;fzy@almuD_b*+g{08Y2_=zW_9=QeGW-IHCm<TI{^q8(avI+!>E{BnTaj%d_
z8yhp5hZEP;cY*Oo>05V>nTpoRC0(c*PZUSjWDtr^4z(Vg5tB0@KpDm)y4f<|iWWBg
z|KhI6$VWYhVFU*tP^blj8K+^?0}82)ix=?O&Wb4uU?$-V2gMgLfEcXO!)T}V8f?^v
zAea@~{n-tuxR#txdI7_iVSpu7D2xCumT8niJFDhl966iVgbwx07oVID%QOrUH3AC8
zN5zb>YMCZ5Tz0Fb^^L>?(y56H1t`Fv=5iVB$fkh}Kso;ED``9OX`Jk!j8NRDWf6cA
z3{qR^&Q!dm9GzMwi<)sR<S@7%Ix~V~15RicIlI75QW@puaS#Iv6oa<oq|9W+gtJy0
zT)-6r%k?DfA_Si&y^PB&Bmi<FC!4>(&y3A%&^XPb6yw5R90#VEaf6bU57Xiu>>wxY
zP)~XgN>*7nNXaKQIGmWN*PttD6d18EkSInw>%oC#lJgm0THLgPu4eAc1RSki#AqfM
zXD5ec9IZ1TN16*ds1ZPD?G#sH(hAhV7A39J+Hjbbfd$Y)BU|`5Yk`I>lN@J|a<+P8
z6JzeUp+UkRCNnL|EZ8{fLGV!<5E=xZ#Skyplbk03!XgTsC#{822KBJ80TJCtF>*0Z
z;35Y-3bu&FI_Kv!;xuSJsl~d$<A}lzT1=C)!m4GNv>SvRC#x3aG;=|fN=m^;yC^B7
z=1L68Nd`_1pcRbnV>&mmd9-TgOb8}m0W^vqU7->J<Z2<7246g9b@2u&exJ`l-s20-
z`FlWWZy+1^>e{Tc;GrJ*Qtq!zcs(0X8zd_{p1`jHAJY5<#d|&pWHgJ4Hx0{}m~sNU
zVL=TXuN5Zn>Y_T=n&9Kzdapg8sd#_~R3wai?K^{wa8T_Nln1{pLXfTDnrWZ5oP!M+
z6(HP!&%2h~-_63n=?+o*7t+n&S19#!zvCS5r9IvEr>)XjrSv=`_HO_0|Nig)LKqvT
zxsBqQmTn6Wv*m6#MwL@Q(8E`NNGf9_>#AUJ-~YYmrveDW-wFW=Y!U3Nrt|^w+ALWt
zN4C_}rmJE?Luus+-6wzyTJ!KNRcH^Cwt3oj50imnkihXN5yCB?IT7uujWXV(T6eD6
zoO;5vFp}>i0-cbd+wNB|8&}a3o$%5nw5KmgtTeqKk=7`YsBuBf1J(`pqEN5^eG0L%
z^EA-!@{YUCw87i^vj)ZLrQQue&eb5^_s!BElo0I*^3UU#X>EfGT^W*KVz8^ihechb
zX^=wjG)cWa$&49DVZfjx))Nc><`>l2I(RJ_mMBG=EI>n2@Fc%3E!_%g@v&}MZ@w`h
zsdeR+5ASliY4R%2_M8(F(XkT5*GYLh3dt!A&BvQhj}$wRqOHDf6?^_{_4BEUO>)`p
zLm=WEmKS}rD(R|9H==KwK~D90a;6ye7pmFZG(7)%;RDK-V&9m&dA8i_kZ2WEn<}Th
z5{ns1fG(&Es}$fx-O|)^<mTNIXnho_TdP}hqt{Azle9FXDh@4$i0M@c<1mcr(56xV
z3nqrwC+fS$<lN~GYP0`#AS<9)o=$zHCtVN|3TyyI#kXfs;}{9-kKmC|cy_gj9IsV_
zg5N=@U(s|8R6isqrf95zJDLIODisX5GE(gje!^aD_SO281zb(k?@CRI%MaG-jqFki
zmF2k8iz^T--l~aoYV`T<rJVQ^vFp$ph6DilQg0Bnu4Dr+^ev6r3g8h#niosR9L0c+
zw=VMYMZobb*Bqw>{<x}PZ6oRRt*eV+kOL`B-BuFvT5`N~pzUp^ZEtl~@#073l$%6-
z{I8lk84q$fo>N=CN)p@MEA2oHWC~cA^GX-7Wb*q7I7w>99&OzSlqH60xt$;V_0LJy
zUh1yB%WRFd%g3xeDgwFx&)d;Tpw%8)(+_f>qB%e!Jf$B7bR~woD(1%M$CkqxKIJ0B
z(>;WWNZFhv;)@$B3Bj*9h22Zdp_;T_k6=?1v+nQS_oLMchrp&h1Kiql#!{#*RjA#X
z&=pbWR(GNP%tAk(TW~B8>iG)o-&N?jYN3}tvpnDU)KV3rI?>~do2X32)NJx6n;x#7
z{^khwLk^F?iPlo8{9I#+M<369KkaT!jNO58hLN&8k9#U6PDDMkCUc+hhP8Ae#DMcI
zKg-$D{>8XPD#uYs2{4Yk0BZFg*OkOv#3o~z^{^(cJ(UST_}^4^4&Fa6)FkxdTXY<D
z(vz<j9GQl}VZ|2K5`84LusR>Odb{y@ubtj+L%zK$u53T$EWY~N#KoeZ#2i>A=EC<N
zk}XJkX{E}$bd~}mv58eMXkF&i?$N*(`s5RXpG9vV#>LzWKrS(U*wa>^xyEl!d*rf`
zfPCG>Ds1!^V`UO~r3&*gurREmsc~<gd;cWc=Iw6}9}k~iL}<+g>rK9ZR4%=a#?#Z<
z5aqjrURX6$h@X@;^$OIcx?;-}!E<Y52efkAP(9IDwNEVo$A8^>2WqrVS{s@kL*uJh
J@V-ZGAOPE*$Ugu8

literal 0
HcmV?d00001

diff --git a/phishing-filter-hosts.txt.gz b/phishing-filter-hosts.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..44a64cdc6ea32be2709321dcd2148778665557d0
GIT binary patch
literal 5753
zcmV-<7KZ5`iwFP!000021Dsk*kL0{=-RD;{@NE(x_Smxgnq`mxcacSa+-$Pb(^grQ
zT#_H<`t_k)J>BIVRnJA{(GQcNB#Jydl<TjzzpGh`pKt%wE8i>Az5UJl*}wgpwrtSK
z&;Rt-+y6|Q%!2=XLm9$Jj*_hUdzSq~`Ohr-Uy%RDZBkD7pKtjaC;Qt!FNgk{bmF=Q
z!}fmxoxj;pOr(Q}`gxxG&mTWJn3vF$+409n^hTUWq|&o+Kc@Gky#EfP|5Gtx{Qqb0
zU-~f=jQqD<91F{|lQ4%`82_(tV5?u=ZK;{{LhHfV?oNLE@=5ydWG0k=l`K8}zU5{W
zeom?CC^0i7_jI<?hZL20Uf~?4jD0*SsuKPgvH395^JAH{r$=>}<$3u$wn0VkolhTM
zxmZ6$ZCO^hDB6^4D!r4Fp|))$OIP)|Fp}=@CuQ>U3H(X7UTGnNLvH*1Q^c5E%<Pj<
zF=xG%Gb}dUgrIsq&GSn!&7=fx2Q9x$lXdf_isHmr)(<2BPwqY)p5{@G8k#U|jYvEJ
zhc7N&1)P;m$@H}NffA>{gDXl$FfQ(-DjJh+)(yg)-9j``hKo@w&Vq)zc{PjkqP4h@
zCb#MP@hkfzQo^jrkv-yYqP6H;rnMc2Hli+z8sQ06`n+4MdsrVC&ohqXZq55X>7Mw7
zt0^^N)=KW@osQ$ODmETldwRONR5=1Bb}C!~BjbBFGq~G&uRyY>m5jo0HBMv~!pWjY
z@4FELWAl1m9=M%!jx0v)#Kqh)O@ioTwMvs&!A>R%$+aiS`vsg79iT;`_;V<e$*D9i
zae}fU$=f=~ah|ftktygsFUN%pV@`0$N#b}aMmYX~E0~9X3#o;NAvaHhJeL=t>=#qM
z*J7WX1+PJrMx(*c5W>M;GCL(<*|cd0qVeOI=OoYaqOISv;dgU~1_BKDUZbwd3cleo
zYf^t*0LIdw`9-S%Q{UTZsxp6RU?fV1^&(t-XXRb3EFnVvtk&YP{Z7pb2NBG~p&tc}
zprksJC=(o!)y;S2cG6q>vBa$U&ad!m*e=e?Z<Lf_#~GI2`6SF|jRwqlhqy;&d$An|
z6)>5h7Jp;%Vea7_;mHw<GXR18#}%J5Y@Rnk_^8Y;#pv3Wxleo#!7*87=7jh-zQVIv
z`Q6WAJQpdN(^9mUCnYLnf*D~+Qwfw56=5>tobtL(vMd>exU-I3@G_0*pxltclv>Rv
zc%ntg7(3f9O0D(RN87fY9}zh?p@f#(V3x~$TJ1g}eCx|<K!j4~>OyUFR4W=47u`_Q
z^EQoUu2iZf=~JnP<oMya%Dr2anECCFN3vd5+f_q3Z7UQ-QEtpId*4=k=QnBRaqG;A
z#k>-X|7^8GicYA!qx*foB7ME<Qm>OMC8yJ7(EYmK21_X$`pID2Rc2G~R{17q3K1|o
zn*`Wb1YcHEj%*eeR|z(D`hrdGZ?5w~>~tRaf;3%+xmpmKkfGJ>`u#!=tE?Y!iDt|S
z!UuA#?PSpfuiBgYbz86Qx|UmapKiLC*p*Gg-d+E&P{xU(R|cV}ONQ<}uP@!sTsaAO
z6$Q{HQ&iiuZC8c5@nYzmR?8nuO1JcNT^9qcC+@CRP4l`fi0J-KSf^}#pY5%7u#wW1
zQWC#f@&}W>m^k*AkzOXMZs=Oj0iqw$j21*~#pSw`3~$CvtHub4+bk;a(j=7$(Nj-i
z*+oU5Pjhh&X)(7&v;X$2Y`!E&Z#v0~2pyrCuz?eQeD|sEpJ*u6KFA<2U_G(1PVr78
z?Z&6e=)qMJF^mi%b&GjYTBsAtxQwIV+^PhZKx|_h^lb5b-cL-JdV62t)KkTl&xc2G
zEUK4?e<)PVYm}$+MfNeMqYKa;fKC4n*g)o|u<?`uRe3t8O)i%a@a43uTk0kE^z;zU
z0cu4DM>jmv7*=Gc&T<YA$asQtQ6y9#lAyLgq9iyIybOp~WZ5R%a_O%#kO^RGG6so^
z1TqEv1l#S?)Itllr~XXpp_{=_IB&5dU^00S!sIyY1SrpKPoc=6vVxVhQM$+^Xk-n>
zZShL3HcQlL`x2&VA|b`3OPmlKSpH2V8v&-7&Ta?JyKt!kJvr^A2bK<mYfc~4?kw<D
z!{(e_MQoy;%wYe7Wzf2@0W~Ov0ye4Nf`;`L=AWK3mMJ*{LMa1qG!U=uK(ERC{>yo=
zCZYH`dm&I8_0w~;3Zt0S8VW*;T7K^R{c!yI>8u*!G$H5`+n(hRA_v#?iU6|+L*vI|
z!|J_A4%*XHZ3fL3oo5I$HQEUXN%`%#Ei^Q90@0+Pc{_-Gnzv1YtE6ecAda$g_!+=r
z&m0%7#YHR?g9=zCF45$}JPYPyk!uZKAk(PQDwR+0!>n_{`pJdc1DjF<5S$ACDR;sU
zF3fUZ6GCMZHShLmhSP@`J~nw;>jJZwS??vP>gZ;EDb(4wVjyH~*2YwLN+d9%ds(#z
zM^7YhJ92j-bT>@AP?<aXrRU+6C6Dxh(`s@^C8+d509@H;oxrsN5wuR-4+k8#Gk`e}
zcY*p6^us(U1tqBrlm<bag(aP5UkLO}CGR6a%$Kzv#5E!j#P5L65dUCn1Tj6IhoEF{
z>ZU%|Ga-_9SWkL81{zLJ%Le&74Nd~?e<u%@6GZ>6p-mBUh%nZTcJYaItXCYS-vFD_
zPKW!Vbo>M^;U~f%RDnpdMMDD)3_(7LXJ1@JYwhS8prtVc6*rjNy6)T%NTLZ98j3ue
z2)97^6`bC5js(etzv75ZsA}?}Ht|K<U*xa}duG{E40h3E1kOOg)g+aG=isLv>eG1C
zsFSj`BfwJus1w6JDV*tSSj^`mCAzf1yTeW4dbugFT%0X%v$!Un7ZPC5KvQC%^$OdM
z>@S3;mqgtG!U5FQ#VzC4nj#_p!3s}C0QoN5G>w!*ju7<5*;;*Wf#B)v0BF2`CNS*@
zbQokbM8)$o_$(=LQPoZ0FqClXes_+uop($8LPGl9k)Fghy9~Zx##@+J^N+_JK*yrY
z`ddtQf`r|y=gQZK5JL~}7iniX;r!rP=WTcWrQet63Oh9lW1zSx6YhSfwZn63+F1>-
z>?}{5-GJXfQ5uiyyNJs>h<5?$6|y?uZ)`SamnqMabyX9j-<)*HX&;InRpE+LgT*fg
z-nnIhW&@H5D(J~rPmJ<_#%Flx1t$RD;p`y8()VA7o(z*+T=bm7U9nA$gGff}Ot_B<
z<A<>PKMsJJwI>HXNF*+4I!eed;WCWMSA!=8C0lW*WI&6Ygq2d@{lIzy=}mc#uhmj{
z*_DMPDS-m4<PO1b-o4NZnKb#jdq`v;Ie8@HdU5Z;1pxJFS)wd!%C?EGuw%TZHzQ*e
zu)nyTpSpv7$in-CSYOi*<JF#(AvnVQN|C?3c6(PrDEpI2jmmFTv<1wm=gM=*y0xd#
z{mew_eZHrZ&^_`rbYxGDXELQanFZjV`*JgUywwQs?k!a4$2}6Na2u8u5bxDOm#I2e
z<9-M7#D;E@saR6Tswc^0r+)W9f$WK3_4kGB>#CtI`2-WiQF^1mYkNrY6d-E&w4~tF
zJEFt&`aN>#tBkY>7l9VLJ)!3cbqE1R*#Mcs{Buij5-D=~Ds#|&roZg=^c)+%Da>s9
zUg74y$^n}I6oJM4A_-qs?&okjKEB`It0;|C2J#pDCZw9DP;L&w3!&`<l)`W+AJF;S
ziz>T7iwJ#lB*c_A2Ucu~i>5h=E@bCIOihzjkyE$`0ws}80Pb#68hjc>)r**cdHdM~
z?hQX2D0{Fz^4W)8EEwaf&?AW(0cbE{Pi~>#JWE3Q^aJ-idM|nL(8SGyh+e2(fIcmL
zg!ZRLb!>+V@J?@g^Gq%VV76dM6TtTP&1ziZ$?m}Qcn+>Xn0vShj#Hcg2!SIg%d^NL
z2eB|`mDbBm0eM~$ROitKWmw=G4$w&!^|~BuGD8Gfqb7R+QN)mjngu7HP%{HuLoe<}
zm2jYOlcNht$30b_X|4tDggZLN$IUj>#4)@~1(WcVLBOucLrSRkR=_<CU13@at>FSh
zbb)rUiEd1b-Kv{a;|NH$BxRMiQ8nNu6q<`^1#%X!#b(e(L0z8!M{W0{w+c8q4(<4T
zgz94=r9;~)fifAQ@d9w?6F^d2H#o}dM-p5L`3SRs_l=KnnGuK|-RbC3Wu71QOM~*r
zv4?1RIJAj&lOQ)Dcp^H~Kmj=V<=E@Tk=z$3FEL^`LSYe906v2S2(=uLA+}>-crPzg
z^sUSY4LgIQe{^}ljiRXYsx5Mi>gqRDr~~8{T_y;}a3iTKI2H=X%a8_5F*;9=;Ey_A
z?1wQw1iCs$Re<10p)N}BK=m})7_?#28s#XX(!}(S*NYPVtCgHzJwSh8shWK^$Ii#H
z37VbAj)A)oNg%~U&sBq)CQgw?NU88)1vn~jZuEc_I;gat(n&a?px->NZcl;}kGF;u
z4sXNS;^hmcasTyh9=iGEc-j0RGi2QpW4%aliE%pblK@@`%;b43fs073ZV5CiP#Ga~
zqHjdu*<Cmwwu1h8N7uG5->ez2B_B5?NuHo0LHHYGC=!os3bv`e4T|giks$`U*GL!}
zIqygQmoWz$L%nAP8g=1K2OZs+L|Mk5pA2!CGWiLX7QoOm7OiA9eDHw)lZU>46fZTx
zM<cTH8vxsT20ZOfBC%$NF}<7lxX!eWguCG9cf0mrGIfb!LmwAH$F1NPJOJhCH0^Kl
z{10;Uy}bNhTz@Y<e*gyd3RDag@%vQp)~k2Qzx)re0%Xo757zg%?u+H(ls@7r=rMgN
z`X`ZpDeA~e(dGJ5q_>wM>t2iYm!j+XQnZTKqWPt0TV9H8^s5N?@<H6^+xcTqk8AEc
zYm&K3n7rQ;HARr~@g#m{A7qbAXCiRxFT(i(#9}X?gN#MWMD~g3qp$>C<;lS%{AA~U
zRIUFcJQEv9mlCtHg{t$Xs={SrmM4VC*zO)TjR50h6+kh*l)uR>{UYT-q`W^EQj^C(
zYg%ZM;ijmhpfr~ZSCSD-8ir6QWX%yNn$)55+%P6Da+={RhuTE2z)edq%c~3?3S3fH
za%@b^>jpKP5LRKy3eprU&IrzUL$jPm=Rr9Yf?&ik%px<<6tpaginfFmZI+Sfm?nGz
zqveQ-5>v^WI?M9{Rj7h?iPlAIOp&!!mX$zsh`^}G8^joI+Nug4gyT(g9$b-9HdTQe
z7z40RVbYxEsLD_lJ|q_%LwR0QdBwAaf!kTrwwQ>DWF_TL+;D76nM+s+a79!UxXiMq
zl`JPE%0wl2Th_5LRoSpc)=<vjKm^WU+Nxm{$CapQQ$+VuHHh$nRwZvSE^2Uc-qyGz
zL=>!qp|LSFLN&^$sOr4Ld5cJ%XNV#uv!>()P{r67o|P4aqo^Q+nlc<$Sr!$_q^J;!
zpJ`LFhA<2hlmh3xrkNxhK`7LORIQB8)6|7z6)6O#EzaSmyq0Cw<~g*Fq|Br7Mw%P~
zno`*m4X$WInijRNm6B2j*eZIagiuTc0ybMyEEsC5GOtNl)|^5xAQT%zNl7wXv8n|Z
zBN&)r$S6oXO2G9vi;t<wy21oQhmOVnHEu0hj;cWLi}aX8Gx|06px|3b0H0sKg(e$u
zh<h`$JLm9FY+AaiyMp~m0SDoBK>}A`%sD5Ek}MBd5(O!+b`mBukK_A=-GlUYj}z*e
z!!9hOK^nsODSRK0E6o85;k0oQ=c)5~SQJMQ9)ZGGH~?V0AkL#Jfx!u^cyZ0i^8myZ
zujlO=hS!iJgk|v!Tgu`vB$3145D|cGThK2FV5A<h;#q}L)`=dU1mI}e$f$KVK2xP>
zPVEBt^C3o4*atA2OF{=zm@-)v2Of~5_B2?7tSSdaGWi*-PQP`GTyRi223VRoak*qb
z?qe#HOY11}Vk)fYCo2LjZptI}ngpR80j&kblrv=pnZM-6yD{i3g=lFjm??g^NRJf#
zQc?mu*^n-+K!-tooG?eKdRlCbBlX-@{j3XTrdIam{(VpX!>4TxFD}0`IN4K4ysQ*G
zEe%NhZ5$KbN$07n4I&k2b<-T0YQ*2Y07HRdN>YMt|HQ6Lmojo!PMLfN>gP(EI@M7Y
zstg|Fgb0$RPW+AmGm#optN$eC6o_!fJR(84Oajgq+}kRvd#_M5ABr>^()(XMi+yQE
z{5!j{yaYNrBxM!LWXe~qH1;ELPX|+C-YZknd8UMGN<4WB=Cd~glSbromCfxie{FwE
z>gUj|jkH~C)stQGq*=RWsHbUiz?oG>C`{S^=W=l_xFqAMtPH<uR$oI9$>V<vxd&1B
zuOat)bT&lIJTrV@GlU@=J%336%)7GIYu(SmKpjj5tp)JKp8?0ZYGAe#L5nIyT2}fR
zMlMe+#REs*wn}a_>qgjV%C|E1E${te>u;leTcYZw6{8zHwb4OnwJfgftxHwcD!w{z
z*Hmrmnbgjqc{UZ5_+-O77^4QIR%*CiV<%WwBAfj7Q%AwZ$R}QyT>}p3Qs~T7GfkRW
z-9SA&MwIr9$Ym{rwPXSMvM-F63ubR^KUaByU-wFIz&C(}N#riWDJ?kbOo^Xgg5cu5
zhBoB{DGsVu)i)L6d5)#{R8-HNcm**E7Wj!j?0jPT`o#M3S9(rB3Ecb$)S@x}Ht&uT
zXSz}27SAA#9X_d3)%xk|365>)KGxS6$pq(c6rW_?rl8wjk=3{-o<Pw<JI;=*+t+sA
z$4QON$9w1Sx%Y_2^!r+9#*ws^CDfOx3u`;C8W^*}271=XM)lH$zAC)(C|<x2Y!g|v
zh(BM&?4MC#@Ld_d8wIN5l;VGe+>`IpM+8@WdAl7RHH2#iPB#Rn22GX1E+y(lH$MJT
zja}Z=qG1{LtIlfSm1nr13+-qzN;XnE)a!>)47BWENZBj>(vd9;u~^wbUH3yp>SGE@
z4|V#i=D{y|x!bofE48o3szYdE`y!yLt!LDgeePRrj(w8@5-s5_r|TajGw`a2zXKbL
zSs@tkkC1BuuOh87YLw(3lUnMvZB+<<G7d|#x2RVSwPoFlW@-B7VVziid)H%}Om-#R
z?oFjS>7}JU=`9#L=`FFf-+QY;ob=Z9bkf^Na@IR6C%yf%IOzpEJLw(M;iPwd{+>&X
zN7-AsHtJuEuR`*ArG4&cUxVuxPy|}rt}q}<|F3UJ4MitAYlTD8478zH*SSK$&|dr%
z^300yJqj5_YFwO6q>#NAhJjP#J;*_G>vrSCk1m%mirnJjkq{jFN*j`9E#!4vfU*?a
zAok4ByJ27IczXeWy|#ZmW!eRe2SBGrP%6iQ4KdV+1l_Uq4GC|-Enb`<d~Ez_LE8bd
zkAl{6kO;+7=AO4Huqly^_v{(tUUW?m3)Tp&BJ)YU7;BqZR+M5^E@2m7&RgQoVqk6c
z6Ml&VuX*cAh}f*<90zJ8RQCjYF^{z0{&D>%^7`qzP8opcu&8;54SYG6Wh(2bsrQ$h
zstKn)etXM2>o>WK^`Cn&s>@gBo)?-icW!qf1>iX8gf3Y@e9BdUsI*_vrseiPj*U{8
rsLD&30<YDrB^qBQK(sXFX`1<b&iwB41k3Ue+u`sB>QZa)COrTEp1Tke

literal 0
HcmV?d00001

diff --git a/phishing-filter-rpz.conf b/phishing-filter-rpz.conf
new file mode 100644
index 000000000..892b968a6
--- /dev/null
+++ b/phishing-filter-rpz.conf
@@ -0,0 +1,459 @@
+; Title: Phishing Domains RPZ Blocklist
+; Updated: 2024-12-06T00:21:00Z
+; Expires: 1 day (update frequency)
+; Homepage: https://gitlab.com/malware-filter/phishing-filter
+; License: https://gitlab.com/malware-filter/phishing-filter#license
+; Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+
+$TTL 30
+@ IN SOA rpz.curben.gitlab.io. hostmaster.rpz.curben.gitlab.io. 1733444460 86400 3600 604800 30
+ NS localhost.
+
+1nvest.bigbantbaz.top CNAME .
+25116414.cc CNAME .
+365365news.com CNAME .
+365f09.com CNAME .
+750115.cc CNAME .
+823pages.pages.dev CNAME .
+95564339.awi.za.com CNAME .
+999fc.vip CNAME .
+a.yyyy.cf CNAME .
+aaaa.whilefish.xyz CNAME .
+accounts-microsoft365.weebly.com CNAME .
+accounts.0ffice365.support CNAME .
+aidanochka-tabys.kz CNAME .
+airbnb-clone-sahinur.vercel.app CNAME .
+akbarinewv2.morteza638n.workers.dev CNAME .
+alaindemeuron.wixsite.com CNAME .
+alexa81o.github.io CNAME .
+alienv2ray.pages.dev CNAME .
+allegr0llokalne753724pl.art CNAME .
+allhrteam.com CNAME .
+amazon-clone-by-sudip.netlify.app CNAME .
+ammuvicm.work CNAME .
+amyr.iran-cyber-net.workers.dev CNAME .
+antaidossiersuivamendimpayeerf33.zynekcctv.com CNAME .
+anuragrauniyar.github.io CNAME .
+appeal-voilation-policy-issues.github.io CNAME .
+apple-id.cc CNAME .
+apri.154-203-197-141.cprapid.com CNAME .
+arvestcreditcard.embarkdigitalonboarding.com CNAME .
+asdfjeiod.com CNAME .
+ashleyproberts.wixsite.com CNAME .
+astounding-trifle-b88a2b.netlify.app CNAME .
+att-101397.weeblysite.com CNAME .
+att-102641.weeblysite.com CNAME .
+att-107756-104508.square.site CNAME .
+att-108102.weeblysite.com CNAME .
+att-108651.square.site CNAME .
+att-mail-101246.weeblysite.com CNAME .
+att-mail-105533.weeblysite.com CNAME .
+att-mail-109459.weeblysite.com CNAME .
+att-servicce-mail.weebly.com CNAME .
+att-sign-in-107078.weeblysite.com CNAME .
+att-yahoo-mail-105061.weeblysite.com CNAME .
+attcom-101415.weeblysite.com CNAME .
+attinc-101356.weeblysite.com CNAME .
+attmailonlineaccountupdate.weebly.com CNAME .
+attnet-100294.weeblysite.com CNAME .
+attonlineservicesa.wixstudio.com CNAME .
+attonlineservicesa.wixstudio.io CNAME .
+attweadminservices.weebly.com CNAME .
+auth-sharepoint-asr.vercel.app CNAME .
+avertisystems.com CNAME .
+b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev CNAME .
+b35ccc.com CNAME .
+b35lll.com CNAME .
+b35www.com CNAME .
+bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz CNAME .
+bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz CNAME .
+bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link CNAME .
+bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz CNAME .
+bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link CNAME .
+bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link CNAME .
+bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link CNAME .
+bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link CNAME .
+bbf-alpha.vercel.app CNAME .
+bet365t3.com CNAME .
+bet938y.com CNAME .
+bet958c.com CNAME .
+bhngfd3.pages.dev CNAME .
+blackdasblacks.shop CNAME .
+blsckdagsever.pages.dev CNAME .
+bridge-9wdpjmsoa.pancake.run CNAME .
+brubreumummeddoi-4514.vercel.app CNAME .
+bscusdty.top CNAME .
+bsozvycr.icu CNAME .
+bt-102368.weeblysite.com CNAME .
+bt-106861.weeblysite.com CNAME .
+btjfh.weebly.com CNAME .
+bussinessaccounthelppage.click CNAME .
+bwfujmww.icu CNAME .
+bx.sfdsb.icu CNAME .
+c.cting365k.cc CNAME .
+c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev CNAME .
+can-post.cyou CNAME .
+celery.sa.com CNAME .
+cen4-six.vercel.app CNAME .
+cf-worker-pages-proxy.1352562939.workers.dev CNAME .
+cf.13084493.workers.dev CNAME .
+cf.iwoai.cc CNAME .
+cfcf-8.pages.dev CNAME .
+cfr-reed-taxi-wayne.trycloudflare.com CNAME .
+chain-trt.online CNAME .
+chainsolapprove.pages.dev CNAME .
+chat-wa.xyz CNAME .
+check282.tempisite.com CNAME .
+chore.pink CNAME .
+ciftcininbankasiziraatbankasi.com CNAME .
+claudiorojas.cl CNAME .
+clivenicoll44.wixsite.com CNAME .
+cloudflare-workers-pages-vless-a2j.pages.dev CNAME .
+codt.digitasianetwork.workers.dev CNAME .
+coinbase-com-18690.subttrepimop1005.workers.dev CNAME .
+coinbasewallet-verification.198-46-89-184.cprapid.com CNAME .
+company0rder943.weebly.com CNAME .
+completar-la-verificacion.vercel.app CNAME .
+conductibili.fun CNAME .
+correosprepago.bnext.es CNAME .
+crenadenuddoi-2258.vercel.app CNAME .
+cryptorectification.com CNAME .
+currently5267.weebly.com CNAME .
+currently70.weebly.com CNAME .
+currentlyatt909.weebly.com CNAME .
+d.afirkz56924.workers.dev CNAME .
+dio.azrealonce.workers.dev CNAME .
+ditgong.com CNAME .
+doc-online-1881.on.fleek.co CNAME .
+docsignauthorizationrequest.vercel.app CNAME .
+docusign.com.bestfinancebroker.com CNAME .
+duang-5dh.pages.dev CNAME .
+duvhkeq.pages.dev CNAME .
+easyaccesscommagebn.com CNAME .
+ebay8787.shop CNAME .
+ee-account-home.web.app CNAME .
+ee-service-help.web.app CNAME .
+ee-service-portal.web.app CNAME .
+eln3.vercel.app CNAME .
+enormous-orchid-howler.glitch.me CNAME .
+espaceparticulier.life CNAME .
+ets3qe9ooms8t6i8.pages.dev CNAME .
+excelorgo.com CNAME .
+falabellacom.dominiquepg.com CNAME .
+fdesq4.pages.dev CNAME .
+fdsfjiwe.com CNAME .
+fdsjfkweow.com CNAME .
+fekoulamevebouna.freewebhostmost.com CNAME .
+felomane390.wixsite.com CNAME .
+ferngos.de CNAME .
+fieg.84yr483rhfwieujro348ur84.workers.dev CNAME .
+figinstenatecom.pages.dev CNAME .
+finansfaizsizbasvurum.online CNAME .
+forested-mirage-samba.glitch.me CNAME .
+formtools.com CNAME .
+fortradesetup.hamidamnaie.workers.dev CNAME .
+free-5436781.webadorsite.com CNAME .
+frogsrus.wixsite.com CNAME .
+fshraha.pages.dev CNAME .
+fukshumx.world CNAME .
+gazruinv.web.app CNAME .
+geaoolsv.pink CNAME .
+geminiwallete.godaddysites.com CNAME .
+ghjhyu.wixsite.com CNAME .
+gimennlouin.gitbook.io CNAME .
+goldenrod-rowan-submarine.glitch.me CNAME .
+gorgeoushome67.wixsite.com CNAME .
+group11-vvip-hot-girls-combi.viplch.online CNAME .
+gruppeflorian.com CNAME .
+hanisfir.shop CNAME .
+hedayatfreedom.hedayatkhakpour.workers.dev CNAME .
+hello-world-morning.freekite.workers.dev CNAME .
+hello-world-muddy-cloud-f45b.mfoster0425.workers.dev CNAME .
+helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com CNAME .
+heluapla.shop CNAME .
+hemanlau1.pages.dev CNAME .
+hezhouruan.552008598.workers.dev CNAME .
+hgcdhbxnf.weebly.com CNAME .
+hjrhd.top CNAME .
+hk04-123.pages.dev CNAME .
+hkmqo.top CNAME .
+home-100317.weeblysite.com CNAME .
+home-102207.weeblysite.com CNAME .
+home-107257.weeblysite.com CNAME .
+homelogin7t6sdfcgvhb.weebly.com CNAME .
+htaflytz.baby CNAME .
+htaflytz.black CNAME .
+httap.l-teiegram.com CNAME .
+httpsbellsouthnet-102649sitecom.weeblysite.com CNAME .
+hup6r.com CNAME .
+hy.fuckgwf.eu.org CNAME .
+hypophysecto.fun CNAME .
+hzuayvvl.red CNAME .
+id2.xbenihime.us.kg CNAME .
+ikergalindez.github.io CNAME .
+info-delivery-bg.com CNAME .
+info-trackingcs.cc CNAME .
+info-trackingiax.cc CNAME .
+informed.deliveryhbo.top CNAME .
+informed.deliverytcw.top CNAME .
+informed.deliveryxs.top CNAME .
+infringement-service.com CNAME .
+instagram-clone-in.vercel.app CNAME .
+interbenefitprestaciones.referidosweb.click CNAME .
+iouwerty.weebly.com CNAME .
+isnworldwide88.com CNAME .
+jaydeep8806.github.io CNAME .
+jeanandpeterwilkin.wixsite.com CNAME .
+jetconstructionsgroup.com.au CNAME .
+joeandvelma.wixsite.com CNAME .
+journey-x-pro.com CNAME .
+jsdfchkdsds.weebly.com CNAME .
+jshattkee.weebly.com CNAME .
+juliusmasih27.github.io CNAME .
+jung-sohn.de CNAME .
+katiebllair.wixstudio.com CNAME .
+katiebllair.wixstudio.io CNAME .
+kdlmo.top CNAME .
+kenzmail0.wixsite.com CNAME .
+ketura2010.github.io CNAME .
+keucroilluxibrou-2718.vercel.app CNAME .
+kuconlogin-ui.godaddysites.com CNAME .
+latam-onipojes.vercel.app CNAME .
+layanan-bntuan-resmi-dna.prbu2.my.id CNAME .
+ledger-com-updatefirmware.aparecidovisentin.com.br CNAME .
+levappoprauqueu-4688.vercel.app CNAME .
+leyoixoimmecou-5619.vercel.app CNAME .
+linkbokepviralindo009.vipp.blog CNAME .
+liveairdclazmersn.pages.dev CNAME .
+lo6-cas-projects-64947843.vercel.app CNAME .
+maatamicklogginns.gitbook.io CNAME .
+madebybmr.in CNAME .
+madhu821.github.io CNAME .
+mailupdate87.weebly.com CNAME .
+maine619.github.io CNAME .
+mainnetverify.pages.dev CNAME .
+mazulyta.pages.dev CNAME .
+megrebeikenneu-2106.vercel.app CNAME .
+mendhfjpl.weebly.com CNAME .
+metacareer.com-case37169314276.com CNAME .
+metagalaxy.pages.dev CNAME .
+metamacksiologus.godaddysites.com CNAME .
+metemrsblogin.gitbook.io CNAME .
+meyetamaskiwalt.gitbook.io CNAME .
+mianfeijiedian.lawcpacpv.workers.dev CNAME .
+milanharvestfestival.com CNAME .
+mirobitsgt.github.io CNAME .
+mocp90.pages.dev CNAME .
+mostafa2.mehdi84888.workers.dev CNAME .
+movie-firebase.vercel.app CNAME .
+mubki.hp.peraichi.com CNAME .
+my-site-104564-105934.weeblysite.com CNAME .
+myaccountsignup.net CNAME .
+navy-nose-4544.typedream.app CNAME .
+net-flix-front-end.netlify.app CNAME .
+netzero-webmail-105996.weeblysite.com CNAME .
+new-currently-1-23-24.weeblysite.com CNAME .
+newattupdatemailboxkidlyverifynow.weebly.com CNAME .
+nfty-proj5.vercel.app CNAME .
+nnbsscnaceesngsetr.com CNAME .
+occinamete.cfd CNAME .
+odovsccs.weebly.com CNAME .
+officalourtime.weebly.com CNAME .
+office36503.com CNAME .
+ohscorgza.github.io CNAME .
+okm.znt.temporary.site CNAME .
+oliver752.github.io CNAME .
+online-e-commerce10.com CNAME .
+online-e-commerce11.com CNAME .
+online-e-commerce12.com CNAME .
+online-e-commerce5.com CNAME .
+online-e-commerce7.com CNAME .
+online-e-commerce9.com CNAME .
+orange234.wixsite.com CNAME .
+orgmail.weebly.com CNAME .
+ourtime.datings-information.workers.dev CNAME .
+p.updateinfocl.top CNAME .
+p.updateinfocs.top CNAME .
+p.updateinfoga.top CNAME .
+p.updateinfojq.top CNAME .
+p.updateinfolw.top CNAME .
+p.updateinfoor.top CNAME .
+p.updateinfooy.top CNAME .
+p.updateinfoqv.top CNAME .
+p.updateinfove.top CNAME .
+p.updateinfovt.top CNAME .
+p.updateinfowu.top CNAME .
+p.updateinfoxb.top CNAME .
+p.usertracktxz.top CNAME .
+pages-108-tg-cfzz-ip.pages.dev CNAME .
+pages.tempisite.com CNAME .
+pageverifycenter.com CNAME .
+patjimmy323.wixsite.com CNAME .
+paypalloginin-usa.blogspot.com CNAME .
+paypalloginin-usa.blogspot.hr CNAME .
+pcmag.anycubic.vip CNAME .
+port01-acf.pages.dev CNAME .
+portal.chiaveggies.com CNAME .
+pruhuffopraussou-5681.vercel.app CNAME .
+pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev CNAME .
+pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev CNAME .
+pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev CNAME .
+pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev CNAME .
+pub-2801359d2be54bfd8701132626efeb73.r2.dev CNAME .
+pub-3096005ebeae423182ccd89665564d8a.r2.dev CNAME .
+pub-46a5f86348ae4aceb3591d126020999f.r2.dev CNAME .
+pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev CNAME .
+pub-51f896deb233450089fc1a520e6ed957.r2.dev CNAME .
+pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev CNAME .
+pub-682ad3b65d944376b919745aae3c56d4.r2.dev CNAME .
+pub-722720be67154192a1102b2cf085d306.r2.dev CNAME .
+pub-7d056bfeb6b04852801553620fe62c0a.r2.dev CNAME .
+pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev CNAME .
+pub-873fc6a3edb941c6a17f50911dfca518.r2.dev CNAME .
+pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev CNAME .
+pub-aab4be29317b4ec296517a557db12622.r2.dev CNAME .
+pub-ba5a046c69974217b0431bca4ba43740.r2.dev CNAME .
+pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev CNAME .
+pub-c59cf4e950b142949df8861e60b3689d.r2.dev CNAME .
+pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev CNAME .
+pub-e5855431d98545b38408f52af50ab8a1.r2.dev CNAME .
+pub-ff0271d87324424a9aec83337e844a54.r2.dev CNAME .
+puertaselectricasprincipal.netlify.app CNAME .
+qaffixledger.com CNAME .
+qbstdfda.com CNAME .
+qpownthenewyhadvanceweb.weebly.com CNAME .
+raj-tiwarii.github.io CNAME .
+restrict-policy-nonadherence.vercel.app CNAME .
+reviewboss.github.io CNAME .
+rfgxg.top CNAME .
+riaayaoman.com CNAME .
+roadmap.binarydesignhub.com CNAME .
+robinhooldloegins.gitbook.io CNAME .
+rouzhda03.kambizmedia.workers.dev CNAME .
+rsjxzl.com CNAME .
+rtyuiuytgf.weebly.com CNAME .
+rubinhuud____llginnh.godaddysites.com CNAME .
+rudra-choudhary.github.io CNAME .
+s.team-s22.com CNAME .
+sadekk.com CNAME .
+sajsa.icu CNAME .
+salarahmad786.github.io CNAME .
+santanderpod.fsthosting.com CNAME .
+satinnaaoabbs.weebly.com CNAME .
+satyarthi.uk CNAME .
+scarce-army-wide.on-fleek.app CNAME .
+sdfvgbcvb668.weebly.com CNAME .
+sea.6e2efhxz.eu.org CNAME .
+secrbnsuppotyu9.weebly.com CNAME .
+secure-ledger-m-auth.webflow.io CNAME .
+server.2rk3.com CNAME .
+server.pxs7.com CNAME .
+setshinobi.vip CNAME .
+sextelegramxxx.pages.dev CNAME .
+shareorder711.weebly.com CNAME .
+shaw-101342.weeblysite.com CNAME .
+shaw-103098.weeblysite.com CNAME .
+shaw-106054.weeblysite.com CNAME .
+shaw-106665.weeblysite.com CNAME .
+shawsyncmailservercommunicationworkspace.weebly.com CNAME .
+sherman-relate-rev-baskets.trycloudflare.com CNAME .
+shobhit245.github.io CNAME .
+shopifysite.cn CNAME .
+shoptkoo.com CNAME .
+sign-in-att-108611.weebly.com CNAME .
+sign-in-att-108611.weeblysite.com CNAME .
+simxtrackredirecttszz.pages.dev CNAME .
+sjhsjjs82.weebly.com CNAME .
+skill-meta.com CNAME .
+sky-107842.weeblysite.com CNAME .
+smithjamessv328.wixsite.com CNAME .
+socx.ly CNAME .
+sparq.eu CNAME .
+spicyhotcoolsoup.s3.us-east-005.backblazeb2.com CNAME .
+spotifyl.vip CNAME .
+ssfgsfg.wixsite.com CNAME .
+sss.k999955.workers.dev CNAME .
+stonemartin1001.wixsite.com CNAME .
+stringroll.com CNAME .
+sukienffvip.doiqua-garena.io.vn CNAME .
+supportsecurity981.tempisite.com CNAME .
+talktalkserver897.weebly.com CNAME .
+tareq088.github.io CNAME .
+tbsl.by-on28.my CNAME .
+tcaconnect.ac-page.com CNAME .
+tejlksdoisd.com CNAME .
+telegcm.me CNAME .
+telegramjessica.pages.dev CNAME .
+telegrampx.com CNAME .
+telegramsexgroups.pages.dev CNAME .
+telezelm-ivee.icu CNAME .
+telgramsignal4.sg-host.com CNAME .
+telstra-102379.weeblysite.com CNAME .
+telstra-104033.weeblysite.com CNAME .
+telstra-104394.square.site CNAME .
+telstra-106968.weeblysite.com CNAME .
+test1.workersdev40050.workers.dev CNAME .
+tg-logrom.com CNAME .
+tktk.tktsk.shop CNAME .
+tokecn.im CNAME .
+tokeni-1601.vercel.app CNAME .
+towrewds.com CNAME .
+tpwalllet.com CNAME .
+trustwallet-zendesk.com CNAME .
+tuviaje10.com CNAME .
+tvjbqiyv.guru CNAME .
+twcht.twimobie.cc CNAME .
+twimobie.cc CNAME .
+uedy.pages.dev CNAME .
+ultsyncingsolana.pages.dev CNAME .
+upheldlog8.godaddysites.com CNAME .
+upholdloginorofficialsigin9.godaddysites.com CNAME .
+upholld-lligon.godaddysites.com CNAME .
+usol.shop CNAME .
+usps.com-cgkzkukp.vip CNAME .
+usps.com-trackaxd.top CNAME .
+usps.com-trackbrs.top CNAME .
+usps.com-trackdht.top CNAME .
+usps.com-trackgee.top CNAME .
+usps.com-trackhsk.top CNAME .
+usps.com-trackivo.top CNAME .
+usps.com-trackjjx.top CNAME .
+usps.com-trackmra.top CNAME .
+usps.com-trackmvz.top CNAME .
+usps.com-trackuqg.top CNAME .
+usps.com-trackvgb.top CNAME .
+usps.com-trackwbv.top CNAME .
+usps.com-trackyqb.top CNAME .
+uspsdana.com CNAME .
+uspsdant.com CNAME .
+uspsservicetrack.blogspot.co.id CNAME .
+uzomadj.shop CNAME .
+vedi.154-203-197-141.cprapid.com CNAME .
+vgmrm.top CNAME .
+vkkvdkdcmm.weebly.com CNAME .
+vl1.spaceysen.cn CNAME .
+vobroffexagru-4404.vercel.app CNAME .
+vrvtn.top CNAME .
+w1.5114559.workers.dev CNAME .
+waassistance.com CNAME .
+wallet-diagnostic.com CNAME .
+walletsecured.pages.dev CNAME .
+web-lupqrbm0k-uniswap.vercel.app CNAME .
+web.tlgrm.app CNAME .
+webmailserv3038z.wixsite.com CNAME .
+wk.xzte.eu.org CNAME .
+wodjrvrisixc.wixsite.com CNAME .
+worker-dark-queen-529e.servers5555599.workers.dev CNAME .
+worker-hidden-frost-ba39.yoveli7450.workers.dev CNAME .
+worker-site.aopages.workers.dev CNAME .
+wsa.osmqone.org.cn CNAME .
+wwwwwwsasasasasmmmsszz.vercel.app CNAME .
+x.tovip.eu.org CNAME .
+xhjxkj.cn CNAME .
+xixiajiaju.com CNAME .
+yahoomailquthorization.weebly.com CNAME .
+yungtee3.wixsite.com CNAME .
+zagbasamothega.dnsget.org CNAME .
+ziraat-kampanyasi-besbintl.xyz CNAME .
+zxl.cbbnbbc.nyc.mn CNAME .
+zzpov.top CNAME .
diff --git a/phishing-filter-rpz.conf.br b/phishing-filter-rpz.conf.br
new file mode 100644
index 0000000000000000000000000000000000000000..7f03f61d25138d5a01f16a4e347716273e98450e
GIT binary patch
literal 5649
zcmV+s7VhccAnhTdm=Ay=WSIL{Gd}wJyPSGcfJKrzvmvG*3MiBo!6s<y->cRrZ?3wM
zp`s~iX+w4?LMj?csP?@t?cCRzAg>7$QMwc*;)X%`UzcoOvVGA@vQ4l}vbE77dY2G$
z#Za{N%0w?I>Z+q<Z4Ax5BH~6k8uO`+k!JgII?gJmNJ2;a=hwN#P4(03AJ<UVkd{|#
zTk7kd|M9<H{iJUUwf*?{^>0T4s{83Rwmu0maKiMzGWHW6eq!vufBgLVv+ofK)}LO(
z%fbEn^_1c-e<EV$Wbfbj@$;+H4GviFr`OurF%&IJXc0^m4%i`HP>|#@{yRse#BG=U
z`1vKQ);ELbFSXAlKYo7o2etn6stF{8&#V9TYYA=b{It;QzCPF7N?soLo!VJO{}dY3
z`n&w`<Cp*SU;p+c*pEMa{ng*U{^cM3=v9t~+FlGMny~>P)7P47tLhXe(OVcsA*7U2
zv)800V=ti@dub-8-!1IN>+k>N)tta>ZTjQKkWT#g986dYq-NluEg!Ex`TIZmyFYu;
zA6yNCmV>0$ZZ`?7gjSscis$&;)3bSVl~J)_Q1R7?iw5hh^ry=mp26RBR!U1DW(rrJ
z4=@{No@a0A88SB>(EGk`YW>y)06-680;B#G^m{+I;&Gp1l}I~~Y%L0{=!IzFot8vw
zrp)_b@k#91wkIt(*p;lw4M+oXSGwK)y`h+7h>bZRsj!CB3q7$|j1-On{5v)SB_zB~
zPWN0IKA^>v=#|TcrD`;Yu!l~A9ec@%Ug0~~7#SZF@e9+CX`kCR<X~R`)5#0mmEL_x
zbbpb;V$2)FgrgE8mq(;fVm-#S2oFZ8D|dKuDr-M;liFQ4_Rh)^gTEiG``*uB_u|<@
zX2xA;D3FM~4HlBHm4E+{8U&YX4OnUqC+wJ9*blf7ix+}Ecf!ruc4jfy)C(*HdI~p`
zs+r_C5F$Bqh|@%r95<?mNHrIcN+Ocrx-;(B_G;*$B;ibuVIIjK2WpSg#$#lOmQhB;
zK8W-vJ>SXbCZ=OK$x#pp&WN>D=ieAIyY{GS#QP}OU}?2SEUPW|#B&CaR)UX6%rpTv
zO*FVQGO$6+<A~s}M5;5uwH&4#N2STYq+%1DXej+)QO=)U*5RqRNvna0zC(z47R;p<
zNzbTKLY(eds=5218$H%I;|mUWGleCQkSb%yY@Ar4cGaEDteLLci*4SYiyh>k2oDO$
zW-U~`z#W<XMKMRFQ#VCY5;jM%jL(uSVM%I8!wMbp9%|i%OzaqCMr#*pWYRT1e@1UB
z(M+VH%M5`)m9Z;MEG?)cjEU;YGlNk$OGgw}o=6LpOd2^68mwo|88?oEF|s2*cCl~S
zkDYFzY?t_W`_M#G4Mr$yZ5m~TiZN~mJ@n9T3H(+tVD#6P`ujP~eD7R-SEV;@GJGs$
z6yY*^IQbqNE}IzJb?m9>K*QlH^>HJ=IA%JL^Q_QITdzm%aDL9b=uI8h86u*(Y_j>e
zPWia6&uzb!bV_U|NO|=|EIgQltA{_&{o(QRL>14YDDTX1CH{Qw@0N|R+j=A^7oDzf
zHIci}&=}J8H19UE0+8>MtKBwy7mapb;#;P*e#=r3Z_{?yc{JzNbm#ow$>{GVv-mk1
zvFk1sZ_)~I8+^umWd4?Ctm*k&=cjy5buG{FjpDE$du;dext^6+2f=)7NHr?UpVf`;
z<+eo~=sze7q$KopT-PV?Wq&907~MZ+CBF1^97nOq@o?pn!_m&GbBOB$b_scWTK<kj
zDz38f9_pFl>VMgahm-ZaoA+VDmw$xWaIY?8BOqMj{prfeE2ZO%l5_kv)Oe*CPYfXL
z2vZEIP-&Xz)-_|B#dL2^r=~&TX-$iFLM1^HLUT}mRw}iF?BR3kM$3P_f*b$uEWs^E
z=F1)Ly=I^XBnunT(i7otxtoH0@B5C<<v^qwWFf0p+pBB0Hr$k{`8jV}Xt4biCrCj;
zPe_!do+N!m)82j+ce?4diq2>i+PEJ)6kev*qV2wx%lG$wU0JLCrPaG?0$Q=uwvZN~
z)uzgPBvvp!vcVCdts`<kK@4&rd=?xPNQO>H#m0iM3rl~mpT>>Gmejv078I)ctc}_`
zCtnLjEH|x+y-$ltk{Z6vaEbLqDU?Zrcb*(2e{VVn#g*o>m{rDhvYrltO;XN+rZij`
zLKRf<)|07Qy;|!FDTt0V_y%&poshP2AJ39T6~$Sefh&YWT4{8~V+8JAb39Gnj3*{m
zb%jPQkY{MF>wMxA6iOUAPBpvcg7g@*eQof~h7=NRF&JuiLIG$S7!2eHEsR_88!ELi
zEa-4z3O2_mrFv;Azt}+0dQVRTq96hOF5-gh8r63%tpSh&7fnQS3ABnt_4$3D^vr1O
zrnQ1c*z++krsC4esM)R&9Hhf^m?t7NnPxIfQbQNP44<qxEVC5D5y);3u|Xjbl9+3`
zz4vN4xo+Fp0B=jZ2olewG@k3Jt?Emr24C5YVx{R<FoDC=<<n_$uBIkzxsR3$+E!3!
zewAK;LC^74T#p5kh_WBqgGXp>X7hXSj)D(mdz7BJY!%S&ba)C{IN4ad-CJ9--Lt@D
zONP*QBf~TeG$-mK;zn(z1AQBmK_i#&R02Xm8EdOD-DTV3Kw6YyVIt5*4#}CI<iJ;l
zv=HUij_l3#bKUS03OFJ`<5Zh>yfuMolRD7AJ&n^ir(KFjM7vC2QJ91sS&t){9tslK
z@0tbxiVP6nbH*ep#lV!y>MKu8a<OZ0WX)H^LYD|qZ9{kAC7z!11$Z3n&(veULg76d
zNe5dMADnaE>(q3RqIKZcV$5YR3Su5G$MYk6Y(mdSt4#QGJbHsC@34L(-@3f3{v9ri
zQAd6I?ZSKoO@dqQ5q3Or#T5l8R;gWRU^JYkoDuxTyhB1UGx=xoSkjU+WV_oJ1YGDO
z?;<BrR(}QT?~;X_dYQ&XLm!rqYQqE#tAJNV=%U|i^$?yK9s~94rSJ2K>T~gMm>t<e
zfdy^KwHs(gTze=_%Q>1s-~)&iSfyzOw0_VP_TXSo5XLIho0%vn^f>7;<qf!8?uWyd
zywuV`39r7c1y(4qxo>st`#13mqYJ8gfv5D4&VH>f2qj8z&VI^*{fJBe{g5u%fpfYR
zqv)QO^}XIbmy;}E$CP630Zql_Y#in(K=e<Gsboh=z95m>%?{!5s(sF~Y{A^?$OakA
zP4Ov9?#D2Y^9%=Bb0eM&S|>im1ekNL(XNe-Yf;s4ppUr(5HV+Ag%qj}#k`_}8(RA<
zba|(n^lgRBwZm^~0H|Y`G)9zoNpQ^2tqAKDN$<|xkYJ<kh?mOH-DjA(C?>gL(EqSd
zF}Q+$56QV8tswMLs2k)*cU}FWga-=yfnRmqF>2t<V(f54@U}yW(1&iPt@x~XWa^Np
zQck`hsCmkz&&9gce3PFAOV@W<orR#T8*^fCZJRRdwtsSj1M`l>F(wA+O(Z)(oHOAg
zSLg@|dThEnZ<lj5W$M$w$Gbh$!^H~$tIYm7Z4C|@NyC6kL5I<m0wNy$Py|cTxt4SG
zy6)U%Hcvlv*{a;shiX|aPqDAdWe;uf$j5qDv@I)H&8$y{`#d8pC{TWe;5hvnOkoW>
z(q8Gt%^Wr?3q*)L*#rEp49REWS>MY|%q)cjlFMv6Tg?jR+g<~F?^l%_9p#;7HT{E4
zbOM^a(thh5I5*KZD=7-B+~dk%2Sj%aKY37Pr2_+to>E*UOm0fAhLt*T0hk8~&9Fy(
zhTJbK?e1n;s7YRccXaz{3Rd56yFCj{6VokWeIq1D&ZT=7t`N822-)L}&66otNefiF
zQRvTYkP(tQG48;qPwpk*O};iKBNT>^$8~en)kpvDx<YFkB0-=%hF*85VdY~fC+KM*
zHLpp*XqOFIKocW`g08xtvh&Wfxwv;QeZ%yi!7kJs(}t}V_`3&QMt{>Ac3X0Yv44Xp
zxf4DPM#}Q7+nfZ?5J?YHat9+c*hx;|$ZxF7)ChO$|1HF%)*+FCbq~ZPphq#C)BUDl
zsMF}Tmy7jC&~0375<IxiPT_!pHn@C-im3&2VB-?K{|U#Dj{<$Q!@@-Bsc^sLh<6U(
z9QGY;?nLQfCY>y#&EyS_GZgu9ac1mY563~B>-M`&od}^g8{yfp)HHoqV%Ee00uuZi
zZL37fS&oy`?v)*?HOOGMn3pA_RP`C~>`!2BvlkjtK&7=$d}w;;F{DzHPZlNk_9@l|
zKe~|;Hk+C2g7mq=)8pMB_&1D8L4#q#l&}*%FkNcznB3~$hi3*?h!igw0t7)-PCJTm
z(6bmMA2oU91tNU2s$+v4l^o8HV_tgg*0{o@x|iD0E|f`a$D5&2H<dMcdq~zGK=K&g
z0iC+%Kf+}Xu*a#VTxAat(h4z3EDlDk)KD_xCF9cisA9Iq%ucnO&k?gNfYTjU7bZDP
zY7&x5mJuHcT44B{^u2Vm1-c&ezyiUp;X%1cLn3mhXo-jknuWYzzwvn^EU5#|-SNN<
znvA4ekw_&aJ*QR072MiUAJ9jZ`xw52<5HMla;T`9u(5#_kqZq@CupAa;)EBmn%u8s
zAY2eGGsK~RZ&3aKlfPSV@!m^vrhJLAk$k(yfTXICzn_#$tu}#0tZAv(6e&}-HYAYE
zTTts=lxLUEYVB-Bu2IA?h`ARokGoVrk4VEroV=d(YOdu0d9&tir%!4oO*I#=2Rrax
zIcqaHN5!)fqYzpK>D~%y2DWK-nj<qD3BDQX{z#06F(cV33odM`L&{~rm8Cu))Uw`6
zG(TeU<L-~W2bC>IyS<GQzcc!X)yNiz?EQ%>UJ>SU#O}yGXM`snu@>3YkMnDkiuRE*
zc5C0~fTr#a4QwK9A=W<+3CHM3{_DbS5AkGgC+t7goB#F>`+f^9q{TSkKF)HOE>?bn
z^a}dK?NX22l5Vq>`)RQ|EELjhy9vxHFerLt0|Dz#A+a{rXV(BHE=!mKtw-r=_g<Nb
z)v6^O?=<W$j&2B(lh7WG8N8L+TaYkW&K3I6aS#(NeEa{!-H<^HhDkPn2aqVI8KfOF
z8w^9KjP?0KKDu$@lLN3?dMjWOvt%Hdn+zM=wjO~G1`#B8^6|Iq8BW3|A+(vnikUGu
z(usu;!r5_yN*eE`kqv|3nrrlEMsaxQg3X#Sg$4m77sJG@b<?ah87{M%w)K{z2IVI$
z<OC?eq7iBy+`u*Cj3~#ydqc(zLJ!)p$;wICX`UsZ2BwTt;c(>>s=-gQc4)W|QZW`f
z=<NWCGt}s2HHOe@HQC9J1CtCTN@m=kC##**IGRa72>Hap38R&pr4*w!^DvK60idu-
zyZVKG<b34JpdJS$hnd4LFmAZ@Y*J1zeRvATlr|oXHcU>c%i2LHp*i!Yx$W1mPs&bU
z<;+2$9NcJ_2gj8VBY>X$w!%J*!dndjotfoeH4LLyY#s*ZEvP}}!Vc2_AdT^pn4~rn
zOf#P+<&-g2fIfy6z(|997Q<*HT0UzvjG)x$%)mA0VV_|@0h8M5c^)MnM#H2Sj0I^x
ziczwB;nr%@5~M?vIBH|$G+8uk<_r<T3$bdpUgE5n86=<O?0g7P52%?DdYWAbJq{=x
zGg52iq?_hh8_%Q~w43J18y>={CZ(hp+&n3%jF=>wyyD;$12e%8UZnSokAs^=!KLI9
zW<WcMS5G)e3F>YkmIl{%XLSh{s@nixgS^TIybs?6sdIp=<6~-b-a&+V<O|$inee(-
zemGcGcsfB)1>U5E3rYxj64+=Km0%l}v2V%=+=>MeINm5sSltCpuC>5h`{ldLfTj`v
zZh%M_^_n_^+u@)lBq%p+T;x34(={?7tvN>*GXfyoh0oKL+@I9}6Lf>!gojDae=bw%
z`}?eO{Fiq3(C@ZbYn9UL(6@K@|Nh_q`+qU6jZ<7#aScm%1&Cd9cdMexX&{*4%fL=5
zS0rny;Bediz300E2_x7F5elq3xN*|u1Ld_*a#)V+sILvHVp2nC)d{^PfDFdy@J&@{
zH<Y#p+P4Ukg<_F-0Z?LuTR?Ln=&D099;Z5gF2<flb6Ob1PbUJ^$kDIg$1rQDXp2dF
z=_1<Q=OR|xUXWO8l%2r10P}!Tg|jIXEJUAtylkQjj61dCTSwaX^gS6tu}7)jh9u`o
zuz$Z_l?JJV=)RD99EM73D_rc#h$I)2oe{z2=?rP6q+qR;Uhibr45Tq&(Gl;71_1jD
zVzw?$i-u*lqKy}!At`v08?}~dCA9=t*KF3%xKz@*a?MBZHQh8t<!M{ag^BD~iQ?;~
zy<Mf`w1yV;ubv()?kNRZeV#7%{a)+)T_?WDWm|}mn0HuF^hQ-uojTpvLtFiTD%Vr+
zNnyXQn(ddy`+xU+K>1MY52j%6H8=MsT20laDrm37QHK(u3xZ+gB0OkDnp%$Bg1@7z
z4@31!^-FE^TIuEqmx6-g&_RiKd=)V;Hk3mfqyUanjHs8?w}8p}GaS_A@aaGnV6lKB
z%EqT$5Elv@0EQ*Bd!B|h61Y9VPa@%&r`hCqwi*=tuxa`h&D2QEO>*KB-Fx7&X2GdT
z1xr2|rA`yR<5pb`)y0)WT<nhTN<)grH`W@g?NUmW;rNzkDX>@kLKCUf?DL<GQW8$Y
zsY7cR3jpRztx?jtkd?sDbu?-#z(<T|oNXzyl#Cs3Kjap(q~qH@v(z*FaaF_G2GQ%f
zuPhl;OcW<>3yFCtdH<S*wzZA6t<??U#Y^fbwTXuPziJ9(J;>E~4sQ7>3EXtAw1YK}
zE@ETOD_!K0$<GDvB&ZX6taaa0mKmz)cD~Ig+$UXn>ATi0yEfXcuxAqx2;}}hXGdp&
zR(otiKiGi^<_Jmflz#Z_6&dp~DK|zx)|}1=DHkK29w1gm%I3@&@89T1jA6+s?Otk*
z-K6z;B%7GnWqY>19ivuv3LMJQz!yzt9EF-vg}Su~T@Zz?brTxSEcE^U3f>DudOkw?
zXAycXM(AbE4EHBLbyCIXPK-G0CW6UWn#2C&z~O4?Pu{`3#o;D6(RoUhp37eL*8tCL
zJKg5&zE20n83(HN-0H5FG!ga8M$7}oFD#`KDH+eZ^eksf&-ceQP&EuvDT1-(0;n}y
zN>~E>Ar2YKT!1BM?a6EkqW>myd+=}bLPKIdKE>>8BRz$B!BJ^g9F}cyDSM2h7FHHa
zOwTl4>$TDE(@<}3iz~Z#IZLSFYx81LP~wFw6EEef5XEPtv$Rsxw^Zf^Be{t)GN3MV
zYWo-vGrjYPF^qCH5c6VfdLg$MKkXqa&|LRVPJ86Ch=6>3i&uEi_kFKQBCl0pKL!<s
z)ihPU>-)RCi*4~6z5(6=-o1&?n+xtY`4CdM@;V%MPfJ6z@Ai9OF;HQ@fVPPjpf1$~
rTdfG6TO%8=m0N}yh{0+?YLPhp?VfL>)|h0BrRlbGKNWeN=g0#Du6OT}

literal 0
HcmV?d00001

diff --git a/phishing-filter-rpz.conf.gz b/phishing-filter-rpz.conf.gz
new file mode 100644
index 0000000000000000000000000000000000000000..3ccbb39e858edee240816961f07e478ff132c221
GIT binary patch
literal 5854
zcmV<479r^$iwFP!000021Dsk*kK{OVzW1+4z&_Z3rI9G=)qC;UyMPU>#|zK+vNt{@
zrYKQK>XFi~cTic~m8xb|FI<?Z&SC_Ej|hJ81(|=i{H`V~zFz*?D%Yx^x%|oWL=Eop
zKY#t(<=?bnomOu8@`ua+j+{(_f4!gt;V4B>Qv9AIUs3usN&W`%Ki@}Xh5LF*FPv<b
zf0_^di?rf4i-B$b3_AZ|dNGm)hHIy3bYFk@rGe22jhX3x>4{#66_HeW684wzZ9;E<
zL+`&RCI<Ka>HH7+(G`sRW@gL$G|ec6L(TX9mkZcx=QmqwVy)1+v!>a}FW+`1{u7x9
zC1B;tKmPvvUoKhl<zFxV`RnDk|Ni5}j(f~zOT`esO-h;g(i%7Q#K8pOutHj98HS%C
zxl{#Cl1o;=uOh*f|D1fe{QBDkTtKw96o2`W4vT;fR5g?g6D4~*nep=Pzy9&R{(OnQ
zpgc_roZ^_V?`>I;!+(QVonP8>vrOt!Q<*1enm_lgQ0ATG;>T|;mhYlE&kLMobxc+j
z@8o2tu4~ESMZHgq#2fs?Ouo0kPrSBD3+X*@-}ZMAV`d&E7xju+<BXhOvhgYe)!S*D
zZ;EjuCAimXxp^Foo!(UxCxc;aM<Q_D=Hl*Y9A)W1Bc{zDB1gc(vyB%4!J%U^K25%(
z#46aq1;srW7dt7kYKT{3J7Le;LNpv5E_yLr0~+e?)FjT6*5Xd8)WmP`rp%K_iD5yO
zY=I3YT8qXeTAPmOL6mt`B0R!OpI57O3-crWdBmRVW_VjC-6A)0HO7OOw36F-rF}my
ziuK3Ro?15>D@(w{Mum-_XL#+y1lw(#Qy`huLV7W9)sJKo!pba*_iYdzW7Be;9&9^l
zESU$j5gXc;aTG*Hi&2_P3RW^2IL%w6oSR{jf*rJo6n_q7GFla<IgU`0MQL3|DNbWH
zS~7aQ=jm8~!k85tK!8{tiyqwHaRuWL*g|Tc(SyOMljHI#l=)!FwOVYWHLz<CrNL-$
z6NIq07fn`4m^Q5{f@s)1(-fsin$_joY539Hp@9GcKG!JAynugjo>Z~B&48P+*ZiPW
zfvL~!R7IY?Gyqvd`}rbVd}ifMEzcoBey&#Iy#7qh2@4U-#GxMq4X>n{AyR|ih@`AO
zGq;h}nD0|eiqG~H{`AYmY5s|l8rb2({Ifmr<C#GN=Db1NBbB~b4ulGrOi+zKG5Ij}
z*d5`>5sVW6f%*FtpHJ8{t%C3#Xu_LfaBlO|My`e67>ydHh`2DmLffR=25GWCCn=iJ
zT-2CHIm%^(8DUXX2oz-nVKU*I^0JJQB<h9OS;MY)9{adcwu@m%t)>$^(JW_-o$Y72
z*7{@9x~}IYB0DRT&~ojD`MQsb*?NTUZC-SUP-<<Nsg?F>LA~Ol>9TTK$9|X!6{}IY
zSn4i1K0If+H>(mex9+$n%WW}D(dFa1KvER>$_8fkb-_EoOEdLrGb~t43&Hs3RvV<~
zi1Hon`*uV6w(DFkqs=9!<2s=Iw%t2JDeKyCz_=-fRlQl|tDrGNK=*7CU|$h@T~OY$
zNnC9qSl{R?9$I&|jT2&{Q_p9l>C#QbjL?V%THJ4+PxP?L+8*a<!Ym`aBe&9w23_%@
z-LT)*<z{b7zBc=K*V)K!Z0xq?_LGS+P87W{2u+<cw70yxHXF0~DCA9KK%0iFSjTm}
zDb)1Wf$p@Je_~SFxh=~w>u@=8doyaBmUTwJ%67sUWy*ar_tL^ba+6C*++xU2Otxa=
z*j;;i9jUsbTShyGemG_{BWlgAw>f8c9fony7$I?=L?K?9q%tCUY)R;JQQ_&+l$}Fb
zOm$XmKeXl5hXc|MjpSK?j!;cl$B8@sb+K!oXeiar%OEgdKB2x=@kT`T%ExQ(V5>$l
zFw%+G&cl<^Os$yvx$gz%MnyOWVjEhZW3%Jac4ETRnSBAT$BNDGjYo3KikFCgC=}Ie
zl&8~GwjrpaGteG@P4@=aP(6%(;V}cM^5m&i&etCB<ut8(>?C*e)ChinT+x8*x@Q{0
zvILb$$^ilyk8moohzdj^RA)%!1Sf*$9uc!7S%sai?QH@w0c=f%AdwMIrl6i+n|T^q
zXkoY5ok=~EPZ$#CJ>&u=qX!|34rfO|dG1>bNe<-&%&ZR5MJ7QbsW7gyS8}x)qE5?~
zFjN%?DJE@Xh2X&Q?<!geFwJ<f8*tv4OYP~&X)P_VbRb+){K$4^fioHwXU!r)1GQuV
z`zI`eT9I|ALNO$;QT-4!tTizH_<UlSk`o}58UT(u;?xfGnoMthoI7jcldm;b0=ZE?
zwW~!8iW#jTA%v*q``X`}<KDcpXo%B@plfJ(hC_%PT-PZA%))mKyT|z1I}shUrz+|M
ziZ41%5N4`3BM_4O(|)TjXr>6FNkQ>;5c@c-s|XiSRf9nsWasc1z+y`*7q-S(=qP#>
zuuN>E$#?V2n-4{<8Tbq*jVi5T`2;`ASSySht-r1?F&zMcW8vQARt$uTVLq@4p}Y#3
zx7#>@_hE$Zi#*MBhEaw|Z#gQ;;9|Zhl*y-JAY^q?hg5h>Bru{qFKUE?9`W3c>{j^d
zhKUy{Q)52VJlwG8aeTmARSHK5GQAK0SLRvAb8SxqjaB=x0mpR^U`}AWKz;W5ew>(s
zl2ikv20^WXDV;~33DitEZv#Qh=cVn$Eg%uZZGg}a|6r>JF+KZ3P_k8JRi5*i5YZc~
zN3H2S4X3ARgZzyKM;`Y-ll#jFqJPxTLl)W)F&NvM*+s^(R&f}91#FHR?Jua}{vEi4
z8wrC@1tQI64Fxzb1o<SMTy_(+F}<sRmWB{i++lEIn{z=Ri6&HNNb=wjZh-JB@ZNZi
z1j&WF;ebuZYVxX9@j=^NWw#1*X4z77X4a$!&Ol+SNh|@+VV{mGv?E8Il(p#ro-#n4
z5cWx7hsOBHyf-P)#1-Bwt}@%oRf+j(O@^!4R^f9Y0R{&sN(Lys{PF|q^Wo_vQ9D35
zfZ8(Kx&N3`B%FV+!lNEQzVSCrJtYAbf?huvqt7J}v`!X)#tA3_<CZ{$LHdEH@HzE+
z7UeiA%F1&XO1QB<ZjLpLvvc@DLb}$HmV_2NcdniLyB}Ed@68QB$E=3shnQ{z@vB+R
znXeH(h92NA;>K{o`N6Z!%Wm3hyUoEFHmVoH0Le`qH>uQ^?zuE=j0RY?hDX+{z;7Ta
z^~d#HV9OhbcLB%CpK6c4q0y|F$25(WMU8O$rl?U?JD>EZ@>iT1EPil!W9Jcy4LD4Y
zK~Kh7GAIXVe1?}+Z~_4CeFrBje*3d)NjI9=2L0?Wr%iM?BI=DD{C$+~-}&kPv;*X<
zEjs8yBympTUK)QzonVx|>O3+?*@{CZ16pJy%#;G}2iEIJZ_HDCE9Sz<CeI{^2_#@8
zHwcFF>V=-ksL99G!$Ag;lLkVr6?+R?08k(2IZBc$udDD38^&9DA7m&4wpZKoQ+3dG
ziGRQd)irI`-^^JVg2UghWa-Omw>K4plAo!RDF0MN8^D}$Djb)rSy~!g&qSo&rah*F
zZh=-`kv%m}WQ=t*3BW)5;b!=FM)C0O3}ooXJrXK#?Wg7u@6|--u{dYrb_4Rnx@MKJ
zm}59qPm<A$?dE_2nG?Zk_nB<VqM<H%2NT6ne5b%`TR7w~Kvef`NrBfJqW$&y9=P;X
zgESEro)+6JqUQ{C2mwb~2PcKO=aS+iQsn+oW}*Cyzu9f+IW~S!nArNc!rgt812zFD
z0*m`b5<bk_P5ySgf4jd|K^m(DIKQxOLaJ%>>E<B35ZYEiD)g7~9-Ys%s4_E@h)_2N
zLQJ{gz=~CIQB^0=m26yyv8s|H;DxIokP`U_;BHr?VNZjodKD8eZ#P-bz2U=wvIpxU
z?{(<afHA%Z-IK5pfQCVA(cRaZXNf;PZO0uC-b-E`6me50f)}b+pii^wq5Nr48Cu~C
zywjO>cqSJeFk7&s31EBpW;LwwWVhqGKL=MQhTY!;hbc}6guoJ%q)A|sotT+5O6&Qq
zfIQC;D$`(r(#_z919YNUy-vrPOb~%)P@}nmC}2oK&H~RzbeI6Hp%!<&ia5}?(b5^k
z{T8eDW3B~nggq+9$IUk6#NNN&f=T$zAYd2e;7F*qQoufSU0_%PrQr-jbcS-V3NB2G
z&8WLkeGf=BM|qLfK{ene6pD*+0dnTC#UxNhL0%sLM@{pjw+L_@hjM)HA^Qx0)S*og
zL7Mc@cm=p~5g;ipD;#9@J@H!#=MhGM-5*?t%k)6}=tg@RtKqq^ohy_E-0q|0v7uG4
zn)L7b!tX?|>i`MhsFy>}k3HFENG~B`*h69wQ~*AM1qihikRh~UG4NJi$Kb0>4+T2|
z*FUN}zl|a*)1uB&jLPB%RmcP69-Jl!dw(OT3~VeUke4A1nxeOk9>E{ne6bzIT<7WP
z6jT9%CxyBy!9CT}WMxo>jZ2WD^h%SVeLOEp_+KsL{PY0zfuU-0%@p#FVIvefffWOH
zBa*-o6D?O2uBtFa>fuQFZ%2TuU~_{GnrWxvc8o`1iGq6bJi9IOn|Qn$7TCXr)!EAj
zr+)kPHV@VOd^|RPmknguqQN*3;T+?5+C~Aq5}3*JTs#+%THPZkRv<G%=mcLxp=}oy
zh^?UC-stN3<;&V2*690<Nt8w?ixB=q8Ir`~G<n<9+&jhf_BbH}RIh<B9^|wg=RXf^
z@Gwy4*Z_sPa6<zX-I+ug#-N_`aTzoD4weSM&@mRwWX6B-fdG?-y1y4MHT+j2lJg6I
zX&nQewv#}tnXZrbVLGlejV1mr`1x(u989LnQK;+VLg=^^?EMZvdO8jJgFO9-9DOd&
zKNpvui_c$xfwck^Ls|Gf6?W^@oAS5)hgbnJ=b{JedtCR0&f*w9;>znWeM<T#k$Wj>
z$V<`n_EMzRmm*_di?)}d+wxMhh}WX&rD&aBithBI2>9|r+^75bYfz7C?lh^Qsfn1}
z_ehNa<b1S*@9e$oanhOa-1>uXx&pD-GN>R!kus8PB>G4!o>w_?a0xe>>F-r*-wDsi
zdeX#X*w{?f`CC=~GBHUb!enT5kDEq-ak2=Y7$4H#Xy<m8@*q;q9So^TL!dRzG)i!l
z6;e=|N`?!`2qqOnC>OHih-6i4(Rpm>lV&MRaFRl9B3R(6CYYr~0*wOa6s8>NQ}VJx
z6(@uhSh9>%S&b8d6JF6I<-u`KN`)X8aSWr#L{u5gv#g*sVOgCdB-p3&-@vFjq9Vss
z@~TYIG(!a{pj@J57V48Fb&(`F5FH{g%F+rk#;dw0{1@SP6&wc_B$ri@;R^Zy>{A#t
z<tZu>l=v^n1^ZB*W<^@?q++n`tg35FL_w0Aa!77C)F)3R%mlb1$}*fMNmWahk{l(X
z5WLRIP@f{NSS3qH=im^56BxFrSix~2N?K*X^%NB%JflU<YmBoJHaV?JoD(84mP6N2
zpAw-GB~%n;n&Y%aBux`U5tB)k^9-nBs1Hx_f`Tgw2%#$X?#lD5K#3FuVqu?FIjac6
zFhDMF%1fF^!V!c*Nk~!4;5b#8Nmh_da9ZOOKBcA1lR8bId?a}qj5kuH5YUv$Dywio
ztN&}<T9h1Bf#?@$8KXwO<`xLPl?2eJU%v;F?1)3$o0;9I;-T2I^f}!pB+bGMj}lV~
zhfSP&N(hZ84}oTHG~#)fCGq7(;`qiWoFNQdb0~>P5G8q%!NegZ1`*yUyn2+t^iklR
zlf<_qA`uvR#IZjVa1d@6WN-z}opbUy%ZrF-aX^8!vnXRlnkE;X1oWDu8FS6y7ap;I
zMsR)x-v{KP1z;hZHqFw4I-iHfX&mDb7>tDj0LBZ_A`S@*PGH50Yfe!FAg*{luVEC0
z5y=S8(<`==r%^;=hrb~r0Nr+=UlPDb-DN%GHBMP4dVCOoqxnTft;6v_m1YIA3*e8t
zc$&gKfZ<XRHkrbd$*MT;fFzBl!5U;;J1~;T&tP@>qhlPz07}OJOLHeKmmJ9bNriH0
z9c59@r4{{TO~A!XdBk3mAgm{#wZNEiVca0|x88X-2ECOK9qR-)#Sa(hkz!mcMt~<<
z($gAr805zZbEInK)#f--FJnC}x^!l0<!J6dj_f~ty3X+8>N|szBa_6-D>1UlfYjf{
zG0~m$o(gRcsX(jS_R!QI{_X`B3KUb43T*q9x-wnL$Xy4<<y|npP}<a~j<Qf?@Zdm*
zAe1`sI|eL7YEZ55Co!i$gmdl@3Cd*>aK0G4S7mkY6^a#8N%M&&fAuW(r8)5v9`d3B
zIyxj}70)FdHmx-FBXds&Q{vt`Q`38<glkGXMF-}yHv^YO<P*yFdYHep-)D6@v}>cK
z7q9Bcu6fqH+cMPiJUigbCL<K4?0>sloC~hVb5mAEUp1@mA&BJZKZYbh9Q|uZlEi02
z)H39TFT4z42*)_QB>?7K+3L0K=is0YCWF=i_~OrmV_mf{+lin>Rf1Nv4x`xRsg=0n
z=zFblu$px%>@?*^8T*m<ezEnpQNJxw_w$C)jh@=*AhcRn*Y-A*Y8sV>&fB$h*Lfzj
zb7)>nMI}Ai@E*o!K&h3Qu3_o~>q_La-~H54urcz17iQOhL%I?=H`Pp&rdC%_504Y2
zJtK123Sk{tfxheu<K=?cJKN7yQR3IV5*+X?U||-!%Wz7If%m4wKU{*~;=YD9<pe1X
zs#Z0&H6MxsOYxbgA0zQfViYXqODNOMCthEl*k1lxFBvF-n;(H%wC3N-yVJ~>Zq&HN
zBS=$+Pim?<pDvylur2+M^>t2iF${1NpXA<4LASpmZ*WgMfntYtoE>?;ukC)0lLniQ
z_s-#SpAq-@_qEWBBWWv3s4r7j-t}HRac+eT^lX!j>ZOZ(ReIG?ynrFtCbDS}Z(qgi
zKck}HyE1+^3RKA{#s3+SWZ$Ka2(J3_aXUO}1lJCnZU{~dnkt1|O4O}xef+0dyS%GK
z%k#mnd#h!rJ;McEXh(~u<WFXYdVM#FfsP*xDMzK>I<l1`7Arfb>v5_{b4)?$siBX0
znf!8;yM24+mG<?s?h%^!z6j`Q8#!}jpT|y{W8dU}L`Mdf(~b9v8+cWw-+>LrY!D3i
zN60OKSCdW|HA?o6NgeaLt}exJG7d|#w`f#%^~$=J?b?p*-8!-U_HM^Gne9rt-Ako9
z>1CBZ=`A@w>8-G}-+Svxob)!$eA3%Xa@ISoC%xmNJn02IJL!GW>7;jg{GQ8<N7-As
zHR@lD??Uo+rG4&cUxOQ0Pz2W4t}r1=|F3UJO=T~8YlTzWPON2l-@8J=)Lr}y@+^uE
zdlWJWYFwPpq?Dr<MS)Y}J;_NA*6p4bKfYX|IChJRpM>DpSK5#?Ya#FB0+gj33}Vk6
zy)W#`9B(fGu-A?EhopVbdH{6l2}<Qyupx#Tk)S`eejwpBxTdQ!gg;w<UeR{I>`%cO
zIZ1@#Id{){DX<xlt@ju?AG|os5DT^ltzz@Zz8LE@v#J@xtU|&rz?|32U&O?_`WAhO
z1n+s<N{Dz_%Q+6zN~rz;_+lPuzx~hcqsaTG?|WqcqQj!*9X9agV3xUR=C;{ia;|5b
z`uH6!^K9SbGS+|W#i%Y{UB;o*oV#<oD=7iTNiTH8OX9OZm556F6}`0F9>}p#Dic+E
olq>LB-C3gXbp}MEbf7f%hb8y>pC?$?yRZ+3KXt|JTcte!0Q4+MaR2}S

