From 6bc6ef0ee495f04276d6a7e47fff5fd8e21c4edc Mon Sep 17 00:00:00 2001
From: curbengh <curbengh@users.noreply.github.com>
Date: Mon, 25 Nov 2024 00:20:56 +0000
Subject: [PATCH] deploy: d7145f19e1ecd9f535686ae8518c14a7d078741e

---
 .nojekyll                                     |   0
 phishing-filter-ag.txt                        | 462 +++++++++++++++++
 phishing-filter-ag.txt.br                     | Bin 0 -> 5597 bytes
 phishing-filter-ag.txt.gz                     | Bin 0 -> 5820 bytes
 phishing-filter-agh.txt                       | 434 ++++++++++++++++
 phishing-filter-agh.txt.br                    | Bin 0 -> 5247 bytes
 phishing-filter-agh.txt.gz                    | Bin 0 -> 5399 bytes
 phishing-filter-bind.conf                     | 434 ++++++++++++++++
 phishing-filter-bind.conf.br                  | Bin 0 -> 5536 bytes
 phishing-filter-bind.conf.gz                  | Bin 0 -> 5672 bytes
 phishing-filter-dnscrypt-blocked-ips.txt      |   7 +
 phishing-filter-dnscrypt-blocked-ips.txt.br   | Bin 0 -> 186 bytes
 phishing-filter-dnscrypt-blocked-ips.txt.gz   | Bin 0 -> 213 bytes
 phishing-filter-dnscrypt-blocked-names.txt    | 434 ++++++++++++++++
 phishing-filter-dnscrypt-blocked-names.txt.br | Bin 0 -> 5164 bytes
 phishing-filter-dnscrypt-blocked-names.txt.gz | Bin 0 -> 5309 bytes
 phishing-filter-dnsmasq.conf                  | 434 ++++++++++++++++
 phishing-filter-dnsmasq.conf.br               | Bin 0 -> 5369 bytes
 phishing-filter-dnsmasq.conf.gz               | Bin 0 -> 5523 bytes
 phishing-filter-domains.txt                   | 434 ++++++++++++++++
 phishing-filter-domains.txt.br                | Bin 0 -> 5165 bytes
 phishing-filter-domains.txt.gz                | Bin 0 -> 5310 bytes
 phishing-filter-hosts.txt                     | 434 ++++++++++++++++
 phishing-filter-hosts.txt.br                  | Bin 0 -> 5304 bytes
 phishing-filter-hosts.txt.gz                  | Bin 0 -> 5448 bytes
 phishing-filter-rpz.conf                      | 439 +++++++++++++++++
 phishing-filter-rpz.conf.br                   | Bin 0 -> 5373 bytes
 phishing-filter-rpz.conf.gz                   | Bin 0 -> 5545 bytes
 phishing-filter-snort2.rules                  | 462 +++++++++++++++++
 phishing-filter-snort2.rules.br               | Bin 0 -> 7437 bytes
 phishing-filter-snort2.rules.gz               | Bin 0 -> 8012 bytes
 phishing-filter-snort3.rules                  | 462 +++++++++++++++++
 phishing-filter-snort3.rules.br               | Bin 0 -> 7345 bytes
 phishing-filter-snort3.rules.gz               | Bin 0 -> 7859 bytes
 phishing-filter-splunk.csv                    | 463 ++++++++++++++++++
 phishing-filter-splunk.csv.br                 | Bin 0 -> 5905 bytes
 phishing-filter-splunk.csv.gz                 | Bin 0 -> 6110 bytes
 phishing-filter-suricata.rules                | 462 +++++++++++++++++
 phishing-filter-suricata.rules.br             | Bin 0 -> 7411 bytes
 phishing-filter-suricata.rules.gz             | Bin 0 -> 7993 bytes
 phishing-filter-unbound.conf                  | 434 ++++++++++++++++
 phishing-filter-unbound.conf.br               | Bin 0 -> 5409 bytes
 phishing-filter-unbound.conf.gz               | Bin 0 -> 5586 bytes
 phishing-filter-vivaldi.txt                   | 462 +++++++++++++++++
 phishing-filter-vivaldi.txt.br                | Bin 0 -> 5638 bytes
 phishing-filter-vivaldi.txt.gz                | Bin 0 -> 5846 bytes
 phishing-filter.tpl                           | 437 +++++++++++++++++
 phishing-filter.tpl.br                        | Bin 0 -> 5261 bytes
 phishing-filter.tpl.gz                        | Bin 0 -> 5405 bytes
 phishing-filter.txt                           | 462 +++++++++++++++++
 phishing-filter.txt.br                        | Bin 0 -> 5533 bytes
 phishing-filter.txt.gz                        | Bin 0 -> 5690 bytes
 52 files changed, 7156 insertions(+)
 create mode 100644 .nojekyll
 create mode 100644 phishing-filter-ag.txt
 create mode 100644 phishing-filter-ag.txt.br
 create mode 100644 phishing-filter-ag.txt.gz
 create mode 100644 phishing-filter-agh.txt
 create mode 100644 phishing-filter-agh.txt.br
 create mode 100644 phishing-filter-agh.txt.gz
 create mode 100644 phishing-filter-bind.conf
 create mode 100644 phishing-filter-bind.conf.br
 create mode 100644 phishing-filter-bind.conf.gz
 create mode 100644 phishing-filter-dnscrypt-blocked-ips.txt
 create mode 100644 phishing-filter-dnscrypt-blocked-ips.txt.br
 create mode 100644 phishing-filter-dnscrypt-blocked-ips.txt.gz
 create mode 100644 phishing-filter-dnscrypt-blocked-names.txt
 create mode 100644 phishing-filter-dnscrypt-blocked-names.txt.br
 create mode 100644 phishing-filter-dnscrypt-blocked-names.txt.gz
 create mode 100644 phishing-filter-dnsmasq.conf
 create mode 100644 phishing-filter-dnsmasq.conf.br
 create mode 100644 phishing-filter-dnsmasq.conf.gz
 create mode 100644 phishing-filter-domains.txt
 create mode 100644 phishing-filter-domains.txt.br
 create mode 100644 phishing-filter-domains.txt.gz
 create mode 100644 phishing-filter-hosts.txt
 create mode 100644 phishing-filter-hosts.txt.br
 create mode 100644 phishing-filter-hosts.txt.gz
 create mode 100644 phishing-filter-rpz.conf
 create mode 100644 phishing-filter-rpz.conf.br
 create mode 100644 phishing-filter-rpz.conf.gz
 create mode 100644 phishing-filter-snort2.rules
 create mode 100644 phishing-filter-snort2.rules.br
 create mode 100644 phishing-filter-snort2.rules.gz
 create mode 100644 phishing-filter-snort3.rules
 create mode 100644 phishing-filter-snort3.rules.br
 create mode 100644 phishing-filter-snort3.rules.gz
 create mode 100644 phishing-filter-splunk.csv
 create mode 100644 phishing-filter-splunk.csv.br
 create mode 100644 phishing-filter-splunk.csv.gz
 create mode 100644 phishing-filter-suricata.rules
 create mode 100644 phishing-filter-suricata.rules.br
 create mode 100644 phishing-filter-suricata.rules.gz
 create mode 100644 phishing-filter-unbound.conf
 create mode 100644 phishing-filter-unbound.conf.br
 create mode 100644 phishing-filter-unbound.conf.gz
 create mode 100644 phishing-filter-vivaldi.txt
 create mode 100644 phishing-filter-vivaldi.txt.br
 create mode 100644 phishing-filter-vivaldi.txt.gz
 create mode 100644 phishing-filter.tpl
 create mode 100644 phishing-filter.tpl.br
 create mode 100644 phishing-filter.tpl.gz
 create mode 100644 phishing-filter.txt
 create mode 100644 phishing-filter.txt.br
 create mode 100644 phishing-filter.txt.gz

diff --git a/.nojekyll b/.nojekyll
new file mode 100644
index 000000000..e69de29bb
diff --git a/phishing-filter-ag.txt b/phishing-filter-ag.txt
new file mode 100644
index 000000000..c1702883d
--- /dev/null
+++ b/phishing-filter-ag.txt
@@ -0,0 +1,462 @@
+! Title: Phishing URL Blocklist (AdGuard)
+! Updated: 2024-11-25T00:20:55Z
+! Expires: 1 day (update frequency)
+! Homepage: https://gitlab.com/malware-filter/phishing-filter
+! License: https://gitlab.com/malware-filter/phishing-filter#license
+! Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+||1111365dh.net$all
+||12931-coinbase.com$all
+||215323.com$all
+||260aesthetic.wixsite.com$all
+||3650947.cc$all
+||3659ll.net$all
+||83291-coinbase.com$all
+||94-103-188-123.plesk.page$all
+||9825057365.com$all
+||abctrvabc.com$all
+||access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com$all
+||acclimatizable.fun$all
+||account-update05.myvnc.com$all
+||accounts.google.auzen.us.kg$all
+||activebusiness-unlocker3.com$all
+||addwsrbh.green$all
+||ahnp.vercel.app$all
+||aldg.ldgknhk.lol$all
+||allegrolokalnie.pl-891241214.buzz$all
+||alturl.com/hpqhv$all
+||alutipcentra.pages.dev$all
+||ambil-pinjaman-daana-payleter.xforms.web.id$all
+||ambulatoriprivati.it$all
+||amev.ldgknhk.lol$all
+||antail-conv.com$all
+||apply-now-to-receive-badge.vercel.app$all
+||ardilu.com/descargar/kmsauto-net$all
+||artsea.pages.dev$all
+||atmailupdatewptnskmdinfomailacct.weebly.com$all
+||att-101072.weeblysite.com$all
+||att-1041page.weeblysite.com$all
+||att-105714.weeblysite.com$all
+||att-105819.square.site$all
+||att-inc-107097.weeblysite.com$all
+||att-login380.weeblysite.com$all
+||att-login522.weeblysite.com$all
+||att-service-102155.weeblysite.com$all
+||att-sign-in-105669.weeblysite.com$all
+||attcom-100762.weeblysite.com$all
+||attcom-106808.weeblysite.com$all
+||attmailservicenow.wixstudio.com$all
+||attmailservicenow.wixstudio.io$all
+||attmailsrvrdesk.weebly.com$all
+||attnewmaill.weebly.com$all
+||attyhhhhiiii225.weebly.com$all
+||atw-tau.vercel.app$all
+||authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com$all
+||authsyncs.pages.dev$all
+||autoreplyattmode.wixsite.com$all
+||avoid.hold-managert.com$all
+||azbin.ir$all
+||b45018.com$all
+||bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link$all
+||baiii-wong.cutvi.cfd$all
+||basvuru-online-yap.vercel.app$all
+||beionfidi.pages.dev$all
+||bet73nn.com$all
+||bet83039.com$all
+||bet83054.com$all
+||bfrescentremebermainsetreouytnoy.weebly.com$all
+||biggggggggggg.weebly.com$all
+||bitnode.pages.dev$all
+||bitvavobtc.com$all
+||blackhere11.serv00.net$all
+||blss24att.weebly.com$all
+||braucrarasuteu-2470.vercel.app$all
+||bt-102124.weeblysite.com$all
+||bt1business.weebly.com$all
+||btuan-dan2-resmi.top1.my.id$all
+||buildingdesignsusapdf.s3.us-east-005.backblazeb2.com$all
+||business-page-property-897432967.netlify.app$all
+||caipora.xyz$all
+||calm-pothos-3b24c9.netlify.app$all
+||carrefourarabiank15.pages.dev$all
+||caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com$all
+||catgirl-appverset-nya.pages.dev$all
+||catxtokens.pages.dev$all
+||chat.94-103-188-123.plesk.page$all
+||check154109.click$all
+||checkseven.vercel.app$all
+||ciente-a.org$all
+||cieplo.app$all
+||cj12143.tw1.ru$all
+||cj87335.tw1.ru$all
+||claimyourethrewards.pages.dev$all
+||clickbait.design$all
+||cnsa163.com$all
+||cock2-iota.vercel.app$all
+||cock3.vercel.app$all
+||cock7.vercel.app$all
+||contact-pro-8291-d01.firebaseapp.com$all
+||contact-pro-8291-d01.web.app$all
+||creosrl.com$all
+||curmmgdv.email$all
+||currently541.weebly.com$all
+||currently890.weebly.com$all
+||currentlyserver.weebly.com$all
+||dara3dccj.wixsite.com$all
+||db.service4db.com$all
+||de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev$all
+||debutcan.firebaseapp.com$all
+||debutcan.web.app$all
+||delivery.attempt.failure.ebbs.co.za$all
+||dev.stream.mornar.app$all
+||did.li/parcels$all
+||dnwqmh.click$all
+||dropsmartchain.pages.dev$all
+||dsjoting.group$all
+||dulb6c5p5.top$all
+||ebay-mallwholesale.com$all
+||ebt-lilac.vercel.app$all
+||echoredled.netlify.app$all
+||elbarco.percentadnp.info$all
+||eltritongourmet.com$all
+||email.mgb.modento.io$all
+||enjomugg.firebaseapp.com$all
+||enjomugg.web.app$all
+||error3456vhubhornbase.azurewebsites.net$all
+||example223.wixsite.com$all
+||eyeydhe.wixsite.com$all
+||eyttueiu.square.site$all
+||facebook-avip.click$all
+||fame.pink$all
+||fassehoizubra-7696.vercel.app$all
+||fastdropchain.pages.dev$all
+||fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io$all
+||fla-1001.square.site$all
+||flo4211.github.io$all
+||flow.page/servicesatttttmail$all
+||fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com$all
+||fnuttlie.wiki$all
+||fokeijonnekou.vercel.app$all
+||fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com$all
+||free-verified-badge-form0-service.vercel.app$all
+||free-verified-meta-badge-service.vercel.app$all
+||g06668706.wixsite.com$all
+||gccndbqg.vip$all
+||geriodememerkezi.online$all
+||get-checkmark-for-you.vercel.app$all
+||get-free-verified-badge-service-on.vercel.app$all
+||gitanag.broke-it.net$all
+||gruprocuroipra-6493.vercel.app$all
+||h5.b9en.com$all
+||h5.metacoint.com$all
+||hcghij.top$all
+||hdfcsky.com/sky/indian-stock/dashboard$all
+||hdfcsky.com/sky/login/verifyesign/modifyemailmobile/g3mail@b.c?status=success&digio_doc_id=did241119142331957uip6e3c979l3r6&message=document%20signed%20successfully!$all
+||hecregayatu-1014.vercel.app$all
+||hejmtxxt.guru$all
+||helenblunt6.wixsite.com$all
+||help.accountsupportcentre.com$all
+||here-apply-for-page-review.vercel.app$all
+||hgbk.ldgknhk.lol$all
+||hhideiie.wixsite.com$all
+||hitummoinneullei-5882.vercel.app$all
+||home-101067.weeblysite.com$all
+||home-103465.weeblysite.com$all
+||home-104341.weeblysite.com$all
+||home-105266.weeblysite.com$all
+||home-105929.weeblysite.com$all
+||homeattatthome.square.site$all
+||hpnefhqs.motorcycles$all
+||im25.net$all
+||info.supercitrus.ind.br$all
+||ins-business-home-center.com$all
+||instagaramgalochka.vercel.app$all
+||ipv6.43-135-137-110.cprapid.com$all
+||irmt0ken.win$all
+||is.gd/djgj07/$all
+||iujf7839iofvkbcu748.weebly.com$all
+||iwimwmiwi.click$all
+||jagej73796.wixsite.com$all
+||jfdjy.com$all
+||kalyani963.github.io$all
+||kexoigrufouddou-5902.vercel.app$all
+||kl1k-ds1ni.neupdile.my.id$all
+||kliind08.wixsite.com$all
+||kreelo098.weebly.com$all
+||kremlcup.com$all
+||kshitij12375.github.io$all
+||kucoinglobal1.com$all
+||kxbztydc.black$all
+||labanquepostale.jupiter-analytics.com$all
+||leddevotoze-3146.vercel.app$all
+||linnkdna-kget.wxxzsite.buzz$all
+||llahi.info$all
+||llahi.vip$all
+||loffaummuddote-4145.vercel.app$all
+||login-att-10221.square.site$all
+||login-form.world$all
+||login-online-outlook365.com$all
+||login-outlook-midstreamauth.com$all
+||login-screen-103134.weeblysite.com$all
+||loginaccount70.wixsite.com$all
+||loginaccount77.wixsite.com$all
+||luk6414.wixsite.com$all
+||luxlifemiamiblog.com$all
+||m.meta-accessibility.io.vn$all
+||madebybmr.fyi$all
+||maqpiexyz.click$all
+||mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev$all
+||mayfair313.wixsite.com$all
+||mdbrvlfy.black$all
+||mesageriepro33range1.weebly.com$all
+||metamsk-wallet-3.gitbook.io$all
+||metttaa-audddt-new-02.firebaseapp.com$all
+||metttaa-audddt-new-02.web.app$all
+||microsoft365-storage.github.io$all
+||mikepattyjm.wixsite.com$all
+||mobilemidasbuy.n3g.fun$all
+||monespacepro-client.3utilities.com$all
+||monetization-violation.github.io$all
+||moodengsol-net.pages.dev$all
+||mwsiekdnfjrdufs.weebly.com$all
+||mxmxnmx.mx.zya.me$all
+||national-au-b.com$all
+||national-au.net$all
+||nbaaiqjq.group$all
+||nexomyacwv.weebly.com$all
+||nft-time11.vercel.app$all
+||nichcheck.weeblysite.com$all
+||ns1.carrier-ast2-portal-apple.com$all
+||omadshf.ru$all
+||online-assist.live$all
+||online-promo-asb.org$all
+||openkimono.pro$all
+||opportunity-verified-status.vercel.app$all
+||ourtime.reconnect-dating.workers.dev$all
+||owouwuowo.click$all
+||p365kf.com$all
+||p4zv8crnrrha27so.94-103-188-123.plesk.page$all
+||page-center-manage.com$all
+||pavan-patil-22.github.io$all
+||pay.zing.vn/pubgm/$all
+||pecinternational.net$all
+||peesom.chat$all
+||pencairaanndannaa.my.id$all
+||petty.wiki$all
+||pimnhv.group$all
+||policies-business-page-service.com$all
+||pottatrebewe-2808.vercel.app$all
+||pqo.hrf.mybluehost.me$all
+||programming--service--panel-totlyy-free-for-you.vercel.app$all
+||promo1.spik.ru$all
+||protocolsecure.pages.dev$all
+||pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev$all
+||pub-1778406e4fec4394901793111c187dd9.r2.dev$all
+||pub-19b834342e7d465b9f00b3511325a081.r2.dev$all
+||pub-21dd4dc659614ceb93e45a6de4434502.r2.dev$all
+||pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev$all
+||pub-2fefe932a6974485b987c9ba851b5c40.r2.dev$all
+||pub-3a46d9914f494078a6d6237513e7a096.r2.dev$all
+||pub-442ed822851244a689b3472ea2c6a950.r2.dev$all
+||pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev$all
+||pub-682ad3b65d944376b919745aae3c56d4.r2.dev$all
+||pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev$all
+||pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev$all
+||pub-7f5cf36445d042168bfacd712e890dc0.r2.dev$all
+||pub-803839714a924882a7bcc2495a26860f.r2.dev$all
+||pub-8161de4a277e4ee8b532af34954224e1.r2.dev$all
+||pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev$all
+||pub-8376b5b2334844d193a525d8b8548fa5.r2.dev$all
+||pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev$all
+||pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev$all
+||pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev$all
+||pub-9163a97d70394cb499bdd232be6c2169.r2.dev$all
+||pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev$all
+||pub-98171471e0944ac3a5820ef719bf0640.r2.dev$all
+||pub-a263e0790935412eb10cacc55bbced18.r2.dev$all
+||pub-a291041b077742899b63a9982f04a56c.r2.dev$all
+||pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev$all
+||pub-b50adc5d699a4f08aec37102c2103da7.r2.dev$all
+||pub-c0a934c950e441db96b882789f53c9ea.r2.dev$all
+||pub-c2c250050109456396c933de259a4fea.r2.dev$all
+||pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev$all
+||pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev$all
+||pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev$all
+||pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev$all
+||pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev$all
+||pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev$all
+||pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev$all
+||pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev$all
+||pub-e42cb528b102447385e3145197916f51.r2.dev$all
+||pub-e4aff507450c478cbe3f77ad23d75035.r2.dev$all
+||pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev$all
+||pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev$all
+||pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev$all
+||pubgm.club$all
+||puffagroibrouwoi-8818.vercel.app$all
+||qasimk.com$all
+||qfjfvseq.info$all
+||quauwograssodda-3503.vercel.app$all
+||qysgyp.com$all
+||rajdipchatterjee.github.io$all
+||rb.gy/go4bnv/$all
+||rebrand.ly/18ab5a$all
+||rebrand.ly/4ff03b$all
+||rebrand.ly/8wtcv4z$all
+||rebrand.ly/96a02f$all
+||rebrand.ly/c0d1afz$all
+||rebrand.ly/d2f265$all
+||rebrand.ly/eacc63$all
+||rebrand.ly/f9decb$all
+||rebrand.ly/mzhpkzf$all
+||rebrand.ly/nbyh9vh$all
+||rebrand.ly/sa2uoq0$all
+||rebrand.ly/tcthi8d$all
+||rebrand.ly/tnab363c6$all
+||rebrand.ly/wx1eo7w$all
+||rechazaroanularaqui51.weebly.com$all
+||remote-fix.pages.dev$all
+||renggard.47-243-192-240.cprapid.com$all
+||resolvepanel.live$all
+||resolving--issue--with-us1.vercel.app$all
+||resqat.weebly.com$all
+||review-business-case.d2f7p3b7pucnle.amplifyapp.com$all
+||rlpqwefi.pink$all
+||rouloigeilleuja-9523.vercel.app$all
+||rulemec.pages.dev$all
+||rutinqqwin.shop$all
+||rwftfu.quest$all
+||s.team-pw.cc$all
+||sairanees.github.io$all
+||sanseipecas.com.br$all
+||sasklelo.weebly.com$all
+||sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com$all
+||sasktelcustomerwebly.weebly.com$all
+||sasktelnetwebmailservermaintainance.weebly.com$all
+||sasktelrectify.weebly.com$all
+||sasktelscrutinize.weebly.com$all
+||sasktelservicecentterwebly.weebly.com$all
+||sasktelsupportsystemwebly.weebly.com$all
+||sbcglobal30.wixsite.com$all
+||scan-vulnerability-guard-v3.pages.dev$all
+||scan-vulnerability-guard.pages.dev$all
+||scanner-metamask-v1.pages.dev$all
+||scanner-metamask-v2.pages.dev$all
+||scanner-metamask-v3.pages.dev$all
+||scanner-metamask.pages.dev$all
+||sec-sign-in.info$all
+||secure2-validitycheck.weebly.com$all
+||securecapitec.theprimepoint.online$all
+||securerpcfix.com$all
+||seeteressecalywoi.github.io$all
+||seivviice.weebly.com$all
+||server.0e7p.com$all
+||server.2rk3.com$all
+||server.8q3p.com$all
+||server.n6b8.com$all
+||server.v9vs.com$all
+||sevvviicess.weebly.com$all
+||shard.blue$all
+||shard.skin$all
+||shared-d7590.firebaseapp.com$all
+||shared-d7590.web.app$all
+||shaw-101329.weeblysite.com$all
+||shaw-101587.weeblysite.com$all
+||shaw-106427.weeblysite.com$all
+||shaw-107375.weeblysite.com$all
+||solutionwebsitedapp.firebaseapp.com$all
+||solutionwebsitedapp.web.app$all
+||solvetans.firebaseapp.com$all
+||solvetans.web.app$all
+||sondfrom.dexlog.my.id$all
+||soyokai.or.jp$all
+||srdate.club$all
+||ssy.hmb.mybluehostin.me$all
+||steam.poweredartsworkshop.com$all
+||steam.workshopsreview.com$all
+||steamcommmuty.com$all
+||steamcommuunity.ru$all
+||steamcomunutty.com$all
+||steamconmumity.com$all
+||stepsray.vercel.app$all
+||support-metahelpcenter-id100003498934.netlify.app$all
+||surl.li/tvybxr$all
+||sv5gardens655665.weeblysite.com$all
+||system-portalnu.duckdns.org$all
+||talwgam.njmolada.com$all
+||taste.baby$all
+||tele.zhngain.top$all
+||telegrambot-resolved.pages.dev$all
+||telegrazm.net$all
+||telstra-100408.weeblysite.com$all
+||telstra-100469.weeblysite.com$all
+||telstra-103234.weeblysite.com$all
+||tiktok-888.vip$all
+||tiltckshow.top$all
+||tinyurl.com/carrefour-926/$all
+||tnomwzrp.top$all
+||toeken.im$all
+||tonic.pink$all
+||tooma.cellinsurance.co.zw$all
+||tpdtepremu.xyz$all
+||trattujeilesso-3354.vercel.app$all
+||trbinace.com$all
+||treibrukeukonno-1395.vercel.app$all
+||tuesmad.firebaseapp.com$all
+||tuesmad.web.app$all
+||tyyyyyytyyy.weebly.com$all
+||tzcsjfto.chat$all
+||u.updatetrackgre.top$all
+||uc-whatstapp-web.com$all
+||udxcady.wixsite.com$all
+||uklifejv.cyou$all
+||updatemail12.wixsite.com$all
+||ups-trackdeliveryapps.chickenkiller.com$all
+||urlz.fr/t8vi$all
+||urlz.fr/t9ka$all
+||urlz.fr/talr$all
+||usbest.cyou$all
+||user-transaction-overview.vercel.app$all
+||usps.com-trackdck.top$all
+||usps.com-tracklnv.top$all
+||usps.com-trackmcl.top$all
+||usps.com-trackmec.top$all
+||usps.com-tracktpq.top$all
+||usps.com-trackvmd.top$all
+||uspsinfw.top$all
+||uwdtsczi.top$all
+||uwm-onedrive.com$all
+||vaishnavi1436.github.io$all
+||validatie-veiligauthenticatie.com$all
+||vbbu.ldgknhk.lol$all
+||verified-this-request-badge.vercel.app$all
+||vo4zzp.icu$all
+||vs41.github.io$all
+||walett-cont.gitbook.io$all
+||walletauthenticators.vercel.app$all
+||walletcomnecitt.gitbook.io$all
+||walletconnectdapps.online$all
+||watranfart-fdd6a8.ingress-bonde.ewp.live$all
+||waxed.wiki$all
+||webmaillshavv.weebly.com$all
+||weeeqweeattt.weebly.com$all
+||weigh.skin$all
+||weigh.wiki$all
+||wgqdqvtn.baby$all
+||wgqdqvtn.pink$all
+||whatsapp-rqr.com$all
+||wirelessvoicebtpaidmailinfoplay047.weebly.com$all
+||wscs1231.cyou$all
+||xn--metmasklogin-vcb.gitbook.io$all
+||xojautruffeuttu-4659.vercel.app$all
+||xraiz.info$all
+||xraiz.vip$all
+||xsuweamskeidjf.weebly.com$all
+||xya46.cc$all
+||yahoooooo-108560.weeblysite.com$all
+||yavanica123.github.io$all
+||yi5lq-syaaa-aaaag-acfsq-cai.icp0.io$all
+||you-can-receive-here.vercel.app$all
+||zeiitgeist.angelocachero.info$all
+||zenixoikitti-5809.vercel.app$all
+||zeznjx.shop$all
+||zwzcn.com$all
diff --git a/phishing-filter-ag.txt.br b/phishing-filter-ag.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..e5ee91eb5783d75e930f2613c0b6420708016fa5
GIT binary patch
literal 5597
zcmV<36(Z{4P}GT{q}Bcq5ygA}G*TAM-yb2v-1lqN^S{5F)!Y|;h7mEeKgDf~1(aGX
zsiDxe&wFU<|2R2cq6pYV1jxA*mphlA_xHNYHbCW7nG|KxrA!}gkxLg<-uwS+@=Y_6
z*EjjcvP0TKt?ipx)0e&u*JqLs6*!>H26j&lY~+vvh&>gR?G0~OrMioa;p$RmA{@B-
zw;0`jee#kP(^KZ>*JX=)x<CB-`<?1ear@e^1o`8wc&hyMJAdK+u0e6X`{U==zvL{0
z`@^r%^-Tz+L_hv>*ZpDN{oy$N=Z~LXfAh{%u>Rqf`f_l8{Z3w)ul1sciD>V1px!YV
zHvGe{ojDK2oQ>FnX~aGO`~?L?IWyn6STt<GkDp)SYHcUb{L3Di|KsNuM~M1|Uu}V;
z@ZJ3nzBb~$r8ke*Ztc_aC~5n^cl%iKuYsZ6pZ3RZexsC9dK%rnp^Nz|@IE}hU$hc7
zQ6z-aXk>+6jk?!?FEw?5m3L&a@}hUA$RyLy)7UM;EUmrWcJV&D%YW#8d27ocRHub{
zJcR1C%pU6@Tb<E7@}nQSan{qgU^Ot7%L&GYcd-_0m3-MMb8~QRob+k)QI3P?IimmY
z5UQJ{&6mc_B{{pN08AeS-AS%3MlMY)vf!3O>qZ&wGZqAh+Nu;R&nuyQFv?ctu|3|x
zbRshg(IWef!P4Np!MUpzv&#X)BE%kZg?d`_5^{cjJ?}Q@-FC$NkUsgx&+Bn3$)^K+
zB$U~U$D;Z{^=go&eLl1u+=^$T6?=Z|=iTzgl<ff}us?3C(jmde42HbO6rT_v3I`BD
zWVk&t7Wv*L?GdWH&`5Gib#ERx6}o(HE0`qlhcBLWm_cM9FKmiu+axb%e~Xwd!ATUf
zNGA#dZo|iHapYU=Kq2&ovO)PiLfwjLJ;9o#pm4={F698^dph>Y9P1Gr#Wlsu1gvFw
zAsT;|uRpU;o$BU3-fff+8huc?dH&q{aaO}q=R+-0*mC(Of89jU-tOhxEps9$x$lgA
zbng=#`>JRMikw`bx?YVV?I~!Bg5nh$r)l|#*c627x_Ro!uGsYG9?(0qaPwli#MJ%4
z%~7HpkJ5u#&f=tzva?0Ri>|OIsOi1$`%XmE_v2ToOE5H^<xOL+$Kpy8V%mB9{&Xv~
zDjYIeMt2jT@m}v}D|hELP6e~SD;ty?3UtIJTq^Bmp|3Y!itZmnQBnyiYlg8?kIx@~
zf%P^>5X0=f57XI~d^gy~?Nj%@-`*=7U`9gyMw-?>>bR|EeUJShDX&#J`EjeKcqIBh
zh)7&1ZqhbBN!ry#cd2J9O<<28af6h6^ad%#l^iukC4)Tc7|Va?$PeA=CHP$9fE!?<
zfJ_JmG*|*qtjGmZyE&%2=eIGm{ZNu{#;}S)RwF*)Oor_%;86RH1(lNQJi6;NZ6xDs
z?FV2Xl_XQ3*#ZS>V{D=y=B~j&%-oS)^<rqDVWqrOnHbzu!mo<GC|CnYPFcxt>jH-F
z2nc+M+A3tX%Bp3n0!Uh->qd$6Dj5$SG<^n4XF@w|D9%G9Mm&~z(ET#a?Xa__^{&tJ
zS)iN>$oKsTt-B8*C*D&P+Vq2678Ru+{+(qgU<l%&#?HyHP?6lm!$v`5{Sj}a`$3Px
zG|tkgZ6!A@(CF%$gphN&;X$sFu)roqodo23VyVa?-jJ2SZ_`0Bl);SIBnh7om*=W+
zP~9TU07o3!EDA0l2alYG0=8C`g15^)(eWpi7^Ed%N|qLJU5{DovBLv}ZHX=9y`Z(A
zst%NHsR3fi8!W0QR!|c(0y8#LFDNk-eJ_$d^xf&sR%EcuOS*Vq(>&KHxl%!)>(*OJ
za*$GTik$^hMN%xZPb(p8?vw|RlU~89F5&NSP$NjAxS)@vgHi8;<vW^#0@_*ol<5nc
zk$P{t!I`*k4|~0?>m;U!wPFBmg;CQYhKDn-Xf?xNMAr#j>gxsys9uj%Ua72SsEwW0
zdZsrirm=<Ck{XFi>ru~A=9V6=W@&^zpG0G-v`Kz|y6u#PXC)a@iBM9?BPTt5XXxpc
z8c`gtSJ+t}jAFFA@7eA^krypjpNS18G(OpVUh`(MV;&_MeY4QOEgTbQZG-tQ*VaPA
z!UIJG=Yhv1R6*y_iJnJ5Z=l#D51ekgm?i4eNM^)^IK?fs5>O{2n^`h!MymADk?{=f
zqhN1B+qRC;NL+5w4u2*+jMKR{v!{YYmcyqNbS21IhdNn;`d)Kic)am;JI01$Zb%Kz
zGM`qlfRl13mRTX7%;+EiE7Xd6qE9mg#5^ri!<#Eq?tBmZ9=ks43StBR5P$qCCtj-u
z5Ee+1&0Twn)dNy3s0!WPr=eF$+T`+LM!Irs{vLv&0{@WZf>@&geZ<(H_G5;V8M};A
zQPSUnJ}h*XtY2HwzQ)Gvsgc_c3a?c<ke(?<JQCLYA6WCKO+B;Ica7_;&7n5vuJACg
z&)s*FF98E?m?mLMx1lq-xG?ovI&(mkm2)xNp$1*n+gr4)o2Kb8cN51v-)3!e=C#R_
zzFrXvC5Hh6mIFT|aiB(Fu+VhiUxM=bin~F8R9Qi0<rGRv61t=_!X}Tqxvd}`54cyC
zI+bKwNt6qSX;{=!g?*G}LF6g+Q8p5Qe#hW0yW4H2r|iku-D>O6Ioa=e+~1x^BMPry
z_S-?-eP&)3K+~@AyRMD5s%`l`C|~0(LWtK*d~Z77S^wNf`)8GbTm2K?8~-g%oRj{~
zy@mfH_a}~AKPaUZHS}8hzhA9Uo>1FmUc4^TZ#nEb{=_Bgs20EOyIgg2|BzI{;n#lu
zEN=|jf*ahx&5kZKG~DyxGw}P(a%=dahC6zU#<$390|2c>dStq^oKs=g?xdSvP&gKV
zO%PrZpQNf3L7O?86%qHH91`JeB8XcEiDJa&J(3t7kNy_-Tmv<qNH>}8l<11<VH)QS
z8e4d{y%J+TO&4(K7aK4G^M5Ki*n7_r*ZozcQym@7OdIb^p&thdD7HrFa5gOMzGihv
z(MeM%=2n6Cv1rh9=fpxUBC&0Q0%4Ple)|CllSKKP<e-JpqfmMlN_Cd<b5aT19T??B
zG59&F+}yW&ZqIK1eoR1nuJc1Ll-Bbww#~ysPFAOj!WHNutrhhN8$M?}FKoKYb9K*T
zX88brL!@QW>Lf`Az7uVwt*JSeni!Xko&L?kt3$Y|BFTs?JMw6Q*$z(>og>A)Jduuq
z=u@}UuF6p`c-wMtE$U88Pu1&rEH7`;j5zK$Pz&~Yn-Aa4N-LH|<asa<Uk#@O089;f
zwoHsg%q7Wp+jw+WjY_!mL7~;4@ZW}~7!Mag92>H{-tW(w?DQ=19(Dp(Bv8^Vc|NTx
zv=G`l45Jv-Fg~I{Z4yp7-@eBMgbEZTfabB@MNyZ9NR6jdT)f+qibQvcKo0qWQ^%c>
z%#nb6xByBI_)SHj-`sV+ljwA3vmMjmmsG{__oR#!2m(#*$d8Rdt2GI?JY9ETxuhh|
zu?CYsgUxM1k?T$2m0y|geSe10VLHH-V(CPJ0F|0;C{l(i*oY`z1TjLzg6`%7xc5j!
zD{NXdI8#o)-t4FcR9w9ZVJ=DQi7b_^26eMSJ;dc^H&_f;K&;Zc6_A-R<x@209E*sT
zc=rIqJ<z*ga-2kk2~(k`QQ`CAMRpx{Fb8{Mz74#eq0Xq|rya;aHSLyBZ}S?sJ1#_*
zVCIr}!Hm>LOy7_YClJH52)HP-;-uvNQxu0MTg2RI^1gOO=hW`1golgkv$(eUl3p{s
z!#jqz3~%|lL55+)rZ{&I(1a-~$H}UuYBT`!dcG{W8bo}jaD%<htj)Nxm|^r$YRq>;
zvOA>oFwo3cm2@3(5?*HIULX!A)YzQu!*VHrtNZFAp~AopwNhni54%LthijI-vw&(O
zGN1^2o`XV)N#>FqAlZXjB);icLdPjeBvLDd<x+mtB}TL?bj&bYZFgX4u<Geb?P}>t
z!?JAF(|D|f`_tv&b3SZ|rR>npHA$!7U%I+eIkWuqJ7+i{iVRF%^nD+*GTic$<$-7X
z&dqG$+p!((B~GE8LVmGl#F~PXoM}g6q6I1dF}itVLs%_~GBV$sRmDsp?q`Q$y6%k#
z`6Od<<TCL@J>?ZNc%kSO8Sc#zlV3^hWtHJpyzjK9%6*@z&Uw%evlKEyTsix$f)o4u
z=3~5ZI@puSC|NTd-A}s`9)Q6h{HE(jJzVBygi<{sti7FQJt#W>F6)SPT_0#+f>D+}
zRNChGF?16SE80OX!_ujF(Ml<+9<y_cd4r32=s^!X&Tg1Sv#ecb^k^EQ`w_Z_dZAu9
zH#j?u%cKU2rd}F{5hjPjpocxg4a`Z4t0#ArPNgNoq?M0BgUv&-o0QZlL-1ijq&!U}
zY`Suv9MsHPLZ^{tofa82Q6D)dqzD~LyxFj6BZ5i=Q0_qFLv11nltT<RPUlHSb55@q
zeY&adLZdKF9mP{SrA?cHC(glXL?~lgHz9T}3?4})Wfcz7ZShzX8HO%vc2FK*4)tY8
z)F_$Z36e=#J(X%@Tg%uDRq!rli(}y+;%o$c=v*Et9ZIcblqGfAP|>858;~lv%m^T3
zhoPe_o3cK77CDF%Rq12|Ur5FTKxNaa-5NAw(TSumErTn)zz622bf8v~%M%buiLx6y
z1E)@9(ltgtjOvmp%4B2GYUJb!&Mn>UPFM6<eKmQjvlJ!q6sQpu%B{=Hv`>}Xsmp9a
zWa@?<5=@J{Eoyy@!x-xW-6W-TtNKqeo0)(xYXtNW>WFwbPn$l4q`Nm+oih~9)V}Uh
zYTBif^lC=rfzAr8mUNq|jZu|ahk@0^njuq%n!SZbFwYs4UGKSR+2dvt5dt-vWfP`Q
z+d(|yK4mV#=+4uTh<uI&0!jCgII9((a&q$w&SB=JKI#=Hy+J^4m@dYO=7ys+X|0HQ
zP8(AdL~SvKmEXM(1aNEIdNbmICNB&z3pic1O($B>5bLQ))oSLD;6=;`y^X^U6F9q#
zV#8*%imcH4%H>nP{bzf5VbhijGdqohnGH>i23vJmDbu`=W-nKx6rr}dshtK6=oSMZ
zxQ5f3ki=A!DV;RLNf{eR2Dsa>DH}Pu_W-Y?)H#DjHAk2$tBFlps(C=C;?-$^d1xX<
z4=@8!b3~nrS7ouwOLY*NlLI@=kyh2JyF7xJ3_4MwF(jy5*oi@**W1V9o-SXDn-I4k
z(U^rx#1k-u8<t*QZR*c93)HEtj=rS#Xz3cfY^=ZKB_Pxq@-!wEnrkctx2E4CjToWQ
zv7)&PYA=%Pu1uo}q_AVO9xu+nA80}CV1m~2^M2jteto{L+ex((KxOZKY`@<`Q<eMr
zTCbz-yt;LN`twZ;)#^B|nSMfU7~M7hj`QEm+Wjjx1we?$qxP?2o}PQ3ALqaS&R3e3
z*MG+w3mRF2kDtH)y82{yYXGg)aE8(MBVP3HF@z0ouxzMk*?k3SK*EB-pepbg_*QCJ
zR^%$w@4wI6_rKH|a+!ah_WBHSI6SZS_89IFkIzlhF~Y?s4vg`<`uqQ0S9#k6#i#%C
z{py$JkMDkeZp>(ly?zBSJ6_xW#A*Cqm-E^8{2)1jl&_@02}r`1yVr63c@?qj;ID`q
zQq<&vrs$^=LN)00Jea?bdmVRwWD+FB67>(DfcTGuB{!UMd&UL+r&Rt|*?(^Lcdbp8
zm8AXp{JC!D+J1iO`Q;~L=-z<94fw67l$hsZyWH>Z?ec-{WiC1I^;pjja5H_=j}M&g
zHmBPgsmTv6X!n<@V`x0h;g_SfTZKyjBq42t!;kNu`nlE%xE}Gy#(BSe!Kkw5_+1yw
z@JpP(zJ89^zF*d5fBcGzyv0CoV~csUzrA?!+2c}=cTGSSLE%i<!?%lHq5_(G#Y6Av
z$&YbFbxv^m7Y*gWfO*}dM?R_Ifk2l%d2gE`D=moPx#A=Ia=LV`C`QvyXL$3DPcQ5V
zp8Ts{_=WQZS=NK<$M@;g{he7jbEtS}uRsbq=6k}I8gN3mZ?`@E#4nCILa+2zYk01T
zkH=@-_U*SW8H|fYkbH{$7L$r24nVEeqK>1&fBxRrZ6t)Q?e*HWjzz#2duSy$m&<|u
z8-w(Y{x9b;re6AGucPUe8724%PfTCW58;9HAi(}lJ0+E;6t*Ufbb50ULYl{?zqM3D
zLJbk~birBWLJR^fIt34w^Dx1ZGby4FxGR8{!l-<^l?j%HBY2247V5_}tRCHN1yeeF
z&tndu(eu`Hrvpf)BA;P+(d;{jqVl!gat}t-Gm7FfuXA*x+ykMb11Ez_4(4@7{?H$D
zY_1whH$M?=3L!MU-5Q&qP?7~PN8aEBs!&J7aRc3z$hE+|Ownl%$2{m@sgO@6w^u4s
zr-$XS=mG!2D-L~-r*A%Q^ImN9b6o2u3uB$eangU1DV7Rdrx}}c%^ogRndz@)@Ye=G
z#%D+#97KTojkw%+!w%-5NBP;~h8K~P@8AStxSLI4L0Kp!SL$)}Cx{+lDKNNzM}{=u
zmmU5*A*CfdA>C_xrpa`0I>h7g&}dmqo^5y8;40EWiZ}9KLp&}QOFw;ksuWYWJ|&0K
z6DmtvDaBn<BumKTa7qE>xx8o_h!Dhe>~%8Ejxmo84U~!JqGNG;B5g7%m4w!#{$Fr0
zS}JFGlT?sQX$Q6=#h8TB%NTf48rA@Aq%$8b9|qq);7`S5TZKQiK37h%<hCXOJh*+T
zaYOE~_(Zc}yOXUl<SdesKEgHkw&3oCUvGzAt;h3}_D<uJqyi+5uj+%%%T;87LF%%Q
zbCqXx#1D1BSnpNnv)YRP$hCa)<D|pqxg2mJ_`>UUFK6CF#ge)n>&6z5qJYDCfKceI
zW-F6IX2;m0uAJ@{%*XQr2J3+i@M13*=hu0i!EHxz9Wqth<+$1p9nJ|NMRaF<BUkV2
zpFnkwaFQDIL{K0_BY+8UbPIXfQ2+4cj48;NhBnbuJ9s`xjbfYHgevcV8F;4Q^U0EI
za|N7r0IA`5Na@TwZ3?g|lPEdmjQXXbPa;02%%%|05=TXqO|T$uq|#^l1)b<wS12r2
z=O%c_i}a^gvBk6qC0?0<E4tu~PB}w)fl|KiaBBAK7b3nc1h5ojAKTHk6HDZvBZ*4e
z%e_vHD}{Dko&s^O!^4>J8gOjOC~`u&;mw?oW1x4#We;~Z%o(dxZB@NiqfNY{SXqIP
zChGry)0+Bz$#;4}<I>g@8*>xVV@0zSy$jHX<R%BDg~NK+cA=uX1d@BMnLOxy!!R+D
zxT6<-Oo~w5W1O}Z@msMc$bw4H^=rUQqkoBdBQYDc39xH@nRjY}+hH5P0L7(vvwx6?
rH`J?wCLhmVs>tqGQo-Xs80nqpAZB!yZ?{CX%O^hHob^th>toS-ou>*6

literal 0
HcmV?d00001

diff --git a/phishing-filter-ag.txt.gz b/phishing-filter-ag.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..4abe23e9f91de0cd13b0240f8b7415e3278d20d5
GIT binary patch
literal 5820
zcmV;t7DMSDiwFP!000021D#u0uj{&Xe($e1LE9h&Ds9cf1%eJ}(LUs%Xp@(|1RQ1B
zk|>LmY#I6S{peBNqR$QLd(R#g7pFCTi{$>zk3TBgieG;G*G`$8>YE>b`tLvd_}5mm
zL#vGa@w<QF|1pt~|HI$>=Et7~PORX+{79lC3*tCP@;^q=FG=)Ep8qe}|NT6uQJ7zT
z#6LJ$e*A8_^8b*dI8LHxiyPxVbteYWV8WfXgZbs_tHJz)hD>)~9cfQw6oFK&730@%
zU()?|^!|flqBsAa&VSq9x?+(3(bLG>GW8((E1T>8k3TThZn}@9EZd2;J&d}!kgtbq
z!ha){P=ZnZ@|PH&w8;4`?1lY1(zcG4)M*?rt$N4gM!Gj7ah@jWnovYU7`qczvGAnM
zM%gt#29D~i3>kY7>b6}?Ri#PoovMarqBMxBDu^-V&<b-1ox~sQRgy<}i2+xg2xWGh
z@pVmO5RwUvVAJR(xX(0;QAx#!Rk{yb-L!p}XF=kuA;Xjr7Cnq)Q2c$UR(0rdA+!~t
zocdRTo_ZVHEG5drZkhXUi*O7kY&514A(<|s4<{2InkR=<v!IhvJ(e3xy)#`gu7yoF
zKbev4!e$iWIrXj|+-8_)Loy5xYRj7t{|^1`fZerEax0oqxB5WZUI|DwsOmV$;v~*O
zI$bVLK0A%=)r5A#aW_B7lT`!k&yM7(3lnnjZ0x9NgF*Fs(vd#kg!CjB$kGa!ZFrV?
z>`ZtPG*tZ6V`_=jqZ&pvL#&~)&n7YZ*56x#Nto{EwOodwU4mYp0;_{jFabdZl<-D)
z1T%8gPS>4rVHg=3GJYL8LnicnnI##m5uQET4)fo%d>U+T4jos$)Q$=jTkKEJc3H2@
zS{M_|DY>_O^N?G67Q2~##*vrM(9hbdxDL$`Ax?yjVb!R5=IlAD%g+PA0aTw>(XVji
z$xpUn#5f~3VJ?J;{3m>>>9Huc=%T1U^5GY-L}iiu3QJK%)khYmnft<EAlDFOC$98g
z$))r+rg0v*i$p#}_u}MuT5sdB!$;whB)N|P#!DuTy-o<Oy?uqMX8<#k8H7=j2{=5A
zA));h0Su#=rDtYq*|7gnz>nNUH5Z;>PG*h4cDm&O931^eyKcQu)rV@l|4OqwimO#S
zC32xck-jV2w(W{J8HZ&eyS%xWU6M3ssSbqZN~C9@3Yqk2-^kgV^CSz^AhA{#J6hEr
zo&!Rd!AT>XvB}OVWRgFd%sh=#pnLF(U?H9eiM8lnDy}x7pu(1E->=s$Y?Vf7y&>h<
zngoDguE9}sf{GEgfJBYo^t9MsFI%ls)x18wW^{upHVagChBByKXBdhAbl8be#Bu0M
zIf_<UmbS(u8C2_;WF!+C$w<s(#RS_aBag7`)vJ>aA&A=ek+?h)*y)-M`UJ7rbSkuZ
zh>;*)d4Nu;MHp@1SO^WUYcg;dniTml5X9IZLPn+79`<+<G+7V+$d^t=!7u^}jdnp&
zD>DF#qI5E7m0VVPVMGlY`Rlw~o|Lu=25ooR1Sw52R(rdRqmY1H5EX?PAL4wY7zV#o
z9Dr*;7SfR75~oR)=2?-KA&(oFTV9h%osuae-QZ@x1gq`9#~U@a0jTH=;|cnOc&4#u
zs}F#I+om0{;jcj_KthJ)XK@6J2A({u=|;>zCL0T23WhBL66&#ek%m^UdG-!Rq@g{<
z;W#~sRhg#wH)2avw?LS}?nVK)%RO6hD}$5U@Maeea&JgntYHxYP)Y)&E%7WHZK<DJ
z`pCc+%sM*?Du+vX6o(SEfD5?aH05J;5o$FWJm1_<)PpjOUDxnA6fRG^h$Cd%E>OtU
zd!DUT9sQ)$c|1_ohJnLcQ_k4l6VEvf?>R5ybWImYDy1xfqGBw_NXh~l7j=+ToDviU
zCCMmUGDt^rT%bo0A1fK2^e97@L9Pm$pJUO<GSYvL;<Nc(a$K~^c~6LlCAz_e(xEOO
z8$qc-_wYiVoO5UpVo4WvdhE%#9tGK|RbK;fS~d@2e>!%%H?!x68m0r{gYzJTeYZny
z_S(9l3BY-Jjy<)sVEK@{Xm+Pze+x2W+n$gkg(2-)*a9K6bs%wTb%O1XdU=Zkz70E~
zrC7fX2iFTG$AR`8;(RvSQCZ|b_);g<`S@yLVb{>mrSsmdu#D*Ux|@)3{7QK?zbi$I
zqaM>NFJ@GiSn&;okPGwzMrT`Qm2t$`1vrr){%kEzEMh^J^tM<#2{n13tRzfOtq%d2
z)$pc3iE1GnUdTWaW5iCY%Y@_>lto=^g$^F;6z|u$+#5-PoZu6<FFZKP7C$3*go+K(
zOO_xzlp6aM-0BQ)EWFp_t1f_;ZpN>>`x%(Iz2VCTOHUo(yA>Mu+R^HJ2@9YWhg@M;
zf*Mhf-V6|pSxHg$lZ7EU0Uy+ZhJ>N^y6?q7dvK;4@|2o+;OSy|S*G+5HzYcB6+K>-
zBvQj^8(e^QL~yI41-}(sfh+T(M=9W$=B*1XmfZV&?9oI;QB-AAc&w#itmpLDgs_MQ
z31h?FJN!2u#6^WS4ESud!8Oal-4AZ9!QvB!WAkn9QQ>G$f^_NtC=TfeK?eweFJEZJ
z326el(<pRFP-L|yCG7xlYOzM0pf~|Jz`u6v9cy-Kzlu9ME}1!874wDfU#jQ8CxNj@
za$lU79o0y%ADFLY-Pd)W%Qek@AzZkhoi%nECB67+QuoV0BS-v`vBXa1_hz~ts{Gbj
zq5d=1?9Yn-9`QEG;yAA3EJ@S2&dW&+g-BUl)@?c#zwOWkX8(KePaQ(i-zSlqQE>Oe
zZA3Y>?ed$)S_M*QLr{`Tu7=J$LKFMWp3gRHrYE)l{1QEF;W0jwao{X`oW@K8kf6Om
z_BWnU1h+#4XChZ<If_|{lV=4DJ$Mc(Q0j4^lrO~Xl%2W`O6>(UD^!qIRpJ>~cj9_-
zP<$xc?+hux<xd&1^oc9{40%!%KWC_u`ZEK97yfrYd1Byh=!M)J4U!PT7F!q+<Go3B
zD1={5;*uI_T9@aP9Vde<$Kg!RRueq2{&iVSYd}1&wSdKv26(4yTwL58JaAAAa}j2M
z#%Yd!We~@ar%G01XCuICDDQzfl?faE#rMrVD!(4IX)ntvt(BJZfwHO0s%?x^C)J%g
ze0|GUdzjR|Ov~D5qI=2r>md#VRe7&!fZp$^<RH#kA-te2;apEaUPm5NI<)a2;3n=B
z<c*vHpMI;q4y}T)-66_mEeAxwR!6mGXK3nLHm#Av!N9l`s(`f2w`-kTBx_ntNgJ;_
zo$19coQ2m4_D*aGCH-*{gN9PE-2F6QVPk+0+b&kIb+!X=Lgt2jT||(^nJ3vJ1M~;p
zli+~J9-hwU%XOQp1JAZ4JGBN@H^M8gv|366zjbm(9hAjc?wQ90)8KX>mn1$+aN}@E
z(gEg{zmf096?(EQaL)V5_MPL_6m*K;P_H}C*>D-=&WBxWh|>=h`<3w?22t>D75~Oi
z`WU7|k-0NTPs<q~R&<JViej8qQ+Lg1!R<(1A-O0EJJjL)@UxDfBv@!ShH_C)+Hp_<
z<@%cob>yV`F$y$<VARAW2yP&!j`hgfM<l==@O0cDyN)a<CPqlcv+|D9ac+UX*QSW9
z<<7cL?2bB3N76UKQ>VFob><M9+!4DCuCD6P>dXGYfk=tX!-O~rdvOZjtbPdY=Y7ZH
zonoUlT3Q&2OZKBXLH_P^ojQoYoj&e6-+r(89mYfqotCgqo7J60rx9!&vUDXbB#(F-
zrjvC#Q*UU~F}f=ecRU%)O1HOz%FR-=t3w*2TX)XBRm{mK0VkFFkx$Zdj?|sIbKjjq
z{C`;p4CzkquhWqh!V1=9?25ihGpJgKI_{5e)m)D-+AV~g=Iyk-w1IU+ZoKvPUa{R3
zPWqj!H;8j&gy|q~8Jh$SZIJ8f&RcD$VfAJwU&kZ&K!7qv85_D<_`Lxd=`@<@>NLh(
z0v;4}fm(6YPokT0>fvTDEPKOn+ufjqbQ=xb*%iPEvjM6PSNI}Q9mKd+mOkm}G~w%;
zOAfHagIsNF$S!lm#(o@kBq@#l)sv|!)VgK%`x*0kG%^F$!kSeZB+16U2C{?~x7@k^
z8YbFwk32mHrrd}RgIHO^AcWCf=uXX^lpaOiNDx1`iy`DKQx5RUWnEPbs_S?2n=uU<
zB7uhl?`M;b0%x@!?T{1PAN6yPxJ!(UN`|8jcca7_0BBLt!Wy1-4=pzUJDs~5epV)!
zs~2rxwQZN>R>OR(a;{c{BsHkR%k)4*-Jsiht@+(cAy|N>L<k}iR+fO4EF+?pxnNRO
zf{}vc;h22yQI=H}6(W;@Woez&QC!w3N(B~ICFixLM@_2~$Tblq2f(GZj3S!mahxVO
ziK=+pBZ)cBI4knHh%+W=or)|c1s55H$q_xbJ+SJSGbt)sWwI>lG7_XHFkMYp$$fK3
zAw``g1iV>RVOdqlYD%g+ra8-^ZI6^>1+P&N$*j(zvciH2hmPV@lq3TD+w{n=XI>=<
z#!Rw|6je>rtV{$+SV8LCGe;4ToD;!{n361#kT0uqUKJvzRh)5Ok18QNrA5wbNT)1l
z9b-c|At=`Jf@hu{P;Ej96kW)SaaO0Klr+XFi=-xrM^+^hg>dJEB`2ATd6fytBPr_~
zw5m)!J!H;gT4Y(yqb!Mwib}$G32UqBh%?VVswf5iF5`^UNrozll$5a~!xTwT6_NDx
zh>I8|foN2UOhEHFv?)_`$&w@!v9AX(b%bKJf*z`b)|}-6;)W5Vyb!)QoJ4bq8aS)6
zjK`2wo<JeA%Ck!P{G+O5NlP@>1<hoXk&Iw7dBh<qUX;E$sBm^F;~e|oSx#Xg1rw~w
z;aZe)PY<5Q8QLOPF6KyK;w*<*l1OGzEImG0$3;r&l9!P)DVo(a22Rq1VkW4^+k>Tq
zaCihQvoa<mD&^HMQ_8DYdVH|1VyLf-MFdME=$%(dBxDKymr>#KD5y3SQCUZInrE;L
z8b=IxGS4Yxg2$DwN9}IdvGcObk_y{!`>LzNNjfi>rw1v^96QM=Ng*vl3!Y>N3>og5
zQsL1c%_9QC;6+`-+M^1)PD>O45LA?MQf_;&2+DPy8X-c(oI>@m;Ie{?rK}dj(*vXB
zQ3MS`Sb34w1>7*@BFWvH-X3WUGbw9$AJ0T2D2$2aGRtB0apdzsmeROJ<fv23Aw^b;
zl*E!t0^`k78hLxvRmAgza@1ZN-%xf)*rtd}$xG_#QSn%is?Ip{5y=>~!O|j$YgVKQ
z6uIre6PS1gLq{~oDpnH2-ZX+jSVBl$_<A7D#w13&Kvt+=8(ASD0^^k&*5i>CuMqW<
zI1{-<v_??FGNB&~QP)t5r-w-ETna97f*chmWlfO;P=LZ(YA0q-k1Sy{Pb%0fVtbiZ
zxd4BT;0s@qdF<;!q|D*7dBn1^VpOEEED79@mwA+Wb}l0q_M@61G`g@x;7l<?D5<cd
z+UMu8OrQr0M!}w!8I^@Z_^F-Rvw{`A9unqDuz^@)$dpKc5U)r|Y$s*W*4i6jtahSL
z0%~bMCPe|8PFf-U#UAi;L|xY%R)Fa!_i{GkxUSPtVPgmYA!9V>BuF6@&rpkLmUV$O
zl08@M@ZSO$?!~rn8fn-pUyaUaKR<vZpc=|Q9=6L@ToIa+Ej^P6t#nJTPL|EtW!q2}
zBueC#4vob`dOGk#CPlubyK90X-O^>v1@o+^yX=O;#WQnHmt8&Ywhe|PlRie<2FvVD
zRov6i6Pgw&E4EFib1ZaudNx267cy$nPc0eAaZ<Ub$R0)K4qv1?Z-D8D(y}2V53@2z
z+zDTu;Jfd1Zv^CTXK@9}>)Pr@zoKbn%mgfbf=vXI@f3dGJre6%pgSdgA%FKEAcV%s
zA*JOovEDuX^IiOp?QlE^sn*w6aE?~1MyR$G)1Cx%o_I`qoKV3FwiO6U_5OG~sXjEj
z=Uu^gl2%UPaT4ZH@tDvG(gnlm^-9yY3aCeIv~deVdLtAnDsnvmcpcChVh*in^;RaX
z#fp|S<FLOzp=wws`&px0Y4-cp%;VV0ezcuCD*D)aGFEqDJYAbVaiOpS!{ag6?FEj-
zKhiVtu@h|1x;xiT?S@@NsV<*~xL04UaJ9d-#`~p%S&S9kCsxXC=cK9cXwEQ{!SjUO
zx|b;K2rX#b)8=4KH&*b8*UQ+us@t7oVWq(w{}nvRU%`|9D$kZdu*WOGb*#VDq)9N7
zR&i`)ee|-H&y|f4cVf&!yA#8xIx$?Y(cW$YZ;a!>TtHd(cQ01qz8Irjke{|*Ak;i7
z<u$6?LySn2!<L$ihjdG=j;V*Y2Oiu~=Xy48)cLj$-@_}jbBcBc2X6#(c;0F_g5Uw5
zL>+xNiF{*uKY&Ej$=y(;pKga940%=ll%W8&{wYK0?i2hB+C53u{rv?3cZ>h95fA6L
z{kXJX5#T<LaBu(Kujg_^Fy!LwV%Yk?$mm5Mhzj)>?w|alyVYL<B4d_t*U{B64-Ef#
z&|_SD4hMaLQF8Y%*`3F^n7&@ymFLl5?zffS+VN}GO?L6or|Ti%>m2COFuA7$o*sQS
zb?SQqCML@^McqT*)!*Iy>-~UF@i@W<D78W*<azsI+#B>(ec5@T=VzjsbC>5uZ;CuG
zKHYuZ!t4FOwVy&hu>*(ZUgxEtpBl)l-*>ttoUA%qV%+Tzq056Hkhd?pzHx6wUKj6<
z?2h25w!s}$Yy<0^>C&x^9bFo*<MrW4_UY~Nn&;Ci=@(C$e7fne>R|N&5W8C4W?9u*
z=1k?Z-j3>*$E*M6Ysa8YiU<C+z3xtzaai}!!d;ZA=WM!HYz<<p)*WOkTEt!G^O}j>
z1Fi@1vjd0S0N72d2btKDwbLHR2Z2ooDJuP~RoRic8>+Xxjsi8sbP&@)_q`5cRA`=#
z06!h!AH4k0`tIX)xqjTYZJ@OmX7<wR^*Qns-X8B@E9}r*U+p}`npkiGqp=u1aMQd-
zn)sO!zIc-UbZ~cS`#EHbe)#BZ1_yWI#Mfmo!FBq_b2`k2<grui;I0aQD%aQN(EKHo
z<Cm>w^_^57$afNH9}YPg3NZP$E+i{Ab8p-qwdg)@PhtJfCnhso^Vxl&Narg#y|uOd
z{IRWL?dLX!0Y0?Z;rOv_?)bMhAd$7ZOeby)yQnu(7wBH_5#nBnb|%W~dNQjxON$Md
zxS|<im3wUjgw{M>{JZ!5Z=+B;d0v`4uXRv^nc(^-YQ}#0>z7$)m&*_;_E6Pqvh4%4
z6KRFD?yqd@_8Rkc!MR$b9zAzSH!du`7fjiY!`v^L_|-Dsu-S<?1CmI0f#kd(6@Xyl
zKv_VMZbc|g!@77okuzfN>SE?z2ed#Cv*%V11c8FfJzlZCR@Lm*K<P$U58oX5akl+B
zOFU_-@OO1|=jY>b?QAE69v9oLRS>lUQQWQ8Vcnr6OO%zKMHyz|B#qaecJ2e0RUL@F
zUH#9DZe@Med+2MNq!dWzQ{YaHw<<f2L|xW!`$l*rjkB3f!d-F;#rJZ%!1F?~;#EX0
zWT&qmq^Bw`KKyCX;x6@IM(#TByB#hnZ;ydl9<MN)fG}x}o>!QVNZ=}+#~**W7hKyN
zUW8H>^)#ZDyTxxcBPbz8z25Xi^y;jkXlvcetf=-4bLsczbya;iUD)g8-v0rjneBCp
GIsgDuxH3)v

literal 0
HcmV?d00001

diff --git a/phishing-filter-agh.txt b/phishing-filter-agh.txt
new file mode 100644
index 000000000..7e2b062ee
--- /dev/null
+++ b/phishing-filter-agh.txt
@@ -0,0 +1,434 @@
+! Title: Phishing URL Blocklist (AdGuard Home)
+! Updated: 2024-11-25T00:20:55Z
+! Expires: 1 day (update frequency)
+! Homepage: https://gitlab.com/malware-filter/phishing-filter
+! License: https://gitlab.com/malware-filter/phishing-filter#license
+! Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+||1111365dh.net^
+||12931-coinbase.com^
+||215323.com^
+||260aesthetic.wixsite.com^
+||3650947.cc^
+||3659ll.net^
+||83291-coinbase.com^
+||94-103-188-123.plesk.page^
+||9825057365.com^
+||abctrvabc.com^
+||access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com^
+||acclimatizable.fun^
+||account-update05.myvnc.com^
+||accounts.google.auzen.us.kg^
+||activebusiness-unlocker3.com^
+||addwsrbh.green^
+||ahnp.vercel.app^
+||aldg.ldgknhk.lol^
+||allegrolokalnie.pl-891241214.buzz^
+||alutipcentra.pages.dev^
+||ambil-pinjaman-daana-payleter.xforms.web.id^
+||ambulatoriprivati.it^
+||amev.ldgknhk.lol^
+||antail-conv.com^
+||apply-now-to-receive-badge.vercel.app^
+||artsea.pages.dev^
+||atmailupdatewptnskmdinfomailacct.weebly.com^
+||att-101072.weeblysite.com^
+||att-1041page.weeblysite.com^
+||att-105714.weeblysite.com^
+||att-105819.square.site^
+||att-inc-107097.weeblysite.com^
+||att-login380.weeblysite.com^
+||att-login522.weeblysite.com^
+||att-service-102155.weeblysite.com^
+||att-sign-in-105669.weeblysite.com^
+||attcom-100762.weeblysite.com^
+||attcom-106808.weeblysite.com^
+||attmailservicenow.wixstudio.com^
+||attmailservicenow.wixstudio.io^
+||attmailsrvrdesk.weebly.com^
+||attnewmaill.weebly.com^
+||attyhhhhiiii225.weebly.com^
+||atw-tau.vercel.app^
+||authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com^
+||authsyncs.pages.dev^
+||autoreplyattmode.wixsite.com^
+||avoid.hold-managert.com^
+||azbin.ir^
+||b45018.com^
+||bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link^
+||baiii-wong.cutvi.cfd^
+||basvuru-online-yap.vercel.app^
+||beionfidi.pages.dev^
+||bet73nn.com^
+||bet83039.com^
+||bet83054.com^
+||bfrescentremebermainsetreouytnoy.weebly.com^
+||biggggggggggg.weebly.com^
+||bitnode.pages.dev^
+||bitvavobtc.com^
+||blackhere11.serv00.net^
+||blss24att.weebly.com^
+||braucrarasuteu-2470.vercel.app^
+||bt-102124.weeblysite.com^
+||bt1business.weebly.com^
+||btuan-dan2-resmi.top1.my.id^
+||buildingdesignsusapdf.s3.us-east-005.backblazeb2.com^
+||business-page-property-897432967.netlify.app^
+||caipora.xyz^
+||calm-pothos-3b24c9.netlify.app^
+||carrefourarabiank15.pages.dev^
+||caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com^
+||catgirl-appverset-nya.pages.dev^
+||catxtokens.pages.dev^
+||chat.94-103-188-123.plesk.page^
+||check154109.click^
+||checkseven.vercel.app^
+||ciente-a.org^
+||cieplo.app^
+||cj12143.tw1.ru^
+||cj87335.tw1.ru^
+||claimyourethrewards.pages.dev^
+||clickbait.design^
+||cnsa163.com^
+||cock2-iota.vercel.app^
+||cock3.vercel.app^
+||cock7.vercel.app^
+||contact-pro-8291-d01.firebaseapp.com^
+||contact-pro-8291-d01.web.app^
+||creosrl.com^
+||curmmgdv.email^
+||currently541.weebly.com^
+||currently890.weebly.com^
+||currentlyserver.weebly.com^
+||dara3dccj.wixsite.com^
+||db.service4db.com^
+||de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev^
+||debutcan.firebaseapp.com^
+||debutcan.web.app^
+||delivery.attempt.failure.ebbs.co.za^
+||dev.stream.mornar.app^
+||dnwqmh.click^
+||dropsmartchain.pages.dev^
+||dsjoting.group^
+||dulb6c5p5.top^
+||ebay-mallwholesale.com^
+||ebt-lilac.vercel.app^
+||echoredled.netlify.app^
+||elbarco.percentadnp.info^
+||eltritongourmet.com^
+||email.mgb.modento.io^
+||enjomugg.firebaseapp.com^
+||enjomugg.web.app^
+||error3456vhubhornbase.azurewebsites.net^
+||example223.wixsite.com^
+||eyeydhe.wixsite.com^
+||eyttueiu.square.site^
+||facebook-avip.click^
+||fame.pink^
+||fassehoizubra-7696.vercel.app^
+||fastdropchain.pages.dev^
+||fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io^
+||fla-1001.square.site^
+||flo4211.github.io^
+||fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com^
+||fnuttlie.wiki^
+||fokeijonnekou.vercel.app^
+||fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com^
+||free-verified-badge-form0-service.vercel.app^
+||free-verified-meta-badge-service.vercel.app^
+||g06668706.wixsite.com^
+||gccndbqg.vip^
+||geriodememerkezi.online^
+||get-checkmark-for-you.vercel.app^
+||get-free-verified-badge-service-on.vercel.app^
+||gitanag.broke-it.net^
+||gruprocuroipra-6493.vercel.app^
+||h5.b9en.com^
+||h5.metacoint.com^
+||hcghij.top^
+||hecregayatu-1014.vercel.app^
+||hejmtxxt.guru^
+||helenblunt6.wixsite.com^
+||help.accountsupportcentre.com^
+||here-apply-for-page-review.vercel.app^
+||hgbk.ldgknhk.lol^
+||hhideiie.wixsite.com^
+||hitummoinneullei-5882.vercel.app^
+||home-101067.weeblysite.com^
+||home-103465.weeblysite.com^
+||home-104341.weeblysite.com^
+||home-105266.weeblysite.com^
+||home-105929.weeblysite.com^
+||homeattatthome.square.site^
+||hpnefhqs.motorcycles^
+||im25.net^
+||info.supercitrus.ind.br^
+||ins-business-home-center.com^
+||instagaramgalochka.vercel.app^
+||ipv6.43-135-137-110.cprapid.com^
+||irmt0ken.win^
+||iujf7839iofvkbcu748.weebly.com^
+||iwimwmiwi.click^
+||jagej73796.wixsite.com^
+||jfdjy.com^
+||kalyani963.github.io^
+||kexoigrufouddou-5902.vercel.app^
+||kl1k-ds1ni.neupdile.my.id^
+||kliind08.wixsite.com^
+||kreelo098.weebly.com^
+||kremlcup.com^
+||kshitij12375.github.io^
+||kucoinglobal1.com^
+||kxbztydc.black^
+||labanquepostale.jupiter-analytics.com^
+||leddevotoze-3146.vercel.app^
+||linnkdna-kget.wxxzsite.buzz^
+||llahi.info^
+||llahi.vip^
+||loffaummuddote-4145.vercel.app^
+||login-att-10221.square.site^
+||login-form.world^
+||login-online-outlook365.com^
+||login-outlook-midstreamauth.com^
+||login-screen-103134.weeblysite.com^
+||loginaccount70.wixsite.com^
+||loginaccount77.wixsite.com^
+||luk6414.wixsite.com^
+||luxlifemiamiblog.com^
+||m.meta-accessibility.io.vn^
+||madebybmr.fyi^
+||maqpiexyz.click^
+||mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev^
+||mayfair313.wixsite.com^
+||mdbrvlfy.black^
+||mesageriepro33range1.weebly.com^
+||metamsk-wallet-3.gitbook.io^
+||metttaa-audddt-new-02.firebaseapp.com^
+||metttaa-audddt-new-02.web.app^
+||microsoft365-storage.github.io^
+||mikepattyjm.wixsite.com^
+||mobilemidasbuy.n3g.fun^
+||monespacepro-client.3utilities.com^
+||monetization-violation.github.io^
+||moodengsol-net.pages.dev^
+||mwsiekdnfjrdufs.weebly.com^
+||mxmxnmx.mx.zya.me^
+||national-au-b.com^
+||national-au.net^
+||nbaaiqjq.group^
+||nexomyacwv.weebly.com^
+||nft-time11.vercel.app^
+||nichcheck.weeblysite.com^
+||ns1.carrier-ast2-portal-apple.com^
+||omadshf.ru^
+||online-assist.live^
+||online-promo-asb.org^
+||openkimono.pro^
+||opportunity-verified-status.vercel.app^
+||ourtime.reconnect-dating.workers.dev^
+||owouwuowo.click^
+||p365kf.com^
+||p4zv8crnrrha27so.94-103-188-123.plesk.page^
+||page-center-manage.com^
+||pavan-patil-22.github.io^
+||pecinternational.net^
+||peesom.chat^
+||pencairaanndannaa.my.id^
+||petty.wiki^
+||pimnhv.group^
+||policies-business-page-service.com^
+||pottatrebewe-2808.vercel.app^
+||pqo.hrf.mybluehost.me^
+||programming--service--panel-totlyy-free-for-you.vercel.app^
+||promo1.spik.ru^
+||protocolsecure.pages.dev^
+||pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev^
+||pub-1778406e4fec4394901793111c187dd9.r2.dev^
+||pub-19b834342e7d465b9f00b3511325a081.r2.dev^
+||pub-21dd4dc659614ceb93e45a6de4434502.r2.dev^
+||pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev^
+||pub-2fefe932a6974485b987c9ba851b5c40.r2.dev^
+||pub-3a46d9914f494078a6d6237513e7a096.r2.dev^
+||pub-442ed822851244a689b3472ea2c6a950.r2.dev^
+||pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev^
+||pub-682ad3b65d944376b919745aae3c56d4.r2.dev^
+||pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev^
+||pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev^
+||pub-7f5cf36445d042168bfacd712e890dc0.r2.dev^
+||pub-803839714a924882a7bcc2495a26860f.r2.dev^
+||pub-8161de4a277e4ee8b532af34954224e1.r2.dev^
+||pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev^
+||pub-8376b5b2334844d193a525d8b8548fa5.r2.dev^
+||pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev^
+||pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev^
+||pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev^
+||pub-9163a97d70394cb499bdd232be6c2169.r2.dev^
+||pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev^
+||pub-98171471e0944ac3a5820ef719bf0640.r2.dev^
+||pub-a263e0790935412eb10cacc55bbced18.r2.dev^
+||pub-a291041b077742899b63a9982f04a56c.r2.dev^
+||pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev^
+||pub-b50adc5d699a4f08aec37102c2103da7.r2.dev^
+||pub-c0a934c950e441db96b882789f53c9ea.r2.dev^
+||pub-c2c250050109456396c933de259a4fea.r2.dev^
+||pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev^
+||pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev^
+||pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev^
+||pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev^
+||pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev^
+||pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev^
+||pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev^
+||pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev^
+||pub-e42cb528b102447385e3145197916f51.r2.dev^
+||pub-e4aff507450c478cbe3f77ad23d75035.r2.dev^
+||pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev^
+||pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev^
+||pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev^
+||pubgm.club^
+||puffagroibrouwoi-8818.vercel.app^
+||qasimk.com^
+||qfjfvseq.info^
+||quauwograssodda-3503.vercel.app^
+||qysgyp.com^
+||rajdipchatterjee.github.io^
+||rechazaroanularaqui51.weebly.com^
+||remote-fix.pages.dev^
+||renggard.47-243-192-240.cprapid.com^
+||resolvepanel.live^
+||resolving--issue--with-us1.vercel.app^
+||resqat.weebly.com^
+||review-business-case.d2f7p3b7pucnle.amplifyapp.com^
+||rlpqwefi.pink^
+||rouloigeilleuja-9523.vercel.app^
+||rulemec.pages.dev^
+||rutinqqwin.shop^
+||rwftfu.quest^
+||s.team-pw.cc^
+||sairanees.github.io^
+||sanseipecas.com.br^
+||sasklelo.weebly.com^
+||sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com^
+||sasktelcustomerwebly.weebly.com^
+||sasktelnetwebmailservermaintainance.weebly.com^
+||sasktelrectify.weebly.com^
+||sasktelscrutinize.weebly.com^
+||sasktelservicecentterwebly.weebly.com^
+||sasktelsupportsystemwebly.weebly.com^
+||sbcglobal30.wixsite.com^
+||scan-vulnerability-guard-v3.pages.dev^
+||scan-vulnerability-guard.pages.dev^
+||scanner-metamask-v1.pages.dev^
+||scanner-metamask-v2.pages.dev^
+||scanner-metamask-v3.pages.dev^
+||scanner-metamask.pages.dev^
+||sec-sign-in.info^
+||secure2-validitycheck.weebly.com^
+||securecapitec.theprimepoint.online^
+||securerpcfix.com^
+||seeteressecalywoi.github.io^
+||seivviice.weebly.com^
+||server.0e7p.com^
+||server.2rk3.com^
+||server.8q3p.com^
+||server.n6b8.com^
+||server.v9vs.com^
+||sevvviicess.weebly.com^
+||shard.blue^
+||shard.skin^
+||shared-d7590.firebaseapp.com^
+||shared-d7590.web.app^
+||shaw-101329.weeblysite.com^
+||shaw-101587.weeblysite.com^
+||shaw-106427.weeblysite.com^
+||shaw-107375.weeblysite.com^
+||solutionwebsitedapp.firebaseapp.com^
+||solutionwebsitedapp.web.app^
+||solvetans.firebaseapp.com^
+||solvetans.web.app^
+||sondfrom.dexlog.my.id^
+||soyokai.or.jp^
+||srdate.club^
+||ssy.hmb.mybluehostin.me^
+||steam.poweredartsworkshop.com^
+||steam.workshopsreview.com^
+||steamcommmuty.com^
+||steamcommuunity.ru^
+||steamcomunutty.com^
+||steamconmumity.com^
+||stepsray.vercel.app^
+||support-metahelpcenter-id100003498934.netlify.app^
+||sv5gardens655665.weeblysite.com^
+||system-portalnu.duckdns.org^
+||talwgam.njmolada.com^
+||taste.baby^
+||tele.zhngain.top^
+||telegrambot-resolved.pages.dev^
+||telegrazm.net^
+||telstra-100408.weeblysite.com^
+||telstra-100469.weeblysite.com^
+||telstra-103234.weeblysite.com^
+||tiktok-888.vip^
+||tiltckshow.top^
+||tnomwzrp.top^
+||toeken.im^
+||tonic.pink^
+||tooma.cellinsurance.co.zw^
+||tpdtepremu.xyz^
+||trattujeilesso-3354.vercel.app^
+||trbinace.com^
+||treibrukeukonno-1395.vercel.app^
+||tuesmad.firebaseapp.com^
+||tuesmad.web.app^
+||tyyyyyytyyy.weebly.com^
+||tzcsjfto.chat^
+||u.updatetrackgre.top^
+||uc-whatstapp-web.com^
+||udxcady.wixsite.com^
+||uklifejv.cyou^
+||updatemail12.wixsite.com^
+||ups-trackdeliveryapps.chickenkiller.com^
+||usbest.cyou^
+||user-transaction-overview.vercel.app^
+||usps.com-trackdck.top^
+||usps.com-tracklnv.top^
+||usps.com-trackmcl.top^
+||usps.com-trackmec.top^
+||usps.com-tracktpq.top^
+||usps.com-trackvmd.top^
+||uspsinfw.top^
+||uwdtsczi.top^
+||uwm-onedrive.com^
+||vaishnavi1436.github.io^
+||validatie-veiligauthenticatie.com^
+||vbbu.ldgknhk.lol^
+||verified-this-request-badge.vercel.app^
+||vo4zzp.icu^
+||vs41.github.io^
+||walett-cont.gitbook.io^
+||walletauthenticators.vercel.app^
+||walletcomnecitt.gitbook.io^
+||walletconnectdapps.online^
+||watranfart-fdd6a8.ingress-bonde.ewp.live^
+||waxed.wiki^
+||webmaillshavv.weebly.com^
+||weeeqweeattt.weebly.com^
+||weigh.skin^
+||weigh.wiki^
+||wgqdqvtn.baby^
+||wgqdqvtn.pink^
+||whatsapp-rqr.com^
+||wirelessvoicebtpaidmailinfoplay047.weebly.com^
+||wscs1231.cyou^
+||xn--metmasklogin-vcb.gitbook.io^
+||xojautruffeuttu-4659.vercel.app^
+||xraiz.info^
+||xraiz.vip^
+||xsuweamskeidjf.weebly.com^
+||xya46.cc^
+||yahoooooo-108560.weeblysite.com^
+||yavanica123.github.io^
+||yi5lq-syaaa-aaaag-acfsq-cai.icp0.io^
+||you-can-receive-here.vercel.app^
+||zeiitgeist.angelocachero.info^
+||zenixoikitti-5809.vercel.app^
+||zeznjx.shop^
+||zwzcn.com^
diff --git a/phishing-filter-agh.txt.br b/phishing-filter-agh.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..773a5338579d6cceeb26a2754e4ac34b664675d9
GIT binary patch
literal 5247
zcmV-_6oBjDkdYyxm=Ay=WSIN^sXo#7(^PLZWLTnr={C19{C|Oqge`$guq>bb|L6L2
zCAF%ptWe}CG^r|Nxx)3{_g+rl=VajYea`31#|)j%$;%SX7SpOl$Q0(JoCQExPeP_V
zTa1kBnha+XeNmtkLgbRpRYt4eOkeOZC`ne6zy3V8xV`=M^Y>fsTQ2L*6-$smj<DxG
ze*Wk$;@?eZ@u$J2KmO&{pMN>$BjRsABKB<%&WX_f%-C;&{igMQ{_^Y3-+a#8u>bbM
ze<IvJe>B77PkKILqJ+C1s4w7z6@UBL#yBN1Yt3T^Psu3<>=!g7jZOaf**2Qi`pd6B
zI%`2!Q1`pT)bh)(KWriTZ$AXVqVS#nXFqEm+pMoSk8qWr!e^`N7yg_`2K{RoK>WS_
z@_+xwIp=cGal5t)|KG%k!bwg-&7~An1vy26Ybj*PkroEn$A%*Zdgaf6u>AeVMKh-i
z4Po8p_Pze+u~N7*bBb^#3AdJTA?dkee^LTtftgllrj1<mB(uSX(ca)gVonIyJ7vEH
zItLqr2GPB)d!bqpG3L{iC7c-=&L`bwt;@XU14jNbVGm8SYzFHrgK)y0n5M`5F7t;H
ziB8qVJ}JyE7CJk9uKV7R-^ize%)*&zY{Z-lF<!m-jS2#$imjZ@&knd#IM4TE?Qx}h
zT%Too(!K8cYu#~eb+1p@OGbL`#5yh%7hF+4zu$txbL2DJ3j`81(`m$a?o}Q>@8rzo
z0S6Qk0Sb^4?i~j<`neX_v`#PdG{;Hu=MJN`{B+y~N2Ymvl*V`K4pIi>orGH6J&o>p
z?l&p*BBPRq0rMM)hqz*I*V;zM<_?Yn@;(BA*Evdm9x<0xa}EX}40<8@{hr_SF$iaz
z8S!o7Pf|ctd?xeuxt`i^b?CO-QO(Bbo_)QUOIWXuVa`mB3i3ls%iiCT77bVKiSeT%
zoC&UV!TaR3kX&AXUKaN=4)q|MF|&v=FJQ6E0_ACgnoGUpe}~76xfWY3*PY(pEegAQ
z2t~oG&{Fo?(C=;Aww!YoLVs=bA_FE*@oDrH8LB{05XwX0{blt$JBc_j42&yZb8P)C
zp>ybjIcmdmzq{sIBWgsn=$x9nI%4S>Mz;CubD_EYU*MHy+`jz?Jfz!WhH{vF-;d=j
z+Idgd^!n|a5bG!9CwQGvelRad6j|2v?jJ1_&1dQ~if{Lx%d^IF$T^d%mX(G%-kF9J
z^K$xown@yiE4e}U`0<!)Njc_j7keB=meOD^IILvSrQM+wUO5r<&^O|N9@_!Abo}sE
z=RHcj2lG8XuRrAZd>}hnlV<1fhIjQNoB@}aH*Cl`WyTa^Hpr*ndlw3Z;)tSeFhhd|
zeGZ&ND8uLh3g80;7uuoC53c2<b!%g4*y9#K8ula8QBO{fTeUKDLm<!*`s{GVM7yN3
z6BuO>#x%t_#eRn`dQmmADL{<H$wTl6Al4Zrg<DLQd-t5~4(uyHK5GN|xxY!*Wk1MS
z$5uO$UZ~(E60ITP3jrGV4CTo+;j;pC%<;OiT0<atg*TT%Nv#%bXyj|kQ9GFV5|hGl
z*8lpB^+5y}@Vbfw&hw3};~?dRnP}sKk!3OmV13ysXh7(h&9&mpQKYM6ASRcMExBjJ
zW+ZS`T$<K??zIGe*wiVKj*HVaQ(t9`l)7t&d|Wx!z_B%iztUzyLk2zMLB|@?M@k32
zKml;aJPMNQfF`c1hNs*-urbPjF!(_w7H3U}jMJ1GDm)wY9m|5kV09HWtiA1%OquOC
z*7&A(dqz{i5!~8-YsDE}$$moCF%Zd8*uMQnXdq(<4+Yv9JvAonD*BA?4uwo9Eo8AF
z5Ct+2&lg9OjUJrj29zg^5!w3dhI}A@*+j3}(xa%xp{RXVR;HgLK%teAZ>0|ndL(Ze
ze5s@U(Y`2p-)X4y3q=!e>JSyvqqYLAj?K#TIySxpj|`o@t%MD7;Tt3NM;&M#-5yMx
zFn7NMeQG@dZw7j}i8G8I9=M#W0|xp*c7P;f6!7moHjFz)nXiDmhZZWmk8VAdlj1Cr
zf6&qLsAa9Q9caOjD-3$9o|?W?873aD1;5T?t}A7geCry0ynRWfm-jaPR-1_)hVN|X
zrZNpqy?0k3B(s!*H{Nl>ERSPM%oDV+7|CV?-uWDqyaWf*({e^ALGQTL{GGl5F^gL$
zswe1U7@bBiFg<z#q5%NNAIFX4m39CUAk!R9MlO+dz++41P0Zh`5}Z?Kj!vK!k7NiI
zrk+P~RKI6v)W)eFj<F4Nqw6~@%&E*V_Dmz~nG?gTPt1>63O*}tx&ftAOW)sTly@)5
zNdM$3u<Nk?^}Pkl=Ox16lGhT4D}fQ(bK*qQGvq3riG3QpWd%CnJiPf`*|IFwuw{hz
zwT4ilf35VL3m+3(t`QGBus!jcDYzlo+8|~Cf(y{V(&X+tlymG3gWpT6<^w3+U0|hm
zx7bGVU{$;&k1DnrW~=#ZKo;e+c+sY*cZj0IrYR)=pDH3&u!VKY4|)Hl4MW2fZWwb@
zlB+uRfsbQ+K7+2)E`_||j>Ye@49bDsuBV=B&OFcB20*hEYH3KkHXs(l3=)=+&e?VK
zPY2NVw&jR9<2q7#%;TuJ6rB5xnP_Xp8gH-z-M2?t3@z~jrCM}aNz3H4exX_{%M)?J
znP3bU<3FjmPTtOfX?t}VImD<M@8{lp2+b3qOlxR7O$+(fIdW+(k@}XM?gY?bTVOnH
z$3~y~t!ae@$12<<w<ku3Vm{vsRg!S2373X&&YYLM=5`GB#6quJ(jqh;$yn)fP4A}<
z(<m#{mGYI3>&RDDkNzL9;=@Sec&hJ_;$!L%p0M9gvRkAAi{cYMHLq=^I%BMpXva9<
z-+1o)Nn+<E(}MGic}K8pdhR)w=$A?w;PcrK_sU!^W<47odzfchSbfVQKe&)aw~kNI
zBQeDWKFOqy|BgEb>P<lEgdIGT*Tgs_Sld~TdFFwQ1i0DeJv+u1Ys72)B9UAfj<eWv
zDbHAdJXaj_`h31`ENC;b@33X-OH!zYo3PiEU>*k%y$vLaE4{}sLM;hZlorCWkRqU*
z0T8XS$8_ohiaJL;*BWi3MMz#ZIda4{;0{ZQk<cuN=;Lvz@S7^0l7@|>y~G0>eLfcz
zm62xgPyE+7G8{RI%=R^hKCLBjLAs1ILvy8X0f0#JRDb)U(RAm;-M!9?pZm-2H;4nS
zS{fr24(NG?iKL!z9ibqSSB6rcW3&2q9&oQcH_72ig(Ld*-qX!b;=mpY$j*4SDrI<F
z3a6nP#?hbT3iWA&NECn;`feOJ#=sZfFk_5^6uij06X=?U!d3)^i(_EX%LKV-(noE<
zF}sk!qMSF*wfp@zx_9F0^NvT3(EYq=k!#!(Z_fu|2>2Rg!9tSCyIfu*LlY<o0au95
zWXL<${Xba~ctx1L)?Rl~a1cJ+t7m-1k{&J2<bNOa_#B^deCY9^-y7&52yCH9AAw1{
z3Tp<_+ZBoj$gjr>gNIb`Q;!?M^`4hr(jdzrN^vfeT_uMNcsL1#UOK0aHqUxQ??Vt<
z46Rt@Jh6O!Js|ci`I=Nx&Cq-9gSsQu9QuTldkJ*!%ffPjeLV9~OQmP4sW6|-X367*
zIiC7}F?-`hovl-xy7xJyU>IbH6X=fiC$=%DRIfU(S+6QT1*cr}GkyOhPW64;&`N6?
z2-B<c4u4Y{NaJPfP=yoTP{;`*??ebDX*)4Is0=!g>|{O>dp&5(fFuQ!0J#B_5~X+%
zFfb!0j&Z}|-JJO-+k5QU@~b6~zzf5xtd+dNgb58jUPwd)RYKN)^Hu5A5<Tw4Xgyo)
zgDL3)3&szYhZUS8<aU<NA){r#Z^LvR>{i_Ld7Sn$Klc>nmNWp7N+t*PW9I*QPER-&
zh>%1uMk*c@pi3G<N)`hwplK6X;%balY(bSUDCv}A+&IZO58Rp<ojXP6tyEG8G*K<u
zyTq86+RdF58kpsW5<Er~!=l~7RX|rwiAuu~Q7Nf36Yj30kw-tF^;RXbIKvQ@MJ?Jv
zFp;~MVL~SbEY2upwRhG8=fP_3bx_Qmkp#6w=eSDBDP}Azaj_YEaft?)TYOxV5*V!z
zR&${gEY^9cj6e`!0jF#D+J%9RfMMYtT=kQ5DmWeOg4$cIqK~T;5T##qbV^CHc*mVl
z8USU`OH?kV7(jS%NiRu-7@P!?JQr3k!hu*jh6%VJU^2(VC?+1Q!W3CbPJ@%y$cLCF
z9g<v>(vc~_7wZ#*Xt+S@SPbott!2_mXSf0<l(hnk4?!rWK`eG*$;Xs0JfZ?&3@SwH
zwG@z~a#{(Y(8t|!#{_fQSTB_o-o>CX0t#4UT(AaMfzj7qNU5w+kvj=m=xDvw%BFq(
za;#0p8>^LDyh==g0xLkX2=3v5jp}g^jBeuEpo&U+BX9{AtY+N!82vXz%@sGE8KqoR
zB?J?+N(xv~jHe?i!0|<bGtsbJ=K6T$oR3jR;c*FqFIjF0M}z1*c%uvlU?%N#9;J_#
zr^lE(%MDkCBXdeYkf5z#m<)G5vE>knJ%~jjGmbf_6&L6^3lM_V-Up1_K5|F41$kzS
zQNlXsmq$1&R;;UD!edOq7%c&`2dR_-zeJ&gi2zHK9yirDdd(mP9T(@oRnGzjX*d%>
za3&)dX9NaL9&}M<s1%RhE#6vTtV>!3hwyMH5rk$;GtQjSi*yr$lQN>vH9GisONVMP
zjz=36GW2mVK_{iP6r3GVmlLGtZb9uNb1I>7D1oP#z}w$7c=mQ^XIa$3N3NDAd}Pvv
zxM+vmq-eZ5l#Lw0Iu(skEO8gE4RR6Og++>>S7zL!h)OF|F&eIHFrciKOqdu1fLnY_
zm$-1?K>$V-t@lAK$Uq98A~NIS8m)sMxI&${O2R>~QL4a$a84NOZo&KMgb_8EBXMDz
z_c}<f{1V+-l|D>RB6uyV7hVM@BdtcsmDX9kHeZtF@r0B#GfK0dj13-TG6tfM(P$<Y
zS52&U&M+6G?T@Mq$#5Q61RHd6$Lkp<BaC89YVWktM)|ZPE5L2swW}p8S>lxf12EEZ
zR3>t;S}lmepyV>Jomi{~Rosw}2&M#UtJ$|YubPRq+~6p9LC?q2Jel=MkM!>NnpzsK
z3G=c%!tA}q2t;ZoOS${*>wOvx9x-E`p2ooTz)3<R8-@+O&?=O<Lxb1MdQKx69urrW
zls{HUaKo~$&>~fa2q<IgP7tABjO>QJ?r*e=6zi8npzTDi9fV4VtjLwjZi{<v*k3SO
z1*n$Aume&nm`0JzDZM#oD0&V#c{Qu;=j+0hk>V(}I`^7a%=?b>0mNysK0zntc3@ce
zfH`t`y{=rS01Jb&t~Ao5;xl+tI~7s2lJip2@NUAcr6BfAu$K;{V?Hs!+=_xrzB=^h
zj(c5lh`MED!rIOU5uaJZk&1}x2<zjq_jhY0l{St^^*m&!_jp1xwkzH_SwX>Zp;rPB
z()V*1kPDQ6x%7r%FcQuQv>sO2Tgl%7sNoEghh-maqlhO_jyb1I_y7hiS;7=s_5g)k
zElR`{RI=*IT*zB)+<8ju@W#tj2j==86Z9u}^F$9zJPav&OJR_VD18H&HfVyV2;Y~-
zJ%3f!1*W5S3&4Re(6Qm!@_|>q!V0;QZ_&<h&?~t?UKAGgjsf=js(Du~1M~Zx^Ik$o
z!?iIqXYg~0_LQ#nB~w0ES-gG5+r4}3yJ|UokLO3MMml4&gn(@Frq76xM57&pUhHYC
zh>PAgxKQq;OSGA#c!JuRC%P!X4aVu@c@={tYa!KmY_4O|os!y?0Q%uu#<KMMG=V*r
zTB4X!rx8EBiZboqXRmjCLZ-FRM{3@vEoG$JeeXBj4nJj1=JLvW&salcp(;kr7yuK{
zk1DOfL@cJR(-*b`zC%5ZV~#tbW+EhXHqB!AB+#VkZz-!E`C)5kZ*X`2wAaDo5V#i#
zaHu&d#eFiVoOM$1v7*2Auvk8pzG%HL9;6$ixX}U1q;ZC4EFJ$j;eh>G;h^Pl)Ey#Z
zMKLv}s$vY8fIHIfR#pm=a!n8pkVKEKgABZ~-ixM6eGjY!I#+EpGIQxlIA%-atW2}`
zHA{gYA7JF?s83?81;mY!_Yt;n!`1rYQjhD~&M>ti?@^lz>8mA&aXV|&dH_B5c}3Wa
z4E}A`y~Y^_o~dIhX7GIdjWHjXWzSo!L`qG;iP1cUZE1598)o0;6X&y*QVEw%XDf4J
zKOi1WEZX{|jr$Myr>v)%HNK%g(x_NhVp5hEwc9l-J&eVO8Hmu@)CZg=DV{!fo$(VO
z-eaCRp8$K-<4wa|j|fsS4D6-3$k2RtQYTYMWZ*nIy<i3Y1R_`2cT!88T_A2LS#)gK
z)zZbXq81`2a-tj6*$Yk9qpEaxE}A{^3GC(lM2@h-NapCDz&KxzdLOYpm$V;Nm{%M<
zd~;aVL2AKxcKB>1g!6{nw*v3Xm0X5F9D4<f%tH6(J+A^rc(Ih>>ir~M6+{;=FQJAg
z)z{pI#&+_%s_*xtIcx#9cUM9Kya)+(4E^qs2JJxD2y3%S)&?DuWS>K*N5POsArw@G
z;bqZoG^iKs2>VUY21zk4VCl8^Qad?S$p})sPTPOvf)7T>mRg%z-TMY_bl!X+;_E^R
zcgZ8VJ+IrCPC}Goi`Q3ty+`RSl|a^u;L!w6>Gs;Y*-1grpjQ1jkp?sl3@oqb4mVS#
z8O1$xE+ju7#HWza0t`07thv2|Uy(=r)CbJbW=c56m;`{5ZHbXjgZ#DYNC@pYjZdE!
za!Xso93QDkL!TSeGTp#a<iH<g63(n%bj$pP<wXtv<=cN|+*$80(r^9C+^z&d>M#AS
zlbFj)5e~`&*@yXyIgb??58%o0G9gC7hOI7O&=*Vo)cnk2hzd$GS4iKtJU)}Gp6~Sy
Fx(nur4Cw#>