literal 0
HcmV?d00001

diff --git a/phishing-filter-snort2.rules b/phishing-filter-snort2.rules
new file mode 100644
index 000000000..fad9d2d8b
--- /dev/null
+++ b/phishing-filter-snort2.rules
@@ -0,0 +1,475 @@
+# Title: Phishing URL Snort2 Ruleset
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"1nvest.bigbantbaz.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000001; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"25116414.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000002; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"365365news.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000003; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"365f09.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000004; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"750115.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000005; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"823pages.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000006; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"95564339.awi.za.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000007; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"999fc.vip"; content:"Host"; http_header; classtype:attempted-recon; sid:200000008; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"a.yyyy.cf"; content:"Host"; http_header; classtype:attempted-recon; sid:200000009; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"aaaa.whilefish.xyz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000010; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"accounts-microsoft365.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000011; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"accounts.0ffice365.support"; content:"Host"; http_header; classtype:attempted-recon; sid:200000012; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"aidanochka-tabys.kz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000013; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"airbnb-clone-sahinur.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000014; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"akbarinewv2.morteza638n.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000015; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"alaindemeuron.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000016; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"alexa81o.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000017; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"alienv2ray.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000018; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"allegr0llokalne753724pl.art"; content:"Host"; http_header; classtype:attempted-recon; sid:200000019; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"allhrteam.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000020; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"amazon-clone-by-sudip.netlify.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000021; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ammuvicm.work"; content:"Host"; http_header; classtype:attempted-recon; sid:200000022; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"amyr.iran-cyber-net.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000023; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"antaidossiersuivamendimpayeerf33.zynekcctv.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000024; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"anuragrauniyar.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000025; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"appeal-voilation-policy-issues.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000026; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"apple-id.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000027; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"apri.154-203-197-141.cprapid.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000028; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"arvestcreditcard.embarkdigitalonboarding.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000029; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"asdfjeiod.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000030; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ashleyproberts.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000031; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"astounding-trifle-b88a2b.netlify.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000032; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-101397.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000033; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-102641.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000034; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-107756-104508.square.site"; content:"Host"; http_header; classtype:attempted-recon; sid:200000035; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-108102.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000036; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-108651.square.site"; content:"Host"; http_header; classtype:attempted-recon; sid:200000037; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-mail-101246.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000038; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-mail-105533.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000039; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-mail-109459.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000040; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-servicce-mail.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000041; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-sign-in-107078.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000042; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-yahoo-mail-105061.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000043; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attcom-101415.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000044; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attinc-101356.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000045; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attmailonlineaccountupdate.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000046; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attnet-100294.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000047; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attonlineservicesa.wixstudio.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000048; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attonlineservicesa.wixstudio.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000049; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attweadminservices.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000050; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"auth-sharepoint-asr.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000051; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"avertisystems.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000052; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000053; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"b35ccc.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000054; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"b35lll.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000055; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"b35www.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000056; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000057; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000058; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link"; content:"Host"; http_header; classtype:attempted-recon; sid:200000059; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000060; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link"; content:"Host"; http_header; classtype:attempted-recon; sid:200000061; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link"; content:"Host"; http_header; classtype:attempted-recon; sid:200000062; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link"; content:"Host"; http_header; classtype:attempted-recon; sid:200000063; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link"; content:"Host"; http_header; classtype:attempted-recon; sid:200000064; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bbf-alpha.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000065; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bet365t3.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000066; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bet938y.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000067; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bet958c.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000068; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bhngfd3.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000069; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"blackdasblacks.shop"; content:"Host"; http_header; classtype:attempted-recon; sid:200000070; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"blsckdagsever.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000071; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bridge-9wdpjmsoa.pancake.run"; content:"Host"; http_header; classtype:attempted-recon; sid:200000072; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"brubreumummeddoi-4514.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000073; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bscusdty.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000074; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bsozvycr.icu"; content:"Host"; http_header; classtype:attempted-recon; sid:200000075; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bt-102368.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000076; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bt-106861.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000077; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"btjfh.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000078; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bussinessaccounthelppage.click"; content:"Host"; http_header; classtype:attempted-recon; sid:200000079; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bwfujmww.icu"; content:"Host"; http_header; classtype:attempted-recon; sid:200000080; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bx.sfdsb.icu"; content:"Host"; http_header; classtype:attempted-recon; sid:200000081; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"c.cting365k.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000082; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000083; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"can-post.cyou"; content:"Host"; http_header; classtype:attempted-recon; sid:200000084; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"celery.sa.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000085; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cen4-six.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000086; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cf-worker-pages-proxy.1352562939.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000087; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cf.13084493.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000088; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cf.iwoai.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000089; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cfcf-8.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000090; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cfr-reed-taxi-wayne.trycloudflare.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000091; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"chain-trt.online"; content:"Host"; http_header; classtype:attempted-recon; sid:200000092; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"chainsolapprove.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000093; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"chat-wa.xyz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000094; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"check282.tempisite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000095; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"chore.pink"; content:"Host"; http_header; classtype:attempted-recon; sid:200000096; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ciftcininbankasiziraatbankasi.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000097; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"claudiorojas.cl"; content:"Host"; http_header; classtype:attempted-recon; sid:200000098; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"clivenicoll44.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000099; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cloudflare-workers-pages-vless-a2j.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000100; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"codt.digitasianetwork.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000101; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"coinbase-com-18690.subttrepimop1005.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000102; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"coinbasewallet-verification.198-46-89-184.cprapid.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000103; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"company0rder943.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000104; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"completar-la-verificacion.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000105; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"conductibili.fun"; content:"Host"; http_header; classtype:attempted-recon; sid:200000106; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"correosprepago.bnext.es"; content:"Host"; http_header; classtype:attempted-recon; sid:200000107; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"crenadenuddoi-2258.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000108; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cryptorectification.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000109; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"currently5267.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000110; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"currently70.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000111; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"currentlyatt909.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000112; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"d.afirkz56924.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000113; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"dio.azrealonce.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000114; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ditgong.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000115; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"doc-online-1881.on.fleek.co"; content:"Host"; http_header; classtype:attempted-recon; sid:200000116; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"docsignauthorizationrequest.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000117; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"docusign.com.bestfinancebroker.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000118; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"duang-5dh.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000119; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"duvhkeq.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000120; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"easyaccesscommagebn.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000121; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ebay8787.shop"; content:"Host"; http_header; classtype:attempted-recon; sid:200000122; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ee-account-home.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000123; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ee-service-help.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000124; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ee-service-portal.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000125; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"eln3.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000126; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"enormous-orchid-howler.glitch.me"; content:"Host"; http_header; classtype:attempted-recon; sid:200000127; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"espaceparticulier.life"; content:"Host"; http_header; classtype:attempted-recon; sid:200000128; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ets3qe9ooms8t6i8.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000129; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"excelorgo.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000130; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"falabellacom.dominiquepg.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000131; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fdesq4.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000132; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fdsfjiwe.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000133; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fdsjfkweow.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000134; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fekoulamevebouna.freewebhostmost.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000135; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"felomane390.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000136; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ferngos.de"; content:"Host"; http_header; classtype:attempted-recon; sid:200000137; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fieg.84yr483rhfwieujro348ur84.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000138; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"figinstenatecom.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000139; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"finansfaizsizbasvurum.online"; content:"Host"; http_header; classtype:attempted-recon; sid:200000140; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"forested-mirage-samba.glitch.me"; content:"Host"; http_header; classtype:attempted-recon; sid:200000141; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"formtools.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000142; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fortradesetup.hamidamnaie.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000143; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"free-5436781.webadorsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000144; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"frogsrus.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000145; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fshraha.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000146; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fukshumx.world"; content:"Host"; http_header; classtype:attempted-recon; sid:200000147; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"gazruinv.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000148; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"geaoolsv.pink"; content:"Host"; http_header; classtype:attempted-recon; sid:200000149; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"geminiwallete.godaddysites.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000150; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ghjhyu.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000151; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"gimennlouin.gitbook.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000152; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"goldenrod-rowan-submarine.glitch.me"; content:"Host"; http_header; classtype:attempted-recon; sid:200000153; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"gorgeoushome67.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000154; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"group11-vvip-hot-girls-combi.viplch.online"; content:"Host"; http_header; classtype:attempted-recon; sid:200000155; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"gruppeflorian.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000156; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hanisfir.shop"; content:"Host"; http_header; classtype:attempted-recon; sid:200000157; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hedayatfreedom.hedayatkhakpour.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000158; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hello-world-morning.freekite.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000159; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hello-world-muddy-cloud-f45b.mfoster0425.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000160; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000161; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"heluapla.shop"; content:"Host"; http_header; classtype:attempted-recon; sid:200000162; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hemanlau1.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000163; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hezhouruan.552008598.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000164; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hgcdhbxnf.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000165; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hjrhd.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000166; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hk04-123.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000167; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hkmqo.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000168; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"home-100317.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000169; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"home-102207.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000170; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"home-107257.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000171; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"homelogin7t6sdfcgvhb.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000172; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"htaflytz.baby"; content:"Host"; http_header; classtype:attempted-recon; sid:200000173; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"htaflytz.black"; content:"Host"; http_header; classtype:attempted-recon; sid:200000174; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"httap.l-teiegram.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000175; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"httpsbellsouthnet-102649sitecom.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000176; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hup6r.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000177; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hy.fuckgwf.eu.org"; content:"Host"; http_header; classtype:attempted-recon; sid:200000178; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hypophysecto.fun"; content:"Host"; http_header; classtype:attempted-recon; sid:200000179; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hzuayvvl.red"; content:"Host"; http_header; classtype:attempted-recon; sid:200000180; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"id2.xbenihime.us.kg"; content:"Host"; http_header; classtype:attempted-recon; sid:200000181; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ikergalindez.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000182; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"info-delivery-bg.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000183; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"info-trackingcs.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000184; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"info-trackingiax.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000185; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"informed.deliveryhbo.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000186; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"informed.deliverytcw.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000187; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"informed.deliveryxs.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000188; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"infringement-service.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000189; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"instagram-clone-in.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000190; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"interbenefitprestaciones.referidosweb.click"; content:"Host"; http_header; classtype:attempted-recon; sid:200000191; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"iouwerty.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000192; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"isnworldwide88.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000193; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"jaydeep8806.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000194; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"jeanandpeterwilkin.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000195; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"jetconstructionsgroup.com.au"; content:"Host"; http_header; classtype:attempted-recon; sid:200000196; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"joeandvelma.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000197; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"journey-x-pro.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000198; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"jsdfchkdsds.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000199; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"jshattkee.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000200; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"juliusmasih27.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000201; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"jung-sohn.de"; content:"Host"; http_header; classtype:attempted-recon; sid:200000202; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"katiebllair.wixstudio.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000203; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"katiebllair.wixstudio.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000204; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kdlmo.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000205; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kenzmail0.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000206; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ketura2010.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000207; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"keucroilluxibrou-2718.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000208; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kuconlogin-ui.godaddysites.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000209; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"latam-onipojes.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000210; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"layanan-bntuan-resmi-dna.prbu2.my.id"; content:"Host"; http_header; classtype:attempted-recon; sid:200000211; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ledger-com-updatefirmware.aparecidovisentin.com.br"; content:"Host"; http_header; classtype:attempted-recon; sid:200000212; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"levappoprauqueu-4688.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000213; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"leyoixoimmecou-5619.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000214; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"linkbokepviralindo009.vipp.blog"; content:"Host"; http_header; classtype:attempted-recon; sid:200000215; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"liveairdclazmersn.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000216; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"lo6-cas-projects-64947843.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000217; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"maatamicklogginns.gitbook.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000218; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"madebybmr.in"; content:"Host"; http_header; classtype:attempted-recon; sid:200000219; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"madhu821.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000220; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mailupdate87.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000221; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"maine619.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000222; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mainnetverify.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000223; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mazulyta.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000224; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"megrebeikenneu-2106.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000225; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mendhfjpl.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000226; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"metacareer.com-case37169314276.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000227; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"metagalaxy.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000228; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"metamacksiologus.godaddysites.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000229; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"metemrsblogin.gitbook.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000230; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"meyetamaskiwalt.gitbook.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000231; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mianfeijiedian.lawcpacpv.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000232; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"milanharvestfestival.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000233; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mirobitsgt.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000234; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mocp90.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000235; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mostafa2.mehdi84888.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000236; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"movie-firebase.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000237; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mubki.hp.peraichi.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000238; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"my-site-104564-105934.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000239; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"myaccountsignup.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000240; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"navy-nose-4544.typedream.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000241; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"net-flix-front-end.netlify.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000242; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"netzero-webmail-105996.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000243; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"new-currently-1-23-24.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000244; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"newattupdatemailboxkidlyverifynow.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000245; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"nfty-proj5.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000246; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"nnbsscnaceesngsetr.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000247; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"occinamete.cfd"; content:"Host"; http_header; classtype:attempted-recon; sid:200000248; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"odovsccs.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000249; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"officalourtime.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000250; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"office36503.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000251; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ohscorgza.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000252; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"okm.znt.temporary.site"; content:"Host"; http_header; classtype:attempted-recon; sid:200000253; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"oliver752.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000254; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"online-e-commerce10.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000255; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"online-e-commerce11.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000256; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"online-e-commerce12.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000257; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"online-e-commerce5.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000258; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"online-e-commerce7.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000259; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"online-e-commerce9.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000260; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"orange234.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000261; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"orgmail.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000262; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ourtime.datings-information.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000263; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfocl.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000264; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfocs.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000265; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfoga.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000266; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfojq.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000267; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfolw.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000268; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfoor.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000269; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfooy.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000270; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfoqv.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000271; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfove.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000272; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfovt.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000273; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfowu.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000274; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.updateinfoxb.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000275; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p.usertracktxz.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000276; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pages-108-tg-cfzz-ip.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000277; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pages.tempisite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000278; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pageverifycenter.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000279; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"patjimmy323.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000280; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"paypalloginin-usa.blogspot.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000281; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"paypalloginin-usa.blogspot.hr"; content:"Host"; http_header; classtype:attempted-recon; sid:200000282; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pcmag.anycubic.vip"; content:"Host"; http_header; classtype:attempted-recon; sid:200000283; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"port01-acf.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000284; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"portal.chiaveggies.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000285; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pruhuffopraussou-5681.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000286; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000287; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000288; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000289; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000290; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-2801359d2be54bfd8701132626efeb73.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000291; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-3096005ebeae423182ccd89665564d8a.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000292; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-46a5f86348ae4aceb3591d126020999f.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000293; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000294; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-51f896deb233450089fc1a520e6ed957.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000295; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000296; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-682ad3b65d944376b919745aae3c56d4.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000297; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-722720be67154192a1102b2cf085d306.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000298; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-7d056bfeb6b04852801553620fe62c0a.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000299; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000300; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-873fc6a3edb941c6a17f50911dfca518.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000301; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000302; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-aab4be29317b4ec296517a557db12622.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000303; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-ba5a046c69974217b0431bca4ba43740.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000304; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000305; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-c59cf4e950b142949df8861e60b3689d.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000306; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000307; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-e5855431d98545b38408f52af50ab8a1.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000308; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-ff0271d87324424a9aec83337e844a54.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000309; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"puertaselectricasprincipal.netlify.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000310; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"qaffixledger.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000311; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"qbstdfda.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000312; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"qpownthenewyhadvanceweb.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000313; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"raj-tiwarii.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000314; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"restrict-policy-nonadherence.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000315; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"reviewboss.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000316; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rfgxg.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000317; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"riaayaoman.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000318; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"roadmap.binarydesignhub.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000319; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"robinhooldloegins.gitbook.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000320; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rouzhda03.kambizmedia.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000321; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rsjxzl.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000322; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rtyuiuytgf.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000323; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rubinhuud____llginnh.godaddysites.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000324; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rudra-choudhary.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000325; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"s.team-s22.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000326; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sadekk.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000327; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sajsa.icu"; content:"Host"; http_header; classtype:attempted-recon; sid:200000328; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"salarahmad786.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000329; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"santanderpod.fsthosting.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000330; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"satinnaaoabbs.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000331; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"satyarthi.uk"; content:"Host"; http_header; classtype:attempted-recon; sid:200000332; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"scarce-army-wide.on-fleek.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000333; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sdfvgbcvb668.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000334; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sea.6e2efhxz.eu.org"; content:"Host"; http_header; classtype:attempted-recon; sid:200000335; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"secrbnsuppotyu9.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000336; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"secure-ledger-m-auth.webflow.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000337; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"server.2rk3.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000338; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"server.pxs7.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000339; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"setshinobi.vip"; content:"Host"; http_header; classtype:attempted-recon; sid:200000340; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sextelegramxxx.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000341; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shareorder711.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000342; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shaw-101342.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000343; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shaw-103098.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000344; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shaw-106054.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000345; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shaw-106665.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000346; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shawsyncmailservercommunicationworkspace.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000347; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sherman-relate-rev-baskets.trycloudflare.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000348; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shobhit245.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000349; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shopifysite.cn"; content:"Host"; http_header; classtype:attempted-recon; sid:200000350; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shoptkoo.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000351; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sign-in-att-108611.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000352; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sign-in-att-108611.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000353; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"simxtrackredirecttszz.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000354; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sjhsjjs82.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000355; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"skill-meta.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000356; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sky-107842.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000357; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"smithjamessv328.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000358; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"socx.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000359; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sparq.eu"; content:"Host"; http_header; classtype:attempted-recon; sid:200000360; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"spicyhotcoolsoup.s3.us-east-005.backblazeb2.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000361; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"spotifyl.vip"; content:"Host"; http_header; classtype:attempted-recon; sid:200000362; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ssfgsfg.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000363; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sss.k999955.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000364; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"stonemartin1001.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000365; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"stringroll.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000366; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sukienffvip.doiqua-garena.io.vn"; content:"Host"; http_header; classtype:attempted-recon; sid:200000367; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"supportsecurity981.tempisite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000368; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"talktalkserver897.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000369; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tareq088.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000370; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tbsl.by-on28.my"; content:"Host"; http_header; classtype:attempted-recon; sid:200000371; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tcaconnect.ac-page.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000372; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tejlksdoisd.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000373; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telegcm.me"; content:"Host"; http_header; classtype:attempted-recon; sid:200000374; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telegramjessica.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000375; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telegrampx.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000376; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telegramsexgroups.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000377; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telezelm-ivee.icu"; content:"Host"; http_header; classtype:attempted-recon; sid:200000378; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telgramsignal4.sg-host.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000379; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telstra-102379.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000380; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telstra-104033.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000381; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telstra-104394.square.site"; content:"Host"; http_header; classtype:attempted-recon; sid:200000382; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telstra-106968.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000383; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"test1.workersdev40050.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000384; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tg-logrom.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000385; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tktk.tktsk.shop"; content:"Host"; http_header; classtype:attempted-recon; sid:200000386; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tokecn.im"; content:"Host"; http_header; classtype:attempted-recon; sid:200000387; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tokeni-1601.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000388; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"towrewds.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000389; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tpwalllet.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000390; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"trustwallet-zendesk.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000391; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tuviaje10.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000392; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tvjbqiyv.guru"; content:"Host"; http_header; classtype:attempted-recon; sid:200000393; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"twcht.twimobie.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000394; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"twimobie.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000395; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uedy.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000396; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ultsyncingsolana.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000397; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"upheldlog8.godaddysites.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000398; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"upholdloginorofficialsigin9.godaddysites.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000399; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"upholld-lligon.godaddysites.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000400; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usol.shop"; content:"Host"; http_header; classtype:attempted-recon; sid:200000401; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-cgkzkukp.vip"; content:"Host"; http_header; classtype:attempted-recon; sid:200000402; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackaxd.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000403; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackbrs.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000404; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackdht.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000405; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackgee.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000406; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackhsk.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000407; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackivo.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000408; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackjjx.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000409; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackmra.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000410; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackmvz.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000411; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackuqg.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000412; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackvgb.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000413; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackwbv.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000414; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackyqb.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000415; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uspsdana.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000416; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uspsdant.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000417; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uspsservicetrack.blogspot.co.id"; content:"Host"; http_header; classtype:attempted-recon; sid:200000418; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uzomadj.shop"; content:"Host"; http_header; classtype:attempted-recon; sid:200000419; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vedi.154-203-197-141.cprapid.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000420; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vgmrm.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000421; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vkkvdkdcmm.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000422; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vl1.spaceysen.cn"; content:"Host"; http_header; classtype:attempted-recon; sid:200000423; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vobroffexagru-4404.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000424; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vrvtn.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000425; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"w1.5114559.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000426; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"waassistance.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000427; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"wallet-diagnostic.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000428; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"walletsecured.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000429; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"web-lupqrbm0k-uniswap.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000430; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"web.tlgrm.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000431; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"webmailserv3038z.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000432; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"wk.xzte.eu.org"; content:"Host"; http_header; classtype:attempted-recon; sid:200000433; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"wodjrvrisixc.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000434; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"worker-dark-queen-529e.servers5555599.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000435; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"worker-hidden-frost-ba39.yoveli7450.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000436; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"worker-site.aopages.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000437; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"wsa.osmqone.org.cn"; content:"Host"; http_header; classtype:attempted-recon; sid:200000438; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"wwwwwwsasasasasmmmsszz.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000439; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"x.tovip.eu.org"; content:"Host"; http_header; classtype:attempted-recon; sid:200000440; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"xhjxkj.cn"; content:"Host"; http_header; classtype:attempted-recon; sid:200000441; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"xixiajiaju.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000442; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"yahoomailquthorization.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000443; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"yungtee3.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000444; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"zagbasamothega.dnsget.org"; content:"Host"; http_header; classtype:attempted-recon; sid:200000445; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ziraat-kampanyasi-besbintl.xyz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000446; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"zxl.cbbnbbc.nyc.mn"; content:"Host"; http_header; classtype:attempted-recon; sid:200000447; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"zzpov.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000448; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/3961f442eqd80b4e3c28f75c4ba682dd68f9.html"; http_uri; nocase; content:"datagivers.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000449; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/uebj3h3j"; http_uri; nocase; content:"flow.page"; content:"Host"; http_header; classtype:attempted-recon; sid:200000450; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq"; http_uri; nocase; content:"gateway.ipfs.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000451; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/medoeu"; http_uri; nocase; content:"hm.ru"; content:"Host"; http_header; classtype:attempted-recon; sid:200000452; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq"; http_uri; nocase; content:"ipfs.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000453; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/46wjpyr"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000454; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/910428"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000455; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/cdmd94193ab"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000456; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/n3yi7p6"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000457; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/vre1p3j"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000458; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/p8w69"; http_uri; nocase; content:"s.id"; content:"Host"; http_header; classtype:attempted-recon; sid:200000459; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/107519/c90488/4a1f04e6-1517-4254-abda-f0aee8fe0ab9"; http_uri; nocase; content:"safebank.onl"; content:"Host"; http_header; classtype:attempted-recon; sid:200000460; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/cert/loks/mir"; http_uri; nocase; content:"scearmcommnymnlty.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000461; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/cuce/rit/pil"; http_uri; nocase; content:"scearmcommnymnlty.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000462; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/qinmot/truklop/poli"; http_uri; nocase; content:"scearmcommnymnlty.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000463; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/trawbe/nunty/loki"; http_uri; nocase; content:"scearmcommnymnlty.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000464; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/xul/lex/ponu"; http_uri; nocase; content:"scearmcommnymnlty.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000465; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/so/e1p6lravu/"; http_uri; nocase; content:"shoutout.wix.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000466; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/view/ghghdgfdgfc/home/"; http_uri; nocase; content:"sites.google.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000467; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/tlly"; http_uri; nocase; content:"urlz.fr"; content:"Host"; http_header; classtype:attempted-recon; sid:200000468; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/s/att-support/6ca3iebztzztx2gi"; http_uri; nocase; content:"workflowy.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000469; rev:1;)
diff --git a/phishing-filter-snort2.rules.br b/phishing-filter-snort2.rules.br
new file mode 100644
index 0000000000000000000000000000000000000000..47cdc37fb246d10f0de7ee5f71a27663aa7e65e3
GIT binary patch
literal 7808
zcmV-`9)ID1n$`~h^8cFs$N#)1qw`XLBT>BlLP|gO+Q3#R5iEk1!t=GPEJTF_6(UGb
z0E)uhEHm2fX_@XFMQoSsw4Cjhw@^$XK+xG<8Dp4(3IS^EIRXXv*GCoaTt=SDSX8iJ
z9!m~$4;AcV1qBEC81r+u(tb<&l?@^y>;ufkuYHXzZg)Sv{$&ky4QcsmSn_iIJ>}B)
z*T40M728k0_Vu5~d!PCrUkldzK^P~4{*Ph!!P$>t_}@SM+Sgxxj!>}v_+nok?yuke
zFdJX<D8%NIyMO1WU;Fx!mmIL*kFT}0V>w({LW^MScbOgH1qI2cxbb~_M#Zlk{nM{~
zrBpZcI~e`iKh9A<{n}S#nARU(X2|}ixt;&_zn0L}{{E`aTtlA=ZY3`de4FMp`WMi^
z<m*3aWxUg`=8msl|C@jQ$G`mLpZ@Ycz98LS<d437{V)ILKmPLH{^?Ku;Wxgm|6_*V
zms0${uixJ5^5a)OvqQgrt&GP@zdSZ{4gIhF{1tZ(`;jV4(f|Ix>iRE{>?S|Uye<Ct
z)xZAB|M=CPjk5kr<hbhZ|I93%SR1urv5=aDhqiqD>K{7kZ*pz#p;X`7XBMH>#!sUk
z>&T};PYSx6e*UV#|44AnH~&LqKYtZGf3Tl_$0Dh~6=Pa5Nu9F;D`!q<CA3N>Ok|gE
z!xi{450e>KB>@@Lz?fPdSQS&l#p-Bhr9bk)<7p07O;?$e(o%?t!WHNP3kU3Y3dJ<d
zj-Fv<$!drL(EGk`>gFfbi8BBIsKT1rAZY;o+|R|WY@pl*8j=l9vyqt~LMwV9+IXiG
zZf49l^K_W!;P9o`rjqai%c+6~uMG*Y0cl|GO1EVPR?stqVv{8<=7gle8d5Lx#Nseg
zIF1KcNx!mLC?Vl>a=Pcz@BuAMqE{{(maLdtnWBOS&K;KQ*h^0I3ZIW7C834YTrT1V
z49m2H#)gp1K|2zufa&A~?u{1LGILpVL|n=cW8NSp9F-WkJR*fPFz#fR@mk7_g`^se
z<pXE#@Z_}ay_CI4?LHiih#C^Zd_OyuGZy!~pTX^`TM3q+<#e;V&`=-|cUvqZVatCw
zmJ5Enk{Se`YYkXx4=3!HeAo}T5z8zDeeQ&tbL~uGU?pjldV!@tPvM4=HE}Fg?B+NS
zA~|!2dvHgjO9$&@hodYb;cD6ukpy4dPRsMJukk2>G9?Kg1Yy%im}Jx)Bleb(q`(>m
zWiM@B!@$%Y7}25ikG2{Clbm+ho88Ys3<Wz8mg?shh8$fSD+bc6t`YB}WQ(QM5(38x
z#%Z<Xo|cggMp_ATL}HBrZnON36`aerM%ci_G?v&)iZaB)Dh=dXGKeLQI*v*cHb^xX
zTIXy)uM#Xntk_}R1ilb!nr5_Ok%V{T_#Hw#H;{3u!8WF8pi)ABJ<+^LstNbXfwlgT
zth;tJvMLrhShDk6SP}_o<?P`wnkd7|$r?JWB{TjFn&Dh2*yZwm-#{jr0#|ZCNX|o{
zG`I@04CO6LifT-GV+~<RFs^2tFuU8pflo5p=zGhfOuojhutEV;TUz%azx^3uj3Z*N
z2d~WZPA+V$SKi4=UmU9jX1%SXkzU!+D$fYiI)RQ=j5AIwEwo0I(lE)biu2J~W))7-
z6UEg`qytBcMoxqVHxJ%hKaOM=$d359#l2)dcDjYK4Q|nr(5f)NDuQB#a?ZseTxkYh
zVvOJ_OcQb;z-rzW%v-^LalW?HU(a#od*|}AD!p;<2JcB3MY!x9PQC|^%O=Kl9eZjz
z&~VI^&T%6@k<s$S$!fIZo0_Go*CTg0-)CO*rjF|j5m8+(g%#&>o$~RYIk){<(kZc>
zAZ0){d>9K4_TcK_&vU<dd_Pge^C)We_P7#%-uGwA*1Byyl9Y>1SKthPp{3ni6!3yO
zvEOaCM1p*sT<xymt7vrl5??Z{^;4FLc-yx7&Z9lIraR{cPgZ~4k<rb1xNXIA>n;^<
z(h2YzyvKZG{*q^`>3Lu0ySz_zEzj|Z;&5+wZ1?gGPS%VqfzCs)Zx>RH%JFCQ<7>HH
zQ3uX%6c$nv`Z})b9r&`pl6|c1S7gqXz`68w97nOq@$luH!_m&GbBOB$ZV7pOTK<eh
zDz37cXQ*cekOf-;S3JC|uid^58$SFk?1p>wAzK0A60dhxPF^V;XOx`dr=dn*C6%3t
zuOwL|5VU%uVSr7VEotIHt7!|iNthBk_v+COz9{2>H3Vu+%j`uHLt35lHje2k5B106
zN?p7Ou!n2Mfqm;umI=%h6+aw1GWvuP{DNe<{PEgr26{kpupuoy8HSd#%IdaY-}}C!
z_c;)$n9O82b`*r9x?X*|z3<VE+0GQG`8jV_XmI^RJ7zbt3h4d`ZE*0YjbfuVHMv|n
zj=`_jyzVZi9W$fTUTf8gQLUu3xnevrA4BSRSHdIgL`bf=zxL}&N*!wk!t$YY_SG7K
zm5~~bx)#zRwAz{$JJ#^ayCDWX4$KpwohOo^AQm|gJ_(Kr<bYn)npiG|;lk2i>$`F5
z@u6Px3Dz)n&|p6hwNZEH#R*mt7K~VKS{<J{)~L5|VUnbV&t{ujjpisf6Q?jkQsB|e
z$Wij=rc5ZVG@r!eGRC!LG*sLu6N8a*5;nm#v?N>^!YUbdqE)k-i76&@?KBwUwG~nj
zJ!$X><bpdPZRH+X#~?PLm9f5Y?8Lb23L%kJ8m&Pu;U1WC>zd<?EZTMA!h<WU(vU_j
zsINpjWlArxqT9IP^ed}TC>W!ia;L#qb3uC4+Mt~>rI!eEb0LK!admm9;Rywx{eqMT
z0y{E{s$1tM`302*3AUg$q*ypH1(#!#(mfRIlpkHoZxtJKqxv{F#n+ldfWKC`dssFM
zoREE^{^pLZ0Yu_tZPL*)y|A&%DQ;DfG_7B)89fcOcH3IPBkcKL!=P-%%o$uxxo^>k
zq+!RRY%)Y@VkW|j^!P~2q{j*!#z+mtW0|Db-ABu$$c$O86tO`e5u(t(PEu(kEmJ8g
z1YV1YDz$;mRg7ra`Rc=A-N<#8IX9O~t<<Rx6st{OM=n(`fydPATQ!PvWuRr+Wgo+p
z`)IkKYbzol=_~BSxEIaoV8vT;J+5%H)iYZ&ie=;Q1kDH-v^EXXg_V<Lp28f;_9#7Z
znakH!%gp$*ITfCQaI(#zS!gA`v?cpxr)6?wC;05hE}W+z%os*<qH{#tZW8Q*t1<o?
zjkBLwF5$_9WCHkh)s{umR>W-6XV-0HmYp-H#oGE%kdL;oE@g>=HAJdIT8Q#%!KAiQ
zW}))^TsM4MLt8ns6A<d%afqn6yzj7}-KNo2#4I9c;Wncg+vL%*a5N&R8b2gG^e~Ou
zWvp7X6))RBbR|7T(pEr{O|T_KklH4Q7g&W~F^No=wrXU(0j6B`+$+h&t-+HuUl9vk
zVrXuqJD#<bC@W^R`ba#+$r+0t0~Q*?Y!X;Q*J@R~amsnGrs-g^W3Uq;`8bTZEKZMU
znGD%vhVJK#BW%T8ZE`}}65bt;(hzNh$O1KctZ%uTXe&AvmD$(%6)t?k6^7XVHE*`$
z>ls$^l5xvD!j31}+!N5bAYN$Kuw%bSF%YdHUNP^GP)tL8JzAzPHaBBQOHM!~Jiw0h
zX#p2%<Xxl@Wu32p{Z+D%rWdm>N?U=krE^$9stpq~%z}to=fX~yBJ@sEX9!OXkA-^n
z()V^Xv`ks-v^f{7Ur|!+p}>Nq!fs(RS6gwhh|Ia{E$1k+;8-T9=3M&G*4Zkye$W;6
z;9*Y?_HApcBxdqy7b8jvJsS4b9t%E~M_NY6=8~6My6847QxFT)T-O3Ctbnyu3%kVJ
zx4QQIlX%z=y(w5nBDBC$dPwJf25t4grVGLvwkBt5MOvo*wQIrsoHq!$6w)Po@ZPtZ
zl&pug@?Qa4*4KLXwTQNoU#o~E?3hx_JtVq>W^>-;@@Sdv*DG3b^q5Naq~r?{som~f
zq!P8+qOGjgAxk)I!Q5+22UCY#))E9Od3h!GgE4ZR;UH^nWC<nKhKljAfu7-rZY>1R
zRt79tmeP*{=a@@?DpT63fkkD76zUvG&{oZBenk&AwC&pyectIWMQmGPJ901E{@O})
zWqsNml8u=W>2Phf&t|YCxx$PDK5=^Y{w6L4Ivbg#vUHzwZCD1$n}utuw`D5g?QnPF
z;J>8pZ)HDp%faULAk;JY)?L?mQDO!P`w_!@!*Qh8+G=b?WyRRxh!C`u$=Vh|wL^-~
zSuvBgdRI@g;<M&nIwYzTcP(n$WKtPeNwgN{SNlnGt3_>9tlF`@%IXy+XxTMd>o!Qj
zxJWi&N1C$j?;Igu4g2REn>P%Cb$yAJ30f6q@sRTYZFQ}R;N!>@yo{_5>Zvt0UH$Bq
zbG7SOZPl&PVQnzSyFJu`y)8j4FsgVGPPCF_X>ia;8U|cSZ#!w3sFnGhL2VL{bzwj6
zJIf~5a{6$lmY%%C6;|U*KXeOsZMChs!FtoVyKT8<ik;@NoV7hA$$B68SnrCiWv6c1
z%2}nt`gFL@Gtz<;XtWJ0gy1>-SWICJJJMe1wsdH#YL!f3!?HjO$>Y;;P+F#Lb!JF&
zCWA!r<tDb3owj0CnL*0YZdl=}%nB`2th%~6JPGi5<W-zicJy>vv1PU8U)qXSU9(Yq
zY3>4k#FkHez%|TDNXsyAN=G45)-JRY)7oHTzUVV{&4TM`Z6&PAIi@NG-7`MQ`!i0t
zE39-pK%2qmTH{-Y9xp8uvWiy7{le1jVp45yRj8?cOi-@i(HL{E3R3C?w?{mT8T6Kn
zwsKaBFN6fikM5~uSBP5}*Z?h)wYtp<+aR8XwPvreiVqa}E378bGD7kv#vLLG?8qf@
zF9~n*(V&%L4OoNOB^j)B^VQd9ZPl%!^{Okhwqd6&X}OBkxnDhoUiTNDRz9wEX}NY)
zEM7e=q~<j_RH5a<RH?Q>3ut46P<pFL%f+XzgH>cKE3op-6Cd{iLt3sc6|oJ|vqOk(
zs2s}&5^KZO3-EyrD-zn#AS<lyN)9phPp~C-!bc`DMawyT>n^8?avqW%nz++)t*MR`
zp}|ga3P*lnjV#)prV;MakA8vJ)H)<mu<n8Q1oSAjbGqL&cmu&QPDj6BQCH1-pZwD1
zQ1%N7QaGTX3qGHrzK()iNF9o~XgS^NgyYCZf&T8;iPR=B)>fEm6&CT%;giF@qsyHr
z%_h^pN_H30X7h%}8A^ScU3nNTQ3%IDZOqF9t)eTP2%&fv;n}g&)Le*`3sx<}tcimj
zu5_>$x>kvnlN^l{3zM>8yhFAorGndHUY3wj^;bj7g{qQa2aoo)d!Zp20(YWSYd4&2
zDrzfHWl9k8OkBN;!YnPnKW&GQFgGG9df;+qDPhxe7d2!#TCP(StsR~o?*`_8m8`IE
zDQGclm=bov*`RYB+TO)%$K==fb;Q&ZR&z8qm?TzX3X@e$78E1XlVFmM+C01?En6VM
zCu!w121&*p+*U)5dFi!S7M3%=W5d1FEq`IoHfgzhRkh<CVa9cHQCqWS7FfoT0BOeX
z3h3P>#w)_*4sgfmXNZ;yTAgPP5z;zDw{pPkLQ)lN#jO%*4<*~s>e9Axw3WCD)Slfj
z4QpX-<*baJS671>INfpe!AN6F5(2A9uY3k1b0}z`;zo|PDp%cP?{*7xJ?Mc2f?LB$
zTScqsev|i{jl3;-S`s#>NenuNmWx{*x!>cfo`og#0lW&ZhqjtlPnY1lNy-(8R8rC}
zvn9SD?CFWNf>y@g%;|FsA2R(3%_5lms1F^>C6AY|Jy<fi(2kSKyJ^zUa!yWokzUV)
zkTAjp;mNMHN>^tlyr2yR%fz3{*!<aok9R4)UnyTjliDg^&C=ZNedhI2nL2G%uvQ=`
z*;-u!hgj26v6YjyYFKmGxsagj%?Ik{3VzyZVMQ$ad{*abn!!4ePxkg4#N11B@+8VC
z+KORiAt)%c8iXxi8IfA6%Vl|>JWX2}ti`<T^hvGDqb<n=%00eNTCRLG%-(AJ8WoQo
zu#&u!QCUwM2Yar|7B(au^vWi6VbE*p!hs*Di+X@J)MW&Iq9zmCYE|VkKVumeeWs=5
z5>(#hvW&x)mg`WJ+idwP;q0u$lVIMZNLl+gwbiEDdC;;#V;f6cY)G%I8r9X!QI`t0
z!j=W#*4XlT!#!e4yx=z2k_+GyHM!9?TrJr0KH+BAaw6cIx-_^2wp<-<i7g)suA-_~
z#1MRGpC`a-vaZc{C^i_<7UJgTA>pW<tgY}=ZUtfEXrSfNQ^p>7ZJvB0v!tA8Ct}uK
zVc&1TMd_cmN>mF6+y}(QV#c@Gq=LVghSVdstG1$4*VQyOtmOfglO%43g+jVrw_&E7
zXt^@gfsb6;z(}p;HLkXoqPMBBach7RmnAg8)mENr@hE-m^X$BBQmdCTy9`5HnX2Ea
z9Nm&Z8lh*jmd#G;*?|P(I9E82o`W#7@a2hjv{P@y1ha!27|Z|?rI|oFrUzyRl*+mp
zU_;L|`q6OX0i2ez6JW$72atm|c3?g(@lHGfXBH78_ws3#GY@ElRYGVxffLg(K+sn1
z%7osBn}G>6d2UfjJ9{$@j0vu}#u@D>&^DNGPBBb+7*seMA*_(NV1_&A&7`$bT6zO7
z=jBTcYBpL(11Q0v6>4IhaqZaIqiLE0ub?-Q)-$1*_JeWK2xq2A0%{nP^=g_VyprBX
zvDr-8qvb+KH4J8&9RtM&)aWNQ!mH?wv@*`jBOBy^66Ih$)5d8pHICK@fLGHuX~V$_
ztCgRm6r;8in?|VsP&lRi^2R&T8;zWge6XlTrX-s<Fg9?@-8>lO#h~FeJl*IArR|JX
z+d&$YWlAZfgyzGHn!9`???m5Ylr!Mu#6h8Ceze03o+}|n06oq3dtNaN^hRbBv(q5Z
z+etE~fsL~oCdT~iKrv${UPf;Oh5<-xXCsW%)_|G#WRzFdIstkHn9~=5l@|FV*k~m>
zK54~9P-^s+am_irg5Jo2f<bDhr)iX&jdqZNSqIXB6r&s<mRww`QA>~>?+!F-Yo&=3
z+F{}YA_iW?i*aglv&2aamPtOz$<L&aW~c`%w3$4-np2RW^kL;BwN_qwGfmpggH%j=
zGnv_@Nx<V>U!;suQZPRmC6yIM4rW#yW;K8{z~D8E=eg=;59G}#xRhMN1n7(qVnib)
zC>dxcPQ=pSP==jdf`d9Eq_R9f(F)zM^Soi6!$)9C#tv9op)nSfx2?_39t;7?dCVhU
zsjZmsy4R^Jwd=xOebEX5u~aJXA}w4{Lh!TTSizVUtSRcDZSLMuE9C@!#e&KCE~ORv
zVflorHp}K(BMhvj8T0a4YFyI_b+D+E0B}Rz`<F{A^uV5_Wbiv2)P@A*o`Kk623;lC
zg?1v%Y)EU)(Z`HS5RRi2LSfHXa(`A2gP<GiHawF~E2}9zt&j|BNvW^Tqboowq{8A=
z+TBCH+tQm;T5%qio`zh!cmK;Tzx)#8vxR9@wV@T-VM|N*1&CX7_p75gNf|P2Wy4Gh
zr=Y-2D(8`dRTGp79=FX5v?G4JDolz5txy9?uL=<gtULJ8==1@0;uuKnFbby3kv*Mj
zTXStwiAXDCzy{T)Q@9d925Ws3(+Ux=WT?<?C~Xb2Z-#*7yc!3^A%U{r<O&{XPGmHr
zGD^O*Rs4E_>gRK@?zDQ&Qlu;{u#%KPpc*;O>*wjnD6P=_TBzuXP4k`Guy*$;iqLA#
zbiE+y-NurgKyNF((7t;aSrKi8zw-IWZVTmQ6LAFD*rF-Nr;gB04BCfS&m-0lU<z%8
zy|#tfr(x_xvQMASrwKW&5cSHYMlPF~aKA>zRw~-cdClqy*X#vaCpol2!>ce$1H~{I
zkR=V&gOV^SJk(mjtJ$n~az4KE%*gih+W)zb%&)b1$i~1bEbXNosj%$5cDlO=4N1Y1
z{C@(eW1YkkTA}lmP<73A4UJ1x+N$m8e09x7m{Xb>qz7%)y^JZE(YBngw1RT>Hp?k9
zm6o6V2SIVm2wFR9tM@glVgL9s9hI5eZ&a(#vq`9}_E*g6Ypt(WHGC0L_L?8%;HHor
zTcvhw^}eE5x0|qGG#ka*Ua})*kR9TJcGXjG<It2=$bN;PX7{1-wgK!!2o5N3iv3Yr
zWv^}F9R_!=xw)KU&HbQN&|V2bZDbe}9gJ36B0OkoPHC(8Wt`bIB+Pd#i`Q1|D`d6K
zOP!b0Q(I-P1go{uZJMS@4P}j1$a`hSf+9b-7ENQrz~Tw4A}p<hw3Iy4oU}sYt7oWv
z3z+8l3<vc&ygQHu3MQZ-)3Y2%Tfwhl3jDJQ5kU*>o($7qaIDa5Hi+Bzc?rB-X6iB@
ztq=l>QiFo;!I(fRLPuz}Mrv=86E}3<g3<PROmlENM<(Fr>`2H`qOB5Gsx*AXt@<3Q
zw*{@B6%iM=kB634$bXeph644%T7&CLBCSvXE3IP7@mW5YwJEBKpP?kwt40srksZ&a
zB_y1PO`~8(s)jLwq)b>6L`myH)(Kdk6%t_E?`E|Xn2$y4#tB*>1a=k6SSW|t`=%8-
zU{}5KOH6Y5%lFj6@T-M-n$Ae)3X@AcrZ!e|y8WSLav0Q5lnQHzNn1$FOUe5U){r1=
zYa4A_tJ@HN9V^T!5-o4&5)H9|ceKJZ1)}FA%fp(sT3*Mse3eia@7_dPv974J<AN9?
zX3n*h<I0Y^QZbikVR<llteZ_>8N+_qq@;9viB^bfB||%3_8sn%F1>8aYb&4CA=>5E
zM%xwkYy%Gbk5-6e39|#M!mEzH2hg-a=W5zxYuXg8kd~Swq=Ip6Wvw>*v7!q~8yDj|
zPFoqPSwGfnmsv=;bV4td0b&hHNRy#}Ct?^qi7_lW*@jkXS2d*995>r(r7~63>k$p&
zLEN%ETi=daqkCvMaEoM3cPxR==<8{v+SE1N`(jIlT;hvg8{`UK7DUK3zN~eFe8iV<
zX2=b`yj~y3Cp_5;;B+=%%lSag@TI>O$T_~8i-la^%Vkf<CDz>U_`$0f_)<a{#Tia!
z+7NYV@QxINpU#$!tMzwD#JKEerKVF@`jdC?ui`FkMVvf8(I2TKS}Ekzl5^S1z829|
zuqmO=Z9Dzu-M%;9qm|lCvokX4Hn0(Q#pL;nR?0R_&un)qB^G{QDV<0;%zHbnlxu3o
zS<aTOv{IfaW*4K1F{#vqQPWD9rb}D^wT9Y+h@~W+w4*VyDsHFw083Kksf)7+u_4z_
zsFSb3K`VuuR$CWZ68rHkb{{s<Q>YglD-~_kn~ZpQTUuPoZV6mQ>BhNTVi4wWOG7Iq
zoI-PL^z$^-<)M|DP04m;|0-t*HGEv$Q1+B(y%vavvXKLJdLE+qgwzYmxT<gJHf7MX
zm2@hsl^=)Hl^U5#u8mj_6TS0^F^sY`8?DrNDr}W4T{|J?ScKUIcI2QHXs-J^CqHso
ziUhQkdKzBeY*ctWWDkSt)LB+8j&;J+YcMX;#H^~d6@LoGXMKIP*J7fr+Eapj!Y9Bh
zz^i9bwAFaZj%Jp5xY>KcaAlP*Yb*5>vb(3HA@<LgR*F2WRvuU^RM>M{aRKU6U9hF1
z%D(0EpI(s-W>Y&kpax>G+K^hDICxsA^VBV#Po&P;WUZs=c649Mu#Pn4d5&BGNL!7j
z59V7;n$1#je0wukiNbL+kIG34+Hmi+nWz7kL&dxKxV?m*zfyKk@qNvCXt0EBW+@3V
z>%;@`-O;|pDqa>dA1y1$7GNxGb)e4o9gewvANZqR1Q1W#Q+a~s8?Ggl$Cn#od?oQ3
z+f#(9MdkJ3s-(!bGuHGr@_83%c)@)vcO-a>rIkukr+@G0v&_SFHJA_UPTS1WO4%vN
zu~ASggcaNoQeUs*E{~IfM?+eKBnzz+vzmTSZ13!^$yTt6y(Q;&KS?$Tum*$G{C7&?
z4&$Luup_tYEXa<$o2&q9xE+VN^z>AZT18r0X{}#C-)tBao4(yNNMpVwuz8TE2~%t&
zk}FBTdLZ)vh-StCtVL4*X0(ttnp3o_wt8J(oNtGveaF1j?>%HF&QTpg*+W$JJ>7eX
zt)Ns}1+Tr+Z`U1um(aeC5RC`R`G4p;q&>IqR{9q6@qOeNYzQmZ7M8$e@jLa@?#1`l
zYC%}ZUg@XD?}(r8Bd2}`tN7y7{Eh6;vB25CALrNHTkdTqk`%+iYW_5x0k7|6T~@!$
zewp3(ns>Bd=JqK+g!57Y?8v0Wt%B=nuQ2oyA37H^!5Sv@`<P|s(r-VQZ|y(?v`>4U
S_TkIg!Bn3zpNE*l?O+oh_e$yj

literal 0
HcmV?d00001

diff --git a/phishing-filter-snort2.rules.gz b/phishing-filter-snort2.rules.gz
new file mode 100644
index 0000000000000000000000000000000000000000..36bc7ddc4711b3ccd19478cf7a68f8dacd5b5029
GIT binary patch
literal 8258
zcmV-IAiduoiwFP!000021KgcmkK;IYhVSz$jG4XI1x6a{Tj~J<1jrzBvDpn~XMrF=
zFrcU-i55R(en^&oeJEG;V3XVh#}{V{-ECKuEm=>Khwq`t^L~5zMR*BcF8?+QHw!&o
z{`&JDFMrX-`uy^9kl?`o!?%~et^@Nhe7WS;yiBq@xz@j2uV3=)%k}yn@%KMIR$;+?
zxn!4t9hcvS*Xu8%g?j+ak3YoM{A3iYY>MZay<gpz@4uhosac<LqrO*6?#x0m3hBXq
zzkYt2&+p^A|0p<U_y2kGxANny@gRRO!SeHCnicfxW#{|9yToJ7;qzF+^BJUEteKwd
z`>$Bie`cQbEFOhPu>RutdimW?fBx4WfBn;szg(C;F3CS$e)r?Q|MKI{fBL6CzJB<h
z?e)8|EdJ~Ad*!At-~6vnb@}@JWryC02x|ZjJVO5Fhs!9<{smk-ql_<t;k(fq^(&VG
zwEyA4jrQ@$mv8>%$6w-$PawZ4@Ut2I=69Li;sMfLOg+=SXV27|^_#zW!B58dukW6L
z4PfIhC3DUnD|}(zgIeRKNi4*-{BUt%_>x~gzOo-K7Pc?h4}YLSBd@ZoF0(S_9Em|r
zjzLjZ@sEbxoedocLqQS4c<m4ol;jXJ)iuj1yuMJ8Bhco>ITX3{<KF=`Bos9{6kS!-
zWl?k~+eP|hh#jM$$D->-o^AqbplrzzVCfORQa&OP=;#rMU+F#z3FD~`AIB31MRui!
zf^!qJcZm|*8fQiy2hVf|=;eVIC$fwznDjc1F}XOYxUjA<X+lCmPhB!GFm3p}up}Pl
zaOr~8Zwi7eY_I!-OQRuiES@RYbc2|B%9O20gG)wFce15tR>TZs%TpCQ3p`m}v^w35
zUBDvBu#BD}Ws(U!fP!F6BqAQ?IS_+vO^^sYSeu#jb9P1;Boqxn6!FDdZrOpIuw(=!
zs+2I<tCVJ8QbSV}O<t}svZ9T?9YrQ{jHgWDMU0%FURCUA^yj$SABhWtSW^vNit)f3
zd2@n-RjIHEu3kee5(R=9RUI}Jmc=G=^k9?NGVrxWPEfCEALYAoPDBzxY)pY3gj(4F
zV8^0JpNEEpbH5>m7lQIN%6K+e7PL5+#g-*GLCw0Zz+|!+A(<C3@~%b-ek8)V5Jd_$
zpqe5e35gicrrL9Y+I6)e&8jlVuSJq|O_G&a%2&(QlM7lnA*f^Rd54x;7=-7{4k@UZ
z9xsE4{f0#e)0_Ci^VTySB!a@$4dV@jL2N1oL1F7=3CC(pR4v}&&khs>6|M6o=(B$$
z-ik4X*}iRA-s8*tf}qg#KFO|G(KVm5^~lYoAW9^!<Jj{SA|+8GO;gqJp{%ZL>h6JA
zNY8U2QK^VhX=77)Pdllp5~-`~4Gp9ri9<0V&-j{`^?O=LOBqX56~%k7bd<4lW!1d}
zOL--U#ev-f=kVf#zNnzgXhIQ_PJ})O=4;cwr@7FSvj>}v`7Oj;>-XrmlBBYYmwygN
zWmdfh3Q2J*G=Jql)qBS1lBBjh`;XC5X!u;h^s!L`Km3x^xf)KXd(FG@JxzwB+WlxQ
zAEPxm_L_Y1VGsrpO#Al*2J4PTNmB6c@fwxTU%{ZqmWrU>4Sr7C9FynO2<;Q*@Ye%Y
z1Ql;&;DtL}yeh;^NfkYX+h=_RT{$FGUX4k~8Bf|8@}#I4AFspE4^5L?uZaS9@`>Nd
zu&Q(sc1dHClEULHU#RFQ;J&Ch=ZNj6q=-ODiHM-0h+yA$L<ICCY|qBUf&e-0iw?Kv
zx|u`e<zueuC1-taZBvN7S7OVR7+_k8#_y}rz80xiN0*LrNnTITcD+;$Rf=QD-To{U
z+wPm0>ZMxuO-O)h=bD@6zLn46F&eM-NpB_ijg{rwD7I87PPypUyn5!(=W);F{V6NC
zt+pD6e%*EcydRIn^gUnZRhQ*d>s@?O9OCCnqryg7u2^*x5gt7VR^GO}Qt`MqTLV{<
zyp?)(4?8)4qxWhEx$L*a*CEf>T=(_k{;q~tU&&JBvns3Hm%L!Z!tRY(O@1pk>Gboy
zZ+Cm&s(pH{4_U1I&e!Fb?r&*`bw(8-ADHOxJf?QC;`wtPn%i`6TdgqOq3D^`MZK^4
zei!+qZn}T=b$AcLoGQZ6hPi2)Vkw(-uy-R?zwIGsa(*&C3DZ2ic{DaQ)XG%j$lPYw
zdk_{>5zep<rMs#Aw)WzY--~{U+2bHgUof#3w|l5~xof>{vdnXMc&On$2nnVM{g^Ph
z&J2C_p(dCxz`32-7kDW{T~mb66)ocIT-}glP_>8?2sJ^uKI>^53heELH9^%a8D9qG
zUXLzyGgjHGhM;zq?qm@YjW}Llw~dCN5Vm5NAnEpDy(t%^*~&C$3#2w^Bq#)>tqr|}
zpn_5`3`Qhnm6hlMqai3*9S?5s2VUj9hM?qh=DEczF%>)@K_DnKUyIL+`aLVUnwln%
zx_#3su7;on^|x_Gzg6B46r#bob6JJ^T%a_ATu<SV#-nhg%)KF~O7}6`)V|||(Uzbb
zeWY$2T#pEWo(7G1s*gu6>S{sTR@~B4oxHf_%{3d6qUJ+VW>6$O<Sfa%B8Q5VR~V{u
z#YAzv?qI`hzWcmCt38b9OD0-+(v-7vv%d2wKMYn^qNhz`f&%tP9b(bbwjxMDmx&V(
z^pvfor%U;md=!L9UXvZkYR%(Fv!cqYI!2Zbzg$e)5QG$o#Qt7(#T$6E6nTi<Fo8E5
zcLW*4uG3;q5q4LCAZ)ylcr~6qM6$C(L+b6pr3u3*&+W5lV@*d;yv|JM#9N<!te!^#
zk<$d>jEsY=H5;IJoPr_|ANvd5TBVMlAf16Pd7G!_RSDclv5ufJolT6FE82>Uj-VhF
zqvt{k-7~!~C!WGG=0CqdY#antsAT76D{F4drCcI$AgDg2*gy+zq%2GP(oh{iE&7|*
z`b_5BXEwJ<a4uo_4SBfDt^{?e8GQOtYt9L#!Jnwm)47bGR~R>Ev~`fYw$-<FcTHXB
zy|=ImW!CtgUA=)*PL|Vt7UcHH23CxMzY2k-S=T0IowQv9SfW>Z%m~_!#cN;V$GX~h
znO#|6-|EW<+K`<{V#{GRk?gnT!_Ve}JQJA_bSR5YhQPh(g%s(Cw7e)I=ugItwP4(8
zPxDZd_8J~O1&73gpzgJx<0b0wT5FZ(Rg2$U2&!OvtUhLovB&&22;s$6f*Lr)UZcG{
zs=RK{2OEN3X1@VxuJ|}Ix;Wx>b=M9b2|YbKq-+#+c~*6om-q^wppV&E%Z5EIoYlxV
zya7o`5Q(1*VommppjFvmc=B=kCT4eSmd2rWlmJVFg2bez$mFcucozCGRy<z<#KJwC
z9_-lijG%#8#1l?FXTM4Nc&t%q7Gp|pO$;fBy@{T39RiEzs)iYRQj(yJ*$}pQfjc${
zf>vh0+`%{p=VISb5l4@h&k!^)gPt92(>8ef@iKx2W&p|OviM{+>MYyY;|(hWjmsjB
z&oYC_xlaI@M@gB-X-3T?G7)-O6{IfE1sFjmGSJ2<6I@~}pT!Wv#~wd;I!WRAoGL&9
zLr<B4TN#IySuc2qZ?vftBNh&NY81RH?$8;dT<dGmqDwJ)q7)u6co;k36+F%eT9A!Q
zvL2*lX9hPICA5gy?TR=PLePY49KhX6>^?%!aBLjhcoRDywuXWtgxk36V0J_d^hD?g
ziwTk`*r1Q83QI=|5KlEn2<o-x3=K|25RNp8X(+lY`dYn=pu5-zR!`;(o=6DjDbP{C
zl(ywz%eJudxC;n3Yl^ZBwtd5WD1zo<qnLzt@i~h}jq(F~yzK}Q(M-FMiKi3Kp1Cd9
zpfLB;WCUHsMq}dv;?*c&V+%<fQ$52@aS0lWMJ~!4Bk?R2GJ+;zk%G7J8XfqsrZZDw
zU`jLbhWpwCUBpg}mQ-a?H|<%Ir)Pt)xZ;GMi&%We<ZQq<+|CHPhmCHwY-ZSlFF~iU
zF)VHl>Tw1RIUr%6r&}lXv_a?%_Z|a5FR%&NIl69mI~6m6&R-LpbAlh6K_H#Xz=q*f
z*9}p25VZc9=G%M({1Jqp-Pa@(Xe~_)8tEi_Z_I*am6s9p{F;m$KwA?p$LvfeF7%4o
zn80DDECemRCSxZs!JVrd&h_i)y@#F{ovaCKmL=OJ)?_w5nS_<@+@#oxH2zG+7K1qf
zK+pngvSD2z9>@xYxLk^$6WGkOaHFt@%cTf9dBu0JgZVSJ9gIppzg=dwtR`6eyq};=
z*9=mc<dw)I%2*xG^txZOoZ%K9P)8e3h>|vWl^00Hvg%VcMigMLW&VaO;RL<5&P8~f
zIS|8nIUCq9_Pn0)r4O&7zUh#a_d3*WoT_4EDO0Ny;}Mfbyl73(Un^n@Y?TZ#S`)O$
znn5uwS;(-bm<W1Z&G4M#5EY_~sjB=eE84Yhh%oe2@I3Kh?jL$Y-?2#0!D_zQc|dcQ
z$Ozh3&C9h+vb;bK83e`dqV5K<F%Z<UMnRHYuSM3p!&V|AXlC_^B+sw!K|;{e>Jv$m
zS8qa+kwhZRBy{6zH;jDR<{o`~CFpE5dp63$KhvJ|2NH#XFon|*4+#T7<>@_JQ<-=W
zFj=M$dqzbO#_G=P0L}zIYk2uv)n#{{>Rh4smcU9-o`$tX+}%#l*J?h}G4N&D#}q<p
z?1V&upgKKPv(AT$hctKv-3VG)&CkG&ZIh`5q{TA?t*pe5r;i@An1zBgxO74483Y}z
z!~%9=Qs@Dm=fZ$F^l0k>2s&E{J(^^Iv#hf{k{)q~9YLe27YuKs@Qml+4$ERCBj{H3
zKTrtvz++L7WMLHy>DPWT_lR>}1dXfy4-n6HL?8`)AP<Mgqov5h#-oFZ-+e6-f;h5t
z1cAi2pNaf=LtjH8@XJmUw67BJ(MDYgqwwpwo$6JP8(b9YBUmvQcdquv^Wx12npg=F
z_V_^$^eIw;K32l%*V>p}4A8cSDCkMm8#@MowQa98b{0d>%IXG8Gd-;FpmrBBYF7MJ
zyaX++Zs6l{=j~bBKR$V_>U~wkWB~~ZJ@I-ov9SyrNX6dJNE(7Xg4J*&kJEn^kpw-}
zdOL4N&dcBihd<hO1aZvqiWUHD7&$=)t6PvFIK`Zp^9Fgu%?bKe-9kK-Gqc7jrjiph
zrCOL5v1dpo>}x3Tr$-=SH!1#3h@kZoddhSeq{5pl%n5o+Euf!@35j2VDko?#wSW(n
z#fX1JA4D30FaozmNEsfYkGV;bHyOIYR8G)fY6<b_Ymr<M#Cx{4=LCJGB=bxqMvK+l
zA`0w=LeOYRvg4fjNP6u<e6Zk@NCwT))%GDz)scz;2@XAtDq)zwzMNIVIxr8Tuxe)(
zVv~vgaxs`qxcE}>X%%9TP~`+sZLu4f)v|C85R$TP@dGhIQz{9E5f3AjidPeos?Ium
zEc8^Z6ng2+0_!I1Yb}krUc0j{z?$}P*h1n`5#+K#OnruUflme2Y2>X!IYF~3Y3hVC
zcg`-};$dA<mtEPkWr5$3=qX^uPDvy95_?Tld)i^ws>unORH=A<{n0C%3XKGzqX=OR
zZJuGLi3IJb&e?+x0oS6t%jN{_sUi;zrxL+#8aYW68vM)8{lFe<33^m1_6+jy3>^hM
zjjCX>(1TbYwvdp-?7l`<90Wb86zE|dZ>z+Qq%}bpo^fX3!xi+DsZcao-4$7xH#H)f
zh9sJaN%p`Gt1U?wit)t>6NP$kZ<>-N=vNhg0Lr@lHCc_Gyb!dmQgFN)i(Ag}v>qP`
zLA@%N9zom$3}>lC$#%XnzHaC>hH`>tR!T^wXJ)t4r#k)>8<Thug`lyO64vy>yUAnc
zHw5jil;LZ4#U6nPT3MZ5UTkD}s$d>OTefZchVVg9!J17#JXcJ0qIgA5a0ohFsn9PX
zo!4{)%LJbVVl*YFT#w{DYLZ>csxIS0)fMGCDrV#ajjh!2X>jhue|LATTW;z|7=4v_
z0WbmqV$H+MDqR5CfM`kB#!o+zJDEB2W0F7Rb5@;BC+S=oo4theNr>9hcI@S5A`T0J
zKC2DxXR*0p3f^*F=2O((z>3$G5R_TvS~KHfpGErCEf!|exsBv1vWQq}idbI8yCNMu
zug$-Em7)7cuR_pnwV6ku4)4<+ma||*-4yj_x?F;ms{|*V(f8e)+;*gU-mG5E?-l&b
zJ<yjW3EHo=F`n=H<t=)kBWS?dHW`B2Kp7LZDVXRH8wb67>y)w^<aM`FjYymO2zs!b
zcK4uE!0#{U<ybe4R>9&9A9H~xY$60jSZ^Yx>DsD6<UlXLx;ZH4rx#$ar4dwMx!YR4
zwpiwqavuCy<`+T2K`*Adccq%Xt<jqXy;S<GvMNm8E57E$#VW*Zqx~E3V2C`rzX6XL
zkw;ITM~jF<(8tju;uz@T81Qfq^i-v+u}!AV%kJ0@z!KC?r8Jt?eb6T<1RYdA=W7~b
zdXZ3kR}q9<st5nxCP6RNUVg6=W-e;Mdx)N(iRyn)1Vj`qX%rJ6qUcDYxPBp`=t-kk
z9*8IeX%x;Qq8MnSIPp*rG*SH##n&AX1tX2(ZV*w_v{6Jv6tvUk<3L0~J8eECA_|ge
zGo&|~MF{cvLPS9@ZRSnL1*=36r$UXdS7CSToyi2HQ{M#gDOudb9fI1a%;I||k21No
zJ0c8%;S=K3uIt&<4gSg>K?~Im=MKyJL9txdEWo=~OxRsS#KQhgSZ1VxR0O?LyINr?
z(;HKVv?`YtLP9|>m^vRTR)89@M_YnksthAPAU9jMn`yF`kKYnhQ|<nkk8yk#ZVTaE
zp-eFJO``-ARr?`}ii@Tjjg)Luyc-p85UQ?QGxoZMMwGrryq0>Bj99~D#VZCQ05@C=
zz!mGN^p}RWGIcqqj08<az3xRVG=S>(s2UK>z$@UD7P4X*xg8B88P!Z01H9HewW6^y
zqLFRWbaDXI3{?fFj0mc(-i$=Wns(5&G%c5-7JbE7Q+IV|QZLmvxQrM{Mol$zRn;14
z!0@_ZqE<?aq3hbV<60oMqnacm-a$KxuHhmv0%c@sR7|tF%SD}s0k_X4=*D_8lA1Lg
z>vSbliUCRt0|(PV)k@u_uW=c1l8jn5rYlPuSvL)Dt4a)`V$jx=>5LxQ9+y!|l2O+R
zCB~kmjAYWtR;6au3Ds%dnO=$pxj&+rvpZ3PZe-W$A-$144f<^8c?)0~)h1N9jA-WU
zzOMValBVlf%h^x^V^u9{HCCe4P1WHtqM5UMUA3J|QK(B(64B<k)V57mSEK1_g`FX3
z=4{a_0g9&v)EdroFRKxBouYOR&<!JMJ8CMLIa~D2s5)qjmIG($E7p%~H87?}1uYY}
zjA-U;5G+mjr5r^gcqavjA$1$AZlz2U+-}5WL^EdtNG?rEz^s?ts5CsctcSMkwM=2V
zu5lUB%-IrJsCcKkAr1L;0#)&bNtK!wq$t2ETt=KIqps~c4qTg*AyYn*T!=JntA-S{
zjX`EaGiR%IP$M@(TS>;#glf>E5FImJC7VtR8kZ5xoNbulx{|z0Nt^35qfKF{;%%Db
zib0GLxj&+rvrQ}7Hg!Qd4Q9NRX>hB=*w&B&0Hjfl;WDC`v&S)S+tev0)tuKH1~5uA
zDMA{-IkX&?5yhOH-X;XIq+@!kAne|5%I>hBSAS{<I>)|X9PRU4u7!5<wIS#i`;sB*
zQ3E0bdO`VXcaJU3W;2g-27QN3ne<B7&-XP1<zXJKMYIp_)*{zfXb3vPeERm(o5o^y
zi&eSS;0Ag&-lPVDy<?#v=nhM7*P4fPA)q%FdU4l}({n=GZQT$wgLw;Zf?Huj>_h40
zRqsHru$R(q;7@IGrPh3H;4v8pGD$RM=N7#<Gg*9TTtiS2=H2m{HB?P`gH_tsnq>p%
zkI^>-bzweSpD#S8KtoUy=Hq$T<BZdYo=XWz!u*l@kK@q)N*~LTy_552j5ZBHZ<s%{
zheFNn&~q*lhaAQTD#P;AO|TZBt`Qpsy-XU?`Q2`a2zr7Dt^rD`4kQACAb|xu%q!?#
zbm)D<K#<24VN2(@J6(<;{cFg@jPR}!f(o#Z>p5)z4x~h{Puvg`fF&R&_&D40xFJEH
zmqCL9uS@}cJ&T9crgU2|F2>yOR=o(?zJea_lT>%vbproVp_e{`fwD8T8RzG#G)L+D
zgv5ei?lj8FEgbvq()?|}Zyp^*B!@S}_szFrE#QcA;v(~*(P9We=~poRZhTq$TZ7m>
z1XT|EGxUfY2*y$q^WmMeXpfFJ1f^cVJfm66<Y9e2pU97oHw1-VVFquUPbb+khCZMW
zRCy&JkAhV!z4uQjsv3g+t{+I6Y7n16!l@$Zs+NBSNlO+<*R`KP(vd_G&Q0a|-rqqa
z7l1!DtKK!O^S!vRgEIL2F2TS$8^6MqPG*5<(r@=dLb#>aQbvEO#T|NF(pZHEiC~(Y
zot$l~d5gW$N>K8ZVC;7M(aUT&7zmoZGKP3_4)4MssP)RbU<$hx>9le|#_j`ImZ0G4
z|5CvnnF+eSf?c2Q8m8W8o6ac4@OoiS2MKz=!gUVUYY;X5<wG#h-t4jz>8}wtv=elF
zh1;2Wk6wIeLQK&171k8KuCSUA?oBPwi<veAm0!WBXStk6=T9(=?%=;lgR~KZpw%nv
zR-Lnp%DE-DV=qHf9-%N0Vo_CXDbr{x7kC+oxNC}_?<*IwP1BYIZylbX=_`bBN}u>W
zCqb)M2%)?U>7#A&w`UVndxhvWvx1LyV^zgI&_)PG(dg5`y;~5strPTnh2xg~_c*4m
zv((Oh9Z*c*%?71)<sE4ah@kB2y(PrQ_htwi&q1&c_!k<2>aPgPE&u#peHTNIKCdMx
z0gLI9`KpA#UPC4*0gEy$r92C_rD@!XG<zXv0E-IJ*IPPb3988JV0c#uK?_(k*VJdE
z5hiFv4h=yLi<#6~t_BGKr-{JBdNm<f1=wrE1Px$6iR@3rYojBJA(&?h=Eok;n?_HP
z$;&KjVeiJ^Jr+e!{FO+&8;6}XSa=zxB0mU(c)<)5k)&xX6s)S#+yBVD1cDN<|5D*q
z(|m>sqfDh4(&dw8`refJg^-ZcgpqVZ_nD2Df?`4qk^NjYO+zoQs<y&kMkOc)i&L?<
zluTB{_CYYL-r}uHzl2+vH%cLKAedI&&8V%kSS_I^Nno=@c6p&!S0m{0itgdfLnD?p
zAt>sK`vaC`F^IvOpo%N{Bg72C#NuT(Z31FZ4}#jQc-$>q4XY3-5X_tRtNgO(y_^n@
zG><2!&WaB;$1*<b>ZDCkTOpAkm?zO0&`Xnt(I@sYA3?{}vBdmXQ+k2m7TC}i#R)2{
zj(s+{{NyA)R5*^H!YVO&m*kx6=DZt6t1K+Rraum!f;7;CwCG}4?Bur3aNz{KRY&St
z@TTmXpq1(f`@0DgYP!8{$8AU3G0F-0r~X6Z{n!pXHCi!jPS7;<zci!|h%`8H8afAd
zG#V{&8j~@IG&<rm=5Rx#(G#a(?+%fMAWq|YeIn8rh|^d-;L%_ebsF~<A`M2I#_=^F
z(x9G2?~_ENK|PB;<Q<U)^(=aRVYUsLSybm0LbRm})=`BJ5h2h_p7|*ptIYe#DCOd&
z{48vuQd*6~g<uAKxfS#kajA=-!0B$ZEm_Npx@rnG^abOrRJ(`W;yr-D2}+#q)9P2e
z5rm+u>3+N2^-ZgF#eQ^;6ZAIS7goMY2A;ueSXIwBL1ok3$$U%6JYn)j!Fk28H+6A>
zs;0ZY#|^Q&pcgnFtZW(MZ9AZE0_Fr2O%F&XX44_EQx>n|><NN+Z*S8UrY#$J6e0~l
zl*YF^K_l<p-~^>j>8QnW>|b84)vY)-8y>Ku4=4o9O<7zXmnmgXJPM2=g`Xvyo2n5n
z^pZ53puXvGE1$2#0MW_A3Hq8IPG9}q+hCvS1MPwn1d?M{p~2sZufv$FXzRh0-xXLw
zn?HsRgfoIVryrzdt97E3zCXl5LNk=7yPL)K`~y$2ae|JgADrG-7P#-Ug3pCurVUWK
zuztDC<SrO(Ie?(%>GA#u@Z-n2t|1q6Mo)0`qHW&OkjtfE4$}n1PtW=Kyj{^Q5rU?t
zr+r$urq2T}o)GjqoiIC>)BM+w{>9tZTg8IDwoFj-bROFjjcM>xEJ4B33nrOHlGVl8
zOi=1AOeP}sp!Cw}%X)xV++f|)yMtg0X@ay{T*~M9Lc&5XoW7n*sifSbRONQ6a>W{9
z=;hJZYj=p7e+c@SF3r%fF%666ON&Z!)2LdEeXF>HPSjd=VjRjjuFKCu9Nzx(ADdGU
z%pZ=UA;M(yd>OG5rk7nWhmqH2Zmz$k^>+Q{X(0|Mf)1#Q-N$f|Fy6eeu-xUb`IqhL
zo0)z3O8XO*<+?T3KE8a@2H(2*Rkway>f3z@+t;rFPY}%m&N9CWR<&48&@y#djdpLv
z!!KaXYl-x{JSV7}`fy9cZGrSM`h|Co>wfxQQ}RZ7*ff@og%cE6T?Ur#%>K!o=%xCL
z(yJag8yb**GAw#o|FSiw?f33a21RcsaJhTK_TS|;bWj8*47+%A!>=&~wC&LZwOSWe
z^(`ANYN)sn7Y=N!xakVkvcBMT%L|Yiim?J?#AqszzoQAGk+9uLw=FnS3A(y2D!t9i
z;%?!x+TVnUpbYpmi>tSD-Ij>BNJ`M&by0^h7jNTbx65A#j^M=L%WkWSm*|h%;`Yn#
z7W>!nBbfZ7hlezm?bza(FWtY89>M9r^H?s6d8TH!9e*7-g7bsmE-A`&i--Gh`3<?*
z9Wj088%T)I2+kAk);uoLJk5F<)2F)3ZZ*H7_b&M~IX5kcx84ZK%r0?x&j^0O>hQ~}
z96b^ug42d@$xinl+P6!mps_~2;_DTk_4J#OA#a_^?*X%8`@_WI-~8bMjMVx800Kwu
A1poj5