literal 0
HcmV?d00001

diff --git a/phishing-filter-agh.txt.gz b/phishing-filter-agh.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..cd02760153ae6c8bf9eedff51906b151c4d101d0
GIT binary patch
literal 5399
zcmV+y73k_8iwFP!000021D#q+uj4v$-se~JAe#vg>FWKsy95c6#VmqkW|Kt#K4sbx
zDT|bB8S~@wQId6zWp_`Ib8mMav5Hi&o?nsr!;e2J*NWeN{KrYzlhVzPzx?N)e*AN5
z*riq0{rKZQ@qZi1z<>O^>BK+$-5-AZrRT&6{`-$4O0po1gCzfR6#bq=zvuaXgZ{7g
zUJb(j{v-au$^7Gw<HG+#4&pir&1S!bU#lk#-g<Jbx4-}PTLU2o4VmeF>qvVeg9xN*
zofv-WH@UWF%>I*NLfik(<iBs%saWK{%s4PFrs;)V*!=u|{DHMj<F=M^>?GRuGMMH;
zetRk?{1@T~C0OOJe~s~z7CAqKTDbr514*660W(T_4!?{aP2xOF(*3E3h_LP?oMPck
z-K}yvCl-t9tPC03p6a%Ju3e=`{l0b$BSdKsS5*+>9epe8CG^T&h*gqDd5LwN?1VBm
zO!#{rU{He%tzhHe7u{B$#Gs^N#3`f0)-<gS^DIcby)(Qif{6V<dd0u3)2a^q4?<fJ
z%298lX4EcNy&%fNZl3h_cYCT08-q89kc<zZ!_kJ9W+gi{2|8M(A!0CU@0DWM6-hY1
z*@2$IW)Nb1-AVUebSB!6^!+l_@+QQei#}bjk#-$xMKhSzTu7^xfYO4hj*~1-;w+@&
z<FPW0PWA8?H;_f4HsoSjC>>R8&?|i=9nk?NM3bN=b1UFu;a!@cv*At9Q1Oj@Y>6|2
z>IXGJL!ol(xR~A~(~e+mX7sf0vhUkD(B>966AXe0=p>+oH{!U{!C7$>)pb~J)&8w_
z+Fm-Yv^0Jc+IJ9B(01P6<s57a>n0oFyKk<<EcP$>DLF5p!k-eWxDM?V`9y@C`lKk$
zyh}xO`ID(|K&8_v`V~1(ekQaP!-T-cD-ekJ&zMxBA&8f<DC*Bl_zm=^ERtW*iz=!<
z)4kR=VPMZC_T9*p`M<Cz^POXu2JQp>&3sziJVX0VnNRpp_(_udjSA-?<I$f+<S6aF
z(!ib^>}Y#o)o23_muDyke=9j)DLZRs58gQ<Dg@lyZ_99T%!Xt#SmR_`9w5*#b8tK9
zL6r{G;D4uC9>vv@LW!KIP(*iS+qPXXB||@t<dioLdrFe#F4cw5T#589R3Q_c>PAlX
zo+nwTdI{lt=(b8<*43b~;AW8b+2|$}GRfC*JB`B_7!6Jl%;cDNAcE0SarL@oDqNXr
zy$dT`l}2g(`kZI`GwP;Ya**f*6$5OG`h_Pm&Q6>8U`VQ(ub(#>CP2rp;wU#k%hc^T
znIbP-PGS&o9C}BLqG$b~t+h!8Qymu`$jAmV5IZ_C!Uf9cs0+8mUh*k3P!~Tl{Bd13
zF4<KlNPD(Zp)-Aq0<xu5I;s}AtU(+gbm5Yu=Q6Y@>PH}mbwPx3L$Mj`=pksbFZ-+~
zUJ*e*000bbMgb@@6xgEl+ijJcpTaYudV>;hpC9XE+XcOGCu4(@CK;>WCk%s-z!y*n
zg&$tx{8i};F{C)4MUQlDpsG1elPt}%A}>Q8H}IOgCZoC~V@SH*uZ^Xj@*@}<HM9YS
zFcr=a=$RZ};O@>`0Cf)IC*s0i0tNsc26?kMf=dD|UG_mMCe-FvyD|mO6afj%&}`3r
zYj*0{*V8m~w>TWeb)+iOH2*%*64lMnm2js)0J`y`$X*Bpp$k_#FJs!0xY%I;11d-Y
zWgIz*2SWN`tb7|o)n(56LQr{(#iKZsK(RjAeb@XaKA$X}>mV%c(C+Nx&~*);Lg6#=
zHZnkC?F<DUoP8%%b@Vfm4@UruS1N~>rJS+zF?n(tZiOV{bRQH+Dy1xfqGBw_NXh~l
z7j=+ToDx9Sl4KNt6QqN^&M=LLuayjMW{{yz)QcIWbs;)BM)W5=?X+*Y;i6UE(?jGB
z(e*Br9+v<I2udv`h7Yo`O`%14BVE{;L6c#huW#4x^yQNracet39{4m0!Hdsudp6D^
zbzr=4ojta+V0oYW9O4Hc@{F3&wl`E4VM)8IO(0pd9vmH<M6eTT6>m}N4)HEpN(Stp
z_x$h>4h-rs)=G1Oa;P3~@lNd3Yw?J%YiQ`po_5djF7(-SBU1MVt?smMS{1`!hBV8I
z2~7*+Tgx+fK(XNR-e8~ETiksr5eY*6;3#4iGqTb9uydnO;}Nh)!UQ$u5|BytUj~tY
zvthqgO-Za3C!-!CibGHqb#c%p7@RlZ2kXhRl_baseggj&53aJs@5sZUVtur!3S%CN
z#c$%ZCIb=)w?=Mb*3_ez6$fu!hcjEx0}K*}Twwx1gCU5vJ+^3{dXRc_u(#LGMJ)r!
ztm<sE78i5GOtQ~YYNwv3v(>Up=_PJRbn7a5eauOu`r9FVQQt+dHd}(Pus-k&MD#?h
z#}~Zt!==bJ=`(v16-7~%QE{|x!<gpu+JrFT@{A?niXHwNF5;oW71*pK7c3<J;db%D
z1@qg!J<q4DJfXKamJY9NAi9ta&}M+Vvbkw9j7YDri$S+Uf+DMr8T^E*UW*+;;n8cs
zW79pnPOLep^E1{V`XCwtkU9G1COfVt&Yip8UD%9kO+sN7nznF}H?8@a9X`9(u?H@2
zD>(aN7(}pkY+g|d#2Cb+#O?UjhF*@%AK*C`O1(wmNx8A>ut6<GbgnAMt13CJXF9R8
zZpEh_YNMt=7(b_G>0XsSQ1hfHenG91`X^K*eEjc!JBI41*Fv7I7D*5>$YzF2?8jAy
z4rTKPpGeVf_}r@8Fj{0*4yRd3HrT=3B8RsH3gq^3&>d+|9=pZ|_UUrO2dbZnFas1y
zbNnfTIF62uiyAr?0Z73l3-nOqS(a5=D<h{1Wn-CDhk#Z$)!jP${goQe@Pc!hmi3!I
zoh3i-GcN><kXAL2%}esSh`UjU3qVTF%^2i$bhQ4ZjV}SWu~yI<vYbLa+kx_>RZyDm
zNnc-nLA<sms*gLsc-OLVFFY3u2UGxaX_+4+8-3U{t)ZliclJAdxS6wX=_LF}ODNIT
zQS=4|fn?{ghZsYE1klb-u|3tIxS|Na86F}?<Lp>8kdX9+YZ6?LZo=FB{#ds2Jg{k7
za#DNcU7xn>)*2}ZV#q5HfHjM={J6G1LI~DliX?ffDl6G1W)Fs1{x!BWfM#?pisHAE
zwvD`w2c6<8uJNt#D~o0R_{xW8oPO$%7OpMnptU+!@r7ExQO8S>`4gGr@Er(7bc%F}
zVuj~;x8%}bJrh(^0r0_#OgJsh-w`0YnRY`cXSEJodnM2qeffGv&?^s7V6aoGMm9n<
zJ-KyEqc~jA4QU{h;kDv-WCj`>u>GT)9jC+80&4BP)B&vdS|v~=(sUrY5l1NPx6s*3
zaP!A}E?A<;1D4HcK}JTxCgBVm&6BtVh^G&L>oemw^wlXg7;B`1)dPzZ<`2eR0;E$H
z(fhNPbN9A21NFiJoLD-}p-!9UnQ3Q`(L4n4eFhYZq!y;5^TtqLu*7ru!&ZMX6HLmq
z>lw}K>y1a3jWsQ#cL$~4tP+SOc^>#EkG*$y@9w(0hxq@2?y_5gKrgQ#Xg$YZ?<l?v
zK65ruC{fq*^$UM%q_A!#>^2?VqooU+Z!_XUJZi;G3+VU|5ZWTypvhJ~hgg>cz7CV6
zBmTni2Ht8<a_cj<C<QE4)`h+m`8EnYcLp^2>|_0%z(qmB0QG}eNBlcRjd=KiILKxW
z73o!Q0DZrq(6{y|*k~7lIejyNym3Ll{?xy@nejH_@2}YD;YSzw+(4f_riu-E7)~T9
zt@(B1z95aY{%vPv`#NMI8b|~V6eP*3gY<$aKjmq}rv-Z<tm#63Ua&rDpznbodby8a
z@>N`V1j)QZ<6d?8G=15<H`p7THh4XBd1BS4gvLVz#2=cLAn~WCuPW`YCOn}7?Pj1d
zv=y-6>X0x_gYw?_8=f6%;uTu7fivis=M|KG#;l9kk?DJN*}McJ&M?z%jloO2^dkj8
zNQ59VVPy%d#4;jknF}UmB^W749uCP1ds$XlRESIpmZf!8M{$WBJC0dgm7Lc{_L^2H
zKv*J54xmPB8AUYB<2X%n5>@emJ&8HbI4knHh%>Zgbt<x)6kKFjBS)q>utU<AGbt)s
zWfCn}83|Gpcu`GQ$=_C&LW(*~2pF@hf;3ghYD%g+ra8-^1A9ucg4cDN$*j(zvVt6i
z#|v>PN)iG1ys~H5B(IVLt0h@RimIk*RwjZZtRQuMT)l`$&WT_}Oi30=sFKw=uL_aV
zD$e*DdzBEL(jw<IbWs+xj<E@Jlp<w$!LuVfjF(UXQx-B~oYg5QC5<6mk<=tPYNlkO
z5dN^F<Rp_ZuQDNdBxRjrtSZwZyUdwPi!94|gvPX}C>m&9!jq~x;_N7U6{UceWt@>Z
z$pG_7Nf}ErES?lq5y>NaT*R<A5=1F70o&#<nM}c-B}pdYH+EphsLsm@`mPdMbCwHe
z7G_R)A>LN^%FAhzf;r2049(;T6i=%>tK^%%SCuSj30hsyOhy^W2sV&M9E#yZ`L;S0
z-uq;nLw26!6b?`@!Kxf_LODOO^E}Q#h~SS{J%!h@9R5ZknMJWYMpGRZDXB|dM&4a$
zR@YcENfU~9zzpx~EG2})!)ck7F(FYY7mrIRuVQ(Orn-t@qcRo|T#R69UL}!`C1O}c
z#anp5c&UiWI;zt=gXw7;F@UT*r<4gES8wdKzi7i&%Q8zUi0=1NSBY0@Ua%uODa#zv
z=ai(-4WR{3vIOplC`_q1nu+ESf!%pg*Kpvd!Zy<qs26I9QclVPJBwgGA8-*eOUx;Z
z3%@KY#7oL*L5}QLCyyf75UR<Gv@Q@(DHloZ-}cU)*6@O|MjY`>M1sOmST3_1jvPmC
z(Zo_3*NFQ%#p+UIwMa=Uxg>DOJf+b)dtF65Pbfz_!SN43wuIA(xRku4NA`-xf>d?J
zq4!9}Fg;6)B(7PJCa~6lohR_x48DtS&MH<C<jFLG;#opSUA(a)C&nZOQ6O<wFnv~t
zh`=Q!hjSb?!z(1_B+f)Gkyeq3ARX+0`E?ETAK67(=TdNy6I72lDQk*6jV21tP<xFY
z*|UVvJgMM`$iQV<<pRt(5+wph=J6Xlkupc<<q^xuicyiuvLpy7UglAH+^URxW{zrx
zWae`bL1e@XiJ*cc^;@jUGJ(Fa3<YmqW>gjunWOfG%?eh$u}e55fzYwYP`Xf*ph=OG
z*h0#pg9A6fG3`j#C$xb8CyD}~+>AoTijQF9ingV@JfX=|p5<i4b#E)t7Gfq)hqZ=t
z5~SGuafR77^WH@a<jj>n=XAhXXK`o{fD%vSK?Xzg*ph)<N0lG@8MNcRX_e~!ibw`P
z`-TiW%*r6~#~5{jf8UNU20*!X5(_HYk?%UV;3j1)nzY~sv4YVaaX1*S#Jx%6Pqe;3
zoxjiuc_Pa`rDZ=d?Z4%CySN(K{(2Kq?We>rLTgkb6#BIBOoBR3j=CI1^hkmoHjZXU
zU#~Z%Lwj1!_=cNwatyDdunS_fp+m17^tbIx8tdUJT2T9{eoM3!3MiN?ebsibWQo1B
zqBVzI`(Y<q)(ri5xrA?6C-r0iI-B#kwbL+YsR!5jhWhi=5nW;@hTB5>$N~Tk>hmjr
z^}^TT57A6~o&gtf{x;$x(XvHZ>hY7w8)){8gZrgi+i9nrtrOixKFZdEp!DsC!ZI`<
z(}=zK3sHZj5H$XqvS3PI4f`|3cP{PQ9N*_dx?qa`7DMv47}8%e9H@dlKNs2a!rC$<
z!9-fcA^7*+b=Skf!-zlqVxc>s!AGaqFDKVu$L%ZE&@&(K`%M375kd{K+Zmbb;Ko8t
zlTz;<vR)WQqU;Yt$#6*zL)A4sa%q(M!_ZVu_G@TbU;B1-Z%^K8zFYfxvX}J;)jy$m
zM%}2RPsc7V^lzsv7{B=w?)2kH^OKra<<F@FP|?q+r9a>NKsEkDFr&8%HSR_IB=!fk
z@6!7m?2vALGIt}s%+Oq-MTOVheMZ?^Zfj<9Au2ROcwRXNf33AwIcw+e)X{J4GW>LH
zn61x>VQ+45Chor%^M?{XhwhRr49`)!U0r-9;`go_-TXE<E~g_~C;c29{pHz_S9fEl
zUPkdIG9Oa^mT{IC^!F~?;fCUIgdf0)3b6Ee7i*{7mqej$k>|z7+m1DbZD&S$4Ee||
z9ID^WelU1zpaXsGOiMU<PIJWivt~l)<w>B#Jx;pu*O%KplOOZP5!AR~E4qiwwQ)SU
z=Q)c{tZrB?GP92#jeTeM_*L2$Lz;X%J$CBi%mqlNdLD*5)jH<wd)p<~rn^0cet$N?
z-+8EY0izY$Yqm3{gHA+?bY;h3DNFwL{<aW%4qF1RjL)xSAewXI86_S`!UQSWpM#m*
zK>hjkm%M`jJR2`!ycn%b5Chj9r=ZGrgnx>pC+S-pxq12V{~WTEdoX*J&g|!0W4PWB
zLuz(umaE}qiID|2uvmvB1HbgPz{u~6@cCHp#*05(KTjc>%@Pgks=lbl$s2QTgXMkC
zFC_2|WZ08p7k>x|XtZBwjg|u5e65O<?5Aq$Ka@2(@ShTWxN012zohK#H7HBZZM_g$
zJ$)v0to;eWSFuk7*Iz#qrjCCnpm^>+INrFk?4iD%yTE9{2PoyKfQcx3(qvL`mKLui
zaH+e*DSrbE<j_1nUi6<Xe$A(JJYKr)r@8K=Y_NQ#Zr#W4YbTRE9(}0TqW#HchmQ<y
zq!rHjZ+G3{%3-~U_$HDWj>pC;3*^*-DffAS?Le6?9`XekZp1r*L^=;7=LM+%N*WIq
z0*VqMLUHSN+<zl?B&FwZ?S?d46u{|tGLI(#xbClS-5W_Yr@fx9Py3S1m0u^P_e{AD
zJTu4=Nj{K<>+ab%M6%Bi3z(*^CyIN)Jh<vxGDlf?6u~kZCuzI~!(9iyQh2bo-l|QE
z9+Y@DXP96>4=7NS#=svw9jtI4h<fapZhhLa=G~4r;qR4%;%9jf=RTuP-CB*AoXqlr
zoLuF_r*D>Le<Tk-@W=QsE;OsWy#{uEe*4k{gh_ine*1zw2OcUvzXtbT9UOM@5K1|;
zR>&9rj;u9|0Fn-7-`qoJbvLk@bN+*ZsD4}Eq0jfd!Ft>tZ2RWoe*spIRcJFZ003ic
BP{#lO