literal 0
HcmV?d00001

diff --git a/phishing-filter-snort3.rules b/phishing-filter-snort3.rules
new file mode 100644
index 000000000..460f8a9db
--- /dev/null
+++ b/phishing-filter-snort3.rules
@@ -0,0 +1,475 @@
+# Title: Phishing URL Snort3 Ruleset
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"1nvest.bigbantbaz.top",nocase; classtype:attempted-recon; sid:200000001; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"25116414.cc",nocase; classtype:attempted-recon; sid:200000002; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"365365news.com",nocase; classtype:attempted-recon; sid:200000003; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"365f09.com",nocase; classtype:attempted-recon; sid:200000004; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"750115.cc",nocase; classtype:attempted-recon; sid:200000005; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"823pages.pages.dev",nocase; classtype:attempted-recon; sid:200000006; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"95564339.awi.za.com",nocase; classtype:attempted-recon; sid:200000007; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"999fc.vip",nocase; classtype:attempted-recon; sid:200000008; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"a.yyyy.cf",nocase; classtype:attempted-recon; sid:200000009; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"aaaa.whilefish.xyz",nocase; classtype:attempted-recon; sid:200000010; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"accounts-microsoft365.weebly.com",nocase; classtype:attempted-recon; sid:200000011; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"accounts.0ffice365.support",nocase; classtype:attempted-recon; sid:200000012; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"aidanochka-tabys.kz",nocase; classtype:attempted-recon; sid:200000013; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"airbnb-clone-sahinur.vercel.app",nocase; classtype:attempted-recon; sid:200000014; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"akbarinewv2.morteza638n.workers.dev",nocase; classtype:attempted-recon; sid:200000015; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"alaindemeuron.wixsite.com",nocase; classtype:attempted-recon; sid:200000016; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"alexa81o.github.io",nocase; classtype:attempted-recon; sid:200000017; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"alienv2ray.pages.dev",nocase; classtype:attempted-recon; sid:200000018; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"allegr0llokalne753724pl.art",nocase; classtype:attempted-recon; sid:200000019; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"allhrteam.com",nocase; classtype:attempted-recon; sid:200000020; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"amazon-clone-by-sudip.netlify.app",nocase; classtype:attempted-recon; sid:200000021; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ammuvicm.work",nocase; classtype:attempted-recon; sid:200000022; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"amyr.iran-cyber-net.workers.dev",nocase; classtype:attempted-recon; sid:200000023; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"antaidossiersuivamendimpayeerf33.zynekcctv.com",nocase; classtype:attempted-recon; sid:200000024; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"anuragrauniyar.github.io",nocase; classtype:attempted-recon; sid:200000025; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"appeal-voilation-policy-issues.github.io",nocase; classtype:attempted-recon; sid:200000026; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"apple-id.cc",nocase; classtype:attempted-recon; sid:200000027; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"apri.154-203-197-141.cprapid.com",nocase; classtype:attempted-recon; sid:200000028; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"arvestcreditcard.embarkdigitalonboarding.com",nocase; classtype:attempted-recon; sid:200000029; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"asdfjeiod.com",nocase; classtype:attempted-recon; sid:200000030; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ashleyproberts.wixsite.com",nocase; classtype:attempted-recon; sid:200000031; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"astounding-trifle-b88a2b.netlify.app",nocase; classtype:attempted-recon; sid:200000032; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-101397.weeblysite.com",nocase; classtype:attempted-recon; sid:200000033; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-102641.weeblysite.com",nocase; classtype:attempted-recon; sid:200000034; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-107756-104508.square.site",nocase; classtype:attempted-recon; sid:200000035; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-108102.weeblysite.com",nocase; classtype:attempted-recon; sid:200000036; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-108651.square.site",nocase; classtype:attempted-recon; sid:200000037; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-mail-101246.weeblysite.com",nocase; classtype:attempted-recon; sid:200000038; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-mail-105533.weeblysite.com",nocase; classtype:attempted-recon; sid:200000039; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-mail-109459.weeblysite.com",nocase; classtype:attempted-recon; sid:200000040; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-servicce-mail.weebly.com",nocase; classtype:attempted-recon; sid:200000041; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-sign-in-107078.weeblysite.com",nocase; classtype:attempted-recon; sid:200000042; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-yahoo-mail-105061.weeblysite.com",nocase; classtype:attempted-recon; sid:200000043; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attcom-101415.weeblysite.com",nocase; classtype:attempted-recon; sid:200000044; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attinc-101356.weeblysite.com",nocase; classtype:attempted-recon; sid:200000045; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attmailonlineaccountupdate.weebly.com",nocase; classtype:attempted-recon; sid:200000046; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attnet-100294.weeblysite.com",nocase; classtype:attempted-recon; sid:200000047; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attonlineservicesa.wixstudio.com",nocase; classtype:attempted-recon; sid:200000048; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attonlineservicesa.wixstudio.io",nocase; classtype:attempted-recon; sid:200000049; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attweadminservices.weebly.com",nocase; classtype:attempted-recon; sid:200000050; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"auth-sharepoint-asr.vercel.app",nocase; classtype:attempted-recon; sid:200000051; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"avertisystems.com",nocase; classtype:attempted-recon; sid:200000052; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev",nocase; classtype:attempted-recon; sid:200000053; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"b35ccc.com",nocase; classtype:attempted-recon; sid:200000054; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"b35lll.com",nocase; classtype:attempted-recon; sid:200000055; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"b35www.com",nocase; classtype:attempted-recon; sid:200000056; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz",nocase; classtype:attempted-recon; sid:200000057; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz",nocase; classtype:attempted-recon; sid:200000058; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link",nocase; classtype:attempted-recon; sid:200000059; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz",nocase; classtype:attempted-recon; sid:200000060; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link",nocase; classtype:attempted-recon; sid:200000061; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link",nocase; classtype:attempted-recon; sid:200000062; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link",nocase; classtype:attempted-recon; sid:200000063; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link",nocase; classtype:attempted-recon; sid:200000064; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bbf-alpha.vercel.app",nocase; classtype:attempted-recon; sid:200000065; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bet365t3.com",nocase; classtype:attempted-recon; sid:200000066; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bet938y.com",nocase; classtype:attempted-recon; sid:200000067; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bet958c.com",nocase; classtype:attempted-recon; sid:200000068; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bhngfd3.pages.dev",nocase; classtype:attempted-recon; sid:200000069; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"blackdasblacks.shop",nocase; classtype:attempted-recon; sid:200000070; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"blsckdagsever.pages.dev",nocase; classtype:attempted-recon; sid:200000071; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bridge-9wdpjmsoa.pancake.run",nocase; classtype:attempted-recon; sid:200000072; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"brubreumummeddoi-4514.vercel.app",nocase; classtype:attempted-recon; sid:200000073; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bscusdty.top",nocase; classtype:attempted-recon; sid:200000074; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bsozvycr.icu",nocase; classtype:attempted-recon; sid:200000075; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bt-102368.weeblysite.com",nocase; classtype:attempted-recon; sid:200000076; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bt-106861.weeblysite.com",nocase; classtype:attempted-recon; sid:200000077; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"btjfh.weebly.com",nocase; classtype:attempted-recon; sid:200000078; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bussinessaccounthelppage.click",nocase; classtype:attempted-recon; sid:200000079; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bwfujmww.icu",nocase; classtype:attempted-recon; sid:200000080; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bx.sfdsb.icu",nocase; classtype:attempted-recon; sid:200000081; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"c.cting365k.cc",nocase; classtype:attempted-recon; sid:200000082; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev",nocase; classtype:attempted-recon; sid:200000083; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"can-post.cyou",nocase; classtype:attempted-recon; sid:200000084; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"celery.sa.com",nocase; classtype:attempted-recon; sid:200000085; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cen4-six.vercel.app",nocase; classtype:attempted-recon; sid:200000086; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cf-worker-pages-proxy.1352562939.workers.dev",nocase; classtype:attempted-recon; sid:200000087; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cf.13084493.workers.dev",nocase; classtype:attempted-recon; sid:200000088; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cf.iwoai.cc",nocase; classtype:attempted-recon; sid:200000089; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cfcf-8.pages.dev",nocase; classtype:attempted-recon; sid:200000090; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cfr-reed-taxi-wayne.trycloudflare.com",nocase; classtype:attempted-recon; sid:200000091; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"chain-trt.online",nocase; classtype:attempted-recon; sid:200000092; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"chainsolapprove.pages.dev",nocase; classtype:attempted-recon; sid:200000093; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"chat-wa.xyz",nocase; classtype:attempted-recon; sid:200000094; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"check282.tempisite.com",nocase; classtype:attempted-recon; sid:200000095; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"chore.pink",nocase; classtype:attempted-recon; sid:200000096; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ciftcininbankasiziraatbankasi.com",nocase; classtype:attempted-recon; sid:200000097; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"claudiorojas.cl",nocase; classtype:attempted-recon; sid:200000098; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"clivenicoll44.wixsite.com",nocase; classtype:attempted-recon; sid:200000099; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cloudflare-workers-pages-vless-a2j.pages.dev",nocase; classtype:attempted-recon; sid:200000100; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"codt.digitasianetwork.workers.dev",nocase; classtype:attempted-recon; sid:200000101; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"coinbase-com-18690.subttrepimop1005.workers.dev",nocase; classtype:attempted-recon; sid:200000102; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"coinbasewallet-verification.198-46-89-184.cprapid.com",nocase; classtype:attempted-recon; sid:200000103; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"company0rder943.weebly.com",nocase; classtype:attempted-recon; sid:200000104; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"completar-la-verificacion.vercel.app",nocase; classtype:attempted-recon; sid:200000105; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"conductibili.fun",nocase; classtype:attempted-recon; sid:200000106; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"correosprepago.bnext.es",nocase; classtype:attempted-recon; sid:200000107; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"crenadenuddoi-2258.vercel.app",nocase; classtype:attempted-recon; sid:200000108; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cryptorectification.com",nocase; classtype:attempted-recon; sid:200000109; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"currently5267.weebly.com",nocase; classtype:attempted-recon; sid:200000110; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"currently70.weebly.com",nocase; classtype:attempted-recon; sid:200000111; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"currentlyatt909.weebly.com",nocase; classtype:attempted-recon; sid:200000112; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"d.afirkz56924.workers.dev",nocase; classtype:attempted-recon; sid:200000113; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"dio.azrealonce.workers.dev",nocase; classtype:attempted-recon; sid:200000114; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ditgong.com",nocase; classtype:attempted-recon; sid:200000115; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"doc-online-1881.on.fleek.co",nocase; classtype:attempted-recon; sid:200000116; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"docsignauthorizationrequest.vercel.app",nocase; classtype:attempted-recon; sid:200000117; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"docusign.com.bestfinancebroker.com",nocase; classtype:attempted-recon; sid:200000118; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"duang-5dh.pages.dev",nocase; classtype:attempted-recon; sid:200000119; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"duvhkeq.pages.dev",nocase; classtype:attempted-recon; sid:200000120; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"easyaccesscommagebn.com",nocase; classtype:attempted-recon; sid:200000121; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ebay8787.shop",nocase; classtype:attempted-recon; sid:200000122; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ee-account-home.web.app",nocase; classtype:attempted-recon; sid:200000123; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ee-service-help.web.app",nocase; classtype:attempted-recon; sid:200000124; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ee-service-portal.web.app",nocase; classtype:attempted-recon; sid:200000125; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"eln3.vercel.app",nocase; classtype:attempted-recon; sid:200000126; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"enormous-orchid-howler.glitch.me",nocase; classtype:attempted-recon; sid:200000127; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"espaceparticulier.life",nocase; classtype:attempted-recon; sid:200000128; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ets3qe9ooms8t6i8.pages.dev",nocase; classtype:attempted-recon; sid:200000129; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"excelorgo.com",nocase; classtype:attempted-recon; sid:200000130; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"falabellacom.dominiquepg.com",nocase; classtype:attempted-recon; sid:200000131; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fdesq4.pages.dev",nocase; classtype:attempted-recon; sid:200000132; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fdsfjiwe.com",nocase; classtype:attempted-recon; sid:200000133; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fdsjfkweow.com",nocase; classtype:attempted-recon; sid:200000134; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fekoulamevebouna.freewebhostmost.com",nocase; classtype:attempted-recon; sid:200000135; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"felomane390.wixsite.com",nocase; classtype:attempted-recon; sid:200000136; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ferngos.de",nocase; classtype:attempted-recon; sid:200000137; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fieg.84yr483rhfwieujro348ur84.workers.dev",nocase; classtype:attempted-recon; sid:200000138; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"figinstenatecom.pages.dev",nocase; classtype:attempted-recon; sid:200000139; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"finansfaizsizbasvurum.online",nocase; classtype:attempted-recon; sid:200000140; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"forested-mirage-samba.glitch.me",nocase; classtype:attempted-recon; sid:200000141; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"formtools.com",nocase; classtype:attempted-recon; sid:200000142; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fortradesetup.hamidamnaie.workers.dev",nocase; classtype:attempted-recon; sid:200000143; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"free-5436781.webadorsite.com",nocase; classtype:attempted-recon; sid:200000144; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"frogsrus.wixsite.com",nocase; classtype:attempted-recon; sid:200000145; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fshraha.pages.dev",nocase; classtype:attempted-recon; sid:200000146; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fukshumx.world",nocase; classtype:attempted-recon; sid:200000147; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"gazruinv.web.app",nocase; classtype:attempted-recon; sid:200000148; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"geaoolsv.pink",nocase; classtype:attempted-recon; sid:200000149; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"geminiwallete.godaddysites.com",nocase; classtype:attempted-recon; sid:200000150; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ghjhyu.wixsite.com",nocase; classtype:attempted-recon; sid:200000151; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"gimennlouin.gitbook.io",nocase; classtype:attempted-recon; sid:200000152; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"goldenrod-rowan-submarine.glitch.me",nocase; classtype:attempted-recon; sid:200000153; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"gorgeoushome67.wixsite.com",nocase; classtype:attempted-recon; sid:200000154; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"group11-vvip-hot-girls-combi.viplch.online",nocase; classtype:attempted-recon; sid:200000155; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"gruppeflorian.com",nocase; classtype:attempted-recon; sid:200000156; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hanisfir.shop",nocase; classtype:attempted-recon; sid:200000157; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hedayatfreedom.hedayatkhakpour.workers.dev",nocase; classtype:attempted-recon; sid:200000158; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hello-world-morning.freekite.workers.dev",nocase; classtype:attempted-recon; sid:200000159; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hello-world-muddy-cloud-f45b.mfoster0425.workers.dev",nocase; classtype:attempted-recon; sid:200000160; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com",nocase; classtype:attempted-recon; sid:200000161; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"heluapla.shop",nocase; classtype:attempted-recon; sid:200000162; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hemanlau1.pages.dev",nocase; classtype:attempted-recon; sid:200000163; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hezhouruan.552008598.workers.dev",nocase; classtype:attempted-recon; sid:200000164; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hgcdhbxnf.weebly.com",nocase; classtype:attempted-recon; sid:200000165; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hjrhd.top",nocase; classtype:attempted-recon; sid:200000166; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hk04-123.pages.dev",nocase; classtype:attempted-recon; sid:200000167; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hkmqo.top",nocase; classtype:attempted-recon; sid:200000168; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"home-100317.weeblysite.com",nocase; classtype:attempted-recon; sid:200000169; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"home-102207.weeblysite.com",nocase; classtype:attempted-recon; sid:200000170; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"home-107257.weeblysite.com",nocase; classtype:attempted-recon; sid:200000171; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"homelogin7t6sdfcgvhb.weebly.com",nocase; classtype:attempted-recon; sid:200000172; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"htaflytz.baby",nocase; classtype:attempted-recon; sid:200000173; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"htaflytz.black",nocase; classtype:attempted-recon; sid:200000174; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"httap.l-teiegram.com",nocase; classtype:attempted-recon; sid:200000175; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"httpsbellsouthnet-102649sitecom.weeblysite.com",nocase; classtype:attempted-recon; sid:200000176; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hup6r.com",nocase; classtype:attempted-recon; sid:200000177; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hy.fuckgwf.eu.org",nocase; classtype:attempted-recon; sid:200000178; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hypophysecto.fun",nocase; classtype:attempted-recon; sid:200000179; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hzuayvvl.red",nocase; classtype:attempted-recon; sid:200000180; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"id2.xbenihime.us.kg",nocase; classtype:attempted-recon; sid:200000181; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ikergalindez.github.io",nocase; classtype:attempted-recon; sid:200000182; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"info-delivery-bg.com",nocase; classtype:attempted-recon; sid:200000183; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"info-trackingcs.cc",nocase; classtype:attempted-recon; sid:200000184; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"info-trackingiax.cc",nocase; classtype:attempted-recon; sid:200000185; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"informed.deliveryhbo.top",nocase; classtype:attempted-recon; sid:200000186; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"informed.deliverytcw.top",nocase; classtype:attempted-recon; sid:200000187; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"informed.deliveryxs.top",nocase; classtype:attempted-recon; sid:200000188; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"infringement-service.com",nocase; classtype:attempted-recon; sid:200000189; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"instagram-clone-in.vercel.app",nocase; classtype:attempted-recon; sid:200000190; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"interbenefitprestaciones.referidosweb.click",nocase; classtype:attempted-recon; sid:200000191; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"iouwerty.weebly.com",nocase; classtype:attempted-recon; sid:200000192; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"isnworldwide88.com",nocase; classtype:attempted-recon; sid:200000193; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"jaydeep8806.github.io",nocase; classtype:attempted-recon; sid:200000194; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"jeanandpeterwilkin.wixsite.com",nocase; classtype:attempted-recon; sid:200000195; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"jetconstructionsgroup.com.au",nocase; classtype:attempted-recon; sid:200000196; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"joeandvelma.wixsite.com",nocase; classtype:attempted-recon; sid:200000197; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"journey-x-pro.com",nocase; classtype:attempted-recon; sid:200000198; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"jsdfchkdsds.weebly.com",nocase; classtype:attempted-recon; sid:200000199; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"jshattkee.weebly.com",nocase; classtype:attempted-recon; sid:200000200; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"juliusmasih27.github.io",nocase; classtype:attempted-recon; sid:200000201; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"jung-sohn.de",nocase; classtype:attempted-recon; sid:200000202; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"katiebllair.wixstudio.com",nocase; classtype:attempted-recon; sid:200000203; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"katiebllair.wixstudio.io",nocase; classtype:attempted-recon; sid:200000204; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kdlmo.top",nocase; classtype:attempted-recon; sid:200000205; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kenzmail0.wixsite.com",nocase; classtype:attempted-recon; sid:200000206; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ketura2010.github.io",nocase; classtype:attempted-recon; sid:200000207; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"keucroilluxibrou-2718.vercel.app",nocase; classtype:attempted-recon; sid:200000208; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kuconlogin-ui.godaddysites.com",nocase; classtype:attempted-recon; sid:200000209; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"latam-onipojes.vercel.app",nocase; classtype:attempted-recon; sid:200000210; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"layanan-bntuan-resmi-dna.prbu2.my.id",nocase; classtype:attempted-recon; sid:200000211; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ledger-com-updatefirmware.aparecidovisentin.com.br",nocase; classtype:attempted-recon; sid:200000212; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"levappoprauqueu-4688.vercel.app",nocase; classtype:attempted-recon; sid:200000213; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"leyoixoimmecou-5619.vercel.app",nocase; classtype:attempted-recon; sid:200000214; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"linkbokepviralindo009.vipp.blog",nocase; classtype:attempted-recon; sid:200000215; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"liveairdclazmersn.pages.dev",nocase; classtype:attempted-recon; sid:200000216; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"lo6-cas-projects-64947843.vercel.app",nocase; classtype:attempted-recon; sid:200000217; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"maatamicklogginns.gitbook.io",nocase; classtype:attempted-recon; sid:200000218; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"madebybmr.in",nocase; classtype:attempted-recon; sid:200000219; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"madhu821.github.io",nocase; classtype:attempted-recon; sid:200000220; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mailupdate87.weebly.com",nocase; classtype:attempted-recon; sid:200000221; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"maine619.github.io",nocase; classtype:attempted-recon; sid:200000222; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mainnetverify.pages.dev",nocase; classtype:attempted-recon; sid:200000223; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mazulyta.pages.dev",nocase; classtype:attempted-recon; sid:200000224; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"megrebeikenneu-2106.vercel.app",nocase; classtype:attempted-recon; sid:200000225; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mendhfjpl.weebly.com",nocase; classtype:attempted-recon; sid:200000226; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"metacareer.com-case37169314276.com",nocase; classtype:attempted-recon; sid:200000227; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"metagalaxy.pages.dev",nocase; classtype:attempted-recon; sid:200000228; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"metamacksiologus.godaddysites.com",nocase; classtype:attempted-recon; sid:200000229; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"metemrsblogin.gitbook.io",nocase; classtype:attempted-recon; sid:200000230; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"meyetamaskiwalt.gitbook.io",nocase; classtype:attempted-recon; sid:200000231; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mianfeijiedian.lawcpacpv.workers.dev",nocase; classtype:attempted-recon; sid:200000232; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"milanharvestfestival.com",nocase; classtype:attempted-recon; sid:200000233; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mirobitsgt.github.io",nocase; classtype:attempted-recon; sid:200000234; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mocp90.pages.dev",nocase; classtype:attempted-recon; sid:200000235; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mostafa2.mehdi84888.workers.dev",nocase; classtype:attempted-recon; sid:200000236; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"movie-firebase.vercel.app",nocase; classtype:attempted-recon; sid:200000237; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mubki.hp.peraichi.com",nocase; classtype:attempted-recon; sid:200000238; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"my-site-104564-105934.weeblysite.com",nocase; classtype:attempted-recon; sid:200000239; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"myaccountsignup.net",nocase; classtype:attempted-recon; sid:200000240; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"navy-nose-4544.typedream.app",nocase; classtype:attempted-recon; sid:200000241; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"net-flix-front-end.netlify.app",nocase; classtype:attempted-recon; sid:200000242; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"netzero-webmail-105996.weeblysite.com",nocase; classtype:attempted-recon; sid:200000243; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"new-currently-1-23-24.weeblysite.com",nocase; classtype:attempted-recon; sid:200000244; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"newattupdatemailboxkidlyverifynow.weebly.com",nocase; classtype:attempted-recon; sid:200000245; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"nfty-proj5.vercel.app",nocase; classtype:attempted-recon; sid:200000246; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"nnbsscnaceesngsetr.com",nocase; classtype:attempted-recon; sid:200000247; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"occinamete.cfd",nocase; classtype:attempted-recon; sid:200000248; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"odovsccs.weebly.com",nocase; classtype:attempted-recon; sid:200000249; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"officalourtime.weebly.com",nocase; classtype:attempted-recon; sid:200000250; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"office36503.com",nocase; classtype:attempted-recon; sid:200000251; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ohscorgza.github.io",nocase; classtype:attempted-recon; sid:200000252; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"okm.znt.temporary.site",nocase; classtype:attempted-recon; sid:200000253; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"oliver752.github.io",nocase; classtype:attempted-recon; sid:200000254; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"online-e-commerce10.com",nocase; classtype:attempted-recon; sid:200000255; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"online-e-commerce11.com",nocase; classtype:attempted-recon; sid:200000256; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"online-e-commerce12.com",nocase; classtype:attempted-recon; sid:200000257; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"online-e-commerce5.com",nocase; classtype:attempted-recon; sid:200000258; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"online-e-commerce7.com",nocase; classtype:attempted-recon; sid:200000259; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"online-e-commerce9.com",nocase; classtype:attempted-recon; sid:200000260; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"orange234.wixsite.com",nocase; classtype:attempted-recon; sid:200000261; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"orgmail.weebly.com",nocase; classtype:attempted-recon; sid:200000262; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ourtime.datings-information.workers.dev",nocase; classtype:attempted-recon; sid:200000263; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfocl.top",nocase; classtype:attempted-recon; sid:200000264; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfocs.top",nocase; classtype:attempted-recon; sid:200000265; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfoga.top",nocase; classtype:attempted-recon; sid:200000266; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfojq.top",nocase; classtype:attempted-recon; sid:200000267; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfolw.top",nocase; classtype:attempted-recon; sid:200000268; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfoor.top",nocase; classtype:attempted-recon; sid:200000269; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfooy.top",nocase; classtype:attempted-recon; sid:200000270; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfoqv.top",nocase; classtype:attempted-recon; sid:200000271; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfove.top",nocase; classtype:attempted-recon; sid:200000272; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfovt.top",nocase; classtype:attempted-recon; sid:200000273; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfowu.top",nocase; classtype:attempted-recon; sid:200000274; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.updateinfoxb.top",nocase; classtype:attempted-recon; sid:200000275; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p.usertracktxz.top",nocase; classtype:attempted-recon; sid:200000276; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pages-108-tg-cfzz-ip.pages.dev",nocase; classtype:attempted-recon; sid:200000277; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pages.tempisite.com",nocase; classtype:attempted-recon; sid:200000278; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pageverifycenter.com",nocase; classtype:attempted-recon; sid:200000279; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"patjimmy323.wixsite.com",nocase; classtype:attempted-recon; sid:200000280; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"paypalloginin-usa.blogspot.com",nocase; classtype:attempted-recon; sid:200000281; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"paypalloginin-usa.blogspot.hr",nocase; classtype:attempted-recon; sid:200000282; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pcmag.anycubic.vip",nocase; classtype:attempted-recon; sid:200000283; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"port01-acf.pages.dev",nocase; classtype:attempted-recon; sid:200000284; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"portal.chiaveggies.com",nocase; classtype:attempted-recon; sid:200000285; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pruhuffopraussou-5681.vercel.app",nocase; classtype:attempted-recon; sid:200000286; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev",nocase; classtype:attempted-recon; sid:200000287; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev",nocase; classtype:attempted-recon; sid:200000288; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev",nocase; classtype:attempted-recon; sid:200000289; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev",nocase; classtype:attempted-recon; sid:200000290; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-2801359d2be54bfd8701132626efeb73.r2.dev",nocase; classtype:attempted-recon; sid:200000291; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-3096005ebeae423182ccd89665564d8a.r2.dev",nocase; classtype:attempted-recon; sid:200000292; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-46a5f86348ae4aceb3591d126020999f.r2.dev",nocase; classtype:attempted-recon; sid:200000293; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev",nocase; classtype:attempted-recon; sid:200000294; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-51f896deb233450089fc1a520e6ed957.r2.dev",nocase; classtype:attempted-recon; sid:200000295; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev",nocase; classtype:attempted-recon; sid:200000296; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-682ad3b65d944376b919745aae3c56d4.r2.dev",nocase; classtype:attempted-recon; sid:200000297; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-722720be67154192a1102b2cf085d306.r2.dev",nocase; classtype:attempted-recon; sid:200000298; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-7d056bfeb6b04852801553620fe62c0a.r2.dev",nocase; classtype:attempted-recon; sid:200000299; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev",nocase; classtype:attempted-recon; sid:200000300; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-873fc6a3edb941c6a17f50911dfca518.r2.dev",nocase; classtype:attempted-recon; sid:200000301; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev",nocase; classtype:attempted-recon; sid:200000302; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-aab4be29317b4ec296517a557db12622.r2.dev",nocase; classtype:attempted-recon; sid:200000303; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-ba5a046c69974217b0431bca4ba43740.r2.dev",nocase; classtype:attempted-recon; sid:200000304; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev",nocase; classtype:attempted-recon; sid:200000305; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-c59cf4e950b142949df8861e60b3689d.r2.dev",nocase; classtype:attempted-recon; sid:200000306; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev",nocase; classtype:attempted-recon; sid:200000307; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-e5855431d98545b38408f52af50ab8a1.r2.dev",nocase; classtype:attempted-recon; sid:200000308; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-ff0271d87324424a9aec83337e844a54.r2.dev",nocase; classtype:attempted-recon; sid:200000309; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"puertaselectricasprincipal.netlify.app",nocase; classtype:attempted-recon; sid:200000310; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"qaffixledger.com",nocase; classtype:attempted-recon; sid:200000311; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"qbstdfda.com",nocase; classtype:attempted-recon; sid:200000312; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"qpownthenewyhadvanceweb.weebly.com",nocase; classtype:attempted-recon; sid:200000313; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"raj-tiwarii.github.io",nocase; classtype:attempted-recon; sid:200000314; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"restrict-policy-nonadherence.vercel.app",nocase; classtype:attempted-recon; sid:200000315; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"reviewboss.github.io",nocase; classtype:attempted-recon; sid:200000316; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rfgxg.top",nocase; classtype:attempted-recon; sid:200000317; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"riaayaoman.com",nocase; classtype:attempted-recon; sid:200000318; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"roadmap.binarydesignhub.com",nocase; classtype:attempted-recon; sid:200000319; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"robinhooldloegins.gitbook.io",nocase; classtype:attempted-recon; sid:200000320; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rouzhda03.kambizmedia.workers.dev",nocase; classtype:attempted-recon; sid:200000321; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rsjxzl.com",nocase; classtype:attempted-recon; sid:200000322; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rtyuiuytgf.weebly.com",nocase; classtype:attempted-recon; sid:200000323; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rubinhuud____llginnh.godaddysites.com",nocase; classtype:attempted-recon; sid:200000324; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rudra-choudhary.github.io",nocase; classtype:attempted-recon; sid:200000325; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"s.team-s22.com",nocase; classtype:attempted-recon; sid:200000326; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sadekk.com",nocase; classtype:attempted-recon; sid:200000327; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sajsa.icu",nocase; classtype:attempted-recon; sid:200000328; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"salarahmad786.github.io",nocase; classtype:attempted-recon; sid:200000329; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"santanderpod.fsthosting.com",nocase; classtype:attempted-recon; sid:200000330; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"satinnaaoabbs.weebly.com",nocase; classtype:attempted-recon; sid:200000331; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"satyarthi.uk",nocase; classtype:attempted-recon; sid:200000332; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scarce-army-wide.on-fleek.app",nocase; classtype:attempted-recon; sid:200000333; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sdfvgbcvb668.weebly.com",nocase; classtype:attempted-recon; sid:200000334; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sea.6e2efhxz.eu.org",nocase; classtype:attempted-recon; sid:200000335; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"secrbnsuppotyu9.weebly.com",nocase; classtype:attempted-recon; sid:200000336; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"secure-ledger-m-auth.webflow.io",nocase; classtype:attempted-recon; sid:200000337; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"server.2rk3.com",nocase; classtype:attempted-recon; sid:200000338; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"server.pxs7.com",nocase; classtype:attempted-recon; sid:200000339; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"setshinobi.vip",nocase; classtype:attempted-recon; sid:200000340; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sextelegramxxx.pages.dev",nocase; classtype:attempted-recon; sid:200000341; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shareorder711.weebly.com",nocase; classtype:attempted-recon; sid:200000342; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shaw-101342.weeblysite.com",nocase; classtype:attempted-recon; sid:200000343; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shaw-103098.weeblysite.com",nocase; classtype:attempted-recon; sid:200000344; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shaw-106054.weeblysite.com",nocase; classtype:attempted-recon; sid:200000345; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shaw-106665.weeblysite.com",nocase; classtype:attempted-recon; sid:200000346; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shawsyncmailservercommunicationworkspace.weebly.com",nocase; classtype:attempted-recon; sid:200000347; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sherman-relate-rev-baskets.trycloudflare.com",nocase; classtype:attempted-recon; sid:200000348; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shobhit245.github.io",nocase; classtype:attempted-recon; sid:200000349; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shopifysite.cn",nocase; classtype:attempted-recon; sid:200000350; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shoptkoo.com",nocase; classtype:attempted-recon; sid:200000351; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sign-in-att-108611.weebly.com",nocase; classtype:attempted-recon; sid:200000352; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sign-in-att-108611.weeblysite.com",nocase; classtype:attempted-recon; sid:200000353; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"simxtrackredirecttszz.pages.dev",nocase; classtype:attempted-recon; sid:200000354; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sjhsjjs82.weebly.com",nocase; classtype:attempted-recon; sid:200000355; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"skill-meta.com",nocase; classtype:attempted-recon; sid:200000356; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sky-107842.weeblysite.com",nocase; classtype:attempted-recon; sid:200000357; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"smithjamessv328.wixsite.com",nocase; classtype:attempted-recon; sid:200000358; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"socx.ly",nocase; classtype:attempted-recon; sid:200000359; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sparq.eu",nocase; classtype:attempted-recon; sid:200000360; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"spicyhotcoolsoup.s3.us-east-005.backblazeb2.com",nocase; classtype:attempted-recon; sid:200000361; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"spotifyl.vip",nocase; classtype:attempted-recon; sid:200000362; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ssfgsfg.wixsite.com",nocase; classtype:attempted-recon; sid:200000363; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sss.k999955.workers.dev",nocase; classtype:attempted-recon; sid:200000364; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"stonemartin1001.wixsite.com",nocase; classtype:attempted-recon; sid:200000365; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"stringroll.com",nocase; classtype:attempted-recon; sid:200000366; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sukienffvip.doiqua-garena.io.vn",nocase; classtype:attempted-recon; sid:200000367; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"supportsecurity981.tempisite.com",nocase; classtype:attempted-recon; sid:200000368; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"talktalkserver897.weebly.com",nocase; classtype:attempted-recon; sid:200000369; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tareq088.github.io",nocase; classtype:attempted-recon; sid:200000370; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tbsl.by-on28.my",nocase; classtype:attempted-recon; sid:200000371; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tcaconnect.ac-page.com",nocase; classtype:attempted-recon; sid:200000372; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tejlksdoisd.com",nocase; classtype:attempted-recon; sid:200000373; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telegcm.me",nocase; classtype:attempted-recon; sid:200000374; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telegramjessica.pages.dev",nocase; classtype:attempted-recon; sid:200000375; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telegrampx.com",nocase; classtype:attempted-recon; sid:200000376; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telegramsexgroups.pages.dev",nocase; classtype:attempted-recon; sid:200000377; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telezelm-ivee.icu",nocase; classtype:attempted-recon; sid:200000378; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telgramsignal4.sg-host.com",nocase; classtype:attempted-recon; sid:200000379; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telstra-102379.weeblysite.com",nocase; classtype:attempted-recon; sid:200000380; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telstra-104033.weeblysite.com",nocase; classtype:attempted-recon; sid:200000381; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telstra-104394.square.site",nocase; classtype:attempted-recon; sid:200000382; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telstra-106968.weeblysite.com",nocase; classtype:attempted-recon; sid:200000383; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"test1.workersdev40050.workers.dev",nocase; classtype:attempted-recon; sid:200000384; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tg-logrom.com",nocase; classtype:attempted-recon; sid:200000385; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tktk.tktsk.shop",nocase; classtype:attempted-recon; sid:200000386; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tokecn.im",nocase; classtype:attempted-recon; sid:200000387; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tokeni-1601.vercel.app",nocase; classtype:attempted-recon; sid:200000388; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"towrewds.com",nocase; classtype:attempted-recon; sid:200000389; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tpwalllet.com",nocase; classtype:attempted-recon; sid:200000390; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"trustwallet-zendesk.com",nocase; classtype:attempted-recon; sid:200000391; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tuviaje10.com",nocase; classtype:attempted-recon; sid:200000392; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tvjbqiyv.guru",nocase; classtype:attempted-recon; sid:200000393; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"twcht.twimobie.cc",nocase; classtype:attempted-recon; sid:200000394; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"twimobie.cc",nocase; classtype:attempted-recon; sid:200000395; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uedy.pages.dev",nocase; classtype:attempted-recon; sid:200000396; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ultsyncingsolana.pages.dev",nocase; classtype:attempted-recon; sid:200000397; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"upheldlog8.godaddysites.com",nocase; classtype:attempted-recon; sid:200000398; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"upholdloginorofficialsigin9.godaddysites.com",nocase; classtype:attempted-recon; sid:200000399; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"upholld-lligon.godaddysites.com",nocase; classtype:attempted-recon; sid:200000400; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usol.shop",nocase; classtype:attempted-recon; sid:200000401; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-cgkzkukp.vip",nocase; classtype:attempted-recon; sid:200000402; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackaxd.top",nocase; classtype:attempted-recon; sid:200000403; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackbrs.top",nocase; classtype:attempted-recon; sid:200000404; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackdht.top",nocase; classtype:attempted-recon; sid:200000405; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackgee.top",nocase; classtype:attempted-recon; sid:200000406; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackhsk.top",nocase; classtype:attempted-recon; sid:200000407; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackivo.top",nocase; classtype:attempted-recon; sid:200000408; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackjjx.top",nocase; classtype:attempted-recon; sid:200000409; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackmra.top",nocase; classtype:attempted-recon; sid:200000410; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackmvz.top",nocase; classtype:attempted-recon; sid:200000411; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackuqg.top",nocase; classtype:attempted-recon; sid:200000412; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackvgb.top",nocase; classtype:attempted-recon; sid:200000413; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackwbv.top",nocase; classtype:attempted-recon; sid:200000414; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackyqb.top",nocase; classtype:attempted-recon; sid:200000415; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uspsdana.com",nocase; classtype:attempted-recon; sid:200000416; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uspsdant.com",nocase; classtype:attempted-recon; sid:200000417; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uspsservicetrack.blogspot.co.id",nocase; classtype:attempted-recon; sid:200000418; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uzomadj.shop",nocase; classtype:attempted-recon; sid:200000419; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vedi.154-203-197-141.cprapid.com",nocase; classtype:attempted-recon; sid:200000420; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vgmrm.top",nocase; classtype:attempted-recon; sid:200000421; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vkkvdkdcmm.weebly.com",nocase; classtype:attempted-recon; sid:200000422; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vl1.spaceysen.cn",nocase; classtype:attempted-recon; sid:200000423; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vobroffexagru-4404.vercel.app",nocase; classtype:attempted-recon; sid:200000424; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vrvtn.top",nocase; classtype:attempted-recon; sid:200000425; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"w1.5114559.workers.dev",nocase; classtype:attempted-recon; sid:200000426; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"waassistance.com",nocase; classtype:attempted-recon; sid:200000427; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"wallet-diagnostic.com",nocase; classtype:attempted-recon; sid:200000428; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"walletsecured.pages.dev",nocase; classtype:attempted-recon; sid:200000429; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"web-lupqrbm0k-uniswap.vercel.app",nocase; classtype:attempted-recon; sid:200000430; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"web.tlgrm.app",nocase; classtype:attempted-recon; sid:200000431; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"webmailserv3038z.wixsite.com",nocase; classtype:attempted-recon; sid:200000432; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"wk.xzte.eu.org",nocase; classtype:attempted-recon; sid:200000433; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"wodjrvrisixc.wixsite.com",nocase; classtype:attempted-recon; sid:200000434; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"worker-dark-queen-529e.servers5555599.workers.dev",nocase; classtype:attempted-recon; sid:200000435; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"worker-hidden-frost-ba39.yoveli7450.workers.dev",nocase; classtype:attempted-recon; sid:200000436; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"worker-site.aopages.workers.dev",nocase; classtype:attempted-recon; sid:200000437; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"wsa.osmqone.org.cn",nocase; classtype:attempted-recon; sid:200000438; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"wwwwwwsasasasasmmmsszz.vercel.app",nocase; classtype:attempted-recon; sid:200000439; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"x.tovip.eu.org",nocase; classtype:attempted-recon; sid:200000440; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"xhjxkj.cn",nocase; classtype:attempted-recon; sid:200000441; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"xixiajiaju.com",nocase; classtype:attempted-recon; sid:200000442; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"yahoomailquthorization.weebly.com",nocase; classtype:attempted-recon; sid:200000443; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"yungtee3.wixsite.com",nocase; classtype:attempted-recon; sid:200000444; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"zagbasamothega.dnsget.org",nocase; classtype:attempted-recon; sid:200000445; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ziraat-kampanyasi-besbintl.xyz",nocase; classtype:attempted-recon; sid:200000446; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"zxl.cbbnbbc.nyc.mn",nocase; classtype:attempted-recon; sid:200000447; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"zzpov.top",nocase; classtype:attempted-recon; sid:200000448; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"datagivers.com",nocase; http_uri; content:"/3961f442eqd80b4e3c28f75c4ba682dd68f9.html",nocase; classtype:attempted-recon; sid:200000449; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"flow.page",nocase; http_uri; content:"/uebj3h3j",nocase; classtype:attempted-recon; sid:200000450; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"gateway.ipfs.io",nocase; http_uri; content:"/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq",nocase; classtype:attempted-recon; sid:200000451; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hm.ru",nocase; http_uri; content:"/medoeu",nocase; classtype:attempted-recon; sid:200000452; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ipfs.io",nocase; http_uri; content:"/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq",nocase; classtype:attempted-recon; sid:200000453; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/46wjpyr",nocase; classtype:attempted-recon; sid:200000454; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/910428",nocase; classtype:attempted-recon; sid:200000455; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/cdmd94193ab",nocase; classtype:attempted-recon; sid:200000456; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/n3yi7p6",nocase; classtype:attempted-recon; sid:200000457; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/vre1p3j",nocase; classtype:attempted-recon; sid:200000458; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"s.id",nocase; http_uri; content:"/p8w69",nocase; classtype:attempted-recon; sid:200000459; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"safebank.onl",nocase; http_uri; content:"/107519/c90488/4a1f04e6-1517-4254-abda-f0aee8fe0ab9",nocase; classtype:attempted-recon; sid:200000460; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scearmcommnymnlty.com",nocase; http_uri; content:"/cert/loks/mir",nocase; classtype:attempted-recon; sid:200000461; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scearmcommnymnlty.com",nocase; http_uri; content:"/cuce/rit/pil",nocase; classtype:attempted-recon; sid:200000462; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scearmcommnymnlty.com",nocase; http_uri; content:"/qinmot/truklop/poli",nocase; classtype:attempted-recon; sid:200000463; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scearmcommnymnlty.com",nocase; http_uri; content:"/trawbe/nunty/loki",nocase; classtype:attempted-recon; sid:200000464; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scearmcommnymnlty.com",nocase; http_uri; content:"/xul/lex/ponu",nocase; classtype:attempted-recon; sid:200000465; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shoutout.wix.com",nocase; http_uri; content:"/so/e1p6lravu/",nocase; classtype:attempted-recon; sid:200000466; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sites.google.com",nocase; http_uri; content:"/view/ghghdgfdgfc/home/",nocase; classtype:attempted-recon; sid:200000467; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"urlz.fr",nocase; http_uri; content:"/tlly",nocase; classtype:attempted-recon; sid:200000468; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"workflowy.com",nocase; http_uri; content:"/s/att-support/6ca3iebztzztx2gi",nocase; classtype:attempted-recon; sid:200000469; rev:1;)
diff --git a/phishing-filter-snort3.rules.br b/phishing-filter-snort3.rules.br
new file mode 100644
index 0000000000000000000000000000000000000000..d511c7f44dc663c3c940f3cc61d45f52dee07c72
GIT binary patch
literal 7739
zcmV-B9>n2+l4cAds!2TnijZOMW6k>Ke}6Ztc`4vX6wZAi=Kl*Ql@`G!Xe&JbzcP&n
z1?GgHzyOpJ)KF$>mL}Bxze=5ytSr^;oD(VbNm^O$UCOq}j{ncv$|_}*n8Zq1tAbQn
z)_rE+oB?#NnpI*JYca!Vz#qKuqd5kQjgFya=UjS_Du#7XGF<=56aS{EAZ-~!ZuOVG
z#x3r(etiAI8tNL-@>Q|q)BJPFrSY$S>JclppML4<UypaM`X66C)^CGQMn?57<M@No
zALIC6KmF3zpMH)|u>Sa>UmotSU;miZuX!xQ8k4(!<ELNx68TjQSn$W!+S<_{HZ7q=
zu+8rlJH!hLlCQY>eS9PTzMVh)(wC+({RWj^YB?AG^h;kIL$&_+Y7F|R>U8bj{#rs?
z`}@^Ga}|BAyOq2=@ZD&34}Ss;8u|90VrA%W@>9Nk`7i$dZ~yfF{oSAb%NL~ki~Qc#
zFaPO({L7#I)8GB!-#qY~etoaYk6-*&=YHK+>V{wI%VR^=(EsAk@9y_D<sa?q8NSwB
z+t0z>-sZ<I(sW{NgAI#?$v?%yGqimC;%}$ypyJN~h;;>~%8zvJUC@()E~lTrYVbdl
zraJpSoc{b(@cco4{tc<JmPtyLpki=N77B(2t|V8oPgI?g*%Jsy@8{8oLLm_INsg4t
zZi_;qsu@?FJL+()w;oTCC=@2Wkx~iH%>Y*z9_Y|8rd^zkncZ*(MNFYFzA)VPeGhJ4
zQW)$702tz9DRXk5!{>euuAn1IR%n@+{>seHaIWNVA=-HNJFcNrz{X*m=iqSdTc&2$
z7!0-Gq5gUXZ$KK@yAE4-h{3VJ4aFu)T+9hcg*BvJh7*g!IKXktF$6aDn}re*UMCy&
zTpB*0xK6{B%Z4Snbp@5EL4+#fud-t=ISp6%yo-6|fuV4#h#$~255sPq4Ot|P2`LJg
zPFCPH^4vl7;aEH3QpOnb1~K6z`NYH#2hi>yMz(M*xiiN5B4@A>`*wJ8((5;~H>ur+
zgR*1bG0gYM8H}QN-}@QduFB0y!@)4!?lOb|iMZQhAqiXh<P64f{5~}ZKGzzs)E-XQ
zG5N3`a3hwP^WnJ@ZqBu{m%|Xqr_>891$qiMl%&fUOyV_;10j+#hnRm~ApyO&lk8?&
zf`TYS9gzf|jl{w1j4ybUFi<H78#$q7B2>`99pg=Gz8AyL2uiNFS5~9SVJgE&idVL>
zm6e<dKU7A(abYnG;$Qvz!jM~=Gx&&nt82vjDA{6Zb?C$yoMLxvxu@=Jijh{r9FbV9
zfm!p)8JywPtr0p>Zl;_lJFSj|OSYs;3Cbeyy3-^Tp`(za9!iyi;b>Mm7KwB8*6Nx?
zVR%|e+OkL{T)IPu`z57JC?GA~l1j-rkik+KA&pDKh~>!q+nooetpXLN2)b_wOCljD
z{=SZrZgnIK+SP5jw_D6nQHKbQi(KAkOG*WmAOfd`<QA1n1tOukN6$~sFV6H_->j(>
z5QQ+ISu)g-8PWPAIeD$lOATsRVIVa6)_urZL@l7<961tUoUB~v3S64n>ff9pN7Q>;
zi5qX}r<nAOKrLr?hNRegVrjwW*t~P3D<s1o&QdGU2u~!FGZ79P(Fz&i3fw$;Z~Zip
zaU?t9;}-W4{n&>slx;M$Iv!fl4TePQEtk%@b_pUxDSnI*L_$@ZIKwd%z7@<{!GLkT
zw$xwGaprqx;<HM%v3fbbkuvdc**%<W4<46|PwhJP)KnP4G1p;^8@XZH>(4QAY8so;
zvvBo##17~C%!}IOah)L|%F88}pX(Hl|IE4V*OE?w?F1nJqw)J#Sg;3^4||^b&Eors
zGM-0~v$w~U*z>+WTejA1>yd<5RJsE8`U~ywL#d3eK@3j5?WQn@*U9AW8or7`w=eM}
z(po=dsff32yYDR8b8D(IcCcjC=iO1bMvbS<NVo1nvL+k{zrlOTM`kZ^#+sh@b-v5{
zl-KecpU4mQcE@%v?}=j+#ipq95bWE9RHJn4S^e}{Zdc@i^BcK^l(@Q%>v{*a?5|`W
ztNIa!VN-N2eVwL>Z(=%pdFODn^Xd%Z`hZ(Po}QLJQxTHMEaw^OnE@~yo1!ZoUewoa
zUxy7J_U3lOz50+Xhj8)NyGtjol#VkB#_-cnAut4Lb|$qzZ4EhbDB~_bcmIwze&A4u
z9-HBMDBUG$lBM`kI}D8kt!bG(cQ@ux7Luw)Uh`0|hjplsZB!<AOe0RJcUk^2JWK7#
z856}uwgkT*F_%AHd(AK$kQ{6{l%9m+V3?)4E!g+I@92FFL`W(UA!ke+aj&jd-|iab
z9FuvFr8Ph2?aB~b-*HT4fp%0{Os=$3CM8&Rl`heB$23j)^_th>369BVsP<Zmlq$8L
zQwMofiBox?LNU9*Fo^p#_t$=1>cJU$MEpNPoqe^!P*7yG8(a%%;Yx09_s-Dl@N4jq
zO(XS$E9Z%z$caS;gc;6If*8@u(xO-A<9K1|ul3!St>M$Id5579I;a>D<Jtyy=S~wt
zApRJ!+(RX-aE6xKWMLAdhL5T03axOln@Od(G8tf+ZsaKWa}ShDCKWT>RGD*!o`g-`
zK>4VJFkCJWjmX25A*g!{gAvVcCVG(F9cC2hixpB3J!$X><bpfl(8~Sekb~%&ZdwmI
z!%*CEg^)-qZSa;dJ40c3Y|Zh%{p!|<9U=&qY~YPtP;SX#jE9@7=r*R=@SWQd25>oy
z6%p$-7aWdKBMxIc+$7A+g%lEb=&hlKClr8ohxrzTF`*neNe?Rd1$CI1m4`zk&%%i*
zxE!Mp)kQgs-LRad`bKP}E`pOHb~pssOP!xE=s4oC?AuTuduI(mM{CQB<)Hkfq03sN
zR*_WUnC-MO<50V8t>6*%e9&=}^3pH_7s=0q8X+;BQUf)b2t~9ZR10<i4oZdUvnQu$
zEFOyyJX@E8Qll!-ZWpmZArV^TNzP8r00(7F_36?5zj>~+!(7zJLHDgAgtVIL|E#vQ
z<iV1C_jbT47siB}6-?kU^|I3?VoYid%BA{8xN;vY7j#WQ8rK;Z24OD|3=$P@$<(9>
z<=|Ic7OZR2xWu7I7_??abD&_zH$T7}%JxWQn6Rki;8s<2@~(!bAndy5P&5vK-nS+5
zEpbr#)XRK!B#ZDJ2-TVnISq3}+)id?15r?10jknrJ(ut#QaV&ew`xm<<semE^VxMd
zRd*N+K~?;SE#A0Ytbge`F*H)tAuUAuHIqONYSkq9ey$t7C6a?)RRt^ZLjF`;-h(==
zzqJA7AXOc6v~cT5Pd>IBbg~nXxH6SVj4M?E!nDehgG_Z5k=7<e;-6(lE+7FF6rej0
z4;T{tiisz*a<HR*dQ7?OxmS{lTZ1QSz9N=ki9xh_JM1VR#snQo?c8JRNg8?#ScZ6M
zX2rtLm{zUwH=3OHs+$Tr$;B{;`^RC-Wg&0jptPtfGX(exBUr92fB#tY;ob2Vnv#PU
zH9@n-`WD@s93-e?Kl?hr!i8H9F3c&fdFy<>Ru}^Bid*gxc0AGMo?r-cS-sFcwY>YF
znii5nB3&`>kdT|P44i{9o;J)_(vp>e**V69c`o2GXmJ;zd0FQxV1Jd&h3-Y?SIR+n
z`l@qSLaGfDG)$r_>2nMNl{GXK>I~tj;jvK9Ui$7A$U&J-t8*@4wHrOzLxCl7SD$tZ
z=D8eXr(-_nvbUTgotQJIfC}(kE#Si}=U+dD753m^PY}uj<X|>cY4MGS6kJW3ZbxCk
z=d$3SNZMTTQcDkBz(E;JlQh@0zzWJ;4))TU%zdkC-#<N5XQLN~VnRw5cuEiH%mb5y
zpR~FlXzz7DJ%~9d8)>-UFuLaqcQYK8?7{o`%jT0NIp|0ewydx9?%GWb3es0w!j37$
z+(U{>HDH_bw&0*Vq@QWY(PJvvlaen;q;|W9GPPvp$w4!E_A=SMVD7b)M)@4s>KZWw
zK3&QEpp=|vILMkCSwe}`c{sEogm^!qTL(bope4=xrS#*#Ipz|e_)`vc(y?D5g*t~a
zk%L{daYYX|G`swApZDRelx-_)NA6{~Lk{Xt{VPq%#Q3X_pAe$+1cObDSQ8Y<e5keV
z{XLxP4A(uGg|x#y=i0E0f^|QTga4^cZYu-A;QzC`PAnddl-wBqG=rz&t-7l7BKZsh
z?8lgE+a8SPLUJ%a$9~1w;fRprz;<p;N!lSr=(MRR2Y>TjR(#gnONTT_$zTuNGkUMX
z5K7hJ{AxdGzLHoDs%F&dtE`@A#z8-)YTZUbDC4^k#-zb-`#Y}~46Rf0j%qwon?qxA
zP{5{d+M+Tx%E8(6)8bA{l2B<+lJaV5s`}Y2=W6qBIcS^NyEd5P-JZdMy{+NlQq)?r
z?;Jvz-{2S`X&7)Ro-uGx$fo*DLA?x1J7(pLf40VyFn^gk^KCQ3z)%`|KUA><W75RE
zhq=3Lx#j`;kjr8bhgOCk`B?9YuH}x)a^N+yc6~bB=NX5BC*kBs$FRY(;bSp{HS9R_
zI&52-9F)!62^*FLVn`kzM;$mQZF65pb0%)}_5LRIs#!VUncAq5k8d4z6_Lk537V}Y
z^*q4mkwj{L+0hT%UFTQZj+FzZd3eK$-`s^Ysq>%u0HRedAuSFamO4tA&-FNrs<lBw
z!uLz3Z2?Ck2U4>%YkS{~#o)L!Q^R&@SO*Uq*MiUW>K@}fbq)&FOjXGJ!qV=;4sv{{
zg__Q>#r_H&wKj=@E011qd&EQQQPuq9z-u<Y5E3NsKjz4;5Vzpu76-*_KJJCh)ys0d
zdPG^)+X4D3hEmRDgyc_*JFGB_NjJ&8B)rLoKW^S43@vr|I8p27tFO;;&^A-`sw=d%
zp>qZtjH-F)tH;pm{?eb7O*uLTV`+}_tEYw3yrxcJ91N71cN?^THbw}=vjh$X!@Lug
zncnU&#9PmO+#By4jCYx`4b!tjh}}b-!A9lOhOHN1BONn1j>)JQs=JayjQtaA$(^u?
zLN7U(_H5ndbn>~cq=)Vh9E^QAr6M%gNlxL&FRUv~j`wPWyY;lOB{sDVi4?4RAU?rx
z6x-Rb-$U?5Vo>ctzhI$qdtSNho<rHM(MvuM4k+k?&u6HZTEN7uZ!wvJX}X<o9Qi2F
z-yJ&<N@p-~fHG&Xh<6U39QGYu?nEkT%)=0Rt&ldGH$2Wz&dFVr$MMtHhT|A)%*z9Z
z)U-JfLh&xbvtz00l0^;%&}@oX5eFlUO|cicR*4cuOj_^_Q;ZbuQ0(PVa9hmF5>l%D
z<~SHQGjn(FXm7ihAtYl!j7GF}&1m&l4rHcky?6z6yEI*#gWd1mAtWrVEUhLGrg}=)
z#)`1yrYr~JW~OR~r^ma2Nf<&i6fOlVh7D7~P8c0ksU*i;+ICESonJ@HAuyD7VuLUU
zDRTnylJ$I|%5W;!q)a54G_nOEe6kA?ZB*{=;I<la%uBC_IWU+ScWk(q+Ul?dN#I~O
z&DxIliVN$8>1bOs4TI`c0;CzkE1>UQpRNd(JHQ=hze5fN*u2IbBBa%&*V0rcjPGS~
zz&3Me4<*~s>eA|jav(Pov}bpiF^87}uc;WJ(+*}}!;Y&DT4=3zDGa5X<})CfL&1^z
zY*h;7pl(j~z1uAe>oFWyAh<QW%R$(z?l<{!+Edq5DnaNd4R^YbgTXd0+;4yX>tRXV
z*>Iya$-&rsw*==+Qm#mZ6k;$Sa$gYk{YwtOrt0^$XO7`RCKod-g2{U?><lLKW(nJa
zC6f!SAEAqAjN)LrGT}u=flDf(gmJ>M5;@45`x0Kz9PL!=@fJ3Jw&3G^bgEw|Uxx|g
zAad5z-0t%X?UDtz98}I@@RV$=E`dX=X{p%CyBu`RhU{EO(1z~q;O3L&a<Dm5mVG{}
zb9Eo0F!Dle)&Md0(mHNhvP=#*r%tg)uH?w=!JtafT3s&71MOltu$;|#+lMDLS05tJ
z1<LKeH3uVcmUFMUeod0CCJZ5OKu<kdf3TOVou}ij#3k)oc*>=;@C<9x`pX9_t%aYk
zj27I;!OryNIM+4Cedpj{NX$OwviNS!!MK>Eda5@sy&aYGTK8NBuyrh24p!!lV`#T4
z`#SDorwcjgn5`x)d?k`9`~pNug@3(?CKWzjL|TQ<1<7c^Z#hy+D*XE-qAL7}NK6ag
zh`0)Wbt0j{e=LYpSaFQH=-t*nPr^{r?lnyzI%?7u;^yZe;kb%L4iKhii8UX?I2a03
z+2ozo^QPWv{++`pZS58I{pO6f#N{AkHXU#u5HB26eScRf^jjNvJ#zaj2PE^(n%CL2
zJYX<oy4ztHAl<IpFl$W?M#?<xkxLsXY15pW%kjzgb|MXK4RGSJgiFljz-2ZcrLTRS
zJ1DQz+KYEfX(|Uc^LYKyEg6O8YDR16?1Y*f2+)o(iSy(ca6J^ZZIVp3&MlNvJBpFQ
z3?NWw1Hw@?QahrM*3ClEnsX*UX{J4ZQ(|@;G&f=dF?wxB>enfW(JL@&5kW97o@R-8
zM9r<_Tv-E-n{k9B2Yyqfxr6DEa%nuXD21K9o<>SJQ%vEEcH)vFsdO+OjT%Rp&PPZy
z4C7QY=e#ybNvVX_B4PUULV=vM;z9!oaA>(S)KjMLF?}&+P9$7&i?E(@MU@}56Pi11
zi~v+HO6#RDLL@?Si=?wQ%A;kR3ptM3%#MO&BP#SpP9l+-ca+pl&l4TRhyulEJyqH%
zFBDEz^L>;=Y2Hzqf#+69Z-n5JvWA*TNC4zcD!=WLOqyFJ#wIpeR1=kg8U~b(%rZBR
zT6#Vzk!T$}`B5r6rv_z5p=FVJiIiNW5zVNWt1FNgy_}X#gA;~<Ofv-alO1R9OmaQ}
zC^N6q6A2$j%`JN3vs1v)TO+7bK&M%bhEhK}kW|}BLN&L5rU1g)S#vFv)u0VCT6$@%
z<Dh1tFwHAqg+*pKovc8|jFNN$DJO3!Q;dm(>zyn}7=?1mm`N~tH$?=e)`74f_#{TL
zh&10QIVl0cBMO|9wL)u$b~J26M3G2+94C#N1sXY8Dwq+*&&m@;QH_=>ZM;a7-WDke
zKU$%b^ulYC^2g4jkW_hX^lXJPrFlhaDFvtAXep%ST8w&@3}!ik)j&m}70&a84s(dt
z6K6s&0S3@%&iRB|2#_Li7+sE~LExYdl;EJoU&2<8P!7&Py~Z2nIecKDrVq4paOUaQ
zzin-P_FxPK(;FW7N^Ql2*S!W|LXD7P=Xzfb4m8c10x#0S1to-jHO}BvYD}XmN^oud
z&v}({0>5Ix<d_p2oM-BV)nZsS*Sg{`lm<O7pXI6^4o)i_`w{?d$h)5*9Gp-3J|%<S
z;TUX4Q0|y+_%X>aYa54AzS)r0oTHB!mjIOI;Na5tEV)0chmj8(>^3~%^sv=sgM%YX
zBQN#!dDvSV99^2O((WGm-4-t<IQU0c`aX5z-u?gkfB*0Q#rWLSv=Rw9ILq`^OZNqc
zTXXkoM`}BTt{fOsb%kc^VJDTbl|-Qw`wAYn%@mGFy?#}gFb@Z(ljc{22nE(1{G`?X
zf?>1^QVRll<B|O^*Y;a1Oy8b^V@ZSB$1_<8AcM866%Gz1&D;v@hSJtB^vxIyrdM-N
z91<w|O$L3vY{-dtd~Lb~D+ht}Evlc-#k$j~xr3SC^e}|-0AWzba9%%;^A8-HL)ui)
z6`SH8GPHJgv#L0h_PJh=jL0;hcLKew!-aN^`6{a90FkP(*W-_6U}fX$3P#&=)*qib
zaTo>dFW8>FYBOq%9H7yyss3pgy=&>u=kw|2z`-G-dYaQZ4nh5zD9!BTz>C)F3fC;x
zx1eAgoGI#?wxoPC8b)YI)hGpx)S@aSNtD*=ogDYaE3CGCEZ=INnv<g*w7=fg@)M3p
zH7xtcoG%rjAt`v0TeY*jbs}CIoI9FBb<K7SjR|@5LXP)q)iobs-t*QqJ;*^DRpt!3
zZ8?AD;3`E$p%h*Td-V?INoJjuoL>(9XuXF0!=I>>xK<6R)#s@O%fTW|TYatd^{Sd}
zj$(ZFZi|h843%Zx91f+#-h_^muFT6pAl32p(gE=rRXsV=APNqSA&qa%?lZ*O4h*BX
z9#Gx`_D4BLqg&H=4DMcYb2-PF`!Q5L^hywFBjYFsXFa2j@Sr^lDhGp9!9WHc<~tr^
zl7l{)v|8t-&P$FU2Wd3NYOTX&j4{&nRSu3D)lo_F!n`&-I*xRGVMxWlm5`Q_qp-li
znWG!r+P8pdp3iU$K8JS)vOvKEL&(F~7L)@(>WAb?pUg>IXt&XnHRcSiwALVQ-+D)u
zx~0t!<QyDKnwka$-=o%vgQp4GY>k7xNlr`;dyP+y&%2s~sMW22oAaabElv(HY1TJ<
z#jW}rs<(%OE8>WY+kGhK;5gFKslx=lu-4$lx#!?i(voGJKR(+UjWVZJ@#EfCyXtBp
znRL$cDRL4{#7itOCe<3o6_p2JNf5<Q7qU($hJzzXx82oiD=?q@EjSqt4ko>WbzK!>
zRDL)(m-LQz{o+Q1i0H(_HT&FEWkMU^5Uy(zyK19{BDOt@OpK!(4^3cbjeA>2%uC7p
z7YwZoZ(G}jwzays*zOFj-^aM+4P6?-S|OP%sir{qqPBVw%fS}Cq~)um_4i%0<ba2c
zeLF6QF=9nX4m_xi^rSzR;rKt8Jl4%F461Suwx;=^Ejc*sGjrSdvhQ%8!_rGTLJpkg
z1a6mG+t9ACXB*J@T@DWIv}Oy1RG&I}4`nzwceC1KyF^lrA2_TWAsz6M1GBl-j}_4Y
z-CcAiXF0H%^?t0`wt7gp4C<Zc0I`N8Bx5X!QCg!XF@_~4`#1zkbKt$^*ks@kq|92c
z$Lbhw;+E~%`gUB^aKaHIvr1n+*m3yG_<}>wFAsBHd|N7$Q1SiRn52roATlWxf2|wS
zq~eD&Gieq7_4+Uw6@4$@C_1X}=fgx*{Qh2;n2LWcmWiwQmpz$;x^TbO6NyydTkNKr
zLyn=!n1yd7lYEEz^_JE$rlnz@XgLI9GXDL^JNQ?#RSu}+|ICR#l93z&EE)N^>}Aj0
z<N!$K(7A1=-@M!ROKLd;OR|1OI&?E1@Le(W?&S~|$?BQyp~sxU4=kk<A;y>`aR_{5
z^k+F++Jz{j(st27QYxejUJZx9M&9HCs5R6EbT^+Na7+g2)5g1ffF;oh*WX#iqUG_r
z+T+h4aR`v)Y;~a}u^;bZ_i-aVg?hn}*~vkZRD&W!-{MksYe1+<XqQp(k?W_68;3wj
zCgIwK&(n}k$RQY#xp!s%DrX5beB3$`<J~J>n}~<9k&td*gGgp@=nWQD`BnQ&AuI=C
z(zn=)Hup?N=8|h87PuMid}0ifxH^?Xa3_6x^_IE=a*1ZmK8#7HuQ24gzjNw!E=zMn
z4)kRC`f9bp<Jo%(D(J;lNljs-&dI25!4`@EIbf8r{;aRh_S)p+pigG_Cwv0D0=#+=
zCI@p;N5fM+-0dC64_n7v<Umg*?e1x5i2jmr2<YUo{R4}I3VUuVE-?617i>9$7;j$8
zjA~?qDCuN2)Icm&8&ZpbTjCJh$;teD;^3@J*193xZrF1_ib;cio+F<Kl!F=B;Gw}1
z>gb2b6!af{Y%k%r|8BmyQFIo9;oIxc3gnLId6G_8P?~wK^lWaNTBA#a!br2!RW<i0
z7RZ=(v@gE$m%V~aO#K?r@Pa#Rg)LBvBU-I~W92)9kpGp1c-o%I6BOHUEvY=d+z{g{
z@z>Oz!euQouMd+YMYf%>ruWjKpnBZ85B(;NxQqt7qtDba4uQZFXj_nDz_2m~q`#Gs
zcf<u1U!ktoaTj}Og+fCQz?*%emC9P@cW(qW9IVZ>O7Ttn4%4CDX(vT}7Nkd^E(gD}
z^}?DXS{m)4FJ+zt8PDu*U`7jR8*+;F9{;7|B&qp!W)xa~3!w8TP!THWL<Ez9fb~G;
z5fJr^BiMx_2s3oILnu4U|HVxAo?^SJ^_lCiwC|X=`n`t&OAv^t=>?Fr-Qjl$?fVGv
z0i5aG-XZO|eYeuLn2+zl#?3AUaITkW1ul!<si&m&1H%geTqtWlJ$^_0d>=VAT?ApD
zHm<q1+}rWZqclBxYyL)hs950a-;Wqdy6>lV>tGyZQe*B<=I>=)R=>=CncerAcU%Z^
zTw?qpl=uvDx$kU?Kywa(RaIwO)sd;A-K|&ZchsUi$m~S^Rt|VT`?Tk2AGTz2XEO3}
BCNcm3

literal 0
HcmV?d00001

diff --git a/phishing-filter-snort3.rules.gz b/phishing-filter-snort3.rules.gz
new file mode 100644
index 0000000000000000000000000000000000000000..d42908051e08f3e17d29dc76070670c6662ce4ee
GIT binary patch
literal 8135
zcmV;&A2{G2iwFP!000021Js>ekF+>;$M5qgN;7-0D=kd%4n0z&NEvA_CYxw>R*G`7
zGH?JF#-{uNMSc1lSNA+pcCX4r%1LYH>FTb6_7B^~|AXy6-(P;^R=~&QKPGM_F2~DX
zfBE_H7pb((F26Vd2JAn5fBEa$GYkF4CB3G3l%&zM{PlYMNRyB2^}q1_pB^jMU_LI%
zrDw<G_wM!i%b?-zKz7F;@H2l>3#@F!zcpFAnvWlT81YZDHty8&!@|VQG(-az7W5D6
zS82X}#-o4c9Y_;$@b}{LP&~<Bl+&FrrdmP1KIV`A;|0$(xvz6^+f5+Etkw8rKm2xC
z;(uk9wG7X~1Zevz#pQQ@`uBhP>2H7j>DLRB$0hpb%kO^r&tHG~<<I}}^S59Aelg?6
zcYjx+%Wpqlc4!U93)O>#4lnR`KfccVw+UDe`eWcA`pcw@{qfQ%X+heL?-IFzv2n}C
zmPy;PXKdB_-5;guuz2`6!HluT3Lnf`SXMl1qydlq@nU%YkzPN)k{>S`wvXh;Km6Yl
zrA3mId6LIn_cljLh$AZt{7=Ged{cTGC8LEhT$><_oDfD;T$7{-X;%dyiaO1F;56~)
zzddYk<CKJOnxZK4ENf!6^Z3bv8d*h&r)h>R-uU}LxF$rw;sd|pZg`ubp+tdS@jh_@
zgCE@=$MapB<Vp#r>y(q$L<{e<GHS3GnByIw6-P+FNfLr^@pTwbqIojo))l4a+gOxT
z0OLKw;!iV+P%<7Sp5JeS87Us!$~NkRk`Nh&=W#mT0EM)O+4^?SODO3BHn&W3RBT%s
zFWB(l$;zyj@vig?I%ud(C@BXf7?(XP;Iu+2{_tlA3LGUVDtNFuQSn#a#?{+66)7AJ
za!WNk!UbMJN=gU;qrM8EW+o(5MOLNxiqRq<vNyE2CX5km3F$#8DP6I!r;=YWy*(o1
zdcMXItl+~D64g^u!eUw6#=GSe#@{9(r6ra_$6Pb4s-p!RVGW%bn^ID`LRyqc${3C`
zj&E!M+4E&(2Y?>3EPfsm=B~3_P<JCGGf*<IQ8Op`!F2erm6FmH>k3Rno8p35j?rXQ
zf_F#6jd3`Lg+rFKAO%Fc54eStlF}Hf=5bQwQF_gyq^Y7LPvUOXZ1rpb-HVjo(Eg5i
zr=jPzW4e!FL0Lcd9NQqnA+A;UOMeqT1eBBjG5v4@u7av8BPBr0B;Z)J!condGnq+7
zN_iNoob+uivYHPVI@-EsX?sRmWuyd&wNY|SvZngF3l&^#89A!7#F%)JDkn!(RYi&4
z^5R;@=I)q=*q`ZbvVt60ja7EGzDjyjWs#h!sEQcU!np7;BhAaRwN=wZD+<h3PNFq5
z(VDzyPNL;kVrT~R#=8z)j3*{j@`M@~A7#X)5Bk@tK3i?nWXHiKrM`8!Yk798&WR}y
zMDSrUPl~f(#6$>}-AgkTXXAfPOoRBgsHET$zNRuim%W_{Da7;$rY%@?m;~o%tB#l|
z`K-3jkpK*PC7{;zTm`|^|6kzVzZ;hm6DB*py>R&(+=;$ckkTd2PLY{V^skCb8!>Zc
zj=dnIOpwEJa~Ldd(89=qk`if?wtyz@qarPaDDPMo)g`1+R<drm_I=w|Rdl^Z3&67*
zyIbzoC7!vSW2{=iZOF7uK}o5!S<!V}P(9|fFoY067zHhiecyvHC`pZ$4YLM(XV_=y
zZqId7$CBocsVL`^wXN1w#`kvNTe|Qb#yP9(zAn<1Jm%|Q;z7*O>qWqdzoMddC5F5+
z`!iqIcHh)k&c(WKTmTe%Cp-1rxBS^Z24$Chlv@sVV|o6+a3yMbS7J<gyQal6eLjzS
zD(+8Fh;7xy(6{R@)93wo%&Kj>d0J(jkEPuC*Oln;ug0i^-d+MwG_)?m(E?}rZA*&<
zkGkm+x@8o%Tu$bpM+0!QcIjOz+HJO_OVc%#ZTYyLZxH2`;Faj6B`;E&cNyzvcCXZ`
z(p$a>BcJzuyX*T_?BjENh-~fd-8vuR{bYkE6MC1S>lttF9ZF$Qbm?>ItJ`>Vx>#Yj
zL)J1WvvObe{m#>Ixykm~mhS9jNa<aMLA$A{s%*}ywbysWSG(;lWny}=Zse+ZTJ@+j
zHkd*c!@$g@*xAdF(Yp*2tbJ~7OM6>e{z&gxJEPjhl&{Sg-?Q7@6<xkdxo#p)Q+QY?
z;p}A~CFj~9Vq%@xiL9w4CG5a2^|x7wv@1(mAWc>WW$0x^jH9T75}%TkteWIF^jY{)
z<C2s*60DnhW?tV-Y^L|O!d9d-jxe4FMIFYm@H(nU2^P)!5u#@A*V|%n_+6Ro*bK3D
z@@+6u5=6UJgInCPK;J7K<wcU87=S8L!oqaU^!5nZU0#ur21Y$MRK_vy+}j|eB*ANu
zQdXXw*{w=yP-T63Hn$?B73^)8PE1Wyqy&RA#!n}iuSw1c#Oep8xD&j4J8P&&sfT@V
zw`Jc$LPJeTHauc8^rj60p`;a1Ut2sDQ=d6t$$d>p9dy|>t*%KQWo6e#c>-C~Ldv4F
z$x<j-eucj9Gez0;x`TGN>2A~3@9r5+Ocm9XBt*yjrVwM}?ojVHOG+971s&)kHbG_;
zbwP?m=8@r#6Ed}?q#wE=`rHr~y^^J9)#`D?Nmisqi9M}3vt6#PNP!|1_KLj8PBGQA
znE0+34+-@RDGqFgb$GhoTuH%bEFzZEvImcLc1Vb=K02XXKM21pJs<`)q(sKVxQwi}
z@#jjZw_#FhFh&Us<XUZTq7i1as4TX<kU7hSlyI1!o6|ateR+9ka@&wn5R<|fum;Q+
zHKc?CA8f}Zmo1YsGyKUlWA^KZph_a876kJPKDD|rgNgdvETmL|;2TKZDIxOw%vRBc
zlxFxgo_+~f^QB-n0meiuy#<Hz<Vs3Us2)?<*IsPHnFQ-`Pe|B=ly_;Td;~ENy|!=E
zWpj;<Ypul;o-b;}swhserUY4cZ}4Ly%pm!|yO;SxoHTWmmr>o|MaWM$3nZj$P_g_g
zp8Bfs6HT6l-_lJ;*`j(ZtU;zD!M;^v=c_UJu0TS{F%@6*uCu)5g2%(#(~Jozztm1?
z4a%(A+h?n|mGH1Jn75fo=@ShS-<9q)Z<?k>eWvM=QY-pcEh=Peecys(NW37WRUEcJ
zX~j{bWpyG5lJZvl231|pASD!$u*A)^IfF$>cl0qExSpRy*`)ayHATu-)$hk+PYvFo
zsDo2jIVmhVsvxhWgp_q^ue#{-_8=<SI*Boi4+3CDu(!ENT3p^Iz;8HInm=Cy)ax-F
z#-130Ng1jlqVtTt4aO~k4O}wpW35)$#e!NUC56#DhG#1JDf|WjDO=UvZPN_*a2it9
zs=&;_x(<xNcD5i=8>Ih88LC3dj=HL=koC0*DMM9&=xZ5MG^xc~HMAk&j+BuqGJS1_
zkNn!KV5XcVlYbxp6TwuJGzAEmofu?EIirG9dQr|qN_P|Qu{-Tpq<9qm0b20_Z^Kbi
z5MWl;!OFDdof90n1Rvf<qNEzYn(PjZQj4i=$?FrtEhX^)59~}zk0Hh_2`Nj|feF@v
z5X`IAUM*a5ROM?>CPm5=b?Cv|^YHdY$^dof&2Zy81l3AL3*<J;JE%Pfg_2kpU{+4B
z1vY3=+Oc@h0C*z*vE{Y?Gyt$51t`?QBxKF?#Qb+c%I$OjEl1@8!rK^>lmh;8jO+Z+
zd7bHL*g3eHR#{#<U7xyFNy_YW;3Jm?Uo$)gho|sZ-jJe_Oqzl5r{T|*naydpgsllo
zNV%L2N`vv`T)4)XiVRy?7B0<68J!~AVwDmhR$>V$Q&S|d8s9cx-5O79;XPX<<EQ2V
zNV%H&aX2dStgLFkzprJz(xHPFDOb}$tI=q8=D`ICDL2!>OqxwBJg}2;E*;!#Cbv9%
zM-u(pD3tWY$e!A9xrN^UBIQjw0`rl33t2s!ka8j&!RP0n3*jIhRnPkVwRbsaSR!Rb
zI!?FgaAzVLDf`ipFCe8**opizsamDx_ib<!QXZtE5<N(*u%K#ZGBU1RUXL*imw2Qs
zMn|PbP|o-n8o%D?L`$S38b+<$nk3P-@im&1jYh78@e7Ar?jIj6u;#*&4^oz-qju{G
zgHW2Yps7z%&ZHBQ+zea?O?{Gb7M-AH2eV$2_n5+e{Wwo-UX{~lat>0qp%Vz9qL=WC
z7Nw<s?we<xeF!-N*-(XaC_SRrc9Lkwi#A>c{4nTio}SuzK+5~mPi*_b^WGP913h3X
zZdo_C?qyCA_ep*)U1^4~$Oaa(W%bWnL%|#pfk^p%BD!O%U_lXxlx61x3zLGmBs|R|
z<-Iw<bHdQ+aF{EK)EhlC^{F05Nv%v{*H7(34kuO-lXBFYZhGni+{_YEcAC?C&7&mE
zPIMtsqGVp~DyULOX%0+O{Bv@$<m6*96H?}yUs!2+J&Q%kWAh8EN{iE22{A08MlLH`
znttfUZE8=%Zc<L0lVyWA>@#jzd%R7OktFeswQr-4QV7<vH5QQt4x?sEP%A5F0j<U_
z!7|F(>GRoVX_+_vM1I!$WUwG5BivdB?SvrZvpF5{;JSI-hZtO}^!PRnDHU<7YMl;)
z2dI!u%cQI|r>A4bwuxB7+Y@l4tTlO`#*Y>xpZEf?Gx7X(D<kEw$uT<}nc%XAr=Jj+
zTpKVSLdt2A%Rxmwc$*k~L~YQDSyINCFCeQ?AmAA~^S(V^Ldre!f8cQT2;nJ+@#qEm
z__sDUwLv*7DI?8)fU?~l1XWRndYB-lniiABV`0Ice%mA!6!98TP{uN!MEHpe2@yYI
zMMKI?ljC=d`T+)RSHCRtWwZkZh0y?-_saN{Jt1D|2`N)euH24AI8NMhAmyvcjeO0o
z?YxJ&4#J@%DQ@iO0oJ;{mf@<8l(ps!m}IhF@esXpf!gBCN)b{Pn>Vod+F0#9tnkHa
z<;cs;fVsE9D2a@l!b<Bm5DPn1SrsWJrzITG!+Vbh(NIzsH-GDRntRimGm*R@g*0JV
zXMk{^l$4|9%?a+z!VI6%Dma>_q<l1Q4o_s%B;Vf<mXb2boSEg=$^_&372>S-;SFkX
z8F{LJHb+T8%)MAb68Dsp*X0cIxiBuyYz<9G8D7p{on{!Ht|x+9MGDAuT5%!VgSV*V
zqO?j*7+$8N3@>MgFJBYSk>h8#LZqa8F9ow~iIn84x*<+@g^@D86zuSsQ`Ac9@S6s+
z@Tiw8UUlozcsXL;zYR!9O9<#k&@V@BxAx4!!1c2GCzr4l|Lu6MHg52v{L3Ovzm1!c
z!rib*s#P<0ci^JDtj`1&QYM)K4#gjeFAJ8_MMar3XV56A5C6>dR?V<(T)*by)b-l<
zeIRSxVmN)9tsup=0ZPRli~d|d8yUP@F(qZ5DO4F@;eDom!-Gsz=1pGJd3L5zQc@}l
z^Fto*W^92tqDvFLXD%gWnz`Ux?a?ke=JIWjh8D==>NE+L#-!{redh8xNY^Kv#Zyvt
znaCu;k5u7RloG>{U|-LPIKl%tDbLJ>J)Jl#JAp$<ODr&IXo1gwHHGPAaxG7cNTfV7
z7m)ol+*WZWI+Ub<EbA~0`E;W8assj{DVr?G)2a-@tBB!^Ot8n9P*D>DT39z5u22*?
zbNUtsDgR8QgGHP6bpz*w*dt}7xxn$NG&6gP4toZRl&;`R4#005dcU<^u)SMZw{9o)
z9HykqH5V?JoS5FcXFvYWHzq=Q7%8L8g=^JvYepNc2T9p&E~;CbYj|`gWv%J`LD|64
zc!8<sbzax?sqREdX{e0@o(ZKPBAgI}q#QRF*Umhi)_4WYcsKE&2ti6=9FadJO0IcP
z=J>5>vi#g`qm-1<=5l;JbiqHB#jP=Blkf77^4FAXJ0htJM0t_tu`hhDfh{3@i<G&h
z-}5#I{)h&Rzlt#R@^$5%G=k7lT4+zuD#By^J*QVMYs!<ojFj7^ggyH91h^=P(kx2P
zh7nS(n+S+y{k&V~>#$Xing4fnXS*dS%B9gO(og}#tC@B9P>E160ORZG2O_Iyy4LD>
zd&EDdva+kPIx@1{qVRyQQS<v}WNNj~6GH^3Y@F*5-rr{o>_nrD%E-B{!h5-b)Y`A3
z*TH2K5~dttr8Fy~{&OjZ!w<|+c{#1J4=<%ZbN^t<8+J%rug-RN!7OK{eWDU`eyKER
zSw*r~Fa-@ed1>AFf&4x(DkZ1AE#+qoWjb8zz`e`#BMu{BiWBy`Vy<J&i6X+39)4}+
zsnfimCAF$`m3132)J%02Q;V9Z$ztj-GqEfrjv1-TLh3Oi^*KnWyqU2rT1VZa;iUY@
z;iz<&F*T&V--%F%%8B_`MvZ;i_#=Grvts?bEAyFgXjGoet^Db;CpJ0fEVw{r#{3P(
zXW=lUI3r}?v`BHT_bi+aDbD=N!r@49tjogbvEsaQa8Q{s|BiEiWZ~3EaUMDgr@@L7
zvT(4bg6E!vgEbYrL>3ORRN%GyO1r}AlZAsS6{N{3MP2bCjD;LNpTcbUGgwebFn=i0
z!J6C-9x4rH;`w=^Cv|csWdWfI2@tMkS>B`}XL{kNte6|TH<-VZM$@`q58pLwezPG9
zt^PC6ro#(GQF$^qxxiS)A1-%cWLj!?7zb5=ur5?}0dmN%$x(SS6HuD)IvIHAaWr|;
z%TcK^H@8pwFnkv$d;eX*%j*-98c-=Sw_Ow!<)j_75cMEwJ4m3wWz#S{bgBWuOV?yw
zmmM<Bn$)7ARSg3G)s*)@W!+Zse`?A^yah8kIX2Etb-dvUK(=&{1UTtw1+-FJRJF=3
z&mI|PQwyzuHj2j594gI;V1%@y2TA&>f=o_S>dh}FuWG`2)d<a~7!>cSx+YEAv^w6k
z9m(aak#Ul$Z>x%Fp+VDz)Vz^W@xE;tYpLSd<=G(Pq%E+4w}kS@2~vw#xV5UAHmPI!
zKDQo1<?8%$3RRP~ZdJu)Y+@wudkVURiV4Ny*SVY&87HfUc$F$G8bT<mD&7yW2G&%%
z)v9M*E+<3A*)lHq(ABXG)v?B{V)3?Iwu-j86P#q<pV;zH%NtNcv`qDsk}ftVb>C42
zpowG=H<uGz9_pH=Ybv4Ju4c6E8>s855se%w&J?NITuy9xs8bbdMQkeD82>m+%_(D~
zZK^@Hjm*yp*zyo(l7pnNAepAM>O?hwYGNen0NQ@YEKgEl%R{^)gKU9lC3;%Nuj+1K
zRbSUC_FY)bb2+i)A>eiFs0cA|!f7iw@IKyLOfey1sBec{PHcGyKv1D$eyKY_wTuk{
zt2<z<QzC|<rpe{RmWKo|sAwzOJ~k&!gso`ok;d+}fY{8?DwmU@<7`>iQlLu5oDkbj
zK{<~xx9Vdg(mI<HTON|Emjl&3t3*v>EbZ06d0XqY5~St5%H_nChjgu}ssxQ4F%|n^
zeIFasin18&dCv!teSc!hLz;2M;w`CSB}<uzm2Slc)<A4rAlANhE+@7;Gz@8ygNn^)
zLuo^y2Q4{?F+p=mfzez}TzM!SKs@+4zQdV_u{pC!v%!2~H7G&lK)u5-nAeXeG-HsR
zpz@vGg%4^_kOhJ%(A+osT*IVS{d`ZL9<WNCcE`z{>q}6{OdVW{V4mQN$zD@KP&rJ~
zenzo|2*qY+Bh#Ar71X4ijs=(hl!u^lnZ^S#`YEjUCkhQyEOEp58Z&0}5LBj8X8_({
z7g)3E1x&fZSx^gXr7$bFx6;Xyk*>2Gt{xRvB$}+9)ok@>&d6j5Dru>+`)5*6k@5zM
zFrOs}xlSzCAgJ`E&R<`j9PbuEr7d;gy_@|V#^FSMKqW18d%B<YUHw=5nCIkYp3d3`
z2`Z1N+m(YtPIgyQT11`Q;G$BPrrDXW6uxP)3J6nn@bRVFEeoSVg>m&z8o3{);HW5O
za4;>PI^LeRS9(-TYk)PryjfKaKBSl9&&s*tP$@}$THm<>SP<fbXN8~=l18XExG<S=
zza0j_loh;$*jFvUE$<?2_*&Yv7-p?+IlWg@_EE2f$0+1Ov@Jh#*<nfvUPIaHMi0~L
zQ|i66ZamC`Dj#U+#On8LvoW*wXNsxCg|$0f{MwCaDPRv%WD~<|pBc>*DhX-YcU`-(
zaW|4xP8=W0_VQg83##~_Lwd6nCS!R6K_waW`W5u7M+eL6^~zr2Ku`%reeBk0>*DKO
zU7x7vP^m>D)U&9oIv&+I-6lch6a9rns-B<4qWG}diqW%J3?WwAva?t%GA#dIWpe)f
zG*n5>w68{f9XV;t)o&p6nYsj3u$Z)4zPobH5On<GQ3&w2*sPVoz2$6oHOy%%%N$Tt
zsbjKYGNGX?f8+v{bTk5OX83j29o=J&pfZgnlyI{-+m;hln$h$mtuSj54>&FUZ%<_o
zRKn5!lPtH^N97*%W_f+x6HY4=k2M7U`Q%4nR31`)o&5Fcd2{AcM3p>lW}b_*O;#2P
zs<d%?$GfTHr-M8y`>0=H1AB!<d;cH}KOvzYs1&5$%2zqR4>O=j4I8+7sSiJhLS-5C
zo00Fy25If=?Y@<sl)Eo9_)t_8D@Cly#S9-UvYvpV@{cAFNQ`-N&iE24^Qia37(dU{
z2B<8f-uv>_#}CHNOvOQ^8uh`hdI1;AT31zls;p2&hT!5`ot?9$8KLrx`u%3~It;No
zD3vw$9f~pb&sT{3+46C?ABajm`h6tj!uLUr3GbfQr#xc>m5MaLd`tiRj4JW|#P;I^
zm6SBZ%kN%so<FXFN=h1ppG)yB>>8u%ayadwGLi-f@#{5ye+jZk{n?zW4V9HN=xe-(
zV$J7O77IbeGV4(;<)RN`P;3|umTT<r8JWMwJwat8{flaQWnE`2LKLrGF$C?KKT$*-
zGOmxFm%==>&Y50`N<<oIzJ+AQ6=qucu}I&Lb@BDMuwwj%qE7qz_9w@=P)SMumyA|~
zoF%Jql94`Mim{jBbj}uIgf}R$+P*zI$$;ZZ5<b*_4MW6gomLgA&J0VS5|xIrm~Cvi
zmaK9@6)JAwR>t4_txOL+53`_3751j(TAJe}(jlW*O_AK9Csq)n@`?ugbo!~XmS>?7
zhlcG5^E~UU5QIt%8r<$fg3+P)=v8T-wWtY|1~lvs1J}H5EeR^oXLwx2-Mk;=xVyuB
z2vjQ1@RU<1!_zEQm>6s1VH#BJ{s|6Dt^TgnJHN|~%DK7EAx)1=dk5MX))Rw0s1%#~
zHtD1d82RZ1&Zv}{k?X5N7|m+kcSCOjvp4at{dv$H8|bWxc{Zb6&$3Ze9?d=8YB}8n
zipr9?`|Vp4g&c36+kV?JW;9S#KFt3i`c55$m&%abP*mp2--(3tSws{qk(xpl5kpHf
zYMn*Yq9vMQ*C>amLrY{HHj9X(CAwZ;SwuZrqQ&KGMNI1oFVW+ZMO33D+V5i)5#G%3
z7)2Hl-pue6k1Qg*nc;oUD<f=~L8ab$MpvkA@qvUa5Nrt{%>*=3f3LE??`K&Wb(jrR
zR`}Qj)HSQiib^Q?(8`oGqeWAZqVBt*rgbSd2b;;6d`3}8B_HGBmYkXml|1rsyFJuR
z$z{o(PD@dFBp-8KewUcPy<U&6?4_s_k`F7=u%mv#==OrrisnCLrKr@A5BCUb*6o8S
z7(DBe)iq_TKQUQ^qEbdaAs({vA<5jcDuWIc%=eM8GBB>mOenL6I69&qSC`6udPGr4
zB;$LEdEf3%EY+>pSL2_sov7$gnIzMO2w@&$R>&c#agqF`bs-hupA*a5C@P)g^H#n-
zkt54ZNKyGCpH^Mn!x?X0@>KayR8XmDEflz0ao@FG3)b|y{8<U+S^DTtHNdF!lD}vt
zqf{gvTzs_<K>G4+A9^+&JvB3xqH<3DV*OsFV1HV(Gi<1`hlkSo<!)D<s+Ekc2rBL5
z^ZVi9*RN$+e3HDJXr(blkn}tzEeXzR0#J!4U(@w<yJlQ&sLYcu^D=OapL<U8g~~Vi
zhRNELobG#=tTUgl3h%^t3o7m8dtb+(H93<uPzfhLFp5~iEjCPggi@`3)FG=@z?3RJ
z#sP%l2Fn)z1@NX2+6%LWxqQ7phtV*Fh|g;-r4XwSvRvP?T#na#m~zACv)QbNfT(<t
z3IdEK<@4Vwgzp=7Xa4rB7t*)&5bJDxSG*Eb6WQ>gW0DGJd81UzhrXP`G9Nx8m?Fm4
zqn;w}e?A$z7FRNn>rqxzM#>R_e!{yn+u(l_TKp4n`lgG3;pVh~`62ezeN5Zj^yK1K
z%DrKpuPeEB;o}JNj@jwcFt^Ul?J@iHe)vpb$~n_g{(a5FKb@aND|^^DMp5Z6ab5?g
zHVf0j!K!}q<Neb~qV4m#z1?9}`UkT1bsBs>jLQB%RH+u#)4C@h4)eBuAn!`vrrX-X
ztlb~T`f$45G8%ML?#|yP)%+9X#-D9}m=V`rW`h>6-b%a9|CzO}I#%}=*;kbF3x#^9
zsBVjz)m=dwMhg%MilG9n`JgKhhffSHU#QgJmL&3D-^)6O_rFJa84vj~+nc{E=5S+$
zOCXv7ze{~_CR{dixXXgeIeMJ^Zq~(yOK|&bw%a9bG=BILkU#qr1P4!{FYCUBce)3T
zp8)!2pMcjsUuOM^g})x|w&3!fPIeFRGmUNjJGQr%*wDALgU5b3%#BKt`d#-qT074A
z-?<+~KQH4nPHG(Dr@Tyd(Z^2!s_DgU{*;6Jm-~D^EHkI5l&a}TYZ{gMf85gkl6J26
hC78Xm5{S{_6F#5tYR2Og+}~o~e*-o6uf5ZZ0RTmb?o0px

literal 0
HcmV?d00001

diff --git a/phishing-filter-splunk.csv b/phishing-filter-splunk.csv
new file mode 100644
index 000000000..3dfaa668c
--- /dev/null
+++ b/phishing-filter-splunk.csv
@@ -0,0 +1,476 @@
+# Title: Phishing URL Splunk Lookup
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+"host","path","message","updated"
+"1nvest.bigbantbaz.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"25116414.cc","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"365365news.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"365f09.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"750115.cc","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"823pages.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"95564339.awi.za.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"999fc.vip","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"a.yyyy.cf","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"aaaa.whilefish.xyz","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"accounts-microsoft365.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"accounts.0ffice365.support","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"aidanochka-tabys.kz","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"airbnb-clone-sahinur.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"akbarinewv2.morteza638n.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"alaindemeuron.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"alexa81o.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"alienv2ray.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"allegr0llokalne753724pl.art","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"allhrteam.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"amazon-clone-by-sudip.netlify.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ammuvicm.work","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"amyr.iran-cyber-net.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"antaidossiersuivamendimpayeerf33.zynekcctv.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"anuragrauniyar.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"appeal-voilation-policy-issues.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"apple-id.cc","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"apri.154-203-197-141.cprapid.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"arvestcreditcard.embarkdigitalonboarding.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"asdfjeiod.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ashleyproberts.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"astounding-trifle-b88a2b.netlify.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-101397.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-102641.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-107756-104508.square.site","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-108102.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-108651.square.site","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-mail-101246.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-mail-105533.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-mail-109459.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-servicce-mail.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-sign-in-107078.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"att-yahoo-mail-105061.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"attcom-101415.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"attinc-101356.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"attmailonlineaccountupdate.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"attnet-100294.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"attonlineservicesa.wixstudio.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"attonlineservicesa.wixstudio.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"attweadminservices.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"auth-sharepoint-asr.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"avertisystems.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"b35ccc.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"b35lll.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"b35www.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bbf-alpha.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bet365t3.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bet938y.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bet958c.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bhngfd3.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"blackdasblacks.shop","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"blsckdagsever.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bridge-9wdpjmsoa.pancake.run","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"brubreumummeddoi-4514.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bscusdty.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bsozvycr.icu","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bt-102368.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bt-106861.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"btjfh.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bussinessaccounthelppage.click","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bwfujmww.icu","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"bx.sfdsb.icu","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"c.cting365k.cc","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"can-post.cyou","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"celery.sa.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"cen4-six.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"cf-worker-pages-proxy.1352562939.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"cf.13084493.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"cf.iwoai.cc","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"cfcf-8.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"cfr-reed-taxi-wayne.trycloudflare.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"chain-trt.online","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"chainsolapprove.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"chat-wa.xyz","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"check282.tempisite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"chore.pink","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ciftcininbankasiziraatbankasi.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"claudiorojas.cl","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"clivenicoll44.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"cloudflare-workers-pages-vless-a2j.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"codt.digitasianetwork.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"coinbase-com-18690.subttrepimop1005.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"coinbasewallet-verification.198-46-89-184.cprapid.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"company0rder943.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"completar-la-verificacion.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"conductibili.fun","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"correosprepago.bnext.es","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"crenadenuddoi-2258.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"cryptorectification.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"currently5267.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"currently70.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"currentlyatt909.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"d.afirkz56924.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"dio.azrealonce.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ditgong.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"doc-online-1881.on.fleek.co","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"docsignauthorizationrequest.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"docusign.com.bestfinancebroker.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"duang-5dh.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"duvhkeq.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"easyaccesscommagebn.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ebay8787.shop","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ee-account-home.web.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ee-service-help.web.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ee-service-portal.web.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"eln3.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"enormous-orchid-howler.glitch.me","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"espaceparticulier.life","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ets3qe9ooms8t6i8.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"excelorgo.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"falabellacom.dominiquepg.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"fdesq4.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"fdsfjiwe.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"fdsjfkweow.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"fekoulamevebouna.freewebhostmost.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"felomane390.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ferngos.de","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"fieg.84yr483rhfwieujro348ur84.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"figinstenatecom.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"finansfaizsizbasvurum.online","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"forested-mirage-samba.glitch.me","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"formtools.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"fortradesetup.hamidamnaie.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"free-5436781.webadorsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"frogsrus.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"fshraha.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"fukshumx.world","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"gazruinv.web.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"geaoolsv.pink","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"geminiwallete.godaddysites.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ghjhyu.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"gimennlouin.gitbook.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"goldenrod-rowan-submarine.glitch.me","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"gorgeoushome67.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"group11-vvip-hot-girls-combi.viplch.online","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"gruppeflorian.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hanisfir.shop","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hedayatfreedom.hedayatkhakpour.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hello-world-morning.freekite.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hello-world-muddy-cloud-f45b.mfoster0425.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"heluapla.shop","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hemanlau1.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hezhouruan.552008598.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hgcdhbxnf.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hjrhd.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hk04-123.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hkmqo.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"home-100317.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"home-102207.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"home-107257.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"homelogin7t6sdfcgvhb.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"htaflytz.baby","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"htaflytz.black","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"httap.l-teiegram.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"httpsbellsouthnet-102649sitecom.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hup6r.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hy.fuckgwf.eu.org","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hypophysecto.fun","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hzuayvvl.red","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"id2.xbenihime.us.kg","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ikergalindez.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"info-delivery-bg.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"info-trackingcs.cc","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"info-trackingiax.cc","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"informed.deliveryhbo.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"informed.deliverytcw.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"informed.deliveryxs.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"infringement-service.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"instagram-clone-in.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"interbenefitprestaciones.referidosweb.click","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"iouwerty.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"isnworldwide88.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"jaydeep8806.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"jeanandpeterwilkin.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"jetconstructionsgroup.com.au","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"joeandvelma.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"journey-x-pro.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"jsdfchkdsds.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"jshattkee.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"juliusmasih27.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"jung-sohn.de","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"katiebllair.wixstudio.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"katiebllair.wixstudio.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"kdlmo.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"kenzmail0.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ketura2010.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"keucroilluxibrou-2718.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"kuconlogin-ui.godaddysites.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"latam-onipojes.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"layanan-bntuan-resmi-dna.prbu2.my.id","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ledger-com-updatefirmware.aparecidovisentin.com.br","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"levappoprauqueu-4688.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"leyoixoimmecou-5619.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"linkbokepviralindo009.vipp.blog","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"liveairdclazmersn.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"lo6-cas-projects-64947843.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"maatamicklogginns.gitbook.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"madebybmr.in","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"madhu821.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"mailupdate87.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"maine619.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"mainnetverify.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"mazulyta.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"megrebeikenneu-2106.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"mendhfjpl.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"metacareer.com-case37169314276.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"metagalaxy.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"metamacksiologus.godaddysites.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"metemrsblogin.gitbook.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"meyetamaskiwalt.gitbook.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"mianfeijiedian.lawcpacpv.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"milanharvestfestival.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"mirobitsgt.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"mocp90.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"mostafa2.mehdi84888.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"movie-firebase.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"mubki.hp.peraichi.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"my-site-104564-105934.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"myaccountsignup.net","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"navy-nose-4544.typedream.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"net-flix-front-end.netlify.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"netzero-webmail-105996.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"new-currently-1-23-24.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"newattupdatemailboxkidlyverifynow.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"nfty-proj5.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"nnbsscnaceesngsetr.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"occinamete.cfd","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"odovsccs.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"officalourtime.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"office36503.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ohscorgza.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"okm.znt.temporary.site","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"oliver752.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"online-e-commerce10.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"online-e-commerce11.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"online-e-commerce12.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"online-e-commerce5.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"online-e-commerce7.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"online-e-commerce9.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"orange234.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"orgmail.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ourtime.datings-information.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfocl.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfocs.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfoga.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfojq.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfolw.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfoor.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfooy.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfoqv.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfove.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfovt.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfowu.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.updateinfoxb.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"p.usertracktxz.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pages-108-tg-cfzz-ip.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pages.tempisite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pageverifycenter.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"patjimmy323.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"paypalloginin-usa.blogspot.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"paypalloginin-usa.blogspot.hr","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pcmag.anycubic.vip","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"port01-acf.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"portal.chiaveggies.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pruhuffopraussou-5681.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-2801359d2be54bfd8701132626efeb73.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-3096005ebeae423182ccd89665564d8a.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-46a5f86348ae4aceb3591d126020999f.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-51f896deb233450089fc1a520e6ed957.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-682ad3b65d944376b919745aae3c56d4.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-722720be67154192a1102b2cf085d306.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-7d056bfeb6b04852801553620fe62c0a.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-873fc6a3edb941c6a17f50911dfca518.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-aab4be29317b4ec296517a557db12622.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-ba5a046c69974217b0431bca4ba43740.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-c59cf4e950b142949df8861e60b3689d.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-e5855431d98545b38408f52af50ab8a1.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"pub-ff0271d87324424a9aec83337e844a54.r2.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"puertaselectricasprincipal.netlify.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"qaffixledger.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"qbstdfda.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"qpownthenewyhadvanceweb.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"raj-tiwarii.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"restrict-policy-nonadherence.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"reviewboss.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rfgxg.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"riaayaoman.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"roadmap.binarydesignhub.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"robinhooldloegins.gitbook.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rouzhda03.kambizmedia.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rsjxzl.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rtyuiuytgf.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rubinhuud____llginnh.godaddysites.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rudra-choudhary.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"s.team-s22.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sadekk.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sajsa.icu","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"salarahmad786.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"santanderpod.fsthosting.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"satinnaaoabbs.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"satyarthi.uk","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"scarce-army-wide.on-fleek.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sdfvgbcvb668.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sea.6e2efhxz.eu.org","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"secrbnsuppotyu9.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"secure-ledger-m-auth.webflow.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"server.2rk3.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"server.pxs7.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"setshinobi.vip","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sextelegramxxx.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shareorder711.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shaw-101342.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shaw-103098.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shaw-106054.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shaw-106665.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shawsyncmailservercommunicationworkspace.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sherman-relate-rev-baskets.trycloudflare.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shobhit245.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shopifysite.cn","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shoptkoo.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sign-in-att-108611.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sign-in-att-108611.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"simxtrackredirecttszz.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sjhsjjs82.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"skill-meta.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sky-107842.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"smithjamessv328.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"socx.ly","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sparq.eu","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"spicyhotcoolsoup.s3.us-east-005.backblazeb2.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"spotifyl.vip","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ssfgsfg.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sss.k999955.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"stonemartin1001.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"stringroll.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sukienffvip.doiqua-garena.io.vn","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"supportsecurity981.tempisite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"talktalkserver897.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tareq088.github.io","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tbsl.by-on28.my","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tcaconnect.ac-page.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tejlksdoisd.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telegcm.me","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telegramjessica.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telegrampx.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telegramsexgroups.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telezelm-ivee.icu","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telgramsignal4.sg-host.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telstra-102379.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telstra-104033.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telstra-104394.square.site","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"telstra-106968.weeblysite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"test1.workersdev40050.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tg-logrom.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tktk.tktsk.shop","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tokecn.im","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tokeni-1601.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"towrewds.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tpwalllet.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"trustwallet-zendesk.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tuviaje10.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"tvjbqiyv.guru","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"twcht.twimobie.cc","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"twimobie.cc","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"uedy.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ultsyncingsolana.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"upheldlog8.godaddysites.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"upholdloginorofficialsigin9.godaddysites.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"upholld-lligon.godaddysites.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usol.shop","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-cgkzkukp.vip","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackaxd.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackbrs.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackdht.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackgee.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackhsk.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackivo.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackjjx.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackmra.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackmvz.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackuqg.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackvgb.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackwbv.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"usps.com-trackyqb.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"uspsdana.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"uspsdant.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"uspsservicetrack.blogspot.co.id","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"uzomadj.shop","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"vedi.154-203-197-141.cprapid.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"vgmrm.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"vkkvdkdcmm.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"vl1.spaceysen.cn","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"vobroffexagru-4404.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"vrvtn.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"w1.5114559.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"waassistance.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"wallet-diagnostic.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"walletsecured.pages.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"web-lupqrbm0k-uniswap.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"web.tlgrm.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"webmailserv3038z.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"wk.xzte.eu.org","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"wodjrvrisixc.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"worker-dark-queen-529e.servers5555599.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"worker-hidden-frost-ba39.yoveli7450.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"worker-site.aopages.workers.dev","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"wsa.osmqone.org.cn","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"wwwwwwsasasasasmmmsszz.vercel.app","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"x.tovip.eu.org","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"xhjxkj.cn","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"xixiajiaju.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"yahoomailquthorization.weebly.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"yungtee3.wixsite.com","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"zagbasamothega.dnsget.org","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ziraat-kampanyasi-besbintl.xyz","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"zxl.cbbnbbc.nyc.mn","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"zzpov.top","","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"datagivers.com","/3961f442eqd80b4e3c28f75c4ba682dd68f9.html","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"flow.page","/uebj3h3j","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"gateway.ipfs.io","/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"hm.ru","/medoeu","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"ipfs.io","/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rebrand.ly","/46wjpyr","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rebrand.ly","/910428","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rebrand.ly","/cdmd94193ab","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rebrand.ly","/n3yi7p6","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"rebrand.ly","/vre1p3j","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"s.id","/p8w69","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"safebank.onl","/107519/c90488/4a1f04e6-1517-4254-abda-f0aee8fe0ab9","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"scearmcommnymnlty.com","/cert/loks/mir","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"scearmcommnymnlty.com","/cuce/rit/pil","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"scearmcommnymnlty.com","/qinmot/truklop/poli","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"scearmcommnymnlty.com","/trawbe/nunty/loki","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"scearmcommnymnlty.com","/xul/lex/ponu","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"shoutout.wix.com","/so/e1p6lravu/","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"sites.google.com","/view/ghghdgfdgfc/home/","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"urlz.fr","/tlly","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
+"workflowy.com","/s/att-support/6ca3iebztzztx2gi","phishing-filter phishing website detected","2024-12-06T00:21:00Z"
diff --git a/phishing-filter-splunk.csv.br b/phishing-filter-splunk.csv.br
new file mode 100644
index 0000000000000000000000000000000000000000..3add87df7a8516a989359d65a80922b574ced301
GIT binary patch
literal 6166
zcmV+x80qK2!4`o0t=0G6zBa2HRlny4R}m23x_dW|2RJAxgUO(&{@1kf;MJjnE+Z3Y
zPWN|9Qzz{>Xm+mZq>GZ{Zq_(n4A3DVW@u}jGfdEBK#k!mqlO=Tvo>q9hRtC^K|#TV
z^BAghOLs3s<K^1Ue|=rHxcz?r`uok-&8PLtu;d&3(-C^wzy3Psy&pe*ef`UUytKc6
z)vMowjEoHOpNHXhHvT>g|M}zB*I#`OU$FlEHGWyRzy6fU{L5Vkv34@|pZ)mtmEw*A
zR{Z^IYwf6p3#)GdboN~oAzV<9?BV?T*rDWSr+)nUYN&2Eg6XegbMnWpud-0q-@kG}
z{VBaa`?s&vx2@x=d^2`F&)rL2ANbChb^4dkAji-D@pH?y{rv6c0Xg;ax1X7L^5<_q
z)BTI=&mTX>bYg8(`&C0~8Xns6@$<Kz|9PGLd+6(DX<=@CS!`%fz2a{_^SfvK{PB~C
zag==I)EK<2Ns38|B19Ph^Df5?3tG?2Vi-q}{!+22Xs%WIl?;m~`o6OWA^9{d6fRF6
z$c%t2%i;_@ec=iR(EGk`YTVr>000eELv6by^m9MANp!GTC4D0Ge~~juK`%rd?z~Qk
zwdvrTH~5e=pCAvFw_xxXDLaq``mS`(t8v8_ois5aCnOa%pL(Gu7K4GpQGkBRuA%sZ
z*U4zirQri|Qi)!<>;P1?DhOZ)*AcOooap60{|j{BFA4YoHD=m7aPb*^&^)G-6}TIn
z$$FIsnKFcscL)h*G0lu0fkKI`L)gj?1t{0IB0M>j)eH1ZYPbHdA+;!Yci%6@*iUa_
z@kGJg5AQ;Kfke!$v5<tV{2v@j4ZO{@dMvg36Cx(-;{i8fannSfJK=6jI}cIZrCwky
z(38KRRE>R(10j$z`!E@plIVb|Wb6t^)R}<9+u?*VpZ-2{6r8YOBI7cXk&o0I7furB
zkYr_)sV65i@tD#}<vQIb6SJH~`!saLA?&AW-3xtAP8`-P;C+;=v9#Kvuh*7)%99>Q
zTJbI*(Mkc+P0XdOk#QKOWgd}$B}q}Sm`Ogud(N|vWE{8{6rGM{^bLv9G4%xeV5gE|
zOhg^Qhhr|5aR~`2+l81Wuy)~Mfk|kzRl`EZ8@SU;%dd&}RG7sMvr3ZU!A%Ym+d<aN
z6DG$;TSq<$LihV**iNEc)25kR$uvtdQ4otnk+3<ibzlommQIo`;T2Zs(EcZ_Tc3%+
zjFOtxF66tWC%og+^tKWHWg3H0Ab~nZ-8`{0&-eslbp3UD)B+c7iD1GJZom*Fk&#J)
zaf7wm&NCSX5)mJ>niua!q`NQsy7c+@HbwA|o`f+bjZRG>gn*W~{W$Q8!0iP+26yeL
zzn<gFcVzst3Ar=D&TmrY$zMA9lSOZF-KV)-M@&t6>JL|`3p@D+hEtX7*;2UUrd|(^
zaK6vH%3U1S=>wv;OfvboPX5@B%Pn4OIytrzIEO!DWnLdlJnVVyHw*74h;SZ7IIE8<
zvFCk%_N=wpw<B@B%5-_yv=?d`fg0uE=&hH6fxk{BqG|Xl5=~sgi>IxA%32X`-J<O*
z=yPwfGj_0~<>#GQ>U|m6Y>^ArxS7E2@SgLL*^8f{rssW~@A5vywLZruOow@!W53t;
zX(`!Q@cM0hszDg`Y<7OFw<+R4_r^&>N|U^f>w0^(##hphmi=uh*_FP{^E~Z*K5Ths
zf3)-J48rz+S$&?LmOpdhf{84ggL-CwrOXWv%j+xZ*P;D~y(hh6tk!2efxo8Ly9>jw
zl#VlS#_-cnB2?NDF(q6NS7>B`Gip<_>Md-`q;9-|gfif@Ev?Q@EL9~att`~9i%O-v
zDEN=myVmOl2X6nzl;Z7*WV!6|iZug0AQ{+^mYxU=d0iLmvB!wkW>2^nc_H^tHNDz)
zOH-pn*ZiEfDb$<(tQa&RC#gUYVJg*3(>dK<ZX52`y4N~&nbt|4@)k*jKc_ksAZH(4
zuD{}S9a{f<Xmz$~#4%&2X+Eu!6gw;WS25GT=3%sClExA~;zTquAZ(c!3g81;F)Qhw
zhT+1}U)#GeEwM1pJr@QT`d+DxnmcEok1$}lX%(yo&S2uC`cE@<(l{a%%1MLY|Hx7D
z=ceN%n2>Cl7Lid*8b`-zP@FFl4R`#N!53lIoN+{Ti{IC{LJFcK4L+V+a3`d#+^ZhR
z0*e@@JYBqjPo$MbIW|DZ-&}LJG8fpLm|5Q0ppgsaQ%b3=W{OeONwa*%<r}l*g7g@*
zpKrWt#wVY&3onK0A72344}cPo2L-~Ql>CB9O~4&{{>0=>4uNy=+Ew)@Y2c>yoSk}(
z))8Q@BKlaijmkSuRS)`&fK6PMOF&hTu-=DVC6|HLu3Ia3_?VAz7zFL?QtEg~Bif=p
zkB*BXToSdAQE>@#qB0t|p;#;npN4}(=8Av~3JH+JBL=SbeO6Akn|7T~aG`DrbnQwF
z=eb@13iX<)*1{D+vC_DpU;>M&&#$awOepvprrbx%1x+hxILEu_Mg84-;TBBJ1u7-N
zcOLFM2dyo`@*01Zg7am6gj^VJRY*Qm!&6X0grmV*No~z~Cy&`|$PlXEkWs0T=0sgU
z+^NZQNM20Bs3sTxR05^E&aSp9SKDklP0Fi`YWyeW1bX2?29+EPT8Fd}VYiOhZ?>P?
zj&JN_?V)WZN|U2ij6u3h3J_|z)vRWo-YG=F+Q^CV3^9>miq0HSb)rDRJAtJ^3eL<R
zyow8Hs#Fc8Tw;`bGRehk-jXd}0SjG&IR_IOCtt~xU~(LfCH1s=@K~r34aP&C!&av^
zE;+}ln)I{a0O7}A$YoVZm^rXaDgv}>*IaIGhy1(a(HnTpS*&lKF9CA4x|hFj3z4la
zw_lhq)cfF`dw_^1#-%BMT6C2cYP+O7^4V|*hA-p@38!V4Keil}wB`c}vW<ZrSE~43
zxSGo5E|2|H^2AjyYHZc%{OVI}n4n=5Kr5p(MCeu3fq$xhG}N<~9{Eb8%f$}2ZAtV6
zR%;PyQA0DTB5YaIat>-ZWGOo<5X-CwwtmnJqPGwe_^~e4yEYMglCzS-xTV47a`vGs
zd99@@Mf=Xxt-uBaw%zx-_4vtr9>Jmx)(TJQKAq!|az!YS2A$l)V#R(?GjJ|Ix@HU3
z%IbiMzW3JcwcWjxbge#ON+EZj>@QT%FqktLQhyqzk}WCuf<$W9F$B3KY<3Q>>nrA7
zN9M$XfXlH@EV&=!NY2wAWXp}%zh{+kSZHsiDJqz)(N+-;19YGZxp<f&1!#lhtMdig
z8(O%bwV#jM9O;kheS_VB0bW~8rrfhk8lx%kC7{Mk*<J*&iPqiP+oWxX?3Oq#G>tCT
zhGpPP?7)SGfr{Q1^iGhv07&EfeG_U&{+3-<w~EODg?QM%tZYCf$X6IT909;@5mJCY
zc3ahkPh7=TheU;NB_dEP>L>+nHFndV<hY3LY_GCe4ViM=hhM?zRynlo@tt@0z8ulc
zVVFkKtAvbb#s-i(GXcuoNbJo`R_n}qZn{jK*T99lJ=6~i8fMbULwSy-1_uqKp~tmY
zH!G(l#3E7NUbHPr%_Lt?(5w;iU|ZA=S+Ev2^^~-*UXEgqzKeoAa*lj#cSX~(kS<2H
zr^9`offk&Q3?SYz`q7yD<|EQx>7E;HzhhY;xHvHFF?`<g$z|eyOwdg<mrfB#9TTxJ
zRW0b+7f~KQ=j{^F(!61`>Hg{ZL<Bc;0jp2l$OV`3AeIUWkV=n=e|=~geL$G!RRPlF
zb0+@8R50zlDIHW;sjD+`tUw$FAbr%p`P?ro?e1nPU(<Ype3<c33Vr#4+qs!-N)56l
zT6`fSNY?S2gO?AxcjWSx7dC%sd7Y^f6(JP*V+3Y|WKRqc5^`SdCE-mzI-@|?X$a`K
zZMW6d`|!Q$2CeOg1fs47-)n^GH#V2j!1T0|nztmNh{YY6M;!wAVjX-FR8aE9qTPnr
zLDoB_#~K_^%+%Vk^#a~O(F)3-w_`UY`w;ra>ykTR^Qfe?v3HZx#7!vao~7L50yKyu
zCx7G@*2I(n?$&=4Av(1Vi4?5S6Pth@MR!KyP5n?k3*JHVqP?lT3)Ie+=qvK`DI8GH
zc$-gOF*UD_V@e_4|4ulLd=%*Kj-7C+3dfKa@Xr2|eT-;wCqj-3sr`J~b>8tfeVLz}
z$iwhj`{ST4NKv-Fb|Uy<O@Jq2sfqox5V9l&EHL8lg{D;^`NC(#wNr`+)hgz^*+X7e
zpHh{lkpI`f=v&7^eM0Qo))gC@PHORWr8G}zgsw;M32Ou1?l&o6(^-ad;TO0FPY-tk
z^aCEQ1vUB|Q^HQzILJ~TJWO_TuOl4YQ`lhr=!BZ8a&+M|k8+tt&Spu@y%hp{4t0$U
zqE)d^eGYl;wOemTY#2*zsR4z#Rm3|%McqZ-<~1@M9+E@<@@U1K;R|q?1I%&CX`T^%
zfV8>TOMPtv9hK6T?AM&#+S(}RvN@Ka)b_(%8#rJz;%2?#N{Pvo3-op3d_fBsyhf@Q
zb-jDK9rVBg-faF{+~lv7=e$C4k6<E~iNo=D`zLPvn!3YO4E*H7|C33|6$uxd({>+d
zi{Dq6<3aL}4Hx`}c(S*TV6t8r%Y-dvz!T&`?WaxTvPgI`;YF-Qf=WihCc-$uIW*^K
zl)j5}{_Ng{dz2zB<*O@hl56)E+Bi{32b`32ttNp%tZA*-%DI(|@d^4yA=J1Dr~k6e
zXElbKrY|?bI)vOy#0E?%<ldaoFyRi`R!uJJ1O44%-XncdGbt`}0e=86{yp<7O%XQ>
zw)@(sNm-U=u@*5JhpfLo4U<POn1R7!Gk6Ar7EmE!7_!NxTVyV)U)Hn@(*bzaDv?}j
zlT*0y<k~^|Mxw>X1jhBX=*_Iaa|Ph}dIQgJ0n=Q-%o}*VPhff?nAw2m)q&MVLs8Mb
z#38e{&vR0)GJ4uLDAHD9-188B%-%ItK))-5U(Yslj5MU@@U@qZ@t)Y!+btY$9}t*h
zBwL$RkZ1fS>X92MCR^E}$V6Bvq}z1uBSVovu;+%6fN>>MTN{VTY#vTrSI+`nJWAiX
zbHcb;tx_^}YJ`JAN7rQFYLX7M9-ZOR8Q`D{V*=f58BB^6mVXEFx+dc^>VXd<H~@}Z
zEx^qvhfxp6g*J}v$T!<rF=YXa<jzc>riBl{2dnfj+O)n48#N+uX8GNa=LS@h7Skm4
z0%lr<0d6wo1%HHFEYm2sc2>>9I8ID5i4OHVoxb@rEOHnGY6RqL8Wl6fszu6Ra{R1H
z>o4LGgi~_j3Xp?AJ&9$sBa;Ig0?pyw{v>V3NsiJE%5XIqwJaP^!XUI2U>t{!6r)p%
zw5ZuMaWM?g<D3~mumL67Ma(ezNui8#^EmJUIr2f<Q7R)XmpE%R0gQZ#ft|DzcHw-Q
zrC!Em<^ljGBc#pW(QjsKW`jmKkAja2gK->~X2uOl*lCcbPq2fK+M$+u;7U~47!+cX
zY;Y)<X%|L6C5!^Y7X||PXlFe*uuM$T3?LULZ{BI1oRKi0)e8)8M#4BdF)ZU~odGc_
z82dnt09<RQCdH*zpcb|$VTIOa0(lzk05sRgmT8<dN5d8=#u<c|tsa?V3`Ro@0tPOP
zT$Y)$an=K$Ms0v=;M2^9)3_(aEIDwC$Z?ihbEORGVPOLz!dEe3F^=OR20e1N@Wnca
zIXR*n^d!|{Vf4chxg9i@Qdn-)vPkU)E=Fn9qMT+h)(Is9pGLbV!G)d_ACwaeoEShW
z7~yL=H?VoMYMvP9jKczG)b!*vRGfoob05dj;8MNq6mOsgN5_+(J>w0|`Hw;!&Hz0?
zZ(W;p77&+5zMM;MCA{t}iZ^NYqwzFjt-y;ke?jqHPCzyaPZV!jEX4CuPGC1I=)nzb
z7NcW_Tc>la39`qnpOu5sDjwhl7d1e~^}RFL2nW?ZLAisgC(*%C=yYkHww!|v86C*L
zDb9Rq$^F?Z3=`cUYX8K0$9r(7)Ys?HlL=pGclZ5ntF?4d`Y|}acl&?;_kaHvf^Mdv
zn-*4Q>9zndTkdufRDxA7;_!I~BB_jRUaDYm-_go>RdAvobrk{>*do|jSu15V<Zf58
zSdMI|tIgLIRA|+#%EbJa05WK;Ll7ku+6|>`p7tGamw{rCK#4aoLVJwnM7(pt^h_U8
ztvgq3PAy|<0A){1AyA17-S&A5n-?mYqEozh3)|h7By5>pkXSnuk+?A>H%a!mkguvx
zU<p)X6D#|a28G+E<5OqI+P|%44?HNS%TL1~>#jlkd_F936$();(n8)mj)kV$;EL|a
zk~2ui*gOr30;}a9IEa-}Kwa--bS`vdAf=IcPj0wryrz7P0+xjeOSHmzy8sPI!INBd
zVy4!h7!g;utT*2n7rph?mJjcalsO5tptfgI%``f38loDpzTXrju+m)l_>q%O%OX^)
zYxQ}W$l$%U`g&ExvTS|#ArSKnB-GjM)yGuT=r+-}ZM8G*)pKG>VD6Ke&4-2?r(X^z
zZ;Jig_U7JlGaenu)W54vv{!;q8wu2*oT0fC;6Xi8^3jo-cXt?Tc(A&)y7g#=uvWS+
z%d!YpbZQwrdR;;mj>9mfBWo^6IF%fk_?y+fdrZ!q{-8GdcL%aU6b@IY&-Cn9^b%6k
z0N#tf-HRG^bm|6S|ExzC{M2G{8MFok--A-nLz=FE>YL=m6pby=>1JT*NF^BZ29zt2
zgs-qyn|-yooe8*_=pQwm(s=HLwR&TFno?nQeDY(VK&<$2?P6lx{bSFoJH(%etgEVF
zNB~71@m1iou4HrIzH-ylRv;cJ%XxvTC^6;3>Lji{$(t6woQtd8n93!5>vqH1#;$i|
zbB_;$7`o!{w3URsmK@(BsO@d1ZEtmV@fx0%cQlFmh_y_f=)=KD%pPd@Dh63`LD3Gc
z;hX|C21iRzV#)dF!DO-SH1fW}HzYHrXldt5zx{pEwU@RxZZ5Mm+Abfn_UK3u4zIY5
z)&oJ=Lt{OW9gcN5K<fDGerzb>WV$NhTGNj$(`kIl#fY)?5NbpYlNZ8a4VHx9*PLhx
zsyQ^XRj<cxhKHDSfA+o~v(^a(#R_5sA8*vxxsj?%1*vvxAaz9qsaxGasy{PGeZ4*)
zHWmP`=L1svdj+ZIszK_dPhfVx_dm0}B2aU#5S!H?amK51;~M)V7(aSG>Q9bfU)|Ba
z;6%GpE_co~miQEL=f0nIw<bn*T62bxiv6s)D<(-+d1gIKiah+lS~}r;Sf_<MXE|GX
z2;ntSF^*h_1rnTh0o3YiQxwHHn8}oD-FjG)){tq2g4X{q&5q!QxeGN3{dgB0hn@7~
z>jg)lA>~}BT3AcOoQl=mn}$g}VhCSdJN-Nj^@gJG%Jx;x;;a9deOFa!fmkRzS<C1%
zh+qp+DM3-i2NRbHr>W~DkCNA?!!;f?Obfm9iNVjD8<x;kxw!_p#^BL<a0QxceCH%4
zm$eDcuMhJI=Q_q%h3sgxlE&dA0z)d=p80IA&;H7m$ocq>hnI&}uOezSXSCh(4hRm{
z-}~_HX>Ex1?ZeIktA+|Ow+&aIHq{l|QPu0AsK^ehMTj1#o@lJvrxq5D(NCUFphoMY
zwV~-YG?pTZp6AFDlywUYR?kr>Kj@G7o)$Se&KbU~8Z^hrFy&@pxCW`1wNkm|I`X*l
zJE2rRsg)!80qCe-(>A@(KXZkK7u*YEQexih``hXFa<Y~JAe_3V@_5O1+)65sEjNVl
zO4Dm@Pnkq5B5w~9B?Y#hp{DoFRa>M?;*IZ!HY=6f>4$%ol+Fq+E?BGK1n!&5>vh}(
zz2}y3;7n~XXKb_!AD0O<3E!pZ_VXd1oj41QM`c>AQ*<wUAL^0|+BP`UkoGX6g#O^g
zILu;PzRfalrM@|gZr~`%D8`v^CO83Yfw%z>mBRt_zN{OB5*1mWlkS*8>oj}xx53iB
zL*DCm^o3q5cZ1)>x9`J;?UUX<#oWGI>3hh>x3L~F)y`Jn()gWvYImkWzeLBUhwp%&
z?<1$KQ@h?<?rrFkQi_L~zi~WdC~)@gvy#f_#b~D|vT^MGUbl6#tFx;!-{BAuXtsL^
o4|U~s)<VmHFnghHeR4=<^?PlTT7|3^d`kn9NBy+tX&<(h2mMwR;{X5v

literal 0
HcmV?d00001

diff --git a/phishing-filter-splunk.csv.gz b/phishing-filter-splunk.csv.gz
new file mode 100644
index 0000000000000000000000000000000000000000..505bbc88d0f0ed9d82ba0de0d722222e1c1f94b9
GIT binary patch
literal 6396
zcmV<Y7z5`YiwFP!000021H4^Jv+F35-uJIKQMH+gXsPtJT<e*LS=3@;x_dLb1X2<f
z0vV8G`PWY(pIaRj-Kz=c8}}aD=ZY^ON%9H!=dZs?ukhEe|DL3qq#nQi_CLRU{bf~~
zp1*!GX5Q96{rvT}Re(qF>sM7&O;%P}(fze3eyz%1i{gLj|Nrx~N{jB-ukuU4`Sowx
z_59ah@wuVq=fBf4|78|jVI)$M_pAH$mtRJr3@qnn`DFohfW>T(%A@^d{qD^7XKMYM
z<fz^Mr}59~)09B|Vm8Y|H_eLrdMvd6^A}-F+c%c<d_tvWYsNSH@`Ee+e}D%Dg!0p5
zod4<1Kds;=dRfpp8Wg?zj9L8jr=Lo_qw_hFBLnRjymN0>dLp#?W8c1heEvF+IY}%N
z=#dAQKmYX4cunY4Tb5l@HaX|fFzc?RzZwr0m=F_oDDF`qZ*5VQZOpOvRUO3A<)5Dd
z_h``fw(Xj_zUOer{0&hValhXOp6@cAU_pM;pPUcz5a~~TOj6+x*4pcQ$AjkFY}&hQ
zk=z<*22aA4ABaqyQThCXP+klJDUv|NZR={Rk4HiZ(1uSlWTa$Hm(LOTBrVe{<H~5v
z98l}c<~x!aR5`2>g=c19C25eo$`@h|zM-poogc=|XyYy`P$0Fy1vhJmf_#N`aVK5j
z3;NRJ-<Cm|h|m)CURgL3C>&4<M_VXmW>6Y$ZGEenm1a7ov??{x{K68K;|siv{+3gA
zW^NO5%{6)@hcm9EF3Yw{zFeXi5%sjWv_L~R8QP3`o<{byCv{<*lZ3p<9TwC=E-Rdf
zcBt$8eQKOJ_j}ywA+-Ucg-y#7Y>H*Et_UjIja1+zNy2K#Z#y&T+(wHe2|<OK6fs>1
zSgp*<w#llZ&dU2OE1NRstA#bti8&oMc$nOxAa@n4$Z;X{I}1sC0$M`M&@Y4A8kMLM
z!vm#>JQO!6JXdRI)sU4<qRpKr6CU`Hc`FB+cGmY$u{7$%`>ZU=`hNTNM&b|WqEJx`
zke0&j)^_yLv_+r0=SC4$9@<By($i4Vj-&6|GT8tYkSfe~)pRLG@lB>}NyDcnb8p&v
zN-_>DSzwMAy(CV1AR<SdNgV{axb-QAbHZfI?^9HCDc2>z1#xT2HX#wI`K80!lrkOo
zWwfH0;XB0oBv2BG1F3o%Qc>NTghToa=Of+d;4)^O99i?PBNWp^^8P>&i_|{|C7GMe
zPnnxYIj=@)pMgsgpAx2*?sOiPxJfQnvKH@+$l9tMvW5fC`VOnC?tl-45KP=|Sy5yQ
z;+v2B(QNCI&(h904OvMaH9TN-%Q=rbzPeRP#fChNBQ7Kivqgz&IA*;)-s^78rD|SN
z+szd)X6>z(2V3M`EmGh(*EfHxi}sz&<vO^0P;+*@iJ7JP?$yw6cf6Yg_UCTKZf@6O
zmkO~xxaQ`4?9E%e2IH4w)O&+|ho(v2tFe-7t=f0>exJ`uJ>RNT`)b=ku=UW@`+2@*
z!x*2ZRX5Gp=|g_^N)WA_G|(KgOB6OsXdZjjF7)ifcF31eJsLf^mmMAA$^0U=O0j+R
z-Bwj=rCIlSre)OCD?TkvTlt39AZB>p%xbDfvn!|H&treu=iVOUdwr>T<xjrO=lD#_
zC@w&<CnwdcT3)>;aeIs>x9y6<6Ke)q*WIxm$5U40^3d$fx-D^+2D?qS+pV6P+bZnS
z$kp%1R)Lz{z(;9rZ*N{VON?wyI}G4<1Btsd;VK&USlDA_@>M-+Hk0-zGs$X@NBwwi
zEpHC3*IhMLg)fgCChHO#GEnOTDXbgAkpA{{T$PIcUiW8o%(jngpe8*IqE3)bWeWH#
zz+JB{cT>bN9#bx0lVT%zNYQsI#faJc5bI-cwA5D69A?bzrXv#Bn8j_`mIZ|{GHcqh
zNh08mZ%+6#Y9*C9^WI5o=8|vmK(FLX-6e}SF9KbkF3M#7F-$33eYQCl!WQ=(@J*=J
zAow{~l1J3E$FMyX@-L%K>nnGIa4ae)=|PIMM^fE$%rrEwi|SUCf<h23vZlm3V^~2}
z-RlZlXbKc<h)C+9IM8m7>FFyLsue?ukc2}><~yJB(?nz)Dzs<r;uh68>LzpYl|qH_
zA^Q}BvP;=#t2M7PFKhCLI+~e#l5!Crh(ggf&Am>AFAoDUs`w7Xsy=~9<b%yDqR2eF
zWOl%*G57Z5%4}j#Aw3*bmL`xo^Va8|Y)xEXXA}viH9MwY)C8XR6E&9N6Y{z0tK8$V
z%IHRmPlo1ijp?y-Ie3b&q^59c1}ERr0{HI_aXYUdB=4+wfFolV5m)Z0B{xbnO_I{u
z-`CE!a&zC>ZC7OHGpHUZ#M1~eQCF?gNzmv6=``xigxPnPU1|5eyBE3JnD=BR<zm*d
zDB7fSkFcS`XJn1!Ao*1o&&zwCHC@)<sY6YY>M~(buy7VupuIPB3Rf_Yppk*i6#PCs
z9)_2~@)|8R^0b&#G9My_KipW0#;rDNY&AL4`0_crc=#4I2-MpZTUAxtCt;60S5MlL
zIP|-aMV;%7xTL*0+p4=I5vCsmZbedf@cv%hQ;-lj4ARc;w!2qN5{(jSL-4j3c873G
zM8c0I@}3i6c=mChNZa)#xl;L{5Gh<TF=>QaaVSI?E8o`wxHhg+%#vWa5xFhU3w+8M
z5gDWgniFOXO-WqtZ9wf?F(oj<V%w(~p9zo=+zFhM|3JK02%g2&N66spZ~ZN9J`XYb
zPHSY7Swb0`MHL&u|1QI3A#airKWuIW6`z9Ab&3Ur+StWxE;E)-QV{zOMGI+E;V4JG
z#0$L8t-#6DTQB*hB+*cEhzRdp{lvR5i|c(SQ$)b{BIX-A#@&!GfC7d}LC|QzEEF@5
z_FUsyf<d5rHVJq#2sb?BfsuRb9>aW~iCg6!a5kHQ1$ShmY9JphA~g?Zl9nsS7L}MX
z3x!uTMLj8E#{sP#O_<DhkP^qdZ%*6vwVj4T;`XqnZu-skY5b~z!cgrz`RVi|iGKq5
z4DNv&K)#)PQ&6~Xc3WcSlm_zuX%r$`q@@vL4i*LpR4CC|yfG^7792wLmI5V*ep~Yi
z7AauSAk+A{Va;W2Q+KyM)L<A0W8*IlYer|cG#jD^H(8h<g|Ke3o3`Z@7_US$*pWh)
zP3k?mPck9|Y24#x4o3_&@RPj3d^7@txaxFq#eSR~)43&)kWntEwKBx?aQ1>3GsoOo
zI2t8TTO%@S4$zs~*m4~oOQ3Q_@^_Hj!{C*N{6h+ES+lKWneDq=$^G=%D6MiKX~<+a
zqN!*^krno6w{^vVoH+?`!=nkbbc3{U!=niWoZy4*Bo8tF{y0xCuV%AJ^mI7JZL&)d
zWs9*ooQDbY=P>=r32wCHvnxHG4Nc4PWg!0yZP8S1D&i{#hf-K_L@3M}h|>)C%(koO
zo{O@1c3bC$v8@NlVOhi37gDBir3cjptAg0lLyo9|txRCDCVWpMf*UQPwylbyZ|{AY
z85+5m*h>#7GKkZ|P9o~=m}xG;uT$)+n&#zc;&zsld)VJ!m&uM@eUqrFA~lIy)g~pO
z48<%r-#Ibxai3TcdGs)-)4y{D>`Z_fcH~8b^|0nD^GNZdjeN5Cy09dqN1WOG^f`x8
zb<I6A4-sRkiQd*OZZ>&3^I_xjcnmpiIeAqPkyo=$r=!PA)B@e~-r(GKm0OG#j7U-C
zFNRu9<Rs@5qRsI*A<62Dpu+VA?*xaQr5;QsFl-C3XU5`Y=q_-I!}(0@xQn?Z=nv2m
zUa_(5f+GLHmx;x-P5(f^^CK;Rmy3;0u^9!msDGT@#K@B4e7Id;`M&=_CfNocH8rGl
zi-YuQNOxTu4#>5!IG_!eDunDp+`XvMYzJC@rZBP6=_}Saq`<z93jKgnAg+C1bP2T3
z13`lpD?Mlrsc20niOL`7xgp82VebdMxuW!|>I(7pp*{=^M(n5-NHYiuO*Ed_E9@7I
ziyYj)X%<c-IoJ7c6L>#kk^{YuP07tI;N(=@Qb_1V&7GNa%;LlhUJ@r1NSo+n@IR*z
zkuS4QOI+hPqke~z;Au)sGy2U!Rg^^nA(?UG)<~tcmt>?{vg%eQ*`PIVq{ptHE!$+e
zbg}|Z7T9RHng>BA7>I&1X#R|8ztIcX;6-LaL%v$JRrzw}GM<~RP>g7=otvMV1qNxC
za8D!+iGFf2_`7uE(#Y?vI5r~bo!Dkp3)^$UEo-_yiC`!^jeHroEEGv@S=*KOBxIzX
znVE6jrM+SkQxx}**Ip?OH)BLPJCf=WT)}%m>vV$DlQLb#;W~ZsphsOsk$7|Kn<P6^
z76?m<{7K>xtzPX?)KV4@$WFG{T<Vyh)7DpI0<{^m{bxb;Np^!0zQ(W;l5|~b^w)mn
z6xa7H@ZQwvQxs+w94#`GWN$TTq^cy(K83`i7Sr%plicdFAcbtCx<9)l!!pMDR(AKg
zY^qxqozw^lUP-2zz?X2MSQ=6cn@eZXi4rc>vCDZ#qI~eY2IJ;X?)FJYNYDeyheQ!d
zoeB=V0$=weHJU{#(9`F7y@CG89pYYnvPf%~^ltPi^poN1y+|Rk#(5ZkTr`}7?3=z%
zQzBc)B@6d>ld7V{okT%xY?k@7<||r|e2ROJYdN#<<aKLa*M!@^?sc*Yr<U`_-NbU#
z+jUuLG;9s~nQ7xNYucvC{kfvB;m+5Xa}jDGgOaaoutxigOh=L%842@^)@0P;#~p3=
zd$OC&G#=USCq}X|tLm(35)uRdeQ{bC8#Aw23Uz)w6m5<aW>^pYy!_`j#RAouImb0{
zM5jlGK5h}qa4t0jyO{GKUa)B>m~@;c$)uTZ@i-{6SuYn%Mj>2nUc|jY#!QYIJH8=-
ztuynIzqP-P6B`TRE`XSKdz!0~a%-y;UH=?tx=xiYVFi^%T(<uMewi4*N{ip7g}<eR
zkNX7}B<p&_s!nsBn^tS8J6V6|FS1qC&}E;h<>$C*3SV-~KXx(D;VNp<`VY`98T1Ir
zpdZg<(CSDAZEQN|Ga2-APX@hXI%uB^`q+{|zgTQ&hxXcd;$LyU#_4lSMp^WkA2U9@
z-<ez!MD8ENG<U89>`$b@G3>2~4DKItS<bqulUTYH&K1;^7z=eZ2Ujh_t;YYW$V~AH
zPAgwv%t4=gV>0fyLWRS?MVSE~Qb_0Lq%of)>^P1xa{6<%+q4bCRfu!$s*v?%ilBAf
zSXMNB-3`cCIq;?%I5g1ns%mk#i3;jIw^dx;5zVqLS<w_F3;+!_{T&)!b_M+so0id(
zrJ#8ex4!BH0PmWC*U;DZrhujpJu6C)WSmvW5TU6=L!%rD>}%H6b;s_&>w8f^5}JLu
z0sk&4hHb+J(cg-)tgEi-kY@Q-r=VFE_pT^fWC++)b=g;(i~inq;fv%%pJbd(2kp>z
zb<-0~;K*pur6{YesEY6<b4h42QPy4AiK6GUY<PdaH-H@!EfX!hPeHRS2jZkaR@HUW
z7Day_cnNJ)V29$~-cr!)+Mf5r|221QYqFv`_=!B@>1pN*f{G$k0b1(Q?_hPWnSHVE
zV1Hw~R@X&!qCgTtl0R*MGRkq~=J?u8H#Ceiyro?gWj>p(1Xj_eW<4QQi$YTLEvW%`
zHPpyD2G6!E+cKxTX^WZ^eF;U8m$V$lysKH2H&J-9ylyCpVuLEMtG&3^b=8#l$eVJA
zqZ7J%=wKlDf;A@vYiT|LD^V4-08KwedC#t`#-V|VGuo2^KNam*=Y3Hyv@vxNMc+bK
zph2N@?5d75w1ciMdz{LeQdIa&6rBJ-3FT#96)h!vDEp=^TBz%mQB+1{8G|Q<8gkMM
zO^+f{BIBH(MMcw10Y!)8ad<X$+Ylg(qfS8iq@?Rm?dCnIBF>}m9O`};3GeHi7NqP+
z&&IB63f|<jYPz1q;K>V4SWXEVFNU_O?@?HDQlrxE`fj9A=9AZ5UE>roT&%bO!o{0+
zV_gCY4B#p*V(=Wtylipb(^e%RC4nCJ&{e1sct;4-5%ev3q+q$k?-?<GeHoz!fnG+G
z=-C^_QJmjox}cl$H?@w9EG&TU`=vh~SX%MVH3K_5u$Is2k8qx8U`d?#fDs}>jKJ3?
z;Ox5JK8Q*yU^6$|qqjxyU<^M5|4?mX^jb9IbWTA}PmBP#z{Asool^~LgI7w00&_9$
zBkMn%!2|L@>a*68NzFZYOpK%%qxXAekXPvn8x{BFlV_qFvm3jdci0>m<E~xomz$zg
zN}Jt}|Gu-o@RHK!WzO+3u*}X3B*UzCHv1rDc;WJ=d$1+83>$>A!1%fbCb?J$3ZQR6
zf`NGh)^;%}m8@^Ks~9&g&C=02kFyoJt*Z6$Fa@B2(kS@@$lwCwW|8jU3ft@eXoC_k
z+m-kNv{b9)i_96)Dp@uj6CDoP{OP9=c4#=H4KMjPpLgh@X3Gad)zd2;^;sY1@rT{;
z<fqbMOFV?Bhe#Tw{sa{RZhVuP(yUeB=YQzFPTK~i>-?YSFZxbEvZv$nK?pd{Gs1EB
z(*{v{*zL9`qAZvhK2K*)60PU%4~r`AyT~k>ye6?(pz|7&g}v0^^DVxD;1fo6^#j4}
z_i7K`Xq<Jx&GuAaNpKv09SH@yqS!=ih+$_<XW>dx$FS71exd98oh22NtXp;1GR@!4
z#J}ySBgy*z;u3x(i|u@3<h~!h$B}pTzGJAzWwy&=yE4jftwPGgmu3VedwE2kE~3KS
zP?#3jxV1-Bc2R=mRu5+?!{PX#Vl!{ta0MhNhHKVt@Mw;{%->e&ZW9jHCB8|=1B52w
z<}|REgqu55J2LD(!;TZ)ac0umbnWq~<G|2arxo8kM7ApOyomD-&cl%y9k?s8-B-cY
zIO0^MOpEsp$ppRw2imFh2xwEhOJLlyc^B^LyCPD4jsv;+f8X6j*GDP0bT~xsyz3&^
zbVsdB>6K`OYHbUrecS+pRtmqB!jODB5QZEPzTlYS3bHIPUGzPMEhIMTuRF7#@xXm&
z1e^WK;dO=|3nYs!*#qlhBR%@f<(7zp^PtC8Ncnkq-*rTi)K1A98oV7@pqhlI7irta
z+I#%Xh2&NBf8bK}I9#Zi(KQKL?(sK^rjOUU)p6^JU$cu#mEhJSk79=1lt_(|5f;kO
zt!_>6Kf8v7cXfK@gG$8~l%f)e&xMN-Epz%~_=klJ6}Xp243|8xA~3skKYiqGt{Asr
z5B1%C2v|awFu7x)Z*d*zw3~o>_cP2cbsw>5DtJf`!5B1m&SIbs?9%yTCtri3C8!ui
ze}B!~hc~A#USJJ*JR#IcC~cksMgh|LZXA7NrjjL6ib<=8d~j;Qs@UDW>=!j-TJLpV
zUqL<AKh&RNAUMM!QU5n}YHUR6Y<3Z;Pn<`jKBH=nM_n8`BK2iCBU0ZC#H4=Q5vlL*
zDI)b_q7kWo=n;|n^$!2+%v;2;s{A49f)o7#;(bQqpS4RNG4%FZZ@`wYrs&{Iq(x1V
zGOv=NZ<B%)QTiAk(`L4yE96+$gRN}Xwirighb+=3<ab%FLPoI;P5l;$pD>v{AtWa;
zoT9@VP6ZwAPm$I|LF&4X;v|0ntQFSzB+;M~`QvUe0h96>Lqi1W-`o!tVfT*TOyvH0
z8@lCdvMXUf@QSfud}6MXli5O3{SB#CdDY!fLJ*%dJ#VBLIA`di*<ubOtT=}_&;5u|
z!oaM_d*@swb=mXu8zHc@zxqhR_T@Ya#*pi1P%aV*Ri9q^;8L_C(n;74-)AI2f2Ab~
z9}B6r+gmH{mqbYQ{dq16KR?^HSs!4JAd!9#?!#Y!m-RU>=emR(l2e=l7QFYM;&H*O
zwbvf+e>MY;Ve7A5O^)+8we2@d6j#co-OMLQnX(giL1*+92EZjNY%fq3Sdma}sZdU)
z=XHl;bINp}R8cyl>Kf85+zPtymk#TkFmNz=)TrOHpsebfVkD&GZ`S3M@M<W#v8@L}
zq3KG-nr`gV*=;gV^G%=j={20^y>q%$bG3wO!0Gr0u2j56`wj7C{$oaATn!f>54tOJ
zi>6%pZ158^7j9D)RV}T%O;uY{>-jEgqhz@r(yDi$4nJG^91v$4XZlGf3DH^O-}aV<
zQv-^9Q*biUe3sW`Vvz2OoRnP*$^+Y2Pl~<*8iTy5F44Z47^Dxwi&rQ?vS0T+dv%|t
z50&3PatdnoEk-@*B5&)W&xSrHU6&Ck#+>jbDe9t4NQr(oPzK4E1LxhybD*J~W8h#m
zpTw%JO-c7_FtdRhmr1?aY!fCnuYKT|5iWZP8JX2vD73JdGy5v_EAxeVkvTd8AIdYe
zD|h(;jm_`eWhVKFucr23`Lw&k+i!b*xmcZ{fHl&<v1g$&Qhh{b(t47=JFCpsH)hj3
z&1@R+9x~qwF%ZAq$U7a)Ge`2#8i70)Z_@uvhs}I0?@#(z)(lVyPH%VL?kuM;YvDhU
K@0Vf^wg3Pa^@`U3