literal 0
HcmV?d00001

diff --git a/phishing-filter-bind.conf b/phishing-filter-bind.conf
new file mode 100644
index 000000000..2cf150dbb
--- /dev/null
+++ b/phishing-filter-bind.conf
@@ -0,0 +1,434 @@
+# Title: Phishing Domains BIND Blocklist
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+zone "1111365dh.net" { type master; notify no; file "null.zone.file"; };
+zone "12931-coinbase.com" { type master; notify no; file "null.zone.file"; };
+zone "215323.com" { type master; notify no; file "null.zone.file"; };
+zone "260aesthetic.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "3650947.cc" { type master; notify no; file "null.zone.file"; };
+zone "3659ll.net" { type master; notify no; file "null.zone.file"; };
+zone "83291-coinbase.com" { type master; notify no; file "null.zone.file"; };
+zone "94-103-188-123.plesk.page" { type master; notify no; file "null.zone.file"; };
+zone "9825057365.com" { type master; notify no; file "null.zone.file"; };
+zone "abctrvabc.com" { type master; notify no; file "null.zone.file"; };
+zone "access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com" { type master; notify no; file "null.zone.file"; };
+zone "acclimatizable.fun" { type master; notify no; file "null.zone.file"; };
+zone "account-update05.myvnc.com" { type master; notify no; file "null.zone.file"; };
+zone "accounts.google.auzen.us.kg" { type master; notify no; file "null.zone.file"; };
+zone "activebusiness-unlocker3.com" { type master; notify no; file "null.zone.file"; };
+zone "addwsrbh.green" { type master; notify no; file "null.zone.file"; };
+zone "ahnp.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "aldg.ldgknhk.lol" { type master; notify no; file "null.zone.file"; };
+zone "allegrolokalnie.pl-891241214.buzz" { type master; notify no; file "null.zone.file"; };
+zone "alutipcentra.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "ambil-pinjaman-daana-payleter.xforms.web.id" { type master; notify no; file "null.zone.file"; };
+zone "ambulatoriprivati.it" { type master; notify no; file "null.zone.file"; };
+zone "amev.ldgknhk.lol" { type master; notify no; file "null.zone.file"; };
+zone "antail-conv.com" { type master; notify no; file "null.zone.file"; };
+zone "apply-now-to-receive-badge.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "artsea.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "atmailupdatewptnskmdinfomailacct.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "att-101072.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-1041page.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-105714.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-105819.square.site" { type master; notify no; file "null.zone.file"; };
+zone "att-inc-107097.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-login380.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-login522.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-service-102155.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "att-sign-in-105669.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "attcom-100762.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "attcom-106808.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "attmailservicenow.wixstudio.com" { type master; notify no; file "null.zone.file"; };
+zone "attmailservicenow.wixstudio.io" { type master; notify no; file "null.zone.file"; };
+zone "attmailsrvrdesk.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "attnewmaill.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "attyhhhhiiii225.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "atw-tau.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com" { type master; notify no; file "null.zone.file"; };
+zone "authsyncs.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "autoreplyattmode.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "avoid.hold-managert.com" { type master; notify no; file "null.zone.file"; };
+zone "azbin.ir" { type master; notify no; file "null.zone.file"; };
+zone "b45018.com" { type master; notify no; file "null.zone.file"; };
+zone "bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link" { type master; notify no; file "null.zone.file"; };
+zone "baiii-wong.cutvi.cfd" { type master; notify no; file "null.zone.file"; };
+zone "basvuru-online-yap.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "beionfidi.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "bet73nn.com" { type master; notify no; file "null.zone.file"; };
+zone "bet83039.com" { type master; notify no; file "null.zone.file"; };
+zone "bet83054.com" { type master; notify no; file "null.zone.file"; };
+zone "bfrescentremebermainsetreouytnoy.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "biggggggggggg.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "bitnode.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "bitvavobtc.com" { type master; notify no; file "null.zone.file"; };
+zone "blackhere11.serv00.net" { type master; notify no; file "null.zone.file"; };
+zone "blss24att.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "braucrarasuteu-2470.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "bt-102124.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "bt1business.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "btuan-dan2-resmi.top1.my.id" { type master; notify no; file "null.zone.file"; };
+zone "buildingdesignsusapdf.s3.us-east-005.backblazeb2.com" { type master; notify no; file "null.zone.file"; };
+zone "business-page-property-897432967.netlify.app" { type master; notify no; file "null.zone.file"; };
+zone "caipora.xyz" { type master; notify no; file "null.zone.file"; };
+zone "calm-pothos-3b24c9.netlify.app" { type master; notify no; file "null.zone.file"; };
+zone "carrefourarabiank15.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com" { type master; notify no; file "null.zone.file"; };
+zone "catgirl-appverset-nya.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "catxtokens.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "chat.94-103-188-123.plesk.page" { type master; notify no; file "null.zone.file"; };
+zone "check154109.click" { type master; notify no; file "null.zone.file"; };
+zone "checkseven.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "ciente-a.org" { type master; notify no; file "null.zone.file"; };
+zone "cieplo.app" { type master; notify no; file "null.zone.file"; };
+zone "cj12143.tw1.ru" { type master; notify no; file "null.zone.file"; };
+zone "cj87335.tw1.ru" { type master; notify no; file "null.zone.file"; };
+zone "claimyourethrewards.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "clickbait.design" { type master; notify no; file "null.zone.file"; };
+zone "cnsa163.com" { type master; notify no; file "null.zone.file"; };
+zone "cock2-iota.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "cock3.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "cock7.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "contact-pro-8291-d01.firebaseapp.com" { type master; notify no; file "null.zone.file"; };
+zone "contact-pro-8291-d01.web.app" { type master; notify no; file "null.zone.file"; };
+zone "creosrl.com" { type master; notify no; file "null.zone.file"; };
+zone "curmmgdv.email" { type master; notify no; file "null.zone.file"; };
+zone "currently541.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "currently890.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "currentlyserver.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "dara3dccj.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "db.service4db.com" { type master; notify no; file "null.zone.file"; };
+zone "de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev" { type master; notify no; file "null.zone.file"; };
+zone "debutcan.firebaseapp.com" { type master; notify no; file "null.zone.file"; };
+zone "debutcan.web.app" { type master; notify no; file "null.zone.file"; };
+zone "delivery.attempt.failure.ebbs.co.za" { type master; notify no; file "null.zone.file"; };
+zone "dev.stream.mornar.app" { type master; notify no; file "null.zone.file"; };
+zone "dnwqmh.click" { type master; notify no; file "null.zone.file"; };
+zone "dropsmartchain.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "dsjoting.group" { type master; notify no; file "null.zone.file"; };
+zone "dulb6c5p5.top" { type master; notify no; file "null.zone.file"; };
+zone "ebay-mallwholesale.com" { type master; notify no; file "null.zone.file"; };
+zone "ebt-lilac.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "echoredled.netlify.app" { type master; notify no; file "null.zone.file"; };
+zone "elbarco.percentadnp.info" { type master; notify no; file "null.zone.file"; };
+zone "eltritongourmet.com" { type master; notify no; file "null.zone.file"; };
+zone "email.mgb.modento.io" { type master; notify no; file "null.zone.file"; };
+zone "enjomugg.firebaseapp.com" { type master; notify no; file "null.zone.file"; };
+zone "enjomugg.web.app" { type master; notify no; file "null.zone.file"; };
+zone "error3456vhubhornbase.azurewebsites.net" { type master; notify no; file "null.zone.file"; };
+zone "example223.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "eyeydhe.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "eyttueiu.square.site" { type master; notify no; file "null.zone.file"; };
+zone "facebook-avip.click" { type master; notify no; file "null.zone.file"; };
+zone "fame.pink" { type master; notify no; file "null.zone.file"; };
+zone "fassehoizubra-7696.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "fastdropchain.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io" { type master; notify no; file "null.zone.file"; };
+zone "fla-1001.square.site" { type master; notify no; file "null.zone.file"; };
+zone "flo4211.github.io" { type master; notify no; file "null.zone.file"; };
+zone "fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com" { type master; notify no; file "null.zone.file"; };
+zone "fnuttlie.wiki" { type master; notify no; file "null.zone.file"; };
+zone "fokeijonnekou.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "free-verified-badge-form0-service.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "free-verified-meta-badge-service.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "g06668706.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "gccndbqg.vip" { type master; notify no; file "null.zone.file"; };
+zone "geriodememerkezi.online" { type master; notify no; file "null.zone.file"; };
+zone "get-checkmark-for-you.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "get-free-verified-badge-service-on.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "gitanag.broke-it.net" { type master; notify no; file "null.zone.file"; };
+zone "gruprocuroipra-6493.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "h5.b9en.com" { type master; notify no; file "null.zone.file"; };
+zone "h5.metacoint.com" { type master; notify no; file "null.zone.file"; };
+zone "hcghij.top" { type master; notify no; file "null.zone.file"; };
+zone "hecregayatu-1014.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "hejmtxxt.guru" { type master; notify no; file "null.zone.file"; };
+zone "helenblunt6.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "help.accountsupportcentre.com" { type master; notify no; file "null.zone.file"; };
+zone "here-apply-for-page-review.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "hgbk.ldgknhk.lol" { type master; notify no; file "null.zone.file"; };
+zone "hhideiie.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "hitummoinneullei-5882.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "home-101067.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "home-103465.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "home-104341.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "home-105266.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "home-105929.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "homeattatthome.square.site" { type master; notify no; file "null.zone.file"; };
+zone "hpnefhqs.motorcycles" { type master; notify no; file "null.zone.file"; };
+zone "im25.net" { type master; notify no; file "null.zone.file"; };
+zone "info.supercitrus.ind.br" { type master; notify no; file "null.zone.file"; };
+zone "ins-business-home-center.com" { type master; notify no; file "null.zone.file"; };
+zone "instagaramgalochka.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "ipv6.43-135-137-110.cprapid.com" { type master; notify no; file "null.zone.file"; };
+zone "irmt0ken.win" { type master; notify no; file "null.zone.file"; };
+zone "iujf7839iofvkbcu748.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "iwimwmiwi.click" { type master; notify no; file "null.zone.file"; };
+zone "jagej73796.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "jfdjy.com" { type master; notify no; file "null.zone.file"; };
+zone "kalyani963.github.io" { type master; notify no; file "null.zone.file"; };
+zone "kexoigrufouddou-5902.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "kl1k-ds1ni.neupdile.my.id" { type master; notify no; file "null.zone.file"; };
+zone "kliind08.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "kreelo098.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "kremlcup.com" { type master; notify no; file "null.zone.file"; };
+zone "kshitij12375.github.io" { type master; notify no; file "null.zone.file"; };
+zone "kucoinglobal1.com" { type master; notify no; file "null.zone.file"; };
+zone "kxbztydc.black" { type master; notify no; file "null.zone.file"; };
+zone "labanquepostale.jupiter-analytics.com" { type master; notify no; file "null.zone.file"; };
+zone "leddevotoze-3146.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "linnkdna-kget.wxxzsite.buzz" { type master; notify no; file "null.zone.file"; };
+zone "llahi.info" { type master; notify no; file "null.zone.file"; };
+zone "llahi.vip" { type master; notify no; file "null.zone.file"; };
+zone "loffaummuddote-4145.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "login-att-10221.square.site" { type master; notify no; file "null.zone.file"; };
+zone "login-form.world" { type master; notify no; file "null.zone.file"; };
+zone "login-online-outlook365.com" { type master; notify no; file "null.zone.file"; };
+zone "login-outlook-midstreamauth.com" { type master; notify no; file "null.zone.file"; };
+zone "login-screen-103134.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "loginaccount70.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "loginaccount77.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "luk6414.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "luxlifemiamiblog.com" { type master; notify no; file "null.zone.file"; };
+zone "m.meta-accessibility.io.vn" { type master; notify no; file "null.zone.file"; };
+zone "madebybmr.fyi" { type master; notify no; file "null.zone.file"; };
+zone "maqpiexyz.click" { type master; notify no; file "null.zone.file"; };
+zone "mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "mayfair313.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "mdbrvlfy.black" { type master; notify no; file "null.zone.file"; };
+zone "mesageriepro33range1.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "metamsk-wallet-3.gitbook.io" { type master; notify no; file "null.zone.file"; };
+zone "metttaa-audddt-new-02.firebaseapp.com" { type master; notify no; file "null.zone.file"; };
+zone "metttaa-audddt-new-02.web.app" { type master; notify no; file "null.zone.file"; };
+zone "microsoft365-storage.github.io" { type master; notify no; file "null.zone.file"; };
+zone "mikepattyjm.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "mobilemidasbuy.n3g.fun" { type master; notify no; file "null.zone.file"; };
+zone "monespacepro-client.3utilities.com" { type master; notify no; file "null.zone.file"; };
+zone "monetization-violation.github.io" { type master; notify no; file "null.zone.file"; };
+zone "moodengsol-net.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "mwsiekdnfjrdufs.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "mxmxnmx.mx.zya.me" { type master; notify no; file "null.zone.file"; };
+zone "national-au-b.com" { type master; notify no; file "null.zone.file"; };
+zone "national-au.net" { type master; notify no; file "null.zone.file"; };
+zone "nbaaiqjq.group" { type master; notify no; file "null.zone.file"; };
+zone "nexomyacwv.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "nft-time11.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "nichcheck.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "ns1.carrier-ast2-portal-apple.com" { type master; notify no; file "null.zone.file"; };
+zone "omadshf.ru" { type master; notify no; file "null.zone.file"; };
+zone "online-assist.live" { type master; notify no; file "null.zone.file"; };
+zone "online-promo-asb.org" { type master; notify no; file "null.zone.file"; };
+zone "openkimono.pro" { type master; notify no; file "null.zone.file"; };
+zone "opportunity-verified-status.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "ourtime.reconnect-dating.workers.dev" { type master; notify no; file "null.zone.file"; };
+zone "owouwuowo.click" { type master; notify no; file "null.zone.file"; };
+zone "p365kf.com" { type master; notify no; file "null.zone.file"; };
+zone "p4zv8crnrrha27so.94-103-188-123.plesk.page" { type master; notify no; file "null.zone.file"; };
+zone "page-center-manage.com" { type master; notify no; file "null.zone.file"; };
+zone "pavan-patil-22.github.io" { type master; notify no; file "null.zone.file"; };
+zone "pecinternational.net" { type master; notify no; file "null.zone.file"; };
+zone "peesom.chat" { type master; notify no; file "null.zone.file"; };
+zone "pencairaanndannaa.my.id" { type master; notify no; file "null.zone.file"; };
+zone "petty.wiki" { type master; notify no; file "null.zone.file"; };
+zone "pimnhv.group" { type master; notify no; file "null.zone.file"; };
+zone "policies-business-page-service.com" { type master; notify no; file "null.zone.file"; };
+zone "pottatrebewe-2808.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "pqo.hrf.mybluehost.me" { type master; notify no; file "null.zone.file"; };
+zone "programming--service--panel-totlyy-free-for-you.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "promo1.spik.ru" { type master; notify no; file "null.zone.file"; };
+zone "protocolsecure.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-1778406e4fec4394901793111c187dd9.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-19b834342e7d465b9f00b3511325a081.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-21dd4dc659614ceb93e45a6de4434502.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-2fefe932a6974485b987c9ba851b5c40.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-3a46d9914f494078a6d6237513e7a096.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-442ed822851244a689b3472ea2c6a950.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-682ad3b65d944376b919745aae3c56d4.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-7f5cf36445d042168bfacd712e890dc0.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-803839714a924882a7bcc2495a26860f.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-8161de4a277e4ee8b532af34954224e1.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-8376b5b2334844d193a525d8b8548fa5.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-9163a97d70394cb499bdd232be6c2169.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-98171471e0944ac3a5820ef719bf0640.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-a263e0790935412eb10cacc55bbced18.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-a291041b077742899b63a9982f04a56c.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-b50adc5d699a4f08aec37102c2103da7.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-c0a934c950e441db96b882789f53c9ea.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-c2c250050109456396c933de259a4fea.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-e42cb528b102447385e3145197916f51.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-e4aff507450c478cbe3f77ad23d75035.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev" { type master; notify no; file "null.zone.file"; };
+zone "pubgm.club" { type master; notify no; file "null.zone.file"; };
+zone "puffagroibrouwoi-8818.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "qasimk.com" { type master; notify no; file "null.zone.file"; };
+zone "qfjfvseq.info" { type master; notify no; file "null.zone.file"; };
+zone "quauwograssodda-3503.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "qysgyp.com" { type master; notify no; file "null.zone.file"; };
+zone "rajdipchatterjee.github.io" { type master; notify no; file "null.zone.file"; };
+zone "rechazaroanularaqui51.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "remote-fix.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "renggard.47-243-192-240.cprapid.com" { type master; notify no; file "null.zone.file"; };
+zone "resolvepanel.live" { type master; notify no; file "null.zone.file"; };
+zone "resolving--issue--with-us1.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "resqat.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "review-business-case.d2f7p3b7pucnle.amplifyapp.com" { type master; notify no; file "null.zone.file"; };
+zone "rlpqwefi.pink" { type master; notify no; file "null.zone.file"; };
+zone "rouloigeilleuja-9523.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "rulemec.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "rutinqqwin.shop" { type master; notify no; file "null.zone.file"; };
+zone "rwftfu.quest" { type master; notify no; file "null.zone.file"; };
+zone "s.team-pw.cc" { type master; notify no; file "null.zone.file"; };
+zone "sairanees.github.io" { type master; notify no; file "null.zone.file"; };
+zone "sanseipecas.com.br" { type master; notify no; file "null.zone.file"; };
+zone "sasklelo.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sasktelcustomerwebly.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sasktelnetwebmailservermaintainance.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sasktelrectify.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sasktelscrutinize.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sasktelservicecentterwebly.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sasktelsupportsystemwebly.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "sbcglobal30.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "scan-vulnerability-guard-v3.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "scan-vulnerability-guard.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "scanner-metamask-v1.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "scanner-metamask-v2.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "scanner-metamask-v3.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "scanner-metamask.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "sec-sign-in.info" { type master; notify no; file "null.zone.file"; };
+zone "secure2-validitycheck.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "securecapitec.theprimepoint.online" { type master; notify no; file "null.zone.file"; };
+zone "securerpcfix.com" { type master; notify no; file "null.zone.file"; };
+zone "seeteressecalywoi.github.io" { type master; notify no; file "null.zone.file"; };
+zone "seivviice.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "server.0e7p.com" { type master; notify no; file "null.zone.file"; };
+zone "server.2rk3.com" { type master; notify no; file "null.zone.file"; };
+zone "server.8q3p.com" { type master; notify no; file "null.zone.file"; };
+zone "server.n6b8.com" { type master; notify no; file "null.zone.file"; };
+zone "server.v9vs.com" { type master; notify no; file "null.zone.file"; };
+zone "sevvviicess.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "shard.blue" { type master; notify no; file "null.zone.file"; };
+zone "shard.skin" { type master; notify no; file "null.zone.file"; };
+zone "shared-d7590.firebaseapp.com" { type master; notify no; file "null.zone.file"; };
+zone "shared-d7590.web.app" { type master; notify no; file "null.zone.file"; };
+zone "shaw-101329.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "shaw-101587.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "shaw-106427.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "shaw-107375.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "solutionwebsitedapp.firebaseapp.com" { type master; notify no; file "null.zone.file"; };
+zone "solutionwebsitedapp.web.app" { type master; notify no; file "null.zone.file"; };
+zone "solvetans.firebaseapp.com" { type master; notify no; file "null.zone.file"; };
+zone "solvetans.web.app" { type master; notify no; file "null.zone.file"; };
+zone "sondfrom.dexlog.my.id" { type master; notify no; file "null.zone.file"; };
+zone "soyokai.or.jp" { type master; notify no; file "null.zone.file"; };
+zone "srdate.club" { type master; notify no; file "null.zone.file"; };
+zone "ssy.hmb.mybluehostin.me" { type master; notify no; file "null.zone.file"; };
+zone "steam.poweredartsworkshop.com" { type master; notify no; file "null.zone.file"; };
+zone "steam.workshopsreview.com" { type master; notify no; file "null.zone.file"; };
+zone "steamcommmuty.com" { type master; notify no; file "null.zone.file"; };
+zone "steamcommuunity.ru" { type master; notify no; file "null.zone.file"; };
+zone "steamcomunutty.com" { type master; notify no; file "null.zone.file"; };
+zone "steamconmumity.com" { type master; notify no; file "null.zone.file"; };
+zone "stepsray.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "support-metahelpcenter-id100003498934.netlify.app" { type master; notify no; file "null.zone.file"; };
+zone "sv5gardens655665.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "system-portalnu.duckdns.org" { type master; notify no; file "null.zone.file"; };
+zone "talwgam.njmolada.com" { type master; notify no; file "null.zone.file"; };
+zone "taste.baby" { type master; notify no; file "null.zone.file"; };
+zone "tele.zhngain.top" { type master; notify no; file "null.zone.file"; };
+zone "telegrambot-resolved.pages.dev" { type master; notify no; file "null.zone.file"; };
+zone "telegrazm.net" { type master; notify no; file "null.zone.file"; };
+zone "telstra-100408.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "telstra-100469.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "telstra-103234.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "tiktok-888.vip" { type master; notify no; file "null.zone.file"; };
+zone "tiltckshow.top" { type master; notify no; file "null.zone.file"; };
+zone "tnomwzrp.top" { type master; notify no; file "null.zone.file"; };
+zone "toeken.im" { type master; notify no; file "null.zone.file"; };
+zone "tonic.pink" { type master; notify no; file "null.zone.file"; };
+zone "tooma.cellinsurance.co.zw" { type master; notify no; file "null.zone.file"; };
+zone "tpdtepremu.xyz" { type master; notify no; file "null.zone.file"; };
+zone "trattujeilesso-3354.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "trbinace.com" { type master; notify no; file "null.zone.file"; };
+zone "treibrukeukonno-1395.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "tuesmad.firebaseapp.com" { type master; notify no; file "null.zone.file"; };
+zone "tuesmad.web.app" { type master; notify no; file "null.zone.file"; };
+zone "tyyyyyytyyy.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "tzcsjfto.chat" { type master; notify no; file "null.zone.file"; };
+zone "u.updatetrackgre.top" { type master; notify no; file "null.zone.file"; };
+zone "uc-whatstapp-web.com" { type master; notify no; file "null.zone.file"; };
+zone "udxcady.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "uklifejv.cyou" { type master; notify no; file "null.zone.file"; };
+zone "updatemail12.wixsite.com" { type master; notify no; file "null.zone.file"; };
+zone "ups-trackdeliveryapps.chickenkiller.com" { type master; notify no; file "null.zone.file"; };
+zone "usbest.cyou" { type master; notify no; file "null.zone.file"; };
+zone "user-transaction-overview.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackdck.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-tracklnv.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackmcl.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackmec.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-tracktpq.top" { type master; notify no; file "null.zone.file"; };
+zone "usps.com-trackvmd.top" { type master; notify no; file "null.zone.file"; };
+zone "uspsinfw.top" { type master; notify no; file "null.zone.file"; };
+zone "uwdtsczi.top" { type master; notify no; file "null.zone.file"; };
+zone "uwm-onedrive.com" { type master; notify no; file "null.zone.file"; };
+zone "vaishnavi1436.github.io" { type master; notify no; file "null.zone.file"; };
+zone "validatie-veiligauthenticatie.com" { type master; notify no; file "null.zone.file"; };
+zone "vbbu.ldgknhk.lol" { type master; notify no; file "null.zone.file"; };
+zone "verified-this-request-badge.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "vo4zzp.icu" { type master; notify no; file "null.zone.file"; };
+zone "vs41.github.io" { type master; notify no; file "null.zone.file"; };
+zone "walett-cont.gitbook.io" { type master; notify no; file "null.zone.file"; };
+zone "walletauthenticators.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "walletcomnecitt.gitbook.io" { type master; notify no; file "null.zone.file"; };
+zone "walletconnectdapps.online" { type master; notify no; file "null.zone.file"; };
+zone "watranfart-fdd6a8.ingress-bonde.ewp.live" { type master; notify no; file "null.zone.file"; };
+zone "waxed.wiki" { type master; notify no; file "null.zone.file"; };
+zone "webmaillshavv.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "weeeqweeattt.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "weigh.skin" { type master; notify no; file "null.zone.file"; };
+zone "weigh.wiki" { type master; notify no; file "null.zone.file"; };
+zone "wgqdqvtn.baby" { type master; notify no; file "null.zone.file"; };
+zone "wgqdqvtn.pink" { type master; notify no; file "null.zone.file"; };
+zone "whatsapp-rqr.com" { type master; notify no; file "null.zone.file"; };
+zone "wirelessvoicebtpaidmailinfoplay047.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "wscs1231.cyou" { type master; notify no; file "null.zone.file"; };
+zone "xn--metmasklogin-vcb.gitbook.io" { type master; notify no; file "null.zone.file"; };
+zone "xojautruffeuttu-4659.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "xraiz.info" { type master; notify no; file "null.zone.file"; };
+zone "xraiz.vip" { type master; notify no; file "null.zone.file"; };
+zone "xsuweamskeidjf.weebly.com" { type master; notify no; file "null.zone.file"; };
+zone "xya46.cc" { type master; notify no; file "null.zone.file"; };
+zone "yahoooooo-108560.weeblysite.com" { type master; notify no; file "null.zone.file"; };
+zone "yavanica123.github.io" { type master; notify no; file "null.zone.file"; };
+zone "yi5lq-syaaa-aaaag-acfsq-cai.icp0.io" { type master; notify no; file "null.zone.file"; };
+zone "you-can-receive-here.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "zeiitgeist.angelocachero.info" { type master; notify no; file "null.zone.file"; };
+zone "zenixoikitti-5809.vercel.app" { type master; notify no; file "null.zone.file"; };
+zone "zeznjx.shop" { type master; notify no; file "null.zone.file"; };
+zone "zwzcn.com" { type master; notify no; file "null.zone.file"; };
diff --git a/phishing-filter-bind.conf.br b/phishing-filter-bind.conf.br
new file mode 100644
index 0000000000000000000000000000000000000000..6b073835959e8d528fe2d516f0f199d69240970d
GIT binary patch
literal 5536
zcmV;R6<_Lt`4NEpO_l$ze@*3icSC|t6ypAFLrC2L4idHmGC{Juv;Q|UrG|ll0kCBO
ztgtXJu&@C4&y4&s_V$qM9+TUfUdk=+2558KzqenJQe@~Bscg#BRnH5hrR5hPf`);G
zCG<l<!GVH;1I3}BprBw>#w@(wD<UAHO^g2Y$K%}MKJVw_pV!pZl$S?t&$q{){>?xB
z`J<qOx77MCKOX;atU-mJkDcq!Ae<AS|DCa)g8kI`e}DP$_>0exDz={w{s?eC{$N$p
zM?4d;VD|SP{_^9o*(nDs`17&$e(Z~LOX?fAG`wtw?ShIVn$zDLu@c`q`pb_;ZFRQ+
zHhyH#kzam13WRDuA4$P}72dZ0$zw@<9e9UR_r^Y#zG_*%@SEiE>7PS~WS75W<Yzs8
z<(zXl>9E?mZ2tQAzlYh-_>s2n`|aaQ4Cd}fF28-)i+GP;O=cwhYe~O%?$_Tw{{OdN
zVPPdFzNEYchz1&>wt{OZB+|D{46yYTd-C*3pJIcGn~`$T%ql~@UzTdOE!|5pOJT#W
zvx;yg37==eg`~%Z?L`Ya9&l1;p_w*v(osw<IN$3D&Vz079$TZ8)iX2&Z>Y}F=vJ03
zQ>}=oC$3a8;mlBfoT43e9D-Zgp{H+Ew@MmEMm$qS?xeQTooTw?XHF+To;2DRW+H|0
z#Y{(|ujS^Io=&W_6&bmDjuz|Az7s;YT6HUJPVmswnvde3pT~{DaXhWVEi7~k%PX%h
zx|Qwbzv6~VEn9iPmJ`xrBeUf~alsXJ<NIB~xzW?%=ZaxFeSD1uJW>DP?$Sn%l%KFe
zCIKJ=IpE%~W2GM()kHRWp`$6RYWvurmzquzFvgx}>d(c%GuJXUcSsxYC7&g{yEu;R
zCb?Xs7gEt<I*~XC3zpVW)ZQ@r&-5MARwJceN6+oGhm>RaN!Eh*onDA;yVK>$-U(-%
z83BskzH?w#@x-9@QZjA0x;-^>OZ(Z9-k`p|l(JvSWSBM4Wy1sG<jkH5rA0v)&U<Vt
z!kOS&ui#N>$t2|x>1nc|!TGWi&X}15c8R8$%>il#k>H1Ox%%mq?IWZDA9*U*vwGIh
zNv2Vysf-tRPBzrWaj)yTrj(Kp`n3`l=`h+JIYbg~=w0t&hkSUT;?1(9(MZ6KzGDcr
zF#6i=>{|=C-{_^{vE7yEdkHx5WO5-%g(e$BUb5H@tJ~M5OjE_t)G5vQ9GicEgLpek
zkax3f+diG59`}G%FW<Hbv3z2Bfzt`)2h$WqmU)S1`)HwPI%1=tJIQAg#f!-UU`mNx
zB`?&EekST;z}(W#Q3nx%89{CsThxKWRB}uq6<d8Bb|Z7nNE=|EC6gBGz-q-@qOftz
z9Pa3_3I&@2_KIcPJ(s&uyvL>G9SvOB<<}IlIJv2xa2D7714z4rD^}#3Hm;E}Cc~-;
zx3wk|^npPa;VKMYp+XxS2NBA!{SG?Z#t1HY@yA@}(hw49;Po-$UYl8vifvD{mxI&&
z9%?%>crK{_rZyTJA<`!4Xaui)!kDJgczxXlUvy$q92pVp1aBq>n3Y0iYm^jrGDYvu
z_K2FXS?D1hr2_rjU#M2H?c^wZEsaPgl(&&owW8jo0YC+pAiub-80I`QOu^HYS5Xc0
zJ8v$9l3GpL(7>0Ng0?WyB?g84*q*1ZQS(-L=t{K~LEtz}tPMNKH*A#GKN>X(eK}AG
z=8p=+nPP07YsHzRdN^D_rfH;5*YV>-IE(}wlVM^l_t;8|<Wt6(I7$1(X&o<`KW8JQ
zM%&yV?XJ*#>}y43Cy8PQ1>%f@)M;IdhZk>dz$ei<kOV9tNGctQSXqjH$xA*=@N);>
z+Z&h6dbLnsoW@jfK#E@b-Eti;a6yf`wiQdOTNE!Fb>Ek8QgQ<#8qh?lu-#hmj?EC(
zsM)drUD+aFeXENA6=d-KIq*Lk92H_MR|N<7*P)Ox#)(X`_e6p8#PP`zH3tV)as$c{
z#)z!#eM8!jzvoD=QscR&u&QZ+XCy4+M)#2StsyS<{v;@E)0<N3HYocg3n@C+s4w&j
ztC*aWCZjLiOU+Q@9CN<j``V8HUJ#=mRlu*1a(m{7_AH%o!bm%4&*3mOH+g;N@eJCF
zj}C4^9b<ebAZVc$Kp$Nvn_`PXLj>$QOH>RShB3q^;O3zELXW&@7V<&$afrB?+iU72
zFJ;snC6TPv@#(%eDl&~UcM(1F!CRVrEK5x@#Km41qwVvg($l#Px0WjMJ_p}Xk(7rj
zSrHsZBZQERkxlT%JFEz4iQWgMp}ce$uQ3xi(@`mE8DU3yNR&H-2(95-(s#HD#7uUo
zDP|E`uePbw*s1Z^A`lG#Kt5TUfxP1eKs+Rx{K0lh6*tgJ=7VSX_N^$vIVC(|M$pYp
z1I0NDg84M<g&%gdm&z%-l`)1HId!3J9|*=gdf(DM72PX=HHq@V^ej2!tLWt(LWqZ!
zuAN7acgxX8_u>n%YoFcwdkdD1tIG^T-Z3HGO)yYeBq0Yq%{1^NHtNQ8F+c8Ng@hjK
zVqw!X&4x`iWfm^p=iuH8JyYbq7i%g3cigeQ@SCVo3h(7Gb|QWPsy1X?G00s80sof8
zL*$qdq~r%Tb#3aH9xTsNN$O26o4=t&)Z#}i>8L;^Wu+auu9`ZFc~PsTdjRO!al3As
zu6|k5vtORJqOZ8X4Sf*0a-q^J1M#`{&!^L6$om?`iW_FPjokNakh?!k8Ma%-ag^E>
zmB`>nDiXFJ?37G>!i_0Nq^uE(dl4jSV_j3glyK=3QXl(XQqDNG4HMDxEEYD62%{So
zWimk^mrSZjhZmHTz)@Msro}V`ldP~I0KG%+Uy<l`?p%+IaeX&xAI5B_7S<kCns%Yv
z92m@xsFjxI)0{6l(v$;r750Tj6tFChpnf`_SjB%ZB(Ok*ed$aWVtwfpx`=d~6IGIM
zsR@^caL&kKnV0I`*$XqhQpV~K#xt5(+En8Ca();!ccPP=uC!l!y3(+>KAy1P(@106
zy45~ocy46_c)@l<PIi(5zAoa0pOTh3Vi_TnL9}Hp#e?u`<1Z2#&xvLnM@SozF9NSE
zr5t#-1Tv;3UKMdG%$CB$zAEmU9|u-bXlv@}$%QmJx8>;Sa!b+0@+j{3xNpCMrz|Km
zw9p0)@_V4QD@dWQd5$A>ti((j^>WXK;a>$;3+0PMay8xmhArj%3K__2!A`Hw=X-~0
zd=&4t!J4Gf90_xz9NJ2ZF!sH2utP_pxY9SwOkqq+HjEI0Uvp>>nt-A%;w|6_vZ^Yh
zTXkbwZ3<|Pd5Y{Q=)iz>O#q%7ghN-_6fRX@Z(^WU2*YaN8<F#2!fd=IWnDx9Qhu!J
z{XM~+Z1YiXM!Vc$Ozduj$C~(PD)j7Ffxmzxy4&rQ#yf%O{5}$X?r%TpA%PvPk}D$x
zc4%q%futO8?LH%tcY>UuVU^nN-Qg}rs*<aD61)dj&n@2VoZ7M3D9k53YLU|U0|`0^
z6eoXgFLIg0dY$wPLHUFE<nP#f*MICXLI|B?yvP$3CE{(Y1Y4uXoT-50l#rY>X}whA
zMf^?_IB+?1EN0x#y_l`n;?jnD3eeoRX_kxqJDW9>sbzp$#od=osXVaD1t(PvtN{%5
z!8++QIaArbqL9S0XuNA-X=NiBd&ST!u9ol>a(vb>BCmYy?VtUV_Yd7a^m_x{J1&k(
zn$;2*gw=FCAgVki!Px<%_w&tJX$ToVWxv5+XCBOQ?8M7W5jgLYZsz1y1rC)?(=0bm
z3F|VAXJ)MnBHM=CS?+OcFM5_8LR%wuSM+d$&{}Gp(!H<|#lLxIr39MeOoK0<41A@%
z<U)^H&>;OkG;-><8qEr=Lm#aWsWNJzl+=7+OU~#!@ka$?k>$Ry)@4a9R~gqRSLv5&
zddNw?Vj*mWhx(qguesJ0glWY%05F8iRoHo=-nM`PPRQhdo;D&x<8|yne+b{A0!F<L
z9*C{%)aC*aDkXbJ6(Hx(+g>mT;Nm^7_nW4n@sakto^6ZcMeQw!ft15zKrJn@s7*o@
z9bQO;r9Xk{BIS4&y4Fbd+j-n7*V1|?Limi6yJs{f0j7lfSF*N}Uix<51Oh_51Xk5+
z$!R;%t0fwq=Qg-G<Rl~fzTf}#$8dymfe2A}W2E9<0oth1$2g;h2{f%@Regmqvtkpf
zh+avnEaS#X&bjBa3BiV+Y27T9R02&<lXf;T=A;gGkU|5SdH6cPLr}p_+D=?~3~fT9
z(l7;7N-E7n*cUbO?jz#tW);n34MUhFHE9dp1Ri<@jA*5R$r`0*?d)v4buer0v{x+r
zDhX-|)^Zh<Rm{vVg-Lc_3tXZBW~ZgEP)cB!g_t!LO2IT+CzTNh!cSoJ7Jcf(KnFlS
zaR;G&L}`_`I?NMlH**!1zG4;-q?>fGN=Y+0%dJrw0HxPcP@$(l55j?sdWy;iZzY)M
zxR~`MEQr$P8;=tjj_fg^i-<hT3S(d~S`AjtMqYY~sC|@^QaUgt_%yo+J{T@=wk-Jk
z=`Cg^XK4*rV1=4z0mgYRl+_@nd17(tDfq+#DiFq?LY$qJ0-{t_D<KpveaFl#6U=He
zJE>;jZ15Tbpnyq+3AYFea`&N~kW$S`1#Ts1p~LKEt>)O~+|N8m<IJp;ot%nHfr43p
zW&!LaA11gCYvk@Ca&1rrrJWHtdGxbp+_(^y-Gb(d8^?@Np*=|O#%mQ7u&5Z1Hl$cS
zNw6juR;9HQr>u1$2q_#+UhrvE1OHtRtOIA1;Q-9U+SC@(g_%dO^cyobTp5ncDg|DG
zo(02bxOI_DO<V5)Vv@*=Wmam%1v<_=c(1i{9s{2jX`RfaIcAJeVz$=hm$I`c;6~`l
zU-cAVjFte}fmBL?n}Sfn1b`_>hr8&mPBREzhsjz9?O_J=(r_lc;7kTE!S@WTY@E9a
zhD!0^?BwQInAt`xy+ycuo$x|4rWt2e=}Cr=w^9ZadJBmx{f4xtCS!S+gF=QbOvdY|
zw3dRi7W96+blgs;tz=e3R2C)h7$Ug&tssuwf4!Yq(82|-rXXBkGBk)uTjVAN<HFa?
zfg{XT1!EM8JT!~h%SmwSCn>xx)O|+~L1~351jE(r4X9a5CQR@Gz)nj~F@=c(_X04e
zFgxefgbbu`F(5NbUlC>tUT}pvautOIKL@Ei_rh9X<}kqhbi{xf%(ro2taI8+uG|!C
z=_YXrDdC+KvzuliMHxA3lw9dq6{^9fsCnooAV$rM(#$I}dxtU_13}1OG?T@^jck;0
znprRBeqhUhXgK#Q!0dIj{efQ{jWCKash!nI8|C5@X92b{D2JN-w5pyUdIn(R%u$)Z
zVb*Fw6b2=io|&MQoz6Reh}1#E2um%=)iSP<$UJj_m!@xMX@80168nzNcs6`fqx|=P
zaY@XYL~A7kAW}2AwNL8ZmizE4JVUZ&v_kJ#pQya<Br5t9zEBI~u|b9RNScG7D((a^
z17i9}@6s#gWq}%~GDJ|Bt6>EZipD%&v6bya2`R4Divu#*D?b+pmyk(3j3A@wCaqDi
zy`kq8Sif8+FbAhs=`@IF4(ZG>eD-Tk!?{&r>vp^^jLCAii>PI6B`uh?4aXCR)ndPe
z*;-84(HGv7(NliEuaxQZF?euuSL|`nDR<EB-A1RJStdEI**RoWC6yo}wkqi}8svuQ
zKo6W0Oe2k2XwY68Ze>pa$U#5tmwG%M8=qeM9`lqw-?BWPTRUsbG1tD60ST>E{NEf8
zW4&<cz+aNFU+6qQbLXEm)FEZa9@nNS`adHC>@~lGnUucx#ua9uWX@ktdtuSY=VhX^
zj*0VR{(ML}?nj%4Oipr?@lxx6ECXsFr>rDzYb8YPWu^)MC(@G8UgYH9xfCIXGElgG
z9=)r6+`c$h_j-cN&Gv!RZ~hf-S!Vd+pS1X8=xJZ^sA<O&VZk=_=P#-rzSD~vTbTZ(
zDPU{pVY{!AnplfqI?t49ckUFf3=GWyR|ZjEG8i$xWz5QuCpU*D__SvmpIJ%69kScj
z8W)%+$Vf0*;$vDf7)UVMGHUsa*w~EnSzF<<cF&Kr%65<q)3XVtO-cl5Y!Rs}vP`ly
zE!oMJ4B1bnDBNll=p_Q=2ZNrc7GD93A4@lfsX}Ko;AfPAOZ&^jR_^kGL`$X5*vaZr
z3RhzJ@vYr--5rH4%9QV98!3<Iq^d54xxaw83*&g)+-2Yn;zn~nf(~38zU=!x`VBZ5
z3~5X@pMxleLoX8X8|3Ksbg9D8D%|2DF}h>@Z17<th{|pX^Ig{jlgiFkD!-Mgomwnv
zAIxpidh(FMho{0mAw%<^Vfa_bjlaKEJ8ahiJI&9%Y!D!-Y|3j%=YGaR3gL$IyXM7J
zAf~S-zys>-%dT`HSf((V73h(EcP=>yA-rCl4dzEpRCWV6of+G%TZ$uv1#^b>^y=kB
z=6N=Z_j}s9uhSQMl_Gs}*{^Rsu-t-vSt3mP>vD7Q^7^mnrR+dGZrk+e%v1E^c0HmW
zq2m$hK4vBf_X@p_C#K2TD^ZA)+Qpjc)!DKmm(?z!Vsdr7aJ)*+g>Y$gG%Yi*?GSpe
z4lMSw*Y9`mDTNVlV*A&(XY9q6W-_QZR5tVfXmNvzx4CL~GQEGGbvO=^e3;L+7~$g~
z+_GSIyc`~A_dKb;OOKGJ94H=&!9@fQAC2UN<DEVQj-ye(CjT-RjCk9eb7?%9!`4$k
zHLTHfbDQK_l}x4;qT+tg9c|;MWlxf5{i|r+2x`!l&tTH-w*V4eGK)d|c!z_2?qRtp
z$Nolw#}#_>--PwtPA;nrHJ$r&GdLl&HN%;>l9TwG=@b<7<SqA=w54T2Rk%ftvk}e>
zho3`B<kNjkjT}uyaay0lJb7nP-|s<_ugOd}n{q53xM0KH=YP*bcT>W>o?M^Jg(%ge
zo5R<TFMCFxdZdMs_$ahq$Vw^qf`;Y`Bh*e}2oucoTz|8+5m$0Rir2w)iuZyK2Gd``
zLa4;nRye&u1TRE<U+CgAA02kNX<2m~90@ns^j+TJefBK<7=odW@>uT`t`BN`SLZ-s
z7{Mms`T;2v5>PPP;@IG3%4Dm)%{MM2@7SqNCQ?68taFcRCY;_?5a0SKPZ+(97;*GI
zhyfOb8ZF*Wh4j_ib0ka&ivMZjLZ4Mtz!aV_i{t#<peC9dJKi36XBooTtf%8Lkhj|j
zl{~n{z<<5!PI`NjcF#{@i-mxX?Hy)!8HBFm99ac;Qm613{9;OdL60-w2hH2c;rB#a
iO94&$VosluUa5Cy=fz+)(yRUE=ZDm}s_*sn^A!N#O}``n

literal 0
HcmV?d00001

diff --git a/phishing-filter-bind.conf.gz b/phishing-filter-bind.conf.gz
new file mode 100644
index 0000000000000000000000000000000000000000..18f9331068a057624e22919b555891ad064fdb90
GIT binary patch
literal 5672
zcmV+@7T4(?iwFP!000021GHSrj^wy<-TNyFcQ!U)X~dTvGrNm1U;~C>z}Fk^_y{VQ
zDUm9Q$}FYfe|Ipey2k^|%4FAcS9MKgp5P<m#0fG~KfV3Ur3HR@`}d36FV4?zzlBvg
zzrX$UU;gd4x4$ky-xjy0zx(O!KQ|*2m|xy#M|nd?L&e{^?ibqqBE)~;&;RLTa}oAm
z-pHGg=iA>Ouh+lX2=51Yef|T!=AXj~o1D?!C8cfu<>#MgG%r=F!}{|omxqkdShpmI
zKW|?n`uZN<{jW}g-~T^v{%QGqD}ww-IHJzO3>)~@%kumG@eQ#q#}}4M`U1;xi(!7s
zpT8|l`<qNsNkn-D4{v`V_`!N%F0F_3m$(0ZOXmh}tK8AxuWvpiXHWd{>l=;%U+#}(
zY4bbV{QX~kefytZzX8#SkwypSGkP9E2^uAWQC5u7cM|q=f#h`ia38x%#UsPT>Lxz4
zS{I^B__M+_9~qtMt@(rj(Xob%V?%K5w*~fFn;pFfbflsa1J1W}cv9&U@A$bGNMq>i
z?GE~gdC|UB?+(#fr)6@%w@a88-wNK)%n=+{q{A)WqTHORV1IEd+IdQ~;ExYqh!zf?
znop+cM7y4MUt^6j>fX))R{~mjJi)ie-rnXi*yQe@j@^0Og68m<njsbkx-{moM|ElE
z2vD}17r$j!(6F>}+lrtTGq?En<}WvNsHF^RfjNdH+~ndNU~o3$L?|be@KznqXBqgB
z+=jU&MfnQ&y)|$zLR^(wn$7vET%~V}lwLNQJQqNu_QQs_?(G9q>rA1UW05IDw?%iy
zh-zIb!-IRZ9rH=z8tCBf#ooPb%h~wwXi{h*Xuue1lr%Hc^3<4isI~P8rPuPwMvpD|
z{k9tCZ5Ct;vP!~j2eq8VYmyRjGO{xL0<4kSKS4Rk3sD_b3>d1_K}RyR`}={avCXKZ
zh|cSr>bhyDJXB1m&a<)m5wL>Rc7h$^9mO^-1qxA78{Ewv7dr1=-%oYH5dm?#p{G9r
zw;#K)E^cOpuf;}wdujA^7#Dsdv<o$m<2{-zkgL&|herlp>LH#N{BZa|si=mENk|^G
z^3H*^nNPpV?(brJKlTlFckGQp$)K@h|50Kbhp?Ys@0GIOfocRWU1v8525MEE@*Z%m
zm#~-y1r?4oreesaa=vx31VeGrk+F0nO4?I_lYSkRWm)?>joW$1i<qDLh0^)Mx|>wO
z0s8>gTk4sg?S20cl(%lPxM^8RF3#V|MuCyiJc6HFeWbf<wKZjU`~8SV6FiO#np4)Q
zD{!fTx6ZgaE~_97%=_X^gfy~_O?7YtFUGME_E${<D=3Js13|#=!f_@a&Ps%+-2D4T
zHB1~Jaz~x*b?J`mp;GagfI|I#yFdg&+MHOsuJrs$E&EP6Qe~}$i}KJ>M!6pe4onq8
zS1abyOAFGP3SK4h?Ifhu{L}HOwmro%abI1V!baNlEG)Ct;TEjnX4E?<T`@Jw&DeHl
zEv9EcxTfnwtI#>nL!O{$@ie}j59I)8wiq@{cV{zB17~#VhwOF>f|YKnmTn7CwjbxS
z3}#uIEu>4>8>T4NQ@sJk2sRwqr4{DK8xeI#L8HcU<^szWK?e+xlQ7De;Jp}HLuSk_
zVv>h@(4&>>mgj;~Dcx5Td9#a4gHUJ^$++>StTmzZk-`mpB^{?PGPOVCKwMuy<34iI
zVX9o5z7>P*a0g$B=d{C&35{$+oC|TbB@~b5n$I^`n;xW%M;X#MFeYjsEz+$g#w4Um
zgoli#mdj;lKoOeSPo6Ep^1CE`@v*uN`bHZUlC0%k2*@g84b`xGk~-yF(~S8}&2$7`
z6d@O*HJI<u@N>~pI&PG+dt8c#cf@s_&Ao+u0#S$*kwKOd39gc;`3^ZwU2VuLV<A>T
zHJGKD(fV4e=r^kUI>6#a6@vj~*4n=5N39z!nQj#6r-qM4$%&Cca)m;!VR3&yk>Y^7
zkG6e;Xxn_C@uH=B*#Oj$wDdLO>N{qISTeA<tb|&uM_}DjYx6xugcg+AaiHx}mcifK
z9m`L-wrhx9#^Uk%$NPFI*ANEv^}foOQ1dunCzqN1iZAwaJI8R8&GJ}Ouf-;EEmH!7
zE_XJoT$aZrppcVGad-k2g-gEFs+5F4UqS@4fT>kKz@lVC&)xF)FasICwfQct3^PTS
zf}c?Wtx$Xl`N}x$I;%Dxm-<wCJP-aF)?=P)vdnkP3M>OLhRC?+@0Ua2et#Z!%O?^I
zqUWr!m!7J?M=sfbV#!h|5y1&3R*UuEQaZpLwJt8L)SyDRHS+GZazeCng?1}EO}291
z;S${QP*FBRKlPPZ0)bPe?22q{ue+6vkoeK$Po{ad3;tV6*E+p*g&~Pp`A(8l+wLWB
zN=W<F>{vKBuk!8FXTQQ%*Ha2#y<sUt(i(?`<PtPUzi;Sjd#V3he<bAh98Wh_1Qc%I
zuEBe_g<5xVb`wnP_sy_#_jX|FMrPSP)=|AbPujWdQAsY_2+({s-GTXRXK8X{Q1|Wj
zz1D>OU<Xr{{4!S8%-r>TKMq}AizR2Ry;1LTi=<YBgHy-Uy5fKF22a<1UPzTersj3@
zgtGCLH?29V`CrEVGuQamk`Zbhb>*n`a&A?`C~C02DNMU_Jg~e+-Ux0(%J2D9>!jl%
zS~WrO4IRQ{@6UJa#j@?9=Zm|RYI1a;2(vt8I&w1?ueDxqUDL-$YUiWutnUH~c(q_k
zs20`v%)R~AU3+X>z`E;oNm&jYq513-%mMkjI*D+1@Tj$_v%1x4j=Wr)0q3eI%8N_K
zx}sxyz}J9l#5mGg^A0P#S`GV}J#k;CjQ65GDretM-zuUC+V?*Ib)r*cRGAX~$^WV)
zIWL<BdwJinNJUMkPrblig6CE$O7l%F<XfZ=baI#Cv14U#FqxG>?#=hh*Vq1JZh~04
zDTtfoETdfKETk{DTK5TVyZ0?;4PgTR4h<n)t;R4H*VNrG>poo3Rg62Xb{N^@g1z6A
zJ_bHk64379*2jvU%S+xXW{c~<hN)VfyIONCp5aX{r}S>>S)F3<1|PwpPP5@KCLE2J
zx>{M{wvbz6cH$kzHCB`O<MPIf+u|^&bI)y^O}U}2UP3q3@<7B}7kv~Tu-$e{;O<H&
z8$_j@KC;Z6m!RZAiih{1p6N8YeRV*UAT3f!|9-$0kPy*BuE&Pk8XGJ`mNPkBe6+BD
zF>uEu^@N5IUhB{a3r2r4UN$!@&)Ubw$MfZmr4Jr0i@dnv6X{Qs!YX+Q)=JcnnHUl@
zoN!TV?eZfE&FAA9lvX<h`-II0Ci#+XG38iajjG{DO9;0LPi%g{e&RK&GoSZgx#hYJ
z^se*cepyBnR<kqjh5l8f4P7nv{R8Sy4fVM7JU>}f3+`ia7FH)$r*Oojc<bxTq4|8~
z)+x8Rgjq4P_aafXN(1UtYi#Z5%7ETC2OsCNTtlt$5q#{LfF8cPLmwDQn|!R=12peW
zdM|gB(p66ES9x0LBD#I8eP4}=_r;#&Ic|kLKcC=Wi-EBy{S38QL9#2Y`>lE8$6-_R
zQib{Ar%)^)ELM!@q)7fIH69)f>cWZ_h<|RN!foQ}bPRj23E8^Yu{6yOE>;mxtGmIL
zpCP)g)m$uK_#?9zxvS%BJ)29PeP8kO>q;i~Rbc>QvD&gDWs-5_*EAVDKct_ZOls~f
zET7LP)mh$<Z@cF`Ea(lX5-B`(2dL8QHJZcL>M378)(^jawD{+FN@VjAF#lRYxnLwT
z#T`xm2dwlg#VaY@`}MuNU&UjIxt>x#?v>Wx+tj4ojzuczQSbESb$L@!F!>#eEE$pX
zv6k5rZSuLce06%4_t^x@_WQ*a_U(SDTZt-UPi=1Xs(^;Pvj)UerTx<R_xRi#GEQg_
zvkWP({ozq({eFdp)n+>ON)8l`m>sgsj}CYbIyFYVn!T_Nxj`)EvG54T<G|15nry?o
zc(bJrxbf$G)X~Ryk#yL@k9jcQbz}2+-um^7XYsh@UHS&IxLX=Z>m;rXw97;MM!u!Y
zy8-NBZS(UMWiVc&AeN}IO;*~n{P1l<(RLQMXl!ovmwS0$*#gD_ikjw+4@Z6LVJP*K
zkgrTo@4^EbnxFEoLlxV5XfM&?W~k+WOF-r=6A(y_bCm0ve=FMemH=D|4@;9mTF&#c
zd7y4j!i(lfyKnARn1v821s#^J2BRvvZ#z^&2nCRq>S17<Xf9#00<^UwXxU5AMq0(p
zFpRwGfm_g=O?>LeFfl@iCgWhtRLjhyM#dSZFc{toHQBCHOc27TkljcsnW4lOZgelE
zo^TCnV!(y$4REwAutKY326uuOZDCX+w?jV-9mu}NiA_=urrK;QSeO`<Xn^w(S8W{h
zq~s`w5}J3F%rMD&GfjkBKJjiCalQI{Zci8tvYYx!W;kxX87allQ_f{SPKxn?f~2~a
zlc+VDzLUa8&^=L-cNSe*Pr{5n2sILJs+k$7G)(ovOz2xfuO@<<B%}nUMQ?a5GZ^et
zNeunoa&7d)<X{!SMeOM$X)RA1H1v=k8X1h_mY9))HJ!DS!2dT6td<!ov}HZ#!gQRH
zepFU!Ga%EAQ)hIoy%{?;vS}b(PLz+hQG?Q&a-0n9$G)?*%#fZSv!H++fCF-Yz)-ae
z?QlvtkZNY8j&_q6MvRw{s>x^p=;25U%=A!gHra`Vq7032ZU}mspcpu66nwPR^36Ef
zK@EsG^@`h$OD=JPL}$>^Og~hcje^X^mI&M%!-Ybk={4w4V184^)G}iP;Rx6vKjUl|
zvcDF{qq4KSBequdoJh~)G?<~wbf)+;;S?yN3g?7jRL_iNQX0%KYTyHrvK#D+NtrSu
zv9+@2G!l%>fk21UDbb`DX$N*djbOXJT3W+kXV48(H!;DHVif7L)LICoG#D~gGc)C1
zFo!NM44jU*HF>Y5k!I%>y{=_O4uinm5lS-jHK}?-IYqk0Y|RwZ3Qr|EiTq;vX~IO%
zjkx`6ARR?F>zI*4B{RCiaL<XkLuE#cLNY*}9!AV_Oiv(dnZa?3uEUr|R}(#(dQ70q
z02O(5^~|sd*=Cq9ZyF9AC?qm1EEkv%NLMX;YNp79I%Z-x8w-2_CW$pxB1H?Px_V}&
zu`_}yLr@svmyQvOWC~=kW>B@vjD~<5CvGrqI!lmZH0vpubk8V8X(cm;BKvd90Vp&0
zs0WEUnspdBno2qK)y$w~CXyg1U;#2B#qb_Fi4<)Ol29#AGb0ullyDFh<vJ=rTt$o{
zv^z~0KDEpMn}h`eLSnT>=rAd)HyGhaI#c%ST4p%aO3)FR87qQ;jRMe!Kp~9@&k9n_
zjI>r@iWZ&b!>AQ7I}8#Ns2N1ZYPo>za)r@N8pUVUfD$tr(I{+2T(PN|7O(@wc)?*S
zv>^trY;RFPO_>OIuls6dERwXuO(DRsq{X5WJsRkMTf}r%DG|(TtCvHSp;#;D7@UgX
zcm#(ElhiuwdY8LfZ>2|Z@Ahi%JG>XSMZF&qXE;Z>@4*<^F!bJ9Gd=hDEWQ<w@@iau
zjxpgouTbgYIszg-WegHuBcpsjoT$}*5Mj;DVb*=rIk}7A=UGP6@}Z%*jd`N@wOR{v
zggq>Gc%6<G-*|n3z0O_Tz8}yu58STie`~we9anJ}{6s-*>Gg3!5@-q}G#4m5{n|j!
znU!{b*;8pQ8fm_|iAj9@oFi9W65ik~6WdN<=gZ$<ITBtK`c&VBvbqgfIpnlwBen|N
z@SaR<$z8*6D0SX8#&(^_FDV|E6W22va%Xy@m=rfB>)!9lx*|SlJz!y~Q=N-<Hj$J8
zibXQA7sEuH%n>n-<P5A4%W)K?i^dKH6cDwH*q{+*Y&+9=rl$nqlIc_vhSy4J+^D{G
zqqoX5uU8kx5M1p->ah@z_bqcwzBgf7F<GIVNr3ugf8K~c6MRXh4DUO^RfGS+3mVn>
zaM^`f*gaW>3Fh=G>%Mn0#u)&5R{TnBh5RL3DQ;BKi7|t&Ah9CWq>3iPMJ&dW=Yagb
zH{e5eSSEn=kg)n<JpLB&>9>H(-vMSqHR?;#PqxFiRPRZQva=c#;b-j?S&vt2C9#V{
z73pb)V0$yH9p3ad{|!A13JqSeq&WHoOfitQo5Ay9x?YVPM{D^`_KgtkU~U5w)G4$j
z6V&}(a!KW`)tw1ye2kF}HE!F;Mui-oc-mss2^}T2v=&fAF<R)`<#FIFEB_ZRLp3?z
zP1xyPvUX&DQ7`u!KkD^-`UTV*_8~H&dK|Fj-A?eOaqBtN;6LCwv;kuW3EUTES$9wt
z37xJ3I91ww&_f}Y{6#<eR@%ac;zg4zAe|IBS{dV9Jp1ZL`5f3Iv;w+_UUD(`2`*!e
zbHA`?7kzm0&aS{;w764`aDW0v-{&;5f#tP2npnyAMaxL$#U-2Tb8lJDU<c&P6gt{H
zyVb@<{+hi=+3Mo~Ugi05f0Sn~&dNAmFeGYRyk0I>R(6!lHQjp?TrPB0t%jqBSi28k
zQv<s1UcK+6mQ*nl{!3BGY9^tW&J@ejHAoXk<Y_`IEW53I5_?dY$&=lYm!4Wjjsb`i
zR-(Z(>yWaaz^v2S{sNaL*6!tG+vHnuzu&1%@yT{c;dwrhHOTpXTEala@di0rENy|j
zvx*$6Pu}<NteXzp?3lwEUPPAYi3B=mIJ<-CGj%Ens8&k(W#G>-dQp}aE_$^TD(qvY
z>uE5y3b{48_0D;5EFWB)3n`n}OU-Gyejyp`)-<m#{K4eyrbWe9ojkdZCKnqMDrk>t
zo0S5U^ii`C6NnTOESbQiBYx1VKT7JED-N7nBs+MGg_=Fd8r)V5lMcrdn{Y!E>ppy$
z>0u2c?66fWHVbwgotP`f%EUzf^byQK5Y<H-@a>(zkwT2rgE<ash-qIA)sofnUx1w(
zc>#OXF#}?BmlH4zZ(hK$*BpS>)nr>EPdY`lSUOHG;1?a>;iEoiqqOnq<Y<rQ^2!tX
zUh@euS!Bw!oo&9uRB@ClUEZq7Tx6erx{%Y;M(`ijR6pzd^3k7{Whks7onm7=Gm(l<
zvNI{+?Dxb(QL-_f{Mce2xZ1flXwVmDluf(>?+xO5y}9TKsY&7`Q_GM<t@Tyj3+oz8
zDv8QFZ3;6D<T|HGe!#h<w*BrE2wi;2k&6ieP|O>?fnA^2AZ_y`=QlPK@{%=g{T`De
zM?U@lQ9ZoXaz(>6yvdf<1fB?bVry|tl?G`wDhMW*hfdCi^Nnjuql(8<c_bTkA15&4
zhe`E~ZEaK))8X*(FF49Vu4|LQNfp?9#dMl|g0u@cXTPBkqbHx3Cxd)d#_Ctiw7s8M
zp0C6bw^=^@`Vz;({c=4p#-3)RoPhfYX)#!?(%D|Rw}|t1Hc2C-s^gn$HVHf<0!wv*
zQ3fs!fh_7wnz$HiQ)7^A2073=ucQKaPgc&wIQ#K%+NOj==Z6QIz>9l*$OWCtv?#)?
Of`0(|3(PFdj{pGqeGxJM

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnscrypt-blocked-ips.txt b/phishing-filter-dnscrypt-blocked-ips.txt
new file mode 100644
index 000000000..58ffda3f4
--- /dev/null
+++ b/phishing-filter-dnscrypt-blocked-ips.txt
@@ -0,0 +1,7 @@
+# Title: Phishing IPs Blocklist
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+
diff --git a/phishing-filter-dnscrypt-blocked-ips.txt.br b/phishing-filter-dnscrypt-blocked-ips.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..4adc382e077a73f671ea6040878cdb44cf9751d7
GIT binary patch
literal 186
zcmV;r07d_yXbAuy7QesxmNW-w^RWr-eL!YAVBc;y+1<;wK*G9$E{-8hG(A~}irH~!
z0yOYj+>3EF%-AqJ9hYm2{#YF|PN;!b0PG55rhbfOv(bF@oKAT@<<;s>4IGNVjMSJh
zgCa_FJpkGRVy!2aJ!&A^OCWTWVI)Z~f}L(Aj*zI^T;b#*Qb*BY5(Fc<LJcgb(*WA2
oOHu=U;4y;%HYFK{(9Oh1@xn~x8=u*Ze7zDAR_b^!62Z0+0Tb*~yZ`_I

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnscrypt-blocked-ips.txt.gz b/phishing-filter-dnscrypt-blocked-ips.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..774732a68658a60eee5905dfe126254446bf80fb
GIT binary patch
literal 213
zcmV;`04o0<iwFP!000021D%k|3c@fDMfZNiKsO53w8d_+6a@trg1T`xrqd>vHZe)@
z@%2WnKj3nhd(IsufrAQ~IP9eIQgsb%b{-bmh>KP}j1oB73IkOfimaHYd7c*KA<KA?
z@v=O{{pxO&BhMj+3Lh};KY6GfU3==pV-hoK(~`v|*2oa7=ZrP670)waTGpbzp`)}`
zI*?;_IAoY3y;Xub{|}t#FB&C#(>w7#(^%?0u{S@3=#u^5Qb9=4`r=IUME3j0Y>5HS
P7%ih0Hd_S8E&%`lxz%9l

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnscrypt-blocked-names.txt b/phishing-filter-dnscrypt-blocked-names.txt
new file mode 100644
index 000000000..0f2e38733
--- /dev/null
+++ b/phishing-filter-dnscrypt-blocked-names.txt
@@ -0,0 +1,434 @@
+# Title: Phishing Names Blocklist
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+1111365dh.net
+12931-coinbase.com
+215323.com
+260aesthetic.wixsite.com
+3650947.cc
+3659ll.net
+83291-coinbase.com
+94-103-188-123.plesk.page
+9825057365.com
+abctrvabc.com
+access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com
+acclimatizable.fun
+account-update05.myvnc.com
+accounts.google.auzen.us.kg
+activebusiness-unlocker3.com
+addwsrbh.green
+ahnp.vercel.app
+aldg.ldgknhk.lol
+allegrolokalnie.pl-891241214.buzz
+alutipcentra.pages.dev
+ambil-pinjaman-daana-payleter.xforms.web.id
+ambulatoriprivati.it
+amev.ldgknhk.lol
+antail-conv.com
+apply-now-to-receive-badge.vercel.app
+artsea.pages.dev
+atmailupdatewptnskmdinfomailacct.weebly.com
+att-101072.weeblysite.com
+att-1041page.weeblysite.com
+att-105714.weeblysite.com
+att-105819.square.site
+att-inc-107097.weeblysite.com
+att-login380.weeblysite.com
+att-login522.weeblysite.com
+att-service-102155.weeblysite.com
+att-sign-in-105669.weeblysite.com
+attcom-100762.weeblysite.com
+attcom-106808.weeblysite.com
+attmailservicenow.wixstudio.com
+attmailservicenow.wixstudio.io
+attmailsrvrdesk.weebly.com
+attnewmaill.weebly.com
+attyhhhhiiii225.weebly.com
+atw-tau.vercel.app
+authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com
+authsyncs.pages.dev
+autoreplyattmode.wixsite.com
+avoid.hold-managert.com
+azbin.ir
+b45018.com
+bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link
+baiii-wong.cutvi.cfd
+basvuru-online-yap.vercel.app
+beionfidi.pages.dev
+bet73nn.com
+bet83039.com
+bet83054.com
+bfrescentremebermainsetreouytnoy.weebly.com
+biggggggggggg.weebly.com
+bitnode.pages.dev
+bitvavobtc.com
+blackhere11.serv00.net
+blss24att.weebly.com
+braucrarasuteu-2470.vercel.app
+bt-102124.weeblysite.com
+bt1business.weebly.com
+btuan-dan2-resmi.top1.my.id
+buildingdesignsusapdf.s3.us-east-005.backblazeb2.com
+business-page-property-897432967.netlify.app
+caipora.xyz
+calm-pothos-3b24c9.netlify.app
+carrefourarabiank15.pages.dev
+caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com
+catgirl-appverset-nya.pages.dev
+catxtokens.pages.dev
+chat.94-103-188-123.plesk.page
+check154109.click
+checkseven.vercel.app
+ciente-a.org
+cieplo.app
+cj12143.tw1.ru
+cj87335.tw1.ru
+claimyourethrewards.pages.dev
+clickbait.design
+cnsa163.com
+cock2-iota.vercel.app
+cock3.vercel.app
+cock7.vercel.app
+contact-pro-8291-d01.firebaseapp.com
+contact-pro-8291-d01.web.app
+creosrl.com
+curmmgdv.email
+currently541.weebly.com
+currently890.weebly.com
+currentlyserver.weebly.com
+dara3dccj.wixsite.com
+db.service4db.com
+de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev
+debutcan.firebaseapp.com
+debutcan.web.app
+delivery.attempt.failure.ebbs.co.za
+dev.stream.mornar.app
+dnwqmh.click
+dropsmartchain.pages.dev
+dsjoting.group
+dulb6c5p5.top
+ebay-mallwholesale.com
+ebt-lilac.vercel.app
+echoredled.netlify.app
+elbarco.percentadnp.info
+eltritongourmet.com
+email.mgb.modento.io
+enjomugg.firebaseapp.com
+enjomugg.web.app
+error3456vhubhornbase.azurewebsites.net
+example223.wixsite.com
+eyeydhe.wixsite.com
+eyttueiu.square.site
+facebook-avip.click
+fame.pink
+fassehoizubra-7696.vercel.app
+fastdropchain.pages.dev
+fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io
+fla-1001.square.site
+flo4211.github.io
+fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com
+fnuttlie.wiki
+fokeijonnekou.vercel.app
+fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com
+free-verified-badge-form0-service.vercel.app
+free-verified-meta-badge-service.vercel.app
+g06668706.wixsite.com
+gccndbqg.vip
+geriodememerkezi.online
+get-checkmark-for-you.vercel.app
+get-free-verified-badge-service-on.vercel.app
+gitanag.broke-it.net
+gruprocuroipra-6493.vercel.app
+h5.b9en.com
+h5.metacoint.com
+hcghij.top
+hecregayatu-1014.vercel.app
+hejmtxxt.guru
+helenblunt6.wixsite.com
+help.accountsupportcentre.com
+here-apply-for-page-review.vercel.app
+hgbk.ldgknhk.lol
+hhideiie.wixsite.com
+hitummoinneullei-5882.vercel.app
+home-101067.weeblysite.com
+home-103465.weeblysite.com
+home-104341.weeblysite.com
+home-105266.weeblysite.com
+home-105929.weeblysite.com
+homeattatthome.square.site
+hpnefhqs.motorcycles
+im25.net
+info.supercitrus.ind.br
+ins-business-home-center.com
+instagaramgalochka.vercel.app
+ipv6.43-135-137-110.cprapid.com
+irmt0ken.win
+iujf7839iofvkbcu748.weebly.com
+iwimwmiwi.click
+jagej73796.wixsite.com
+jfdjy.com
+kalyani963.github.io
+kexoigrufouddou-5902.vercel.app
+kl1k-ds1ni.neupdile.my.id
+kliind08.wixsite.com
+kreelo098.weebly.com
+kremlcup.com
+kshitij12375.github.io
+kucoinglobal1.com
+kxbztydc.black
+labanquepostale.jupiter-analytics.com
+leddevotoze-3146.vercel.app
+linnkdna-kget.wxxzsite.buzz
+llahi.info
+llahi.vip
+loffaummuddote-4145.vercel.app
+login-att-10221.square.site
+login-form.world
+login-online-outlook365.com
+login-outlook-midstreamauth.com
+login-screen-103134.weeblysite.com
+loginaccount70.wixsite.com
+loginaccount77.wixsite.com
+luk6414.wixsite.com
+luxlifemiamiblog.com
+m.meta-accessibility.io.vn
+madebybmr.fyi
+maqpiexyz.click
+mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev
+mayfair313.wixsite.com
+mdbrvlfy.black
+mesageriepro33range1.weebly.com
+metamsk-wallet-3.gitbook.io
+metttaa-audddt-new-02.firebaseapp.com
+metttaa-audddt-new-02.web.app
+microsoft365-storage.github.io
+mikepattyjm.wixsite.com
+mobilemidasbuy.n3g.fun
+monespacepro-client.3utilities.com
+monetization-violation.github.io
+moodengsol-net.pages.dev
+mwsiekdnfjrdufs.weebly.com
+mxmxnmx.mx.zya.me
+national-au-b.com
+national-au.net
+nbaaiqjq.group
+nexomyacwv.weebly.com
+nft-time11.vercel.app
+nichcheck.weeblysite.com
+ns1.carrier-ast2-portal-apple.com
+omadshf.ru
+online-assist.live
+online-promo-asb.org
+openkimono.pro
+opportunity-verified-status.vercel.app
+ourtime.reconnect-dating.workers.dev
+owouwuowo.click
+p365kf.com
+p4zv8crnrrha27so.94-103-188-123.plesk.page
+page-center-manage.com
+pavan-patil-22.github.io
+pecinternational.net
+peesom.chat
+pencairaanndannaa.my.id
+petty.wiki
+pimnhv.group
+policies-business-page-service.com
+pottatrebewe-2808.vercel.app
+pqo.hrf.mybluehost.me
+programming--service--panel-totlyy-free-for-you.vercel.app
+promo1.spik.ru
+protocolsecure.pages.dev
+pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev
+pub-1778406e4fec4394901793111c187dd9.r2.dev
+pub-19b834342e7d465b9f00b3511325a081.r2.dev
+pub-21dd4dc659614ceb93e45a6de4434502.r2.dev
+pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev
+pub-2fefe932a6974485b987c9ba851b5c40.r2.dev
+pub-3a46d9914f494078a6d6237513e7a096.r2.dev
+pub-442ed822851244a689b3472ea2c6a950.r2.dev
+pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev
+pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev
+pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev
+pub-7f5cf36445d042168bfacd712e890dc0.r2.dev
+pub-803839714a924882a7bcc2495a26860f.r2.dev
+pub-8161de4a277e4ee8b532af34954224e1.r2.dev
+pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev
+pub-8376b5b2334844d193a525d8b8548fa5.r2.dev
+pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev
+pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev
+pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev
+pub-9163a97d70394cb499bdd232be6c2169.r2.dev
+pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev
+pub-98171471e0944ac3a5820ef719bf0640.r2.dev
+pub-a263e0790935412eb10cacc55bbced18.r2.dev
+pub-a291041b077742899b63a9982f04a56c.r2.dev
+pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev
+pub-b50adc5d699a4f08aec37102c2103da7.r2.dev
+pub-c0a934c950e441db96b882789f53c9ea.r2.dev
+pub-c2c250050109456396c933de259a4fea.r2.dev
+pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev
+pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev
+pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev
+pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev
+pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev
+pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev
+pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev
+pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev
+pub-e42cb528b102447385e3145197916f51.r2.dev
+pub-e4aff507450c478cbe3f77ad23d75035.r2.dev
+pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev
+pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev
+pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev
+pubgm.club
+puffagroibrouwoi-8818.vercel.app
+qasimk.com
+qfjfvseq.info
+quauwograssodda-3503.vercel.app
+qysgyp.com
+rajdipchatterjee.github.io
+rechazaroanularaqui51.weebly.com
+remote-fix.pages.dev
+renggard.47-243-192-240.cprapid.com
+resolvepanel.live
+resolving--issue--with-us1.vercel.app
+resqat.weebly.com
+review-business-case.d2f7p3b7pucnle.amplifyapp.com
+rlpqwefi.pink
+rouloigeilleuja-9523.vercel.app
+rulemec.pages.dev
+rutinqqwin.shop
+rwftfu.quest
+s.team-pw.cc
+sairanees.github.io
+sanseipecas.com.br
+sasklelo.weebly.com
+sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com
+sasktelcustomerwebly.weebly.com
+sasktelnetwebmailservermaintainance.weebly.com
+sasktelrectify.weebly.com
+sasktelscrutinize.weebly.com
+sasktelservicecentterwebly.weebly.com
+sasktelsupportsystemwebly.weebly.com
+sbcglobal30.wixsite.com
+scan-vulnerability-guard-v3.pages.dev
+scan-vulnerability-guard.pages.dev
+scanner-metamask-v1.pages.dev
+scanner-metamask-v2.pages.dev
+scanner-metamask-v3.pages.dev
+scanner-metamask.pages.dev
+sec-sign-in.info
+secure2-validitycheck.weebly.com
+securecapitec.theprimepoint.online
+securerpcfix.com
+seeteressecalywoi.github.io
+seivviice.weebly.com
+server.0e7p.com
+server.2rk3.com
+server.8q3p.com
+server.n6b8.com
+server.v9vs.com
+sevvviicess.weebly.com
+shard.blue
+shard.skin
+shared-d7590.firebaseapp.com
+shared-d7590.web.app
+shaw-101329.weeblysite.com
+shaw-101587.weeblysite.com
+shaw-106427.weeblysite.com
+shaw-107375.weeblysite.com
+solutionwebsitedapp.firebaseapp.com
+solutionwebsitedapp.web.app
+solvetans.firebaseapp.com
+solvetans.web.app
+sondfrom.dexlog.my.id
+soyokai.or.jp
+srdate.club
+ssy.hmb.mybluehostin.me
+steam.poweredartsworkshop.com
+steam.workshopsreview.com
+steamcommmuty.com
+steamcommuunity.ru
+steamcomunutty.com
+steamconmumity.com
+stepsray.vercel.app
+support-metahelpcenter-id100003498934.netlify.app
+sv5gardens655665.weeblysite.com
+system-portalnu.duckdns.org
+talwgam.njmolada.com
+taste.baby
+tele.zhngain.top
+telegrambot-resolved.pages.dev
+telegrazm.net
+telstra-100408.weeblysite.com
+telstra-100469.weeblysite.com
+telstra-103234.weeblysite.com
+tiktok-888.vip
+tiltckshow.top
+tnomwzrp.top
+toeken.im
+tonic.pink
+tooma.cellinsurance.co.zw
+tpdtepremu.xyz
+trattujeilesso-3354.vercel.app
+trbinace.com
+treibrukeukonno-1395.vercel.app
+tuesmad.firebaseapp.com
+tuesmad.web.app
+tyyyyyytyyy.weebly.com
+tzcsjfto.chat
+u.updatetrackgre.top
+uc-whatstapp-web.com
+udxcady.wixsite.com
+uklifejv.cyou
+updatemail12.wixsite.com
+ups-trackdeliveryapps.chickenkiller.com
+usbest.cyou
+user-transaction-overview.vercel.app
+usps.com-trackdck.top
+usps.com-tracklnv.top
+usps.com-trackmcl.top
+usps.com-trackmec.top
+usps.com-tracktpq.top
+usps.com-trackvmd.top
+uspsinfw.top
+uwdtsczi.top
+uwm-onedrive.com
+vaishnavi1436.github.io
+validatie-veiligauthenticatie.com
+vbbu.ldgknhk.lol
+verified-this-request-badge.vercel.app
+vo4zzp.icu
+vs41.github.io
+walett-cont.gitbook.io
+walletauthenticators.vercel.app
+walletcomnecitt.gitbook.io
+walletconnectdapps.online
+watranfart-fdd6a8.ingress-bonde.ewp.live
+waxed.wiki
+webmaillshavv.weebly.com
+weeeqweeattt.weebly.com
+weigh.skin
+weigh.wiki
+wgqdqvtn.baby
+wgqdqvtn.pink
+whatsapp-rqr.com
+wirelessvoicebtpaidmailinfoplay047.weebly.com
+wscs1231.cyou
+xn--metmasklogin-vcb.gitbook.io
+xojautruffeuttu-4659.vercel.app
+xraiz.info
+xraiz.vip
+xsuweamskeidjf.weebly.com
+xya46.cc
+yahoooooo-108560.weeblysite.com
+yavanica123.github.io
+yi5lq-syaaa-aaaag-acfsq-cai.icp0.io
+you-can-receive-here.vercel.app
+zeiitgeist.angelocachero.info
+zenixoikitti-5809.vercel.app
+zeznjx.shop
+zwzcn.com
diff --git a/phishing-filter-dnscrypt-blocked-names.txt.br b/phishing-filter-dnscrypt-blocked-names.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..e0f7be29de5535c8d39d285768215cc5097b4a06
GIT binary patch
literal 5164
zcmV+{6w~YB2x*C;oYnpi5ygA}G*TAM-yb2v+{c{#^WWQ4=cNEoG~fFDK80?8QD-GB
z47%=n8~XR1?)4=ELbx3Xkj|}YtJ?nk|I=9}>@q-IxJm_7)cdYVNl>M`qRjs@qnEKA
zkgUKQYaJSU1Coxka-xy;7<6IO2E7;5vG;<|QA<U&zMwa#>*VTUGMtrH1x9J~lFe1d
z{15$W-(k@WZIU<5-~C*-xU^qC|9Vh4DC|GvH_DHMcpVjPe)scVX=q`8{b<!UA(Rr`
z_@8b2t80Ia<Nr6m`}vnoqKxI&kNUCj{QP+x=FfH&#O%R5e`$XAv%M(^cKr2oFefE+
z?8FW<@q8ZK4H?D!%zvcm(7FlD?|#hG>>i-}JI;)6e)l5@qWt=y0d|G&ssH}76CZWF
zam40WKGU8#?qB!^U8MXcFwlDgjZ#YW(`b*Qx1=?yTYDu;q|gCIaW|bB`>y}D)zktO
zK9I@Cn?8ic#*}^<+jW?wF=gE9+<+If^xgWw)<LMY7iw9A>Ux<RmQzx4re<Bbu^s0x
z?Cb|^IA5SmjmsD;MM~7=a#Tg;(xi*K3vwJp$J54P5vrY~N!O!|4P<xZf$1w$eR8Xz
zk)D#^@$~H|{d0xYLUW}^1Mo>C)Gr2Ei#+!R4AX_;CPWS5Rl!WC{$TB0vOc6R%La~+
zCj03PIteK?;Os7)-Oq5G(nZ%?BHQmIM;A|UflwwVmQ{6w>eL{0{eBy8l_{BXZ$N^5
zJw;l)8t|H&NEBY+AqWc)KqPn^GG_TX>X)a;8?_|cf9mRhW2P(6wgZ?XaRVN&>1-r0
zkP{|`Yjd(s$vq;(TW}N^4bp`|gWYkf?w`5f<m&8!99>iI#G#ztQrKe4#=sbsH==gW
zY8sh^YE?UTMUyMist;=H0en7`aaO}qby2G{I9xvB*R>Q(dC<9C=N+QOx@-N?zOQ)f
zrm3AN;`0}(?bJB-Iv(voP`I#hn$};KiC(C-ou{tDg-uJl09ENE#)WvR<<sM8DfYRV
z;)9j1Y&9{2F(TmIV}7n_hdjq|97IH2H-0_-77SH1c=a%Iv65=4t6lEgUw)xlghfWf
zXqP6HkMaalq|8$}W=!tcka)CckkD&#=~BwVo0Pb1n6IWFDK~l;TeW=u1T<`qMuOmH
z=bWFeE~lr$G49`Tblv{h=mb3y_8+8a>p~y)?JA$K8ziNzNULPufTM6W8i+{TG3?S*
zzDSzQHX6!Ra}~ZXE*`K4udI<`*vQi6xi#|KhcLtEMqc{1Un>q82Rw=&T7|bnj~cTF
z3I*SjVtqKohd*m++JA&Jaz;kV1pLGoTv4-m1w>;%Fr!jZl#I5u?M<~Sr5k{iIZK_P
znhY6AWvrqb=5}*IHP_v#PH87<R>o8v(%@>>T82(!ES@CCq@;fg8bbjDDzqrIK(d=G
zy{tvR4Jq1olz70Y9eh!D51Pe>EuL3gPK^|?tn<)!>ojj&ucPgmahDmO6f?-r^KA?`
zFH+<q7SZc&Fl%>_GoqmpLIzC`PBjwMVW1${Bas>z5!M%cRNoE#I85U#t=c!T;|i7T
zu1fG}<Vzm#P8eX&*`a`xF3bg4ga?K<_yZdi<pA)ykkZj24s)t;Q0*#VAE`xjs&I^)
zLEtzPaEw%_7@u5h<1f$juD#@2$y^)rTIRkVt9l)fKVGOrJ~ARdb$YPQx&~s&J9lG3
z0W~>J2tX1$L6Ko94;anaSN1T=z+jlCx>yj0$F@ptl+oB|)Qs#1x{IT@GRBf!XJ5_U
z@Ai^s>jhO1<vh+k<DleIYdiC0Z9!j_!TjCaLWbTN^RiYGtd<sf{9twM_lI4-ZQCTK
z#TYR_Z-iFUDu%^sSbH_Ypheq?K9~0c<WaqsP2MqYmkAmPY+TLps2`XO1ZrrFi~=-r
zHy@cnC`*vPU5Q#3X`=i>WAT!Z-YtF10rIZ<!u|G#BtbNR0n1~}0TdW7ZFxn;oQT&`
z8e5&7%$P=%wl%2X5%C)aB@iXyyF|^xp#_E65R4{fv<|HXz5+T8*+hA6(v}TL!j0`U
z=r|L{u*aG`IsxRYlz!LJZy14HAs$WpfqmU~dTEWUVED1Iei*0gsQQT6q1_DMnlXYx
z6G@}Wc-Qp|9~?gT*aPbmnJZGoD=cL16L3)?vfRL<42`pBHYf#;NZ+b6h<REkQdt`m
zW=JS6Qny#xK#TwY;*XYAyf+6R43H#~T55>R0Th{!n$XlP4xLgmtbne1&~BYTJc^V}
zj_|yXV^%T(#HbnrxMJC0`xYv*BPw)yQnSSq=@mo3Gh&DT!Is8emn+%+DPfy?eX1SW
z+b{b4eY%#?ty~ZQmP9O2L5okhK);u@;7lD}-2onnpYAH^t@++g)3nU(#I&!t8xyR4
z@A9J5?3gK9^yo34_$BG-Yt4=<Y%9dBFr(#&XEUKw<m4HioHrU|AZRtfF3-nroFEo7
zJbj1`b2K$aN*Tm7tj5xHj8d<NB*Zbw%>@WXbir|${h*f`rX6T9?(hItC_e8n&U?d`
z=g)`bUUO{@bQrX&O9)lKzg;E+CRa@<X2vG8$M}pQlmJ?w|0O}ay0-YP&tPN-$3Yf}
zuw+79y^j<ER_Bn!xGY`4lX$>@;&i8(HeZx}n8vGz-q44Zi!^rAbf#;!+JG6D|5G)p
z|B(W2$GgbP5@uZ-r6J#qd<ElGl$jR8(CId8QBtr{=Y~QN5C&HcR6Y<hy*{wE9WwY`
z?Up@GFPbH#Ym!4RR6h#U&qApdVCP2Jb9-WtH-(1kYnzvTrMO+EHgz5rb!()X{O#!`
zyEK#+?D(4dc@>K4YqPH%jqn8bK%jN%O-Pm}ej@F;Zn0V$s~Fdokss%D>J+x9Kr&!W
zmK;Jq+v$jcjfH}1Y<gxy7u$8VzB8kDrlyK^%0Wyo)%Ei@7haWuWRFU!bH9)N@?(vJ
zzTU=xhVZVKivss_hgVI+m_-s3%UTZYt?`i@zbJY&7~~J(D1_4n5a*68@6YG^hH-t}
zIXK8&k$=IccwF2zsNPd2iBSw{7#}edEr}?1IbCO~Njq3SKm?|<l{EGcv2t#XC0J-X
zX{ZWM*2P1#73@P2Y@j)3sQLlFsp>B~w`@_Hdzh_yPD9|X*7Hy1PI>}Q`9FLtdb3p$
zxgWaMmR(YmS7@?>A4fmhXSqGpcz7qm&+`?`UDU%JLvBR`4~43!C}M)!n}8_Z1R+4d
z>>UsD@H_zJUU}>WZ*{)h_6UUVSb|9>Val=ZbC@bDgc(a;PH|^+3>HEUejMJVM`rfD
zZ&9taECSx*Jrr^bpeMs0m?wvvxTl{+Q8?zrNI;+=!G38f>v&#%ONNh{9D1@)bbVy#
z_tY1jz6v^LK*c1{Ys&sCaLeSdp&Mk&AbPKfi=z8aSuKw^s>xoW69Jj1?cas)v|)Q?
zTeraO6Znt+1pkr#Bfk$wk4;v(DxeA!9IQpd*bp=Ty<cw>*+#%m^beT(8r%vSi{$Sz
zO6g2*AanTQPyx0=Q8ISpq|#R5PIxX@t(g)IwMP%O99v{V)yNK|P+<v~Sv9>{zr6yA
z4wWDeyTOxu3{j>Wo9GT7Qv>ni>JthB*D_BLYo0upA)+e;G%V8jpvmJ;%w%nhcdU1f
zcNBC->ZkGC%3n4O-)k{B<a|Ikmly!TAJlu$<On|f!2}lsk$}mGuH*8=gy!-&P_E#M
zJt3CpWvrRrBn$>91B76es|?1vo{;%LdQ&Cx;kfw6a{u!Y@i+ruI3XULrzfMv8%3A+
z3eqbjy`wzxCjGPLgLTBhVnp{i;66*v#xsSuYT9nWk=^s)ttc#pOtdLk5}n-Eu66+I
z>qPKuK&*F_RJBm5Lxim}^V|>041nu4qS>|u4NNe~-1X0Uo|mDWaM;ic{W`3zn%7<_
zWz;fTyDsl>)k{D0Lx-~+rctk3+v<K?#@2Tuw2RtWr>q^UnZ|WegTbZK9)}Soi^I?l
zW7{o9Y$K|jXTwD=!!}Rr+#*cVFpVpi*{UTc+;HtXnAUk1mQk<EY*r1+sPt%tcKJX(
z43k|~HEhE=wDTTnTD`j0Cb<M_l3MacgzyH?C<CI_CcPj-C|FgYvEQ^NCD*W;yDp<M
zil7O3t3kbG^pbZ2_0lW3AQrA&vM`cr6r<|6<Q%5ZRR-08<|ajX^bCzEhypDnThxfP
z_hZj;WN#S5(-=Z3rE$5-d611#5y=xmuB{I>=M2##xy?EEmP#wa8C3vV1LbZ8D5OwZ
zO{3(TYxY0|=D>*7seq1xLI{9Sx}{}Fkc7DPf(^R3QMd+ZEneec+_0{89_mmEHbl=-
zlz_bTM%cza{CQd%+_@1-?Kl!DY6GR@Dt!;E_t>wpADKANkvc<E3u}}zclYkCoHAza
zi4jxBMU9Pcpr(N-k7FZ6axE(CoOXxN>nPIQp+JvnkgI*chEtcWosqL@;;}m=mhLT&
zhc1zpIV0ytf~Z!M8l)JUrH@qi_pVW>B@#=LLYN_XPNrr=y<2#04_p|Fw4Rt5p^5Zm
z5Yk{B#;Mvv&dN+hmAV#0)LtDB*j1~S9^2zBJ0*1^uOgZ{YZ_KKCossVxN?$~RLZfF
zbqd7nU21O)xXGYm654MK3@9Z^ISEoN$zxKA2hg;_y6z|vSXr_+$4Jq=ve7`I0y!NU
zpT|niQiG%<!4W7?G!Gxz+t2cPdfmFT<OJO_R)_AXq&6!_WFF2vZLN6@ZGz5>Y2?&?
zvr-|8)dEKAty>%%2?O0ZV>4E4R1&Zos7mc}u3ocd0}V%Sy&Kj@TA&Y)#9iLrL=7?q
zjf?|Ct$9Jq1|q;M72-5B!h@7sWnk%@tYqxfWd*9e2f;c)>za`i<kBcgMv{nJOs<1+
zzB&daMoNa<tVbEl>QJ01mF3e%sz7T=th7pG6m)RTmRy_BkYnxx4+h4R3UwhQ#y;w3
zptAWM0IOB|e1;`eE-eSLXKjQv0ys)8mi9|=UnX@xwqMU{488B$-1qJJZ1b(P+`v0t
zdd$nOBj9_DpYcB86(Y&krPrsKZ}&JhcfA!#rSNfo$Nldqcm44h|4KN|*nh%H&U6p^
z*8jS1x?T_6^>xkU#fv?bxNGe(|7-ly_gL?D-F-s7K`8wM0yn@g+PTNEJ>KDT5Eqf;
zqEAAusDOUEDIDUr>+nzqvB&Y!b2b1R33y0AAf!(YgP*1I^RktS4j~GB`{Vig#F+8H
zEcfktZ1X+l$0M#Ey$QkU0*yv&30ugN>zvou>oc#D@}u9^{u$@ECdrHVIwswQxII7I
zK0my@`>qkkirv7W>k;!aOalkNE1Dd7{66BbEgR$)&YIo#=MU{zyW28Wtw@Xe&(Gs{
z@B2E|{ahlzsIv546&M%$XJCZQG;5rn=yWIH!`AE6dDYdTh_#2E5OTy&<FHk-!ufwu
z>Ro~ly^!bpP!x>FQ6da0-9U%=l&Jafhv|B|mW3GazVhvU>F&38*<J&(4149Piw_~`
z3$DlS?VT;g9LBULuUCcf+~lYwKC}Th{ZVW_|Kc#R%xFY!P5kD<rt>?V`@F<8Hefg^
z`4aon4oXrEqz&!FafIpP@3YPO;-F%Fzvp?A6C&n*DfpRpKG=UtyuFIe`PSOov2S@F
zrT2tF$Vxn;Qr)MZg#H)ARC^9N{N_xO!hO|%Mfuk8tsek$0R>cKgU<>zK1&sWGxQbO
z@l91?ZYy=cedfYvG|En!U#Rp7=K_zCbZEd{UtPgvO&<S_aS|rBJhs2>SLbQlr=RE7
zvGWO}v3Ty|_?y0$9_Z=w`ofR;s5t4r^l;e;1j$fuk!hm^%Pt=<vo>@Hwk^wYoqxH-
zD?*3pk7e_Vrcf;l>r%_yKkj+#`d6*egC36!fWv8wt<SFhY?=y6lY+FBINsE(JfB#P
zN>njvQh!ibqH(<@zwFo7JM&=puTvkNyDroEvuqD_{X$VBpVWaVUuQgG`v1M&86d#;
zArm6x>-u)y8Y`vFpeDxuCBBC`%s6)<XaOiWQ7j^)EP-wX1rWmxob&Iw{oYz@Sf@Pa
z$7x%u^qEojx-Fmo`!hq|0+aU5%h$QBvo&sxbK4f3&LLV8A0k0{n$H&xoGfE9d?oDh
zT(>3H7m_IP@lo{sNNWhr8lI#xmSslLxt>_h7(x`PU&jK2u2?+S{hSSBp9Vj_;Gat6
z;N!0;uZ<&KQmK+OLlI?hXUk-2su6NWTVY5^j1s<+tNj?TPa~n%6DIY&E@_@vo3TNo
zw;a`(j!Q*Mgi*USNU6xPH0LKiWje<j=(XrF=?F!^Tu={1*(PETN`+98Mz3XDX7p32
zm~#=-A!p{ob*A1psQSaZGvo9={PMO+VY@R<ep@c)OAaq$KzlyZxQrvefXWfzA~p0=
zTY-&|04DP7dUCYOl;D|`j%!`nC=I^DGaoMs4d@CA>)<-L;_&?@Nv1Ye87Nac8+M&p
zS2qs>!vri2&cw1YV}rzIy-f504RLV_85ZqkrVXcl!^Yg?2ARcX?F5Uw_DgyZYV0~n
zypxw&zu|)xrK9fC<6Sx6!d2}zBED~=v*yFY#?yYZbmYHeRPOz4-xr6vNXx+^8258{
ztmOAT$aK=^2I`s>%rGC|KqMyzPdm&Lbr(}q*Q<S2e1fQO!4Dx+MeH(q4YmBl7gWx5
z+pscM0Z=F_xBkgMUtfj%7b+$BDfLDW|8Yq6watM1JTOc?Fv`;5*Pw-JmvPbx@&`&4
zWB_;#eBbV&(Y-}^xc9N|0?bz4))T96@0iFEcvI!w{zW3*5rGEo0nZG*ZVt?GLDIe$
a=o9HAW>$1L?OMG04X=-TU;W-+Lka`axE6{4