literal 0
HcmV?d00001

diff --git a/phishing-filter-suricata.rules b/phishing-filter-suricata.rules
new file mode 100644
index 000000000..9f7f20f7c
--- /dev/null
+++ b/phishing-filter-suricata.rules
@@ -0,0 +1,475 @@
+# Title: Phishing URL Suricata Ruleset
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"1nvest.bigbantbaz.top"; classtype:attempted-recon; sid:200000001; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"25116414.cc"; classtype:attempted-recon; sid:200000002; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"365365news.com"; classtype:attempted-recon; sid:200000003; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"365f09.com"; classtype:attempted-recon; sid:200000004; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"750115.cc"; classtype:attempted-recon; sid:200000005; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"823pages.pages.dev"; classtype:attempted-recon; sid:200000006; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"95564339.awi.za.com"; classtype:attempted-recon; sid:200000007; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"999fc.vip"; classtype:attempted-recon; sid:200000008; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"a.yyyy.cf"; classtype:attempted-recon; sid:200000009; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"aaaa.whilefish.xyz"; classtype:attempted-recon; sid:200000010; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"accounts-microsoft365.weebly.com"; classtype:attempted-recon; sid:200000011; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"accounts.0ffice365.support"; classtype:attempted-recon; sid:200000012; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"aidanochka-tabys.kz"; classtype:attempted-recon; sid:200000013; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"airbnb-clone-sahinur.vercel.app"; classtype:attempted-recon; sid:200000014; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"akbarinewv2.morteza638n.workers.dev"; classtype:attempted-recon; sid:200000015; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"alaindemeuron.wixsite.com"; classtype:attempted-recon; sid:200000016; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"alexa81o.github.io"; classtype:attempted-recon; sid:200000017; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"alienv2ray.pages.dev"; classtype:attempted-recon; sid:200000018; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"allegr0llokalne753724pl.art"; classtype:attempted-recon; sid:200000019; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"allhrteam.com"; classtype:attempted-recon; sid:200000020; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"amazon-clone-by-sudip.netlify.app"; classtype:attempted-recon; sid:200000021; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ammuvicm.work"; classtype:attempted-recon; sid:200000022; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"amyr.iran-cyber-net.workers.dev"; classtype:attempted-recon; sid:200000023; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"antaidossiersuivamendimpayeerf33.zynekcctv.com"; classtype:attempted-recon; sid:200000024; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"anuragrauniyar.github.io"; classtype:attempted-recon; sid:200000025; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"appeal-voilation-policy-issues.github.io"; classtype:attempted-recon; sid:200000026; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"apple-id.cc"; classtype:attempted-recon; sid:200000027; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"apri.154-203-197-141.cprapid.com"; classtype:attempted-recon; sid:200000028; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"arvestcreditcard.embarkdigitalonboarding.com"; classtype:attempted-recon; sid:200000029; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"asdfjeiod.com"; classtype:attempted-recon; sid:200000030; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ashleyproberts.wixsite.com"; classtype:attempted-recon; sid:200000031; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"astounding-trifle-b88a2b.netlify.app"; classtype:attempted-recon; sid:200000032; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-101397.weeblysite.com"; classtype:attempted-recon; sid:200000033; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-102641.weeblysite.com"; classtype:attempted-recon; sid:200000034; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-107756-104508.square.site"; classtype:attempted-recon; sid:200000035; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-108102.weeblysite.com"; classtype:attempted-recon; sid:200000036; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-108651.square.site"; classtype:attempted-recon; sid:200000037; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-mail-101246.weeblysite.com"; classtype:attempted-recon; sid:200000038; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-mail-105533.weeblysite.com"; classtype:attempted-recon; sid:200000039; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-mail-109459.weeblysite.com"; classtype:attempted-recon; sid:200000040; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-servicce-mail.weebly.com"; classtype:attempted-recon; sid:200000041; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-sign-in-107078.weeblysite.com"; classtype:attempted-recon; sid:200000042; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-yahoo-mail-105061.weeblysite.com"; classtype:attempted-recon; sid:200000043; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attcom-101415.weeblysite.com"; classtype:attempted-recon; sid:200000044; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attinc-101356.weeblysite.com"; classtype:attempted-recon; sid:200000045; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attmailonlineaccountupdate.weebly.com"; classtype:attempted-recon; sid:200000046; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attnet-100294.weeblysite.com"; classtype:attempted-recon; sid:200000047; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attonlineservicesa.wixstudio.com"; classtype:attempted-recon; sid:200000048; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attonlineservicesa.wixstudio.io"; classtype:attempted-recon; sid:200000049; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attweadminservices.weebly.com"; classtype:attempted-recon; sid:200000050; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"auth-sharepoint-asr.vercel.app"; classtype:attempted-recon; sid:200000051; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"avertisystems.com"; classtype:attempted-recon; sid:200000052; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev"; classtype:attempted-recon; sid:200000053; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"b35ccc.com"; classtype:attempted-recon; sid:200000054; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"b35lll.com"; classtype:attempted-recon; sid:200000055; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"b35www.com"; classtype:attempted-recon; sid:200000056; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz"; classtype:attempted-recon; sid:200000057; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz"; classtype:attempted-recon; sid:200000058; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link"; classtype:attempted-recon; sid:200000059; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz"; classtype:attempted-recon; sid:200000060; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link"; classtype:attempted-recon; sid:200000061; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link"; classtype:attempted-recon; sid:200000062; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link"; classtype:attempted-recon; sid:200000063; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link"; classtype:attempted-recon; sid:200000064; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bbf-alpha.vercel.app"; classtype:attempted-recon; sid:200000065; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bet365t3.com"; classtype:attempted-recon; sid:200000066; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bet938y.com"; classtype:attempted-recon; sid:200000067; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bet958c.com"; classtype:attempted-recon; sid:200000068; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bhngfd3.pages.dev"; classtype:attempted-recon; sid:200000069; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"blackdasblacks.shop"; classtype:attempted-recon; sid:200000070; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"blsckdagsever.pages.dev"; classtype:attempted-recon; sid:200000071; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bridge-9wdpjmsoa.pancake.run"; classtype:attempted-recon; sid:200000072; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"brubreumummeddoi-4514.vercel.app"; classtype:attempted-recon; sid:200000073; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bscusdty.top"; classtype:attempted-recon; sid:200000074; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bsozvycr.icu"; classtype:attempted-recon; sid:200000075; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bt-102368.weeblysite.com"; classtype:attempted-recon; sid:200000076; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bt-106861.weeblysite.com"; classtype:attempted-recon; sid:200000077; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"btjfh.weebly.com"; classtype:attempted-recon; sid:200000078; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bussinessaccounthelppage.click"; classtype:attempted-recon; sid:200000079; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bwfujmww.icu"; classtype:attempted-recon; sid:200000080; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bx.sfdsb.icu"; classtype:attempted-recon; sid:200000081; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"c.cting365k.cc"; classtype:attempted-recon; sid:200000082; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev"; classtype:attempted-recon; sid:200000083; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"can-post.cyou"; classtype:attempted-recon; sid:200000084; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"celery.sa.com"; classtype:attempted-recon; sid:200000085; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cen4-six.vercel.app"; classtype:attempted-recon; sid:200000086; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cf-worker-pages-proxy.1352562939.workers.dev"; classtype:attempted-recon; sid:200000087; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cf.13084493.workers.dev"; classtype:attempted-recon; sid:200000088; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cf.iwoai.cc"; classtype:attempted-recon; sid:200000089; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cfcf-8.pages.dev"; classtype:attempted-recon; sid:200000090; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cfr-reed-taxi-wayne.trycloudflare.com"; classtype:attempted-recon; sid:200000091; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"chain-trt.online"; classtype:attempted-recon; sid:200000092; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"chainsolapprove.pages.dev"; classtype:attempted-recon; sid:200000093; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"chat-wa.xyz"; classtype:attempted-recon; sid:200000094; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"check282.tempisite.com"; classtype:attempted-recon; sid:200000095; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"chore.pink"; classtype:attempted-recon; sid:200000096; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ciftcininbankasiziraatbankasi.com"; classtype:attempted-recon; sid:200000097; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"claudiorojas.cl"; classtype:attempted-recon; sid:200000098; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"clivenicoll44.wixsite.com"; classtype:attempted-recon; sid:200000099; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cloudflare-workers-pages-vless-a2j.pages.dev"; classtype:attempted-recon; sid:200000100; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"codt.digitasianetwork.workers.dev"; classtype:attempted-recon; sid:200000101; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"coinbase-com-18690.subttrepimop1005.workers.dev"; classtype:attempted-recon; sid:200000102; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"coinbasewallet-verification.198-46-89-184.cprapid.com"; classtype:attempted-recon; sid:200000103; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"company0rder943.weebly.com"; classtype:attempted-recon; sid:200000104; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"completar-la-verificacion.vercel.app"; classtype:attempted-recon; sid:200000105; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"conductibili.fun"; classtype:attempted-recon; sid:200000106; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"correosprepago.bnext.es"; classtype:attempted-recon; sid:200000107; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"crenadenuddoi-2258.vercel.app"; classtype:attempted-recon; sid:200000108; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cryptorectification.com"; classtype:attempted-recon; sid:200000109; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"currently5267.weebly.com"; classtype:attempted-recon; sid:200000110; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"currently70.weebly.com"; classtype:attempted-recon; sid:200000111; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"currentlyatt909.weebly.com"; classtype:attempted-recon; sid:200000112; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"d.afirkz56924.workers.dev"; classtype:attempted-recon; sid:200000113; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"dio.azrealonce.workers.dev"; classtype:attempted-recon; sid:200000114; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ditgong.com"; classtype:attempted-recon; sid:200000115; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"doc-online-1881.on.fleek.co"; classtype:attempted-recon; sid:200000116; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"docsignauthorizationrequest.vercel.app"; classtype:attempted-recon; sid:200000117; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"docusign.com.bestfinancebroker.com"; classtype:attempted-recon; sid:200000118; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"duang-5dh.pages.dev"; classtype:attempted-recon; sid:200000119; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"duvhkeq.pages.dev"; classtype:attempted-recon; sid:200000120; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"easyaccesscommagebn.com"; classtype:attempted-recon; sid:200000121; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ebay8787.shop"; classtype:attempted-recon; sid:200000122; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ee-account-home.web.app"; classtype:attempted-recon; sid:200000123; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ee-service-help.web.app"; classtype:attempted-recon; sid:200000124; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ee-service-portal.web.app"; classtype:attempted-recon; sid:200000125; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"eln3.vercel.app"; classtype:attempted-recon; sid:200000126; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"enormous-orchid-howler.glitch.me"; classtype:attempted-recon; sid:200000127; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"espaceparticulier.life"; classtype:attempted-recon; sid:200000128; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ets3qe9ooms8t6i8.pages.dev"; classtype:attempted-recon; sid:200000129; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"excelorgo.com"; classtype:attempted-recon; sid:200000130; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"falabellacom.dominiquepg.com"; classtype:attempted-recon; sid:200000131; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fdesq4.pages.dev"; classtype:attempted-recon; sid:200000132; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fdsfjiwe.com"; classtype:attempted-recon; sid:200000133; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fdsjfkweow.com"; classtype:attempted-recon; sid:200000134; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fekoulamevebouna.freewebhostmost.com"; classtype:attempted-recon; sid:200000135; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"felomane390.wixsite.com"; classtype:attempted-recon; sid:200000136; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ferngos.de"; classtype:attempted-recon; sid:200000137; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fieg.84yr483rhfwieujro348ur84.workers.dev"; classtype:attempted-recon; sid:200000138; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"figinstenatecom.pages.dev"; classtype:attempted-recon; sid:200000139; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"finansfaizsizbasvurum.online"; classtype:attempted-recon; sid:200000140; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"forested-mirage-samba.glitch.me"; classtype:attempted-recon; sid:200000141; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"formtools.com"; classtype:attempted-recon; sid:200000142; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fortradesetup.hamidamnaie.workers.dev"; classtype:attempted-recon; sid:200000143; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"free-5436781.webadorsite.com"; classtype:attempted-recon; sid:200000144; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"frogsrus.wixsite.com"; classtype:attempted-recon; sid:200000145; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fshraha.pages.dev"; classtype:attempted-recon; sid:200000146; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fukshumx.world"; classtype:attempted-recon; sid:200000147; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"gazruinv.web.app"; classtype:attempted-recon; sid:200000148; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"geaoolsv.pink"; classtype:attempted-recon; sid:200000149; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"geminiwallete.godaddysites.com"; classtype:attempted-recon; sid:200000150; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ghjhyu.wixsite.com"; classtype:attempted-recon; sid:200000151; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"gimennlouin.gitbook.io"; classtype:attempted-recon; sid:200000152; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"goldenrod-rowan-submarine.glitch.me"; classtype:attempted-recon; sid:200000153; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"gorgeoushome67.wixsite.com"; classtype:attempted-recon; sid:200000154; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"group11-vvip-hot-girls-combi.viplch.online"; classtype:attempted-recon; sid:200000155; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"gruppeflorian.com"; classtype:attempted-recon; sid:200000156; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hanisfir.shop"; classtype:attempted-recon; sid:200000157; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hedayatfreedom.hedayatkhakpour.workers.dev"; classtype:attempted-recon; sid:200000158; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hello-world-morning.freekite.workers.dev"; classtype:attempted-recon; sid:200000159; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hello-world-muddy-cloud-f45b.mfoster0425.workers.dev"; classtype:attempted-recon; sid:200000160; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com"; classtype:attempted-recon; sid:200000161; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"heluapla.shop"; classtype:attempted-recon; sid:200000162; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hemanlau1.pages.dev"; classtype:attempted-recon; sid:200000163; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hezhouruan.552008598.workers.dev"; classtype:attempted-recon; sid:200000164; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hgcdhbxnf.weebly.com"; classtype:attempted-recon; sid:200000165; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hjrhd.top"; classtype:attempted-recon; sid:200000166; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hk04-123.pages.dev"; classtype:attempted-recon; sid:200000167; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hkmqo.top"; classtype:attempted-recon; sid:200000168; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"home-100317.weeblysite.com"; classtype:attempted-recon; sid:200000169; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"home-102207.weeblysite.com"; classtype:attempted-recon; sid:200000170; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"home-107257.weeblysite.com"; classtype:attempted-recon; sid:200000171; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"homelogin7t6sdfcgvhb.weebly.com"; classtype:attempted-recon; sid:200000172; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"htaflytz.baby"; classtype:attempted-recon; sid:200000173; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"htaflytz.black"; classtype:attempted-recon; sid:200000174; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"httap.l-teiegram.com"; classtype:attempted-recon; sid:200000175; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"httpsbellsouthnet-102649sitecom.weeblysite.com"; classtype:attempted-recon; sid:200000176; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hup6r.com"; classtype:attempted-recon; sid:200000177; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hy.fuckgwf.eu.org"; classtype:attempted-recon; sid:200000178; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hypophysecto.fun"; classtype:attempted-recon; sid:200000179; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hzuayvvl.red"; classtype:attempted-recon; sid:200000180; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"id2.xbenihime.us.kg"; classtype:attempted-recon; sid:200000181; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ikergalindez.github.io"; classtype:attempted-recon; sid:200000182; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"info-delivery-bg.com"; classtype:attempted-recon; sid:200000183; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"info-trackingcs.cc"; classtype:attempted-recon; sid:200000184; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"info-trackingiax.cc"; classtype:attempted-recon; sid:200000185; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"informed.deliveryhbo.top"; classtype:attempted-recon; sid:200000186; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"informed.deliverytcw.top"; classtype:attempted-recon; sid:200000187; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"informed.deliveryxs.top"; classtype:attempted-recon; sid:200000188; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"infringement-service.com"; classtype:attempted-recon; sid:200000189; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"instagram-clone-in.vercel.app"; classtype:attempted-recon; sid:200000190; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"interbenefitprestaciones.referidosweb.click"; classtype:attempted-recon; sid:200000191; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"iouwerty.weebly.com"; classtype:attempted-recon; sid:200000192; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"isnworldwide88.com"; classtype:attempted-recon; sid:200000193; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"jaydeep8806.github.io"; classtype:attempted-recon; sid:200000194; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"jeanandpeterwilkin.wixsite.com"; classtype:attempted-recon; sid:200000195; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"jetconstructionsgroup.com.au"; classtype:attempted-recon; sid:200000196; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"joeandvelma.wixsite.com"; classtype:attempted-recon; sid:200000197; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"journey-x-pro.com"; classtype:attempted-recon; sid:200000198; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"jsdfchkdsds.weebly.com"; classtype:attempted-recon; sid:200000199; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"jshattkee.weebly.com"; classtype:attempted-recon; sid:200000200; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"juliusmasih27.github.io"; classtype:attempted-recon; sid:200000201; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"jung-sohn.de"; classtype:attempted-recon; sid:200000202; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"katiebllair.wixstudio.com"; classtype:attempted-recon; sid:200000203; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"katiebllair.wixstudio.io"; classtype:attempted-recon; sid:200000204; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kdlmo.top"; classtype:attempted-recon; sid:200000205; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kenzmail0.wixsite.com"; classtype:attempted-recon; sid:200000206; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ketura2010.github.io"; classtype:attempted-recon; sid:200000207; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"keucroilluxibrou-2718.vercel.app"; classtype:attempted-recon; sid:200000208; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kuconlogin-ui.godaddysites.com"; classtype:attempted-recon; sid:200000209; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"latam-onipojes.vercel.app"; classtype:attempted-recon; sid:200000210; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"layanan-bntuan-resmi-dna.prbu2.my.id"; classtype:attempted-recon; sid:200000211; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ledger-com-updatefirmware.aparecidovisentin.com.br"; classtype:attempted-recon; sid:200000212; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"levappoprauqueu-4688.vercel.app"; classtype:attempted-recon; sid:200000213; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"leyoixoimmecou-5619.vercel.app"; classtype:attempted-recon; sid:200000214; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"linkbokepviralindo009.vipp.blog"; classtype:attempted-recon; sid:200000215; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"liveairdclazmersn.pages.dev"; classtype:attempted-recon; sid:200000216; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"lo6-cas-projects-64947843.vercel.app"; classtype:attempted-recon; sid:200000217; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"maatamicklogginns.gitbook.io"; classtype:attempted-recon; sid:200000218; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"madebybmr.in"; classtype:attempted-recon; sid:200000219; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"madhu821.github.io"; classtype:attempted-recon; sid:200000220; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mailupdate87.weebly.com"; classtype:attempted-recon; sid:200000221; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"maine619.github.io"; classtype:attempted-recon; sid:200000222; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mainnetverify.pages.dev"; classtype:attempted-recon; sid:200000223; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mazulyta.pages.dev"; classtype:attempted-recon; sid:200000224; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"megrebeikenneu-2106.vercel.app"; classtype:attempted-recon; sid:200000225; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mendhfjpl.weebly.com"; classtype:attempted-recon; sid:200000226; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"metacareer.com-case37169314276.com"; classtype:attempted-recon; sid:200000227; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"metagalaxy.pages.dev"; classtype:attempted-recon; sid:200000228; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"metamacksiologus.godaddysites.com"; classtype:attempted-recon; sid:200000229; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"metemrsblogin.gitbook.io"; classtype:attempted-recon; sid:200000230; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"meyetamaskiwalt.gitbook.io"; classtype:attempted-recon; sid:200000231; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mianfeijiedian.lawcpacpv.workers.dev"; classtype:attempted-recon; sid:200000232; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"milanharvestfestival.com"; classtype:attempted-recon; sid:200000233; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mirobitsgt.github.io"; classtype:attempted-recon; sid:200000234; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mocp90.pages.dev"; classtype:attempted-recon; sid:200000235; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mostafa2.mehdi84888.workers.dev"; classtype:attempted-recon; sid:200000236; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"movie-firebase.vercel.app"; classtype:attempted-recon; sid:200000237; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mubki.hp.peraichi.com"; classtype:attempted-recon; sid:200000238; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"my-site-104564-105934.weeblysite.com"; classtype:attempted-recon; sid:200000239; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"myaccountsignup.net"; classtype:attempted-recon; sid:200000240; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"navy-nose-4544.typedream.app"; classtype:attempted-recon; sid:200000241; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"net-flix-front-end.netlify.app"; classtype:attempted-recon; sid:200000242; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"netzero-webmail-105996.weeblysite.com"; classtype:attempted-recon; sid:200000243; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"new-currently-1-23-24.weeblysite.com"; classtype:attempted-recon; sid:200000244; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"newattupdatemailboxkidlyverifynow.weebly.com"; classtype:attempted-recon; sid:200000245; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"nfty-proj5.vercel.app"; classtype:attempted-recon; sid:200000246; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"nnbsscnaceesngsetr.com"; classtype:attempted-recon; sid:200000247; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"occinamete.cfd"; classtype:attempted-recon; sid:200000248; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"odovsccs.weebly.com"; classtype:attempted-recon; sid:200000249; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"officalourtime.weebly.com"; classtype:attempted-recon; sid:200000250; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"office36503.com"; classtype:attempted-recon; sid:200000251; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ohscorgza.github.io"; classtype:attempted-recon; sid:200000252; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"okm.znt.temporary.site"; classtype:attempted-recon; sid:200000253; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"oliver752.github.io"; classtype:attempted-recon; sid:200000254; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"online-e-commerce10.com"; classtype:attempted-recon; sid:200000255; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"online-e-commerce11.com"; classtype:attempted-recon; sid:200000256; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"online-e-commerce12.com"; classtype:attempted-recon; sid:200000257; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"online-e-commerce5.com"; classtype:attempted-recon; sid:200000258; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"online-e-commerce7.com"; classtype:attempted-recon; sid:200000259; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"online-e-commerce9.com"; classtype:attempted-recon; sid:200000260; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"orange234.wixsite.com"; classtype:attempted-recon; sid:200000261; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"orgmail.weebly.com"; classtype:attempted-recon; sid:200000262; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ourtime.datings-information.workers.dev"; classtype:attempted-recon; sid:200000263; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfocl.top"; classtype:attempted-recon; sid:200000264; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfocs.top"; classtype:attempted-recon; sid:200000265; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfoga.top"; classtype:attempted-recon; sid:200000266; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfojq.top"; classtype:attempted-recon; sid:200000267; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfolw.top"; classtype:attempted-recon; sid:200000268; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfoor.top"; classtype:attempted-recon; sid:200000269; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfooy.top"; classtype:attempted-recon; sid:200000270; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfoqv.top"; classtype:attempted-recon; sid:200000271; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfove.top"; classtype:attempted-recon; sid:200000272; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfovt.top"; classtype:attempted-recon; sid:200000273; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfowu.top"; classtype:attempted-recon; sid:200000274; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.updateinfoxb.top"; classtype:attempted-recon; sid:200000275; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p.usertracktxz.top"; classtype:attempted-recon; sid:200000276; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pages-108-tg-cfzz-ip.pages.dev"; classtype:attempted-recon; sid:200000277; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pages.tempisite.com"; classtype:attempted-recon; sid:200000278; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pageverifycenter.com"; classtype:attempted-recon; sid:200000279; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"patjimmy323.wixsite.com"; classtype:attempted-recon; sid:200000280; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"paypalloginin-usa.blogspot.com"; classtype:attempted-recon; sid:200000281; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"paypalloginin-usa.blogspot.hr"; classtype:attempted-recon; sid:200000282; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pcmag.anycubic.vip"; classtype:attempted-recon; sid:200000283; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"port01-acf.pages.dev"; classtype:attempted-recon; sid:200000284; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"portal.chiaveggies.com"; classtype:attempted-recon; sid:200000285; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pruhuffopraussou-5681.vercel.app"; classtype:attempted-recon; sid:200000286; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev"; classtype:attempted-recon; sid:200000287; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev"; classtype:attempted-recon; sid:200000288; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev"; classtype:attempted-recon; sid:200000289; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev"; classtype:attempted-recon; sid:200000290; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-2801359d2be54bfd8701132626efeb73.r2.dev"; classtype:attempted-recon; sid:200000291; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-3096005ebeae423182ccd89665564d8a.r2.dev"; classtype:attempted-recon; sid:200000292; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-46a5f86348ae4aceb3591d126020999f.r2.dev"; classtype:attempted-recon; sid:200000293; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev"; classtype:attempted-recon; sid:200000294; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-51f896deb233450089fc1a520e6ed957.r2.dev"; classtype:attempted-recon; sid:200000295; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev"; classtype:attempted-recon; sid:200000296; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-682ad3b65d944376b919745aae3c56d4.r2.dev"; classtype:attempted-recon; sid:200000297; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-722720be67154192a1102b2cf085d306.r2.dev"; classtype:attempted-recon; sid:200000298; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-7d056bfeb6b04852801553620fe62c0a.r2.dev"; classtype:attempted-recon; sid:200000299; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev"; classtype:attempted-recon; sid:200000300; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-873fc6a3edb941c6a17f50911dfca518.r2.dev"; classtype:attempted-recon; sid:200000301; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev"; classtype:attempted-recon; sid:200000302; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-aab4be29317b4ec296517a557db12622.r2.dev"; classtype:attempted-recon; sid:200000303; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-ba5a046c69974217b0431bca4ba43740.r2.dev"; classtype:attempted-recon; sid:200000304; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev"; classtype:attempted-recon; sid:200000305; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-c59cf4e950b142949df8861e60b3689d.r2.dev"; classtype:attempted-recon; sid:200000306; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev"; classtype:attempted-recon; sid:200000307; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-e5855431d98545b38408f52af50ab8a1.r2.dev"; classtype:attempted-recon; sid:200000308; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-ff0271d87324424a9aec83337e844a54.r2.dev"; classtype:attempted-recon; sid:200000309; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"puertaselectricasprincipal.netlify.app"; classtype:attempted-recon; sid:200000310; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"qaffixledger.com"; classtype:attempted-recon; sid:200000311; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"qbstdfda.com"; classtype:attempted-recon; sid:200000312; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"qpownthenewyhadvanceweb.weebly.com"; classtype:attempted-recon; sid:200000313; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"raj-tiwarii.github.io"; classtype:attempted-recon; sid:200000314; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"restrict-policy-nonadherence.vercel.app"; classtype:attempted-recon; sid:200000315; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"reviewboss.github.io"; classtype:attempted-recon; sid:200000316; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rfgxg.top"; classtype:attempted-recon; sid:200000317; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"riaayaoman.com"; classtype:attempted-recon; sid:200000318; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"roadmap.binarydesignhub.com"; classtype:attempted-recon; sid:200000319; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"robinhooldloegins.gitbook.io"; classtype:attempted-recon; sid:200000320; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rouzhda03.kambizmedia.workers.dev"; classtype:attempted-recon; sid:200000321; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rsjxzl.com"; classtype:attempted-recon; sid:200000322; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rtyuiuytgf.weebly.com"; classtype:attempted-recon; sid:200000323; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rubinhuud____llginnh.godaddysites.com"; classtype:attempted-recon; sid:200000324; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rudra-choudhary.github.io"; classtype:attempted-recon; sid:200000325; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"s.team-s22.com"; classtype:attempted-recon; sid:200000326; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sadekk.com"; classtype:attempted-recon; sid:200000327; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sajsa.icu"; classtype:attempted-recon; sid:200000328; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"salarahmad786.github.io"; classtype:attempted-recon; sid:200000329; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"santanderpod.fsthosting.com"; classtype:attempted-recon; sid:200000330; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"satinnaaoabbs.weebly.com"; classtype:attempted-recon; sid:200000331; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"satyarthi.uk"; classtype:attempted-recon; sid:200000332; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"scarce-army-wide.on-fleek.app"; classtype:attempted-recon; sid:200000333; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sdfvgbcvb668.weebly.com"; classtype:attempted-recon; sid:200000334; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sea.6e2efhxz.eu.org"; classtype:attempted-recon; sid:200000335; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"secrbnsuppotyu9.weebly.com"; classtype:attempted-recon; sid:200000336; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"secure-ledger-m-auth.webflow.io"; classtype:attempted-recon; sid:200000337; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"server.2rk3.com"; classtype:attempted-recon; sid:200000338; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"server.pxs7.com"; classtype:attempted-recon; sid:200000339; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"setshinobi.vip"; classtype:attempted-recon; sid:200000340; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sextelegramxxx.pages.dev"; classtype:attempted-recon; sid:200000341; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shareorder711.weebly.com"; classtype:attempted-recon; sid:200000342; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shaw-101342.weeblysite.com"; classtype:attempted-recon; sid:200000343; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shaw-103098.weeblysite.com"; classtype:attempted-recon; sid:200000344; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shaw-106054.weeblysite.com"; classtype:attempted-recon; sid:200000345; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shaw-106665.weeblysite.com"; classtype:attempted-recon; sid:200000346; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shawsyncmailservercommunicationworkspace.weebly.com"; classtype:attempted-recon; sid:200000347; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sherman-relate-rev-baskets.trycloudflare.com"; classtype:attempted-recon; sid:200000348; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shobhit245.github.io"; classtype:attempted-recon; sid:200000349; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shopifysite.cn"; classtype:attempted-recon; sid:200000350; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shoptkoo.com"; classtype:attempted-recon; sid:200000351; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sign-in-att-108611.weebly.com"; classtype:attempted-recon; sid:200000352; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sign-in-att-108611.weeblysite.com"; classtype:attempted-recon; sid:200000353; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"simxtrackredirecttszz.pages.dev"; classtype:attempted-recon; sid:200000354; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sjhsjjs82.weebly.com"; classtype:attempted-recon; sid:200000355; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"skill-meta.com"; classtype:attempted-recon; sid:200000356; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sky-107842.weeblysite.com"; classtype:attempted-recon; sid:200000357; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"smithjamessv328.wixsite.com"; classtype:attempted-recon; sid:200000358; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"socx.ly"; classtype:attempted-recon; sid:200000359; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sparq.eu"; classtype:attempted-recon; sid:200000360; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"spicyhotcoolsoup.s3.us-east-005.backblazeb2.com"; classtype:attempted-recon; sid:200000361; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"spotifyl.vip"; classtype:attempted-recon; sid:200000362; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ssfgsfg.wixsite.com"; classtype:attempted-recon; sid:200000363; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sss.k999955.workers.dev"; classtype:attempted-recon; sid:200000364; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"stonemartin1001.wixsite.com"; classtype:attempted-recon; sid:200000365; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"stringroll.com"; classtype:attempted-recon; sid:200000366; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sukienffvip.doiqua-garena.io.vn"; classtype:attempted-recon; sid:200000367; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"supportsecurity981.tempisite.com"; classtype:attempted-recon; sid:200000368; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"talktalkserver897.weebly.com"; classtype:attempted-recon; sid:200000369; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tareq088.github.io"; classtype:attempted-recon; sid:200000370; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tbsl.by-on28.my"; classtype:attempted-recon; sid:200000371; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tcaconnect.ac-page.com"; classtype:attempted-recon; sid:200000372; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tejlksdoisd.com"; classtype:attempted-recon; sid:200000373; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telegcm.me"; classtype:attempted-recon; sid:200000374; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telegramjessica.pages.dev"; classtype:attempted-recon; sid:200000375; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telegrampx.com"; classtype:attempted-recon; sid:200000376; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telegramsexgroups.pages.dev"; classtype:attempted-recon; sid:200000377; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telezelm-ivee.icu"; classtype:attempted-recon; sid:200000378; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telgramsignal4.sg-host.com"; classtype:attempted-recon; sid:200000379; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telstra-102379.weeblysite.com"; classtype:attempted-recon; sid:200000380; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telstra-104033.weeblysite.com"; classtype:attempted-recon; sid:200000381; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telstra-104394.square.site"; classtype:attempted-recon; sid:200000382; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telstra-106968.weeblysite.com"; classtype:attempted-recon; sid:200000383; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"test1.workersdev40050.workers.dev"; classtype:attempted-recon; sid:200000384; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tg-logrom.com"; classtype:attempted-recon; sid:200000385; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tktk.tktsk.shop"; classtype:attempted-recon; sid:200000386; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tokecn.im"; classtype:attempted-recon; sid:200000387; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tokeni-1601.vercel.app"; classtype:attempted-recon; sid:200000388; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"towrewds.com"; classtype:attempted-recon; sid:200000389; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tpwalllet.com"; classtype:attempted-recon; sid:200000390; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"trustwallet-zendesk.com"; classtype:attempted-recon; sid:200000391; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tuviaje10.com"; classtype:attempted-recon; sid:200000392; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tvjbqiyv.guru"; classtype:attempted-recon; sid:200000393; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"twcht.twimobie.cc"; classtype:attempted-recon; sid:200000394; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"twimobie.cc"; classtype:attempted-recon; sid:200000395; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uedy.pages.dev"; classtype:attempted-recon; sid:200000396; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ultsyncingsolana.pages.dev"; classtype:attempted-recon; sid:200000397; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"upheldlog8.godaddysites.com"; classtype:attempted-recon; sid:200000398; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"upholdloginorofficialsigin9.godaddysites.com"; classtype:attempted-recon; sid:200000399; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"upholld-lligon.godaddysites.com"; classtype:attempted-recon; sid:200000400; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usol.shop"; classtype:attempted-recon; sid:200000401; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-cgkzkukp.vip"; classtype:attempted-recon; sid:200000402; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackaxd.top"; classtype:attempted-recon; sid:200000403; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackbrs.top"; classtype:attempted-recon; sid:200000404; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackdht.top"; classtype:attempted-recon; sid:200000405; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackgee.top"; classtype:attempted-recon; sid:200000406; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackhsk.top"; classtype:attempted-recon; sid:200000407; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackivo.top"; classtype:attempted-recon; sid:200000408; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackjjx.top"; classtype:attempted-recon; sid:200000409; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackmra.top"; classtype:attempted-recon; sid:200000410; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackmvz.top"; classtype:attempted-recon; sid:200000411; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackuqg.top"; classtype:attempted-recon; sid:200000412; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackvgb.top"; classtype:attempted-recon; sid:200000413; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackwbv.top"; classtype:attempted-recon; sid:200000414; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackyqb.top"; classtype:attempted-recon; sid:200000415; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uspsdana.com"; classtype:attempted-recon; sid:200000416; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uspsdant.com"; classtype:attempted-recon; sid:200000417; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uspsservicetrack.blogspot.co.id"; classtype:attempted-recon; sid:200000418; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uzomadj.shop"; classtype:attempted-recon; sid:200000419; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vedi.154-203-197-141.cprapid.com"; classtype:attempted-recon; sid:200000420; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vgmrm.top"; classtype:attempted-recon; sid:200000421; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vkkvdkdcmm.weebly.com"; classtype:attempted-recon; sid:200000422; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vl1.spaceysen.cn"; classtype:attempted-recon; sid:200000423; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vobroffexagru-4404.vercel.app"; classtype:attempted-recon; sid:200000424; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vrvtn.top"; classtype:attempted-recon; sid:200000425; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"w1.5114559.workers.dev"; classtype:attempted-recon; sid:200000426; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"waassistance.com"; classtype:attempted-recon; sid:200000427; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"wallet-diagnostic.com"; classtype:attempted-recon; sid:200000428; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"walletsecured.pages.dev"; classtype:attempted-recon; sid:200000429; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"web-lupqrbm0k-uniswap.vercel.app"; classtype:attempted-recon; sid:200000430; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"web.tlgrm.app"; classtype:attempted-recon; sid:200000431; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"webmailserv3038z.wixsite.com"; classtype:attempted-recon; sid:200000432; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"wk.xzte.eu.org"; classtype:attempted-recon; sid:200000433; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"wodjrvrisixc.wixsite.com"; classtype:attempted-recon; sid:200000434; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"worker-dark-queen-529e.servers5555599.workers.dev"; classtype:attempted-recon; sid:200000435; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"worker-hidden-frost-ba39.yoveli7450.workers.dev"; classtype:attempted-recon; sid:200000436; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"worker-site.aopages.workers.dev"; classtype:attempted-recon; sid:200000437; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"wsa.osmqone.org.cn"; classtype:attempted-recon; sid:200000438; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"wwwwwwsasasasasmmmsszz.vercel.app"; classtype:attempted-recon; sid:200000439; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"x.tovip.eu.org"; classtype:attempted-recon; sid:200000440; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"xhjxkj.cn"; classtype:attempted-recon; sid:200000441; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"xixiajiaju.com"; classtype:attempted-recon; sid:200000442; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"yahoomailquthorization.weebly.com"; classtype:attempted-recon; sid:200000443; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"yungtee3.wixsite.com"; classtype:attempted-recon; sid:200000444; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"zagbasamothega.dnsget.org"; classtype:attempted-recon; sid:200000445; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ziraat-kampanyasi-besbintl.xyz"; classtype:attempted-recon; sid:200000446; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"zxl.cbbnbbc.nyc.mn"; classtype:attempted-recon; sid:200000447; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"zzpov.top"; classtype:attempted-recon; sid:200000448; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/3961f442eqd80b4e3c28f75c4ba682dd68f9.html"; endswith; nocase; http.host; content:"datagivers.com"; classtype:attempted-recon; sid:200000449; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/uebj3h3j"; endswith; nocase; http.host; content:"flow.page"; classtype:attempted-recon; sid:200000450; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq"; endswith; nocase; http.host; content:"gateway.ipfs.io"; classtype:attempted-recon; sid:200000451; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/medoeu"; endswith; nocase; http.host; content:"hm.ru"; classtype:attempted-recon; sid:200000452; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq"; endswith; nocase; http.host; content:"ipfs.io"; classtype:attempted-recon; sid:200000453; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/46wjpyr"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000454; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/910428"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000455; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/cdmd94193ab"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000456; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/n3yi7p6"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000457; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/vre1p3j"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000458; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/p8w69"; endswith; nocase; http.host; content:"s.id"; classtype:attempted-recon; sid:200000459; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/107519/c90488/4a1f04e6-1517-4254-abda-f0aee8fe0ab9"; endswith; nocase; http.host; content:"safebank.onl"; classtype:attempted-recon; sid:200000460; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/cert/loks/mir"; endswith; nocase; http.host; content:"scearmcommnymnlty.com"; classtype:attempted-recon; sid:200000461; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/cuce/rit/pil"; endswith; nocase; http.host; content:"scearmcommnymnlty.com"; classtype:attempted-recon; sid:200000462; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/qinmot/truklop/poli"; endswith; nocase; http.host; content:"scearmcommnymnlty.com"; classtype:attempted-recon; sid:200000463; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/trawbe/nunty/loki"; endswith; nocase; http.host; content:"scearmcommnymnlty.com"; classtype:attempted-recon; sid:200000464; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/xul/lex/ponu"; endswith; nocase; http.host; content:"scearmcommnymnlty.com"; classtype:attempted-recon; sid:200000465; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/so/e1p6lravu/"; endswith; nocase; http.host; content:"shoutout.wix.com"; classtype:attempted-recon; sid:200000466; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/view/ghghdgfdgfc/home/"; endswith; nocase; http.host; content:"sites.google.com"; classtype:attempted-recon; sid:200000467; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/tlly"; endswith; nocase; http.host; content:"urlz.fr"; classtype:attempted-recon; sid:200000468; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/s/att-support/6ca3iebztzztx2gi"; endswith; nocase; http.host; content:"workflowy.com"; classtype:attempted-recon; sid:200000469; rev:1;)
diff --git a/phishing-filter-suricata.rules.br b/phishing-filter-suricata.rules.br
new file mode 100644
index 0000000000000000000000000000000000000000..f1174fee2c76ea1cfffeacd942dcd4fc950e89aa
GIT binary patch
literal 7782
zcmV-s9+}~R%9;)Ua=&K(&;R^RM*F1zTcUW*%ju_hR{^EcBG?3Nh3EfQrE()f9}^^K
zfP9PwwpkDJ5Gwtu>an_~y>x4Qj=H=~dzJQXuj}((UQ?5`6jWlB{VV9}q?Kh|VNL)I
z`eK#6%_>YV18Dr<E%wbsPym2&0E^1dOx#*+e=IwM6|jK&&ENVOTils`eEr87>KfAW
z)v)B-`!Br&2MxadbB|cD{qkF1|LyqmC;rFRs`c9-jFUnC*J1d<*^goP-@p9U*WZ4Q
zP_X{^VqYHauiyWRHoxX^h|MN<|G_W6^(FLz0~Y-8wYGMwiE~S65v&FuwnMz2Ao)jb
zejop)<i~FK<+r}VD(OF9_*;wT`d@zQ%R5Z!k1s_;ztnu(^N+ul(ANIvrJ=c|KKI^A
zULN>X&H?&2&_L-Mzp!OQ|B_$i>$m^m-~aV*fBm<={jXn;?l1CZU%&mg|MS28?SKBa
zzx<b<__%(5ugj0${8wG|^<zC>yzt9oL)Xy%=Fcymd-abnVS@gTm+8i@UTpC5@7|z(
z;W<AU-|q3_H~;=`|Lbr5{D-f(w$on=ODEPwZCEU%X5pbNAHVsNs5olqH2e`Cei`(n
zpv&p!R}KD0;A%eokCgrVDtP{2KmR~>A92N)mP}ITBu3_#5n2hY0s-TXg+8bS3Y>>Y
zU}OpFMl~>|d^57b#BdQ$?5p%!1$jILN7ksrNhvLbm?&I<KH#;P$GctAG&_2RC<)oX
zC7}0x-_*?~<OzoW04PbBNz<1@Klk$tG8@p#Fbqg8&E&{DC$yp$qK)@D9dyRjFiVGd
z4h}C#Rzv8*%#j8UW(z#E0cl|GN;jX+EYOfbvB?q_b3#&K4XGD;VsRKL9LIrKq8V-$
zN=SH}obI_ad_W76=#|TcB@q*3rjSAe+XM@C>?J39h0k9p81yk~JR;%;49m12A*YZ9
zhaTZ{z;yBgcVa!z%siL1h)Wq_%p1gnqY@*RN2CzXQBN8et)+NUZtV^;A8>ewC#M+h
zA@(M<`*2vcDKCckK8Kkz%<p?YgWDrDA(^2$>i;e@6iCF~77Iz(;`1<bfpdqcLGZcO
zfTi|u!j8#@{eT;>%tFxTPPjSO&Y*x<!r!SESPJwMZYWWGn7P6kjsqc*Gl#g5Zb(@B
zH^??6adl8@R2Gp0Ula??(|F(GQ37R35<UpRrjanos5=H)Ex7748}!T8vv?D**}OZX
zW1k;xn{3B9ZBsQ{2jx`4Ji*55=NE?T1;Q)__`j|Z@1takrPX|Gm<7Xu+Hy}myyi(O
zVU9?wF~DsCILw0Mk*yInFfom#xx(H6T*$vRTuTNn@ma@FX~G7n216_4^yy1T2jB{O
z&F$H_fNPutqZM25*duP)A;ibpFfKK{QNr3NB?SG1HJPNEf-MKEcidvbRqz+zh#PLn
z9y4J{B%~<t#0;bH2G|@?t?KpQU{waqLM;XMyS(q$hDoNVB`yxht&UKdTEVOVaV7Mm
zYDZkFTRu>v))*yB5}uraPtq%>{SkYEI9^P#LQzPCt^1H~?Zc=+s_YwECJe_Hw!i7^
z#KVCws{zyAR?@<z*Gr<}3DjCnVO9)>PAn}n8WL<`5M;&ihqKHooTMj;tC>g#ju?%c
z2n}u?ytjTF$uN)|@o|fL$$so~3uPN^UVfo%E@oD+&<f?8^B2@o;4a1(sTE9%%uA11
z<Hv$|D;O}&*OvP0InI3VTz*!iH{LAxH&R9sF1v@5@4@4;iLqVBo|+Cc9CM{}+{kyt
z>br+rjXK*Ao29GQBX>C8XI}KCj_V8&QC%*%{9LDe{AbQ>zm{}LY$r$wa)aN;!h=1y
zdie9)Zyw)IRPj8Dn!P=)#Gm*5*|N26TaP5=qSF;{$X{q_pYLQY)Dtee?T!@4*U8oH
z8or7~w=eM}(^@}esff32yYD>Ob8EVDe(+@V=k39Qu7{7E5V!79@g|)BzrlOVN9Hei
z#+sh@b-v5{RM+wxpC}IZcE@%vZx?dSup{F<1p9U&)u<eQRzJR$+ZA=-{6=9RC84k5
zy54~=`zzVU>i#0<*pZn_U&nD2n;Z{c-Z>oYygG-tKH!#+$EW4bSft`At9gccW&pXs
zj?9XOm-V&V*I~nlzlGg!uRdfeAY9`0?#jt4rQ?i}bNn>a2xf`Y&ctYkcy1b6C#?I}
zFfhL+p3oW<Vw;31D+;zACGMg!j@iKKH7&Cj4S=9^>eSdQN<GwXk1DnPBO`gB#{n1A
z=Pa|>D80<XJTf$)68wT>y8Q9lYX*8ia<CySJ*fbiV;S$ZVBh<`qxU%wshEtk!#oPu
zS6#2Z-FB0p$E2BWYJSe!6&hT>Lyt+asFLfd2yMbWYVo&8o7ydb9!FRBYhE{FLXQcy
zNw0M?_OMpx*jh0jk@<jHGZZ>9Pq6Qr`)j|hz%9&XfQ=toXJ4(z$P7Mn)U}Wnq1Dzv
zFU*ENe;s1r<G?%-+Ib=w3SyB1;gjH~Ko02D7V5=f7%nXRwZ0p-EtxZ)@5}}x2aQ&(
zs*SokuMEr*He$qb(`rO6%tqa8$0SJ&pNvV6jmGtECPoPcBtu^R<S6-bQzjHwnonXf
zSrBM5s^oN_ObkZKNk~s^P+hn(gouxMLe;aIi7A8%^fZY5y%karJ!$X><bpdPZRPH#
ze?K-)6ASCZJTW|cg^)-qjn>B%+H-Tfcg=Ci_HsYb>r)H)%WLF<Ivmhb!tFsTx{Vu7
z1<W=S#z0RgILp>tkRDsTp{In~gTmZgNFi}mJQ8YnLIG$$Ah^((M+_oS#x5nlpi&{J
zp$&W=PE5h&7^O5L0zIYK)>A4;mStFv{gVTwWCHvZv7MjUFyPkg8?_&FLk+;nBA#i1
zX1p9Dm&3rcB57Xw*1+g#ptal93Lat42O9>Z6?BgNWnA<%jqn21IAxO|QWG-~W~BWs
zXh!jo&=xs86pv++Vv`Ltqx>)mcud3wg+%Zc7dYXvE@;LEl5m_Qb2XV0ovU3yv&R$1
zez=+Ilqzm5nOa`2f+$w$nMXXNU;>Y+*EYGLIadanafJL4uG~k<1zn2-<U%~=38P-<
z5iO6m;(841mF5ju7eD`TII%NW53NnZ^hD<Hzo#&VvOP*qT&8)I<_s~G6YheiAl$dX
zp#q>K3T#WZ84Jy5L2mWgks|vqL6|X&=0xX+xP1s|fLg;?(=rAmrn!VCQjhphbFVFN
zqcmB_md~zh!}$C@Ww=e~bK`+_Wmwh+W&@`?q=hKI7JDg88Dh8Z=eprrZl!5M3|Do`
z_&jlW=k(6drsb6;3vmuD+-5Xm+Zbr(Za^eeY6pZa-8A783)Yn;3E4z6lsQ6Dn^;(S
zdI>{qm@~vDvqIr9iR6pYtRLS#rd;;iE6K&J!IL##5er=+OMF3eM>Q~yi24+8)iI1X
zw|Wd%XbiLP%m#Jds(9m+^IlEU!6amuC)oFK7;{++Jwh|OkMRtBYZyhyr#xZi6)Ozy
zjz?}?X~GYyXOHzQeYw))9uCgF&aZIcjarC&(QDpv%-5M&;@ib7_Xs<lXmd|M=Yn{l
z{iTDwRfw1>pcPz?d545z8fqXxGbWFj8B1DnkS26s9`VmWz=axl7imOU=PO`;l`N#`
z#cX9zn#g0}9F~x3!vqbZbm^Fld4efkt<5?^cxreo)U%hq*PDlC3?2vOT(AmuU=IZr
zPWqyE3t2X$Nj#jJbJ<(Y(NuGonM6A0(m9?#2^CvE=n8xAuqOyx7nNr0Fe#h|5G92k
z4ZBrp!RK;>X0U%Qd8wrnH9|9{4!h^N7FZ#gQ<|0IL37{g+V{^&o>TNfBad))fv5D4
z&eCS3c{e5tLOhn;***xGv25&LaDT+rz#oEi$sWA7$|D$+D^0Uu{j$E+yNBRPQ)?_*
z!j37$+(Y70FU#h<9ibV&#&@*j=rNV-Ny!%^QoG%|Q6imOSDHTK%EcX6F!#Fs*wlR$
z_y5ci-(Jc6V2qq+ILMkCSwe}mX^^Wn&@&v-tyx#4={CH$lztpI$6Nwb7*U#a!@(6&
zsB<VzY1WL{6+PV0@@lvFywe|Yep_KXaxXbnr71C@juZ|^B7R7E`4^SZ_qRY$ULE`s
z4tDQv(scGu0-2?<bf0r=SO&?PMk>u~VX7AGb-PjUlI^+mIyBfDwNQhjp2@fFy3UId
zGf>!%80H&}BMeoV%fi7GV}~PxQ<{!qx3hbP6rr;M52bk}zRZfxntSPxs8ZZo+cr!l
zG+>r+d~trYpES1<QkpHIvh`I~Z+RM;y&PY+K@!Hr>dic&#BG1)h0JVlQQq;S41-`@
z>40X$5s3m;hx0*c{)oh_(#RDyL)5ibpN~yfKfC2zZA_*#i-e!n26MdILoL`_W_SU^
z5+ihnmhfVOgGSOY;8OaA2F=JL%#ZhLrQxUtzi}@Cwz!tl-)!m~JuAT-vqp*i&_!P6
z5w&#Fxw~z-W{REWvd9f>;JG6o>s`^cY>r21+6W)5Plx+FBQ03fKxwxG1<&cnVhU^6
zk@iYAzpXTTgqOpHWq}xy$EQPU(2Pama7c3|Jy9?4CbqSU(xecP=)KN!=jE#LbZEv5
z@kGIk3-CE&D;z01dg{}2Ty2?)(j*a2E`ArAyV}8s96$9yZ7?k%E&aUjHB=W2*`X&)
zYJ)6j(p%5$gRxAdsUmt4LzDEBe{_^T+87K?vC>ZbZv~%g{ZTo-H)uu};dsdX!qV>I
zHl;t(P*Y6;3$NhO7{QSReEovkBOb;KIt8yZZN&TwAwlv(XQ=)PaSPophGz5;@AJYo
z7KTBsQ)uKbh(f<IYn%l#Lh>iZ9Tq<GhzI3f65iy)d?qM2vw_)wWcj-J>g!o)7752+
zb%oY8?06V7XNx%g)nn*&zZAUkF>ZtA91(84dRj=$Yiha=%?TjR1{<`1Hbw}gZ)MP&
z<l$+^FXq#k<*hg$_u?pM&g0<xhUwWML=z-o<^w#wVe19>z=l8^dK7&L@2=z!WB&wO
zawmLbWDd|A2e<BWs`_(cNDmD<p*g2RjYnv(lbphlUsyeW()US(J9plUh)u0SA_eOn
zh)+O|Vmqh%O@mhjGs8jj3l^rYxaW`u=1}&Fv-WGk0R>&~`3x0P3#P#{DvE*TsQ(j=
zBOe9&yJII(o8VDt0*GZk;+?}MhkZwvJ5icVN??{aQ%IZ58y;sUH4paZVR$+ej)U5m
zmjkpy9iIrHco*T>vD8%YADR<G%*CvU1J?eUf1zuYXgSHzNU<vD>_$5z6MP-q7W1-%
zl&TE`Xif;>r5!xl+wO&iBr^4cs@HBf%M2+^1!3~Naq=f~!)pf3_Xl<e31fHZMNZ8z
zO$i%cr}Us$pgA9e<2yV(-VFq2mRQ1ZDQGclm=bov*`Q-_rFZV{nEX1wju^f%Yutbh
zX0Xr*ZIW|dL@_cw2`2fd6@fjX`UN6<0y}IY`dMiQx7CniUV1IwW9FFMvEg27epTLZ
z88oMfNO!zF!KiM=`m%2dU}jhlAk7$F0lk?j*CSl+0C$}BD4;oU#NGA~A+1A0>5arw
zZtYi^M8ea1DA|TqmzK6yno7dzJ-cHX;yR^iBMd{vp8}YH(;ZhIj5Nlq>dYE`&u2g~
zhk_O=ChnDHlc>MF+bz)bpa&KRZVh*(nIk6qP5zQ-#3!eTmV^yz5}m$><|Go=?e{ni
zr(sEbxMMPsE6pA8<r17XNx34CN=hnib-p0%>%G#%5ypnW!8wKx8BuWQ1d|`>PnfyH
z=S$cgESX$r$9=IH)1;v}?nro%-Wi-agb^+X4+xcJlsKI5f;Qv{<0l?w^Jfb_-X*++
zr+gKBDa|x7O>?`qT4t`2LrSwvEO9B>T3rH%SkqFmmAlfc6EoSlkf6M$B<f}_G_!&I
zKA+XOx^5#+i031A24e1|nf;KKUun{b$XSR&t3gQ3%;5A|T`tQ5WjIRHP0Z(Qr%!6#
zYpX67DED}-pgF_DAX`8vd{lgqGfTu>4vG4h)!)-AIkI6DZwX5J6=W?zV+DCT7?Ghm
zv;%_`9NWQ!m7A32govl=Ab&3U(Fe_`9!^9q%ShCqIp0GsR}xRv!oEuEI>p`M65kr7
zGzY}KgO)@YE#&87vr(m4AD$@q3RZlD4laPN(ZSane?$l4g>TToT=*xf+^w{Gg6rV>
z#AoQ>iToTZ*zg59cy)Y<4t^}PLRztyPA;&09>=T^b<(z`*<eUph?}2>grf$e(gY8&
zyz;$qhUOFxM)J6ZLp<9lf_LZ%?zdOi_gipLwxl%U!`uP)0kJ8Eu~jp!V1uB%dgS&}
zn*8DEDj}z}9GE%0=XO{qq}z2H=HUaHGeGQm<kAL4vYz8LrJqS}<=k{@fD@M`G+9%c
z24emweeLsXc4u6x)tQbPrZgSIxx%AcGDsuzjMlQ*Nj*D|U>xTP=h1Tzh8DgyV2>JU
zyi71V$brEOAW@nLq+@zuc0j4Do55|+kViinZajd~a&`iYnB)L*@Wu|z`w#31pMf)r
z2$FkwT1Mvqjj&1xZ6|PI8U}Dm(@GfESh*RPP?P5tm9(=r<G`5UnrocVjsi+M<Bk=>
zq=!MdYY^NL%mp*tId3MdmD181U~_!?QiGa}7SaGpaA<{^m}gvDuPk<&W``}%c%}7B
zXr}#OoHW9jX_9~%24%gPCJAhb#;e$DChgI3A*31xGtG{H;sa{*lNy1o(0H{n&dehl
z<bV?8U_H~uX)iU7)(8N$MpM>?gBMmSKS?P@Z6`L3QURcFO8d11dqm?MIUo68QIAYX
zHgRBV;Fi02Fv^QT1KZ%sjebzt&S<qAq)|x_Un?avA7<3trNFQ!G*zRV0VgL83MKQS
z9cJ)c2{8ibY2Kf=#W0}pno-P7gFtU5$(#l@&T5z#^RolRj7G2-8ZQ_IAg!H^Fj89s
zX5y1kURmn|=o#D`O&6@R$S1)@E79>uD>i~sqqmG}&Ven^cr7Rxq;`6mM#<S|2Pv3!
zAT3BS$^qaK57cVZ5~Ro7E~B<q8kf-y6CV)KVJmzyPEBr>IH|!h$tOAa8NSsF^<afI
zlLxlOoybsnw=_$wm6zU3leY6971Q2KX0~Am_qc1i$|xlT^OI3hSz+X0X2oGv16TtL
z*ao9{u9Mbay%`0Ul1rEXoe@HeXru%s9rT3TurzoVS&o+Apiah{xTO$i!S8XmH_UVR
z&|8RYM1vMw9uB^3ZGQG3GBd|9N4`>9-EDZ?>m0xt_GIA}IM9Nq!^Z_)q=gGg2<?Z%
zEEo)T_U$FOHp@LePdR~Kv0!p`;GhLhM?8;orQ2MqCt%hnZC*Z0T~BDi!r@>E05{~l
z&w<c_cjK#+41R}$+K`~!)25e9`kjylpeOj>hP37!eayH7(iLby$nh0R?$7FB5Ojmx
zhG+Ks#G8{s3u=z)N_~AEi^b4_lEd}V?jHKxmY%~wi^r(+b^U?8`(J<k_175B+mlvX
z_0WQ&V`1sO0C8*Xel`3foRm?Tp2M_Yun=}qIbYz&8WvXYxNQPMk0|U_VQA0Lf_201
z6(ST^ckrXp>oN0$8zHrKLTUEMp3b%X63NM?f);ce{c8Ke_5_f@TDy$Uf^5S}71|A@
zt%3GUWM+=<#zApNpzJrff=8MY87G!lX^Ya#8egFL`CP0!tsaNIpl4^6@FfD($Z=jj
zPgmNY1;55zMOSQ^7s2w|-KWJ4t#R1(f`lJ@!A_vJm0oE7Cb6hpX@ZS-iasl(yli5*
zlN+h8z~fU#=n4Jyw{7IUY|99(G=au$H~ln>J%B9u^Z7Kcgcjr((Zm2nlWJP{$XI}`
zG;PMTu5ite)8!#KwBX7}6tFg8m<+kZ+UP+^bcNN?T48H!)jK(>q;cfF=du1Dcp$RR
zX%5kd!Q?|j=n*NFy}uuyE<!_6@Ff2Y1zw>#TzhE2r{U?kX1j*Qr7E>k`hJhP<|E7@
zLN@83G>e82y0o_C{DKzf&5T)Zg5aKoG~YW5#dRPX2P)00F|A?$*n}IF$@VR~)#u6d
zD9y3qetoU=^{R%i06M?oH=D3eNZ<v9hSoTRZo-DqWbl+`)`%t}IhsA>%Ihh(F%AbU
z=rwGr*?nldrDdLA&jIC4u^*LY(Ae#M!r<;TH<xp)xgWF&+ABe*jSPdLgR7`8!h^Qn
zh|=5|#@JtZVZLKIt<tO-_SZTubzZ_Vr5Q9lUu&h?G)<ElLJ72>(TFCqI-VWulfZ_7
zEqi7K8(Rr!DS5umpaqvkL#llXnCAHm2lY9;JCFqmCZHkHvqVB^VvS^~fuqgLr$A`;
zWSAZ2Fbj>X266ium(J#HrmiPJ3&IVD8x(vG#yDu<YN**7sl7=~+|WJcuJr51=3v^#
z$Kd7^L(Y#Y&A8#ihOf9)pF{OhLkm<DadG>I(4Ym)Mz0!$)i10yxE@tO3$~4({5c*U
z-;J(?PAh&oubg>Z<k%zjKF{h%I1!sOFpo$Z#)a<7uq23*)`hGC5r!628+&%s+6v6K
z)#Wix(1LK|aXQ!@Im|36wBXx#{H|~@$%$1x&kMs}+oPw+<_fhiDY+YKV?}U#4%N$H
zP(zU%vw?eUAu%r{?;p$to@-m%Xxm!dhA0<iVeU?~yrD}pEMe?X-bo6CH$&Vuj?$bN
zH@AEhm!WS+uQVx!gYCE=#)wH(rD-psH~%1+iyIpsOdjhdJu}0gze^8-9p-=*Bo<z3
z=gYpsebS|u9H`PX6*bi^w>H|YuxA@^2sqG!j6z;wWQC$T`W{(A3qFZSkF7a^;~_0I
zM@WUHO4CPd^<zbIUfZ-713yaBMNIp#W(`b3%B3?$r&oYj!xGY@67C77PxK_lu;io#
zXvq;#UavW3HlZa0MB3}IXk8<2*`BR$M=iGVyBxUeQ6>ER;4?l_XvymEB>OJfQd@vT
z7ya5=fI=4+#1^2@#kFoNU_=+gnOlHC7hkVW3z*Qoy}&yGHlTy&(*hW}*xySF;OOGH
z*cKqr#mk;8KqAlkz09!{`o0WGEV~_YrbS-ChCLz~PGRJ?pU_hdsnNVZOYQ_4`;&L@
zuOb$u$r4WdiT<50fR=;_)t$>;_7GfYVgyg0+jjcRyM1pk11&icre|c-TvJ(h#bmPv
zTGAs-&TKarcpN{lluo1^W-}IA(jruNmb0Z*8(G2qi&4dxRBAdjp(P!{gD!wtLv7@B
zg25T|D0Wn7=YS8eBun`jI@!SuV!O&2`z_$mk|1F@ztED{k9V>Au#uiZz2FGYm1apW
z#FQ1bxRhOHYKETS$;!nb%wyC5T2dw0d2RIbG_;iuEx8fS3Rm{8a+XlT$1QK2?{T7K
zj(8{=dAGUlMiifrw(K8O_30Iuk~T_HCnS1_-!8AW1Y|C`Hex|c^v);7Fv?aX(2`Ff
z(Mq&#?1P*Fkk<n9h)Y(Wx$f_r3d?25$SO^#Ft|Q#Ryba{yM8r8DW3j8o?x~X8)G+;
z5u(y03zmJ>*Jpcqa-~@nJogEo0IvYA9_1^|r4YT_6z1@}_hbQzmq;p2sbK%z)6x+8
zVF)eB6qdsW77G>j+*VwG`cxNe;hN63cm`ZkvcXJ$dJSqI7OM@Z#fhJVmV65J^?V|A
z)+TEmO}C?a2#-9X#OFD3r3fv#5Z=3&aQNMPi%GLtN{(-D1}jlGZst)rX+azAy*Bgo
z|D)sYz|SvCzFwiNKfh9TP*H<39vUnmCny+5B2Q{`rlWm{RlKxh{s~cWsEmTN<Y0I*
zcQ_n#{eEu={v`wPv^|w4XujcEQh9v2A;wn{udzKvs9IEBAFfJ@d^=-JZ^hnyfrb~{
z^OP@SS&vfkJv^Cur#t#=8(Kg~1+6=6NlGbcAl{a~PS&>}3)my|^*Ziy92b0(38jp*
zQ%b^#CsWX9V%zBceQ(GL|Lr=z`$@7%fK?K*#(&-<?l2zujy$5OvmiUtR^krXpqj&6
zdOBrRtAaAC<oLNSHjIi*-)<VDG2ar{JV?}pDK-+xl_X$2ka++^GvfeOi@t#wEu@X+
z6tx*-J-|y2OZ$#_tKWNw{Aa2|C_Ck%h3Vc?Y{i4jIywHX!gYt=CA9A&M1>)9{6FFy
z(w^IQD}9Uk_&#zBdP5f2?H0gg@jLa@?p5>cp*3WQcNL!=zaxIWkDU4rS;0>=e<M3|
zEO7Sk<LsJy%e`$B5mXkk#&UHAyuO!pS^YBmWp>|d-cf6j$&>iqClz$aBgQQz$pv&|
sQ!nwMb5RYl!MJ|Ekx?-xOf7wD2O^+-+VivzUqX0Op~n2<Bm=9<OlD&O7XSbN

literal 0
HcmV?d00001

diff --git a/phishing-filter-suricata.rules.gz b/phishing-filter-suricata.rules.gz
new file mode 100644
index 0000000000000000000000000000000000000000..d833cd66e89ed0b2e975f662b29d4246d0a14269
GIT binary patch
literal 8250
zcmV-AAjRJwiwFP!000021KeFpkL0+KzVELn%=lmfmL~O<s(}R-*v9%WYcIxQV6hj2
zB0~~W6shDxO69L#Dyyckk4ut1MHjj&AEgxY3k4ZpP-J{RzWvIrfcLlmn7Em^9N+%-
z%g=9rb(&LR$=feZfC2kYKfe8KWyAt|f6Fg<nPho#seip(-t+AJa``X+_pkSrYcTI`
z*&8Fr+wa};__smB&4HxHAN(<YQVXnP^sP<SuIBxxpGMy}=~JqfpB5r^q9GZ$u%Lfh
zKfllCYyat=IR$BAKK!Hj_^3b0UzOAJ{F-V7`8@3W{2$-^xhD5{E^g@rLd;r?5AxG*
zhDra`8>A=xEJT2|&u{VeyFdNq-@pF-&tHFiBl37l{`u{9U;p#hufP2HUw;1f=I<9X
zzW?xlzR}xnuitj)4flp(V1arA|M2B)5Ndx1<69H{AYgwSv|9d71qW%rJljndu#;k6
z-l&q+zx)2fzkU7nhtI!F%Gm$$mrQQ{Txrk8o=Dr1M{3pTkEMbbV~-WyiM6n-zU@SV
z|Jau|!`XX&`S{7cylL3pvoC)@hC8patS+-MrSx^QIaahqUHN|!c60jh>wpWyfQL&L
z2DZcswy7>zRt0%-g%xX?7iWwx>Bnyd+v}iftf0H9s>`D2QnK^(LBia+L5sTU2AXa>
zARM(=v6A%gKPeqv$J(LA>VMLG;sS<~VBL?$%b>FhTF{g#C#^{qPPH;>us%ekJ3udv
zp#Gd?*iDdLhQTxL6Tflms<eF_JX!`uI3rTgX(ow3<6+V{!0QXVsC6&<gbF1gF~m3O
zbh?4hu|!JN*9Z0tEjJ@`Pc-+;d&|?syE;5bU9>XYm7YO|5ts}uYa@bi$zTDemB-HS
zXLDi0UX2$!+)10M^m7t{tJgs{ctQKmZMh~#1X0iM(l{Yt)E6PtOoW7{Dw@1p{a6<g
z<2uCXCqKfGC8%fTcsbod9!h>jxBf_sV|+~|Siy%QD8A)*N!_xzjnm~B&|b%jm&YxK
zPPr!jvL8L@#9!^GSf1nMbkce<tBm0uv*R0CKr+6p<N(k^QKXMU!c3{%!iE976wi}d
zGHT)^KZuS9^EqB#x2`}$vMDZz<$f$&mEiP9xG~NL{RmUkh)p3N;VfhtHpk2FR?X9_
zDwF(DBw5!aS(&AD)nq*_5Yp}Oay@<CIingFx0Gm>!s1iCnQ`y+#8ZM^`8UrygF)uN
zOa2TSuE15;<uCA(KQjq9R;@e>uqG;}E%35FW0jMqcPCc!!4G_W+mgJGBEJP*GH7j*
zU9zHUK4)^nU7)~?J+J+^AB(-jjlF5A+CP-lrA^Jv5e@0t?Cba|-1u96`J=CWjU0Pj
zWpNk1!3=yMT%03bUe?i9zWojiP*pz9jWs~`9T=c1t1i|6<pr|=4Cswh3QtSK+`ug}
z)bRNz6E4s2cWK&a7eGz<4l*hAZ78_Z(F~}>%>F#kGZd6r6%8LV0pyZCxqlTM2}{iU
z@AQ5p1()!-tm9)vchrE0nG5=a*So<b@5*R5z|06gT;L-nf+5do5bGFMVJ2w5OA`dl
zdzY9=;SPi?T>fT)m@%Nj%L$#G5;OTka8+E|gqWxmP8D8O=+Rnk4&%XvZ7-<MvcNv;
zE9gp=RCzTdB_%XzYsizLCUm$k*0ZKbE|+8hc+invOSdlR%=MglHxb+h-72oovc$fq
zD5YUOQ6dH_ga`v$AqKnedl*=>G_NPatbv0V_F1~?W8KuT<mG*;>NzKUuXR)Ky<hm2
zFPy<R7meN5McSIDd>u?Wh&g#a30do2HOTEXl+^5xav|GoQ)4|>>%MUTQ0-Jw_1L%a
z!R~{y%Rb7j1iO*4{73B7BDdF=^M1{%NB(#mw_MyFq7vJxtAX|FF7wCjxX-HZ={&8n
zEXP{z{L@~{f5p_Z(AO7WRUKku9X)VTUbnnjd=pn)16@XOE#+kHdNcq>Zx`lr(QmV@
zU7oMG?CbmOA8@Yvg56$pTFNT7B`pY>$*obV%CF@njC|bo?WS*AwU3YWE{c`j=sF+c
zE!Mf}47sr=BfP&+pVEkm=8uUr*YTjbT4A_B(Gw|)dSCbb#`AHx%Kp*UF4|Z*a$^nJ
zO-<7jbJ?s+-xOc%w!55&=|SkoRr9dw-e~W9m8yn;m`#yrV-?7aHNnbCb6xuD+VgvU
zEBe`IO^mC)Abc;bH&@YemvY@indfk~P(!q_@KWi1NQhV`5|c^Scu6&!n*wbSM62r>
zG2E_b!{&+V1~b~K4NHb=yp(p5<G_lD%|A6>W-17s88OdClbR`@kV=D>UkY=g_O#oN
z)e+ab!All3XCoxt&erQ<JgHfUq-2IvJNY_%y!21IUV~fQvH)X>CuNnDF#)^5OX>`D
zhS?*iW>SNfmKpWfd>)i?>RyM7mySIbxE6KvDwn244ZUvTSGF{Gd78ZrQ_L;Q1}|B2
z#+<jX&F4~%3B-B^^3<P@zMgM3c$wQixa+d-K?7Thm$KbcGcePK!9~l{e9mQkLq4^h
zLpJBNXqg!;E_rjwSW?uKC1nOh(nC&?yeo33NO=KPop+~;%Vh`cuG7ut{ke;Ih`Bx8
zqNQ(?oEuh+P3fTmIs#h$=7~AzBQ;?K<k|`^URfrF-(!-J7A<$9L-J9OAbBR^$*R@;
zNVB5KtJ;qMT~xV(w!v!-kKK3LvMb_{w}_GRT@fA>^g6s~z2mnL6Hwg+FJ$fUcu<zy
zd9ss3LTdFvg>q~V=hn24alXS#@Fv1#Vzo^_*5bYnIY$lIDB(kzRvW~)eSsLe_1+$|
zext)n+9sfL-sb5Ejt5V~ba>g@r2GiBhTQS)@RBw@Sjr`rJ&`jp{J}LL_VY#91;@+O
z1Ua`&XmuqfrQ&tOco~}D8%R!-5M>!vLZrjX*S@io&veCn<|~^3V-k{I!-HCO!OP_o
zv*}0eAj63Sdm1GsVaf1na!_@Se+H80*3!1_E~#<7wHj8wsMTNHD$XJ~c8lz1VNsiG
zp!sl0?{Fp4tZS39PTJ0!s*I_<mEo25@F-XRJuaGo?#d$Kc1?y??&AdSy@BXNkZ&$Q
zPnQUv=gROZf%qrPQOkQScsjhk<RZhX145P7pv<aIoh+6167Dty^Ez_8+)#rg45WLm
zG|BU-jdFIpOi>@J_4$zZ_iq6pXtcx26P@>YX~j|HbrUnt<JAoL2EDmN0ng9__wc$)
z7X=<I=VK`uxSk(X-Q{Hz-^HsJa#l?s4-IGiR0?t6OT6IisKV;SW_Tq*n4-zYbiL1C
z+AQ?}Z4dynhyObI8Zr8_lGa%~LTUbZ2K1*Es<AP|2Cq<vH-tMaae95)`_m3w65scG
zt$f!H>kDYv9dpDtTd^r($_uYt2y@#s!z}_cUda$3<{*@UG2XKm54;cK@py$opeIM$
zv`x^ym<+E_2te|=oHm)%au!DGgNAgx0wEsxXDO)UTuB^`y!;N3pR$HTgkwj`=Rn9J
zhPvQY`~a!+qMS*TrW0qroA3Vnr=vI(;{AzUHvwAq24*D`R-!GZ&Ywf4f)4?}(K0r$
zrno_;)M8p&^EQUWpe1f__nlnnF{sF6hF9uiAcFKD1UYjQrWP)_&(zkiOdYS-$H2hc
z$_Nj~E9@~aGhF!&VOO|74EH+BJE%PjFj}HEz^t4g3vAGPicZo&1Nc_Y!<OfckPtIe
zc+DWxLL?O3C1&+ehF8U704+y#4ri}}Ma$9#4rAJuhc4SfPs7f^U9~F8*6B9x4g+2h
zkAaU|8vmU527EY=h-w{P?2<?`5dJXy(G#;d?Uukb^BG?CjzMXEE)Qzq+F$j=kfkRP
z=^9=E4{w3RDkXx-G-r6lIy_#hiKnk%o&O_QI3tTBJnqgSUbT*s-6U06)J=O<bm$3F
zIyl(lRqOB{9*uTUB8?edm5#wonoJ}j#Nk!s7~E_ox7^PTF4*gU(Q><yJhbC-3!Z7l
ztGO`(Ib+xsv^OZjtFSS`Ipg%P1RT;)F~ZohB2QQt$1AZhPS@#hQKL6rS&fk|Af-^g
zbDuiuy;5_4piG8WTVqs$fz-;QQah1}as5KHPf;SMI$r6FQRxwsGv~eIbKPr<@1rGb
zqgHOsvSi!%noP<jBiF*5+k$$Y`uBwQg21#Duhhn<-MWH5r{*MVu?SwpjfqHZ2Cl;v
zi{Mqv@FyS#v1gvf)RKO_oF_7`%IT<V6|Wq|1VX6fN#K)3Y3Un%&d<;102pP8?z=FB
z^RzE{ZktVpvg*@i@CSpwlzH5?NW7XB=dvP73~+X$+CUG!-}Hpey?YiiOj%amYFC?K
ztcro8WLX6t4xb(cjh}dREWCjnSp^9jKk-UYOt26sh|3}-JMd~sOz@a|cyOK;R8@Xf
zYU|p#kpL}IoJPu~{w{}@JwkYuBBraJSV-0B46jVYG+)Xj%Zr$<jh7J4%T0w{V7z?K
zr?{tva*;KW<)$;dq7k3q^ZXJG9<O%9C-^3>;=yN_!3#BV+1T2!fsWhM$3!u_3KEkg
zgE;IX?MZ*Uj<>*%_f&{^9WY*YW-VD$kyzj`YO;j+b%hxAYR(12Mmal4c<M;hWp}oE
zt~rVw>hMxHx7J~MIq~X8Oh-C6I*<F1f=iViU&oA>!5ynwr^EQOtDsUmcqJpIha<<f
ziB!Yu%M9>JMsSv=_Z}pl_yVaj>HNB1<5iB}Gw6{BE*U(|o3NAXL+-)iRgmCvPzi&x
zJf%L8K5VB8UO|W_Y^yyv^UYBcP&hrqs|xYIKyz{rLS11-truYFZ(ct2Ve>6`1tR_*
zbW8Uz=*@Qn{cggLw}_Ez-w-VR)o+{B!$$QEFLZyVGyOboo=Qk~RH00~G7;QAYR}zZ
z;C4N?Ks<|ug7MUK0L_^)=i1RAt+x!XSOiyY_uu!3nQFtU7r~8ut|HhugSHI=jh4<`
z$-w~Dw!PF5>>aOU#1)7nlCA#ydgsFPx~TPoc%>t*VEuDr^;sX-KY6Yvd{!7E?sfQR
z3EowC2VfhBg~VO>1}}1_B^=59R6PsBjF#D5&zncn%nUP8F|ET3eDc6%fC$(*UZseu
z6Wp1F7(V4qcwEcz>O)+eZ`G(t25j5U@rpmp#B%S~f^hvD#_g$&6XxW__k}&g%h9s8
znTaK6Dk{gT;V^@IEQE`w@*_E3A%_{P)5H(OmzV*(!3*0_t+){G&U??vlf21dgdB3b
zLJqU@PoK+v633%AbLM#U90ajsNtEQPx_ZzN7ay;ngCNJ5nJ2xp&Oc}{3s0CN>8g8|
zr^}IY_PQC+@;Cu(1pQR`aw{Vi2CkR=)T<?{|4lhl8#n$?{#h1WziyNquTeJN3Dl~I
zyE$-4S+`L`BVO?b0f*vu#h1l{a!FNZU6cXPGC#rP+^ZSZjqB&C19iD{=YH2U?S062
z-2xR}3vA#iKl3;r3uq(57yajWMInT$6H3fEcXjnGn4~VdvT4gAsvDqXi3>R?0;jY0
zdC!xiiKu^&;}wHg2!sCU7oBqXI@}I1+{v|h7Lf?ym4P^O-Vf^2#%P-5cx50watUW-
zkGR}9X3!GsQ>*ic2x)k=AQtj);;<wJG+G|Fz^I`IK7+sNF7XL#9TUOvYC$X@*)&{N
z5jD2ecwt*YeFFQTTXj-7D4MM9imc3=I?M<SW+RM5kbBfX*J6gf5IP&KJZ*I*ergY|
zE`&c67H#_H^kxic$14%B!0~hdGoOX}Y!rCBoQ@MY0KalzXNf97cDfR}ZZWkea=fAu
z3l~IAL~o~xq5sb}B7%B8UIB@PYt?gWMjOHF@ybXnimu%yBF^EJj5yUX$Ut)cnTheX
zY}+=jo8x79YUALW^%UO|yclASS4m=V{mj#8O;^x_(}{<TZ+O|=k(>=A*`=)N(mzyP
zQAY0L&hZLJEXSv$<*C@~)>MLh88u$r2uZdhk;*_)R%Mx<NSOw*1oe5mq7i5Pf<f^A
z?(S@q97nM%{3`PTQVIbQig}og%a3GiNhksN@97tuRl7YMGZ97`-5b~0+0|KHm1%!R
z2o4DDxmW3@tg%W{`+VJVJ-spkTEqf8jdxXgp}cPUy8DOj=-rPuMPfC#O6}gK-^`DS
zR4uLA!<``BG>Ifb0{dCL&+S3F`^D<{@w2+Sy4#UOFT5!e>lh!eCzkw(6~db|v92-%
zwSqDxtWz-2mtAnQ9?&UeSIBEUwHn{wu7o#l!fAI6N`*uBHCnId#?dO6-R`4Z4jr+;
z8#wV|H?-poEh9#2^4uvX=cgweSiiv=HQ_Ex{aj<6*_;ResPpT+502K#xmWdrp0`IX
zH(KZR6B$vNyz_L)UWGJew>SSBa#BX#eGYkBM&5r6IWGej9|PW(fe#-8J`{oD&4Wl|
z_d1z2FUcM_Mus=$Avw0Z0&&Eg<IQ^bJtNT&)9Z!mr=}C+LJx<YMB&YU*y^8EsH}jR
zi;j%qO?>zl=uigDKLL7zGU)CTpwHiB(ETSs&$lvY@d?n*mq8C70sSa~#+&%?N9gZs
z88rC>=&LD%Za)G#mO+1nBfITo&>!K*?y?LTvm*=X{pPaC@%}7>#_P!PM#qXYqKZ?c
z#^<xL+kxGWc*7ljSTmU|US_}>?~ti~b~h-KYsr>j<27gy&vscJw55mEmGGuLZ1C7%
zejVe;b!q~<>JNm?#WDfN2MTa{zZePL{D(~~FxBaus9jo>OHjNIjn}+69~)AE8V`(V
zc=I1Jc0Q<bvT!xiWDAe0;f;XU{C?WU@l|psgjdBGL5^%<!y5&$?Xqf^pxtPsB%@;8
zsDOb`ZOhHr>lUb}eOq=X^qAEkl*ooP1V#X6m>7U5(lzOS8pdVn8cNj=sMY9oFIu4i
zRL4d|LC}FUz#1)NLv(rD7%;2R5@`&uR<qPH#>NOLIi;N(K+&OTpi~XKkrFR8L_;Va
zbSn*Ka@3-42%&A)b|&>EJuOy)U{-@RL)SFiNCSqol!#U-Erzb+yklCFw~ZFF8mt38
zijFdo)Bt5<YA8gLw#$_(hoQI^#hXF#QbTG&JJRV!s5ICrF$@e$2Mw2+r>~3EV3^h5
zWK8#kHnOFZ@um^Os0i@3F`dx^?~B#onAPaGP-5&!@*F0ODotuColu=-o#~~Z<^2X~
zFWQL~G?g9K17oyLLn|42#sLgfJc&}Q25K+bw{71x(sVuHj0`Oh(zLQwV<WhxO;@Z2
zYA@RBhIcYqi!K>-!L$9~oOW$9nyys`+!tyuD!3A$SZWm9Frs_ejG)_OM|*&77)#p*
zZBTnr(bG|NK#i6IBk3#BkGvTO(P=)*i6~YBwHF0J(&SajQBc7;DL@SA-shT2nWk{v
zSgZzWFA5-;G|57eUNWQ72+2tgocCHLL)x~*YM}O_5;!!hQ{9jT);3AfFiNCK%>~kc
z%bH>}7;ZH>-ggX`HpzV@zag0rX}Z!3$&MORt_Er^s`#KrW(M9!!qO~b(4!C?F<m2R
zCk9=t25K*Ah+(>sEKT8cn!yi4G9L}&X&NU6G0O6O1GN`5TyUPc3Y`WL#$_5<8Zq(~
z(l85YgdxRhp!TBUnD?XUWII~MS_T6cC1^5VMlc4P6{~^Ri>7xA!OZE$d#fO9-mc1S
zFdwNBLh)vMe8V`}`%kn*$pbWsH^<{!hNwpkWw>a~<oD)oYdo3N+#V;;S6G$F$;suX
zZz$f74iD!l+8cOl%g+u|yxAN%H#_xjvD(~hRjvoMf<75<QX@F<%$VZM=t%F{nwxYX
z9BBY(EukN$`&6>elj2R_@D|_!Zh^I|S3~RRyaT<!R!h5re`u5I+vS#BL_grAPuwTx
zW<5JI*+YRV6mJ-Zcl-0Cp`rB!7HOYLE@OP;C@IAo%i+WM{w%6iO!3BX`1siE{)p3f
z#Jk}Q<M4aF&-Y#bSNfReoUL>^T&JGm&FApD_E4#l+x00I{VBIGc%wP;=>=G-(6(h4
z8?A2(pv~n{2HWF>JqM_*+TUjtcv)xga9Tk3qC0XA4|vJf2&*=JbGjZw%zvC-xTuZe
zjoJvg?#Bw?K*}RE87bbNjfDOHA5XU4FYn``^=UzYSEd5LJgS@3rgm#J&c<AdR$B0;
zY6LxAC#kNo>%^gkj@F?C19fLwGoJ3x+U&LS)BDtTy_r#7u3_Icmu4u#p-bK&hTpxZ
zer1C%73}ep6p;B<N``g3;TpmCtMPT~FSP8M3*^MxJ@jS7c&(d>`IVfsC5I|0-tdfI
z?$OL<^03_R_ws|46mM`wIDt3LC!gLEa-=iI8<~;NZxv}sLO2)@LGk8f{DP;=AP&Pb
z<nUd?*<pB&9lq=MVfYR+e0Z!XS0w!z*mD`$eYNUUn=?O82^%PLs3*j0>Q2TluqLJ%
zqDlX`RuaM`*?>Cwhnn54$2pA?Wpdzkd?zPQHnxl(Sh2$!rjf8WJO1ho*0+K2CTL{f
zcyX?%S>uh*$omB<yH<%Vm&fXk`8~Wr8vl{Mc>KegsS)gQf7OHYM%x4yV|YFfOnC6-
zYlQPDoX<hDhZ;X#*LSh=T;%}xGGM$;@A61@c`uGn?(n8+geBRQGb|>AD{aM*!f+IC
zv_^31UeAyBN%1<i4g7a)-hYseH$5Y4Ry|HGD(B|l_N@-I-a};|#Hwj{Ez_7LXLuS}
zwr2!yu0}5Om+bmnv_^|JQ6q$LN}q@NGQ8;-A%yxeqz}#yZT7?)p%J26%>q8!l{5`G
zcHQyXwdm99csG}Acg35d5%x>^#&JxYS*@M@-l3Ynn-yy7>g)Tf5qLv2UXRp$d_7{e
z@i7Q;tcEki8?g~#zT|&@R%XS}ADN@!4cmyR!GAYG99VV48@3T;m}~i{+?pmT%lob!
zZ_-9okiK5i53fO0dF`dBedA5rh~}K`?bN#mT}Djt63=E*OZt}gVHs*z56jtvU=<u#
zRm7XL@tb|Sm$mE;J8&@fWK;Jo9J$;*X8Na@m&#s^DLTr4H((<%zb?3)R+w2GrYir1
zvgSS@hEG#6s7TW$ilZyac*8dSm!CD19_A+>z)y$N_|yE<n>xSd`|vG(_-^P9Zx<7Y
zU0jId_wrjB;8@e}=FoB+-T;m`RkKSY{Ze+#@fx~IywvHJaH;b)k@t!5Iy!eTYOQU-
z)$K8}uC~gV8As~k;LXd3?&i%+mmQ+V8;B9N8_e@;%4{m$$cyOr5Hqrg)zhrngt9~B
zc;hYNezkBmq$%UY>&dQX`E4K9dfNT_vroJc74fD{v5q&pIBApdRPQt6^;}12(K@c(
z=*NLYB)nM?`yBI8g!Ed$&9EL>FvS}kv2Q1nOL<M=cyS-RQ4xv$Rmg0ztMhIgt+Fr&
zn|?d|ALJNN%Q5R}p6%q;!wN9G`4D^R0*WS@3~&0w9=6wIt<-dRUiQmYvV)D`&3X7A
z?$-u<xa*QaoeXcH!@qJ%AIiAdXK?FmUrV_8XK+u(lyP^T!F@_o?;`I0Gq~;5m2r#D
z;69)4W!%GOa4#N;xJmON+}CFrH~9?i{d+3o{t&-*on#sJhxoOdyq0l)h+lhr7hZ4F
zeog1~r;@2Q>5${bGF;T|Ebphc%DmcjEoV37vtx<Bw)%Yq@cOi;TR@-7mRIlwC0vcR
zHQ}sk8(NW}uLvWx+B|HwXxlZz8<udL7QYnr-grY1u9wSIU$k151BYc8-h71XOzKyu
zrbjSqLA@G=HyYvUWPVs+?lAeiVys~YHm@+ekqB3RjceI$jn<UiNX-dhoDWAf8Zx|5
z2scQ4HvP1mSyt4Q^>~qA8+NpXY0XvgRT;Oy&HYnTS(iWkW_ZI9(hF4czI}VSG?!{$
zZMea9q%+5xkdQ+u<2)swR>VsX^ZqV6NgFDjM+zD+yfF#4OMQPP+Oj(N3~w&N&FQnh
zdK>Ir9lO>HFM2jCl?H#QzIS8RinoKQe@^uWo<D|Twgzu(!Y@ruR_mlk`cWZP66jDr
z+||ssXU9&IFuYj`zZ7}h7vO$I|3eDk^?d<q7nX0gn%pUtOk(lIDcoKk0e=0nEKA5G
zD35p_wDvDQDb9s%3I{{H0Souj`F=T<G;q9$3U_<Aa893l(QuD9N8te{=d!o`-qZJZ
z`+SvBKe8H$H%{TPuTwOJ9&&nkgA|@H$<&K4E}qN;wO+$yVp*St*3mt!2Z+@LmMy&<
z2)2?YNV~?lzCWJt3xL+ZJ@0d^q+F#`_4-itQqa4j^=!}Q=E^oiAj(15z5T-<e9@sJ
zV;Y#uw-$|LhN@PKJy%RZCt9sLF%I=9E_3>Rv+8iO@$}DstWH5N|6V-}5hj~wfn^=!
zfK|fX$TL0B^V<r&lH~Ga=xuQj<uCk69J`I-OTu{Z#=?A+`|6*zYcJ;H(^uL*V4lw_
zJ@@hHDG#2z)3fD%o!iTG4(s>ZqD~Oa4IXuV!GfxK3{lp@pQK%kcCWh7?+J8T>i18P
zGDHy&|6eVxxTR67lCti0-X8vKWxSCdR$Wk_ogoUF_>(vT$<OEhQf)X^ZIoX0z{o&B
z{-pwSSOr??!}eSEmx|M473b;=*$RBs5pmEO_f6co;caO`$u>}q){2v+=VbU&L&Jpl
zVnD`*nXV$7^c8D4t3Ya~#s-WLqiH}EC<vpGuwH7n&TlK(q4n)5z1gqXUBcI5-yisc
zGT@gSx41r*b&h3AgB@Bcu6AX<yp3O*o&PSe&>Hk_yDlz%MZaHWw|#AHwttsqXdQU;
zaFgb1-PicYx8>ia7+PC?-{-H{+*9*f_rFUlv_3t!uVl5l*~4}JdS9)R+hh974@Am@
zLhIMB*4)0P({$3)m_F6l$t|Wpu~)g1$+>ARdwkTPHSuwN+41-E+5P;iNB_PoXzhFW
s$`Pf%@?gF?1=Je(jL&Dhx6}K*d)`cw-&kQs^#_Ch-})kTLR!-S08PY#TL1t6