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnscrypt-blocked-names.txt.gz b/phishing-filter-dnscrypt-blocked-names.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..88afedd09792d897abc108e07d039798987daf2b
GIT binary patch
literal 5309
zcmV;u6hiACiwFP!000021D#q+kL$Q{-uJIKz}+N3q|y5^%OC-=2!a5)*<{D3O<N*m
zk&-R{`g|q1yQS_v6Cgcvx-C|bD%SHW(trE)cN04G=db@f8-F(T^y@!Zul%on?wq)G
z#)r4R{rc}gvY_Ojzp^ANqBM=N^6yFVXO{d~mj46#zdi;tD*xxN^p|AIuYZ_U{$F}j
zw@F#C{3Ce&&Gl+vC%ot!!r=e><Bt>G%XlnY|3}ZdI~!G`O&8So$M6#6^^Dp7ZiKS_
z|1<e--8L1A{Fj?XL1MZ=*_Dmv|I;t5b)H^pnIO)p>#n0aJ=q`cI*I><1;!axN%50c
zr98)0g|{?o^E499SR&F2Z&_OAS-yR&5~h4Ot6)TYHxF;Z#)Actwy0wv=wsV;>taow
zwO<x%q3tA((x!=0EIM?`Ut`kZTiax1Qr4KhGBPg0IOF&BB(O~%dnKlk7J98XtI=p9
zSTN4UojY|lE{iB5dlq;>0)d8+4Mx5%(wQF2PsTeH>&eoPn{0?S`zB@FFSGr4C6Ro5
za#&c!Y<emiPd>h$KnrG8eDcOZtZ1_2T58;s#H76Yk)Pw!s1#mtwgU+&R2Q>hcw?PB
z#rSu%=PP9HFwm*f=sI_0oiz$NiJCUeiZn}$m`~3qIHq6*7(I+^RhEyXn%`K@O&1Nu
zURcj;BpI_T8rae)cuD-wZtQ)0S3EY7c&Cm9H=1EIGjtG}fI&4MMX`ZlN#X3gZDkm`
zC9>`w1s9D<DC|1oOrF$XM`Q5nAXw<J%%;=(5UjuU(pc?i6lx6+O7U*lUJ(Ke1yg0O
z(GQ>6C`C%^{!A-tXy|83leV$HO^BkHNb9h%f_x%r>z^jUeT>bU<hQgk`%y%%#u)*L
zl@TcAj~wP?@p2NYs@fko@CU@CuCm_}t0rlFAd*I30>DaZNQOxo_kYrj`yh|=C@Bh$
zMzQKn)b7jha>kFrPnMNO5`2VB2e+7zC~Wu)(2ub7lOL2flaC}^RUi@nW!PdJzgXe-
z9yY<16`Yec;iNhwBQ`rsJ-bduhzraa!#4ip#>QrR<3*XI%{s=JUbr&M_I1~FeKlv}
zuuSY+o}T`kWv7QWSH?@D@`o~&&TMW^diIYpD`GQfNJ9bE8GFT2P)l@oNUmZEvx$Y4
z81(ZrPLZ?VQPIK<xd3l=RvT${TjMI!xwV^gDl~bLx4Vb3*d9=d{F)I|uecgvE0hF0
zxoHX3EqmK=bNc)_62J=O?Otxe4E6D_<v@;by`I&m(ljPFN|H6N^UnLMfa(v6jcgJl
z8=0SinqbK~Iczno5t4liSRT^%M0!{*OlwZF84{20O&r{iB0W<w<CE!-P)=}LgciJs
z4N}KGM|O@B^C3!*$vH%a{7=QRZNc|!O}mYT5hZgB3sP-epiEUY?W{9;S)~=s3=YZm
zu{`m)>!ZPiv-45TvqH3ASjSOm6k=?h!;!9Oxl^cszZ;1HJRp5K=wnIqtjNovD(hIL
zCm6qM*<|k76tjMyRk7$QFrwyU#xBA$=E1m;UD#pi@Cfb-D6k(qvk?Ej$N~xo2w0>E
zd<r<?x{Y`>qqgm=B@A3kMJ#sXi5`Z|ZQ~cJN_iaaX*^DNZ0bBOKOQ?~`UR>`;XEop
z7<mwl-iIIw@n*L-VLeN$t!N4q&@3`8u!9&F&A$%R#{rZq5y+lVLuf-LX{>?WDA9aq
z@+T&W+jRxRj32v=aT@#nB<EOB?xV*MdgvA?Z10;N<4v3VI8L#G61*cxct<XUxEwN-
z<nb#z7m{xyD$BLjRa7-XL<P%5#M7#cibiq<XjZd=!@Z+?^tT1tR_U$L@!gF&rhK?6
zcg8Aw3WC{hn)o2R?_R3TkXOctX4MZN)>OGsH5KO`Q{pEB&m4QC7S_kT8!a2Rnf89`
z&o3{M2q)hI2*Cf4V?T{9{lx{sn?N`dCQTi$L^+fc&TkNHL5l9WJCe2XtlPArkSjVu
z3VTB<aYn|M9csls`c%i+2r&oZgq0=07C{XV!e|1LG2F3NTLD<D8uuq2Q_ZkpErZHl
zTt6W(e$~|n;ayj19Nm}~Wi<m_Lz=Cau_x387BZ?|)1!J&B&!Uew>P$0)PhX#Wh{hA
zndyL4G!u$Dca7L=hL?ghuv$D&nbFL9b#~@CA>&4M)mD2off~pdU+thTUbCoV_=)J3
zjBdKaXC%7Vh#?_OV1QsqdK9K}1uAp=YAJ}#aw_Q?ynCVK;9k%iWjT$d0XG9CR?PYV
zyYcI0wVeViM;f@AH;vR~F3wtYbqCy_hcf4W9%R0FtLvO!(-TYXeZz0hB}>e3-v<`z
zpo+FWK*<f8MudEmcVKo{`oIjgV6PcJ@Sc*Ys+u~f4hB03VI{wvVwmO)$il#pdi*zD
z)zidVmB)C9*1U>{xRNx{a@-;@{3Q50mUM??Ov(g|iTMbXMF??nveP&rok8agh@M4N
z(H;`z83nLa8;ZbZ+A6`XEe_7&bT*eY1R>?9P7F9|A{bsA)=-x|JRTuF0m0y@Q<iry
z_E95L+v4|TX&O*A!-h*<RP?c18$o(lYwxILqwa?{o%r?8hyY_sWy~>H&L&KKk6l<b
zp=UBt*)-W<8Fb`pGf{m*_%Bk9y89bak$)ulucR`os^5{?to@0Ebc+A!(;=G9gH`%`
z^GHC56tM`Ty*JYXOOs70aRD4tE;C_7t7)u+)iLg)5BRdam^6$6LvI5yuoKElf1;2(
zUk?@3409D1zyf)Re|40m$pKuOu@4C_1Qc!G%yiLplefm{`O3vq7tKD@%-!_&9=~5X
z=>lV3>b!1`4sp@)vQ0okyD)27)cDWzaa9jz;JtuMQo1QB+vH%xYnNUl=~HW<6C@df
zs<6SnYiFPk>VtM~yCRG_m$U~-G1zxv+Vc3-!*L9NOJ0|IIVK8-Q|CDA(v9)KpJ9<A
zUSaQB$2haMNevDPh7gx&z)QynvDhuah%Kq1AR)iPnokwwX>mx#NCx&Q(Ue~i@bUfe
zc&=ivJ$=`)v)M}3_K^}w=d@<<ancOnSCJOwVLfU?qpicuvSXg!Xq5Q~4RrD~@aj9<
z6gpIt_rsMJZ5xbwBe(KSoz{--1sz~e)TH@0*uJv7!X8L}Z;}J4K9Z(uRZ!D@7<-_c
ztKP8QaLio?`!!`n+qsY72FM0J;Nsc7^$aLx;r$rv#o*~S7zLdEa>|~e0~?dbVLNCs
z#e~fd?A{BDbbA9nw<y}<t}^y)0p=O8$AeV8<m21{Wo*vS1D;U2S4g^fJ~De!2S`ZL
z_Wl~(=`<%qtHV<bCr<+n*#Mh?StU@sx<_#NuW;jMu6OLw8!<ZXbbtvXkK93rBA?FO
zo2weAJ-_tFT{x%?s+G+1X^CxqT93VYhg3p^nGiAbhHMh&Qy?vySFt7*Iw_;hJ(`W{
zwjO@>N=F##<Xs0@!(O3xZxq~KUq(6ULsQp3`iJcwG5&v|m+94;U6*C(a;9iQz`Kz(
zDFS6NbGzJL2+|^b^a~UBdB3pLAqs?s(|x>HBhG6b{_4EeBjVAw8470~vWTh{TU)Ic
z26gZ<f7aC1yg~@D%lHrzTz(&d_Id{bU)v-)gS{H)4QO<9c%(%q3&;H|^T;Ftd3`4%
z;3)|nQ+tTQhAsuLiU2dB_=>h~RjIqX=|182%gG0L!Bww<4#jhB#AwIy%(B|Mzi9r}
z;=5Ij*TKlP0-Mok!+T5@W!cWcgA#_A-z~D5V^GSwKBhhspDpm?$PiSL0*k#8^#E61
zHk3D*-k#@|?FI+w;b76R7k>v|t1ylVCn5uoI?CwKYp1K>=HfFtoqhoh0S1OS;6hOL
z3DvKs6Y>uPg_W)9qTtYtEgRPQ0f(&yL>?W?l`M_N;Dqa5SoYJUhl!(dW=b)giMj?-
z5Cv1ME|t)_QG!*hjK}Pgx2~HasZ^nrDDt*wle9+jmZl<YYAM?TZ_Aq;;3HGD1UliZ
zP7<D%X_{vxOPX}go260~QdDJIr3IRVHdjT-Dya%AP$FIIc_CdYg;ou33XMLYP86#u
zyrN~ImdACq(yGlf2CkxLAVgD(mb0czc`1ry&zrNNl5Lw7x@e1}Zt(hwN^6>{nkB#j
zJKh4jl1-LjovbKW)wDb>>P)drRIDuz>sARXB~zkGIV%zkt%<gjO{GfSq=h{4HW`yS
zuS(fs=XJ%~6oR9>QMo89SsZv_o(#RSE-PIKDcYRXnx~Md%378k^iT^`DeALp$qJpy
zrchcYTDK*}nmRx5>Qd;uDvDAj=#Z+0qi>TnyrgLpDGu^BNe)<5rv+=X0-%-ET!^f|
zvRTzsi9YbARSJV5m}^xiSg(X#bPnbs%L<hqc>$i1wyYcIwaIuZMX8`f7&4cYI<8B4
zDtVTJvnXT=J(L*~%$u@k^wEEtM%TOsp{;nKlY$itLYIkz8e~-;*X4?QN~a~{l|{*6
z-%2RalyG`3<$+h0X@SuMUWRpZIHD-wNG#DslIlZTv}u*Iww855uE2}7#bQ~WajXt?
zf8iB5dRllauZucmEUESCN;#KJst<9|HYp5Irz(N(Fw85PEK#~f9O|Sx`Z~;$tE6s|
zHZKcUmZymTBq>YIg_3D=<ZbD;0(-0LB5NQn$=@~^>94HBftS^F35iS2a%h6_N@hg{
zr$aF1Tpet|%Y?zKvT9rSWYS<?c@6vrB_z3I^`2KGFc8H}f{c(#4)ej=>ITlAi&n7%
zFIFg%1Xh9~$|`Rwghnn^R?>UE@a8RyT(^h_S*S#DIDsg2QNlOV<QNws=V^<mZF8)v
zRne-PrCMqRM?+(ueBo`IM3xzsfX)(sfHgI|Nu{-xH9zn+GF7Z;3km%uI)!CLUS(-3
zsyu^9_PjEKBNlK+#ADHjnjxp<2^1_c#@g!0i~N<c6cmNr+Q70!r4j~5(-O8n=s`Bf
zompC_QX~H%eLyJa8<X1>YCiC)ye+kos$|IPX;!x!sT3UoY~7Ob4!lJsc$qcuFXYKO
zZ%PHu5=jkFpv&~g%d{>LL1iL}x)EIEx~>^QL)K-IANHmbN}fq8kbWqEFt~Xt5XKDz
zXpixx>kN9u0vwEGU2t7#1bs`UD=JYPc{N;(LC{ncs3j;AP@2kWh@FdM?~^BBg>K^b
zh}H%$z;Hl;yEDi!>7lsa0N4BL3IcBWqGzveTYH2i2NO`@y?0WwD90`j6BmD4HVi$o
zi!^lh6#!c<YLAeCug>hrM#t>bp<BL9raT~cw2ahqY4g|>{t*Zly|s*sI?AYxZZrHn
zw$LL0Q8%j<aBT2!8(Hy)@g5yWbcY<#<PYc+TsIbuBGAFeCpx0bgIH#|9&%m}ldyCR
zeY_+XyWw_M+H7ZoP;H0iS{XDU(}hKCnH^L$PG|;{*l!T1-`;NM{$qc3;JE9crx<Oo
z4{tsW=nA9ZPWSqrkRF;Szf-Db)++;?$kwKT&MG|f*A5-|eqS^eR3}d3a9OV$Pomd$
zb^vOp%cb-4I9hGT&{OyK!@LO%Pp`)NO88C(ECuQPs&l&w3;4&ZP(QH469OF{f2W|~
zC3TqRPt#t=lJIl*y)3U2Fu(Yq`tM9!YzGecv19fE2z;Kf6S_m9UN<_SwU^PH?`-uu
zt}iT>;61gYkSLndzoce=NzMO)x+f{|e#gB<?1rDSXl9*}5Od#yZTnpr1fv5L5r;GS
zQ1n2<dO-O)L)}=$K~O+$bLeXg2n)>X7G#jUA1X7?#(XjNb_tWHde}c_<2BzuH@Eyi
zx2T!>=eeEz>v`T@a=fVYXEFgbB(IPDYV7(E{T@<sn|y2a55)HlAA@%~yv)BJD87@*
zrv4470($rjsitGEuOvs`C~@|6Z6QgpZ$kdS^C2rGynx{UY1WJK$!n!Xp9NQWP<(GK
zqIZkCGK0oBzJO<>yM(P!c)!Hwp6{AGxE0zwPq`=_+#OCJ=_@DHAXCoT-n&xYhy3e^
z`GbNFeLsceI5Mr>Idy*TLla$59Jp*h_2zR3OS5I4QeOeT#swXPzxrz<(*!@Lx(yK7
z;mXR-C6yFqeN~p#_w(p2cf5`y>=esMTqP7rXABs*pRiGT>0QSpTPFnO=~R*N<qa7~
z#m}=n(d`eN@6!Nv$J~YJRjBs);zfS;Yj02aD~#(UQ1SiiCVT4lud#em^X&U+VKCR=
zuBiFVdd?Y47X(@Az6ohve}9g{_TUtqM;lCX)`+dJ1?PHfR&~e?ej3-zPM4GSw=hUp
z1;u+>FY6&f2-5`>5Mk<~9JqaNtuS&rntTa0Dxi_+s-~;6)<r20+kqKHuxIj{kH3$<
zdw5vZANsRT4B;vKMF+Q?l}zz=VFm%k^|aoU4R4c(?jZVrWg=RR=1uY;m|PA8V!F~1
z>1B?^;-<H4B`SDnc4QlTw7%f|S{Lggd7X{8(%BSH!FFdbd5-%2S`2xPCRtD4YI8QC
zZz+7epqc!zCc)S0$mXl~htbZ?KaBRG`)QQY{<qOE+<q9Hd-*Yn^0K+ibeF-4r+Gc}
zk+VvU*z>x-nHhh!Y&L0;SGzi~79<u7UA&=yp5DKrL|;&P&E$MK+(dmG-G#I9(fa*Q
zAHIJFZg$1<ImAXxZ?iA<*QIyXsSxNpbzy%fyd4zp1aRZwTyUd9B&&o8KTLfc7s}Pd
zucCQpWJrzd7-=ah)}S7rsAfhSSy;vDK5Pi}&K}4E>j~WpI&~-)^WjVt9~H1AU1f#i
zxH+A-Dz|;ymO0(zZ4P$JLmy9T^sYWmE<WBi|GOiiC_q;T$iu*lBpC=i3>{mNqCULP
z3!i3ry7}wFMwDy`gKXCnv*3H}Jlq9Z9no$m<nk$^!->6OA0so*4X11$DIq=lbXRnM
zuZ+Ct{mUN<x*x*73p=~@2Pv*8t8d>ET<91ThNMH+PwOwH>~4`?-tXN{5fj?q4)^ZZ
zRYcJ4{R@_KXS$d8sf-B#^@v!ycj%m8KvbjKHt|%}JRD3A0^Nuv?Q!bUULG5?f8L*B
PyAb|gU`=h~A}s&_EY~N<

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnsmasq.conf b/phishing-filter-dnsmasq.conf
new file mode 100644
index 000000000..62b2f94d9
--- /dev/null
+++ b/phishing-filter-dnsmasq.conf
@@ -0,0 +1,434 @@
+# Title: Phishing Domains dnsmasq Blocklist
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+address=/1111365dh.net/0.0.0.0
+address=/12931-coinbase.com/0.0.0.0
+address=/215323.com/0.0.0.0
+address=/260aesthetic.wixsite.com/0.0.0.0
+address=/3650947.cc/0.0.0.0
+address=/3659ll.net/0.0.0.0
+address=/83291-coinbase.com/0.0.0.0
+address=/94-103-188-123.plesk.page/0.0.0.0
+address=/9825057365.com/0.0.0.0
+address=/abctrvabc.com/0.0.0.0
+address=/access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com/0.0.0.0
+address=/acclimatizable.fun/0.0.0.0
+address=/account-update05.myvnc.com/0.0.0.0
+address=/accounts.google.auzen.us.kg/0.0.0.0
+address=/activebusiness-unlocker3.com/0.0.0.0
+address=/addwsrbh.green/0.0.0.0
+address=/ahnp.vercel.app/0.0.0.0
+address=/aldg.ldgknhk.lol/0.0.0.0
+address=/allegrolokalnie.pl-891241214.buzz/0.0.0.0
+address=/alutipcentra.pages.dev/0.0.0.0
+address=/ambil-pinjaman-daana-payleter.xforms.web.id/0.0.0.0
+address=/ambulatoriprivati.it/0.0.0.0
+address=/amev.ldgknhk.lol/0.0.0.0
+address=/antail-conv.com/0.0.0.0
+address=/apply-now-to-receive-badge.vercel.app/0.0.0.0
+address=/artsea.pages.dev/0.0.0.0
+address=/atmailupdatewptnskmdinfomailacct.weebly.com/0.0.0.0
+address=/att-101072.weeblysite.com/0.0.0.0
+address=/att-1041page.weeblysite.com/0.0.0.0
+address=/att-105714.weeblysite.com/0.0.0.0
+address=/att-105819.square.site/0.0.0.0
+address=/att-inc-107097.weeblysite.com/0.0.0.0
+address=/att-login380.weeblysite.com/0.0.0.0
+address=/att-login522.weeblysite.com/0.0.0.0
+address=/att-service-102155.weeblysite.com/0.0.0.0
+address=/att-sign-in-105669.weeblysite.com/0.0.0.0
+address=/attcom-100762.weeblysite.com/0.0.0.0
+address=/attcom-106808.weeblysite.com/0.0.0.0
+address=/attmailservicenow.wixstudio.com/0.0.0.0
+address=/attmailservicenow.wixstudio.io/0.0.0.0
+address=/attmailsrvrdesk.weebly.com/0.0.0.0
+address=/attnewmaill.weebly.com/0.0.0.0
+address=/attyhhhhiiii225.weebly.com/0.0.0.0
+address=/atw-tau.vercel.app/0.0.0.0
+address=/authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com/0.0.0.0
+address=/authsyncs.pages.dev/0.0.0.0
+address=/autoreplyattmode.wixsite.com/0.0.0.0
+address=/avoid.hold-managert.com/0.0.0.0
+address=/azbin.ir/0.0.0.0
+address=/b45018.com/0.0.0.0
+address=/bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link/0.0.0.0
+address=/baiii-wong.cutvi.cfd/0.0.0.0
+address=/basvuru-online-yap.vercel.app/0.0.0.0
+address=/beionfidi.pages.dev/0.0.0.0
+address=/bet73nn.com/0.0.0.0
+address=/bet83039.com/0.0.0.0
+address=/bet83054.com/0.0.0.0
+address=/bfrescentremebermainsetreouytnoy.weebly.com/0.0.0.0
+address=/biggggggggggg.weebly.com/0.0.0.0
+address=/bitnode.pages.dev/0.0.0.0
+address=/bitvavobtc.com/0.0.0.0
+address=/blackhere11.serv00.net/0.0.0.0
+address=/blss24att.weebly.com/0.0.0.0
+address=/braucrarasuteu-2470.vercel.app/0.0.0.0
+address=/bt-102124.weeblysite.com/0.0.0.0
+address=/bt1business.weebly.com/0.0.0.0
+address=/btuan-dan2-resmi.top1.my.id/0.0.0.0
+address=/buildingdesignsusapdf.s3.us-east-005.backblazeb2.com/0.0.0.0
+address=/business-page-property-897432967.netlify.app/0.0.0.0
+address=/caipora.xyz/0.0.0.0
+address=/calm-pothos-3b24c9.netlify.app/0.0.0.0
+address=/carrefourarabiank15.pages.dev/0.0.0.0
+address=/caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com/0.0.0.0
+address=/catgirl-appverset-nya.pages.dev/0.0.0.0
+address=/catxtokens.pages.dev/0.0.0.0
+address=/chat.94-103-188-123.plesk.page/0.0.0.0
+address=/check154109.click/0.0.0.0
+address=/checkseven.vercel.app/0.0.0.0
+address=/ciente-a.org/0.0.0.0
+address=/cieplo.app/0.0.0.0
+address=/cj12143.tw1.ru/0.0.0.0
+address=/cj87335.tw1.ru/0.0.0.0
+address=/claimyourethrewards.pages.dev/0.0.0.0
+address=/clickbait.design/0.0.0.0
+address=/cnsa163.com/0.0.0.0
+address=/cock2-iota.vercel.app/0.0.0.0
+address=/cock3.vercel.app/0.0.0.0
+address=/cock7.vercel.app/0.0.0.0
+address=/contact-pro-8291-d01.firebaseapp.com/0.0.0.0
+address=/contact-pro-8291-d01.web.app/0.0.0.0
+address=/creosrl.com/0.0.0.0
+address=/curmmgdv.email/0.0.0.0
+address=/currently541.weebly.com/0.0.0.0
+address=/currently890.weebly.com/0.0.0.0
+address=/currentlyserver.weebly.com/0.0.0.0
+address=/dara3dccj.wixsite.com/0.0.0.0
+address=/db.service4db.com/0.0.0.0
+address=/de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev/0.0.0.0
+address=/debutcan.firebaseapp.com/0.0.0.0
+address=/debutcan.web.app/0.0.0.0
+address=/delivery.attempt.failure.ebbs.co.za/0.0.0.0
+address=/dev.stream.mornar.app/0.0.0.0
+address=/dnwqmh.click/0.0.0.0
+address=/dropsmartchain.pages.dev/0.0.0.0
+address=/dsjoting.group/0.0.0.0
+address=/dulb6c5p5.top/0.0.0.0
+address=/ebay-mallwholesale.com/0.0.0.0
+address=/ebt-lilac.vercel.app/0.0.0.0
+address=/echoredled.netlify.app/0.0.0.0
+address=/elbarco.percentadnp.info/0.0.0.0
+address=/eltritongourmet.com/0.0.0.0
+address=/email.mgb.modento.io/0.0.0.0
+address=/enjomugg.firebaseapp.com/0.0.0.0
+address=/enjomugg.web.app/0.0.0.0
+address=/error3456vhubhornbase.azurewebsites.net/0.0.0.0
+address=/example223.wixsite.com/0.0.0.0
+address=/eyeydhe.wixsite.com/0.0.0.0
+address=/eyttueiu.square.site/0.0.0.0
+address=/facebook-avip.click/0.0.0.0
+address=/fame.pink/0.0.0.0
+address=/fassehoizubra-7696.vercel.app/0.0.0.0
+address=/fastdropchain.pages.dev/0.0.0.0
+address=/fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io/0.0.0.0
+address=/fla-1001.square.site/0.0.0.0
+address=/flo4211.github.io/0.0.0.0
+address=/fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com/0.0.0.0
+address=/fnuttlie.wiki/0.0.0.0
+address=/fokeijonnekou.vercel.app/0.0.0.0
+address=/fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com/0.0.0.0
+address=/free-verified-badge-form0-service.vercel.app/0.0.0.0
+address=/free-verified-meta-badge-service.vercel.app/0.0.0.0
+address=/g06668706.wixsite.com/0.0.0.0
+address=/gccndbqg.vip/0.0.0.0
+address=/geriodememerkezi.online/0.0.0.0
+address=/get-checkmark-for-you.vercel.app/0.0.0.0
+address=/get-free-verified-badge-service-on.vercel.app/0.0.0.0
+address=/gitanag.broke-it.net/0.0.0.0
+address=/gruprocuroipra-6493.vercel.app/0.0.0.0
+address=/h5.b9en.com/0.0.0.0
+address=/h5.metacoint.com/0.0.0.0
+address=/hcghij.top/0.0.0.0
+address=/hecregayatu-1014.vercel.app/0.0.0.0
+address=/hejmtxxt.guru/0.0.0.0
+address=/helenblunt6.wixsite.com/0.0.0.0
+address=/help.accountsupportcentre.com/0.0.0.0
+address=/here-apply-for-page-review.vercel.app/0.0.0.0
+address=/hgbk.ldgknhk.lol/0.0.0.0
+address=/hhideiie.wixsite.com/0.0.0.0
+address=/hitummoinneullei-5882.vercel.app/0.0.0.0
+address=/home-101067.weeblysite.com/0.0.0.0
+address=/home-103465.weeblysite.com/0.0.0.0
+address=/home-104341.weeblysite.com/0.0.0.0
+address=/home-105266.weeblysite.com/0.0.0.0
+address=/home-105929.weeblysite.com/0.0.0.0
+address=/homeattatthome.square.site/0.0.0.0
+address=/hpnefhqs.motorcycles/0.0.0.0
+address=/im25.net/0.0.0.0
+address=/info.supercitrus.ind.br/0.0.0.0
+address=/ins-business-home-center.com/0.0.0.0
+address=/instagaramgalochka.vercel.app/0.0.0.0
+address=/ipv6.43-135-137-110.cprapid.com/0.0.0.0
+address=/irmt0ken.win/0.0.0.0
+address=/iujf7839iofvkbcu748.weebly.com/0.0.0.0
+address=/iwimwmiwi.click/0.0.0.0
+address=/jagej73796.wixsite.com/0.0.0.0
+address=/jfdjy.com/0.0.0.0
+address=/kalyani963.github.io/0.0.0.0
+address=/kexoigrufouddou-5902.vercel.app/0.0.0.0
+address=/kl1k-ds1ni.neupdile.my.id/0.0.0.0
+address=/kliind08.wixsite.com/0.0.0.0
+address=/kreelo098.weebly.com/0.0.0.0
+address=/kremlcup.com/0.0.0.0
+address=/kshitij12375.github.io/0.0.0.0
+address=/kucoinglobal1.com/0.0.0.0
+address=/kxbztydc.black/0.0.0.0
+address=/labanquepostale.jupiter-analytics.com/0.0.0.0
+address=/leddevotoze-3146.vercel.app/0.0.0.0
+address=/linnkdna-kget.wxxzsite.buzz/0.0.0.0
+address=/llahi.info/0.0.0.0
+address=/llahi.vip/0.0.0.0
+address=/loffaummuddote-4145.vercel.app/0.0.0.0
+address=/login-att-10221.square.site/0.0.0.0
+address=/login-form.world/0.0.0.0
+address=/login-online-outlook365.com/0.0.0.0
+address=/login-outlook-midstreamauth.com/0.0.0.0
+address=/login-screen-103134.weeblysite.com/0.0.0.0
+address=/loginaccount70.wixsite.com/0.0.0.0
+address=/loginaccount77.wixsite.com/0.0.0.0
+address=/luk6414.wixsite.com/0.0.0.0
+address=/luxlifemiamiblog.com/0.0.0.0
+address=/m.meta-accessibility.io.vn/0.0.0.0
+address=/madebybmr.fyi/0.0.0.0
+address=/maqpiexyz.click/0.0.0.0
+address=/mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev/0.0.0.0
+address=/mayfair313.wixsite.com/0.0.0.0
+address=/mdbrvlfy.black/0.0.0.0
+address=/mesageriepro33range1.weebly.com/0.0.0.0
+address=/metamsk-wallet-3.gitbook.io/0.0.0.0
+address=/metttaa-audddt-new-02.firebaseapp.com/0.0.0.0
+address=/metttaa-audddt-new-02.web.app/0.0.0.0
+address=/microsoft365-storage.github.io/0.0.0.0
+address=/mikepattyjm.wixsite.com/0.0.0.0
+address=/mobilemidasbuy.n3g.fun/0.0.0.0
+address=/monespacepro-client.3utilities.com/0.0.0.0
+address=/monetization-violation.github.io/0.0.0.0
+address=/moodengsol-net.pages.dev/0.0.0.0
+address=/mwsiekdnfjrdufs.weebly.com/0.0.0.0
+address=/mxmxnmx.mx.zya.me/0.0.0.0
+address=/national-au-b.com/0.0.0.0
+address=/national-au.net/0.0.0.0
+address=/nbaaiqjq.group/0.0.0.0
+address=/nexomyacwv.weebly.com/0.0.0.0
+address=/nft-time11.vercel.app/0.0.0.0
+address=/nichcheck.weeblysite.com/0.0.0.0
+address=/ns1.carrier-ast2-portal-apple.com/0.0.0.0
+address=/omadshf.ru/0.0.0.0
+address=/online-assist.live/0.0.0.0
+address=/online-promo-asb.org/0.0.0.0
+address=/openkimono.pro/0.0.0.0
+address=/opportunity-verified-status.vercel.app/0.0.0.0
+address=/ourtime.reconnect-dating.workers.dev/0.0.0.0
+address=/owouwuowo.click/0.0.0.0
+address=/p365kf.com/0.0.0.0
+address=/p4zv8crnrrha27so.94-103-188-123.plesk.page/0.0.0.0
+address=/page-center-manage.com/0.0.0.0
+address=/pavan-patil-22.github.io/0.0.0.0
+address=/pecinternational.net/0.0.0.0
+address=/peesom.chat/0.0.0.0
+address=/pencairaanndannaa.my.id/0.0.0.0
+address=/petty.wiki/0.0.0.0
+address=/pimnhv.group/0.0.0.0
+address=/policies-business-page-service.com/0.0.0.0
+address=/pottatrebewe-2808.vercel.app/0.0.0.0
+address=/pqo.hrf.mybluehost.me/0.0.0.0
+address=/programming--service--panel-totlyy-free-for-you.vercel.app/0.0.0.0
+address=/promo1.spik.ru/0.0.0.0
+address=/protocolsecure.pages.dev/0.0.0.0
+address=/pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev/0.0.0.0
+address=/pub-1778406e4fec4394901793111c187dd9.r2.dev/0.0.0.0
+address=/pub-19b834342e7d465b9f00b3511325a081.r2.dev/0.0.0.0
+address=/pub-21dd4dc659614ceb93e45a6de4434502.r2.dev/0.0.0.0
+address=/pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev/0.0.0.0
+address=/pub-2fefe932a6974485b987c9ba851b5c40.r2.dev/0.0.0.0
+address=/pub-3a46d9914f494078a6d6237513e7a096.r2.dev/0.0.0.0
+address=/pub-442ed822851244a689b3472ea2c6a950.r2.dev/0.0.0.0
+address=/pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev/0.0.0.0
+address=/pub-682ad3b65d944376b919745aae3c56d4.r2.dev/0.0.0.0
+address=/pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev/0.0.0.0
+address=/pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev/0.0.0.0
+address=/pub-7f5cf36445d042168bfacd712e890dc0.r2.dev/0.0.0.0
+address=/pub-803839714a924882a7bcc2495a26860f.r2.dev/0.0.0.0
+address=/pub-8161de4a277e4ee8b532af34954224e1.r2.dev/0.0.0.0
+address=/pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev/0.0.0.0
+address=/pub-8376b5b2334844d193a525d8b8548fa5.r2.dev/0.0.0.0
+address=/pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev/0.0.0.0
+address=/pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev/0.0.0.0
+address=/pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev/0.0.0.0
+address=/pub-9163a97d70394cb499bdd232be6c2169.r2.dev/0.0.0.0
+address=/pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev/0.0.0.0
+address=/pub-98171471e0944ac3a5820ef719bf0640.r2.dev/0.0.0.0
+address=/pub-a263e0790935412eb10cacc55bbced18.r2.dev/0.0.0.0
+address=/pub-a291041b077742899b63a9982f04a56c.r2.dev/0.0.0.0
+address=/pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev/0.0.0.0
+address=/pub-b50adc5d699a4f08aec37102c2103da7.r2.dev/0.0.0.0
+address=/pub-c0a934c950e441db96b882789f53c9ea.r2.dev/0.0.0.0
+address=/pub-c2c250050109456396c933de259a4fea.r2.dev/0.0.0.0
+address=/pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev/0.0.0.0
+address=/pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev/0.0.0.0
+address=/pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev/0.0.0.0
+address=/pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev/0.0.0.0
+address=/pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev/0.0.0.0
+address=/pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev/0.0.0.0
+address=/pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev/0.0.0.0
+address=/pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev/0.0.0.0
+address=/pub-e42cb528b102447385e3145197916f51.r2.dev/0.0.0.0
+address=/pub-e4aff507450c478cbe3f77ad23d75035.r2.dev/0.0.0.0
+address=/pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev/0.0.0.0
+address=/pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev/0.0.0.0
+address=/pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev/0.0.0.0
+address=/pubgm.club/0.0.0.0
+address=/puffagroibrouwoi-8818.vercel.app/0.0.0.0
+address=/qasimk.com/0.0.0.0
+address=/qfjfvseq.info/0.0.0.0
+address=/quauwograssodda-3503.vercel.app/0.0.0.0
+address=/qysgyp.com/0.0.0.0
+address=/rajdipchatterjee.github.io/0.0.0.0
+address=/rechazaroanularaqui51.weebly.com/0.0.0.0
+address=/remote-fix.pages.dev/0.0.0.0
+address=/renggard.47-243-192-240.cprapid.com/0.0.0.0
+address=/resolvepanel.live/0.0.0.0
+address=/resolving--issue--with-us1.vercel.app/0.0.0.0
+address=/resqat.weebly.com/0.0.0.0
+address=/review-business-case.d2f7p3b7pucnle.amplifyapp.com/0.0.0.0
+address=/rlpqwefi.pink/0.0.0.0
+address=/rouloigeilleuja-9523.vercel.app/0.0.0.0
+address=/rulemec.pages.dev/0.0.0.0
+address=/rutinqqwin.shop/0.0.0.0
+address=/rwftfu.quest/0.0.0.0
+address=/s.team-pw.cc/0.0.0.0
+address=/sairanees.github.io/0.0.0.0
+address=/sanseipecas.com.br/0.0.0.0
+address=/sasklelo.weebly.com/0.0.0.0
+address=/sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com/0.0.0.0
+address=/sasktelcustomerwebly.weebly.com/0.0.0.0
+address=/sasktelnetwebmailservermaintainance.weebly.com/0.0.0.0
+address=/sasktelrectify.weebly.com/0.0.0.0
+address=/sasktelscrutinize.weebly.com/0.0.0.0
+address=/sasktelservicecentterwebly.weebly.com/0.0.0.0
+address=/sasktelsupportsystemwebly.weebly.com/0.0.0.0
+address=/sbcglobal30.wixsite.com/0.0.0.0
+address=/scan-vulnerability-guard-v3.pages.dev/0.0.0.0
+address=/scan-vulnerability-guard.pages.dev/0.0.0.0
+address=/scanner-metamask-v1.pages.dev/0.0.0.0
+address=/scanner-metamask-v2.pages.dev/0.0.0.0
+address=/scanner-metamask-v3.pages.dev/0.0.0.0
+address=/scanner-metamask.pages.dev/0.0.0.0
+address=/sec-sign-in.info/0.0.0.0
+address=/secure2-validitycheck.weebly.com/0.0.0.0
+address=/securecapitec.theprimepoint.online/0.0.0.0
+address=/securerpcfix.com/0.0.0.0
+address=/seeteressecalywoi.github.io/0.0.0.0
+address=/seivviice.weebly.com/0.0.0.0
+address=/server.0e7p.com/0.0.0.0
+address=/server.2rk3.com/0.0.0.0
+address=/server.8q3p.com/0.0.0.0
+address=/server.n6b8.com/0.0.0.0
+address=/server.v9vs.com/0.0.0.0
+address=/sevvviicess.weebly.com/0.0.0.0
+address=/shard.blue/0.0.0.0
+address=/shard.skin/0.0.0.0
+address=/shared-d7590.firebaseapp.com/0.0.0.0
+address=/shared-d7590.web.app/0.0.0.0
+address=/shaw-101329.weeblysite.com/0.0.0.0
+address=/shaw-101587.weeblysite.com/0.0.0.0
+address=/shaw-106427.weeblysite.com/0.0.0.0
+address=/shaw-107375.weeblysite.com/0.0.0.0
+address=/solutionwebsitedapp.firebaseapp.com/0.0.0.0
+address=/solutionwebsitedapp.web.app/0.0.0.0
+address=/solvetans.firebaseapp.com/0.0.0.0
+address=/solvetans.web.app/0.0.0.0
+address=/sondfrom.dexlog.my.id/0.0.0.0
+address=/soyokai.or.jp/0.0.0.0
+address=/srdate.club/0.0.0.0
+address=/ssy.hmb.mybluehostin.me/0.0.0.0
+address=/steam.poweredartsworkshop.com/0.0.0.0
+address=/steam.workshopsreview.com/0.0.0.0
+address=/steamcommmuty.com/0.0.0.0
+address=/steamcommuunity.ru/0.0.0.0
+address=/steamcomunutty.com/0.0.0.0
+address=/steamconmumity.com/0.0.0.0
+address=/stepsray.vercel.app/0.0.0.0
+address=/support-metahelpcenter-id100003498934.netlify.app/0.0.0.0
+address=/sv5gardens655665.weeblysite.com/0.0.0.0
+address=/system-portalnu.duckdns.org/0.0.0.0
+address=/talwgam.njmolada.com/0.0.0.0
+address=/taste.baby/0.0.0.0
+address=/tele.zhngain.top/0.0.0.0
+address=/telegrambot-resolved.pages.dev/0.0.0.0
+address=/telegrazm.net/0.0.0.0
+address=/telstra-100408.weeblysite.com/0.0.0.0
+address=/telstra-100469.weeblysite.com/0.0.0.0
+address=/telstra-103234.weeblysite.com/0.0.0.0
+address=/tiktok-888.vip/0.0.0.0
+address=/tiltckshow.top/0.0.0.0
+address=/tnomwzrp.top/0.0.0.0
+address=/toeken.im/0.0.0.0
+address=/tonic.pink/0.0.0.0
+address=/tooma.cellinsurance.co.zw/0.0.0.0
+address=/tpdtepremu.xyz/0.0.0.0
+address=/trattujeilesso-3354.vercel.app/0.0.0.0
+address=/trbinace.com/0.0.0.0
+address=/treibrukeukonno-1395.vercel.app/0.0.0.0
+address=/tuesmad.firebaseapp.com/0.0.0.0
+address=/tuesmad.web.app/0.0.0.0
+address=/tyyyyyytyyy.weebly.com/0.0.0.0
+address=/tzcsjfto.chat/0.0.0.0
+address=/u.updatetrackgre.top/0.0.0.0
+address=/uc-whatstapp-web.com/0.0.0.0
+address=/udxcady.wixsite.com/0.0.0.0
+address=/uklifejv.cyou/0.0.0.0
+address=/updatemail12.wixsite.com/0.0.0.0
+address=/ups-trackdeliveryapps.chickenkiller.com/0.0.0.0
+address=/usbest.cyou/0.0.0.0
+address=/user-transaction-overview.vercel.app/0.0.0.0
+address=/usps.com-trackdck.top/0.0.0.0
+address=/usps.com-tracklnv.top/0.0.0.0
+address=/usps.com-trackmcl.top/0.0.0.0
+address=/usps.com-trackmec.top/0.0.0.0
+address=/usps.com-tracktpq.top/0.0.0.0
+address=/usps.com-trackvmd.top/0.0.0.0
+address=/uspsinfw.top/0.0.0.0
+address=/uwdtsczi.top/0.0.0.0
+address=/uwm-onedrive.com/0.0.0.0
+address=/vaishnavi1436.github.io/0.0.0.0
+address=/validatie-veiligauthenticatie.com/0.0.0.0
+address=/vbbu.ldgknhk.lol/0.0.0.0
+address=/verified-this-request-badge.vercel.app/0.0.0.0
+address=/vo4zzp.icu/0.0.0.0
+address=/vs41.github.io/0.0.0.0
+address=/walett-cont.gitbook.io/0.0.0.0
+address=/walletauthenticators.vercel.app/0.0.0.0
+address=/walletcomnecitt.gitbook.io/0.0.0.0
+address=/walletconnectdapps.online/0.0.0.0
+address=/watranfart-fdd6a8.ingress-bonde.ewp.live/0.0.0.0
+address=/waxed.wiki/0.0.0.0
+address=/webmaillshavv.weebly.com/0.0.0.0
+address=/weeeqweeattt.weebly.com/0.0.0.0
+address=/weigh.skin/0.0.0.0
+address=/weigh.wiki/0.0.0.0
+address=/wgqdqvtn.baby/0.0.0.0
+address=/wgqdqvtn.pink/0.0.0.0
+address=/whatsapp-rqr.com/0.0.0.0
+address=/wirelessvoicebtpaidmailinfoplay047.weebly.com/0.0.0.0
+address=/wscs1231.cyou/0.0.0.0
+address=/xn--metmasklogin-vcb.gitbook.io/0.0.0.0
+address=/xojautruffeuttu-4659.vercel.app/0.0.0.0
+address=/xraiz.info/0.0.0.0
+address=/xraiz.vip/0.0.0.0
+address=/xsuweamskeidjf.weebly.com/0.0.0.0
+address=/xya46.cc/0.0.0.0
+address=/yahoooooo-108560.weeblysite.com/0.0.0.0
+address=/yavanica123.github.io/0.0.0.0
+address=/yi5lq-syaaa-aaaag-acfsq-cai.icp0.io/0.0.0.0
+address=/you-can-receive-here.vercel.app/0.0.0.0
+address=/zeiitgeist.angelocachero.info/0.0.0.0
+address=/zenixoikitti-5809.vercel.app/0.0.0.0
+address=/zeznjx.shop/0.0.0.0
+address=/zwzcn.com/0.0.0.0
diff --git a/phishing-filter-dnsmasq.conf.br b/phishing-filter-dnsmasq.conf.br
new file mode 100644
index 0000000000000000000000000000000000000000..6a723e642fd9956155ccfa7366c2571780377f48
GIT binary patch
literal 5369
zcmV<V6b9?@xJ)9Vm=Ay=WSIMBs{dd8YpOdl8xnk?fC=4hpF($lgM=-COt38fpQ^fQ
z^yo3em~44_HkZlSEKQOpXG`9m|L?%(qm%-ODd!HQf~lb70dl{8sbngU3Z{~&P#S?$
zFa@b?a<XP`!%EPtV~VlaKSuuE>Pm>G`^(1o_34kkD2zrJe0y8_!_Rq(`=USo{Ogwc
zmdpAx+Kc;7tRK){KeFQ8b05F{@bh2iMr8cskAD3XgmWVFe=_z*!TzZA|Nr{K&%b=m
z+_3-ghyO&lfBtT3wV!lm#M~v^fB)+bKRwSlVZ}fGY-612*s$iYgJ<Jb2kaL#BrUD|
zb~cRvZT+u5{1~jex`L@cjM2JZfB2CJ+5h;%4J3unx&QRD=CRHC*5(oR_u2B<>iUJ>
zIONcOh5?+P`o-$c`^#^fb1oMhH;K0x{kk)WS2)Q@sJRry`gczki{M%c`Ty@)7+@b8
zjvVNfKf_0$9<W?AbIQ;Vu0yzeZ{>un6z;b<ML3g$TT8f*^xUyO=}4-`)38D_ZRDb>
zO9y-y?F~MV%nAW}r|NJyZP_jglSTKs?uBYagcz<-Z?`f-!+9p)Xf?a{e89+G6?t)*
zW}&;K&N7JL#>q52?ssV^&`)=2@CHg@ezDNm>2tlmVdOXJn<TSnl^<+_J|AMddh;7q
zZxxN)%E^-60`3&f^Yu{faix1)pJjW}z3%t_*B#eZ_xgmrWTfX#tm8s)!4>uM`z?0c
z9Qh2#iGhRvdYwjm)BefB=bfCnJm7#rB0vFh!oB0bMn8MledJCr^fbo`=FS~PZTXDL
zz3#{~kGCNB?qg2MfV`7X%bU-|ai054O1;Raq+!7PM&co^$lWg5=*WUw#sPVkqRi_Y
zr9Y3DORE3L3xqJ}h3NOYW!sKHIOEI+Qlh>ya#Qi<+!gOHi8fq4TxYqXGmxP7gpX@;
z3D?~l=1kQ%$vs2Tve(Bz3uaV~Y4hDcI1^m!V&}<gA-POgFN@m?g?bRqm{~-L2``pe
zkPzOHwWVH`{tX^8=32;Su6K5Ow`jU`#84KzinO%T4$Zx7+m>_ALg<eLTx7u1E-@Xf
zdkiyQG5(d4UA%Yfd3F+UU>F#$QlDe%cL`l{J#*BC=YF%RjT&*TML$zeCv1xNU(F2S
zUcNpTn%jS4@JcgoOa2Euq}yYLa+rPJkL4}ec~98%`t6$#>nG(Wc%4yxFfU0IS=RLK
zA1xHkXX-SX*caV%dDedl=A6k@%Syu>?@U9Al(YJKwn<#jHpmTgPTC%GEh)#$=6E~~
zBTMOa+&HXc(ow94R=E2v&P@$?pvUIG<{d}FI`2{HEuK&CdHte8Ek;~K?`ArAyy0E_
z2+t7lxHoLbIaOdEjQM1J@O$q<!I&_Lz&DtoL4!UAP9l_HBL&92O~J)Hu)z=RuV}Qw
z8grIE<VBE%{m69Glhfm#-i=s<1uWmuXNNN;+9jQx1U(L6Ow*_&9>2pEz1XbbN5N3s
zo1A=>3}T&8Qn<x1wSzsUn+<~ukk8tHe(o>95w#!WtYfR4NH0`y70T8yuFEkr@EOXJ
zYXNBp&@spT<E@6l;~%`a6iRBfXhS1kQ;yof%$JxHj&s`~;5<1Y1B?Ls2q18tZ)_b0
zDK|908lRY%ZV4fjf1s$dk6~&f*NQVoqhbmfM)P#}WXG_&772v(N{TS&UQ3II-}(_H
z9T%r<(yXR6QtFu<^09NigJWwLervD^x_XO;Jg6+IsG^h(d~xpqI7&c}TnDhEyBePI
zW?76=285v}Cb2P|Co)b`ZaA?LrAt{7rWC?<Vrf`=+pF7Zw&Pgin;z+-ng&3z==-e|
zH#HUFF|dw-f%T8=vmX%}$QZ(7x?dkXb+y8%=*j**6f&i>ki~{T6v#k4UmQ_3dT^2(
zP@XVGWb3aR@`3zi6TNCnr%N5h>3-i;C+O!0P{yr7O&co?IM;3pd{0qqYLFDY?=)2U
zh1=;jg{I=6M{NaK{gKM`IyM^sxEVrok;4YLXqOZFqYjV-p(+)PXYPIp`qVRx;>AG^
zHvu;hu>%N^z%U2>AbU7QS0KQ06KEKBjPt<z;O?P?N>81E9m`20J|%T-M$4m?wa#{+
z&xqRM&|~$~5%p1qOOJ<?(&aJNRXQrvv}?o&zep;*ytnDM+T8Bj;5!?_oCH6GW5I0*
zA(bd8yz!135+*Rl#5}`J1DlUT;GIvQ>p8)J^z?sE;|Y4lt>*9a4TxFXA_sPYK15hg
zdNb3bCm<RCfc$XCBYCAAfCR`ihm#GYOgluBt?+Ko-K!FuQ*2UQnOS_?#83y0Ow~q3
z&~6>Iaf&b_YL5VM6MZDysmw9<JYJ9X%p}85pO_!D6nxfr?kqf=TKfJzqr7`bM*1gT
zfnA67ukS5bJ}>hOAoV1H{H8GiGlD=zm$6u1qXE0tfQLN9tI>Yx$I6yvv4$-&JIFPJ
z68&qX?_ALjV#_t+fd{rHelrcFl*HB`P7;9j(9Iy^<}Q>{vWWMu4N}XqnMcezNsr<<
z1j$3a@vyXxfL6n7HJ=U0qMSbx%ciM!7~RQD({X@^o?`f7*uuKyhh@*&Ff?4@hB3jh
z7F1gXh>v4@K7+2)+Z&P%cPxINWsETR>6cNAch)@5+D3>;DzdI2!4zQ_F*sp~7>yRU
zvHB;F*_Un05p%}t(|R8BIBG5h=e}bm+FEgq2knJW<Aqxcr(Y#fE&6IDeLB7CRinkS
zjNS?7f-zu>-!u&D{Ov55wpXWlOU&urPk-(pA42O2O!ifp>9ayU+^}A0E|L01e03+m
zEA|LvY6Y<IbFA%Jp~0~l?f}~}UMPZmz89(_;ZhSW4dI-DVgt+V80?9KUb#@5#^)m$
zD_ySX{q$iPWes*(`O3$2<SS3g{dvHO4<n7!yiOh|KDLwNC+s(r>=rp07QqugHLq=^
zI%BMpXvcKnboAW$lf=$TrUmC2^Ns+9>$&G#BA!d`MjxIHaj(pAEtO}(V-NGB$a~-N
z$PX^0(LEN^tg>uwGrYQaAO9V93>14((0F$6P+k+W$KW&X@R(;F*vPU2!p#$Qj2Ea)
z67`Eja^*<<jy;$1j0MPZ#X+yn=leoPGey~V*s>4J{;!^MJ$p?F=5Y*t`~!*NO5bC8
zVUi>}f(YS-u>#<NK-lJMk5n8km35A+J}v*r3oy#-$dO}|1wb{q5KG>JF&-V43P1TI
z7QisM-Iab>j6I)=$|GqIiqFad=g4s6^$CRg>fsqol6)^;i}!joSNb+fu)g7=`r99k
zraP0w^*S?t?ynU(OFrPLr7=?BfSzZVNa_jK5eg!CWhezYHZOni0e3gKNgnW|bVT3Y
zd%Cqw9@sMmjTz5YrCi#f0e=9aoTER<m9(`6v4Ic<sb8G~#~5+QXUrJmAO$b-suw5{
ziqfJ+T!IA4jXZMEq>tK?kW^y@i<#D(*X`VogMo)f^?Ao5N9cauw8%A6kB4@Np$y<u
zY}rkX$`d5fR1R;T9HjptyHqFdT=(DTO&2u^PkrrmCk2Oq49C?oK4VFb7H2}u583fK
zKIQn(<3qnU(8K5$3y(S>FbV3kGa11<NvU{%{Cd3bl$;m*)Z>P5y<2RTG{_nu|D4;@
znUcd6%IFy<yL3*WbCG8nyAMJ9Yv@au^W5KiuLs1wCH$7#T{rZe`=BrvjgFtC{0<0o
zk21qjpaDMfQA?#~t2EHsSIm;f9e%~$2aMU-BkOET6cqNKRSJedR-eIq66T3bs?w@g
zo!6{awQ4b(a?#Jkw4>UozHb{^X>9{xdIk02Kiog%*-gU3VSK_H3OQlqod}^y8%_)-
zT8WD-;mLg>_Il79gpwem1jr4blxVM;0!J;%iDTRVMoecu%J$X?W0l=~kQ9@F8W8v(
zYN+99=<z}#a{Xjs$T(k>ZY|N{UI_T&TkXRD@CQ_%IDl(L7HWjtZw#}^sAIox5rDS5
z0K0w9oc1$6M^NQ|4FsT3CN84Ra%ZdO^n`PP2uTEEq~bvVx}-6rWHG=3nl=$ZSr}s#
zTTmqoN;>5jH%@ZS1Ggqd=YFB{Rw}6kny41-U1H2j?Jj;PG%(A*N$?m|42yOPR{`CT
zAW>;pA}S@7X2PA5H1gs}XuVa*EY2{5Wl@WE5KQFm437z&6tFm>l-1r@6PyRDxz|B4
z_nRcBB|67dQcf{rVTsGGAayR$0CS5k3#9}`D}>ctC<TjkUMeFHL|DM-)IW7$pd(;d
zxCeLSB<WOeI@$%bw_HVE7FIx%e$mk>CC%a;cSdOdltC|1xst#D!h=hCNh-wPB$(v6
zuzC>=M2$Np;DRcbMJ5(O;?XKhk)`A`IBAW1D2b#)l8aJ0G9~z8eS#1T7ib-eq1>fm
znY7XwuD}UptpMXg5Xxx~i(OdqCBYXSQGqZ96{7W83P@5pt%OkM%f@oY1asP0FO?PE
z#h@_)3Rq-ZFm-66;?Z76sjO0wI|*9oXuZ|SrZK%I)+XbP)ygeiC8j`u6`)xJ_pmI+
z^f-!&BXMm|MWwwFxC9JVGj4p0{<EUyiW|?2Qtt4V5KPc2DPT!4o}9~Ye39TxG^}eM
zSzbBkV-!+&T!P?B1S8@5AUY4;D8m7mNn<4m>7(UI_;Rt_aAi0$rxXMU+6soraOV?S
zCWO)fu}EabF(<X+0zGE|LeSd#fRS4-98@sNGh>Vr);V7f(pk}TZRjODmIN51C4lxI
zl~UlBD3mY}V2RRWNBK;z8N{ID;vBfc-vS0{I1@o|CL<W<1O`q{KSjY%DIUFBytTqu
zm$VEH;o+M^5SlT~ICDxb(s_cDGNRDA(emXY9je7R9&J>}(8t9Dos`y6a5kIlNsykq
z1+|mRsf5a*1fF67Z+`^x?CqPKWl;+sxmu#|kx4fMi+0FOipINdvXLWLr=l^6CGLj9
z2Du3C!Xib`%~dv0M5Ps~7!6l87*JMACQJ+hz%9Ncmbh@>K>$V-t@lAK$Uq98A~NI4
zB3cJQaD_T?m4t&}qf~(h;hZqmjo|ro!iXBocX45y_c}<f{1RQeX*_t82wn^84UaOE
zkyfMRO4}J-6uu<Q%K=i-%qY!*GB$XW$ry-2Mx&XmG&8aFw9Z_RcD6r4AQ{dBi(rFJ
zZXWy1$q1tuliEA2v{61S$qH~CtsAw3C4w`13JkzV%Tbxg!D_W23WJi%z=ow<4{Eof
z{PzM#3D#D#Z*^WZ6Kgp`9K#EGKAx;~DzEfN?~X4~p!1qAFFtt~dap48k($Z$R^#sL
zeL4*uG3$6^9|PM1MHz+AFl_LJR-w!t8oXxK@*COk5J`qk`NLmlH!SN4EmCEO5aln#
z2_lpj|I%+Wb${dDfU@^xWVn}LxBkf_#B8VyGW&i$k%s*Rqimqx+G)E4;I?cUMKY)K
z=A5BeMCgFnQfd47x-eyJeG#-e_nKGC`;PMg#A(seU`-YNz);y4bL8@RUAa)BEfrD2
zl}4J>d`<CYc50OM^yIuOY((Frc3cp9H~O3orDHxZfTT*TE=s*af9|-~Rsh10Q4ec7
zAK>o#8je(q$-ZNKJof%>t)$Y%A%fM8jNcC{Yq4F_x`DPRI4<-!bOyWa^MG8S1dPLO
z7zVCJm)z>1@q*`X<b2x<VvGlBl!<G4nN^%_$Y~#xFRe%c`>T6^LT(N=%DK}f>x34`
zTXt7cP^~vnL^mKceiuT2k~a^s9K~{z^tY=p7-Uf9eI}%^1hLP2QXaRwky7^<ir@Vr
zUxk5=4bPSjyop;hKnD9J+ZiTpO3Yx!ly~eM1MK%z^MFqX^ZT9im|$SV&Ka7MX#Ao*
zWgGS-V;O&0ydBruz5C?5I69DUyatsSsf>&C?_fB40s4rMM57&3S?n5urm3*|1{cnu
zRf!ug=*L7`Gd7D7!f12#yr?F2wOW98B36NBb*KUoYX!K5k<ogOo0C&xG)puzwrRxA
zN<$IL4z$<1J|WZE=p!c4fNK=q@~wNn>2`Rr>7(cJD*EbNrKZj%Mk_rKu){h}DIo?i
z=%zYche+O+P><u7<0h+44S`zPYS4)ZveSrbr1(AZL-eyZxY;4Tp5gopXeKVwH*-8+
zp$|+dXPs2YR@vX0Eln0nU$kD(KWy>j8l4=JN#hL9Sh~LDuo$pkD;%^uj=DpHXz}O*
zL2dX||L(yZ>31tDI8%)s11b=vU+?Q63^RQN<zak$4;=-t3D#(!%~q9B-!4IP?F)DE
zL8Z{}=V0XLs83?8g+w?b?<4f@X0G~)r_|&6wv)oFh!48ooOma-<iNEzj9L$%*QBf*
zcYxUPC0yqkXB>F?IHoNQUJ2A0^MU!GgauS0rH1~=(L9QQRAWWZF#9&2IG?qYO1N}7
z$^<9&1L90+5YxV_asLFrrLUc-jBn_VG^!44dQyBZo+nXVfxW5(<qYH~2v;9)o+Ml9
zuOw#t1c*21YR)H!qqoPKhPzG@%n@t=f^ZSp+Ow0K8#V}aIL}Tm87rPDS6}-MgEMD8
z2!oUd*|9}!mTp=vYas?zdXP(V_T+2z$dsS(tjb+UN4=N#=#Q`iKdR|RJ<iukzK<9t
zmox*UG_N>%_-2ZRgVciY5~PIY$@d#_-wM1lS8`#3kz<!IGG6(Hyyw-(7hXv5x8ePS
z#a8t1cx~G%IanlUAGZ4+?OoOPd(s^GRQPvSAbY$pusOzg0?iKy4#Vl}T+{%y0R&i}
zK8Jb~40$BLfdth!mPnf!^MV2Lr3u;~DaHjXy-l}fCua;rL5kNYH;Qt>2cr_5@A((7
z_YL025%-0NuM45LtqkHYdENE}?B6NbiD!Mq*LxHWp+Z7ft#GD<r<G{0W*kd|LKV}G
z1B0OWut81Y+~H=*6fK?}Iv0{pVe(T5e+FA)hVKji4!-%n^HU!%N1G|(9Agp%8oh5t
z`83Gi{WSY`HSgej`n(Wv79DeZq+-7Q=LWS1!|*gJ_$ficnbpgA58{TC$Q%HkLjAto
zo%Q}A{kF5YBvt|;^_P9uNyI6}86SYwr+>J=nDbZ>Q3UurypD2|uwknen)St!KQ%w|
X7|{D5%q7stw>&-q$QSrt-(W=n!0BSl