literal 0
HcmV?d00001

diff --git a/phishing-filter-unbound.conf b/phishing-filter-unbound.conf
new file mode 100644
index 000000000..b3cd45d15
--- /dev/null
+++ b/phishing-filter-unbound.conf
@@ -0,0 +1,454 @@
+# Title: Phishing Domains Unbound Blocklist
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+local-zone: "1nvest.bigbantbaz.top" always_nxdomain
+local-zone: "25116414.cc" always_nxdomain
+local-zone: "365365news.com" always_nxdomain
+local-zone: "365f09.com" always_nxdomain
+local-zone: "750115.cc" always_nxdomain
+local-zone: "823pages.pages.dev" always_nxdomain
+local-zone: "95564339.awi.za.com" always_nxdomain
+local-zone: "999fc.vip" always_nxdomain
+local-zone: "a.yyyy.cf" always_nxdomain
+local-zone: "aaaa.whilefish.xyz" always_nxdomain
+local-zone: "accounts-microsoft365.weebly.com" always_nxdomain
+local-zone: "accounts.0ffice365.support" always_nxdomain
+local-zone: "aidanochka-tabys.kz" always_nxdomain
+local-zone: "airbnb-clone-sahinur.vercel.app" always_nxdomain
+local-zone: "akbarinewv2.morteza638n.workers.dev" always_nxdomain
+local-zone: "alaindemeuron.wixsite.com" always_nxdomain
+local-zone: "alexa81o.github.io" always_nxdomain
+local-zone: "alienv2ray.pages.dev" always_nxdomain
+local-zone: "allegr0llokalne753724pl.art" always_nxdomain
+local-zone: "allhrteam.com" always_nxdomain
+local-zone: "amazon-clone-by-sudip.netlify.app" always_nxdomain
+local-zone: "ammuvicm.work" always_nxdomain
+local-zone: "amyr.iran-cyber-net.workers.dev" always_nxdomain
+local-zone: "antaidossiersuivamendimpayeerf33.zynekcctv.com" always_nxdomain
+local-zone: "anuragrauniyar.github.io" always_nxdomain
+local-zone: "appeal-voilation-policy-issues.github.io" always_nxdomain
+local-zone: "apple-id.cc" always_nxdomain
+local-zone: "apri.154-203-197-141.cprapid.com" always_nxdomain
+local-zone: "arvestcreditcard.embarkdigitalonboarding.com" always_nxdomain
+local-zone: "asdfjeiod.com" always_nxdomain
+local-zone: "ashleyproberts.wixsite.com" always_nxdomain
+local-zone: "astounding-trifle-b88a2b.netlify.app" always_nxdomain
+local-zone: "att-101397.weeblysite.com" always_nxdomain
+local-zone: "att-102641.weeblysite.com" always_nxdomain
+local-zone: "att-107756-104508.square.site" always_nxdomain
+local-zone: "att-108102.weeblysite.com" always_nxdomain
+local-zone: "att-108651.square.site" always_nxdomain
+local-zone: "att-mail-101246.weeblysite.com" always_nxdomain
+local-zone: "att-mail-105533.weeblysite.com" always_nxdomain
+local-zone: "att-mail-109459.weeblysite.com" always_nxdomain
+local-zone: "att-servicce-mail.weebly.com" always_nxdomain
+local-zone: "att-sign-in-107078.weeblysite.com" always_nxdomain
+local-zone: "att-yahoo-mail-105061.weeblysite.com" always_nxdomain
+local-zone: "attcom-101415.weeblysite.com" always_nxdomain
+local-zone: "attinc-101356.weeblysite.com" always_nxdomain
+local-zone: "attmailonlineaccountupdate.weebly.com" always_nxdomain
+local-zone: "attnet-100294.weeblysite.com" always_nxdomain
+local-zone: "attonlineservicesa.wixstudio.com" always_nxdomain
+local-zone: "attonlineservicesa.wixstudio.io" always_nxdomain
+local-zone: "attweadminservices.weebly.com" always_nxdomain
+local-zone: "auth-sharepoint-asr.vercel.app" always_nxdomain
+local-zone: "avertisystems.com" always_nxdomain
+local-zone: "b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev" always_nxdomain
+local-zone: "b35ccc.com" always_nxdomain
+local-zone: "b35lll.com" always_nxdomain
+local-zone: "b35www.com" always_nxdomain
+local-zone: "bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz" always_nxdomain
+local-zone: "bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz" always_nxdomain
+local-zone: "bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link" always_nxdomain
+local-zone: "bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz" always_nxdomain
+local-zone: "bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link" always_nxdomain
+local-zone: "bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link" always_nxdomain
+local-zone: "bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link" always_nxdomain
+local-zone: "bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link" always_nxdomain
+local-zone: "bbf-alpha.vercel.app" always_nxdomain
+local-zone: "bet365t3.com" always_nxdomain
+local-zone: "bet938y.com" always_nxdomain
+local-zone: "bet958c.com" always_nxdomain
+local-zone: "bhngfd3.pages.dev" always_nxdomain
+local-zone: "blackdasblacks.shop" always_nxdomain
+local-zone: "blsckdagsever.pages.dev" always_nxdomain
+local-zone: "bridge-9wdpjmsoa.pancake.run" always_nxdomain
+local-zone: "brubreumummeddoi-4514.vercel.app" always_nxdomain
+local-zone: "bscusdty.top" always_nxdomain
+local-zone: "bsozvycr.icu" always_nxdomain
+local-zone: "bt-102368.weeblysite.com" always_nxdomain
+local-zone: "bt-106861.weeblysite.com" always_nxdomain
+local-zone: "btjfh.weebly.com" always_nxdomain
+local-zone: "bussinessaccounthelppage.click" always_nxdomain
+local-zone: "bwfujmww.icu" always_nxdomain
+local-zone: "bx.sfdsb.icu" always_nxdomain
+local-zone: "c.cting365k.cc" always_nxdomain
+local-zone: "c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev" always_nxdomain
+local-zone: "can-post.cyou" always_nxdomain
+local-zone: "celery.sa.com" always_nxdomain
+local-zone: "cen4-six.vercel.app" always_nxdomain
+local-zone: "cf-worker-pages-proxy.1352562939.workers.dev" always_nxdomain
+local-zone: "cf.13084493.workers.dev" always_nxdomain
+local-zone: "cf.iwoai.cc" always_nxdomain
+local-zone: "cfcf-8.pages.dev" always_nxdomain
+local-zone: "cfr-reed-taxi-wayne.trycloudflare.com" always_nxdomain
+local-zone: "chain-trt.online" always_nxdomain
+local-zone: "chainsolapprove.pages.dev" always_nxdomain
+local-zone: "chat-wa.xyz" always_nxdomain
+local-zone: "check282.tempisite.com" always_nxdomain
+local-zone: "chore.pink" always_nxdomain
+local-zone: "ciftcininbankasiziraatbankasi.com" always_nxdomain
+local-zone: "claudiorojas.cl" always_nxdomain
+local-zone: "clivenicoll44.wixsite.com" always_nxdomain
+local-zone: "cloudflare-workers-pages-vless-a2j.pages.dev" always_nxdomain
+local-zone: "codt.digitasianetwork.workers.dev" always_nxdomain
+local-zone: "coinbase-com-18690.subttrepimop1005.workers.dev" always_nxdomain
+local-zone: "coinbasewallet-verification.198-46-89-184.cprapid.com" always_nxdomain
+local-zone: "company0rder943.weebly.com" always_nxdomain
+local-zone: "completar-la-verificacion.vercel.app" always_nxdomain
+local-zone: "conductibili.fun" always_nxdomain
+local-zone: "correosprepago.bnext.es" always_nxdomain
+local-zone: "crenadenuddoi-2258.vercel.app" always_nxdomain
+local-zone: "cryptorectification.com" always_nxdomain
+local-zone: "currently5267.weebly.com" always_nxdomain
+local-zone: "currently70.weebly.com" always_nxdomain
+local-zone: "currentlyatt909.weebly.com" always_nxdomain
+local-zone: "d.afirkz56924.workers.dev" always_nxdomain
+local-zone: "dio.azrealonce.workers.dev" always_nxdomain
+local-zone: "ditgong.com" always_nxdomain
+local-zone: "doc-online-1881.on.fleek.co" always_nxdomain
+local-zone: "docsignauthorizationrequest.vercel.app" always_nxdomain
+local-zone: "docusign.com.bestfinancebroker.com" always_nxdomain
+local-zone: "duang-5dh.pages.dev" always_nxdomain
+local-zone: "duvhkeq.pages.dev" always_nxdomain
+local-zone: "easyaccesscommagebn.com" always_nxdomain
+local-zone: "ebay8787.shop" always_nxdomain
+local-zone: "ee-account-home.web.app" always_nxdomain
+local-zone: "ee-service-help.web.app" always_nxdomain
+local-zone: "ee-service-portal.web.app" always_nxdomain
+local-zone: "eln3.vercel.app" always_nxdomain
+local-zone: "enormous-orchid-howler.glitch.me" always_nxdomain
+local-zone: "espaceparticulier.life" always_nxdomain
+local-zone: "ets3qe9ooms8t6i8.pages.dev" always_nxdomain
+local-zone: "excelorgo.com" always_nxdomain
+local-zone: "falabellacom.dominiquepg.com" always_nxdomain
+local-zone: "fdesq4.pages.dev" always_nxdomain
+local-zone: "fdsfjiwe.com" always_nxdomain
+local-zone: "fdsjfkweow.com" always_nxdomain
+local-zone: "fekoulamevebouna.freewebhostmost.com" always_nxdomain
+local-zone: "felomane390.wixsite.com" always_nxdomain
+local-zone: "ferngos.de" always_nxdomain
+local-zone: "fieg.84yr483rhfwieujro348ur84.workers.dev" always_nxdomain
+local-zone: "figinstenatecom.pages.dev" always_nxdomain
+local-zone: "finansfaizsizbasvurum.online" always_nxdomain
+local-zone: "forested-mirage-samba.glitch.me" always_nxdomain
+local-zone: "formtools.com" always_nxdomain
+local-zone: "fortradesetup.hamidamnaie.workers.dev" always_nxdomain
+local-zone: "free-5436781.webadorsite.com" always_nxdomain
+local-zone: "frogsrus.wixsite.com" always_nxdomain
+local-zone: "fshraha.pages.dev" always_nxdomain
+local-zone: "fukshumx.world" always_nxdomain
+local-zone: "gazruinv.web.app" always_nxdomain
+local-zone: "geaoolsv.pink" always_nxdomain
+local-zone: "geminiwallete.godaddysites.com" always_nxdomain
+local-zone: "ghjhyu.wixsite.com" always_nxdomain
+local-zone: "gimennlouin.gitbook.io" always_nxdomain
+local-zone: "goldenrod-rowan-submarine.glitch.me" always_nxdomain
+local-zone: "gorgeoushome67.wixsite.com" always_nxdomain
+local-zone: "group11-vvip-hot-girls-combi.viplch.online" always_nxdomain
+local-zone: "gruppeflorian.com" always_nxdomain
+local-zone: "hanisfir.shop" always_nxdomain
+local-zone: "hedayatfreedom.hedayatkhakpour.workers.dev" always_nxdomain
+local-zone: "hello-world-morning.freekite.workers.dev" always_nxdomain
+local-zone: "hello-world-muddy-cloud-f45b.mfoster0425.workers.dev" always_nxdomain
+local-zone: "helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com" always_nxdomain
+local-zone: "heluapla.shop" always_nxdomain
+local-zone: "hemanlau1.pages.dev" always_nxdomain
+local-zone: "hezhouruan.552008598.workers.dev" always_nxdomain
+local-zone: "hgcdhbxnf.weebly.com" always_nxdomain
+local-zone: "hjrhd.top" always_nxdomain
+local-zone: "hk04-123.pages.dev" always_nxdomain
+local-zone: "hkmqo.top" always_nxdomain
+local-zone: "home-100317.weeblysite.com" always_nxdomain
+local-zone: "home-102207.weeblysite.com" always_nxdomain
+local-zone: "home-107257.weeblysite.com" always_nxdomain
+local-zone: "homelogin7t6sdfcgvhb.weebly.com" always_nxdomain
+local-zone: "htaflytz.baby" always_nxdomain
+local-zone: "htaflytz.black" always_nxdomain
+local-zone: "httap.l-teiegram.com" always_nxdomain
+local-zone: "httpsbellsouthnet-102649sitecom.weeblysite.com" always_nxdomain
+local-zone: "hup6r.com" always_nxdomain
+local-zone: "hy.fuckgwf.eu.org" always_nxdomain
+local-zone: "hypophysecto.fun" always_nxdomain
+local-zone: "hzuayvvl.red" always_nxdomain
+local-zone: "id2.xbenihime.us.kg" always_nxdomain
+local-zone: "ikergalindez.github.io" always_nxdomain
+local-zone: "info-delivery-bg.com" always_nxdomain
+local-zone: "info-trackingcs.cc" always_nxdomain
+local-zone: "info-trackingiax.cc" always_nxdomain
+local-zone: "informed.deliveryhbo.top" always_nxdomain
+local-zone: "informed.deliverytcw.top" always_nxdomain
+local-zone: "informed.deliveryxs.top" always_nxdomain
+local-zone: "infringement-service.com" always_nxdomain
+local-zone: "instagram-clone-in.vercel.app" always_nxdomain
+local-zone: "interbenefitprestaciones.referidosweb.click" always_nxdomain
+local-zone: "iouwerty.weebly.com" always_nxdomain
+local-zone: "isnworldwide88.com" always_nxdomain
+local-zone: "jaydeep8806.github.io" always_nxdomain
+local-zone: "jeanandpeterwilkin.wixsite.com" always_nxdomain
+local-zone: "jetconstructionsgroup.com.au" always_nxdomain
+local-zone: "joeandvelma.wixsite.com" always_nxdomain
+local-zone: "journey-x-pro.com" always_nxdomain
+local-zone: "jsdfchkdsds.weebly.com" always_nxdomain
+local-zone: "jshattkee.weebly.com" always_nxdomain
+local-zone: "juliusmasih27.github.io" always_nxdomain
+local-zone: "jung-sohn.de" always_nxdomain
+local-zone: "katiebllair.wixstudio.com" always_nxdomain
+local-zone: "katiebllair.wixstudio.io" always_nxdomain
+local-zone: "kdlmo.top" always_nxdomain
+local-zone: "kenzmail0.wixsite.com" always_nxdomain
+local-zone: "ketura2010.github.io" always_nxdomain
+local-zone: "keucroilluxibrou-2718.vercel.app" always_nxdomain
+local-zone: "kuconlogin-ui.godaddysites.com" always_nxdomain
+local-zone: "latam-onipojes.vercel.app" always_nxdomain
+local-zone: "layanan-bntuan-resmi-dna.prbu2.my.id" always_nxdomain
+local-zone: "ledger-com-updatefirmware.aparecidovisentin.com.br" always_nxdomain
+local-zone: "levappoprauqueu-4688.vercel.app" always_nxdomain
+local-zone: "leyoixoimmecou-5619.vercel.app" always_nxdomain
+local-zone: "linkbokepviralindo009.vipp.blog" always_nxdomain
+local-zone: "liveairdclazmersn.pages.dev" always_nxdomain
+local-zone: "lo6-cas-projects-64947843.vercel.app" always_nxdomain
+local-zone: "maatamicklogginns.gitbook.io" always_nxdomain
+local-zone: "madebybmr.in" always_nxdomain
+local-zone: "madhu821.github.io" always_nxdomain
+local-zone: "mailupdate87.weebly.com" always_nxdomain
+local-zone: "maine619.github.io" always_nxdomain
+local-zone: "mainnetverify.pages.dev" always_nxdomain
+local-zone: "mazulyta.pages.dev" always_nxdomain
+local-zone: "megrebeikenneu-2106.vercel.app" always_nxdomain
+local-zone: "mendhfjpl.weebly.com" always_nxdomain
+local-zone: "metacareer.com-case37169314276.com" always_nxdomain
+local-zone: "metagalaxy.pages.dev" always_nxdomain
+local-zone: "metamacksiologus.godaddysites.com" always_nxdomain
+local-zone: "metemrsblogin.gitbook.io" always_nxdomain
+local-zone: "meyetamaskiwalt.gitbook.io" always_nxdomain
+local-zone: "mianfeijiedian.lawcpacpv.workers.dev" always_nxdomain
+local-zone: "milanharvestfestival.com" always_nxdomain
+local-zone: "mirobitsgt.github.io" always_nxdomain
+local-zone: "mocp90.pages.dev" always_nxdomain
+local-zone: "mostafa2.mehdi84888.workers.dev" always_nxdomain
+local-zone: "movie-firebase.vercel.app" always_nxdomain
+local-zone: "mubki.hp.peraichi.com" always_nxdomain
+local-zone: "my-site-104564-105934.weeblysite.com" always_nxdomain
+local-zone: "myaccountsignup.net" always_nxdomain
+local-zone: "navy-nose-4544.typedream.app" always_nxdomain
+local-zone: "net-flix-front-end.netlify.app" always_nxdomain
+local-zone: "netzero-webmail-105996.weeblysite.com" always_nxdomain
+local-zone: "new-currently-1-23-24.weeblysite.com" always_nxdomain
+local-zone: "newattupdatemailboxkidlyverifynow.weebly.com" always_nxdomain
+local-zone: "nfty-proj5.vercel.app" always_nxdomain
+local-zone: "nnbsscnaceesngsetr.com" always_nxdomain
+local-zone: "occinamete.cfd" always_nxdomain
+local-zone: "odovsccs.weebly.com" always_nxdomain
+local-zone: "officalourtime.weebly.com" always_nxdomain
+local-zone: "office36503.com" always_nxdomain
+local-zone: "ohscorgza.github.io" always_nxdomain
+local-zone: "okm.znt.temporary.site" always_nxdomain
+local-zone: "oliver752.github.io" always_nxdomain
+local-zone: "online-e-commerce10.com" always_nxdomain
+local-zone: "online-e-commerce11.com" always_nxdomain
+local-zone: "online-e-commerce12.com" always_nxdomain
+local-zone: "online-e-commerce5.com" always_nxdomain
+local-zone: "online-e-commerce7.com" always_nxdomain
+local-zone: "online-e-commerce9.com" always_nxdomain
+local-zone: "orange234.wixsite.com" always_nxdomain
+local-zone: "orgmail.weebly.com" always_nxdomain
+local-zone: "ourtime.datings-information.workers.dev" always_nxdomain
+local-zone: "p.updateinfocl.top" always_nxdomain
+local-zone: "p.updateinfocs.top" always_nxdomain
+local-zone: "p.updateinfoga.top" always_nxdomain
+local-zone: "p.updateinfojq.top" always_nxdomain
+local-zone: "p.updateinfolw.top" always_nxdomain
+local-zone: "p.updateinfoor.top" always_nxdomain
+local-zone: "p.updateinfooy.top" always_nxdomain
+local-zone: "p.updateinfoqv.top" always_nxdomain
+local-zone: "p.updateinfove.top" always_nxdomain
+local-zone: "p.updateinfovt.top" always_nxdomain
+local-zone: "p.updateinfowu.top" always_nxdomain
+local-zone: "p.updateinfoxb.top" always_nxdomain
+local-zone: "p.usertracktxz.top" always_nxdomain
+local-zone: "pages-108-tg-cfzz-ip.pages.dev" always_nxdomain
+local-zone: "pages.tempisite.com" always_nxdomain
+local-zone: "pageverifycenter.com" always_nxdomain
+local-zone: "patjimmy323.wixsite.com" always_nxdomain
+local-zone: "paypalloginin-usa.blogspot.com" always_nxdomain
+local-zone: "paypalloginin-usa.blogspot.hr" always_nxdomain
+local-zone: "pcmag.anycubic.vip" always_nxdomain
+local-zone: "port01-acf.pages.dev" always_nxdomain
+local-zone: "portal.chiaveggies.com" always_nxdomain
+local-zone: "pruhuffopraussou-5681.vercel.app" always_nxdomain
+local-zone: "pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev" always_nxdomain
+local-zone: "pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev" always_nxdomain
+local-zone: "pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev" always_nxdomain
+local-zone: "pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev" always_nxdomain
+local-zone: "pub-2801359d2be54bfd8701132626efeb73.r2.dev" always_nxdomain
+local-zone: "pub-3096005ebeae423182ccd89665564d8a.r2.dev" always_nxdomain
+local-zone: "pub-46a5f86348ae4aceb3591d126020999f.r2.dev" always_nxdomain
+local-zone: "pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev" always_nxdomain
+local-zone: "pub-51f896deb233450089fc1a520e6ed957.r2.dev" always_nxdomain
+local-zone: "pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev" always_nxdomain
+local-zone: "pub-682ad3b65d944376b919745aae3c56d4.r2.dev" always_nxdomain
+local-zone: "pub-722720be67154192a1102b2cf085d306.r2.dev" always_nxdomain
+local-zone: "pub-7d056bfeb6b04852801553620fe62c0a.r2.dev" always_nxdomain
+local-zone: "pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev" always_nxdomain
+local-zone: "pub-873fc6a3edb941c6a17f50911dfca518.r2.dev" always_nxdomain
+local-zone: "pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev" always_nxdomain
+local-zone: "pub-aab4be29317b4ec296517a557db12622.r2.dev" always_nxdomain
+local-zone: "pub-ba5a046c69974217b0431bca4ba43740.r2.dev" always_nxdomain
+local-zone: "pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev" always_nxdomain
+local-zone: "pub-c59cf4e950b142949df8861e60b3689d.r2.dev" always_nxdomain
+local-zone: "pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev" always_nxdomain
+local-zone: "pub-e5855431d98545b38408f52af50ab8a1.r2.dev" always_nxdomain
+local-zone: "pub-ff0271d87324424a9aec83337e844a54.r2.dev" always_nxdomain
+local-zone: "puertaselectricasprincipal.netlify.app" always_nxdomain
+local-zone: "qaffixledger.com" always_nxdomain
+local-zone: "qbstdfda.com" always_nxdomain
+local-zone: "qpownthenewyhadvanceweb.weebly.com" always_nxdomain
+local-zone: "raj-tiwarii.github.io" always_nxdomain
+local-zone: "restrict-policy-nonadherence.vercel.app" always_nxdomain
+local-zone: "reviewboss.github.io" always_nxdomain
+local-zone: "rfgxg.top" always_nxdomain
+local-zone: "riaayaoman.com" always_nxdomain
+local-zone: "roadmap.binarydesignhub.com" always_nxdomain
+local-zone: "robinhooldloegins.gitbook.io" always_nxdomain
+local-zone: "rouzhda03.kambizmedia.workers.dev" always_nxdomain
+local-zone: "rsjxzl.com" always_nxdomain
+local-zone: "rtyuiuytgf.weebly.com" always_nxdomain
+local-zone: "rubinhuud____llginnh.godaddysites.com" always_nxdomain
+local-zone: "rudra-choudhary.github.io" always_nxdomain
+local-zone: "s.team-s22.com" always_nxdomain
+local-zone: "sadekk.com" always_nxdomain
+local-zone: "sajsa.icu" always_nxdomain
+local-zone: "salarahmad786.github.io" always_nxdomain
+local-zone: "santanderpod.fsthosting.com" always_nxdomain
+local-zone: "satinnaaoabbs.weebly.com" always_nxdomain
+local-zone: "satyarthi.uk" always_nxdomain
+local-zone: "scarce-army-wide.on-fleek.app" always_nxdomain
+local-zone: "sdfvgbcvb668.weebly.com" always_nxdomain
+local-zone: "sea.6e2efhxz.eu.org" always_nxdomain
+local-zone: "secrbnsuppotyu9.weebly.com" always_nxdomain
+local-zone: "secure-ledger-m-auth.webflow.io" always_nxdomain
+local-zone: "server.2rk3.com" always_nxdomain
+local-zone: "server.pxs7.com" always_nxdomain
+local-zone: "setshinobi.vip" always_nxdomain
+local-zone: "sextelegramxxx.pages.dev" always_nxdomain
+local-zone: "shareorder711.weebly.com" always_nxdomain
+local-zone: "shaw-101342.weeblysite.com" always_nxdomain
+local-zone: "shaw-103098.weeblysite.com" always_nxdomain
+local-zone: "shaw-106054.weeblysite.com" always_nxdomain
+local-zone: "shaw-106665.weeblysite.com" always_nxdomain
+local-zone: "shawsyncmailservercommunicationworkspace.weebly.com" always_nxdomain
+local-zone: "sherman-relate-rev-baskets.trycloudflare.com" always_nxdomain
+local-zone: "shobhit245.github.io" always_nxdomain
+local-zone: "shopifysite.cn" always_nxdomain
+local-zone: "shoptkoo.com" always_nxdomain
+local-zone: "sign-in-att-108611.weebly.com" always_nxdomain
+local-zone: "sign-in-att-108611.weeblysite.com" always_nxdomain
+local-zone: "simxtrackredirecttszz.pages.dev" always_nxdomain
+local-zone: "sjhsjjs82.weebly.com" always_nxdomain
+local-zone: "skill-meta.com" always_nxdomain
+local-zone: "sky-107842.weeblysite.com" always_nxdomain
+local-zone: "smithjamessv328.wixsite.com" always_nxdomain
+local-zone: "socx.ly" always_nxdomain
+local-zone: "sparq.eu" always_nxdomain
+local-zone: "spicyhotcoolsoup.s3.us-east-005.backblazeb2.com" always_nxdomain
+local-zone: "spotifyl.vip" always_nxdomain
+local-zone: "ssfgsfg.wixsite.com" always_nxdomain
+local-zone: "sss.k999955.workers.dev" always_nxdomain
+local-zone: "stonemartin1001.wixsite.com" always_nxdomain
+local-zone: "stringroll.com" always_nxdomain
+local-zone: "sukienffvip.doiqua-garena.io.vn" always_nxdomain
+local-zone: "supportsecurity981.tempisite.com" always_nxdomain
+local-zone: "talktalkserver897.weebly.com" always_nxdomain
+local-zone: "tareq088.github.io" always_nxdomain
+local-zone: "tbsl.by-on28.my" always_nxdomain
+local-zone: "tcaconnect.ac-page.com" always_nxdomain
+local-zone: "tejlksdoisd.com" always_nxdomain
+local-zone: "telegcm.me" always_nxdomain
+local-zone: "telegramjessica.pages.dev" always_nxdomain
+local-zone: "telegrampx.com" always_nxdomain
+local-zone: "telegramsexgroups.pages.dev" always_nxdomain
+local-zone: "telezelm-ivee.icu" always_nxdomain
+local-zone: "telgramsignal4.sg-host.com" always_nxdomain
+local-zone: "telstra-102379.weeblysite.com" always_nxdomain
+local-zone: "telstra-104033.weeblysite.com" always_nxdomain
+local-zone: "telstra-104394.square.site" always_nxdomain
+local-zone: "telstra-106968.weeblysite.com" always_nxdomain
+local-zone: "test1.workersdev40050.workers.dev" always_nxdomain
+local-zone: "tg-logrom.com" always_nxdomain
+local-zone: "tktk.tktsk.shop" always_nxdomain
+local-zone: "tokecn.im" always_nxdomain
+local-zone: "tokeni-1601.vercel.app" always_nxdomain
+local-zone: "towrewds.com" always_nxdomain
+local-zone: "tpwalllet.com" always_nxdomain
+local-zone: "trustwallet-zendesk.com" always_nxdomain
+local-zone: "tuviaje10.com" always_nxdomain
+local-zone: "tvjbqiyv.guru" always_nxdomain
+local-zone: "twcht.twimobie.cc" always_nxdomain
+local-zone: "twimobie.cc" always_nxdomain
+local-zone: "uedy.pages.dev" always_nxdomain
+local-zone: "ultsyncingsolana.pages.dev" always_nxdomain
+local-zone: "upheldlog8.godaddysites.com" always_nxdomain
+local-zone: "upholdloginorofficialsigin9.godaddysites.com" always_nxdomain
+local-zone: "upholld-lligon.godaddysites.com" always_nxdomain
+local-zone: "usol.shop" always_nxdomain
+local-zone: "usps.com-cgkzkukp.vip" always_nxdomain
+local-zone: "usps.com-trackaxd.top" always_nxdomain
+local-zone: "usps.com-trackbrs.top" always_nxdomain
+local-zone: "usps.com-trackdht.top" always_nxdomain
+local-zone: "usps.com-trackgee.top" always_nxdomain
+local-zone: "usps.com-trackhsk.top" always_nxdomain
+local-zone: "usps.com-trackivo.top" always_nxdomain
+local-zone: "usps.com-trackjjx.top" always_nxdomain
+local-zone: "usps.com-trackmra.top" always_nxdomain
+local-zone: "usps.com-trackmvz.top" always_nxdomain
+local-zone: "usps.com-trackuqg.top" always_nxdomain
+local-zone: "usps.com-trackvgb.top" always_nxdomain
+local-zone: "usps.com-trackwbv.top" always_nxdomain
+local-zone: "usps.com-trackyqb.top" always_nxdomain
+local-zone: "uspsdana.com" always_nxdomain
+local-zone: "uspsdant.com" always_nxdomain
+local-zone: "uspsservicetrack.blogspot.co.id" always_nxdomain
+local-zone: "uzomadj.shop" always_nxdomain
+local-zone: "vedi.154-203-197-141.cprapid.com" always_nxdomain
+local-zone: "vgmrm.top" always_nxdomain
+local-zone: "vkkvdkdcmm.weebly.com" always_nxdomain
+local-zone: "vl1.spaceysen.cn" always_nxdomain
+local-zone: "vobroffexagru-4404.vercel.app" always_nxdomain
+local-zone: "vrvtn.top" always_nxdomain
+local-zone: "w1.5114559.workers.dev" always_nxdomain
+local-zone: "waassistance.com" always_nxdomain
+local-zone: "wallet-diagnostic.com" always_nxdomain
+local-zone: "walletsecured.pages.dev" always_nxdomain
+local-zone: "web-lupqrbm0k-uniswap.vercel.app" always_nxdomain
+local-zone: "web.tlgrm.app" always_nxdomain
+local-zone: "webmailserv3038z.wixsite.com" always_nxdomain
+local-zone: "wk.xzte.eu.org" always_nxdomain
+local-zone: "wodjrvrisixc.wixsite.com" always_nxdomain
+local-zone: "worker-dark-queen-529e.servers5555599.workers.dev" always_nxdomain
+local-zone: "worker-hidden-frost-ba39.yoveli7450.workers.dev" always_nxdomain
+local-zone: "worker-site.aopages.workers.dev" always_nxdomain
+local-zone: "wsa.osmqone.org.cn" always_nxdomain
+local-zone: "wwwwwwsasasasasmmmsszz.vercel.app" always_nxdomain
+local-zone: "x.tovip.eu.org" always_nxdomain
+local-zone: "xhjxkj.cn" always_nxdomain
+local-zone: "xixiajiaju.com" always_nxdomain
+local-zone: "yahoomailquthorization.weebly.com" always_nxdomain
+local-zone: "yungtee3.wixsite.com" always_nxdomain
+local-zone: "zagbasamothega.dnsget.org" always_nxdomain
+local-zone: "ziraat-kampanyasi-besbintl.xyz" always_nxdomain
+local-zone: "zxl.cbbnbbc.nyc.mn" always_nxdomain
+local-zone: "zzpov.top" always_nxdomain
diff --git a/phishing-filter-unbound.conf.br b/phishing-filter-unbound.conf.br
new file mode 100644
index 0000000000000000000000000000000000000000..9724b4a499c5d271e67a4ee6e8a95f3ffd0c9041
GIT binary patch
literal 5646
zcmV+p7V+uvcpU>E$DI8`{coywDZnX7{PkTQ;{b!QBDe(8|4l6q-aB+KFX#viAb~Ly
zi-NKTSXlit(!Lw5$#|V2rApVToNDi0|C4H^N~u<=6(j{|Ql*!8H@(6_^8#qqFpI6(
zie2Dl5vQg!;#&q8g=yaXqn~4oTkZGH->;#rAuT_(?bV-uNkzAQ+Dd;6wf*{|pMN<L
zvEA>V{`Fgsk&!|D^Dz8o<L_bk&tHG^^LO_V3fA90<Bx;q=g(8?{`i9t^C$cK#jij5
zDfxs07X1CQwsv&Ko+Y#h28~O0h!+$jIqm+<kul?MH~#vgp8-pB1nobnqZ@wx(NCMO
z>+c_Ikf88+`@jBKLR))$PH5KN=Z;&+%L{*lq5br4p#kQtUsz_OMt{cdpFbSaiM3G^
z76YjncxlVWAO7U&;8XuE-MBstTveDHM<qr<tqtwtN^&JD7_x`_9MunV;2bA8jHAqf
ztr@Sf#Y%q~#o-Awt+SL$a6VJG0(~Jn1<mv9Ej<I;iURsP&qJ*byAuHDPEue@8H?V}
zdolJk)v08Jh0(O4TuFK%n)sB#jKWU`?}NoBql=-QoZ!IJtzsLH2Ii@B%kBCWib;mp
zm=lr;Ye>D&6N|-2;Xva0ycsAV;dL^)=hE;6#dV@rE*q8#b|8Wc(u5s*$%$U!9!}6`
zS{CsJJ!aa^!i5Y}nt<tK1)jz?e{X%)#4^N~H;4%*$tNa`NTDv=7}qlFqDymVhc~BM
z7%&g1-G#&2ZR{BQ^VqxZ{S0<TJT82_J%xq>iP*<rAqiW3oja!n!R1;5mfFJ!J0=(Q
z10KZUIj8TFaI?0ZMORbm1(pImg$GJiu5cU(k(@ciNxn_?`n5pjBw<mdj7WkTvWN-e
zccG&cgbkdG^F&55QhOXAAiAimjOKLOhbg^Hk9V`ZP1Bv6=24gou+imTo&R9SNvo}{
z5uc-EgQeBJ#cP|XVX9MGE5S!3Mr&ZEQ7&(djKj$1Y19*vJb|5aro_1FG)YCqLC8VV
z#SWt%c=#RqMfg*aTFEg%cZU!$q%#xBh+z9j$@v`5LeBF$pINX>3Q?08y!pbCNJ!Nb
z^Dyb;2}Lqr{D=qDLaw)Ye@=E3qXa)cBpWf8H3nC@=r*Qwx_}jjK%TIvB|ETLWPv76
z>(0Rn!@#TBx(hi9<oN2fb|HObo<x<~>un{}hq(u-*a*}W$-xs#3&aR|dHcti(MX(y
zBa%r^gau2qLPod(>j&qIn<g?0WJi4MVn3oEJKaLr?g4h#(5B6t4VTv1{A9poj4?1!
zwiotif!_)SjQ-kE|GdYUpPh+&m1<+GiC?8mJX~fEC)<O=W#d!3jy*LMXgGYOK5pa}
z<eJw=?|%_5Y`tEw!}&e)qBeP4XNZXMvdQN6I>qa5pWA*d=@i&b5Muj178cCG<jdao
z`Lg(Zqm1WKq<7}H5_`YTy=7zUwjN1{MWrij2i=8+?(Y!ywDmC?;vhaJle=yBDGKer
z#E(d8y~|P&AJcZ%Sv2R?RA=m9$*B8VF!H$(Z`WN&)`aEYHuz5Y$m}D|SkwEx&Tsji
z@><^Gj{LA+du-40J#ENa2f=)8NHt2!-qlT?<*`K`=)cGfq{P*AT-P_SW&b4e8r45G
z<bCPuG);UH)8WcDhohZWXAsvH>=N?ywtP=TNG7xN9_pE4+mKxGaH4*8^Epho*_WFQ
z_v%769Kyvv-!84VQaa8k7{j}v!p$+BFopz;O57mv7rOB-D+RWh>nHTZmfA|Qro}r>
z^bkgl<DmY`E9FMvptjU|E&n4Sg3?;gN^lF3`Eti+uNmk8$-;)T^aMUjbyKkKec#c!
z9EgyksFZxG?bWr1r&1|X^LswF&|v#3S-k4Vl_sE(D!r=7$h41Nr&ZVVTBq}NU5XH&
zDo|M#<vgNpd0)PN_Ul4KzBjGjRTI35mf9B5!j;^JuwTUTflb5c2v^n-F(M}h84xye
zh7!bpPR`Vm`7m5q`e*$%W+>Z${42LWOy*V_wNEZU-Wahwv@)YgWHAX+!`(=4u$~a*
z7U@v+MUIm1hmKq_so2bCl3j(?(~%Eah?zsC4OfOxIoWvYiSGE{)%rpTq9YCNKrVO^
z(pH{*M6*anVR5>2g^)-qjjmDAAWyD29;S9gCuTR-6&kr<?k22tmuW@?I6;I?oTpuL
zL3+$O{Wkb!LkdYAu^ei6Ljh=iKqqEJK|*0Af1pwuAygGkOu^<Dg<u<;REtLQZPyz+
zWfKVzU?1e~%&t-X$c;6Cq(N8%W*J{jMMCz?)>_R2t=+U%@CbW8#$k{#vWpq`h(=^A
zHATl+6QPKn$*2WS$Pk~DXebWLEcj3kz$Zj(P)LOAY_WpIm)qs!x^2fQ9*+9y);Rv-
zZmx&p>@Jxanb1fSE95}I1P)W5q34J(ssDs6&(U&0+mMaL4(~-ADph<WQxj56(5R>3
zK_X~v9_Dv-ISM|M?Uia~q8$R&y$#-i$>n76JbGI)Z*ix~mJF%WNk*+lniKUAaicav
z1BV9)cQ2RlRvHn{MO0hGyDr-v6XcdriKQV9r8`a^x|E?b9nwOiTZbBXTtC+hzc3&#
zrczhi=3TBnv}v0Kqk%_HdRj~0h)9-b77>*LS%O4g7m+!~k*w?lLxNZ-5{U0H#l)-D
z!<37szmF%m*flt^<||^MOB9BNqWko193cKRc<gT4*JHp!1<WYG8fuk)an5<Kx~Z@}
zDHv~yF_(ow*6|=W=MmcMDMwY9I($1Gy-gbLuzp3(3ihu0Pq^?}w5uP#U6?O`3Ap7R
zVaF52@*Joff8av1=Gyj^FgBWU#k@m8J`bw}pU0AxTzu5Ei3MD!7EckHm(^bZ`=?|s
zbT4`Yo#?|7Qf-)^VU>x&J`6*(P(6gVhSxwnd+GbS)AqS&Ao(5HLxDxE8qaQ^=@XBk
zW4D|m3lsEtIt4tg)>!KYU11Ln_5@+3fZF#HDY%+6C7Oi+m&;8yU-D8*7cj}>>snxi
zs_^%%u6@4?6(%}>QY`S69@06Y*$V=$hd$The8HYhmx2RGm+ZhfiXB~5QZ4IeeLAKl
zEn&x$V(uZyG>L;v<PB7bJ`q#Nj+A^sBDI@cJTIpCZC>^-n0uXrU@avm&mUWIKgN-q
zXE?~38`0Kcbs5f0P{fEK+O_)-ue${w=wmJcCfUn*g%qj}#lND12U?ro<?>Gd<Zdf$
z3U8u%4Jh(-GHH};qESZ1P_`lLo`~u|ckUsiR6P<eq@ladwP6_qlhF<y7Agi;P@l|H
z+A=+}ejVyY@l{<_zew(Z!hT3~ufC%3eObWR;fNs54k<z(JG-;u>x<UcAyFySFJqIl
zE`5m>>sE6oza~$+e#+`Nf%du$%4vf5sHxX&|K`Zg%R44H415%o8^D(UV}srklSHLZ
zRZ~;ddAppe!FFE*AD{M84N5WLfeVd$t$c%nM$$0gQuJ+zq8}{ah^8c!u)0i%85vh!
zMWSZxey9?bKU5>QXSqDZ?qwPWQ_&+I>r>ITOsZFDeLFno8EL_3at#WO(c54OYuJ(Y
zO1J#@!-i#nsHPRnt6*~|B%g^^`p6G4t78IYDxrq7l>vF`TMPm2+u^dKqqz&cn!b8^
zP~DroBDm`nl#_{WwMnSqF-ZJ<Z))$FWI+YSka;IS46SJ565MKxB?l{2*anp^SW}_p
z1tki(Us&2RJUF4ISrD|Q!)gs=f8bG)PDblNwaDHNLW1Pf!ZW)<+=8m%Q$E;qq^-K%
z0oai!^k;=-gyc?)J0#kddrA0^oBNN3fk9cKb#v9#$8vq@3axF3U`pyS^twY0E1U3N
zU{4FFc}--W>NaQrO^gtVzRFp^;&M0k=HfmCxErQdn@1R_>)WvP0yZRKkTp|n*lo!n
z#(oD=awlvWnWqP~ZgZNZV<kNhDK!+K!A^1tNB&?<*pBe@u62o+)H)<mu<n7l1oSAT
zGrB)COiC<TTv&x;Pc@{-ZbCrs{<A3@P|yaK&rmV7z#<&3L^^oFapa>w-+M(;L@15Q
zSt{a_!=1yvqs^U2HO>*N6w+q$hQ}Gota*JNhIcm{2Q{p~UF+sV2*ue5?~bLWMQ2aU
zidc{qs_TQcRieZ!CN21Ne1~SBqF}d}mnEcBX-}{gDbPG-FEpg!*{of&v135rqfH|y
z&D)1JhP5XuDK8~#auq=e;w9SQ?eS><G(+K1&|ugwCG3QagQ_LDFuB!#4*g5AmlWgP
zQ2_un6J;QuMm6(Mut`Od)dCT2#JJdC*B_BJ<d~OUha<9|7<(_Z&j@3HI6FRx^SUu=
zf@;7M0wj;&6VS08$`#?V2iW7JKX0>#2x(RIHm#}9rL{xJ_Gl3;t*vI1?J*DaVdZ_>
zC=D3hadklpt;uR)Jhq?sP*4ggs<BRWH(Q|VK@Tht>>6(TA&rD+aC0RzeRZ6<xMqLs
zX1uVZZbE^90;|H6NXiw7kV4QsG;vp~Hjw26+VOyo;U*SyNfAs=L*7o<EDm>*3yog0
zj`OVcB)o_;vb1C*j1wlJ=|WRWhP*5>`QCzy&qx?k%GY4yCEuPIC?MHXraL85t4&}L
zYg#HcV%nFj4GG4Hv8eS9Kq{BdYVFFH-k-Al5OXh<j3QydP%HGnA*^*LRq-q@^!?tv
z?etAe&BV?H^pBAC23Dp#W11vOii&}W{si0WGW0kU>GY7TA6w1>m)Dk07kMVewUIHd
zKNDjvi&cf$LaEvDVkNu=sxBdDgkL;p?}r$|+DHnW3e?J~<pNrMzFNjh(_C8lX!$)g
zJ+YNd%d2Z}8(vWwnc8mceosU}tY*eRleQ4+-<O1AWkbUX)3^gDI<ryBd;Dv;+9&M$
z!x`_--T}|CYe2SW?RlhEp#5IKdgK;CsI^=xZFg8Gq{ns>Y@b2(L!x0MU_I`swn*`I
z4RGSJge86NQTp1wC&@dtQq>yi@m%@nh73Y;<<XeYTcNxK0opPq(NB&6*R-$_{1?>?
z8Tn`iF^u2=1PVQau%jAAGoX;h`q&!Q<R;Cu1F%YX%R%#53?K%l%`m!ry$c%+A_(Th
z!z|?o)Z9qUm6^fvc^Kf#w53`DnjJGJh4D^L!#HxLm_m<c;-|0Ahgl7SM1z2W@li8t
zot~94#gEGAeElq;KzgmX(0~Fg8ZPJ2jZ6(}Fw+-x`BBD=T#d>N+6v9Bo@W85V35Yi
ztwrKP<>>XS92&;Cki)Rmkhdd9HlRW`%V}#|N@}b9G!9}wfnqRjRN5*h6i!BS*cz5*
z;J8uJ%|h@=nR%QiApwwEsay#g*TmSw27_uEr5I-h<2W$GtRJ*=d{C#4af4LGqfurM
zS~fA2Ny!x(JSt{eXXDb+YOrEvAW@8NGJ^-lB<B-=n!P%|)5N`1z|om`t1qiyoV*<7
zadh5-9Q$6=0zCo<W4z{CD5F8oY}V3AV=M=CZcG417-TaaCnM0ZS;=t%DJN$}rWo5A
zn*j-fP*%<JB-l8aLGaO75C#OF#Bgp_N={0EaEJmYWsK0;q8Vm3Ama9AtemYEILpC|
zg3V%fep8VeQ4NMGJ-e-O;fTTwMkpnnaC)AV@q>_~a(dR@u&pUcEv4Y2o3#|ua4iPy
zB?B)9FdD|~D|$b$X>@wxOb8}m2DF;LNP}7kke6Lp8r&<=BPCd<&ZR_g25$2O@59X!
z$4;&Ve@$)9I|yzc`7-=Dl<<01KSUta6GL^Vroe}^a6t)yo&;Iq?h<VC(9oZ90=Hs8
zJ!Ua$0P24zA(LxOd|bcW%R1Co0>A@mjA$&Zp26*KP!kfA$3>Fi+Xn|d$%M4#99_()
zjwpyd`H3a>cXcpuy1{P3>tRXMQ|eMb_sfkeS7}cV{b`E^4KKZH{k^;Y`@jGDzZm5P
zfv)`CiKV*&#ICu!m9ZhDnt=ky6?Re?yXIcO;kE@H^;5xoO-U6Z6j*m~la@oX>ON&s
za#)V+sIN`iR)FIVR%v~?5<muH_*s>z&>kpl4YY5;eHMyE;w6j`Vf;>-6R`n6_R<fi
z&Yz31r&0Eg=nSd=fhuI^*ZWnA>8WUoNq&$LYfqn(J7jx7B5UM3F;@U3QE=vltvZgy
zv~_$|Hl7}Vxb(+eC)T`xEo41O9Dsc{bV!s9?Du^WZp4`aancsoG>(XKR=7N0XegKg
zJokK<^>$E$6gn#<Z>>+V=Y?2#!0zkzWO@W+EwMrnhB*hzE(?FX2n|WWlN>&Hu+`L2
zL3Pb$4UGvo${bqr5j+NlO#oxJE$8eQ9$ZYPH{#mTS-}gbCnxMTZ>e3J5hm2?`*wg*
zeb)N<RLwHIe+w}ZK_(u6JsOq4>W<>=p{?E|v#KX&n#q(`&Gx4837Ovk<x8>Oe8E0z
zZf-bPRc!KAPJ1N|BN;K3B+A3-BfMzl+Psh4f`8(8CRz1M^-I~^TIuG~H880XO&oAi
zkEV%@!!V}Fnj#*!3q=Ebt-b|J-k;&1E{AUivVa|AIvO%Pdn0x2N2V(2LVIRC@;AX<
zD14`*SX6pemAJw*DEJ+;o}y-Iq~;+xF-`ZDcvG|BPSplWKG6B9IDX<*T@KYjq>Q-O
z-MYb?J|+5Kt-)$-n6Qx?caC}r>=kcC!Qg6AJKp!SB%FxLP^V!`46H9@h=SIItcF`x
zpS{`&_^Z%xnooj{R16--PCmuOXW=yMq>o6|>|o<?!`j9n<LYZxVi@EwgcREr67y2>
z{#oI+wT-r|)y+hr*p@f6iH1F_odV%g3!<C1wS1MK9TCRcVbv5qV)NNrx?u~S_lwD4
z-5{;*ts5^)u3S4m<{O@qF1_@EYF>72v|VA(CZPJapwKaObQ(`~k8K$Vve<-jgfzJD
zet26>H0DJU&R##(4DE%Ki}HaRAXZDq;OFSd8y$%;EIGw6a?P>9JG~xJ7EA21y<6Xo
zRl+<RSpbHH+g9f^XMIhn`nt90yCCYj)=l4VW_>@OTj#xiw&$yF|1SETi_!NoXC%)z
zE#~??y1S6zt!Ren2g%PVQe>n?b>98WJGf8Re9lgEo^8{f%U<>u1)bY=y3N^rUz~bp
z94Yxd=2J1zv-X+IV5lg(VJV#mF?a+^dzQ1Mr?OommE$O+bivej0n{35W4dFDZcMQI
zU4SKV2!pY3l+P86n}KGd3k`|=_!hGd8|f+33l7AA03m}Gm$HX9nJiiHf$NtLli}Lv
z{WjzgD(%YdQ_d1<xNSP5LK)f9f<^Yka2q1ojFh6{RelL>u67zH-3<e1h;FXxGr(v1
z<P&3<#46N?k(6f<at(`$;er)tuKPEq5p!8OlXZRRR=BzQzE_run6?2k4iLilO3U$H
zKlk>@SViw}2lxc|^eQFZg5i3fuTvU9qmOJ)PfJ78`&nCGSPWFyb6ar%>QY^>;edMc
oa>xcAp(+bC5QEi()S~0D>3Z)-tue_MOVeZNj>(tvzDJ%60Vq%4G5`Po

literal 0
HcmV?d00001

diff --git a/phishing-filter-unbound.conf.gz b/phishing-filter-unbound.conf.gz
new file mode 100644
index 0000000000000000000000000000000000000000..498ae75a1abbb18ecdc76daf3cf872a859a3191f
GIT binary patch
literal 5866
zcmV<G78U6qiwFP!000021EgC?kK{UXzWY}c=3Q*SQfpuOXp8|Ld@$gdi!TE%L5V4f
zRFagG%3trGs`?oZV?b0*qnFBTeq=Bh%NHT)w~xO_ui)p$e~r?OQV$=0HZzghef(8Z
zvughFZ_2PqN$3CRw~xOroOs|rKZ>lVlDtT=<}X?Hv&esD+5h1G|NCo^7TnK|{DYI@
z<Db`a{D-jcTtTzrUvSKSm>Cu_;F6>Fi~ITG$AA(Lnldy0n2Fkng+xf@!Twmjg!=l7
z=>L=qwEGVDH}wg{N&efcmIX1*0{R>l@c;UObB*iQT+*`<l$xv=-sHzG?WBJuo=}3b
zpjL=V-bSM=f6Da+&ZkrklxR=MJN0Jy(?^i!aDUS;e(Lm(n4-?}rpl|7v5S#qQ{!(9
zy9=US4;EP;F|e((Jg=`;?}{=UmrFnY=CEA=`nqnavg}i`%k)hmMCtopuym7GDkJHE
zzfvZy#^JAYAEg2j&h~Y@uK<jpt$UZul3C-7@TkUg2cYVRkpCAv&4fTB3s|=<i?RL+
zC^^xFjT1@GtPYn>my$|LHBFepkBK8_ldDZPKyy|pSuPbgQDP-p(pIE1iU)7fl$}m@
zV<)gNhf5TG#bJik8pO$$lOAGJq~Jxm+@xPVCe0;4g5C;Cj%dRpO2J?=rOZT>hPE!-
zqFPWd*XN+rh}s}?%uZ&4KYg75JrcKaxuhDrlH!OtgLz&z$>vk(mtzl`N=tCLgMv+P
zl{;spJsOyCPU84gZe#|{<-Cvsz>2a=--m{YF~7xZ8x4&NmaJMH#Ks@vvH*VCj8w!+
z)Z1b(4j+khZpA~rF^z&m^6PL#7Aw=du96}vle}+}yvkFySh584^)_vY<jexc1VAiL
zVMdpkxI{?_9yvAmWk>`OQ#mdkAWhV=Zd7nA*5D~)9J%3F&W9`=(ww(appt0Uk%Hba
zNbi$8%ges~ig>Y0pSS{Z*mrPkTQ~SmRcBr5o-5|<G~lDK9WMKwHM^$HZ!U)4s-T^s
zYVNQ21+HuKweN!as_yTD9axMp49;0@B(eaNgHEIlN0hbQ{iP2w8uR<sv*x~a;Gm%L
zDz9%trDmrs*Y{5=NNlvi?D&<=KgsJY<)PEz@>$VWx0nB1`t#htkuwB%OfBXgg<r>3
z?{^@4M$-QUzp>}lkBJ-6p%x>xPl&t2MsTE;?r<LF7-~y%T0>v)q%LZaRE)5sYoJKV
zhA@$FPI=oVS(eNIZ#J+;wJviyNjs$|o{~NyWzw={jK#=O)=H_kf&0G43?yQ*AVG<J
z((B{BZ04AY>NVEQR1iw7ZA-b+S#HHFISf<T`hA(TZ)7SL;ZmWd<ow~9?|!W%D(3cg
zHIwbRnW35LW#5oAL%lQ2%zNLeH-8D^=Y7yy1%4w{_1(3GLeizE-^KfVJPY-Ft6FV~
ztp%scu8a5ccuj^<HjRs}s-e-l{923eKvT5t>3Sg~Ns?5Lt*B?_;b9wK^PnD;9^K0h
z4&b1E=4+woHu+{PilxxBc|E_gsdFth&Q)Fbij{;<<k_0V6pw0CPQRb~_O#Ef-iP<{
zQsu&)Y?+SX`K?VcP9%LYbWv5a;yv>AF&xa+3y3F_Saj;L*_VBP%3_!wn!ahXerq9N
z*RgHea;n;e+ozF>-}bd2YJ3wmNYlQ(d9@ZdU7K16;x<FRwa^F)uiRs%kA=!t@hs_t
zQ2+xLEs5OA$8)V&wQId>swxV2d1&C~LR2I~EhCAKNEAZh=gSy(1>cw55jnE%qJqk(
z2f@qef`=-?CQjV>uS?x{*>s@F1q8YR>Lh+0EBOFPzw_lWJ3R1(XhtST?W!-KE48rB
z>pTPJMkZCAS2qsCvDI;ZMD$arGw%(3B9&~t8hR4fvbo7_PFU03Wi-@3#2BAa>52s#
zrgHa1Lq<?bIH;6i;dE*9yI3DH=9>s5yizB)qY*>Vc9B^P=o-^?0mjO#XtSJST4p?{
zawroD1xbp&ETAS;2D}bgy3Dd2?D`m=9?KQ1YDIjSW+W7n&Zq1!m%@Vrd!#O=5ye1P
zNPu7Q2FgV8S&%2EGbLEUy^a(KXi+z~<Niju&IIDJuB!U-9!l<p$cTdxC~Oz)^i0^q
z0`SC>mrQV=hSb}GDYJ5+LJ1Y2&k?`E!qlgq{4{2`GYZvi%?9zJj>Myc5qX=9z^0-r
zQly-VjC5c&8r<!2opG2H9&@zRn2;yp<Xc)o{MUz=g%k;t-I@nMKCCWB%MG+-Mk%Ca
z@hyY@JHap0bzio-DU3P^DIW2PHyqvd?2R}{u=)uT-Z5Sibmbs9OTMn@v(&BBdkh3}
zHVc+g^*3hQLnF{9=)+P-cD9|;yzi2#NxB}Fsc!Uxa0Dj1BeNWAUzPD;JOEJ&ViQGv
z7lj2;;$w@^e8tF1rIM+*Ots8d3&t%rJYF#=)kvCBa91b`nsCtTnVpNG?rsQZkHw>J
zpp3sOIzlrm%Bj6N>Y{0HDD)Ss&AtJ`BDc@_cpy)Sz{>GmH+@mvu)$DqledM?D`apB
z=m!(kSLB8zpWzg3xyv!MV&wvWso7j3Lw6?>?Z(RYd0^+GIn1QdhmMo1VU{3iN)alg
zMmh-88r*7({43EzQu8r7%<y#^CwNAW2jUK7PZ-Tmni)Yf#x8-9qief1hDQS=U-T>)
z%^aFUG(vTV`f9Nxfz{ndg-1$6#p0AM<Bt`zv9noSVk{da$8GJ%o6<pr2chYFmAb(#
zgkj*Z9_gf#h*VNsg1jrA&>J(m&Nniio4^Y<W$X~s91}zl3JOakv{xK}`57&KiSabS
z!9A;JsgO;Jhuk4*X7>=&4ko5EBw#YDA~V)(;gLK^1@bbqfe{(-e6rw(DHMLIp~MUu
z&lCh$J(#fdtAP@Rw5twVb)_A}E@6FGQ&!z-yF1ZSAeGS0V@C22jw@R8Ap|)=<QqvB
zQh;r>>m0{91?DeYktZ{fwIMuHohgYndqmIP7!}jL#IfFDs&(MkB^}8uIhi$)cd|q{
z`J}GOrtLx%N(nbM_Asp(oL%ocToP`yWF+y&uug7V=U3Q};unJlOp~kBTVymFfCN2n
zF+6;L;N_n*5YoYL!ueUP#~jlzKE`9cp`}62pf!?esl)S3YRq)qbRUdD(q#=#tl6=e
zMcO-`kLIIIZ@~Bm7_dYB2|OxZUTfAR&y#JF3x;{04ALqWC^(hj5{AOnqg-dO>#~5r
zK#bf!V&Rc!>5x^$B-jx+LDClN9sfK1`Z$ebTFh#1cucs&W0KP#li64up52C7r=YBF
zPJ>+eNX{}U5mimoSzr_fn^i@9Z_0&Xxgt3-Xe@WFz`at!Cc2&tpp@s;vsoJ_hPo6a
zC0I~MaiFWj=o-{Y7DeK8ji~`k&pg`EM|h8T3`peCx-PP;tNZTG&IiUv`qCnvkB<*K
z@`x_rIA!5tT6_<6oaU#AnHb$HJliYtn~%xAfJKpg57-v<H-O4uCT)G=xM0IJ(i@ug
zM5x2RQ%dL&JvMZpF9&<Fq$=@%Y{5p|wK*^O1@h($)-0b-SBs|VgCYVyxTltNX=3V=
z@xWr6O~WoySW}F$m*W?+jEBQA*hG}+<9j8?wyD&@Rf?3nNM97R95KbDn7XGcStNSk
zKvcM*^^U$=BegIIhtN*4M?zzm@d-gT!zPTU%w0Dh{{WEW6^F1h@bs5tBaQLXzk_+U
ze+Tw*aVX5$NH;+Lx^n?h+H*eKrJBEPk;xlPA*nIbpiO{~ehJj|Y${=>vw(CxT=xom
zD&|>%H0uu5AMv3<I(=rqU2^EU2*86J9AN3XtckY92M{Fld_n4Fcd5``Zg86icxF($
zHuTN#hm-4^oeFaGoZw+_VZMQy$(;o;4Qe=&SLpo5j1K{MoVepRZdp9sNW7om#$}WT
z7U8R#iIZc|#_N97L*mS+uS>p(c!{zof_(1IU6ubIcPZJ#)g0sg6X<ui$#bX7ov<LY
zq{#9tT2T|M%o?fG`jQlFEGgRjM&oo^(Mr!0oviY1fue}V$YHcx%mV?@iz;N$=vfKX
z9*J9mv167A*I3?Jx)$ktr1B~uDc}Rxvs?dpI||wS9PZrX^7uEy@UuyW!BBp+2kqsA
z8wzd~OV;NKYf?4c4K*q_jC>h6&&USWq;B&51{mu|Y9?4VEc`>pG+EY%`e#8lV}?ug
z257>ZDe|6?_3CKCsZ5g~?GN$dft0}|$Y-jyt8Vn_W)e&QBRtB9Hl$sA-8mBu^q{j%
zrM@0Iu3eEwJ4NujPqXN5^!39x5KivKG8(Di`AjALa`;T%D^k_?X2y&p6(}I1!qw2h
zbIf7!Cj^?0;<4PgdpQH9a&)549(phlDBHa0%e*SuCUOGge&lsSDF~Uv-4SWfl#pQF
z3`K~C**bcLvKvMS$GNbZLX*bd07{|-$cF?TS`LcrY$0sfZq%N$R78)T*SrP(ksFD*
z#y3lAsPt~|@pfw1(r58!VUWuSf`J%DF1xDh?v&Is2Hx=I6Phd<&J9Cd=_J!}Nf)q0
zvN7f{^?W43K+fCSO%-nW_T|kBuk-Qiof$dk^?ZHe0-?!vB-%Jgs=BIDe=NXlcw^&w
zkD+c9O1=_d4f1q!%^SDlapW7UNsv|ly3^eEH*Xhf*puI%L?(Gslu1$Do&qW0XLJp6
zQ1hB3SI1`*)Mk$lG+OxM%szFznP^R&W127krw0c<rjRy_NlikGNSU~z76z$<W9$Yi
zHsNI}qL6@lIm1m{cu6aZx#wp_$BZ4`B--!IG^cOv&nqUzl5qFv`dtHaR-J8K#4q#t
z2>84^F^6+R`WmsFzeDBULKWXZ)!zZN-vPzE0EuUVrF&7{xjTcFaPN(ZU)G6!E75V1
z&pyNFRf+iMzNDX?AJ9xiltF(0xSN21+yp$HHvwwD2{869;J68RZZ`oN+y(fXfPK9Q
zc+oh31ADgO{43@~<<HAudDbO<NSJuP6S+jQn$K}}ZrcUKXI5hndR<Wv|G*;fD2wuj
zFE8X+h&rijsKXsO>pr&_|Br#ktD<*dGZ|8%54KVn^WJl~_L1cYVIp4dpEpI2(2)(W
zNQ|QMi(SW6h_f7b?yRW0Jf0*hD^0ShD;oin=7Lp?V5A})D~cLK%L`I=sV!op$C>gn
zr&*Qd$cae>Ro9b><xPfPLRC{#Mf^-HZ@Z%7gs`R(tR!98R~e}?-q9@QH)JYu3P7rY
zS16Ilpet!zmJRI*EBh=XH)iU>TWUQoDAW}dylb;OFN>yV0JYba@iUcK-(*>hr7D4{
zDD$phjCXz0gxBzScSEMCA+_k5vg&Xqq<Rzu%z0ikS&@ZT^l!{Wd0sYo!?TW|L9njx
zD*_G4YRZv5SMf8|xxl?}pha0$b(VF#U^%Ia3>x5l-Nw(<)E(<Yi$x0>5L6k8*mSJn
zRRb;U${TuWx`ObMHZ||7s%-K2^S-TWLZD<dP8dH^TNG`PQE1w{uJXPhd7c%tU?S^k
zUS`dWnRr$=6iuf=r|IfoUUgkIMJAvr*d5F4YSs}}p)fU6Id5qu2rtmgTSA&%+>ohj
zOTija0{`Dqj&{pc6!t`V)T-5|*%Jg6MQH&)pMHbw+`ao_kKt~oGo6`}AdnA|kc8EF
ziod1Lwn*wU<){~mG(hg4N>K?g)>e-yFIfduoz=KS1!E}AWdLUau$+mkexy&9izchf
zB7H(pJUK%~&ocT*3<^l{vMFmMeul#(Ich9acnpv!@+4%WvUrv`<Xj+UB0n*7{!#pr
z8rfWkfRUP_ZrWVbMZ(fNtMi(-RaK^<OxUBWYEB<Xq$1}D%TbMR)FSBevKHNa6zQt2
zS{ATRqNs`jw}vCZP;nyxld3H;Kvn>xWJ({YZIkSY`uh3E@;u9-2GLXxWK2=zITU2M
zL+b~uP@-`L9Z35!a&9D^<^fTGH=q-_f5PE}gZ0g<<1MF@puAst^F=@C@E<+!)u-0_
z8$GheVPJ@y+`vdl_9gv2BJPFz>CQ0g8F(*@@Hx!n^WTV7ij8SY@9SXNZtn;-sF45%
z_!LIU4rt&LykaJ2^uD?9F{W={pIc1C>9tl|Y2i~5>7hxZm$T=PJmL{1CeO)-C<9zP
zV~72uL?Vql7P%a*3&@@^i(l8W@W1e-l)p3RLu0*W;Rd3n*9-4`P=iWhZ~em**^Cl0
zu)xJQk^l#^x$jHYEGRJ0Pk<&M{SMmt)+sX==B0VuTIVxuX-z+@_w#1}4U7fEvJmY6
z<9Zn{ch~l|0hGrG%ydNlB0ko0^vVCfmr%>wwPVf7%3rmQl*tK*OOc7TM}Lu&5@SVU
z*nIUsLT;@?9@Q*HMBjVHDe|QXK0&lqdLxic7+=<!nejn-)&>3A?UMxUd<QW7$&tJT
z-knfameaoPWT)+Fq@aDN(KAg0Hm!&4>Uxm}c18Ijq6bm^5n`DX`JW+{Wf6{OkGb*D
zw-4cbsBf9SWk+7mUKI!-yC%$Z-GeJ|0zXzX#O#P<4lZ-Fy=J|1SzgdJOs`*PYJ65d
z6M)^QDd`nI-CKSd-URW{f8kPTB&Yp~EBWq8zADVw^Q1HX(A#0KRTePeQ7RSrOH2~*
z;j<~LU?G{1qytRC+VzoD0Rbkfn>|){Ih4q@=8bCg77PuuUc1I;!TY2p`-m4C39v5m
zWs+Cou!0jkWy;i0F(dmaiY~KlhwqSeqX9V9_$orup{>Ku$rljKX_BNN&vQNr&uCIV
z7Q2j6%x#MckGYob1)>go4J68JyxvOUr>)<0Oi6dtRT>oAbf8B6{n21m9grsBaFXw&
zs>m9~F{@&BM0!T1o$k2MHPGmJMxl+Ni9Y=X?&l;1Tnp}^<s@i45u540vf=0G98ly?
zzmqk{58i91&IW<;sJ@Z}ZO~&*p{7W#LJ&+)gufo-D=$?Z+b-&9MO%o7tPNMMif3RG
zuzzs#B((e3Z@7;-4``V74`Nw|HrGHW#HBy#0*R2LQcD8VhwCDxk&=|OayPm$#vgX1
zlt(x{ie`@GM1Y%R<YUxypV{fnh>cSmF!%BmO-hhh$1K);>)=m;o{Xh9Rc=`&477`6
zw+`$rk2UTVb1MN`)4SMhazgW2+^2riAs4~v*-ndc-h}k`uv)=PS1ik`7d|A=RiREZ
zVqU=n^tiRT5)ULO>#H2=KN?E$NGaLrIT#z4OkwuLzU(LetQ*g98D9ho;TO(j{J~DC
z)A=_JGd389_bwQx6CxO=N6`tzk*f~I8HPO=XEG3uv!1~?%exE4SvwYtv#~W8=Xg_}
z!@bN?MCAf?M9^>9$2FJVZ;<b^sh1P~$p?y9uIN$ykFK_BH<^jBOY1nUeB{kE(GAm8
zrSau@A6CrwzU-=*SA=4R&MZ-$Cjs5SR<pX9u#7E@i!{xPBBcG&27u<Kbw1!uSoZgD
z<r2EtM+X}+&L_sj$*0dISfrNM+psAaqh*$MgBN|%{N;f|3v{Bv{sdSa$)h?0oUm<-
z_Y)yW@xe{=!K?<|ro9Py#;4O32Qx<RMTj{nvKlSZ%bT)=f7L-G|BTm5&T*{PARQwH
zk2*f|DwKTYK^EwDv}-M(KhzDtwh(JOz40%<f%k&6T`vpYuW6dB54Vu{!k;$Y2__M2
z?}vRH?kBa&9W6+FF9dR4oq|2Ty?<{=L)SdVGIvghker_rI)=M7Y1fMmVm{jr?dkjV
ze>!<ZBV65}z{-dT%jE17q3PJUtGHooW~_<lqlu@xT|Cd1{*Qz3Z=8(CY_MYh075l`
Ay#N3J

literal 0
HcmV?d00001

diff --git a/phishing-filter-vivaldi.txt b/phishing-filter-vivaldi.txt
new file mode 100644
index 000000000..ebf467ce3
--- /dev/null
+++ b/phishing-filter-vivaldi.txt
@@ -0,0 +1,475 @@
+! Title: Phishing URL Blocklist (Vivaldi)
+! Updated: 2024-12-06T00:21:00Z
+! Expires: 1 day (update frequency)
+! Homepage: https://gitlab.com/malware-filter/phishing-filter
+! License: https://gitlab.com/malware-filter/phishing-filter#license
+! Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+||1nvest.bigbantbaz.top$document
+||25116414.cc$document
+||365365news.com$document
+||365f09.com$document
+||750115.cc$document
+||823pages.pages.dev$document
+||95564339.awi.za.com$document
+||999fc.vip$document
+||a.yyyy.cf$document
+||aaaa.whilefish.xyz$document
+||accounts-microsoft365.weebly.com$document
+||accounts.0ffice365.support$document
+||aidanochka-tabys.kz$document
+||airbnb-clone-sahinur.vercel.app$document
+||akbarinewv2.morteza638n.workers.dev$document
+||alaindemeuron.wixsite.com$document
+||alexa81o.github.io$document
+||alienv2ray.pages.dev$document
+||allegr0llokalne753724pl.art$document
+||allhrteam.com$document
+||amazon-clone-by-sudip.netlify.app$document
+||ammuvicm.work$document
+||amyr.iran-cyber-net.workers.dev$document
+||antaidossiersuivamendimpayeerf33.zynekcctv.com$document
+||anuragrauniyar.github.io$document
+||appeal-voilation-policy-issues.github.io$document
+||apple-id.cc$document
+||apri.154-203-197-141.cprapid.com$document
+||arvestcreditcard.embarkdigitalonboarding.com$document
+||asdfjeiod.com$document
+||ashleyproberts.wixsite.com$document
+||astounding-trifle-b88a2b.netlify.app$document
+||att-101397.weeblysite.com$document
+||att-102641.weeblysite.com$document
+||att-107756-104508.square.site$document
+||att-108102.weeblysite.com$document
+||att-108651.square.site$document
+||att-mail-101246.weeblysite.com$document
+||att-mail-105533.weeblysite.com$document
+||att-mail-109459.weeblysite.com$document
+||att-servicce-mail.weebly.com$document
+||att-sign-in-107078.weeblysite.com$document
+||att-yahoo-mail-105061.weeblysite.com$document
+||attcom-101415.weeblysite.com$document
+||attinc-101356.weeblysite.com$document
+||attmailonlineaccountupdate.weebly.com$document
+||attnet-100294.weeblysite.com$document
+||attonlineservicesa.wixstudio.com$document
+||attonlineservicesa.wixstudio.io$document
+||attweadminservices.weebly.com$document
+||auth-sharepoint-asr.vercel.app$document
+||avertisystems.com$document
+||b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev$document
+||b35ccc.com$document
+||b35lll.com$document
+||b35www.com$document
+||bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz$document
+||bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz$document
+||bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link$document
+||bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz$document
+||bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link$document
+||bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link$document
+||bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link$document
+||bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link$document
+||bbf-alpha.vercel.app$document
+||bet365t3.com$document
+||bet938y.com$document
+||bet958c.com$document
+||bhngfd3.pages.dev$document
+||blackdasblacks.shop$document
+||blsckdagsever.pages.dev$document
+||bridge-9wdpjmsoa.pancake.run$document
+||brubreumummeddoi-4514.vercel.app$document
+||bscusdty.top$document
+||bsozvycr.icu$document
+||bt-102368.weeblysite.com$document
+||bt-106861.weeblysite.com$document
+||btjfh.weebly.com$document
+||bussinessaccounthelppage.click$document
+||bwfujmww.icu$document
+||bx.sfdsb.icu$document
+||c.cting365k.cc$document
+||c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev$document
+||can-post.cyou$document
+||celery.sa.com$document
+||cen4-six.vercel.app$document
+||cf-worker-pages-proxy.1352562939.workers.dev$document
+||cf.13084493.workers.dev$document
+||cf.iwoai.cc$document
+||cfcf-8.pages.dev$document
+||cfr-reed-taxi-wayne.trycloudflare.com$document
+||chain-trt.online$document
+||chainsolapprove.pages.dev$document
+||chat-wa.xyz$document
+||check282.tempisite.com$document
+||chore.pink$document
+||ciftcininbankasiziraatbankasi.com$document
+||claudiorojas.cl$document
+||clivenicoll44.wixsite.com$document
+||cloudflare-workers-pages-vless-a2j.pages.dev$document
+||codt.digitasianetwork.workers.dev$document
+||coinbase-com-18690.subttrepimop1005.workers.dev$document
+||coinbasewallet-verification.198-46-89-184.cprapid.com$document
+||company0rder943.weebly.com$document
+||completar-la-verificacion.vercel.app$document
+||conductibili.fun$document
+||correosprepago.bnext.es$document
+||crenadenuddoi-2258.vercel.app$document
+||cryptorectification.com$document
+||currently5267.weebly.com$document
+||currently70.weebly.com$document
+||currentlyatt909.weebly.com$document
+||d.afirkz56924.workers.dev$document
+||datagivers.com/3961f442eqd80b4e3c28f75c4ba682dd68f9.html$document
+||dio.azrealonce.workers.dev$document
+||ditgong.com$document
+||doc-online-1881.on.fleek.co$document
+||docsignauthorizationrequest.vercel.app$document
+||docusign.com.bestfinancebroker.com$document
+||duang-5dh.pages.dev$document
+||duvhkeq.pages.dev$document
+||easyaccesscommagebn.com$document
+||ebay8787.shop$document
+||ee-account-home.web.app$document
+||ee-service-help.web.app$document
+||ee-service-portal.web.app$document
+||eln3.vercel.app$document
+||enormous-orchid-howler.glitch.me$document
+||espaceparticulier.life$document
+||ets3qe9ooms8t6i8.pages.dev$document
+||excelorgo.com$document
+||falabellacom.dominiquepg.com$document
+||fdesq4.pages.dev$document
+||fdsfjiwe.com$document
+||fdsjfkweow.com$document
+||fekoulamevebouna.freewebhostmost.com$document
+||felomane390.wixsite.com$document
+||ferngos.de$document
+||fieg.84yr483rhfwieujro348ur84.workers.dev$document
+||figinstenatecom.pages.dev$document
+||finansfaizsizbasvurum.online$document
+||flow.page/uebj3h3j$document
+||forested-mirage-samba.glitch.me$document
+||formtools.com$document
+||fortradesetup.hamidamnaie.workers.dev$document
+||free-5436781.webadorsite.com$document
+||frogsrus.wixsite.com$document
+||fshraha.pages.dev$document
+||fukshumx.world$document
+||gateway.ipfs.io/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq$document
+||gazruinv.web.app$document
+||geaoolsv.pink$document
+||geminiwallete.godaddysites.com$document
+||ghjhyu.wixsite.com$document
+||gimennlouin.gitbook.io$document
+||goldenrod-rowan-submarine.glitch.me$document
+||gorgeoushome67.wixsite.com$document
+||group11-vvip-hot-girls-combi.viplch.online$document
+||gruppeflorian.com$document
+||hanisfir.shop$document
+||hedayatfreedom.hedayatkhakpour.workers.dev$document
+||hello-world-morning.freekite.workers.dev$document
+||hello-world-muddy-cloud-f45b.mfoster0425.workers.dev$document
+||helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com$document
+||heluapla.shop$document
+||hemanlau1.pages.dev$document
+||hezhouruan.552008598.workers.dev$document
+||hgcdhbxnf.weebly.com$document
+||hjrhd.top$document
+||hk04-123.pages.dev$document
+||hkmqo.top$document
+||hm.ru/medoeu$document
+||home-100317.weeblysite.com$document
+||home-102207.weeblysite.com$document
+||home-107257.weeblysite.com$document
+||homelogin7t6sdfcgvhb.weebly.com$document
+||htaflytz.baby$document
+||htaflytz.black$document
+||httap.l-teiegram.com$document
+||httpsbellsouthnet-102649sitecom.weeblysite.com$document
+||hup6r.com$document
+||hy.fuckgwf.eu.org$document
+||hypophysecto.fun$document
+||hzuayvvl.red$document
+||id2.xbenihime.us.kg$document
+||ikergalindez.github.io$document
+||info-delivery-bg.com$document
+||info-trackingcs.cc$document
+||info-trackingiax.cc$document
+||informed.deliveryhbo.top$document
+||informed.deliverytcw.top$document
+||informed.deliveryxs.top$document
+||infringement-service.com$document
+||instagram-clone-in.vercel.app$document
+||interbenefitprestaciones.referidosweb.click$document
+||iouwerty.weebly.com$document
+||ipfs.io/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq$document
+||isnworldwide88.com$document
+||jaydeep8806.github.io$document
+||jeanandpeterwilkin.wixsite.com$document
+||jetconstructionsgroup.com.au$document
+||joeandvelma.wixsite.com$document
+||journey-x-pro.com$document
+||jsdfchkdsds.weebly.com$document
+||jshattkee.weebly.com$document
+||juliusmasih27.github.io$document
+||jung-sohn.de$document
+||katiebllair.wixstudio.com$document
+||katiebllair.wixstudio.io$document
+||kdlmo.top$document
+||kenzmail0.wixsite.com$document
+||ketura2010.github.io$document
+||keucroilluxibrou-2718.vercel.app$document
+||kuconlogin-ui.godaddysites.com$document
+||latam-onipojes.vercel.app$document
+||layanan-bntuan-resmi-dna.prbu2.my.id$document
+||ledger-com-updatefirmware.aparecidovisentin.com.br$document
+||levappoprauqueu-4688.vercel.app$document
+||leyoixoimmecou-5619.vercel.app$document
+||linkbokepviralindo009.vipp.blog$document
+||liveairdclazmersn.pages.dev$document
+||lo6-cas-projects-64947843.vercel.app$document
+||maatamicklogginns.gitbook.io$document
+||madebybmr.in$document
+||madhu821.github.io$document
+||mailupdate87.weebly.com$document
+||maine619.github.io$document
+||mainnetverify.pages.dev$document
+||mazulyta.pages.dev$document
+||megrebeikenneu-2106.vercel.app$document
+||mendhfjpl.weebly.com$document
+||metacareer.com-case37169314276.com$document
+||metagalaxy.pages.dev$document
+||metamacksiologus.godaddysites.com$document
+||metemrsblogin.gitbook.io$document
+||meyetamaskiwalt.gitbook.io$document
+||mianfeijiedian.lawcpacpv.workers.dev$document
+||milanharvestfestival.com$document
+||mirobitsgt.github.io$document
+||mocp90.pages.dev$document
+||mostafa2.mehdi84888.workers.dev$document
+||movie-firebase.vercel.app$document
+||mubki.hp.peraichi.com$document
+||my-site-104564-105934.weeblysite.com$document
+||myaccountsignup.net$document
+||navy-nose-4544.typedream.app$document
+||net-flix-front-end.netlify.app$document
+||netzero-webmail-105996.weeblysite.com$document
+||new-currently-1-23-24.weeblysite.com$document
+||newattupdatemailboxkidlyverifynow.weebly.com$document
+||nfty-proj5.vercel.app$document
+||nnbsscnaceesngsetr.com$document
+||occinamete.cfd$document
+||odovsccs.weebly.com$document
+||officalourtime.weebly.com$document
+||office36503.com$document
+||ohscorgza.github.io$document
+||okm.znt.temporary.site$document
+||oliver752.github.io$document
+||online-e-commerce10.com$document
+||online-e-commerce11.com$document
+||online-e-commerce12.com$document
+||online-e-commerce5.com$document
+||online-e-commerce7.com$document
+||online-e-commerce9.com$document
+||orange234.wixsite.com$document
+||orgmail.weebly.com$document
+||ourtime.datings-information.workers.dev$document
+||p.updateinfocl.top$document
+||p.updateinfocs.top$document
+||p.updateinfoga.top$document
+||p.updateinfojq.top$document
+||p.updateinfolw.top$document
+||p.updateinfoor.top$document
+||p.updateinfooy.top$document
+||p.updateinfoqv.top$document
+||p.updateinfove.top$document
+||p.updateinfovt.top$document
+||p.updateinfowu.top$document
+||p.updateinfoxb.top$document
+||p.usertracktxz.top$document
+||pages-108-tg-cfzz-ip.pages.dev$document
+||pages.tempisite.com$document
+||pageverifycenter.com$document
+||patjimmy323.wixsite.com$document
+||paypalloginin-usa.blogspot.com$document
+||paypalloginin-usa.blogspot.hr$document
+||pcmag.anycubic.vip$document
+||port01-acf.pages.dev$document
+||portal.chiaveggies.com$document
+||pruhuffopraussou-5681.vercel.app$document
+||pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev$document
+||pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev$document
+||pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev$document
+||pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev$document
+||pub-2801359d2be54bfd8701132626efeb73.r2.dev$document
+||pub-3096005ebeae423182ccd89665564d8a.r2.dev$document
+||pub-46a5f86348ae4aceb3591d126020999f.r2.dev$document
+||pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev$document
+||pub-51f896deb233450089fc1a520e6ed957.r2.dev$document
+||pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev$document
+||pub-682ad3b65d944376b919745aae3c56d4.r2.dev$document
+||pub-722720be67154192a1102b2cf085d306.r2.dev$document
+||pub-7d056bfeb6b04852801553620fe62c0a.r2.dev$document
+||pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev$document
+||pub-873fc6a3edb941c6a17f50911dfca518.r2.dev$document
+||pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev$document
+||pub-aab4be29317b4ec296517a557db12622.r2.dev$document
+||pub-ba5a046c69974217b0431bca4ba43740.r2.dev$document
+||pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev$document
+||pub-c59cf4e950b142949df8861e60b3689d.r2.dev$document
+||pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev$document
+||pub-e5855431d98545b38408f52af50ab8a1.r2.dev$document
+||pub-ff0271d87324424a9aec83337e844a54.r2.dev$document
+||puertaselectricasprincipal.netlify.app$document
+||qaffixledger.com$document
+||qbstdfda.com$document
+||qpownthenewyhadvanceweb.weebly.com$document
+||raj-tiwarii.github.io$document
+||rebrand.ly/46wjpyr$document
+||rebrand.ly/910428$document
+||rebrand.ly/cdmd94193ab$document
+||rebrand.ly/n3yi7p6$document
+||rebrand.ly/vre1p3j$document
+||restrict-policy-nonadherence.vercel.app$document
+||reviewboss.github.io$document
+||rfgxg.top$document
+||riaayaoman.com$document
+||roadmap.binarydesignhub.com$document
+||robinhooldloegins.gitbook.io$document
+||rouzhda03.kambizmedia.workers.dev$document
+||rsjxzl.com$document
+||rtyuiuytgf.weebly.com$document
+||rubinhuud____llginnh.godaddysites.com$document
+||rudra-choudhary.github.io$document
+||s.id/p8w69$document
+||s.team-s22.com$document
+||sadekk.com$document
+||safebank.onl/107519/c90488/4a1f04e6-1517-4254-abda-f0aee8fe0ab9$document
+||sajsa.icu$document
+||salarahmad786.github.io$document
+||santanderpod.fsthosting.com$document
+||satinnaaoabbs.weebly.com$document
+||satyarthi.uk$document
+||scarce-army-wide.on-fleek.app$document
+||scearmcommnymnlty.com/cert/loks/mir$document
+||scearmcommnymnlty.com/cuce/rit/pil$document
+||scearmcommnymnlty.com/qinmot/truklop/poli$document
+||scearmcommnymnlty.com/trawbe/nunty/loki$document
+||scearmcommnymnlty.com/xul/lex/ponu$document
+||sdfvgbcvb668.weebly.com$document
+||sea.6e2efhxz.eu.org$document
+||secrbnsuppotyu9.weebly.com$document
+||secure-ledger-m-auth.webflow.io$document
+||server.2rk3.com$document
+||server.pxs7.com$document
+||setshinobi.vip$document
+||sextelegramxxx.pages.dev$document
+||shareorder711.weebly.com$document
+||shaw-101342.weeblysite.com$document
+||shaw-103098.weeblysite.com$document
+||shaw-106054.weeblysite.com$document
+||shaw-106665.weeblysite.com$document
+||shawsyncmailservercommunicationworkspace.weebly.com$document
+||sherman-relate-rev-baskets.trycloudflare.com$document
+||shobhit245.github.io$document
+||shopifysite.cn$document
+||shoptkoo.com$document
+||shoutout.wix.com/so/e1p6lravu/$document
+||sign-in-att-108611.weebly.com$document
+||sign-in-att-108611.weeblysite.com$document
+||simxtrackredirecttszz.pages.dev$document
+||sites.google.com/view/ghghdgfdgfc/home/$document
+||sjhsjjs82.weebly.com$document
+||skill-meta.com$document
+||sky-107842.weeblysite.com$document
+||smithjamessv328.wixsite.com$document
+||socx.ly$document
+||sparq.eu$document
+||spicyhotcoolsoup.s3.us-east-005.backblazeb2.com$document
+||spotifyl.vip$document
+||ssfgsfg.wixsite.com$document
+||sss.k999955.workers.dev$document
+||stonemartin1001.wixsite.com$document
+||stringroll.com$document
+||sukienffvip.doiqua-garena.io.vn$document
+||supportsecurity981.tempisite.com$document
+||talktalkserver897.weebly.com$document
+||tareq088.github.io$document
+||tbsl.by-on28.my$document
+||tcaconnect.ac-page.com$document
+||tejlksdoisd.com$document
+||telegcm.me$document
+||telegramjessica.pages.dev$document
+||telegrampx.com$document
+||telegramsexgroups.pages.dev$document
+||telezelm-ivee.icu$document
+||telgramsignal4.sg-host.com$document
+||telstra-102379.weeblysite.com$document
+||telstra-104033.weeblysite.com$document
+||telstra-104394.square.site$document
+||telstra-106968.weeblysite.com$document
+||test1.workersdev40050.workers.dev$document
+||tg-logrom.com$document
+||tktk.tktsk.shop$document
+||tokecn.im$document
+||tokeni-1601.vercel.app$document
+||towrewds.com$document
+||tpwalllet.com$document
+||trustwallet-zendesk.com$document
+||tuviaje10.com$document
+||tvjbqiyv.guru$document
+||twcht.twimobie.cc$document
+||twimobie.cc$document
+||uedy.pages.dev$document
+||ultsyncingsolana.pages.dev$document
+||upheldlog8.godaddysites.com$document
+||upholdloginorofficialsigin9.godaddysites.com$document
+||upholld-lligon.godaddysites.com$document
+||urlz.fr/tlly$document
+||usol.shop$document
+||usps.com-cgkzkukp.vip$document
+||usps.com-trackaxd.top$document
+||usps.com-trackbrs.top$document
+||usps.com-trackdht.top$document
+||usps.com-trackgee.top$document
+||usps.com-trackhsk.top$document
+||usps.com-trackivo.top$document
+||usps.com-trackjjx.top$document
+||usps.com-trackmra.top$document
+||usps.com-trackmvz.top$document
+||usps.com-trackuqg.top$document
+||usps.com-trackvgb.top$document
+||usps.com-trackwbv.top$document
+||usps.com-trackyqb.top$document
+||uspsdana.com$document
+||uspsdant.com$document
+||uspsservicetrack.blogspot.co.id$document
+||uzomadj.shop$document
+||vedi.154-203-197-141.cprapid.com$document
+||vgmrm.top$document
+||vkkvdkdcmm.weebly.com$document
+||vl1.spaceysen.cn$document
+||vobroffexagru-4404.vercel.app$document
+||vrvtn.top$document
+||w1.5114559.workers.dev$document
+||waassistance.com$document
+||wallet-diagnostic.com$document
+||walletsecured.pages.dev$document
+||web-lupqrbm0k-uniswap.vercel.app$document
+||web.tlgrm.app$document
+||webmailserv3038z.wixsite.com$document
+||wk.xzte.eu.org$document
+||wodjrvrisixc.wixsite.com$document
+||worker-dark-queen-529e.servers5555599.workers.dev$document
+||worker-hidden-frost-ba39.yoveli7450.workers.dev$document
+||worker-site.aopages.workers.dev$document
+||workflowy.com/s/att-support/6ca3iebztzztx2gi$document
+||wsa.osmqone.org.cn$document
+||wwwwwwsasasasasmmmsszz.vercel.app$document
+||x.tovip.eu.org$document
+||xhjxkj.cn$document
+||xixiajiaju.com$document
+||yahoomailquthorization.weebly.com$document
+||yungtee3.wixsite.com$document
+||zagbasamothega.dnsget.org$document
+||ziraat-kampanyasi-besbintl.xyz$document
+||zxl.cbbnbbc.nyc.mn$document
+||zzpov.top$document
diff --git a/phishing-filter-vivaldi.txt.br b/phishing-filter-vivaldi.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..ce2c1b84baf2c7fe4b9e5245ab8d2520c45b03a6
GIT binary patch
literal 5956
zcmV-K7rW^3h%o{n|F7BqfAcpPo!22lDM`HJ?s<$G*eE4}MbOgquT)c&KdMx#QdPTD
zs7!Z{N}*`ng|vIXkASDc@#z3K0*e0`bo?-S9#4tJJAhP%6Q53aI)QM4;DmPwp-ZL5
zMf(BDbe1wIk1K_u_hYD)-kdKniipTC*U$d`bKT;``}OnpYp82T%THhl(#L0sp|+pD
z_}6ekbm1?5`~Bx%jzg&K*H7>IDagpkp#FInezEb_F#P9lzyJK*_Xq{+ub=V9!Ts|W
z$IAZrt0JZ*d*=i7jyPb!Uq5SWM`z4gLW^LKIB17>K|xZ^?CU6&_;1($_WKXJTGtt*
z|G0&&`|bB1icssXA6y_PeBSzRewNVIo}U()jrO_iR`T+|3qS4jZ=nI+zt?Yn_`{e^
ztc{wm7)Z^)Lt8%n#AVA%_Tjfb{DH}FRALm=+9VTKk}KI-a5UEEcKtA?c$(xejxr-v
zGmgl%N`KnM;R&%nXDOB7e5P;(`arHPInT4V^b93_X`uIg-_-hqWdJ}=HUfR~;q-ey
zx8ez!GL^6;U_n#Jm82J<iT80OcrzWm4;G(9BFul%f`iDfDcFECFn6WfL6476OftmA
zoRCylL+XW|SS&^gN0pB6%|HnWuanU|mxd20t`og-*|1<ug9wo|5j*yh6TQN>ld$VC
zB;ptJm?^Q?gbWcvz;v<#cf+*&DY<{EGQ^lShzTdjCnk<a0S$VLYheKF5_IkG<b;3$
z<|ehfa0FRZj=|rLx%=MFVD~yR5*zO>G!#h0-UbUv*zoeMsX=hL)_|q<aKg*q+=cys
z8?kuK>2oLCtZip;<CA)Ur9e;NhJvzjjsqc*Gl$6h)8uSWt%O(c?dKMe1lJ)jXzk0;
zQ3}EaPR4m6qZp|@t`Z)*cyj5vgsTI`PSdM1nclc?CMPxty`8ylJ=OU)hMZ~q>KgGr
zN;X(pC7<@%a!;8z7-=Q=h{R|O%(UUq*2p-Fe4hGL;fxV*@t6|h8%~o{WE_MXG#y!F
z`cVLQseW0zr>eD*V^;bOAyz>M6H0_$0#b6mIJ1y*%Xv3i?fi_3CBd61EQy4Kq5CsT
zI%5>GT8g|WgF^eYHt)}mU=*W-ogI?h6fThkcSIl%nJF1wIcrE0Hr68;*eo(9856W=
zSb>J0y4GFD@T{(Cw05DqCSAD7YV@`e(M3A_j57k2rFWiKS`b^<W9P4DMk8?+jz}gw
z5f&`b3K`)FtRI{+Zkot2kR9={i+ziJ>~srd`@@iJLt}m(4VTv1x4I0MF~$^-ThH=4
zf!_)SjQ-kEe?P~W@12S7D%Hkj89z#yc(}|SPPPY!%f_d69eZjj&~W%lecZ?|tYKHo
z{EXZSTdzm#aDL9bs7)T%86u**Y_j>ePVu;}&uzb!bP8-I2(kSV3k&98@?p<&e^~rH
zQO5Hq(mQipi9MhDyJchSwjN1{MWrij!Q6$0#*ntBS+_YO1MxnY+-<{mQE2xizC~K=
zw=5O$Hf?vEMRRUVb;b^sjQW0xjGt$McHM<!O;`?YgU^(Y%--URH9eo}{FKirujM(u
zkstPBkL_MQmoq}^AefI0sYYqpv%2ZM+_uOA{Rg>$l(@Q%>-q$??C)eAqx#1gp)Y-%
zripK2I$ZhWaJ2L44C4BLT|%ComcLUGlF2N+hk9n%PK#GOoT%^Jyblw;?8D85dvzfj
z4&mbOPnT9)DII4NjN!MT!c8-t%%ynxA~h)I**8w~bz+;jzLQEw-JN_`)8ZYMm2h&R
zIjBF=N@rLMkePLZ<-gQ|Czs=)1h*iWFL%86nt>jWENn<iPp}80ZVL9j?>jn|0}*l*
zmG@e0uddyK{-jOK&w1NIgYB<4JU5psjd0~FJ)YEJ+S{)zR5!g=rkt+h0tVj$QWQEx
z&A<14`TpLotE67Pw0c)f+EiI;TSyC6a+9}y5X%QP4WlDmSx3Z(oET(4*vuJ95Cb~N
zZ=?AzTv+;h{WNBzOe_ACS`hy{)JE-{%i$d(mYdcoOehwUAT@kj>pJU+P^%CEX)JP-
z{JrVOC6kKHd=`1*YCRqKpoN$@m}|H)1iaMXttXluzpV9z6hucFd;_`QPDoq1PqZmV
zA&ObU!7GGBT4{91Wv6dlbG#P6<(zm_k1I5C0oO#Gg3dIfnyb4E<mSz;xgb5bLVp{4
zvmu3~Vi^iGJfQ%ze_&^$L`6t|lHX9NjmdEeC#GO?j6#UY!%!o(W4hkUr`Dtz0_<Jy
zW!W_<$6sFqC_MODQqC39DiT5M(4^Ho(ArIF1&^@jV;ly#yL?UP?$d}8r-A4=Ya$fU
zGa0p*f{4nPP=?~L%z}4rfLtSDgF+%4Xr|>M`&;GYx^35K*oJyWCtfMkY_8YQRbMhS
zilS{PR<HpD6F5wr5iSa2Qcu8^`)IkKZB=I$pZ22a^eNtwsi}$*+$K%KgD=q9Jk0O$
zauj?h+auM?M6=;SEx06yQbfm}=f!6=dLbBooF0roZkhIzw8DVW%sHj~e63~kK0(aY
z;VC#tEYIT6MhR`nv&UsFThg8P9~reCX-?Ef#Esev3X>8Li;Y~ugJ9I1l~Y@bz^||y
z98{*7Ls2bBPGDNR6eWZXX(7_By~q#O&vnBO0H|My5>vH#S5p@^Z66p7+<MZ}n0-AW
z8KM-TQwGU{RhcZ}yp19m#?}T5^hTv2zB`GD<IBL5%Q80aO>(hoaAeI_#6p*->$@-A
zIjwkAr?0}}#EGUJ0~V?(&4+4`R{00#ocF4m3hX~Hel5mamg!W+gCh6J2$v=bO8m;7
zjtBMl;2qYFIKWPLSN%I&xL@G<_S=Q|N*xEc+#~FG;*vHLs4{rKg=WpQ?Sn9LpRi)y
zAt9d!mTmG_(vr)Uf0twd7plcwgyv=SSHS)*nG4;E?y8YKEFsl~2^yk?qvAm12dsJs
zPYsWOdiK)yu@W@@n9EDQI+{0M`5S`fVsbJ&vWEhTGSR_qfE;i=sLCzpIPC<}Os2r%
zSq;|uL08y=gFQiD5P)zqk%Fs9i+p1maJk(3=SyB{>B=O3d|eByfFpC?>e}~jLGBY>
zDwuh$yWp1o)sSC5r(g5F9~$CmdMZy)Y{Rvr^0;zCjPJzXQ+o=RwaC0aOqLYcHo+?L
z$-mC0^pMVOsV)d8EPjd>bV1T5W9a~-OLpL#5X?rmPs{pV?~aqGCG40|%snK%Auevj
zx(A!h`(i5Dk&-V+q;|8bhdG+PX=z_D_sXzf6yrJcdzRdfaU|y%4zlJ(3|?}TDyRwC
z^&LgK(k8A_7WhCPa|ysj&+`f?R3D0YMF%%DDq8OHPX9^YR@h8`Tto*Jj7%oPkS2yS
z?Dg_iqqW{o@6O#C=Ywf?#0zQY?sIKe2Ek+=0}l%ogDYqtldMqEQd6IWx>0;oSJf|)
zd!Vo%3eZdM*a$gy7&{yh{MaEy=wmO?R(#gTGIdB)O0%#tIqMRKvRJp8Z}K9B>-sLM
zoAasbHdw!S=CAJSwtw<&lig|QuN_^+o~Gs<^>oeU<0L`~Wo!^MF^Q(eI89Ae=k0Q?
z1_AvV_;|O6no&6tVUEstot6d%jih0~r5G{LYzJc>T0M!9QfErcrM>iyyX=+wp-KY1
zsog$jxje<b790a$3XgoOcSYN>R6N=B>2RNCqy_opUl<&tUxO*EVMp34-Lf@@4a)-2
zRAk{XQFMjmGjZ<N{!Pr7jxdtp*3Q<MWd7TZ0(|eg%Z`p7#C|o@#)cEt>{aSp@4(`Y
z4g-?tRiHk&V%?1NZj`bV<|ooQt3@L|u3)FM$&7}T`WJwW35E`~)*_UU`-P?5B>KM_
z%d}7v`vaE%Tdj|(zTr0aSE2QwC?NNZkRUm4hT5(Ww_r=$=8escuhanr0Jo*kpJSF0
zk~=Z(kX^srOTwFcRUK>q=;ywyo2#xqhV`y1w6-C_#HPp4>kc)nY^r*oo)%K`nk2zE
zZqNdn7$FqH0tX=DAeA>4cWT!+OpjfJPdqhk*m?oCAdaFRls4?P<Pc;322*k;Y#OJ&
z9b30K@lNNY2YIDIA~e`ZPT|OJtXZlNZfZHE#H7|Ck%Dy(#3i6dF`d!<rhzxf(aS|C
z8Vh3i!KGQj+u_4098k~(m(Nf!wJ;qlQgRr0!g1uIKwloTDk7Aw>%l1Eox?YWeMg%+
zk!qZw#|vpQdBfujg)Ls2hv8ih$3cBk7<Y|uB81{>glET6)99HKvmzEWcJX?nZIvi7
zi%E+~9o+%laS3*dd09eARRRR(m_X(>d!Zqv)v$KWMhXG)BKWqX6&dY2goIe)%EU+s
zoBoE!Cm@s^o*wT85C<V#3K|R>ri7iaaZuRs3zJ*@`!ILn;;Z5xT>+_p=xIehjcVqj
zV3XRTrUfE=ORi&sT{-W6$T2Uyb_rZXR^3Y_3qBED+wsnp)@?>$sX;~rNFKvGpc9|N
zig4Kj>~YF>x7b63v>N;+mnn7$)ljmBSvgB<$6B&I<^dH-UWYbz!03*v3tDI`YNA(H
zJMp2Q_K>R~_j@;6pzA>oED-D(?&(d?jCOpggdMuMGZ$Cwx7UpkmehSk@<6~vZ#<H6
zMIxjSbh%^disK2ZY#^z1_!z##*Q_dn$$2fP37ccy3UZ;bls9*t)yjky(e=FyWF(9e
zCiclfvwg!+2ATZbf{S-QbCUAa2aM#~&04HT{O|viOszJ7MXYJ5*u+g!wl*Z7=!aA5
zU8+wmpVitimi)yZ?GSS>zINPz;1y**@ML9OAlbq40F~zEZKqFaYJD{qu$ZtsGL$Um
zIhiEOgy<$w9WL((vLA<Hu)!8^Trf5=dADHG+-LNbERS&;gVS6V#}KKhh=*ufCE_ws
zb@O!awu2HSfZN(AspLb<cTIVLl;59}<CS_Y^L?lMIa5DzzFW#yKfAA?71eI;c5C0~
zf_9<?7za(-Lacut5)R%?68Owu077^Qar!Or8diIUeZM*5WM&+2AM1_Fi`~p1y@FKq
zXw@S(==-kaZp!Tr3x#ysZi4eB=)`>)MgrDXo9N7U#;yTQT$V6Y=N_f6-FrDPQ>*ls
ziXQ*1k8a2yG*=#t8NC(CTM(cvV-o%37;sGsE69JLZpg?-Gl*dX4<JzJ8H63xFq#2{
zG}iB$P?MW9(+<EY;VlQvXEA^noHoPgj`%ukG>9OW6AuR?KcMDDa<0q_me0cgH?sD~
zN|4zxgHjmp^fZhkXNoEGXeNI7?0lHjFi12AC>S3#v)1WZDR11eoIc`r5(=c(iVF=W
zz@p)D9^J^)zy?oUuG?>9+{o3a+@P({-0FE2fC>g_oZRL|yrUewo|QwxI2Uplwg&Nb
z1jz<e=w>->iKV2r+E3#k1{5d;<3^>eazf!`G>0vrGy}(tl5Q4)Ps+^WJP8Sa+)CvN
znphKK6B`VwX_R7|8I0q=46}aF((yrE-op)28IMMpL1@{Oag&lOHh5IbHhEHMX*F0e
zGmt1oH<`hMW0La;K+XP$Nu?+5tpbkD%wn_(#>vZJ9!KXb$dN9S3iJpdjPaUlp^OGS
zvsp_gjj<fmP2vC;VUW#yoQy!rW+lf7q@0`?nPO~9JOdI2p{$zcNw9G;gW#jFAPfjT
ziDB1dQgTuPghLcKDPx4z7R@lT0TH)PV&!bTz*!Dv6l@l=^IKfhh-xrg>Dg_Gg(C_#
z7@?GO!s&Td#t%Y{%IR5q!?vW6T1vr3H)|=R;aUvZO9oyJU^I-|r}Tbc)9CcXnGj6C
z3}`if@d33EAa9prY4A5R^^{<th9YrE!?*Z=_u)HpXR_PCA5)w24${;kUrsz-39ow%
zJ^|erhp-Zd0&mj71tkR8E>kcTB`!4HFQKmYaTf?*=5Y{A-^Inc-OXa0IT$E^62HTA
zs8^S>;CR^I;9*4xwt0N_PdR~Gv7l|8W7Hu*E!CJ@Yke#F<-14)rV;>duwk<C_r@9A
z4hJ<MLAk?c#K;c@Xp{+Q%{jW5(LBjBIep)f`?ES2INe}3;fbr^dU7xI{e9-5VU>3G
z(C@YwBWUU6>EFBizyJHc|BF%OVSSx@N0#mi5WD8?)|o+J+)Y8H!MzTBsW}DW54KM#
z6XWZs;Beb+s7Hq&uy~yWUgI#yaemo(5L&+kjD8TP$SB8&2qpyq<AC@95Vgkv%;77-
zyMi}bY$`-3u<qa{t$dYhutHRFSdQ$dug$1k$ctaDlD%IEAcHY;wn<lLH<Y#p+P5^5
zg<_EeX30cFyo}~V964A7YpNEZ?30w7bnhv)qx?o+7E61@yw%qp$}YQNxA-cdy^av?
z-s=<6p4+RHzQugJI@en67}*M324AVCc9(8#-=^Z*<16C#b>!4aYdU`}#-2twJhD+c
zT?kYmL%)6>gH29FTTBWGs;=FA&Zx`wf<z-qcj7GrW@j|`v#5e%aS$Dam5t|w$qPBY
zb&^}4S8KN7GE&uV!w8-lVE=x<qBgp+V|<;XX&kGet#G;grz)5TxtM&I_2Q~Q3L#2K
zz23>rj|q~10J1&#c>za5zZkx%X;^k`_KQVmND7|hdKiwNx;w_CuGy@iF(Es5*P4&u
zOI<Xjj@GuEb8YV}_clR;^nHBQ{KD~2vB241&|(0H6x71mZd|~Hk*S6KJ5f!SXv}I_
zeIA-Y=1sz7vA8hOMZcDHS>58@;_b^~%P4n9@3p?)RkPdnEyPH)v;|V-+d@17O?$>3
z+8Q-mQ$0D;liX*o*?wuf|Jmh$@}U;)e)S0UUUQ2YmaC1+R5|UH#J9@C%Mx7!#)$Bs
z8Ew2Dxdng6uIO9!OZ7|P^jhf_Np4L#DPW8*37W2M9ELGBx!FJ={Ft5knfewmd4Gn3
zx*R?o$O0~uE;M9%(kTgXMAqeFX!oo~-2+4s!*|jF%hI#q;R0w-@H1$=kImFb%}sJ*
zn(nQ1L$eSpt%4;V?Chrj-*Kxhhw75uA})4!mXWxkFK?_hSW|`sSo-*8oKs-0__cvr
zteGr*-d#yJ5d{RTVax`6C+mxX)`hIjY?s~`wH5HmPj#Ay0hcd^n6%*+M|>91aKk>z
zS92^tcf;C7vc2@KCNT_hAmgBIAu%r{@1IlLwzko>wYoXZ;OX*QZK7dMP*WgU7#`_+
zPRmy*?nF%54&SX35wSh1bkRRrdCr7qUpFwNuLn^;*E}Wde49_WPrCHd&{KEWwb6Ek
zJ)3}@5j;swIyxJc+G88-K*w86j*v)~_9ME!`j{6jYa9JoGpG?#E~<PzK&;-3Bb@hr
zIie#mh9xKPASFK3msg8yw{ovJwzbylkx5Wum+jg5c5u-aARMUd;p^hWxDjAV72wt;
zU_lhH)=fY-vw-*eD`YQl4$enF|11K|#R#~}S^ECuB0Dl=k_AbdXA?bkFxx!kGs~^O
zdw=o{?oC7w%!w|V+Vx!avcJUS+_uwg&hGmtW}I=P@?@pEVv_9CGn<|iBmBZrIuT+B
z$Z|c)+0s*Z*GT0!3Mr#}axQ>c!>L1y+jo(3wYvaInnPN!Kx86f!Eug*%Y}x-ete4A
zhmG_U>IFwNK*2Lsi%Z!PB~iR4K5+fWDfL|&{XPw+RI$6VdzZ6>8oo9M#F9*wEK$gk
zCbuAx%}8YsTICmuGcHL6WbqQP4mZ_!8sIa%^NBG`VgwU+$6~cX#w0H|%<sqyG*e$;
z+eEI~_m{H31DdBjPy4bZ>>E*m=DL4!LhP{UOu4>fE8Oe*zE?4wqoIJgfV5Wt&z`>P
z`@6mKpTckW26zW}ca&oUIoxgZ3Gv|RCjQ+$Ee+AiG~j{7K!yDru|XH0F4YBFAxWr~
mMmC5!no_8N7_26w7K6j~{rN^}jY-B>nr=(?dR2O!BeO5n`<*=i

literal 0
HcmV?d00001

diff --git a/phishing-filter-vivaldi.txt.gz b/phishing-filter-vivaldi.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..e50b14a15aa482344068d0578dd0efc08f2b1196
GIT binary patch
literal 6176
zcmV+*7~kg~iwFP!000021GHL8kLx;e-se~JAX!X+NJpaHcNru=7PAPFnJlv7qbSj$
zNSV~bGUmspX#3n;TbBDyfHcnOwpGO<Su9q4AE`fl{aH;Ke);<MPWeum_UkYI@u#nU
z)|U5L`RVJA|D_hHh5E<8`@`2?MnNYKzkHE|<WWkZr2KP|{6f-SlH|Wp{;!u&Iq<)H
zrC)+>Uw@o$`d`w)c?QF`VB_EH03&U&!)}^J|I3dbE%r}Y%<b@Fpn9baBB}HQ?#K8T
z(&Ia}{*&Th{Qsr#-|Kr*H1eNzc03Hzj$m$Tq5VI7p{;Iy*isYkK<nPw_DX;J^iBLP
zbfS!+mB0QqH4FGDW~yb>OpIRR$&UXZET0E36Dp7*P0KvZW6pp3I4cYMXJGZArx%G#
zn%AdQk)&zyVx%TnaH5azzXdG6l{Q6D=2_OnbXD<{zFKUWM)G)3Pot&rhCeZvPY>}Y
zUOS~h1}|N<>ywmoJDbTzgW}G5D<_;myaF)2z4rN2H%_F)g$Rm%9!Kk@CoLtYvApYP
zgnr(9+&_1y95XE9+8T&F#TA)dyZ|nyj_LS3ot{yr(8~*n2kZr|w9IM~uh#Y8b{?ae
zDkETk*;!Ol7q2GR%|XM3)~SsjfuiiQRDoHDqucvMp;|-h60L1dwSlV0Dw2;l@D~?o
z-QjTQu<L!GS8E=VXItcFp~l$2q?O!u(;tR;QGB?~_gS#HSUHM@HU=)j_J=+(6RwB#
zUZHTtEP&628b-PSIGJVfbu-X&J}tYU;=0h*(b=etx&wEOBTyYJR%tpZoY-h_hi;Mb
zen#gVwb2kM@v<4{=v15*c|?*dN}DQ5^EBq8qhnBg8JY{bmOBu*!>JQ73>YZAP}m_w
z*D{L_!%lx~=Y>3hvU`KR)3A-sqBk+Tk3z>!82-U<G&v=47Obu*VTbECO;MVpSyMgs
z(_5oAC4xETTcxThO8k=-Ngez1jA=3s%6r8c4Ss8_E{pV&nSm-DhEMYH8(R;}qQG$a
zU7Af^G~Z}?a2Wa=ZcUETQP5MZiIfT6NvirAqZ{q4{dKrW`Hjo*NpL`(7N7N$;kR`z
zzHwCO*cy!q?U6|DrS*7r7*}XGAx-|-@ZIR$W#H*8ekaT<_HWXC*{0L90u_TYKXs4B
zIZs{WI}D@IDl<jYAEtABJSo5V35H$WWGO44$wgF<LPj~KJgQ3|QC3ne6Cs$WswhdK
z0pQA8e#+-@h<oMw7(3Q#dQE&RD>&!7Ua~@K{pRVquDhpH_6`(ix%Os0UB|_41IaI4
zQTBu~=3JGjl?`ekgA&m8Sv9TWV5U;VYLq^fx{q!jUP|u6u*|t%ulYci^J3ewFUEDj
zA`QjL4Y${I$*<xf?KG^dS#p>bn&-dEa7z>$NpU6D>vkskeAR_sMpsC|#?_GPdAszM
zG2VBh$@8`}t9lp~E3g>jqkplARYuYLw2)%p6P#QLd}#G4H=Vz@)&p#88pKRATl%S-
z2^ooD<>mbCaBqfrH{=DGa-LDq({p7<OHTQsy}6#(<?PN&v9{OoqO*~o`Pgsm`TOB=
zK@~f53}0Pva_vNQYB%nR5#$*%M0+MH*Ku9XinPPYuq!L)@2yHVcU4toeO`^iovj+D
zWt|Dt-IelI+3GskOXYAng)O9{ezEj>s~wCY_osoKMy4+0oUtBv2<}OiQMG2L^IY(J
zHD+9NP6%8kDB+V;CL^lHjvnko1_9$u*)HH=YO;EJ_qeF{Td6ax6xn;6#5Co-p#JvP
z$G&?;)lB;!#>l}D9$0Wnv=B9`7*B&oFOJl3+C%JS^Q<>B2lFrw0|;SNloyEB4<_#U
z?8UUbf_&!fb;00>6`!A;-%4{<eyS@sowEK|OW1Uh-9h?fGh#DL$o^3ikg$xwAu&fJ
z^}MXBoKFMhsn=0nVlRbfug`JCur#%})cp(A;#oqfBo&xkxrp)<vWNkp5ot041<ex>
zMaZ>TlC0q7Q+J*a<sib82g#Px0R50i@y$Mu0W`QR_B;B5G%m;DeK}YuE~7i3jc&ma
zAvC*eF_u_TlsL-f2<~!;N=cpPP4+=Wt(K}+pGfSpejkfmy2t?t<TDo)trQ`1Jh=@~
z{4Asn0P1yi9WoIFiBo(pw>z1)8fWb60tY>Ibi$5aGbYkm-jkZdSV2eiF4TBuaX8~k
zM&L?Lm<pA_yw_8&u1Fr}^!Tzfp=rPa&Ymb%Y5gox3mC<%)>w-UVDkUE<*|nTv51St
zFpnrX9n9GZ46GZ5_lhF+39S!T(T2%*h;AUQE}I0YD4QmXPc_&PQB(0<(>0K}DZ&6$
z$YyW+B~F_<%FC#3&}M!_KkzFiqb+d)T$5)98#`#Bed;1jf9-^aP7Xre8ZqOJWlF19
zJ|{VDodfGf7fxMl%na6m82pop149Lv`IZC;De9ws+%`@aB-quj(|#TLjNO?@Zv`o<
zqv`$BsgmzB5K1;lbD$++DiOt9i?Sj4(UKudrY(k^yTQgESyQGm&k3AGov<7-PHI_U
zjbyZ}i4bKio4A{Xr`Qb;mtGwNg2>^pCpEQp&m8e%bl=Jt7<G!<8c_`ZCRY2R76?gz
z#MY_n&AGR8Gfa)|S0j83O+tq;Lp`Ys7CK<g;_!CEm?@IaLUiwUkeHXQhx2<OP`_b~
z!7YeJ2h?D@bq7Ybx~i*Py#|OL<tggy5Eu)4od~Kth(Z)f*f%QS%!ul@O4?)xz5-+2
zU}qm$$2%o(C@WT%xYgmDFCLz<EclUf+$~5r_^cJGAwz%Gn0$7I#@fNx2-y!(KU{Di
z*0nn-C8?$iG~ydvIAM_|DO~4q7dcXZKj-g_W7U=?wZguQKgoUtyW=DhdOK@6AZ}u~
z95j|#m(YtH7T@7kfM4~s9Wa+>m>&<)wFGBc8^-qZR6!fp`R4LEbDdlj%qM5Fyq;Zs
zxJ@M{Z-ea4Agc{-c|Yk8;9gR7#X5v}c$wWiys48?<Me}tA2YC1)@7$BDP}P2Nkjvd
zvNjwf4vfAJ1ymg-YxRzDqF{2EGd&;^k2{Jijt+*Z!{iX09Tj<2R&{`Tj0)@Cy42a$
zyZP`SN&3#wjvn}D?tM28moNw|ek*Cwtq4Bu$Y0qX;qQ+J=c9UIvvF5dk{&vTpM=}6
zz@1EXs-~;U3hxTrT}k1LCVe1R=V#kjH!HKe+mbEN;J#%CD_RI)f3Kquw^mRgZUA`a
z>b5&|+kE7YR^bPOutAw{X2`7VUrr-htFg8@D<WrC1e;jvhuhKc`z3F2#{y=GkgP%l
zJLuNgc}&x2S=5NhWQtnlv=4}asc^Ec(e6GjTQ`qLA~7i-NO?8cQKLN8vt0)5Ku|1%
zA%ZYj#E-9iNBhyv?kM2G?S+kQfe;PWnQ*2VO!Q$kzo!kNfi1cLvPk9yiwB8G0$h@l
z;zRq9BRo<9F#-ZqCvnIOX&f?@KvZIp=I3%Qy=;q2(wHL5QF6nW**OFBOh--MI0JJM
zqRjOD4(Q<8p;NHd#YI7qq%NBJaI`HK9lIEL057_e>%=SH>-r?zd>wGtt{={J*JMEA
z`2#7Yg(rd&A}pNIW$C9w-iH<;$?wprNb#MPwwP$Esq{kfcInvB<R>ciHeF*z+4f!#
z`1!MBqGPP139taT{RPJD$}ZGBZxQ6&4=72QH({h9<$oCWJeE5^(`^WKdEc%whB?Mv
z`z##o*lix6s(nSo-F2qhvS=ivPdQQv5?>f{ln!%Bj48N(GN~|zTB^e}(e?fHgfh}b
z0s_%-Tf}zt{3ge;!F$|{+`q8MC#j;BH)4lD6#wj?W4lP(=}dh6R_Eg1s9=7?42@rZ
z!mj;X{1mQuhR21JI^rhEVA4RZf>hHO3h#}`;MQ?~@FCnUg|e|bu~2qi!A;vic>aIX
zG3CuI^{q-kUBC8tqMHC1>pCglul@-rq7yM<J#(wlxQa)`;{+2jHb1$*+3>@ynA}i2
zeM%4~izdYadZ34<FxeT{qDwgD*a^cP?|R|I(E<F)cgV1MIJ!tUA^x5HfTX%3)xor9
zq!r$F<^=`z$Y9W<rdZJqFBRS^J$KLxJ?tXA2XhT~B8SklM_}eCNz&x~uzQ%fvr6mv
zqL47n5vkH6+S|{#T(`U#&FUjo(MUE2WP56~CzQT7r?Grvq(sb2Sf?V~6N8Eb0`k$Z
znZyI4w5PnJLA2m*rxo{G9|Q?Qc+&w5<8O|8Xi*+@)q@JU=hh4MZ%0RGBpGv*m-W#+
zHEdR0tQrQ)$8%JaX>+8BXpSMv92bPpAtl-bSvumL5zB&YpH&yY<rQ4h>ws0*ysw<v
zmJvdS5XL7=+CIX<kXLnnMCb+@T#ZQsyTgSs{s8?A2-4Zc1{W*y^1PdClD?0Q5L$O%
z*GGpKsA3>^=*WP<3U@oZId~snpw}4-=>e1<u!I5wEIMchqcg>{bKnUuqLZib=&Ex7
zOt}~*_alMeWXP(tY_c>bRryXEs~o)?jT+@cIG9%!J&#55({?~*7@TLfy>qlcu-#1h
zKCpr5NDBe81a(p%0(91N<w(-U<p|piN>kI_FZ(6_5AQJTMyH%*YVz%Lu!fe8$bH|t
z0kJTZ6n86hLe+U)AHvK5cV~Dh36~RHf3%1*>s8#1@d%D8-tA6Shb;;&zTM%MdANga
zvQJmL!}jxy8`YZm_MXUZ#fC0hWUPlMFY-K|wh<7sBW8OUS3qe}t4oBu6u|(7+R+;e
z`1lGA*#oejx8zOp=~mmo8vT0C7o`!&B9edB$69sYm7xb_FTE0ayYDfBjQ@T78#!&a
zv{D@S-WcXRH<SZ-(;}naK~2lKGBiYU%;i&VwwQZ8=STI`hL@cvaws>c0X`{(H=>f=
zwVLfbM`U}Y?<3UqLwq&U?MUA`8g5Ho-o~&uj8_%pz`*@n@^%zH1m|G6d>z70CH-E7
ze5+D?t5JQcv3pexeSol)WQX?)=*tf;h5TG5j4*`1KDtBY`!V;y<{smFKn7K=Us1}F
z)PIt;^po^-{v_4wC#iKGrQ0XzdHEz=;G=Z<BwgoE(hGYdMIv%zN7H5Zrse&PC{5~U
zY9lVM*GP@;^Y;DW;T2dA-}4EFz+3k6>4flT%Sd(<Vk6x~BpspR1-$6#4H5a#PJe@D
z_XOcaKF~I%X5%wcyB9aZd3cgWl*@xD-_OgjrqBftEA7kl=;m&g@`e$;zahUmJxG@0
z%%UW(vr+<MspNSnIn8O!2`NBUg3zpv9oY>6o26OGk~~SVZqgj`x}iBw%LE@nUN9W~
zL9<F!HK_%qyv!xfXq`2ALi0q_EJ?*tZzN>^G$$g*zGMP*#)>Q}Swnf&BndrgR)@E-
z8bKHoIg_HUk~GaoNlK)vtjZ3WWl2*eNr8xsLQb-@CY+19Da-ICuBeZC%S&3wy3Fz#
zn_&TB*mWvWQYIt`Z|NR2V<OGUv=m9raV>b=G&zNmCIu5%b@PK}MJjPfh=)m*<wcUz
zjpQjUNCG8@rl<~@l|{{KSt0Vkg@Qc6&dZvYA}^t0b#^qjvL;kytSm&6=UIiGPn#+)
zD20p{*!rMZMMy;w24$5NdD;+~rU_w$%cL$uhA8-;nMjI~;S!Y?V|5Xhu_&^VBoa!(
z50|_CpT@04%TW}Fev!|p(XZK42tH8^;PdOZFzMZiianY1bRQ{@M^W5MRmFJ<d4#Wt
zSrpJG@e80KD#{Ze$qL)s(&wYd6L>I6vM9j6f@cx?Sr8!MhB&b4B%}eVJ|RW=NTY<L
zkY-_q!-@$(y-sY)4L~BoLPYFO60tnYk~nxm96u>RRS82&H3BjCQIaPa&U=V;{Rnp;
z?p6Z09+7XYmc-8_f`~F)Zd^Bl=oVGe&rneqvsKIEEH5IK#Xdn|kwqCT(liNJ;*&>`
zX4F!R1uUXIiEyV-+$abcNr4a-bvw<{g4o8!;xvwNI25N3jR#JrpB8ZlxC(&t8d$0o
zg^xTRH}xZoqA-FCSe`y`wOJZP5MS#go;wKKIkHlTU``FP?(-Tgw+#uu00G_dX6;8)
z`yxuyf}UbpUW1rT01txPwE{XBKd!kKy9O!}8b>2tl68HJ>yT?86rwI)y(pQRVU?EB
z40m;yS_*U8;oc3h2M~)y|5)qikXTA5$%5hA_hv2taTfJYw0AFhB;pK7KyIT(k|BSZ
ziBOiHa9NZ~c|-)V23W!PFHdtPfOasr1QESlDKq@&llAc}h60rkoN~d8YtlkYr5Lx0
z0z&r|I#O?)A*eRAC{?p;Cmt&GI@aT=OPeD?j;1f;NdLhP=jOVjy5-$+q!OIG5+kh)
zE4Z9D<<`_2(mBb#pPJkQM};Q{uYj_)JwHX83w>+6U0&cn;~?|$3{7zAMG)XtW{DG^
zxpJZ~jvOEqoWcjj(t_bm{eCqxh=C4~XbLz;s5(FpV7YizCQ+fMOb&v&h0?~MeG$R0
z465$|1Q255YbdjV)JVU_uiI#q1FEJ25^1=(9>&o+?;wtYvZ|b+kRd4j+Vx!TZ}4(7
zAs!d4^1537h4`2=PuAKSYW}<QtL{6YJuSzUi@`G+>-S2Cq-Vmse(d#XdiEDpmXUj$
zE%<`|dxdB*l_Z}?@?WsyX<8Y$2@6?KA$C7IYZS{R>GyOX+zOesk$jZQ`P_zfj){~p
zF6Z6Zf6xdfO>k%^+sC<;y=Yj}^IW7&l9zaUaKB3y&G_!rT9)M+X76F_!o+nwgTOX~
z3g$iBKf24Y_(&n7On;Y3{5bjxsU(Siky2})8*cobAhY;m|B3N3)@+Z7u?~wNO*S{#
z90?r$nh->&7N_$*)KOJ}RJ9JH*s`%JG2r?7?s0!C(X9{{Esh$$hMet6tAvMVP{Jil
zqxU8GN&fgrXtA%EP4IFe>u%Xes>v@hadKL1n?+xC!(9qd^1T_)oN``Sl@%=u{N|qV
z)_(W7sZ`UbG_-ZKtvPqh4ehyPHQwR$Uhg_wga$gM)bt2b8^Ki~U+{GQdNhE1x!>Mx
zHQ@PP37wnx598lb59II;1En1kVY!C|aM+NIoZf(T0N0(LwxKFY{8~GP2%$yRl*QHn
z1*JvLIuqH|2fiOzThhk=DaAS6Lyc|C`l7&|xm47z5u6fC_#~>XJALcuJH2r?TeV&@
zq}0}X2PEjN`FU@?G_yG!G`{QQr|I>6(L`~Vtd8h$^}4SW(mCX!?@=RN$enkP_@Qam
z;QMh*ik^$m_T}9nQ0B)XHmEOXD6X~qM`&0s8^sc|t-JqI*&Emx@0@yK><A99aBsrI
zP4dW9rBhu5vY`|%DD3h0&%5NY{{<ueHXrQ|!3VN!OD5d^Qb~532Y`k^2R|x{<BxEE
z_%;>RrNafz*eSe1x4L!lKh>UsX0&Ko-n(^oeAw5Hxq-1DZ!KoYW_p5`dN6TYoSkP{
zj!J)Gqc?_-Or7we9;X_bi+g50HRM&VlUt7Rdy(h7(ypHC4o_xwh>Ea09vQXxuSTxT
zNoVeN1&7|Ew&PGSgZ#_%7H6Z_P7n~03%Ot8*T9vDWXyiA$Em}4U5fr*RPxO&q^J3}
z$sMu#r*$6Hpx#ctvfbLT9gY_CKY{&_g5?z6^esT7x)-38z85GNyBDZXMQ#P^N!$xG
z&2lf$N%%!z+U^C$S9vdh0Qg>DCeyvZ`nqg^8WlaN#QV9vdj5&l*_-_H;`tC#Fm6bV
zX>(Gb31Q3MW>QaOC%a>xr?#DFOY^R?oM00V+#O4<iuDInHwj{P5nG^?qZ38GEg5T)
zlkShNo&z@yf+&uy89p-r9#u-4%avolK2{6Kd)XWQm|qLLNeI2R8c0SQJ`OKQI=^)g
zKC2l9%Mi@vj>glgyD0d9;Sc|jZZ?cEx9+mx<1?L_1#RRc5oj#Awe~whih^vN*T`7!
z#9@X<*p5F`Y(ANN9^aL#no_J-NSrSO{Ey6C#l(31jO?e^r|RA%5bs&M5jEWI%|4a4
zr)<A5m6zo3s2SPxw&^7-zu4=nz!j={A<{E5bI`GQ|0wwU>$*-Eh<?3D#;_Qqcb?;=
zYL>P+w7t{|o^ALYkJG(pkDFzE{h8ij*&^%MmzpuFhiQWn=@lU9uUH8#?Ny0K@u7q7
yG%crvJ>Lja?GUC&-D`eK4BHk&xrFqD<Zi#_Zud2&Z5zbFbo~o#nV>T=MgRa=N&Xf9

literal 0
HcmV?d00001

diff --git a/phishing-filter.tpl b/phishing-filter.tpl
new file mode 100644
index 000000000..9725052f6
--- /dev/null
+++ b/phishing-filter.tpl
@@ -0,0 +1,457 @@
+msFilterList
+# Title: Phishing Hosts Blocklist (IE)
+# Updated: 2024-12-06T00:21:00Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+: Expires=1
+#
+-d 1nvest.bigbantbaz.top
+-d 25116414.cc
+-d 365365news.com
+-d 365f09.com
+-d 750115.cc
+-d 823pages.pages.dev
+-d 95564339.awi.za.com
+-d 999fc.vip
+-d a.yyyy.cf
+-d aaaa.whilefish.xyz
+-d accounts-microsoft365.weebly.com
+-d accounts.0ffice365.support
+-d aidanochka-tabys.kz
+-d airbnb-clone-sahinur.vercel.app
+-d akbarinewv2.morteza638n.workers.dev
+-d alaindemeuron.wixsite.com
+-d alexa81o.github.io
+-d alienv2ray.pages.dev
+-d allegr0llokalne753724pl.art
+-d allhrteam.com
+-d amazon-clone-by-sudip.netlify.app
+-d ammuvicm.work
+-d amyr.iran-cyber-net.workers.dev
+-d antaidossiersuivamendimpayeerf33.zynekcctv.com
+-d anuragrauniyar.github.io
+-d appeal-voilation-policy-issues.github.io
+-d apple-id.cc
+-d apri.154-203-197-141.cprapid.com
+-d arvestcreditcard.embarkdigitalonboarding.com
+-d asdfjeiod.com
+-d ashleyproberts.wixsite.com
+-d astounding-trifle-b88a2b.netlify.app
+-d att-101397.weeblysite.com
+-d att-102641.weeblysite.com
+-d att-107756-104508.square.site
+-d att-108102.weeblysite.com
+-d att-108651.square.site
+-d att-mail-101246.weeblysite.com
+-d att-mail-105533.weeblysite.com
+-d att-mail-109459.weeblysite.com
+-d att-servicce-mail.weebly.com
+-d att-sign-in-107078.weeblysite.com
+-d att-yahoo-mail-105061.weeblysite.com
+-d attcom-101415.weeblysite.com
+-d attinc-101356.weeblysite.com
+-d attmailonlineaccountupdate.weebly.com
+-d attnet-100294.weeblysite.com
+-d attonlineservicesa.wixstudio.com
+-d attonlineservicesa.wixstudio.io
+-d attweadminservices.weebly.com
+-d auth-sharepoint-asr.vercel.app
+-d avertisystems.com
+-d b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev
+-d b35ccc.com
+-d b35lll.com
+-d b35www.com
+-d bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz
+-d bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz
+-d bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link
+-d bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz
+-d bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link
+-d bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link
+-d bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link
+-d bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link
+-d bbf-alpha.vercel.app
+-d bet365t3.com
+-d bet938y.com
+-d bet958c.com
+-d bhngfd3.pages.dev
+-d blackdasblacks.shop
+-d blsckdagsever.pages.dev
+-d bridge-9wdpjmsoa.pancake.run
+-d brubreumummeddoi-4514.vercel.app
+-d bscusdty.top
+-d bsozvycr.icu
+-d bt-102368.weeblysite.com
+-d bt-106861.weeblysite.com
+-d btjfh.weebly.com
+-d bussinessaccounthelppage.click
+-d bwfujmww.icu
+-d bx.sfdsb.icu
+-d c.cting365k.cc
+-d c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev
+-d can-post.cyou
+-d celery.sa.com
+-d cen4-six.vercel.app
+-d cf-worker-pages-proxy.1352562939.workers.dev
+-d cf.13084493.workers.dev
+-d cf.iwoai.cc
+-d cfcf-8.pages.dev
+-d cfr-reed-taxi-wayne.trycloudflare.com
+-d chain-trt.online
+-d chainsolapprove.pages.dev
+-d chat-wa.xyz
+-d check282.tempisite.com
+-d chore.pink
+-d ciftcininbankasiziraatbankasi.com
+-d claudiorojas.cl
+-d clivenicoll44.wixsite.com
+-d cloudflare-workers-pages-vless-a2j.pages.dev
+-d codt.digitasianetwork.workers.dev
+-d coinbase-com-18690.subttrepimop1005.workers.dev
+-d coinbasewallet-verification.198-46-89-184.cprapid.com
+-d company0rder943.weebly.com
+-d completar-la-verificacion.vercel.app
+-d conductibili.fun
+-d correosprepago.bnext.es
+-d crenadenuddoi-2258.vercel.app
+-d cryptorectification.com
+-d currently5267.weebly.com
+-d currently70.weebly.com
+-d currentlyatt909.weebly.com
+-d d.afirkz56924.workers.dev
+-d dio.azrealonce.workers.dev
+-d ditgong.com
+-d doc-online-1881.on.fleek.co
+-d docsignauthorizationrequest.vercel.app
+-d docusign.com.bestfinancebroker.com
+-d duang-5dh.pages.dev
+-d duvhkeq.pages.dev
+-d easyaccesscommagebn.com
+-d ebay8787.shop
+-d ee-account-home.web.app
+-d ee-service-help.web.app
+-d ee-service-portal.web.app
+-d eln3.vercel.app
+-d enormous-orchid-howler.glitch.me
+-d espaceparticulier.life
+-d ets3qe9ooms8t6i8.pages.dev
+-d excelorgo.com
+-d falabellacom.dominiquepg.com
+-d fdesq4.pages.dev
+-d fdsfjiwe.com
+-d fdsjfkweow.com
+-d fekoulamevebouna.freewebhostmost.com
+-d felomane390.wixsite.com
+-d ferngos.de
+-d fieg.84yr483rhfwieujro348ur84.workers.dev
+-d figinstenatecom.pages.dev
+-d finansfaizsizbasvurum.online
+-d forested-mirage-samba.glitch.me
+-d formtools.com
+-d fortradesetup.hamidamnaie.workers.dev
+-d free-5436781.webadorsite.com
+-d frogsrus.wixsite.com
+-d fshraha.pages.dev
+-d fukshumx.world
+-d gazruinv.web.app
+-d geaoolsv.pink
+-d geminiwallete.godaddysites.com
+-d ghjhyu.wixsite.com
+-d gimennlouin.gitbook.io
+-d goldenrod-rowan-submarine.glitch.me
+-d gorgeoushome67.wixsite.com
+-d group11-vvip-hot-girls-combi.viplch.online
+-d gruppeflorian.com
+-d hanisfir.shop
+-d hedayatfreedom.hedayatkhakpour.workers.dev
+-d hello-world-morning.freekite.workers.dev
+-d hello-world-muddy-cloud-f45b.mfoster0425.workers.dev
+-d helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com
+-d heluapla.shop
+-d hemanlau1.pages.dev
+-d hezhouruan.552008598.workers.dev
+-d hgcdhbxnf.weebly.com
+-d hjrhd.top
+-d hk04-123.pages.dev
+-d hkmqo.top
+-d home-100317.weeblysite.com
+-d home-102207.weeblysite.com
+-d home-107257.weeblysite.com
+-d homelogin7t6sdfcgvhb.weebly.com
+-d htaflytz.baby
+-d htaflytz.black
+-d httap.l-teiegram.com
+-d httpsbellsouthnet-102649sitecom.weeblysite.com
+-d hup6r.com
+-d hy.fuckgwf.eu.org
+-d hypophysecto.fun
+-d hzuayvvl.red
+-d id2.xbenihime.us.kg
+-d ikergalindez.github.io
+-d info-delivery-bg.com
+-d info-trackingcs.cc
+-d info-trackingiax.cc
+-d informed.deliveryhbo.top
+-d informed.deliverytcw.top
+-d informed.deliveryxs.top
+-d infringement-service.com
+-d instagram-clone-in.vercel.app
+-d interbenefitprestaciones.referidosweb.click
+-d iouwerty.weebly.com
+-d isnworldwide88.com
+-d jaydeep8806.github.io
+-d jeanandpeterwilkin.wixsite.com
+-d jetconstructionsgroup.com.au
+-d joeandvelma.wixsite.com
+-d journey-x-pro.com
+-d jsdfchkdsds.weebly.com
+-d jshattkee.weebly.com
+-d juliusmasih27.github.io
+-d jung-sohn.de
+-d katiebllair.wixstudio.com
+-d katiebllair.wixstudio.io
+-d kdlmo.top
+-d kenzmail0.wixsite.com
+-d ketura2010.github.io
+-d keucroilluxibrou-2718.vercel.app
+-d kuconlogin-ui.godaddysites.com
+-d latam-onipojes.vercel.app
+-d layanan-bntuan-resmi-dna.prbu2.my.id
+-d ledger-com-updatefirmware.aparecidovisentin.com.br
+-d levappoprauqueu-4688.vercel.app
+-d leyoixoimmecou-5619.vercel.app
+-d linkbokepviralindo009.vipp.blog
+-d liveairdclazmersn.pages.dev
+-d lo6-cas-projects-64947843.vercel.app
+-d maatamicklogginns.gitbook.io
+-d madebybmr.in
+-d madhu821.github.io
+-d mailupdate87.weebly.com
+-d maine619.github.io
+-d mainnetverify.pages.dev
+-d mazulyta.pages.dev
+-d megrebeikenneu-2106.vercel.app
+-d mendhfjpl.weebly.com
+-d metacareer.com-case37169314276.com
+-d metagalaxy.pages.dev
+-d metamacksiologus.godaddysites.com
+-d metemrsblogin.gitbook.io
+-d meyetamaskiwalt.gitbook.io
+-d mianfeijiedian.lawcpacpv.workers.dev
+-d milanharvestfestival.com
+-d mirobitsgt.github.io
+-d mocp90.pages.dev
+-d mostafa2.mehdi84888.workers.dev
+-d movie-firebase.vercel.app
+-d mubki.hp.peraichi.com
+-d my-site-104564-105934.weeblysite.com
+-d myaccountsignup.net
+-d navy-nose-4544.typedream.app
+-d net-flix-front-end.netlify.app
+-d netzero-webmail-105996.weeblysite.com
+-d new-currently-1-23-24.weeblysite.com
+-d newattupdatemailboxkidlyverifynow.weebly.com
+-d nfty-proj5.vercel.app
+-d nnbsscnaceesngsetr.com
+-d occinamete.cfd
+-d odovsccs.weebly.com
+-d officalourtime.weebly.com
+-d office36503.com
+-d ohscorgza.github.io
+-d okm.znt.temporary.site
+-d oliver752.github.io
+-d online-e-commerce10.com
+-d online-e-commerce11.com
+-d online-e-commerce12.com
+-d online-e-commerce5.com
+-d online-e-commerce7.com
+-d online-e-commerce9.com
+-d orange234.wixsite.com
+-d orgmail.weebly.com
+-d ourtime.datings-information.workers.dev
+-d p.updateinfocl.top
+-d p.updateinfocs.top
+-d p.updateinfoga.top
+-d p.updateinfojq.top
+-d p.updateinfolw.top
+-d p.updateinfoor.top
+-d p.updateinfooy.top
+-d p.updateinfoqv.top
+-d p.updateinfove.top
+-d p.updateinfovt.top
+-d p.updateinfowu.top
+-d p.updateinfoxb.top
+-d p.usertracktxz.top
+-d pages-108-tg-cfzz-ip.pages.dev
+-d pages.tempisite.com
+-d pageverifycenter.com
+-d patjimmy323.wixsite.com
+-d paypalloginin-usa.blogspot.com
+-d paypalloginin-usa.blogspot.hr
+-d pcmag.anycubic.vip
+-d port01-acf.pages.dev
+-d portal.chiaveggies.com
+-d pruhuffopraussou-5681.vercel.app
+-d pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev
+-d pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev
+-d pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev
+-d pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev
+-d pub-2801359d2be54bfd8701132626efeb73.r2.dev
+-d pub-3096005ebeae423182ccd89665564d8a.r2.dev
+-d pub-46a5f86348ae4aceb3591d126020999f.r2.dev
+-d pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev
+-d pub-51f896deb233450089fc1a520e6ed957.r2.dev
+-d pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev
+-d pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+-d pub-722720be67154192a1102b2cf085d306.r2.dev
+-d pub-7d056bfeb6b04852801553620fe62c0a.r2.dev
+-d pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev
+-d pub-873fc6a3edb941c6a17f50911dfca518.r2.dev
+-d pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev
+-d pub-aab4be29317b4ec296517a557db12622.r2.dev
+-d pub-ba5a046c69974217b0431bca4ba43740.r2.dev
+-d pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev
+-d pub-c59cf4e950b142949df8861e60b3689d.r2.dev
+-d pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev
+-d pub-e5855431d98545b38408f52af50ab8a1.r2.dev
+-d pub-ff0271d87324424a9aec83337e844a54.r2.dev
+-d puertaselectricasprincipal.netlify.app
+-d qaffixledger.com
+-d qbstdfda.com
+-d qpownthenewyhadvanceweb.weebly.com
+-d raj-tiwarii.github.io
+-d restrict-policy-nonadherence.vercel.app
+-d reviewboss.github.io
+-d rfgxg.top
+-d riaayaoman.com
+-d roadmap.binarydesignhub.com
+-d robinhooldloegins.gitbook.io
+-d rouzhda03.kambizmedia.workers.dev
+-d rsjxzl.com
+-d rtyuiuytgf.weebly.com
+-d rubinhuud____llginnh.godaddysites.com
+-d rudra-choudhary.github.io
+-d s.team-s22.com
+-d sadekk.com
+-d sajsa.icu
+-d salarahmad786.github.io
+-d santanderpod.fsthosting.com
+-d satinnaaoabbs.weebly.com
+-d satyarthi.uk
+-d scarce-army-wide.on-fleek.app
+-d sdfvgbcvb668.weebly.com
+-d sea.6e2efhxz.eu.org
+-d secrbnsuppotyu9.weebly.com
+-d secure-ledger-m-auth.webflow.io
+-d server.2rk3.com
+-d server.pxs7.com
+-d setshinobi.vip
+-d sextelegramxxx.pages.dev
+-d shareorder711.weebly.com
+-d shaw-101342.weeblysite.com
+-d shaw-103098.weeblysite.com
+-d shaw-106054.weeblysite.com
+-d shaw-106665.weeblysite.com
+-d shawsyncmailservercommunicationworkspace.weebly.com
+-d sherman-relate-rev-baskets.trycloudflare.com
+-d shobhit245.github.io
+-d shopifysite.cn
+-d shoptkoo.com
+-d sign-in-att-108611.weebly.com
+-d sign-in-att-108611.weeblysite.com
+-d simxtrackredirecttszz.pages.dev
+-d sjhsjjs82.weebly.com
+-d skill-meta.com
+-d sky-107842.weeblysite.com
+-d smithjamessv328.wixsite.com
+-d socx.ly
+-d sparq.eu
+-d spicyhotcoolsoup.s3.us-east-005.backblazeb2.com
+-d spotifyl.vip
+-d ssfgsfg.wixsite.com
+-d sss.k999955.workers.dev
+-d stonemartin1001.wixsite.com
+-d stringroll.com
+-d sukienffvip.doiqua-garena.io.vn
+-d supportsecurity981.tempisite.com
+-d talktalkserver897.weebly.com
+-d tareq088.github.io
+-d tbsl.by-on28.my
+-d tcaconnect.ac-page.com
+-d tejlksdoisd.com
+-d telegcm.me
+-d telegramjessica.pages.dev
+-d telegrampx.com
+-d telegramsexgroups.pages.dev
+-d telezelm-ivee.icu
+-d telgramsignal4.sg-host.com
+-d telstra-102379.weeblysite.com
+-d telstra-104033.weeblysite.com
+-d telstra-104394.square.site
+-d telstra-106968.weeblysite.com
+-d test1.workersdev40050.workers.dev
+-d tg-logrom.com
+-d tktk.tktsk.shop
+-d tokecn.im
+-d tokeni-1601.vercel.app
+-d towrewds.com
+-d tpwalllet.com
+-d trustwallet-zendesk.com
+-d tuviaje10.com
+-d tvjbqiyv.guru
+-d twcht.twimobie.cc
+-d twimobie.cc
+-d uedy.pages.dev
+-d ultsyncingsolana.pages.dev
+-d upheldlog8.godaddysites.com
+-d upholdloginorofficialsigin9.godaddysites.com
+-d upholld-lligon.godaddysites.com
+-d usol.shop
+-d usps.com-cgkzkukp.vip
+-d usps.com-trackaxd.top
+-d usps.com-trackbrs.top
+-d usps.com-trackdht.top
+-d usps.com-trackgee.top
+-d usps.com-trackhsk.top
+-d usps.com-trackivo.top
+-d usps.com-trackjjx.top
+-d usps.com-trackmra.top
+-d usps.com-trackmvz.top
+-d usps.com-trackuqg.top
+-d usps.com-trackvgb.top
+-d usps.com-trackwbv.top
+-d usps.com-trackyqb.top
+-d uspsdana.com
+-d uspsdant.com
+-d uspsservicetrack.blogspot.co.id
+-d uzomadj.shop
+-d vedi.154-203-197-141.cprapid.com
+-d vgmrm.top
+-d vkkvdkdcmm.weebly.com
+-d vl1.spaceysen.cn
+-d vobroffexagru-4404.vercel.app
+-d vrvtn.top
+-d w1.5114559.workers.dev
+-d waassistance.com
+-d wallet-diagnostic.com
+-d walletsecured.pages.dev
+-d web-lupqrbm0k-uniswap.vercel.app
+-d web.tlgrm.app
+-d webmailserv3038z.wixsite.com
+-d wk.xzte.eu.org
+-d wodjrvrisixc.wixsite.com
+-d worker-dark-queen-529e.servers5555599.workers.dev
+-d worker-hidden-frost-ba39.yoveli7450.workers.dev
+-d worker-site.aopages.workers.dev
+-d wsa.osmqone.org.cn
+-d wwwwwwsasasasasmmmsszz.vercel.app
+-d x.tovip.eu.org
+-d xhjxkj.cn
+-d xixiajiaju.com
+-d yahoomailquthorization.weebly.com
+-d yungtee3.wixsite.com
+-d zagbasamothega.dnsget.org
+-d ziraat-kampanyasi-besbintl.xyz
+-d zxl.cbbnbbc.nyc.mn
+-d zzpov.top
diff --git a/phishing-filter.tpl.br b/phishing-filter.tpl.br
new file mode 100644
index 0000000000000000000000000000000000000000..8318794ca8fa20c72430847f47ebae2aaba0fba6
GIT binary patch
literal 5509
zcmV;06?*F7D5N2xm=Ay=WSIMBZT~#~^E(-xR{>86#TT=P{IP(AvL)Pv_4lSWsuW6w
zil(Ha4q0?wLh7mM{NDe6=l)t3zS7+8#a&0mnO(`Av8?nj%f6I!MEOV}FL}w52{Bg;
zMQfHUIt|s9wD@t<fA>YGB$a*U&#DZyNN+B}n6Z)7^#Ao@{c|50mcRA2{qk!+CmQ$a
zfB5r{o3EQs>(5{2+Uk$Eyh8A`{rvV{{n_vQ@@qf;b~L8jKl~YI-vt>N8K!?7hCgKE
z9}dHR|MF`;e|8_fVEx0N@yEjR^V_Y)e%wik>B&6x00-I}u;L&7Y^@!`(y{s$K(lj7
zgm6JYf^qB*4xDJ(%3pr%M{#ZJ3c|nES1W$`wIA8g>mUAb1wrAn@b`aK-?m<#;hVYK
z&-lIM^@TrRPLlp9H0Xi&FMmkzC;OA}mtXsZ*q<?-SR2)T)sUKom$rOlwqtS}Cou|Y
zOp=XHl25YRpfUQn$_-0O!7PVylm&FfIKQHm{-j$xbKYo?auS>`6fRF+C|$HHi!=1}
zEf)iQp68*)B@6-pJ$eWXHjCcRdrObB6sbhNfG&9fK1q5Z>hRRd;Oum8&KrE9QiM;2
zw{VfIId&io^i%0x`DgP*CrwPq2}y;`r(WoZ#bBUtp!nr>4aFzCPDW!c4PThJO7zNQ
z$3m?E0WSK|CSor+(aYabtbUXPyg`kb_FdHH91kAT$qGD-Q~##h_f>`v@(v;4EcwjD
z5h##jhOm_psJ4)a@a9BFk$y<+)*qK{8VTM#kIoqT=}p9)BzFHP)E7v^JQ@p0*y#H4
zQUh;utsYD5{)C9h`gp*DSRCi{eG=}*v=bfwQZKL;=*d4&NbYbP2!Wj02W=WAhgTXP
zgI^Ax2}ryZFuc^)`=O&0gbkdG%S=WwQgfVBo!UGvl1<bhsJbvc56JMYz9Kp47Z@C@
z%>7mCKIn5L{?{$wbCj&HwAziy+Hz0VT_&w~7m#SBfN5TrwnoNb<jX9hwG|=2)nk(w
z=bUFbk#P`mP*lZo`cVb6NWHAz)2wQeV^K4L52z_&VxmyjKuXT9&LZTZ9#CSyI3Cg=
z3U4;QCgKyN*JqejMQAUmDDBBGv1_@>@%b=DF-n+IeKLE(CDCw4W-zKe$Skl9%tb=x
z9>%~HQ5mU-kZ)iG*}3PfTc6>m$Xl&lXh5)QDK1uT8<|7daZnl)sH!S`VrhQfRCV^x
zr$;Su5tc|M9T5f$Q4=!4CopcXR@-?d!$2b9YgY3S{fKn;W&ewW<Gv|_37Sh|OwD)X
zGK7!<hS8Cq2;5%KV{q4=`sY2){6r@1O-?&AU%!<ybARdRPZqt!b?0-tj+olysXtt$
zF6`tNs{U!E3vwq+y<QRF{GNH8c6nT<4~X(I$>jGs#cOYuTfEkE3T!6`arINI%<F^6
zm%Z=vW#Rh<8P20fXZ3L<_I{sx&sv*(JCYFVlrDc&YA@6@__RNr{OAQ4h|kGnGz~vx
zLKD~U5oxP;Su5hBTeO`8eeP}Qj2$fL>HeaKp9?{=MIl)ehJ)SVJLe;_k2ph3@Ao>t
z<$KC&eUCfv!+g!LKkN5;L1-*^{WU(-APsvrJAc;46nUWgBG-@-pRVJ&zMie|lk}^n
z{;?o*rEl{*^Ign`E#K^qc3z!9*j_NJ&-2^zJr^OF%+fiiXNIf)#SITD>L=>Yq5aLi
zT<;jG^;vW97yo>_G~!C>ID=pe?}igz8QKveTQ)X?MtdRAxR5>owuP%FX$Psq+r^ev
zXZf6r)~I2j{wyjrsY%wcb+h&VPC{1dvlMSvB+F%wPplc}0m;CQwDbhii(MD&vB!wk
zW>1711@hyo>D9K!K<lV$e$U4g>P>&e>7*|{Da_yfr1WPi-9BzpF{bXdDyeYQhj=Mz
zAWEaY1l~`)T>r%D!eIPOtFu+7J)fbb`Lyy$?(_CHV)(%3VYGx##u70iCmI<Lws3|L
z#DG@npZ0thE-d}CeH+tONImx|444afwNdlr_9kM$^3ZBhdNP;<ss85T3gd`Tqmd5k
zE;&lRA3Ac$<ir-fm^{ChadhN^5@O-mS$}2l^tEut5!LVS*SJCoq9qM(PcC>8(pH`$
z7V<DDGmNKh;1g-3(WyaAKd|O-`m?(_vG#ErG;)EKK<CS3icuGT3*WtkX3GWXF)Ah-
z@0#(+C*QLas(*a}XbEaDEqI1gO8!8lCM5gmPfXtA5QH#=sz{>z4cB{qx{b{Uun+!&
z**0p2t*jnAJvoPYM%1WCCiZ_PH7x_JUAI>7@G&3bFvw#3GMIO2#9Qqm9T!E!MASk?
zB}_%?ZF(At#j*%K7yzOoV1q&eRD7(FiB~~Rwwrd6wo&Q^Ha)w|Sgt1<YOa}TkJq4B
zUy2GQu$cOQzcR+8nujUR(Q-l4NMUG+UScyY!z0-=qs;R6XdWJ1L2Jvfy!&e@IA8Wx
zP74$41=GZYx1iy?8-uq8v^87OgEku?%CApGrAC?)bpdgwCWC<C2PTY_i+_njH+xsL
zaly3Nba1Gg(=Y>#VUVL8E-6iV=#W+-?Ivk%Y(KXhzZnpdA(0K;<QThJqWM~Z8Xh&P
zS)Z>&B<fEifhCw-C~`4G+g2b^jq8&QzUIyl-W!F)>9jEAvRB0`lU&T^E!pxFu+TNQ
z@evxe0X>i5I37nuv-RMy&^QR@cBxhV#U<xhRhzsDs=(V|$YnJ>BMzc5A^=ls&ebXB
zza5X>bKxx3uc+uToUQKTFNCY8AGcqauhb5>=N=&9iTh3npb?v*3-y+3i;9}TdJQ>3
zLcR=Y#OAQ1HMfg*LH4*(C7vP_FPpnO_D{)Ns9uzKwsn5>sWwc|kTeMaAT)ouI`D7x
zuZDW|(xaZ$T`rMayCu;VSY7@GQ9}pd_9`PS=U_xbgfmiL51KBwe$Wk~w-6Kfp#iM0
z6DjyKtBLnc8f-52?p?`iE#0+r=jv8q18VGjuUn6ILn7GJ$64Vm-KSH?^c4Z!C8yFC
zD|R%|ibY7*Y{A;;UnR-qx_!2%<I!&Q5mO4e`{aq^{u}fj!ilensbot^z95m>bqt6|
zSa<ZATru}Ld_Yghns~*M`!SB>JpDno+(_(|SA8$Ej{_YT%+^!5QBK8yF6822%${L`
z<g4?=zM+K&8s~>>jx@>KH`t@i(hh<UStJvNhDpp8WtZ=mt~Y$DTl<h{@1G-1NKK>5
zwP6_qlVyt!0~Nh37<**_PPU85JE3+I->Fa4t&%&S5RcG7|D8(cwPWaT1aK1}1?Z!M
z7#qIZtk^mvD&@*TW4S1dJgvrV`c6*yXSYw;tW~LR`w$+LS-iPzkKYV-N{%?|Fz_*?
zK_QefHYl2z#Hg~LbDOGlW<58J@T3MVJnf~Ca!Dds<K%T-4GtPeLyv0-i(%XqG$01B
zi5qXSNi10O->nm;k$y}iK|FNH#j#$FV&BGxWW2zUkL{^wTAueiZEuI?JOeE_R^NrU
zjNTfP-+V;cE8UCR{f=dY5G1Vg2D>soxlGpERzE~*Xv||V^q8r(XYJd89`5^WiD+qM
ziB0#SJYQKe*N%6+gGCKolVKBG6@IuG&=KJncC70yBz723x-Np70%^^RGO*Gm8;B}`
zDpUOnPd@hxOM67X@HGuZSOJMEm7{;)S=DHw)G%?=`9VmK>|#yp%ZJ@ZVh{RYTb|IW
zasmK@LVxx-BP4rbh){e|?j_+vZbw4R0NHi5?Y7$b==D=KXl+N#^Q{NpYlP}IHj_}&
z(@JXI(%krK?9e>w5WttP(s}@p%0_k@q6C;brZ?IppNMTcwq9UWQi4iP?$}MqK7@XI
zU2-RE9u3yi-c3&9_t2#Kxu#128bp$lKk^4_6?%ZDw>}losdY%CV2z&G1oSAnGa4W2
z#}f~WXIk+KNPG@=e1oNv*QanmLE~*ceZ|zg;W$uA7N2k&`6$qL8*56$q-f~HfKT>!
z_A#Q#oyciipgQ@q>%8M}`Z9Ev=V5p^{c+GGEppe56Tug20=yARO`6mZ@<a^yo&J8%
zv`Qwih*=4<P()ytU*7B?ud7d~&cd*ER-zvr3-u|j#nu%Ydk(sp@TsnH6Os{pLMo+&
ztdy{MIkFW9PZ8c8o(4HRh-*QOe#exs6E+SLHEuE4&3%sGFYc{IkEsr+z?ffzd>*HT
zkAlq;WXlx-+!&eIAckHZyw4%8y^0)e2B*hTyGL%u7!jXpMBS~Ux(%X@hvd+IJX({(
zYk<ofV2*Q6&5J%j+LjsE3a5&J?n_<>-qqUp+$x)686K*n<<rCY4va?JtXD!Q@r_2-
zByqmr8duuTZ`$?l>2}Zq3wX2n2l0?*LF<8-1bW`r!bLnjwld4FsauL*7g)qQk(4VE
zA%&o47ZkRbnP}c1MN=;Lo0xQ)5=_?ip(kv1?_qMG#_#)DmT4s6MOLU!0vQS8go&^*
zXvjRIIz{Ju_clD^wo%I0ShJFA&y=et+wIL$(zTid2C=5KViWbYY>ZDZf-GvB^>u0U
zS&ccSlN-iQLdd<Cq}Le$Y>tV6du!Wy0~@R_j0$JoBYjf?Z}eOM$D(!`Ez96Wvt*IT
z>Kefj9xIj@hiv4#&*6B^*v#bpIh#*f(D=V=#*v~!<+7TASQ8S0L$neVga970i4Z+#
z=R>f#2@<V#&)L?HD}?-fLxwAKE@%6M{GOptJlhuX>KDAVsJINxnZ4cbhNxQ?#zB#`
z664;N_~TeZJmerD>>_iBa7L=$yta>z@!^bjr**({oSu@eXre`W1u1xI>ycZi$X4!O
z)I?Y*q{npaP5*$JxEe+R#ucBSDUW3~4=1jxKh!&q(zouMe2>&By)R0QKi1JT8HD1K
zL#;<=#N-SJP=+yyZng}#qJ?GnU)VJn`KSjmjNkwS3blYR<1~zVKq0kpQ35*KSute+
z%p{!Qp!gyN5Q9~E7;O&E!A6Y;f?4s{i*7*0wd8!#3mCo(16;VWTLx&cOrsRqSv3#i
z$l1gubf{;(y>mV+(=bTX2q+jI6*I=FWtzAbyR<5YPb4OgPEA}WKmi6dm&<5JHVtgx
zWk~NnlC~qC#>o!K2*r(B76CZHAhnh5ti(&o(Wzy!s2S%%4uk8GGb2bg;DmOOvkUAb
zl~HaU2Qi>PF=#tZ%1l;FIBUhh1ynJxTu;(2LhyOg%ec%!0w6bXvIPq4%-GBZjnh0z
zF)j?oabTJmHz;ZOFm1132RUhndeVbXvMc<Sl22@KI5E>zK~>TyFk)dKQH*xhg9FPX
z=QF^xxEzA2X70=c9Ial&XeJnECx>Mmtur9UaT8QfBY@D_DXzq%6{v+RN?NJ4;V@kS
z2cU&Uw(xP*0u5UxInE&EZ1u<{#$4bvNEpOqre&E08)rQTK57F(gW$6mq6Bl2^CUo6
zM1k|9wNT2S9u_trqI)YwF2)I5<e*2v7O`08{F+9b2F)k6SQl6vQP@F?X_8i0wJei%
zgOKB7)uNncE@)CoDfnm?C56;ni9tEZz{vr$g3-NA=LR;9R?VCV!2~RTM)6k{sDuD{
zH-x3ZKSd;0yn)K-lxjP9UvSRfD-?Eks`%>Kth3;!ANew+WfES`#?^y$uS6*NQQ$+G
zzo2+8`(fQYT)b&CnaL?9up1Tx<s}C_LaA$}bFIk?yY*g$hOKyj2S8ah`?)jN2nW?Z
zL3v1elvPH8w9`IqIR_gu;;u5?`Bh8q?`C1(bcd+@%hr=V=SuzDud3{|w5R+2v=x^U
zrRO)fcl-bT-~ao6A*_U^-&Fm!rP~6;Y`NP_fvT-DNW2_GQklMUKNT$QyU(gm1&gJB
z6#^94BG_3?X#w%6U9wn?Y^kda+^%L0@v6VLO#m6R))YHdXb+UOdD?eBn}K4Guq8PG
zG6rc*#6Uv(??tM0=c>)ACrhrH-h2`0gbdwwzc`emqA5CY+nTqhFA+1Q7bJ^k5sB#q
zP-7sPvMLHJ7VDd_vh$eeeYxYVGjBw~feg|TU;S=KO=|)1zHh0G+!SPPHk`+?SjGky
z7blcpG{n{9!=kS4G)SRjnxt8uWK>a7Nzh<pJsH?ww4$*^UStDH1STFUKtodSB>!Wl
z8B}|&Pj$<B^Nk5Pk}_L9yerk><U7*#oMTfy6yt8KqxIG+P;FHWA8!pYT-deET7BOh
z^7z^6=TjBSBf0w!$QrxKmp_>83{-bn(YKAV+_IjWDOJ%~v$<(_{>(q1d@1$^n>Wvv
z8#S9(#LZSY?Uj&-IkD^_NPdR^FY2i~@yN})CyYMV)veX7nVPlIot9r;!tqFyCd~8Z
z<1mb|c|$jWyRG`ZqrQ7g&Yk|CHv4Y}vVz$*O?{?k7ZN%t&awyL+q0-q!v?A~{3K&;
zmui7yu0w-@-$AKYX}SigACePOG`8ZZW`H@agCU>nZaxh^VXrp(YP~Z7R};-KY@)jQ
zV6EN&IV`}=$DM$qK&*HpqSMq!i{6hc@h9Q|)Myx@fo=ExgP?UKoAIyzV%1iFpAu?b
zssim^41B}tts!3oqp|99_tV0E$u_KQ92WieEyXa%VVG35m4v*O9Aj4QZKrK-bvMD_
zIsCIGQ6D|@<jLAVCWKFG`6^4Sq!R70!tD^SRZcFQauu}q^!tgr@7DU2PpVe-bGGxN
zzy3Mt+Dn5!|7EsD+vQ`{9x;EJSEG&=In#S+2S8Y9H_HLiP!Ro~=FcATszj~Tk1YqW
ze98sjFg=87eVySF=gA0`gy7elf~~GOw5`$Wv9p|*b$|E1AG2NE@Tiu6+gK&JDA1)U
zuv=5GA}ZMGuE3vJ!RK=;i3Kjk`6}q&Rl&Jx1(!Z|e!j7|?RK^K(eF%++H^2_&61vi
z?-To*BiK);-LMla13P=JvBX!O&V4`aZcU6wLF)`76}>}G#Uvc{GwYG&Bi^u<PJ|f9
zaM`n*Ej@d`Mk>cqNXg)GTmZHD+uc}VKIqI#S`TZ|<?5K7L}#jFXGm{ds7dI@x9B+R
zq$gi5IEn@8{2g0ZOY~&gMoT_$^~#<5zjk`R4YfJnuWUc%EWY~N#K78da(x|*T%RY8
zNVXuAEuzYA(=2U3B9d$D09Jc+{dF|(g+BSj;Ae3pq|q?@DCCxq20MKPnrr;#v@(~q
z-?ZyntippCW30M|q@iH4fK;ujcfq}V?){U_3*7$p@bU2JU&#K3`z^kdA=xl;|Mavr
zM69alg;hg^c*7*+D^Q#2iY;?Oe>2Dq{I3^;>WRjxeQJSN_v-H*sL?uUZD@K7jpZDC
H-y=^u@_y3z