literal 0
HcmV?d00001

diff --git a/phishing-filter-dnsmasq.conf.gz b/phishing-filter-dnsmasq.conf.gz
new file mode 100644
index 0000000000000000000000000000000000000000..0c748f05fe1620477159299a3b2a158251f5b8bc
GIT binary patch
literal 5523
zcmV;E6>RDsiwFP!000021DspQj^j#p-TNyNcpEohvN%L=D8QRW8}Pyl18#4;i{XY8
z5*efzK`E7A?-Np1y?!V%l&`a@vIgE8!yV7LRQ>k$cN+%!{`TKT>yOqQ-u^a?!aDz^
zogan2y!~~U)OoNz{L61||2u0DNPmB;ii%}rnN|GnMe)5VzH|P6c>W*nvt7u4e=Fa#
zxWE1D`jCG!3td)n>i!qV{O2^%EDqT67{ctofBSa8353kmG=3Y!a1#q<#twm&Z}aD&
zKK~Bw|FVjl|7Vnc8=k6I<bS4hQSq45Ozt5T_5bY+YaQ3mwQNvF8iw;S9X`ajAJ)nL
zCW4Rxs|c-eQ~&SZN_^D~*T>vZ_*UePAOG;U>gzI7lXX$;vGy-ARmtnB-g(v(f_ykq
zuqwaVcW=YaDmX;Zvo=?1^I1O(+b8Vms(*FD9^NkMtn9k1#7XCY{5g+a+z{<5Uhoz>
zZZ9RI3d<GWcOENv#^;{Yy2QhLp6W`AHCBmWCzlV?VQ@KTSrtQ&;Y<atJuhOmdUw^q
zj?n%Pa-iI-Zc}DjUC5q6Tkw3mU)}yGqpZ&l6V5`pSU<?+tIyAeE#Y9VBv)@8{+_Ka
zW)v+u4#yvEev!xgun=t>^XTSi4n;#Q=6OS4(1#qq&hB`IsfI0yfey<wOlL7TOK@k_
z^<~A%s${ubKR&ip)?jBOP*}vn@jlmd-H;ol9kSWFlNg1|v=B~Yv$zk06wKevw2VH#
zk<6{$R9*)Wrp3;Sy~10$4O>!leQ`e*1WutQcipk^JP-HGO}8ve*+PoopG*pUptNO|
z;3<9mfZ{nkBj`2<=g*_I&cu>BAZ7xtPI9>KoGJuFGGe*<6x+}Brzk7qQNAe5TR8WN
zqFveN{<5N&=23QA&N>wnujtz^EsLbJuI`Gj3-ju0hVZmpQQL7C6jJ^*6?<^FK)h?y
z^j}fIzeBoco9gS*O;>bZk&e;vc?rbiqsoU>+v(3M*lAyWxh^`E?H3{F=oZC?S913w
zzAV0~iocLWnu#@?St~l63%{56pM~GAekN~MpJ|j31@!Uf3O^S1cc*+ZYgg19LP?0G
znlz>Rthi3t?KllOLy5zxOV|<okk;jP`SpopyePYEEh)@hk`-=jhhZ3-YqiYxRUG-@
z!yl{a@NVo`NN%ZqC)=3H)$U-f{+(AWx3j?&V|g8{J8!KGe`U7`Kt`?MYI9}umXyD)
z%bHCNt59|q>3)O5PR>|uQzn)a+S<9DD^uv|qV7{qIoo*(aOod?iAIvNJisgAZ_|1Y
zZn`H!Q`*DtUoRxF7$PHeMH{Y&4H<SYgG2{7A8Dbo%wzHv#Wo(3gZC9fD5ejzh*d3O
z5q=G{A{p8u?WORjkJalQAVc{BtE5j5)<=hT6<VktZ62n%1Zdi9?Q*pPI^h8o2&ETE
zEoN<UUjs8`Bz(vU04@mw!Ac(_tDP->V5sPZY+iuhmv9GoX&FFl(?)|1*4(#EpoE<#
zz?b*?$JWDP%;qT^C!f`_Vyb_&*s_oTk$?*%vh`f@RB$NNGONKTX26XJj=Gn1#cIwP
z-sZYIAb)r-R(q?~T#R$v7u#-I0VVQammz}y7DBLR?k>`shxag@!G4lbM-lQr0rbI-
z6mHGR0*MQ9b>0#2bOkm}#ip{zU&=&2Er-pg^Dymbo+4(g^KdKkW!-w-wRO$+pAW*0
zcX*M)aUrlroi<UtCW>gtpK-h);k+oD9cZtB`>V`OL8Q$AvHGP%`$7U3ScRA)Sr_@8
zF3Q}1oX4iRA6Z*kv7K!1fg<adVP~mz8OMXZ<`mJy=JN$!AMOaCWSRLX*!9KN1Y>ap
z*+|K1WNodLI;C5^miZ^lVp{HqP*odanyl%R%9yBCCd;PJSf`}`^=}1}C~jH3_{$x^
zM&+e5`E6QE9wEmgl&)LL$~7qAUi<8)<gTAI4K`Ms96g1`IpijC6kvOj(qqy5Lu@Hs
zbB{JE#(bO>CzhSH-R&|S_wrw(Li-W43AF`KD3Mv(pQaE8Ea0W<);{YX8^vcHyUeeT
zVWK<G*f89H%gBpi$DxEaI7BLzOde84;6XhAYbJXD4N@$y-yGLM=4deU$o94*!(sz)
z7fQ`YJ9zPtDfxJic?6*@Y{PkSr)gXPS6)WOPs!cLpk<ksn(^j(TqW-Ogxul-!2z9^
z7k(R~(0goBRG~#A6Nv6~N7s8L6v9e&O;b)I6v=5iXX0w-y?`@f1V-D$zD9UY$H{)I
zfKFN4^i47bARc1)zKmRR@<wD_;46#YbapWV{tUE{TQwJ(PJ~2cljVym4-*5^$v@|k
zn+rJ^In#6E@Hv$V)93UItftJhg}N9fMZ)<RM)ccWFm4Tq_2{d!-FOWAU{8~Cbe_^&
z&dj`){yOXW?wx6Cc`gs4xQ(5>eB7(T&bMS~2A-$vIqoC<9Li*IY*hT<`RUF7pp8@$
zpG$m2`A{@X)3rsDj@N@yPRq+7M<8xI#pX!g5kHnQec1d-qqYP?_5esIkmq>C?Eb>C
zQDe(IKL#LE8fL{f0AJ1J0$*n6Je#R~SXQ)u#Lr|wth0voX)JOCZtrP_+2LXIL1gng
zMenE%M|;|?>M+hi2LW2X#=#g%pMy?gcz+N1VckM{fZpWffb@9b-H6fiAM@RH24e_M
zdbuaQQ1+ZBMi)Ma$wF64xAbWb@|+%G9*<U&wJ&Pt(S~&#VO~e;Fp$l7*H!7Ar;#3G
z#^&|h?o+k~OZloStAFCTm$JNSnlH=tRsSVffE@gce@YkE<Lt;BFCNVnbyD3GaKo=s
zcC7ezp2S9<BS2tk8<y3h^J}EmmY~mm64%FVVmtw$Ze9V>K^y>2$3raI$8(x1*!kMz
z41}%b_|;}*S)>PIb{RtfDu}S!pf7eknYOEYJDKZQs<mZZvRK=j9d9GP?=|ET^5N9h
zZT}+cPDY=0_Be~-E}ZSbsuGRxOz)FL?E)p&dRjBy7wJ4W59K-2zH}D;MgO$Gj61`N
z^I+lJILl34;f%^WOhuoz7^KEQtvitI?2*tGq_%E(^0sR%sfS^bVkmc(dY2#Ju2ue+
zJN^265K_3yO7nz(!`)BojH@jfTEuV<R_(w9fMUQPq|66pb;;5o3XRX5wG-JHtt-F1
zzkfW;xBZG~7{t-;;OFPF&3-#f#t78F==MMvD;ZCpDZX0Bo-aD8>IDLO3P<=6Dchj;
zBtA!_(;5aq)ZKTVpTbY6Y_$5xu;P$9rQlV36&MR~S-+m&J#;=BSX-oH_7Ae{3)%JD
zu=oxsE%Xk)M57g>l~{dSYJ8xA?D?+ON(&l{%$xG-MoAh4817w;OK$FV>+xl_^nU-?
zt3ac;O>QZ&33m2&RV&;yi`%FifYikb=fHWE6v7|H9gKN_@zZx7wOp<P$l^}MjUc8G
z9TM<WT`$5NC_Va!MjHJ&yTuo_A$!!nNP#v>0))}|U{oZ64w<7{h6?zSByOwiGRD!W
zW%82=i1Ey$amE*ri9$8nGtKdB(P?~Pya{1|xY5GP^`5)>u>F>PoX|%jjfpcVxE!rC
zuh$Sm$nH^_s1slP$2Uva)lS3n9aHMqQ)J)=KMk-*NCwBvTSAR9r$w(OJux5O$9Ffr
z=lJ<?7s!EMMcm_PVt_xgor%*wh-@Phuy|oFr_0_f#i3P>ccE_A<Y}D=S%?FxGFeZZ
zRmTU7d0Cj8N2?MG5&&JshboKMT0G|1d-IwJ+3$~Lb9Vb#b3yB^4|yDM?aCll#tD*g
zd%_$)26VQFk|~Ge*7JDM)uBrLPQB1I15jVeG}F371Lkq$4}h*h29_R&T<9fdT6Q98
zx=rhC#rM66HY4}WX4_yh`?z*$am#WPRqLleGthr<mnSy;e6zW;hqwv{rh}x*sw$O6
zGbtOF`w_C+@j4UvY0TsMhpmTBq4)~aX&q~|*aK-Z3fX;Ucrn}29j|-&Fi)^EibwXx
z*GoSp2HQ56BF#W;r5j~ce9xZ>g!wY%$Hn02V4!pa;@V7p1m6L`e~cem`$_6?7)L`E
zrZC*^Px}9rS-~UZfo^7d-pn3650jdP&rwmL!p*A$t*D5EsZ`s7-zg@jH=L9)9VyWW
zo-b8GxotaEG{g)kR`;wg%C@h|vQ%Z)YTc)md)d_>l@+xbG*tGcC}hpcvaYx&x-zL;
zm0B~c8s0Z0QzZME7#EEuh7~#bTv8b~EVVM!$&Q(}>Dz)t)8G)jP_2Hkvmrx$T?wc$
z*5TY;t9mIqUP`W5kyNe)Yjoe2%&?vnZHE&#kr9+NwW0u(N+~m#N_SO-ohrse)Ah1u
zZAGF|jp%uL=cW)`3sOxf1uG1krFyQrhPdoXre7#`mC&_pxb9)!wvl~_%X1;9R=m+H
zt&Bjbq(E3ThAFN3TC_%%xJFa;qDou4Rn$;?-O_5oOsP9YMi<8P9RJp}bz0eQW$K18
zt_xO`O(%^|x<$lyeW6wQ&RtQ1F1IBUeZ@K$pp{Bh3>#NX*AynLTs9?Q5rw)XMu;<x
zfH5_+SyeGAUnqm&7Cmn}__wQMuN5cw4k1_ThF<I(-NR*7LzOXI!rHuoqh-fgXI|uU
z*O^wfkn9`DOu+;bxHvB~jIEpY#m<sq2APuM&YE$F&}<Z`j-x6_t<%bymkeSBatb@w
z$V0`EC898_C{4PO^kq|vzSV6J!&<Vw$97d+N$d}|zfxAU5E>aQTh^9B6s>vWNiB6(
znsg=UyAl!7mQ)}y1Qz05Rgh^>+f32CC<X|mnu@kB`kFHYr7Q~t;>5X>igek%Q10W$
z1YxkYWmShOM;r8A72U=gl~xvQ%W-QiMGbok+31Q@NHNr-T2eYlBrgOaQa62%lq@<J
zt8T%#Vd|pRqD?BR0-+R3Pk~BZYKcHYZnYh%L#=ueX=UueivsZkbMvO|8x)gTQ^n&+
zUMbf-;<N2hLo}m;Bm!D-!#Gm2EM8O+Rm-wRt?X;;Y>4$#i_&N#kXF2w#Vh5$D>Sd9
zE>ZsR8|c14s!-V)-O99br%MuD&oum8m=Zy$>ZU4t)zlSYC8?|{<RL>gqUf<swF3RB
zF5qZY3DGw%l+l|?Q9_i^YC8laYp4)NE29y%X>02at+Xl`af4=uI*)t6?^vzx;qJ6D
z)jc<)i3=cuvTA#Y&RUlYVcJKZrIlHwB(FMT6S`zucbuTg(Xdb^3@=|O3u8En5HA#K
zJ0+<$Z7Wbrbjyo6Z7@^BURv}DjU!fifjUqs6weN4?qAd}(^l{=wvf=|Et94(sJ(p*
zGS;Z(g|b0n30$@$1^@#v0$)+p;_9_3k|}urJ|9-O^~@LnU~MJ9^=-1~4rLk)Uxc^g
zc^g(=%*k9mU3SKRmsMa7U}WzntwmPD+UdRS{&3%!d@SOmZG68Qz)((<9AkjN9mR)O
zCgIjWEaI|So}S$-G{$kHvF|Bty^uQ`#G-T7W>p;H_Z5DBF~Z09X}HpZ7wqufr^tgx
zSnpS`h#M}Ktv=1=@%<vgi+ja)TfbAK_`$YZSEik7+0LtS@qa_S_yF57%$FM(yYr?V
zfiz6^Kz0~tJ&CO6RoctTI?zZeY3LQi`*OKim;2+^yT;{af?4y+N`8Zd`aF;rv-!69
zziWIXs17VP6+&J(PZo?=Jf>8euZq0z=YfVP>47K|Xi$e`K0Q9zeNdxu*9m0ta5@eC
zx-8DPC5&<W`jv%NAEuF(+e7jT3Lx>2{qY&}=SOY>ehH`OEBZ*L5I<A%1yQdaj<X;C
zU&)m&IjaKEC&Ef%lF2*{0#TxZk;UcdZ?~H7&Qt+9`7ujzKtPt$-KTS?;mu@57l!@A
zc(y37nT!?ffm#Jy126fGbKNkih<7kwC=o>;Hz^%#cH;BYQjJyHtE13ugC1iT74hf4
z!7qP<=YN4Gv4VY)F(POF>Y%s~PaDZ$GJg6RBlEu0U=-t7EVGs9dfAF@(ICXc7;Bxr
zV|ZXkTE!G5_!C-gCb;R6n_WonrQF*Ot5ESIzPcpf(${$s@ObCx78DTZB*1@r69f2l
zC_8d+Q{fs#|5mKb)S-|wmI+RPIenk@!xg{K(I^F=2Gls@2Q&j8?CtS&6nh6N=qUCJ
zBe}a+jp=n-ZK6Al!{48ZK&AMMAY-s_1s!U4gC<&2{Mo}L#>I%YOvEK?^rUMlGu>ye
zP%Ax()*`&pm?^8;;)lx=PKc1x)ZopWb$Wo!$uUC@o$GkVM@F~6KNzz~b>dJcX<KKf
z9f(_^13^#g2jfs+mu^S3u9XQ4^p{RaDzx2Y%h`)crp=u%`S}DNFgPAySf^F3#@~>V
z3T5uM+x>v@XT3PLXpV9jcdX{He1fqSfD9$P0rhHiLpcpMX{kY-04=6KnE;A8SE@u|
zW>7bV2y~<u+LDbdCvVRUKeyrd1X2XsFM`eMfrP%F@B_Jp|HJdkf#|-KwbeCPS&y(B
z!pg=nT-!rrZj^3^x$h#STA(&ah90byWD&-0wQk`}iUuxM<NAdNqON=hKsyfW7_1`~
z&clJJu-3hR{KLPR<oPWv`?Gz43WnHh^#Tl2R|{8br8GI`-)VJ-1^(YszJE%7fYCG3
zPRj>>CGSl;GxK^{9f^OrY}NL{ys)}lM7@EBIYtJkZY*?#V3&fAa(rZzPifZbY7}t1
ze8wgnIL+4HAo)LEb{gsoS$h4+KY+dg$EYN$G29BqT|@%sOaVq%?D;@guvuj=tzIjF
z$yB>?OJ}-;-fSHL0vVphU$92`Be0e=hhWG>_hGhsAA$Ln$6-LEBfH-X+!{8^SZPbN
z61<1k6@E3IN>eH7<@uW5Qv`Tn>(olrDuWGEeiD2!y*Ji&QMj}u_FwGXR??8=OGS)5
zkhkykb)LISvcP)s=9(1P53~{1;&%zyr2J;p==>O_?$hFcwF1n95=`17jc+0XzU-rz
zAu~|i98VxZ<jMJ+KESLhv4|8v+C(OXF5)v9=m^(jIDo#{`wfs<pH_`PnRvqwIK}M_
zP?lB1CRocNT`AxE?X8NigMY>0n`${F@sRA_k<({@lOOM%#i3Hzj!KS0N8_|>=ybY%
zrH5shIbZT~<oFsDL2ia-@v80ftVq84QNLhO_3rr;Kp!2!;8}8AjXjlf#Fk#mg1lig
zZV;$86OzB4$svvtz21Y4u!&ZB`2d@F-0u6|^)R871a=EbQxcnSlDFnf%=F2zDG6my
z^G@g3!2A<*rF_2M1C{#8nVW@_wiKu)LTz578D&sOM<#O?N{$-VsI@4&KYi~sKC9Ol
VaX!w&%zkH3{0C|fkBpc}002l<&m#Z;