literal 0
HcmV?d00001

diff --git a/phishing-filter.tpl.gz b/phishing-filter.tpl.gz
new file mode 100644
index 0000000000000000000000000000000000000000..688446795e77d135b8a87a1ca2771e881d610261
GIT binary patch
literal 5706
zcmV-Q7PaXgiwFP!000021D#q;uj@E+-OsOhz-%T!q}I2k2C@k<K>}nEAju}1fM1em
zQKC#zlI35YL&^5NmVG;e+<yJu6^kqui^Zx_MfUcerE<djo3!pvfByBK(kb!#uYYf)
zZRODX`WJ1T{q>JZvreJMufP23U;hr>{%hpK3I6-9BucU%PJ*cT&nWsmiGPox{|5c9
z*HIc_fBzN#;$;2xmuc(&t2W{?iGi)2$G_-ajHJPAt#hOO{kPv5OipOXbpKmV)Iy91
z>P@)c#=AWCZ;bvo$;4p)KZF0Q_Mu?%A9^y(i>XI3Y~B3$zyAeZ?R4iQ9czVBozcyW
z{Ps{x_)o+UO2Fm!$725>{?niT6!2g1FbnHKDjP}$N69U8dh~=OkK-bXvyd_WnHD+z
z3}Uf<qI*jnRgbSz9>sBf?_4IS*Od+Tzqy!wYnA6kmZnum78%~iV`NoTH4A6C%}T-*
zKOw8P5B!8nE0w7IVz29MYh_GNgR?;|nbB6)4w8h65LB%Xo{v6ZRM*g-?_j5K)W&U8
z$;qHu+mQfjS#8+ujHRIi4Vcn{2rPl(CKJvAI#(eXckwz(jD!~EB<#UW+(?m@L%3+u
z3G-YjQA7@0^kOm^M0vH+iKlEzTuB-0@V;+S@2ye{b7IK)sx+dMXiTJ(?uZ)1DNj#H
zHbS8LQj}^T2I-&NdvepmeGzmG?8N054#Fu}ug_)l{WMF~Z*uPqs|lqc7`Rel0`z}d
z)8L>tZLLJ(Bxll#fy;g*s}QD6)9|(qqGQa>Pf?&h(ik!gawX=l+;J2{1+$ilI0=DA
z4MSf8Y3+o?ANwj1NPagiG8!4ic@`v58pPEph_g6kqama3a-Z6Gt7b-U90+1~D0*yM
z$0ZmOsD^4Z`h)T4Z+U$dQhzb9trF{KG_(OTI&PtLFfY#_a7NaUj+P}!=$oFM3*snF
ztJB>+Uzlvf1ZV6=;^~wZ_$SMwGPIWoULy3JzB-g(@Z;#R$m37LdLoq<E6Iu<#@>76
zIkxo=dsJCo{m{b-0~2Fn>v}w%o-Ugqkb_@kbSi&fvXWNor#MmZgR1bGUr-k3pXqX7
z+dkw!EZ9$=2Ze)ucN}{Jc$XUc3r0~=WuF=CO!lP<OE$Z4IDz_a>T@@D=N3VDFNa5;
zqa2fK1KVO-M=b{z5c}q)@ad#otrPvzU(=Z8qRM!XCwU!YjIf|AL=vP0VRghg<)>2+
zML{pbjWz6?O=BN+(sUsvQqnyf0Zntp*pq9TE2X}DEz9!!B6Vkk6slgjVLIQ&S+9MP
zUE93q5<;mlr&KPqmvhofE}AYqxn=AJSIAI~wGC_41=}xo*MDbNXUs0QtS9qj)=kmn
z<1!;ih<srK)3;^LZv0wn*DuX5XTr@S%l?pIlSn!y`7OEK)=Q!;H<hb-G<nVGxD3hd
zvR*q)DeKyC$g-vw7I|mL7ePbpXLsiY?<q-ko|C+1PMl34Sl_5~HnjF?8Y{#~UC*aP
z(YbTQlq6#^(BgXeQM`>IYx^uuT*gwuJ90VcQ77kYR(7~umib~XbG|gU@v731UD(*I
z&E;qD7$=fm7|cuMEV;G(bZ%B=@=??mkpcw_X|asUa*;{Xp9gxQ#q=|`+Dz@~bV|GI
zG;(v%a&+@DB}BD1!WyYhH>a;B1Mzd6*EO-TCO>m)#mF;z?&*1?@|s*y+QEWxHfT!Z
zlAbS9&a!0~##v=aBCbvp;uAMo2Skl6Ih+eBJXUb&(?Er*(sKR&nU`Ot-40F7)7N-R
z6=5AGcKg?cw%ySZRn|9ShcV+}gps@vLACJl+*_=EBm*Oz2+cI?^obfV^;6#q&b17(
z9H{FcxMh>&Zhe3=YV~c#riGGC+xHeq(&CdJ-DpMm(RWgJuG@oqp%Y>}9F)ELLg2~K
zFDPV)(7Sq<dOG(w=a1R1p{=>4k8fxYF1LZIyL-%LX_TCzn8VpH9%Qjd11b^{BvqP-
zoMe&Ux%WM36fMF`=l0?dO@Tn_gY#j;Lj?d<w(5N@p@dmO`-GD~%Nc^p^`Jpk2Ron%
zw#^9;+OKPfkdWjBq^OQ?ht(iPWtLUx2a;Sgk&m_2;9b7%Ijc=zgy6uJR~ak>&?t0f
z1uC0(t$aX!NZSG_0z|lQ4-3yWs}&?SdKL%HEpcG@@DM=ztV_xygr^_n_pN2E#x&#o
zL@-%99C<n5e0Rjk8^9iM_mAfgMSL7G`b-ct)ZQd#F-WGBf)72wps(fJb!+d+ofXU{
zAj$b4yXM%)4TD)p5KH~2H|=UKq!qyy)XSoZ0Ntr`umjoa5z#mQX~^QivJ0^B5~zQ}
zm0?_!K~@B11zy<^CgL9)#x*irm?}#T2f<UpkC;G_CsXE`9!yIQe1gSOsbpC1hni_)
zgtnvcNuv(w0ACdfyOE3-2p7Y&9rh&2%OgLtjt-j#md|B8M4G^MaB9ty;&c@EK|4i1
zQ2;Hfs5(%2NNPm+TV7O2c2up0CFEv=2hB{pQ(dFKP&C&p*v%NqE@PN9BAO6z0{Tw&
zpwGh>ZRBlR*p_1BIKOHDJtyDQGY%=}wH)9y1vMJeKc|}r0C>*ZS1aSw+;-yf+9-%!
z;m=@}7~F$GpE?zktmUaZJ$<<l!QJ%*EwcX5N0z%_Al*S(;N9X6B%fyz^+HrbdRU_v
zwCVL^18rC<Ii_0R$-+kY6h7=XPay0_7%T{2j!j4q4I*5<Q=CmNqSCszCE(J*{fH|j
z(x!RB&Kemh6$&v63gsHuQbO<JbLVO<>?M0;0*_vw<s!cN*mK=2LO=0cEjm3ZB!aV`
zP!|bn_&lt-g@f)lC;jNBbdU3%;w&FrNG;6JXg}xnB}EgK*=n*fHEq2}F`bQ0vvM-!
zn`zc?Bm)rc0Hp4h^(wqK7+Vv0gRg^cm?ty!-+XM1^M$cI=-~((pY9_;d{sWW^iFH_
z1kh-31}E1F<Og9(fLTdD5czg2yc&W$ON&$KgDxdpo0ml!-B>fdrIod94Qa_?B~xeH
zslWP36!$F+4&)?<`MZHNf_PEqr^9cA-{jpRim=g~aK459=W?3%+^*A6hDIW<AK=*K
z;InY5b$8E88m-{9jOKyS3&JqGa=#TrUe(sX?gZ@GA06+b4(yGd#yAe<S&lGy7c|l+
z>wP_yz6PYg=WCZ5GmU_yFlB^`2aA>r(!ygs&uc3<fot<xhiQlR&#oois3&vW9A6&O
z!KTch*Jkil06(<zQvOk2`0F*;LS9g3ISu<7CN4~rCHaSOBSS!v99|qD+|&?_0x$ww
zd1w{#IJ*>6Ve2MOYZ4L!8d<N{%jY76n#icgw?*OvAwI{i*3pVvi$%f{hIyVuQJGie
zn=}pMExiu)!ST0e)A9$RY`e&pMh|GW?fQ#;cEOJN>^F@+l{4<tB#HijdP?%2s7m8F
zpIl*i&6>HTM`0bQ)#`2`C3Jml@JM`babyft;E-}Q=Bp&O)m**zvl^jiPvMgytGoo>
zaeR<x8jEL`X;%bw)-_8ViYbJ3?~S7#+tngS>qpFQZxdPPSpl+c=T!0}yi%a27H2BN
zaqqUF5_{7S<qL$j*Fu*ZY8`OlA(vSL`t;6QJ6sRzV64pEapy~`B-d}v2AM?oVARs*
z4!+SGTYjWn?Kcw6IXntL#3RUk$!47|^7Z$UqdcM`IpB~$3!;{8^iFq!P%tqg;QW0>
z(Yvu{ZXxxA3;>zV>-I}KY{zhsT$JUb^-NYS#8{S5@v6zQAn^ZugzqzpRM61T5uJqt
zZnMsK<c421$F$)MvgH+L4HkSBswZzlao`5A23Ma%JR7~;wjH<pSgtu+Kz7%OV>#)J
zh(6gKP`FJ_2k|EW8>`#l9v3@cB@9&rUhl1>^qIIb>bUBkyWff7<||!qLAXOeGbD-P
z=v9nPOw4Gh)O3}AUQ>{q;v-n?Ca7^cyTK$s#u-H%tV0iS)MvE54p(s1*r|XH4n7Py
zlkH`|0VPI5rzGsxP;O^Q3FOdb%L(?{90EY^uT8)Re>2$8EG_I)-a(_;N6nZ=1N2XT
zI};Lt@+iL&tCm+Sk$eO41$hxy#~z5N6u5Jo0TukQ)e$f>V$}%Oqno|UETDdl1nSnq
z^A4|GROuo>IPm6jhQqJ{oKJQtvm+$ziB}a40@y;KgFQsx9^iwnv`5-M+`rqYOybvF
z^IN>@s63_!APvH=@Hk+ASKKn3!|g*)ZWEmB0h07^uYw9VGK_;&#5jJ3m5712^?5uN
zetV=-4Ewc%c&`+Zp5mfP<19H9-+RGBlIu|#wD-R3A~iGwhx*Cf&`I>h(#<B13KZ+c
z!gd}Rxg!-IqZaZk1@~}6k%a+%kMl8}_EM3d-LDvG{4ZznEPw(|YAT&=+(E~hjX=Mz
z%K?5MHG!3jmdi3L%eT<o!>awwAk+<29hE%MPKNCmj=~U$B;qN=8hDj#HwQ)LE9X`E
zsbJl&k9#uYTGMt*<eLXFufd>^f@e9Bez%SSI0o_bKCh3UwUXBWI2Hi`TYbFuz~@aE
zASXc|wfn02RC^!95<IihAP$l=NV3oU;6rz-_8h6cc9N@gx7h(H$*Y|WwOhC2mLGIB
z3=}EgfUHW`p#hSAhI!2xat3cbA*(l^qv2C5V@H3k{goo};R#t;FFq0dePi@2GU^sN
zr)h5F)gpA)hqu9Pg&S>%uVLNqX!I6;PkC|}uxHj=VWjtqg1df9@kWY&CM7?T@*gRu
zA1TiZV5|WUAxYn=L|FTWE1-w^u%mz$HrV0EUhFs=f-&4T-gjZ@5zSs&?Wfj;d}=*k
zKDDalQ>!)~Th~vmm-$ocEIzinPp!-Jsr5>~wE}!?h|gW0_w;+kEsn~-H36${w?K}s
zerEr8D-inT{roWDG1^zVJ0l#fDUyN1R*qyHkx_cj>f^m7TLiSDc7H>Ub_>ZP>q!%m
zVPzAQ&uf2QF^S@Uu=*hSUP*y(BeOtE{BrZ7ncAtYx7cp&7P*mZzaI8+qCu3EX;BMG
z<C<kf%}7Q{mL$2TPdp)M8Jgrd8M?=5OrtD{;g?A!va%u>i;D=20y!VVJ9IzsQ<;>U
z5LRS0OG%klSwymkmo$p`k$VzTAxM_+47}?|lqt>Aw4fDXX%$7}*uC_3mK9H^$TM2=
z@)X5!niNR^=uA)Pp?extMHJ<T%tT~K8kY%UysV1Czq{b&k$YB<ye^A0E72Vekz%Tt
z$4L<-k$;nM>`r-{7IDF&l0m1etg4KNf<!sx@b1~6dmh)A8h9m1(=10~TGcEjNKr*0
zc!ezRwR@45tgKInSWvXcB1~44tl(K8PP9yqvKM7ScuI?$S6P;xpuxC0WjP@tWjRJ2
zx}TEdltfe%r#R2zDj_j4K$@@``7%#|UJl)Plou2#E?^5~?zbV&(;|s#Q6%hbo64M(
zgk@lxi!A0R8r6g+*w_;xMO7cUm#4I51xW>`RTks7_*Can6~{;*NFE<;hLkZ(k<z+M
z%dDU!DXXM{*g2)Jx8k@>gwTwN1c>THGr^Lo$m0{q^Ao4o+9Wx2rz9s)R<NRi{t}Fd
zGMoUM5=x-gEPCr+<fkGd8PcvyK<^Z&1*Q{K*jOQs-C16-IulhMQ2@Lut9V_OMJ$Sl
zrbSutLw6C2j7Kzs#c~)dAOo!dVPJD*Ro3(<yU5EthqxT-z~O{?qO#5t0&NoLDL!<s
z>j?P^4pEw9S(1^82v(-pB~fM>$zN>-eindB0j(PZdpjckWfGq4h;%Ll0sp#ZClA+j
zq1N%5KX0Tiqh9<q8bHk25<dG%w$FKA1EL}4zyX#TDPQBh&zT{FdpwaD^Z?v1fSK44
z5gGxwxKM2mFKA5NT$@M0Fp?nY@&(!F)SB>~Ae{jKGRUYs9K63M+sPobS}U%!@HN*1
zZboK!YdHbp=}1o{G9cjRV-Pp?e7!wkG7|hrPOEE<H7PUsxu%K#4}O&LSy1~C=9`Hd
z60lZJy!GJeWxYPyA?LKo6YE%{PF?r)bw*^m-&R^=8iuq;rcULdj9~qvr-2JIY97|s
z`NH<MS3}lgmw^yXC_SP?&{kp`K>4)QH7wE|CIVsr&V3Oh)I+dej@<Xo@_KG4n`!a9
z#eMP;BrHTC>K0-Ds|IBSGj!PAwLzWL+aLgI5!@5!KJeErzG7S}pym7Wgz>l4iRsd>
zQCrh^wWqHp=N}R3y+FIST%Ax`jqQ59zDDfrU5fS>YNt3piqw*2dxw*KdbD(>B8rti
zQ;R6i{(xE(`43dP4$Q;QeSsdmPQ(3j&0Fer(efs)03!882?Z>Me`feU+d&<l?{aOc
zX)9fl<p(Qj^$3@-OEf%MT&JHUoX1<J$Gfd}&HdEjWtp<SZs^cId-K<a&fac^-8r}R
ze70qB<ljl90-s-hwXD8gTYlcE9_u?JS+aIclkx}?t!CFyZB<(6)m&h+`|ogHt#-`c
zRQPI}O@U|wL97e>t?pJJSL6oF@Z<#3hU(PQ@@(DU&)bA>cpWfHmA{qZt<wWiMkE_U
z97XZlNarh?Mt?nFvQsC;P}i6-<XT=P5;VkL*<v@tdEdVMDd~2?q+2Th&o^`p*xLF3
zcY7<VV=2ag=OseM|6(eRS{2eY&;zvEZyI!rFg*;|&XBNRe~58sA<p0r87=>6!m(ui
z{VL{hNYB_O*!rs}Jc#4<WiVQBytitoeIIZWst=Hziih(=<2J<K>#8iYP0)V3_yZLR
zCfnPT)2D}mUmddO<6FaT9e}KluNl9nMfLIR3j&6VA0~lyWU#a7Xd=j)kfRv=yfAQ`
z>q7ixyXW<b)16>LDEr69AOoKl90IV@ixCTdMkzP?8#pDtG-4*}?(Y<C0-?n|gOZzO
zNzUK0dN-fxMXqz$OlDX1!dhgGi|pZy#l7Bt_?!ekRLv&kyz}!}wpL^~n87r*!Uy)I
z{1|3I-r_z2u{K+ALlR~E&1>~@f5ii(WP?opV;6|=)aztNyO#o+?$%A+_&DiL!sgM)
z^?6bCN}$GmCh*pMCNx5PCbZa!j|4gE&xG^&`kBxh@&jSMeI`to<}(49;4@*N^Jl_(
zc^Sd|mOoX$eY@}9_xqe}==XH~UU;8wK#KhQ+^`w3<^OtpJvY7SA2Q5cH}j6OzCU=t
zS;gTNc2_HgdtjV3^;RaXq%l*FWzq2=+-znyJXkMrn8$IJ=WnmK7DC|itn*O&G2i{v
z0h>01$8qeHu;V5EdOCoY0yT{nL;I);fEerooct=1hw=_yu>aQZKpJV3mbYWfS-S9g
z!{-;0TQonL*&u*i*<0`Z)fy+J3oeroLy#vGT;LX0Z0>)m_x10CTFE&E)CTJXc1f#n
z)w56%sdDtgkZo$BcP$*d05ogcUl38f<o7*WwjWFG|Mh)uJ??l_l0PUuqJFLU+Mci7
z`Of1iukd~NGd-5Qz5MoSynKHybTFZH8X70WTb=4g8Xz^&Yh+yw3He|fxZwN5`_s1o
wxr%@LMXU^{u*f=`dOWJTU4aHD9gty%!^*;blks*N^?v037e-U+KZY~_0LE+=FaQ7m

literal 0
HcmV?d00001

diff --git a/phishing-filter.txt b/phishing-filter.txt
new file mode 100644
index 000000000..810fb2de5
--- /dev/null
+++ b/phishing-filter.txt
@@ -0,0 +1,475 @@
+! Title: Phishing URL Blocklist
+! Updated: 2024-12-06T00:21:00Z
+! Expires: 1 day (update frequency)
+! Homepage: https://gitlab.com/malware-filter/phishing-filter
+! License: https://gitlab.com/malware-filter/phishing-filter#license
+! Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+1nvest.bigbantbaz.top
+25116414.cc
+365365news.com
+365f09.com
+750115.cc
+823pages.pages.dev
+95564339.awi.za.com
+999fc.vip
+a.yyyy.cf
+aaaa.whilefish.xyz
+accounts-microsoft365.weebly.com
+accounts.0ffice365.support
+aidanochka-tabys.kz
+airbnb-clone-sahinur.vercel.app
+akbarinewv2.morteza638n.workers.dev
+alaindemeuron.wixsite.com
+alexa81o.github.io
+alienv2ray.pages.dev
+allegr0llokalne753724pl.art
+allhrteam.com
+amazon-clone-by-sudip.netlify.app
+ammuvicm.work
+amyr.iran-cyber-net.workers.dev
+antaidossiersuivamendimpayeerf33.zynekcctv.com
+anuragrauniyar.github.io
+appeal-voilation-policy-issues.github.io
+apple-id.cc
+apri.154-203-197-141.cprapid.com
+arvestcreditcard.embarkdigitalonboarding.com
+asdfjeiod.com
+ashleyproberts.wixsite.com
+astounding-trifle-b88a2b.netlify.app
+att-101397.weeblysite.com
+att-102641.weeblysite.com
+att-107756-104508.square.site
+att-108102.weeblysite.com
+att-108651.square.site
+att-mail-101246.weeblysite.com
+att-mail-105533.weeblysite.com
+att-mail-109459.weeblysite.com
+att-servicce-mail.weebly.com
+att-sign-in-107078.weeblysite.com
+att-yahoo-mail-105061.weeblysite.com
+attcom-101415.weeblysite.com
+attinc-101356.weeblysite.com
+attmailonlineaccountupdate.weebly.com
+attnet-100294.weeblysite.com
+attonlineservicesa.wixstudio.com
+attonlineservicesa.wixstudio.io
+attweadminservices.weebly.com
+auth-sharepoint-asr.vercel.app
+avertisystems.com
+b1b5e94d-525f-4cac-86e2-36acf0ddbd77-00-meezcgcj4upm.kirk.replit.dev
+b35ccc.com
+b35lll.com
+b35www.com
+bafkreielfwknujzpvoym24xh56k2abbrr73iwbmiv2midegk37twpmnt6i.ipfs.flk-ipfs.xyz
+bafkreif4cswz4mavqvog6k5pwvilee5wcncozwv4zdxfotmwgnv4etva44.ipfs.flk-ipfs.xyz
+bafkreig2ibp25z2zzyq2lqzl5lvpr5fdbpwn2zqyxkobbckhpn44g6nwi4.ipfs.dweb.link
+bafybeia4jv25mctejr6ecmglj4nhsxrgseeybtmdu2lbvkt6u22p2nb6xq.ipfs.flk-ipfs.xyz
+bafybeiachm452t4c3adkaq7opo2j4vlsnzqwvqrqv5wgzpxl3pcqcpkygq.ipfs.dweb.link
+bafybeicdaibqcinsl5c2zhd7jgycr5pefqe3bann36wpwwqi2gmjnbzb6u.ipfs.dweb.link
+bafybeifruh7773k47pdrqoiptvwu2alhzacgio7ztox7r4525o5ffasvoa.ipfs.dweb.link
+bafybeihepd4sjmbjpbix2q3bkemsdiob3aiw3jqu5c4wnnpvl422exte6e.ipfs.dweb.link
+bbf-alpha.vercel.app
+bet365t3.com
+bet938y.com
+bet958c.com
+bhngfd3.pages.dev
+blackdasblacks.shop
+blsckdagsever.pages.dev
+bridge-9wdpjmsoa.pancake.run
+brubreumummeddoi-4514.vercel.app
+bscusdty.top
+bsozvycr.icu
+bt-102368.weeblysite.com
+bt-106861.weeblysite.com
+btjfh.weebly.com
+bussinessaccounthelppage.click
+bwfujmww.icu
+bx.sfdsb.icu
+c.cting365k.cc
+c302701d-36cd-41e3-be2a-2932e5a40ed5-00-300werujhqt2b.worf.replit.dev
+can-post.cyou
+celery.sa.com
+cen4-six.vercel.app
+cf-worker-pages-proxy.1352562939.workers.dev
+cf.13084493.workers.dev
+cf.iwoai.cc
+cfcf-8.pages.dev
+cfr-reed-taxi-wayne.trycloudflare.com
+chain-trt.online
+chainsolapprove.pages.dev
+chat-wa.xyz
+check282.tempisite.com
+chore.pink
+ciftcininbankasiziraatbankasi.com
+claudiorojas.cl
+clivenicoll44.wixsite.com
+cloudflare-workers-pages-vless-a2j.pages.dev
+codt.digitasianetwork.workers.dev
+coinbase-com-18690.subttrepimop1005.workers.dev
+coinbasewallet-verification.198-46-89-184.cprapid.com
+company0rder943.weebly.com
+completar-la-verificacion.vercel.app
+conductibili.fun
+correosprepago.bnext.es
+crenadenuddoi-2258.vercel.app
+cryptorectification.com
+currently5267.weebly.com
+currently70.weebly.com
+currentlyatt909.weebly.com
+d.afirkz56924.workers.dev
+dio.azrealonce.workers.dev
+ditgong.com
+doc-online-1881.on.fleek.co
+docsignauthorizationrequest.vercel.app
+docusign.com.bestfinancebroker.com
+duang-5dh.pages.dev
+duvhkeq.pages.dev
+easyaccesscommagebn.com
+ebay8787.shop
+ee-account-home.web.app
+ee-service-help.web.app
+ee-service-portal.web.app
+eln3.vercel.app
+enormous-orchid-howler.glitch.me
+espaceparticulier.life
+ets3qe9ooms8t6i8.pages.dev
+excelorgo.com
+falabellacom.dominiquepg.com
+fdesq4.pages.dev
+fdsfjiwe.com
+fdsjfkweow.com
+fekoulamevebouna.freewebhostmost.com
+felomane390.wixsite.com
+ferngos.de
+fieg.84yr483rhfwieujro348ur84.workers.dev
+figinstenatecom.pages.dev
+finansfaizsizbasvurum.online
+forested-mirage-samba.glitch.me
+formtools.com
+fortradesetup.hamidamnaie.workers.dev
+free-5436781.webadorsite.com
+frogsrus.wixsite.com
+fshraha.pages.dev
+fukshumx.world
+gazruinv.web.app
+geaoolsv.pink
+geminiwallete.godaddysites.com
+ghjhyu.wixsite.com
+gimennlouin.gitbook.io
+goldenrod-rowan-submarine.glitch.me
+gorgeoushome67.wixsite.com
+group11-vvip-hot-girls-combi.viplch.online
+gruppeflorian.com
+hanisfir.shop
+hedayatfreedom.hedayatkhakpour.workers.dev
+hello-world-morning.freekite.workers.dev
+hello-world-muddy-cloud-f45b.mfoster0425.workers.dev
+helpcaseidrecoverfeedbackbusines.d14q6u6sfg53fa.amplifyapp.com
+heluapla.shop
+hemanlau1.pages.dev
+hezhouruan.552008598.workers.dev
+hgcdhbxnf.weebly.com
+hjrhd.top
+hk04-123.pages.dev
+hkmqo.top
+home-100317.weeblysite.com
+home-102207.weeblysite.com
+home-107257.weeblysite.com
+homelogin7t6sdfcgvhb.weebly.com
+htaflytz.baby
+htaflytz.black
+httap.l-teiegram.com
+httpsbellsouthnet-102649sitecom.weeblysite.com
+hup6r.com
+hy.fuckgwf.eu.org
+hypophysecto.fun
+hzuayvvl.red
+id2.xbenihime.us.kg
+ikergalindez.github.io
+info-delivery-bg.com
+info-trackingcs.cc
+info-trackingiax.cc
+informed.deliveryhbo.top
+informed.deliverytcw.top
+informed.deliveryxs.top
+infringement-service.com
+instagram-clone-in.vercel.app
+interbenefitprestaciones.referidosweb.click
+iouwerty.weebly.com
+isnworldwide88.com
+jaydeep8806.github.io
+jeanandpeterwilkin.wixsite.com
+jetconstructionsgroup.com.au
+joeandvelma.wixsite.com
+journey-x-pro.com
+jsdfchkdsds.weebly.com
+jshattkee.weebly.com
+juliusmasih27.github.io
+jung-sohn.de
+katiebllair.wixstudio.com
+katiebllair.wixstudio.io
+kdlmo.top
+kenzmail0.wixsite.com
+ketura2010.github.io
+keucroilluxibrou-2718.vercel.app
+kuconlogin-ui.godaddysites.com
+latam-onipojes.vercel.app
+layanan-bntuan-resmi-dna.prbu2.my.id
+ledger-com-updatefirmware.aparecidovisentin.com.br
+levappoprauqueu-4688.vercel.app
+leyoixoimmecou-5619.vercel.app
+linkbokepviralindo009.vipp.blog
+liveairdclazmersn.pages.dev
+lo6-cas-projects-64947843.vercel.app
+maatamicklogginns.gitbook.io
+madebybmr.in
+madhu821.github.io
+mailupdate87.weebly.com
+maine619.github.io
+mainnetverify.pages.dev
+mazulyta.pages.dev
+megrebeikenneu-2106.vercel.app
+mendhfjpl.weebly.com
+metacareer.com-case37169314276.com
+metagalaxy.pages.dev
+metamacksiologus.godaddysites.com
+metemrsblogin.gitbook.io
+meyetamaskiwalt.gitbook.io
+mianfeijiedian.lawcpacpv.workers.dev
+milanharvestfestival.com
+mirobitsgt.github.io
+mocp90.pages.dev
+mostafa2.mehdi84888.workers.dev
+movie-firebase.vercel.app
+mubki.hp.peraichi.com
+my-site-104564-105934.weeblysite.com
+myaccountsignup.net
+navy-nose-4544.typedream.app
+net-flix-front-end.netlify.app
+netzero-webmail-105996.weeblysite.com
+new-currently-1-23-24.weeblysite.com
+newattupdatemailboxkidlyverifynow.weebly.com
+nfty-proj5.vercel.app
+nnbsscnaceesngsetr.com
+occinamete.cfd
+odovsccs.weebly.com
+officalourtime.weebly.com
+office36503.com
+ohscorgza.github.io
+okm.znt.temporary.site
+oliver752.github.io
+online-e-commerce10.com
+online-e-commerce11.com
+online-e-commerce12.com
+online-e-commerce5.com
+online-e-commerce7.com
+online-e-commerce9.com
+orange234.wixsite.com
+orgmail.weebly.com
+ourtime.datings-information.workers.dev
+p.updateinfocl.top
+p.updateinfocs.top
+p.updateinfoga.top
+p.updateinfojq.top
+p.updateinfolw.top
+p.updateinfoor.top
+p.updateinfooy.top
+p.updateinfoqv.top
+p.updateinfove.top
+p.updateinfovt.top
+p.updateinfowu.top
+p.updateinfoxb.top
+p.usertracktxz.top
+pages-108-tg-cfzz-ip.pages.dev
+pages.tempisite.com
+pageverifycenter.com
+patjimmy323.wixsite.com
+paypalloginin-usa.blogspot.com
+paypalloginin-usa.blogspot.hr
+pcmag.anycubic.vip
+port01-acf.pages.dev
+portal.chiaveggies.com
+pruhuffopraussou-5681.vercel.app
+pub-04836febb1fc46fca4a8c225ef7d2a38.r2.dev
+pub-131b0401afaa4e489a4c1601b0e45bcf.r2.dev
+pub-17d7828daac64fc3a83940a40d8b01d8.r2.dev
+pub-21beea42d44e4f0e83b5336b9ac3900a.r2.dev
+pub-2801359d2be54bfd8701132626efeb73.r2.dev
+pub-3096005ebeae423182ccd89665564d8a.r2.dev
+pub-46a5f86348ae4aceb3591d126020999f.r2.dev
+pub-4bd13616d08c483c8994ae6a05bd5994.r2.dev
+pub-51f896deb233450089fc1a520e6ed957.r2.dev
+pub-658c8f71040e4e40bd168c6d46e7b83a.r2.dev
+pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+pub-722720be67154192a1102b2cf085d306.r2.dev
+pub-7d056bfeb6b04852801553620fe62c0a.r2.dev
+pub-85c8ac492a5e41d7b0fad25337aa69f6.r2.dev
+pub-873fc6a3edb941c6a17f50911dfca518.r2.dev
+pub-a81aa4bbf83846b8a892985d5bbc3a6f.r2.dev
+pub-aab4be29317b4ec296517a557db12622.r2.dev
+pub-ba5a046c69974217b0431bca4ba43740.r2.dev
+pub-ba65764a4dee4e76bb488ceb0920eee0.r2.dev
+pub-c59cf4e950b142949df8861e60b3689d.r2.dev
+pub-e1e4d0b4665d4d8996bf04516d898fb2.r2.dev
+pub-e5855431d98545b38408f52af50ab8a1.r2.dev
+pub-ff0271d87324424a9aec83337e844a54.r2.dev
+puertaselectricasprincipal.netlify.app
+qaffixledger.com
+qbstdfda.com
+qpownthenewyhadvanceweb.weebly.com
+raj-tiwarii.github.io
+restrict-policy-nonadherence.vercel.app
+reviewboss.github.io
+rfgxg.top
+riaayaoman.com
+roadmap.binarydesignhub.com
+robinhooldloegins.gitbook.io
+rouzhda03.kambizmedia.workers.dev
+rsjxzl.com
+rtyuiuytgf.weebly.com
+rubinhuud____llginnh.godaddysites.com
+rudra-choudhary.github.io
+s.team-s22.com
+sadekk.com
+sajsa.icu
+salarahmad786.github.io
+santanderpod.fsthosting.com
+satinnaaoabbs.weebly.com
+satyarthi.uk
+scarce-army-wide.on-fleek.app
+sdfvgbcvb668.weebly.com
+sea.6e2efhxz.eu.org
+secrbnsuppotyu9.weebly.com
+secure-ledger-m-auth.webflow.io
+server.2rk3.com
+server.pxs7.com
+setshinobi.vip
+sextelegramxxx.pages.dev
+shareorder711.weebly.com
+shaw-101342.weeblysite.com
+shaw-103098.weeblysite.com
+shaw-106054.weeblysite.com
+shaw-106665.weeblysite.com
+shawsyncmailservercommunicationworkspace.weebly.com
+sherman-relate-rev-baskets.trycloudflare.com
+shobhit245.github.io
+shopifysite.cn
+shoptkoo.com
+sign-in-att-108611.weebly.com
+sign-in-att-108611.weeblysite.com
+simxtrackredirecttszz.pages.dev
+sjhsjjs82.weebly.com
+skill-meta.com
+sky-107842.weeblysite.com
+smithjamessv328.wixsite.com
+socx.ly
+sparq.eu
+spicyhotcoolsoup.s3.us-east-005.backblazeb2.com
+spotifyl.vip
+ssfgsfg.wixsite.com
+sss.k999955.workers.dev
+stonemartin1001.wixsite.com
+stringroll.com
+sukienffvip.doiqua-garena.io.vn
+supportsecurity981.tempisite.com
+talktalkserver897.weebly.com
+tareq088.github.io
+tbsl.by-on28.my
+tcaconnect.ac-page.com
+tejlksdoisd.com
+telegcm.me
+telegramjessica.pages.dev
+telegrampx.com
+telegramsexgroups.pages.dev
+telezelm-ivee.icu
+telgramsignal4.sg-host.com
+telstra-102379.weeblysite.com
+telstra-104033.weeblysite.com
+telstra-104394.square.site
+telstra-106968.weeblysite.com
+test1.workersdev40050.workers.dev
+tg-logrom.com
+tktk.tktsk.shop
+tokecn.im
+tokeni-1601.vercel.app
+towrewds.com
+tpwalllet.com
+trustwallet-zendesk.com
+tuviaje10.com
+tvjbqiyv.guru
+twcht.twimobie.cc
+twimobie.cc
+uedy.pages.dev
+ultsyncingsolana.pages.dev
+upheldlog8.godaddysites.com
+upholdloginorofficialsigin9.godaddysites.com
+upholld-lligon.godaddysites.com
+usol.shop
+usps.com-cgkzkukp.vip
+usps.com-trackaxd.top
+usps.com-trackbrs.top
+usps.com-trackdht.top
+usps.com-trackgee.top
+usps.com-trackhsk.top
+usps.com-trackivo.top
+usps.com-trackjjx.top
+usps.com-trackmra.top
+usps.com-trackmvz.top
+usps.com-trackuqg.top
+usps.com-trackvgb.top
+usps.com-trackwbv.top
+usps.com-trackyqb.top
+uspsdana.com
+uspsdant.com
+uspsservicetrack.blogspot.co.id
+uzomadj.shop
+vedi.154-203-197-141.cprapid.com
+vgmrm.top
+vkkvdkdcmm.weebly.com
+vl1.spaceysen.cn
+vobroffexagru-4404.vercel.app
+vrvtn.top
+w1.5114559.workers.dev
+waassistance.com
+wallet-diagnostic.com
+walletsecured.pages.dev
+web-lupqrbm0k-uniswap.vercel.app
+web.tlgrm.app
+webmailserv3038z.wixsite.com
+wk.xzte.eu.org
+wodjrvrisixc.wixsite.com
+worker-dark-queen-529e.servers5555599.workers.dev
+worker-hidden-frost-ba39.yoveli7450.workers.dev
+worker-site.aopages.workers.dev
+wsa.osmqone.org.cn
+wwwwwwsasasasasmmmsszz.vercel.app
+x.tovip.eu.org
+xhjxkj.cn
+xixiajiaju.com
+yahoomailquthorization.weebly.com
+yungtee3.wixsite.com
+zagbasamothega.dnsget.org
+ziraat-kampanyasi-besbintl.xyz
+zxl.cbbnbbc.nyc.mn
+zzpov.top
+||datagivers.com/3961f442eqd80b4e3c28f75c4ba682dd68f9.html$all
+||flow.page/uebj3h3j$all
+||gateway.ipfs.io/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq$all
+||hm.ru/medoeu$all
+||ipfs.io/ipfs/bafkreialvbunrzi62kehrnrzdryalljn3j7tzr35sr5ohz25rnl2kvlsnq$all
+||rebrand.ly/46wjpyr$all
+||rebrand.ly/910428$all
+||rebrand.ly/cdmd94193ab$all
+||rebrand.ly/n3yi7p6$all
+||rebrand.ly/vre1p3j$all
+||s.id/p8w69$all
+||safebank.onl/107519/c90488/4a1f04e6-1517-4254-abda-f0aee8fe0ab9$all
+||scearmcommnymnlty.com/cert/loks/mir$all
+||scearmcommnymnlty.com/cuce/rit/pil$all
+||scearmcommnymnlty.com/qinmot/truklop/poli$all
+||scearmcommnymnlty.com/trawbe/nunty/loki$all
+||scearmcommnymnlty.com/xul/lex/ponu$all
+||shoutout.wix.com/so/e1p6lravu/$all
+||sites.google.com/view/ghghdgfdgfc/home/$all
+||urlz.fr/tlly$all
+||workflowy.com/s/att-support/6ca3iebztzztx2gi$all
diff --git a/phishing-filter.txt.br b/phishing-filter.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..7d3cb7d1f51d51ed9bc7c789691d02f79efbfbe2
GIT binary patch
literal 5815
zcmV;o7D(yg@RK2;m=Ay=WSIN^HT(Z>UX#&%9WopxiErFJk8uMVr9`j@TDtz<tEx^d
zQ=R&-rVmT0)FwFT%aB#?{STc#h?Gw<1&}-dlyk>=2T;m|<$@3QN;!>En%ya-A)W%d
z_fgTB^xF-lwh7*xF{fpSjiFU<Y7`MElV5Xrjp2-TuR;+&%PjHRuXBrQ^!u;BUqf9(
zT7F%y1m&YRhT2}g{rZ=qV$J>jYfcRZ85tSWKM%w2Z2Wx~{`2+QufO{qp<w;}*Z9l9
z{p&AUNc{3AAZAVW{>#^Izk2I)z=FU3T3b7&plt~)f?-|R4)KD5gu2AfK@3gneEs%I
zNloes)IT1Vj@NI$<Up&x|Kb1^h0pGP^J@uh?e*!Q*~|F!+)7>^_~A;5{w*}%_Rzh?
zbYgAPgvCH=1|Hh-@nUiul^6xJ_QjRtN{$883Q4*j=3gz79L7<W(=_A!h*$d4zBoKz
zvy@73K2x{?ePE;gpXb?IdWPc#^uF(#TK@t7phy3J$&#br`+3Q!LX-n2f(BekdLf#4
z*CiLS(!u*+@rjOq`USzkC9S?j8;}O(u5^1|5Q<5L*q9TN3TsHc&=ZTrNZ~kMuo);J
z;dL^)=hE;2#dV@rE*q9E=@8+9Dn2{*k`ukcSLO&o6%oIn$4ps&>><A(223X_a5JU-
z53k*;GQ^lShzTdjCnk<afpR0pwagJxYj%exCz?ylO=@@HxbRUj27f==_r0IN?qvQg
zUa;SVh60J$+h8FH8~wwV8U&YX4OnUqC+wJ9*blf7i|3p^cf!ruc9IY*^#V(Qp27{K
zYYmPAA(AtPsNGa@xT7eUj4p*!5lL|3ftSBJ5IRah*ucp+Ph=D$wa3}bktSJ@LZX#G
z<EZp>9Mw&W#B!SEAh)<d_v-u`L*BeOb&Yr*B^xZQj!dey+|$R;Kw1etA~9M6Gpwv^
zjf}&{=SjjGRbcKTU`mYZohGTsI0!jts@E9(pe4rWmkD_4TPrzkWb6<kEs{(qTI7*R
z$@#<1LeA~SY=~OlUYtnqW(i9oA$4l0!=$S~W86;0d<VsoXKmh}`y0h53tSeGoiCUD
zgF9js=(Hx<){Ru2kbV6PY!=m!Do9UttRM)h*t!e35J;=p+J%N#z82dzds~Sik`E@*
z3xTRTGAEW6EDuqTpPd<v#925Zne;?hutY0lge$OqaL%}CBEvv-#K$i7E&8$3EtKsK
z`i+G)WeW_K*4jFAT*erG1$W|<qXNGb3>f{jrT%`7Gv7NC-&LxOd3+yBnRvL&9!|Cg
zhs(yNb{%_aD$sEFN`2hO187`Y<A~4;Tdzm#aDL9bs7)T%86u**Y_j>ePVu;}&uzb!
zbP8-I2yyjEEG(FV$%j49{bBL*L>bScNbk&XCH8#o@0N|R+j=A+7L~4WRqQS_G={W2
zU3i-j0f_g><Zc_ji$c3E@h#F?zh$Y2w`sfUEShs`sxx-5WYqUV9Da^O?79odny?()
z2A?S(nZ3msYkEG{`6-`MUdwZQBR}lN9^1Wqu16%+K`<X1QjOBGXLZwixowdL`VVpg
zDRFfj*Yyc(+26@LM)i*oi7$PfripK2I$ZhWaJ2L44C4BLT|%ComcLUGlF2N+hk9nX
z`cGc*aH76<^FB=YvJW>K?$w2CIE0J8KV4dJrF5K8FoxfT3a@nIiT^1`JU3{H<Bf~q
z^RUfa-@hlM7TUG0Y4MJmKJ?6V2lZ!Ose5U>OswfsEdPlRLirQF1h*iWFL%86nt>jW
zENn<iPcKutDcJYE@910(M95JPX|J|d*KRLn8>Z&xyltVu_LouUt#YL?b3RIIwq;Cv
z`&Atnrq`-U)T*rTV!=SXLY?RGm$`g@@7L9&{Y$HN)g<^?YFkJPS8_9nLt^>BreSo1
zE9;0DkrRUq2%9-W31UDewS+$(h6_u7ub;+@MW4#Qatj7{yR}h!=l-%7vD~yeS{@dY
zAT@m1(_uYv3KYWdpH7aFzc(GZWKyx2&n`nVt*0X&v=B4TONT2%=*ru@^+XTffm&Zk
zL3E_SH;@bNgtV3W@OvzpJfyFDg^)-qjcR6+xMa=oEMDh2u~OR#ja)E)F?ukVW;8~9
zJPee@uDKwM7kyqf_+~>2DQv2Q8lF%9S_0WXi4n~UN`6D7Hhu;TC#GO?j6%2%4!SAh
z)Oyd(K&OTPdy|^Xu2FxbvjzxETv*34WqL(oD*xG9%>%97v{vv4dp^ctklV1!X`HK(
zu<9q$an?jAqGvK{;Yrb$$YUrD%PhF~LiURyHYg-Qm1kQ)O1kCbx@{*Bo29;|*Qr+~
zay=7HW69KnV~r`+mo1pUVe0enL5xX#47S`y%LQ#C9O>Y_;01N#Et#4Klr!f)4G(po
zwRxD|gF6a7l<kpfW`cWQ*9~|IdXDq5c-z^Q>_;YDwnPNCPDZUqniKUAaiccpgI@&3
z-^?XEoxsR%uG+e4xNLh_sFTqUm&VWJNPE%J(g$`(3z2RWn6<lpt{Z+*0R|w!v}W@T
zmqZQE%Fw{ACq3!RPDG-56oO)avIbHTh%O#SqLap(2Z7NX5Z|j};+-)u<+2#U)=4gQ
z4UVk&idg6pW5+JK<LfMWpTgsqTb3RJ78+&$q!+fzKRD;SSKU<524(oQ7;{;iu$YGs
zpGV-9Z~{n~@acGr##+6@`Vre#cvt;9Tv(#4zWsJ#zLFZ?mV1O9Ph7x&0}cI4E;MVd
zZP$lb&^zWG67qSN*A|Z@ExDoN<K+V`RExU^&CBYqfc;%E7rGZMQ@%bdA=QQn8g{`+
zD-8KgtB3H^@EE9PFMZc*n$HCQv^uhf0!!4n<ZghixFkoi<s98cfW%@27A^T1T0iIt
zdvLHP2r>-)wGt_~nzX&j8*sVY55$+e)Y5~XdcLj&Rv_Hkx4QQITluD<doA#k9?~fv
z+JZn?^wg?+!SN!Bs08Vf9XMwr3F&p0^}XJ`Rlg<dm{QC=q<9clWq^A?n6`<jWJgNA
zAd%Y59&$U`a^{j+F!w6qpd*Buw_0*P#*v(7ILMkC0peIysN4iNVQjQ3^Kr?PvIBk0
zCBRg=*$OFCABuHF2RAf+cDcOMBx74)LmWk(18x$_gjp&9?NH{}M%siGHo9|n=>B)?
zj(8yr-F>bN%OIHCu=KD{F}Q-Tn~ZJA3s~$8b))#GuBu-o_dsDk;?}l1(z9!0>~KU_
z`wl5WABS6C@mW~I(jiePvE*Lltf}x=tXs`DdF`5B-(__kl(udIHYWITnRVMgxxgiP
z$G(SwkD)Vt8!g5L>4{0i3xiHgRp;$;u7<Xv20q^Hp#Z2e1-!}~z1G&?ppi5TxD*rx
zku^{~2uG3_(qKx=&9>dS6OrtPD!=iYLg%*S@)Y}WERA35edJ@kE83Qg<B+XShx<Gu
zE$CjsG5R%_!Wwp@z0z%Yg$>IB5i*+c0Y<VR`Al|{blk*fLClbmPj0JwCBBUf@V(EK
z9UZMBzMAoH&m4_rucyBC4zOp0&SgVEslf$XMyWgYG<9$h<l{6_;2KwLQJNE>W2Kln
z08F4sh(GKRa=);&dl>al(>wuiI;M59_J$j6ey!Gn;*|Z3kRUk(eK}W%TL9du-q-+R
zrD_Ps{W&P~*E=I5cVgUO!=l_v!kc`3Uy=%<w(PpO>SBKHcU_^i4KX87kD=EcYFODs
zZBb7Psd-I?rCA%afF?!=1%;S^+`^Dwn~VEE8XKku4RJABmJM4kup7wP@L#%Nw<U)d
z`!|@9J7Lr4gr&D`bDB^~Aw8(>pAezJPI3xIeq-HOi*R%QXo*R!Lm~z19*9dok77Eb
z`%Qy;#oZH1@n#8HgKKI5V7+4s2Nbly<ug=FEx1RG%PZmu$B~Z$eKDt6B9tcjuZ(!-
z@XcZ0(dJI18s{R7LfTB;@Hj)6SI_2QcsIgv(0v7McR%(-2*ue5&yJ-gwPlN05epGd
z@Hg64i4wDzwD5xX4r~b$>=yH~gp{iNf*lb><~DnwAtk(h?V6240wYJ5F}3z=Q#*u&
zy%CF>DPi-$1!&k~ho{H8LGoXSOF@HS!<4WSHV%qvPfTw0?<2O_i46`!4N1`TO(LI0
zHS<xhNfldmfe2p`3~aDR=Yt73=A~D$!G*K5y;P377<YZgy8>P}S7GXw?Gqq*4DW!>
z9D7H&>;d*T?NGrUBBT`pmUjY?R<%&_j<UIy#=~W@J?4RWB`=)S6kv46)delIHgmY|
zDMfrJ7*UB#+-^5ppzA>oED-D(?)gnRj>s-o0`Y8h=HjXS-v3~RC3Rq)y><>ZA}LoS
zLJC0_TH~(Z`OqHNpR|wROLlG55=;(-))Kazf8)r724`(`p4D>+FA^246B!BPgo%O)
zXdo)oS7!2e3ohPLSC#T5GG_Aao*Pq1=4?MDQ>#s25o=m1Hp6Ji)`kSK5SUu;UfJcd
zTKlkik}CpFLCn3F;M|XbnI=APKV`jyv?Z4Z`q!Sfoj$3F_*yQY&j9_nlBrkKBw27G
zyrD$R_R`14A!+wxw`aT^YzE}R?U>G;(Uv(6#&rn2=CbJ9<+dS~+IS@tnuy54xQ!pQ
z4<Ss<Mgk#v-+GO_K;-u)a=co|<<{@WpR<J%Z@opn`bA&EE6P0?yS4ALp^D{4j)Nv`
zA=W<+3CC<F|GDUYz@Ln6V$7!R-t8Us{pO7Kih00&Tw)$uv_vN973jwssz+`?w!4<s
zVRu+4q}z5AESMlz*BM3v)|Zq>+m&_=aN@FrCDeYDzIN}4V60XucMm-d*U=3bgyzbl
zF{8Iac?$xxWlW-<90RUtVfmbh-H?%wW)Q;&9zdYbGYC7XVKf5@X{-+)^5iDXv;(k8
zc*{ZaSqvZsr_C_Bv_FE41`z~v;_0vS18Qz0=gQ1r`8*7;Gi}ugVRp=*6vjI}4dcj}
zVhTN)iEn$)hgl7SM1z2W@li8tot~9463^{)+D9c6NUs$a8c={m!{t1>k*R?V24wMc
zSjLT9jmiz$3eByaX91{Skj6=O3$a-_dOa(LhH)<BFu0%K?Ff<$sL;)Fa-l1!t@hJ6
zhyewP!MIUrtDI0c8O_0ktQk0NlytKYd{Sl}=SfHa<W?$Ij?gE@CN>yU(<sF_GZ@E#
z8D{;UrQ?Izw&Dh<j7Ou)Ahc}qW=P2u8$2pz`y*^Etp+P*1`@^SCNp?&OmaQ}sM)6-
zww}1R3OG75i_t0=CohM29G$ly$1xE$=n+5|<2Bbp84Y@7vzAU8V>zfjGyo$EvYC&Q
z5op=0<T!zplQSbzjJe~+fP_IPtLAwUY@Ey>_-HH$1A<Rt2p_JJlM)~tqQFTRBeb??
zhM5hB=yu1-*?NJq9Ly-#EN16j5H+G23|D$~E_57GxWNdeq!Uihvod}Va#T*w+8gG=
zl3Gf^M>lIJq~Tf&+Disr4q!BlZV$a5*fcslaV7*4Faui6-`0v+2#}{PEDdhPM7{(I
z6%8hG2n8STK71K(Tu{nBrZ(ptcxXqyj1k#{*S*4fKoWD(o?|WWCM{f0LZG7{!;LG!
zHXD9%$_d<x1vRJ6)ro*_YD}&*0n;zvW#zV%0C0oKjpVof3~q;mnvkH}C>{z$VK1Jp
zIITHH7c(l>1cq^&CHH4_FmSrTZo&iP5nnQ;zP}HD=v~^~L%-Xiz2K$iQQW)xzyJHc
z|BI2ApU%q7`j+kr5WD8?Rz}0I1BJ=JPAX#%x>azvZU5@;3dWpZ6(ST^cW{$d@d0At
zmmHQOJL+rGNy?A~R%w3y1dzcPo@uWtv>QrW1MS<ZS|}C?NQx05IZ1OOT50HsO;qR4
z#n{s*8x~1sV+d3sL%)6>g@vu6Ehgb%`e=8bqhxI_NTfKv6E!!e{{T~lRpD3+a$T%!
zJP!I@bA0Q>8hj|4HE;Y?t%m?=c{}Xi@0S#!$sAEx)zdf@LSNxR14I;z9)2WznDrx4
zgA|fVNu%D$@?xYiz`P}TGE2btLfy7Y8FehX^!q^(8j^x1x$iyGtH!JVb<JiCjR`p#
zvTHtqFNu=8l5NX*r)Ucq3gXs26BNQxD?RLAzDX^pxSCd<r|CW4Ykj|~W=W^E5F-)u
zs297naMRPBVD6!<@WN&5$(d%L_P%EOrSX2%1ImYDf7K({d(90!$*Ky*QaSCF;QSad
zXrVGQ8{t7SqY97Qg1_U~89?<*^-C^Bt#kv-PD83n5x+<Pp?!?QFvep|l?8Z8;<Z<O
z3z)n=!$DmRpAKXJYgKm|GCk7^B8C%TK%w2U9(hVYJ;HA?V&>MfNdKq}3VsHy52l$K
zskuo`Ow;{-H4E5H4J>&fu{VJ4xK)=!b$+Rci{16!@)WA`##)2b0mw(^IKJ_01@?+x
zmDjXt@G;M4nuHT^snQ$92w=(T83nBiSq&s@yIETSdw9fYc7&LZ7|=$}t(wmQ#^m^#
zkDATwxrVikUEB7stQZD4bai=KNX$#gdz|vEZM1EzZYplPVC=L_H0=LrDG+{Fpj4N)
ze3htM=6O4;7Kw<JzOZy^OI4oBv5wd6n9?EKRD3+DcD~Ig+$UXn>92O#wb6EkJ)3|E
zSmFPwj!uK3_1Kmgkn3u4gw&C|A8^)wVqP>cGW)US<7P;?2+2l(SS?O7GDldq=tzuV
z$tg@n&9S-kUJvh5VwdgN`gY8^_HSH5;_%h-yX;b?R4KPMsRdDLt(#Ohv()?jmD~%o
zbUsr3vq+tbk-E$|$NdS<T<?+QM2`y^Rgz;YL2d+nXkmZy4({FjFXKdqbWESiUiP;D
z=eC`0b9UdC8S{)IB}>L#F;Nih%w~85#4jwR6Cnn?OZqHlOD`Yh8mSydAtjK*b^+8H
zE>u2hKj~CRxd2PzQl_*=2!Al88^M3gg@(j_e2UqJjr0`i1xF!(+03=Ll-)-rx6AT@
z>u0&{d2RIjG~`p7a%J}}X9+cYZCI=VBcOAIfYJ+yWHZuLnOFH^T60B7EP^=)E!&y3
zc?S4Q?|fnmlUQwN9LzNixyE9c>sO$;?w_2rT$Zj-t{;gCkH)_5mH0Ya1I9Cu9$H1q
zcYS}ick~9|@D1<|@a`L;DdAzN55Pbe2Lri#S{kDMqU3?aK!yGC^Gg??F4YBFZUpC|
zlMT=x4WR~Nu$qus1kUX5^NrLRlZ>%6-Ing@^*l$O5V1e};p!gng8h{;G5#HX_^d`R
z1jCQhgAvFr(|(dx7*Luyr?j7M$gllRAja1p{=hmyD^~t=G;hB0_dz)OMaKm<tV|2}
z=Wq1~893AsPt#L*f?^x4C6&jO8)AGX{+`-XxU5Cy^<lE4$Tnb}`bm0&>rPAm+0kX}
z-v6guVg=9b@J-No{|I%xkGmWk#5@jy>4$H^y4}rUoH>{PgGu}j)1lt;XTkAkyp2>E
z+|QveHG68{5yb>1?$6+7940x=KXx93);|J9KL}K0l;cDMlY)S8K>PrR+T#EwrIbY|
zI}2<}_nu-KZoh#ai>3X<yw#sQl+fSyZt<st_H%^zu(eM}du~6i^eyJ&N4}i!IKHjG
zW$-8U)b8R;#K*?IJ^n=e{v0`tfug$R-g0kK2E%Q<<{umn6$_mG=MiZoIS&tRAlCZ-
zEbFqm#k<AZ9}Bb`V}rfKhx+o<V!XX!jer49iV~|o&}qU^Zudu7-~r9ko~M1;QVUyM
BFEs!F

literal 0
HcmV?d00001

diff --git a/phishing-filter.txt.gz b/phishing-filter.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..7c62aaefdff473c53f6fef0580ae92e2a7906c9e
GIT binary patch
literal 6001
zcmV-%7mny3iwFP!000021Fd>Zv!ptZ-TwZHo)|Ce2t)B*@Rklc!i!lr?3vAM9Qp!O
z2t-K&ii-L1K7zX4&{h2=V#4>`eiu?wDwRrQo=ou%KmJ)dCI0&HzglTqIW#~1<$wRv
zkN>7L>y)(a>mPpn%gBin{I4HLlw?7i1X1zNQS?_5{}o05iuV8U7^M;RuOIObPSzj)
zdD{B_sExQ!VqoikL7)Grdohv*)3nZw_OHvO!K{RaO!t?bsD&62)KWQNF5^p(*E>f4
zlVoDB|B=D}sP>^?@_+PXm={xzV%WO*@&EM)c(v1umvpQZN_9pzPjdOzNci80Bb0zk
zJj}wnkjjRV!BO%IogTlEJdTSj&O*k%(jv$2AQtO6`qw(Dw#RE8#c}TYlu7D!VZ;6Z
zT+Clpo)=k~Rv}qr_$1qas;X)h&T{-B;fkM-)n5cZ;nGSaYQKQT`urk{>1l8_=p{4S
z>e^w_a1ny4b>s8hA&lx8+VHJ*8b@v17m=I{nzbDXu)@`b9r#H@2O2P?2N75T1xzNK
z1$3uEGD4V+5+kv~ISG3(5l>R2<q$5~bi(Y*A&SU>i(X7dqeVWfbYd4qi3cfT9lq2q
zHAqqnb7IJPPzX^<G$v9?cSH^1ny1$!8zF(0TB#QEl78pdlcyeD^3pZ16PIH+2&ZJd
z?h^O?G)vZRBI0c|p)>?TRw_(@o@dzy2eoKxB`A}eNiPO2`;n|dm^w|v=Q@avF*oni
zLp`K1WE$j3%yC)cD2NJXEfsMR5{??ixCYYN35z^+R3ebvn+6$;4C6ctk|+)0>KepZ
z9J0}n(YO2QjJH5$1c$8>!$Z+yJ321Gk3a=fgXnE`>uh;_6H>p1+E$5mG#aahHJo<E
zI+%zb7dRtph(pVgB=oFC=Ylwj)9U)Nu3y8qmIP<ubIbLb7x<IqQ5o9%gyS0e9<SCC
zLqCrzi#&cC&=aY=97$Gu8ue<<bL`Zgo2x9ZJ~dlmU@1&&{Z5C-H_B!R<lq++UCU3y
zSJG<zQ-rAaq!0Y@;%9OGp-~QO({cW3ZJw_l6wco3NbjEZH!-ngU=bx%_JPGdd|#!o
zWHSPX1Ec@_4&G9oTLj^~9KJi8=AK*|*cO{LYB{)o*t6fjvy*nUPV~ETq%qA!mGK}?
z@;b;EVL@4lBuERw>WFj7uh$@of?kLxYuGKD#y;$%=|W7Qq}z@wO>@TB&M(cCQs0lu
zvh0tf?u?K^)k`-_x92$PwNJ7~n-^U|C^hDq%7ylFPI}2j)1_CpjQ!vW8OpJ?VXeAg
zd+^@&#jVbmU7lG_=KHLhqRYo+hEo>#!Um?F%bY#=qt>opnqkg_n@N`anOl=cIwtuu
zc|O;BqV7+Xt9dke&FQ!d$@9KGI!!6-+HuITrWh9a;>H(2L+n`RS;3u2lHKMc@0k-f
zQwY{K>Xr?yeVE1yu~OIbDN%IpTrnldm<+Ud+&>Gpabs<t<%!E!N_a=^S3T<Fmd(lz
z&-*gp&3(?7<~cr8I<h+(yS2IhK`_RNq<03>Q8`PVEx+EHm6?1L^<AV0r$bsS<Fedk
z()721K4~%ifmLm$_IkahU3MM0xobJPd6^QT+9zR+)YqrekE?;;xz6jF*jbZ5uxiD~
zGkfdlZKU#%+*8`YI$`cKC2~n`_bF%DG7RIavLq1?CkpY#iq-*9V@r<KPK6J{F5OK~
zxGF8zpU-*uGT3%#YMvg#9#w>OoY?KJ4Q&f}L6!A1Y#{g_`x?m`5mXBwZ@tA5M=~(d
ziO@^~8YgPR)K7gcIM*`BasZU0fR;^`yLCe_)avJq-3TR{zUb!6)8fs;Z4E{F?$xNf
z)$P$0&<WuaZp6ME6+qSK1rHfQAT+kr)2+w(+@^bkw&s>@FVG8oU<1{4J{+<%O0H4N
z;Sv}RvRI@66$uHFDosRAvPkgUdx$iO7Gb7adv^$0i01XtMKI!nFK`=MHKq_sm^HLJ
z$O1ad;MgBW)v!9)0YR`SJ3z>MtRb9ok{6h{I>7~2qa`Y{tV(~U%S98pEu#j@^00NR
zHh~d>19d%Qun-`M(3uq&X5zK-;ck<y1&TsIcH!=ocY@UlLK;1bBg2+B@Y&8TAS~;W
zG6~^mNBMJ;SgXNz^cKrx?Qjz1fMeGYE1!Tv#Jyhj&Wd=aZ}g48S1Y{BSqzeCrQpbp
z(BYTNFQwU+)@FtM4@h!5im5raWWy>}5=1IL<g7OBrLrQ}!em)g5x^>S4%;bvJtDB>
zANwyJFuDM{C;@Uez!k<-8DvFJR$!E!P!#^*u&j~c!c<v$G+o~WPQ(O?{A9;GyQ78Z
zflshhDwPat95<$o5!#N%XE{2g16)NY>=%IAK)4vD?F=SKUY^*Pb#&MjaQZ3qCc^}7
zgHvms6xWk*-woI3BN+j@imGE14@r%P`OJ$d$xfQ{F`Yb(@TifA-<n*bUl@{W7VPE+
zEtWA%5s^X&98c}rJSOsiUmN+{7O-V~IBSPxqTA&Ad43^9V=V``DnX6Ll>00b0rt#!
zdoUJ0&21;{2Z|teg-3y1VN4G)-Ss6XS<7pA-TkEy!OQIgEz-`=J8CZm=r7n3cz^VX
z?vo;-ezm9}JuXBH+Vpy|fi|p_9PAhPlCV)eZw!0!CG1ETOaMTKO-O4DB18?cv*}$_
zTKBdDtT=iC@c?senjL`ENSr7VP~tVkHGr0cHphJ@YA)<OJB)?btZ#A=uU31jyG7_7
z_0*!%lS1w?3kp?`5b3zUx?1?be)EM}C#8EF!xX3Nc&2M%hDQ5IzG^9&u*_DIm8og#
zMT+TWbeffuDbMy)<5&*>cLN})7ylrq-)>tI`Gl*%VVx&4_1`|NhW%p{NBW99%4eKN
zXbvhxd+)SXJ7mP0GdNII0Q`n60b(QlK;+qe{aS-OON(piV-+P_n_r7Va&OIaPJn9L
z8q$)Z&{JpIsegFJihngYDw7=MpSIBm;-#8*kJ<>oSGyAuVWT<We2b5}*iCzD*XcB4
zBav4QaGrATxggcL^ANky3hu&a9vHnKZo&EWTe^KvNdtQkFhg(M-aj0<8a<719L%#E
zVV*8%q*2y8Q!0HaL4m_d@r{{~q1G@yc;anvO9pA-E%sy73Qpiqye?sh;p??)NjK`r
zob>H$COX&@74+H+KL7ONIxp5AJHjWf!4^J(I?HL;*RV@rqAbaOA2c$!c*)@@5%x?C
zi74<9P=*H?A&;|rF%`CM^0X!)fdfa*icQ*ACDcSlMZQ-BgGX?S4_n=eXNx7l1%-K@
zL{XVn<ynG;@s>V@`si8Pn`!xmp4u+*b+IFkYrFog_eN}z&&SgEEp2`^B}w$BrfZUa
zY*HF$?dl5T_pF&)dXmeLTCMIGQbO0mn@5y*bz}@x;E)hC=2b!2s%qZtSPf6U=Z{F{
zD?g<_$-fIQjm7S@+ZDl&b<I+TVhUlEpp1HKSBsFQx4_swC$i470v_XEk|*JV0!Oqk
z{t!p7YrZ73+z{o<MbAS~L=LqMxbU#UtO4CU;6}vxXB{kzSr4sFBuO6MGy~WhevfbI
zz87x|jxC=X9`>7#vxmct==vQbUXobnt3Lg!?j%p}0NJlFSf{9^8@+qm00d0K2)I^X
zT=HII$HG!ifUdydhb@$L*v`m;e6%b#(v7TKh_NiA;-ICQAaJdGgwrvLRM5f68{C8g
zQnAi>tb&KlJ8V&yOkX#R!F(2~C+9&p3WHdKhsV7;#hY2%am!En{tdalbDcO9AZ`eI
zlkEZT+T?nabV7W$x*dE_>3|e4LJ|0ya|Pma3&wX`_4_7vVtD#W$T?(n2ndEGQ5+p6
z?Zm{4mP$<z39vB*$u&L!ux^5Ww!;)m^4)DK;;_SdkfXkVbQq}M3!(Xd4i0VuSl;$B
z;0Uv$p;Hp}Ybg1b63EZYhGh3j4SZ|wi`8I(|1%iEEG<k+zMzr8kQwYXpz4IcKLNg$
zCxMk%wR~uatPTh#$cwl-H6s>LfU0puF!g6jM}ULy`y<Z3Zoa&6L$w_6{@KI34F{K{
zbP>SK`dz=__}Ty-AiI{?2?6!Qs|0onZqV9bkFl#qV5TeWkwy;wrJc$oK5U2IwOtYA
z3Dtr=2)~k3*8z@b!{5iUa8I5S+}SZu_i$tasXXjrfW{J}s3(cVz}xyZo~n6006xPO
z?C8@kTcp>xsM0t~uEozT@Jr-znjXa7XXa8v0dQb%CW9WLH<oTjbyAL4x52jaFu|Rg
z5P)kTZ&Gj{iWONHVB|QTVo)y?8QQ)4TjQUc$zJLLZqigb+qk3tG#dfx4w56blA6FY
zMayNGmE}3a^)N+$i2_wZ87Bo!w3A^whNCb<0{8B-u7O|lR@E&sU+t{Yw}NB8e&0O+
z{ZCs_{%auf8Vnj4UX~-3bn7S(*Aa>QTt4>HN<IRBG<aNW-KheN=ch0L5Q2W!SgY!-
zQaXqw_?Zy}agd}zl6~j|=e1j-=SB6SlU%L4#SK8w2Xh%}w{GVmKPqMzC=!tYfM3|5
z0V3UlqGm{~iMNB0)%;82kXy!1o>Tja801|O@`PTzwfHNVXs;aU7O9SDp5(B%y6eN|
z;I{N$8{%sjzBaD6$aT$=W7j=#+p_82OAhzAv3;Y*f1oFy>G@~!^)q?D0E4UurAd0O
zA7FLA*V@1Jg1tfTwZR^p_w@K^vtzjLpKoVs3l1leeIqsGjdZ)ek<{`=(&nACzLD<p
z8)+8rB=<&IrZ>`qev^PZHh|+E`*q`9UWubJa81DK=QEJw;iT_R=h}~_?Uv1i$0jeL
zyCIOQDUj=NM@F)aNMyVN^KsFVEq2&ZyMM2_HD4n`ULKNRWfPVA?WIquqZm1PeUx&~
zwBb(3ED%aw?sGI#JJt0T0Il6398$Q$p&KU}M94*pT2LC-EGue8GE%Z6$whtT2}#S)
zB>Nob8>caivM7e{Bbms`iexM<A`k^~4v2K@d*#<MDLEmm$ZD37GOe<RWDzfE6!R0`
zB&I@;Ea4fr){!Vvnx|<&E5eXXN95GE^fx*cPpHT<TJ!Q6#c`SxNdY)Wuj#RG8dXIU
z<p^j*WJwyA31hshio#zI^YX+uD@b0K1(I>}g&U%nB<68aL`mc?k57FmkJBP9cvLc|
zkCj!G5mAsRryNc+JNC`v8Z#o6Cuy4H$cL($#RQp=C<L#NksSIKdCAK9iZB3$iY&r3
zMac@D72-<E^dxUlCWNQ7$a$4z=@rU~t811MB2t!P$g%G=Nv=smk>AF77FP+0k(1Db
z)yU3xiV%P7%cH!YP-TIwE_1K$JWq=xszs5o^InuWD+$ZMFc(?OuQaL&Pq1}YLW-(B
z@hz`u%?gqt+pMw}Pw}<RqbiO8he;lv?17Xq42;scOv|jGB`K?<f~YyAFr?zN7lhD^
ziUermN;AQds>tIj$@43x*t{e;_N62zQC6^`f~pb>h%#6-Or8>`FpJK8i~L$-Btxc<
z3Fwz1%)>0A3R@?{sV~bbR%fEhBMQt@WfiZ>vWP_y(X=Qle(Wn^k@1LTFhUL+M98Hz
z!aj_ttje06<P~|D=Ma%&@i<^mMpV{$LZCPTt;EN^bsYha<2a;AmL(afh+t)ktq^6F
zk^Eo}@PI%i3b525aM}?`8I$lrCv<Qp2%e7}bZ^e&POalL-wXZsQ7`@?0)c;R37>rd
z(r00ZxMRpIa6o59%0mqG`5R_+-}m=}9sq3x-~~J3BqM;J7OL&>Zr{|+quIQ+kpww|
zFSqS;X~KJ?;uKiHAhq)d>Gc`Pm&bEMtF_`v3tv<_f<>e;&z2M5gO2o60>%S0p2DKB
zx5snGhR7=?IjycaRW8ir`A-x7zxYwg<M{R+$(o5960lZJy!9aC*P?uML0)8&9UNG|
z{;qpH-VhJ`MUDk@Hl#%sa4nA+tM#8(AlEme=3#A}uSb4=u3&w<9|+Ne(i2`n!%B<;
z^qjgc3*gQ~Knx(LPmn`B1bao=?*dZQxuI;P#n1bzorNG_Areuyh@!7zg%!-uVfz*a
zdaBOdfgnZj%HaCIm$-fDuU0^Yei_2}%ecgJ>8t<tK0fUA_3r$qLwc{e;q~E!+A1!O
z$KwzNx9f84uOY5+d=j7~%l0Ke_V#VWs|k^!{6kX_<=LN_iX#8iWY>Xt9JVjS1Gi~-
zT}gP`+UnY8`2--D&wP<23;dbkek`(Z`{5$XwwkumC0Ty7gjSC@y1Nv^_UbylmjS-N
zwD|rE<Tu^?srA>2WdGPOlmAY}->*3Pd>++)Ywhi3%jCqilS&0X#e2Q3z5-W%*nl33
zxB=o@JEuu`0#8=6N2t~>D9qepXn26rXtiU$TI|a&HU*>$1hFpgmswjO6X`gj?alzk
z2(_r)ZfxD)_dEj}Oo#AZ<>xY~b$UQ51L!=&Q52uYIA6vx`t@~$ojNIoy2cbC*YZA*
zpdtRI3i}ey*o*!1u<Z~?w^o2)XFLh$*7<+CwUpH<op)e$kC0#f+G|Ix3h5f?0qW}4
zFUJVeNY|MQ2@Cd{VLwvbz!MT#{(8rmVZE<;e;=P4ln%Q*?B#dM`1myjuQ+mBxy%06
z^(j;zAX5^Xn*wF)>~FDD7TP9gzb{A71htXvF8uoTvCyy9EPDUa=+FuXdHRIuS5r~F
zU$Mjay7+rrA#w&2iB8)L%n!J2^j^Ako$EsU&vtux+v!fQA(Z|0G|0eX-D8w;dNE?*
zyNh?Dzp+r_wO}(@_qs=YBJ~z_cj|7MCAod4j&8ouyIkk6nGE!|uomgeB73+x;ft@w
z=SlEm^<+}cyBVL;X+?(PCQf53e7I}M_dtZUEfgY7X|pBBk|^tMo2ox_Ry<HjHb@uW
z+cEX7s>zOaul_XMvzxkcJ8?g$oBJS-y~2N{Qe!_*dFwt<8zDYWTd4M(DrfzHdb>S7
zP<ul@QRn9e>U3{DP!T3SP!~FXpsx2{eYxMcU6tF5`}y)JkZ&W7Iis(IPESA|e%n<)
z!z=&oSB`Vjn|_;d?z)+Gob~<D#mp)Ww~(}2G5F{)YwAryJV;}vAj_iDw=T1p-LSD+
z;xLcnEYHs$aV&(utyt$l;WokR7yw!|gGVUrK;5wcKUgn-L7=AbZfGBM0RpF80PPL}
zc%bRvY5MQC?@*gYY56?4>ZJ=GPdvXc%A)zr%m%La!Os2mFH|@&U2va-7=k>h;A1wA
zY;*rp{kF(`L@PN*@7iEph}mfsu6h<qA`^=~_1|VBdSC6S9Z*l({*JKYMfKaTY(JK~
z{_FeR`oMe8gtuiMc3#VSw6{lh^Ftr<0WX8!X<Od*C8gKW{rGXg(FWFOXq*t|+QpMJ
zfFY#UK>7^{`CuD(H$T(<jY|N~?7#dVRt8j9;9#e=k7k|^ghomSq-)`@valb%p3hP5
zhvDD;jT1*2Utik}#U-tZxJJ$*?z}`|g#0x@5}Y$+Wk_;4FUq<KTi2`q1dGA&4K{iW
zUM4|rX`9|&4GqB4Le~A0GN~{A@8$JXAW<`&2J@6f(uvmKiJKL}ZbN#zx~EBVYjWK_
zliUm{>HJ4|_ZQo?56yHzYM{mRBK?1!!3b)A;{kOpS+U&4)x0-U2!BcWPG`L5NT{on
z(D%k6UFCHw-Wz5k;_;{Auoiw9%cZEk38WVO3nqWPeF1LE<Lbhy2pRAtBQf$-Q3Nsa
z>>x|vcnIYrs3RgoSqo&QKe;f0#KObhVeJRyHdDJW<ewL%JA3J+`TL#|6Bl5n%P7^~
zcD&00MtVWa?UWubKDYea{&1=b6_;Te-0DU7``(X9U6go$?eM+-aJ-YluRktZAFD4=
zXrT<5r^|PzElxICH)=ai7oXBznzm_qQ{$Ii{O$91@5!iVSeuJeYJHKsfAGe>i(xO@
fXVW{HycCS2QqZS+KHVc}_7(g;sEvhFe=-07aw*J=

literal 0
HcmV?d00001