literal 0
HcmV?d00001

diff --git a/phishing-filter-domains.txt b/phishing-filter-domains.txt
new file mode 100644
index 000000000..1bc7f77ce
--- /dev/null
+++ b/phishing-filter-domains.txt
@@ -0,0 +1,434 @@
+# Title: Phishing Domains Blocklist
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+1111365dh.net
+12931-coinbase.com
+215323.com
+260aesthetic.wixsite.com
+3650947.cc
+3659ll.net
+83291-coinbase.com
+94-103-188-123.plesk.page
+9825057365.com
+abctrvabc.com
+access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com
+acclimatizable.fun
+account-update05.myvnc.com
+accounts.google.auzen.us.kg
+activebusiness-unlocker3.com
+addwsrbh.green
+ahnp.vercel.app
+aldg.ldgknhk.lol
+allegrolokalnie.pl-891241214.buzz
+alutipcentra.pages.dev
+ambil-pinjaman-daana-payleter.xforms.web.id
+ambulatoriprivati.it
+amev.ldgknhk.lol
+antail-conv.com
+apply-now-to-receive-badge.vercel.app
+artsea.pages.dev
+atmailupdatewptnskmdinfomailacct.weebly.com
+att-101072.weeblysite.com
+att-1041page.weeblysite.com
+att-105714.weeblysite.com
+att-105819.square.site
+att-inc-107097.weeblysite.com
+att-login380.weeblysite.com
+att-login522.weeblysite.com
+att-service-102155.weeblysite.com
+att-sign-in-105669.weeblysite.com
+attcom-100762.weeblysite.com
+attcom-106808.weeblysite.com
+attmailservicenow.wixstudio.com
+attmailservicenow.wixstudio.io
+attmailsrvrdesk.weebly.com
+attnewmaill.weebly.com
+attyhhhhiiii225.weebly.com
+atw-tau.vercel.app
+authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com
+authsyncs.pages.dev
+autoreplyattmode.wixsite.com
+avoid.hold-managert.com
+azbin.ir
+b45018.com
+bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link
+baiii-wong.cutvi.cfd
+basvuru-online-yap.vercel.app
+beionfidi.pages.dev
+bet73nn.com
+bet83039.com
+bet83054.com
+bfrescentremebermainsetreouytnoy.weebly.com
+biggggggggggg.weebly.com
+bitnode.pages.dev
+bitvavobtc.com
+blackhere11.serv00.net
+blss24att.weebly.com
+braucrarasuteu-2470.vercel.app
+bt-102124.weeblysite.com
+bt1business.weebly.com
+btuan-dan2-resmi.top1.my.id
+buildingdesignsusapdf.s3.us-east-005.backblazeb2.com
+business-page-property-897432967.netlify.app
+caipora.xyz
+calm-pothos-3b24c9.netlify.app
+carrefourarabiank15.pages.dev
+caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com
+catgirl-appverset-nya.pages.dev
+catxtokens.pages.dev
+chat.94-103-188-123.plesk.page
+check154109.click
+checkseven.vercel.app
+ciente-a.org
+cieplo.app
+cj12143.tw1.ru
+cj87335.tw1.ru
+claimyourethrewards.pages.dev
+clickbait.design
+cnsa163.com
+cock2-iota.vercel.app
+cock3.vercel.app
+cock7.vercel.app
+contact-pro-8291-d01.firebaseapp.com
+contact-pro-8291-d01.web.app
+creosrl.com
+curmmgdv.email
+currently541.weebly.com
+currently890.weebly.com
+currentlyserver.weebly.com
+dara3dccj.wixsite.com
+db.service4db.com
+de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev
+debutcan.firebaseapp.com
+debutcan.web.app
+delivery.attempt.failure.ebbs.co.za
+dev.stream.mornar.app
+dnwqmh.click
+dropsmartchain.pages.dev
+dsjoting.group
+dulb6c5p5.top
+ebay-mallwholesale.com
+ebt-lilac.vercel.app
+echoredled.netlify.app
+elbarco.percentadnp.info
+eltritongourmet.com
+email.mgb.modento.io
+enjomugg.firebaseapp.com
+enjomugg.web.app
+error3456vhubhornbase.azurewebsites.net
+example223.wixsite.com
+eyeydhe.wixsite.com
+eyttueiu.square.site
+facebook-avip.click
+fame.pink
+fassehoizubra-7696.vercel.app
+fastdropchain.pages.dev
+fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io
+fla-1001.square.site
+flo4211.github.io
+fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com
+fnuttlie.wiki
+fokeijonnekou.vercel.app
+fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com
+free-verified-badge-form0-service.vercel.app
+free-verified-meta-badge-service.vercel.app
+g06668706.wixsite.com
+gccndbqg.vip
+geriodememerkezi.online
+get-checkmark-for-you.vercel.app
+get-free-verified-badge-service-on.vercel.app
+gitanag.broke-it.net
+gruprocuroipra-6493.vercel.app
+h5.b9en.com
+h5.metacoint.com
+hcghij.top
+hecregayatu-1014.vercel.app
+hejmtxxt.guru
+helenblunt6.wixsite.com
+help.accountsupportcentre.com
+here-apply-for-page-review.vercel.app
+hgbk.ldgknhk.lol
+hhideiie.wixsite.com
+hitummoinneullei-5882.vercel.app
+home-101067.weeblysite.com
+home-103465.weeblysite.com
+home-104341.weeblysite.com
+home-105266.weeblysite.com
+home-105929.weeblysite.com
+homeattatthome.square.site
+hpnefhqs.motorcycles
+im25.net
+info.supercitrus.ind.br
+ins-business-home-center.com
+instagaramgalochka.vercel.app
+ipv6.43-135-137-110.cprapid.com
+irmt0ken.win
+iujf7839iofvkbcu748.weebly.com
+iwimwmiwi.click
+jagej73796.wixsite.com
+jfdjy.com
+kalyani963.github.io
+kexoigrufouddou-5902.vercel.app
+kl1k-ds1ni.neupdile.my.id
+kliind08.wixsite.com
+kreelo098.weebly.com
+kremlcup.com
+kshitij12375.github.io
+kucoinglobal1.com
+kxbztydc.black
+labanquepostale.jupiter-analytics.com
+leddevotoze-3146.vercel.app
+linnkdna-kget.wxxzsite.buzz
+llahi.info
+llahi.vip
+loffaummuddote-4145.vercel.app
+login-att-10221.square.site
+login-form.world
+login-online-outlook365.com
+login-outlook-midstreamauth.com
+login-screen-103134.weeblysite.com
+loginaccount70.wixsite.com
+loginaccount77.wixsite.com
+luk6414.wixsite.com
+luxlifemiamiblog.com
+m.meta-accessibility.io.vn
+madebybmr.fyi
+maqpiexyz.click
+mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev
+mayfair313.wixsite.com
+mdbrvlfy.black
+mesageriepro33range1.weebly.com
+metamsk-wallet-3.gitbook.io
+metttaa-audddt-new-02.firebaseapp.com
+metttaa-audddt-new-02.web.app
+microsoft365-storage.github.io
+mikepattyjm.wixsite.com
+mobilemidasbuy.n3g.fun
+monespacepro-client.3utilities.com
+monetization-violation.github.io
+moodengsol-net.pages.dev
+mwsiekdnfjrdufs.weebly.com
+mxmxnmx.mx.zya.me
+national-au-b.com
+national-au.net
+nbaaiqjq.group
+nexomyacwv.weebly.com
+nft-time11.vercel.app
+nichcheck.weeblysite.com
+ns1.carrier-ast2-portal-apple.com
+omadshf.ru
+online-assist.live
+online-promo-asb.org
+openkimono.pro
+opportunity-verified-status.vercel.app
+ourtime.reconnect-dating.workers.dev
+owouwuowo.click
+p365kf.com
+p4zv8crnrrha27so.94-103-188-123.plesk.page
+page-center-manage.com
+pavan-patil-22.github.io
+pecinternational.net
+peesom.chat
+pencairaanndannaa.my.id
+petty.wiki
+pimnhv.group
+policies-business-page-service.com
+pottatrebewe-2808.vercel.app
+pqo.hrf.mybluehost.me
+programming--service--panel-totlyy-free-for-you.vercel.app
+promo1.spik.ru
+protocolsecure.pages.dev
+pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev
+pub-1778406e4fec4394901793111c187dd9.r2.dev
+pub-19b834342e7d465b9f00b3511325a081.r2.dev
+pub-21dd4dc659614ceb93e45a6de4434502.r2.dev
+pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev
+pub-2fefe932a6974485b987c9ba851b5c40.r2.dev
+pub-3a46d9914f494078a6d6237513e7a096.r2.dev
+pub-442ed822851244a689b3472ea2c6a950.r2.dev
+pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev
+pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev
+pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev
+pub-7f5cf36445d042168bfacd712e890dc0.r2.dev
+pub-803839714a924882a7bcc2495a26860f.r2.dev
+pub-8161de4a277e4ee8b532af34954224e1.r2.dev
+pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev
+pub-8376b5b2334844d193a525d8b8548fa5.r2.dev
+pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev
+pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev
+pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev
+pub-9163a97d70394cb499bdd232be6c2169.r2.dev
+pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev
+pub-98171471e0944ac3a5820ef719bf0640.r2.dev
+pub-a263e0790935412eb10cacc55bbced18.r2.dev
+pub-a291041b077742899b63a9982f04a56c.r2.dev
+pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev
+pub-b50adc5d699a4f08aec37102c2103da7.r2.dev
+pub-c0a934c950e441db96b882789f53c9ea.r2.dev
+pub-c2c250050109456396c933de259a4fea.r2.dev
+pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev
+pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev
+pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev
+pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev
+pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev
+pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev
+pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev
+pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev
+pub-e42cb528b102447385e3145197916f51.r2.dev
+pub-e4aff507450c478cbe3f77ad23d75035.r2.dev
+pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev
+pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev
+pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev
+pubgm.club
+puffagroibrouwoi-8818.vercel.app
+qasimk.com
+qfjfvseq.info
+quauwograssodda-3503.vercel.app
+qysgyp.com
+rajdipchatterjee.github.io
+rechazaroanularaqui51.weebly.com
+remote-fix.pages.dev
+renggard.47-243-192-240.cprapid.com
+resolvepanel.live
+resolving--issue--with-us1.vercel.app
+resqat.weebly.com
+review-business-case.d2f7p3b7pucnle.amplifyapp.com
+rlpqwefi.pink
+rouloigeilleuja-9523.vercel.app
+rulemec.pages.dev
+rutinqqwin.shop
+rwftfu.quest
+s.team-pw.cc
+sairanees.github.io
+sanseipecas.com.br
+sasklelo.weebly.com
+sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com
+sasktelcustomerwebly.weebly.com
+sasktelnetwebmailservermaintainance.weebly.com
+sasktelrectify.weebly.com
+sasktelscrutinize.weebly.com
+sasktelservicecentterwebly.weebly.com
+sasktelsupportsystemwebly.weebly.com
+sbcglobal30.wixsite.com
+scan-vulnerability-guard-v3.pages.dev
+scan-vulnerability-guard.pages.dev
+scanner-metamask-v1.pages.dev
+scanner-metamask-v2.pages.dev
+scanner-metamask-v3.pages.dev
+scanner-metamask.pages.dev
+sec-sign-in.info
+secure2-validitycheck.weebly.com
+securecapitec.theprimepoint.online
+securerpcfix.com
+seeteressecalywoi.github.io
+seivviice.weebly.com
+server.0e7p.com
+server.2rk3.com
+server.8q3p.com
+server.n6b8.com
+server.v9vs.com
+sevvviicess.weebly.com
+shard.blue
+shard.skin
+shared-d7590.firebaseapp.com
+shared-d7590.web.app
+shaw-101329.weeblysite.com
+shaw-101587.weeblysite.com
+shaw-106427.weeblysite.com
+shaw-107375.weeblysite.com
+solutionwebsitedapp.firebaseapp.com
+solutionwebsitedapp.web.app
+solvetans.firebaseapp.com
+solvetans.web.app
+sondfrom.dexlog.my.id
+soyokai.or.jp
+srdate.club
+ssy.hmb.mybluehostin.me
+steam.poweredartsworkshop.com
+steam.workshopsreview.com
+steamcommmuty.com
+steamcommuunity.ru
+steamcomunutty.com
+steamconmumity.com
+stepsray.vercel.app
+support-metahelpcenter-id100003498934.netlify.app
+sv5gardens655665.weeblysite.com
+system-portalnu.duckdns.org
+talwgam.njmolada.com
+taste.baby
+tele.zhngain.top
+telegrambot-resolved.pages.dev
+telegrazm.net
+telstra-100408.weeblysite.com
+telstra-100469.weeblysite.com
+telstra-103234.weeblysite.com
+tiktok-888.vip
+tiltckshow.top
+tnomwzrp.top
+toeken.im
+tonic.pink
+tooma.cellinsurance.co.zw
+tpdtepremu.xyz
+trattujeilesso-3354.vercel.app
+trbinace.com
+treibrukeukonno-1395.vercel.app
+tuesmad.firebaseapp.com
+tuesmad.web.app
+tyyyyyytyyy.weebly.com
+tzcsjfto.chat
+u.updatetrackgre.top
+uc-whatstapp-web.com
+udxcady.wixsite.com
+uklifejv.cyou
+updatemail12.wixsite.com
+ups-trackdeliveryapps.chickenkiller.com
+usbest.cyou
+user-transaction-overview.vercel.app
+usps.com-trackdck.top
+usps.com-tracklnv.top
+usps.com-trackmcl.top
+usps.com-trackmec.top
+usps.com-tracktpq.top
+usps.com-trackvmd.top
+uspsinfw.top
+uwdtsczi.top
+uwm-onedrive.com
+vaishnavi1436.github.io
+validatie-veiligauthenticatie.com
+vbbu.ldgknhk.lol
+verified-this-request-badge.vercel.app
+vo4zzp.icu
+vs41.github.io
+walett-cont.gitbook.io
+walletauthenticators.vercel.app
+walletcomnecitt.gitbook.io
+walletconnectdapps.online
+watranfart-fdd6a8.ingress-bonde.ewp.live
+waxed.wiki
+webmaillshavv.weebly.com
+weeeqweeattt.weebly.com
+weigh.skin
+weigh.wiki
+wgqdqvtn.baby
+wgqdqvtn.pink
+whatsapp-rqr.com
+wirelessvoicebtpaidmailinfoplay047.weebly.com
+wscs1231.cyou
+xn--metmasklogin-vcb.gitbook.io
+xojautruffeuttu-4659.vercel.app
+xraiz.info
+xraiz.vip
+xsuweamskeidjf.weebly.com
+xya46.cc
+yahoooooo-108560.weeblysite.com
+yavanica123.github.io
+yi5lq-syaaa-aaaag-acfsq-cai.icp0.io
+you-can-receive-here.vercel.app
+zeiitgeist.angelocachero.info
+zenixoikitti-5809.vercel.app
+zeznjx.shop
+zwzcn.com
diff --git a/phishing-filter-domains.txt.br b/phishing-filter-domains.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..5e77b0d044a023a96235645b50a71e7f29ecafc1
GIT binary patch
literal 5165
zcmV+|6w>SA7-@;3oYnpi5ygA}G*TAM-yb2v+{c{#^WWQ4=cNEoG~fFDK80?8QD-GB
z47%=n8~XR1?)4=ELbx3Xkj|}YtJ?nk|I=9}>@q-IxJm_7)cdYVNl>M`qRjs@qnEKA
zkgUKQYaJSU1Coxka-xy;7<6IO2E7;5vG;<|QA<U&zMwa#>*VTUGMtrH1x9J~lFe1d
z{15$W-(k@WZIU<5-~C*-xQ+e#`PYNWL1F*lwo!g$#OtVV^Sht_N`njg>qoD?389qe
z#{X>FUtRla9RI)h-Os;#5@jsEe$<bJ=jYFBF@LrzA!ZNe`AhS=pDj*Fu;Z_vgE^_8
zV<&c?$>;OnZpbKRX#OKjh}KPLe)nUjX7>Q)-|=RA^Sd8e5arho6|gIOPyP3wo%pEZ
zjUzV4^O^R{asR?UC?n-Rfq~*1Xp~Z_pGJEe!6mIx-P$W*B83hxio5C5*mwQEt)>>R
z@PSN5-t-|oHm3B`*sjAYjVa?+=LWo>rSH}cwhltIy->>{RM*Sou$+>TGd1hdjqNyp
zVP`*R!}$VjYFx%(DN?2`m!m3DmnL1@U6A7-I-WKTi%{(>O}Zv+Y#_TM4@_UN>XTay
zjr^1ZkEd@(>7OgC7Md$Xnt)Ftp?)#QTI9JmV3;lxI3a2fuL@>D^#^P3lJz0QSvGKl
zG}%vY&`C(C0cUsV?0$yhlrFmFGTDA7Il6d)3xqN`v8<{aRHp{1>-XD$t4zt9e*+Ti
z>nYOW)qvOJM56El4?$Rf03yNTkTJ{8k-t1e-l!$n{!>>695Y>owjIDEi5u{EO=ly4
zft)ZgT$_`9O70OM-h!jZXpk-x8tjf+b^pu-Cs$_=<mj4qCl2NGmcpis8+Bj|%NtR<
zXElw?Lba-$yB1BZNUJ`mu?O(^P{vsePt`@O(&TXYh+o%IFy%q#cAa;KHtVkSOZ&d!
zv74rLwusMPsJ2t%*z0(-2SMS&#%WrAVJ3Q^+IF704i`2p?E+M#lNcA`t(H%ZtEJfI
zYKjk5zOvQC5XOjrcaQnGrXBJe$8iu5b=~;&_**bk(csm`%*9Hosjha(bAS1TY7rJ0
z4WnI}R6fcROp!8A<(M(KXG7xAqCrBx$)!^%3x87Lwqd@Sf~4H&VQkg%{S(lzJsJsu
zpPh4ly1Ja63dgvA%h7fFXQLDJNZ5anrmYKo*te^E#%_?5wj!;PeFKid*=QglamTPr
zQ~4rkHrr?@SIt#;zqok79=x(fieV#5o9EWZb05MCpBs7U+kUM$XdLiJerOdO=uu;K
zbL}8!jP>CVAO5VRY5x(@$Qc_c6YvvXa7E4L6)=tcz>G>sQ8L=rwl~$Tlx_f4<}7uF
zYBFRfm9dI$nA^<-)m(R{I;EYcSs7DxNQ0|gYZ*F`v3Qaklal^1XbcAsu+XB^0?BT&
z^s*KKIHYLXQ6d7TcJM{rJ!lpiws>A~Ni|Z$vd%-_t<$`9y^gkL#$9HBQp_Mf&$lt)
zyhxFcSVXV8!K~dy&WMLb2pKd%IMqm0hk=4*k49=_#8_YOQGGY`<1mf0v})hTjw@8U
zyDGt_kuQ0`J7IufXNLk(x-b`H5gr)c;16(Almp=FLP|%ANX)6mLA9#{exw%hslqXG
z7J=hXz;RNcVtjJ3jlVq8yY`ZAC39`eYnl6gtm<_@{+OW>`N)X<)ak)G>l%n9@7#?E
z1=Qp?Ap}Y61Vx6aJYY0uU)jSf1A}3n>S9409@{FpQAT5<Q8Th5=q`@p${0&_oqaWX
zzuQZmu@_W9obx#MjDwO-t?kU0wFP}y2J?4w3mJNA%*$F$uv%K^@q^X1-ye4Uwr!J`
z7GuN!y%AbXs~8rmVeQongBEQo`dr=*kVo}iHhIUqT`FiKuyHlVq<&yF5U8OwG78Yx
z-F##Yp)6tkb|q?Eq>1tijm1lXdbjj32gtkb3-{X}k_7PthAfXY2T)+VwB;2Ub0T6-
zX>4_RGGiK5+SZ_kM?`QKmOz|@?-Df&hZYoOLpYk4(K@sm_zLJWWE182Nn17~2{*Ra
zpyNy&!yaq)=me0nQu<v>zhMM+g?L2m2ljQ}>7_NYf&s|J`eB@|qv|7Ohjuf3YsMG~
zO(cyg<6YM?d~o>SV-KuPWUfdRudtxKPryZq$Z`XZGC0nn*`O3WB7LjQAm(YENM&tM
zm?5FONZnp#12F;sh(B6d@!lMOFhG(_YN;VM2T)`_YC==HICM(MumZa3LA!MV@hDO@
zIl}Wkj#<eV5aVhL;fiI0?OUkKj;PS-NzE2dq*n|9&xjrV2U{9@U9M#Nr-W_p^{IAf
zZ@=jG_vu<nw{k%USQ4>71uZ`10{vdrf-`k^bq9Dfe!8oux8{30P17>B6VtxpZcMQH
zy~~SIvty=c(WA$F;+LeSuQfZeu&ofi!i<(9p3Q_#k&|b5a^7f=fuPj@yF4eqae`RT
z@Dw6C%+b^wDP<7Tuo_F(F-pB6k`TuzHy0on(FMn0_Jdw(n0BDaxWfZnq4>PRIPVQ#
zo<AR!d(E{u&|%Q7E+JF_|8|)Sm|Qibm>HYU9^*5LPy%Ry{+ERH>e}MFK7)}V90yq>
z!jcJb^*&MvSe-)><Fa%GPvijuiqoBD+I&&^VH&R<dP5&tF4EXd)0wW_Y6E6q{!i7Y
z{znS99q%G@OPF_Yl!kma@)e9%QRZ3<L#N!ZMM=R*of`^8Kp0#(Q29X2^cun1cF5p&
zwOjT$y=az{u1OBPQ2i)WKMSQ=fSns<&+Ump-V_?DuWerXmEv}t+SGYi)UA<j^0%j(
z?9xzPu;Xj)=T#`Gug$)8G{O_y1A*45Hz8S`_=&XVy2Wa3tYTbSMt+>rsZ-dZ0?B|i
zS#k*dY^Ng%HWmu5vFVu+U2NCc`p%5rnVKrvDF-pVRM*erTzFLql0Pb`&iy|6%a1h@
z`g$7&8p69`HVWL+9bPpNV-{&lENeNmx5r0v{G#a9V30qAqYzFTK%6_Wyg#4s8^-l@
z=infBMg9e&;&E}?pn6Z8Bt|i)VSL0;v?QY3<#e5`ChcJT01=qZR?^r*#LC$@mSCan
zq@gN2Sr-q{R<I9Av4Q5Cq3Q?xrmDZ}+_FV&?qRm-ISqlkTF*bZJLw5LWdQN9=*?D1
z<bLR$TXsoNUZKekejNR1pXK&Y<KdkMKhIY%cTo>_47n8%JQS*?qKFA@Zvvut6NCT-
zvv)kq!}9=?d*!hkyw&+~+anOdV+kgmgek|q&tj^u5N0fWImMmPF<1ya_;Glb9+}zq
zzD2dxvIuyK_fW_&fSwG0V5S_h;+}pQMd6qeBLRVi6#J#AtmAq4Eg3#)a_GrI(e;s`
z-&0?B3M=TG0Tq)}uPOU8!7Y=+hHj88gXp~`E{g6yWwkuws3v=fP6TA4wtpAG(}wMp
zZQTO9PvAfP6Z}W|kNiF$JvMpis(>m`aIh8)V?)pY^nSfjWE%lL(LZ4BYj7)UEYiQr
zD5W#Kfz08HLj~9hMakHWlS*5KJK?!twPs2<)E+(9a%_<eRU<o;LWLz{X4UkH{q_nd
zI#hx@>;_NrF+`biY@$1SObx`3t4}BlT+2K~ta<WWhKQ~Z(6C78gC>tZF_X11-m%^_
z-cisUsh`GkD}UKEe6Pjikn;iETw(wSe^Bp1lOy=_2NPTnL;@x!x{k{e6PiotK)Hf1
z_JmlXm$7DglQ0;d3=o1<t}+<wdP3$0=}nc$hvVWO%l^+t#N!Nr;e>c}o}P>vZxmhP
zD@d=D^p5h#oAl4#57rS2ixJ)Hfcq>t8_yKt%4xd=M|RJHx1z8ZGSQ}FNpx~syW#<`
zzZ1c;0kPgyQq@AK4iUD_%yT~|GXSpJh-TXsG%&#^bJsubd0vKg!eK)*^y{#;YF>M#
zlu^rU?Yg|jRWJR}4;{{Sm`1&BZL9ln8C&0t&@O6gow9bYW*XN?4F;D^dmKiXEDl3I
zjBU3Zv5ly9o(&hh4BI@dbBi!d!!)j7W~-K*aKp9lU|Q#4SVp}rvspDPqtc@p+T{cF
zFidt`)vyig(9R3&q3YGWHpwMelhl$oB7`@9Mi~&bHt7W!LcyvEjs2!IDY=H#+;th9
zQ3OrMTMg<hqnErJsFz;J1+j4Ll7*2}qZn1kCFd}Ot}>_&G&d>Aqi1MTK@?~q*`h|Q
zy&rp)BYVRbp2iSTDUHir&Vy`}ib$Ria&3L6IcJC_$!*TLw^UjY&Zq*|8Yp)&Kp}<N
zY8oZyT(bu%Fb77oP6c!n6hZ)u(k(4Zf+WPP7i`eQjlwlRYw;Qn<A!y$^H7IUupxSu
zq6FlvH^Mgd;m_0B;LeRuYR8dKQ5z^FSLu6Ty~lo){m8_Dj?@{VT3Dl$xx067<&-gV
zPmGv4E^2Iq12qjyc^n%ll50_6=d?SFUPqDc4h4EtgIw(kHk`V2?TnmN6OY{~v2<^F
zJamb)%o#aH5=6D4)F8#+EPbT9zjuv7Es<D~6v7PAb22p}>fOR~d*H%Yr1iwi2u-9f
zgOCR6FizDTa#m(4s?@b0qW0>5z^+=o^w=J6*(s?Tc@@#rS<|q>Ie|e=#g&t^q*9KZ
ztWzLn?^1hfz)c1flhA%^U_dER%1MxFNgk6@Jb<PZ)^$gbz{--nIYx@^m5l}x70Bt>
z_&ip6mKr1_364OCqIvkx-hP(X)9coyB`4^fu{v~5CAC>eBJ*(WX=}}MXcKg1Oe3fE
zo0SS#tQIg@Z{6bHNEqnO8Jn?UqmqE#Kvim&bM=}v8)!Is>)o(M(gJ;WB<}L|CTfr|
zXk;89YRwB;HV^@BsSu~35gw%6Dg#UJWF=#-E-O&&JqXqbT33yvAeTl_GLlH-Vsagn
z^VKmZF;X(*W<APaR)^wDsVtv9QUzK|Vx?6gqo9Lxw&dE3h8%MrcrY-gRHzFfG4@eM
z1C`D909dWs=QAv+a%nk`J!>PZ5x`M$v9w=``!eYRvi*8qW9WU~=Du&&XPa-W<p$pI
z(qmqJ9Rc5K{EYVzuMkPTF1<d@e7nc7x$CV^Dus{xJMMo^x$BS5_*cSt#{Lsta;AIO
zxBl0C)Af4juCHq*FJA1i#9eET`CsFozQ=mM>+Tcs4MOQB5V!$`(at@N?ePw$gSdz!
z7kv_PRR#3hP2&*1U5AG{h&_&%p0feqNWen^0wH~J82l`qpO>vvbO=%4+aJ%@C&r8q
zX1Q<IW1H_WKOS-Y=uHS#7pOF1OV~oDT<5&LUY~iLv>*Mx_Rl!SHHlut*D)zK#O?Xv
z_W9xM-FJ;RR_q22U5}WbVH!99UeV;x<M$DdZP_5daMtX;KYwV)+TE71szqAde|{dv
zd*9cw?&lH#MwO-atH8L}KLaCdrdi|sM5j9mAGThn&a18#MXWvSgpebK8i%ct70&;Q
zQtuLc=!HDzhoWFakP=~7=>|H?r$o(<KTOx#^(@4A_myw=OLxD$%k~<OW!NiUU3>^h
zUvNEsZ|`g|<}jv3dA%x(=O#xj@u3a4DUf3G`4@+gWkw@<d*U}2Hl5$`+~*~(vjM|V
z$(Pulc2JUXAZ=(Tjw4JTf1hpM7Y7yd`#sN_oDebhOTo{)^TGaG;_X#z&bQXyj(yAf
zD7_~XLRR8gmFhkPCG@`_r`mJK;WuZJ6z;1AEXuczZ~Xw63n-u>8+=x%@mZ<}oT0DK
zj&G_Gb6cqk?lTuYqfvI+{6eKyI2U-7q(cMt`sx}kYx4MajFT|2<+1&3zdBFbKK(qu
zj-5{+jm2{x$KUk5^gvIa*B5@&N5x42riaT;AV`LKi%c6WSa$h<nYE!qux(kE>-@_t
zUJ*J(e=M6{G=*weSeIJn{&CM^*S~6&9`tx@031$ZY<+h9XVX+rniQn1#POzP<@v;V
zRHBMWllp_g5{>IM`DMSp-kk@-f1UdH+;y4OpJjWf>lex*`J@j_`8wkf)Bo@F&Hw?%
z519}lU)Q(u)>tWZ1~oDMFY!IpVaB-=K?^|1iDD5UWeIdED1aDl;GBQY?f2GN!#d?T
zKTg|PrO%AI*KPUy-=7)!7MQeeUcSz4ovm?moZGhObRN-~{16Gs(|o?pCl8h}8NL$s
zc)r_`>kCPi`1mOLexx-7XAMu%8Ot&w>0D2&XAB_<)vsfLL02pu?0(LMu}_1aU+_<*
za`5rjl-I@)FR4^XnxTxcxU*$4HPr~gqpdKcBt{9}$<=-g*r$=u>j{(kUY9gatj*Y<
z(OZt{Ovj}nCc>!Q8l+U@nVRzxpE8}}4fI-+nRJArU@oYKqHGf}2&F<ONu$>?E;ITm
zRLr>u>X0*Y;W|@q98~?`-I;NEAAWgTrLf%@C%-Kh^CgEDF`zxCX<WvUUqIyuaFH7N
zsja|9NdOc1c0D=TWlHc&OUJdYY?KDy;n|NDg$8s5g>`TpTygk*lO$7{s|=JWo)Npw
ztgD-cfnfp`2WMj0n6W`(vtB0pfQGm@g$#>!Gt-7szhPr;a)Zobvvz_-UjHS%2t9Tk
zCEm$Pt>5rLi_%f|>G7@{aN(-<8xh|((pmH2VdH5(S~~JyGAj4}w(pBWU8LpU5sdpe
zJXZ31A7n~tbOUwG8fKUea3GSCgQp$liMop^s_WH0D?UL~xZsBnsv>q7y@pzT;tMM0
zx@}mQs{kmJm0SO0ps%k&{tK0o{FHhli2pbw``TteejXSm9~gz{@N3XQwaYkZ1^EM|
z3Niq^2EK3i(CFTxJly-(cL8QAZ|jLwxOYrs3B0NDZvP???}$JH_kd@IUN;BkxFBg?
b4D^X~5;H5hoOUf<{f5`ay{~@nuOWp2-Srdx

literal 0
HcmV?d00001

diff --git a/phishing-filter-domains.txt.gz b/phishing-filter-domains.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..1c12231490f73779ee308d21189f7c51e1b23037
GIT binary patch
literal 5310
zcmV;v6hZ4BiwFP!000021D#q+kL$Q{-uJIKz}+N3q|y5^%ispcB8vdI*<{D3O<N*m
zk&-R{`g|q1yQS_v6Cgcvx-C|bD%SHW(trE)4--1|=db@f8-F(T^y}}gXU6(p|Jpfm
z?Tim^fBW^{gJeO;KYwLORzztUW#vDT<j*Ymvn>Ay^nZH{W>o&qU+FK&mS6ugt^B|A
zsBV+8V)<wA{JZPbz)pD8IfTLg`Ntn8yqWP>xc-lxb$2$ZNSiLG@sHsp%<CDm|HBAn
z{r_k3-@0uo7WpqXje^8<gR(0d&HtBQSnE8!)-pkyRo7idcY3lv-nA0{odw1jR!Q-b
zSEW41R)x1TYx6V`&R8PS3U66j=2^adtP-YtIICbpd^Zno!p4IIlD4R0A?Rb<b?ahH
zp0!^VYoYBVkJ6@zQY<=j%3ovB;#=EfWm49dzA`c{!Z_pi_9U=PAA2RHkrsNbIIGcU
zBUmub#+^HLHZF@OBYPHjK>~q>kqt(^FVdMF%umKU73;~;keh6XHv1-J+%L2JcqNg1
zd~#S=#cX;i8&5vIo<Iv`R($ftLab=A<XURnl*FXG`;njH)2I|)akc{qDpVJ<VR&Pm
zJjM8TwdX5j?l91))95;PWt}w&I*FP#&5ATji<nQ(Cpe~H1{ghzY*m(zrJCPZ&rKH%
z#$H&@Y$O@8EE?F-DR@cz&~EH~d{;a+l6a?%1vi>uG&6J%n}9(zA4Rc&VM*caylrI|
zx+Svi9t9VTN+|3);!K{@VMk-|>L6G^#C4la??bTu+Dl_K#bF1v1_-5iw`{Kn0fvI9
zve)Q`Pi>SUrFDO%l{GZ<Go?w}*xx2ZQB0(D*jPb6k+k(sli)ta=1uZjTABSQqF3XL
zfW*oOl=4RobFz3jiB(nY4;=UdVp3PxZ;4ftG(QkYqb~tqr8OkOB#rw&>BfDK$9a?#
zg-4@Ubth`~Wq3K`$KWT+$|DIr!lr{;Oh^<qd<N)8*!sy2%A3hY60Rzci2pKdv5sG?
z@OuxN;K~ZlNt<v|9g-279j2aLCnLlK=8Rz*e{y4EGrsYnOwwi@<4iAH8D{&s>$<+0
zvvF7^b}mm(f6lVgLz^q(rBV4qnM!9iw<kUON0}9|88oD!0PBpsVkxL4x;rFSF@@R0
zLQ4$#c^aq4S@5W6VTW9RH#@71G`p>F73$pDO*$2tJjvVLLs@JOC`EqF2&z|HjcbWh
zcyiMctXuZB;pX)Db0mNj%G<r%gc<7NVatIW;d(u*QKe~2Zj>ZzUgw?nSpn4_78}_l
zMm91(1vSBvb#mBhSR*9+7O*^|?}_xVT$t9JW-}xn-<vqNAw_zoWX31cA)%b$wg@eF
z6C0$CeU9uLDdt0zAd_>54*8#oXWN4B*_w764I@hC7#5`3x<Hw#YT8+6^s-7Tm>C?B
z?PGc3bJs_M3uot}oM(k-zp##@(kR5(I)@`&({iU!0e?3V1$aREbkN6==2?-KMOD_Z
zOiwU=*|N#pvngi%K&xWWRbWKT$&6iuXUv0fBfGG}(%})@6;NP5cxEB~eUSwe5D>6P
z6ZjNx#C03-YDR6_SxXqWmWo*H#uGgZo!iDQRF(2L+|ziR@YvLOUVc1w%=8OXp~87o
zfH3kP8odue65`EnZ^C+(R$I{&D4<znTwn(=Fq(fIsE-3ESt5`<qlVCiOww2byHTR~
z(Bw}{6u0XNh#5b28{;(g{YlQTqTEN1BlOTMP}tr#KgOFj`Ei_L1toY#lJJgP3UN7P
zD#_zlb}l5}MpTw-t*fYNgop~3i-@OH8x@V@4A87*1&4b_`RH#8w5`%xqvN|9bxiqi
zRql*c_!I=Q-!$<-c;CHLoguG`5zVR}LaeEBqiQP7J*LD@2A(<gNG+_7dpBA(ZZqxu
z)}LQqBoR)&2M~b&A;*3iUHXd)gg1e3CQO<-UWsxjDV*OR+JY3_b$29d<yp6BMIl#o
zgcSCMR^p6|FFVwVee|i0vk_tr#0e`)fGvU=AcWBbBxAT^ueJiPS~c!ZJf@mq!&(NF
zy|{itV*IMB55l{y)Hu2^FUo2LxP~-aF=J1t3oK+*zotj^ph#93LT_(uwWtM|;LBJD
zlQPo*t7s+^ckUXo*$giQYhbl_pfaPG_v-A-b3(?A>Z+~wY63NoF}~VCU%X~f$?y}=
zFB#o*htEiKu@OT;n!o_Tkn|`_=L%Hj_|;Mno8?r}H+c6#$-%v#Im&VxO9O5OOstso
z19s!r&1yRZSdKJsHE$ZJ%Uqnb>go=-K@Vll{XEEg@mAM4zosXa-1~;#o=cXP;l2+n
z)Ik+(eSnf1HjN1RChx%Pu=If$ZoytNe&9VNRaG^0QXLF-62eM;JH;@~8<2&8BlY-i
zysD>(w<?eE5UqI?5pgAHqUE?nV)#k$cP!}+$(WQ07!&gmDvJ=}<YcFDLOO%a9S}W>
zs-it4$}<XJt2PvY&$Ly7Ut1iU#p!G=YY0NhQJolY)I>16IIN*AeRw=Vd;)^OQ>QHN
zVC<ttsJ6xL&C)cWY=#Y&yr}47w>E<Gu-4vD%|_i1Z#wbop%DSbl**W6u$)bp`X0Nm
zYC_LsqOxhS!!qc|*Jh&nhVWmc9Ci0Mq$2-F@?S}1R#m?vwORWU3F#F7)2Bl;od>J*
z`R0*;5Gi62NPBOl2bLzAQsM$Qrd(#ih*r~B39Dn=M<4KIeKBbm1%}=RVqhnfm;OW{
zcfKAfs2S!eE`SB{694KbO_Kw-He(+WU<fGMzM1Kw>n3lF)AN;!sV<s*sF}Oz?>&CM
za?%CHywrK!9v$MM<z<_IhIV1rw5ai)>Eo&%&cJ&CnWS`6RJO^%h}SN?M$)I&Kqp8t
z2328$eb>%FA=C%$-gZS8buMWSl47v$#I)t{tB2zl0GGTj_i{`W5U0*@)}<TcgFnL}
zMZCh^w~ldUZ<87v6bvCQ(}0(b5n{1hf)QI%LqS4*g*Bfl%G2VIjFAlNRiY`sBH-iu
z<MCX@UVHkkV`sCKs_i2sl+J0*;Nzqjz^@`L%ENlphDKY5n`Os5z0oN15gO>^Yv9#)
zxG8j~DDQ_WFWNR3^+s;xojR=@-3vOvpr}dnZ?Ju3d4)ZY{@x@9Qhg*%*Q%hV{V?`G
zIaj@5z2TU<4)$xxinenf!wrxPe89!Ced`%e%)<LI){DW@Z7>Qr{pFNBLkBh{k;8V-
zVu}fyAK1MY7U}i|d~Q*+$6aOY*#gWnVvh%@ddbJR1IpN(p$9ynbgz(f^L%9Xqz;gf
zr0xARy3=V+h*pQE8cv=D8nOX41G7q?cy*89@?YV`&s^`=qc>u7-su1nMjp9?4n;nl
zxi?oeP<wvqkGpVC9aJls=hG6~{Ini>^$w|o3Ns;M=ndH<&Zj_HHm_n$EOb&voqIGJ
z*KIxg?v;)()XBRJvWC4v@7^f5y}pcc(ubz5fAkOAKVtm<L@(2;H@hy&(B(|ghJbe?
zYf=QtV&-<ay%3~D`sf!X?(=?Ot3wnB4X68fu|}NNI{ejntw+S8Z!;9mK4cM9Ew;8=
zFAVD7W&W(Gt9gYGV3+YBCb;}Q1nu<>1irRObOw7h&>PU`=<rC3P8N>)S>};R0`mG!
zM!-`NJf`*#g$-Q_U=;yoMDZ1E->On~chh~s@0XJg@Peye1s#g#+=$VR<C$f(cYo3R
zt;Kh%9Iu0sZ3Q-?(}wq$F3Pf<g$E@JF~3`6HOHWocYREKCO%u>$B`kZBn1|GCF%jL
zylg0MFugs`FWU_c(!;@`V=w*=zE)uz6;4D3Aa#_{q1R4V!_CEKbUOV490CjsbHIh5
z>=UYAPbcIb2ns7()kVRf8(TK4^#cxD4TwBCm@8QtkHHDoy|C=3OAixA<;;{~Iumsb
zq#z2WT3srkb)y8USQ(GmCvROhMN+9kD^cWa(I#n)<}FP{+SF3E2i}%9IlxDzY6*10
zTb(34FVi&7N|rR~o;ORSETpK)wn_^$32m;5l2uX_SfE6@*z-cVR0^#c-V_>rLY*j9
zRd_|qL@kf&YNb`1XAE3L(Lji%7A<E@netK;$(}c7MJ3xdEp*WqN!{S}6_wUBS2at3
z1$Mjzb|srE!#Y_}u&QZ!UeuXlnW$J>9@ecAR!XKsm2y@j8d?)=DVs`_yh#gr<ZUu0
zb6%CQ#m?)Bw<!ciccXGqR<bzo!aNyzXI)mh5K^=`t2Iv{Q<b$WJLsVns#4Tv*OC=F
zl}(|vOtfxGj5T$B;MJwjc~umpOwb`!4M*Q5Yj{c1CQ=;aZIT?Ys!j{mW(7bitGN(a
zfn~F*sS<tQO{)|JMKIT@P_SMJyXYLuMV1vRJ@NuPC2d(Z&})<NR*F(Vi7;d?D|K9#
z^i=XJ2WL^p6nZE#D3~{8(deW9HjS=%4MJP-LMH_)7=$hp2{p*7KCa6Z`IJse$SaGI
z!@iYJqAB6@T*?ElEYkv`3A_yJ=5Rz&!jV{_izL;DxM<TVXKgL(gj|6aZHvXSJmXj$
z>i)tja`d$DSY8)(%2-nC)s=ECn^Yg-qHR(bqE1x;-(i?nHd&%{jX2avb@X+ZCs#?`
zCT(68uq;m#0Z3AooC_t>=E&R9Z3XsL*G1MqT#~<SGSXjJi32aI>k<-|oaN92<CV;c
z3{Hn&%DFn&f|m({S!LC>@X4gXzVaIQ4@yXK$?83?NMIm}n*<pll^o`Sx77`tKNqcH
z2VSgDCJC$rMU++ERtSw;s;s2<eBsSo7`bi{5wcK;;&1{{>Y{{irpYlbM9$L|QQPKN
zSF55`IZL(F4337zKKa7iHi;}VE&-h-{s3!gc#}$NEo*+@ZDgug(-so?O>_#&ioD9w
zR#bTglk9nA21hL5j)=#i5j8_j%M&PAWQ?`dkr(+ZWhp2MxwV01i%KO7j;1ASf6#+$
zkUO)qP^CuxL;8SF&^IQxE!2GARe4)#B~{6g*VC+SIZ`P)1lYPI<sEp7Oz<*m;9tm-
zb>5T;oF$SPqCl7Fk(X&*B7(|96m=uG%5_~cgodokBtPs;CzL#sRv`UQ0%36TR3MBS
z2+$tmP1hOpiUl|r%evsY(g^yNOjlH*I`V3`8iSyzDo{&MD4;Zz)et)u$=)YVzzW^O
z@e!>JV1VI(0(WPSW70!$zX7iI*A)cZ^hM8J-M01!O%5iY#Cz|gWKoV?9wsjSv}_o9
zWEW}Z>?;7aT+|*R17DrllZ}qqsYADXn@o8?@MsyS=hEh}EBqr6E_!Pj7j=|T8{KC3
zdu*Xc0HSVIE8y7R;Wo135#v2NkmwFMqRAi7DY$Md97Ujmkxz6)mj|)TbUoy}9wuSw
z8v1xiFm}W3uC&?C2BF#x&9yRULZ%Cg+A=$+YMjsvD6!ulP`|z1(EZ2$?7(r?K~FK-
zULW3k9MBa;!=3K+Js~|bQGTaX&#YGlIFYSQ1D#cP=C2((^8LPOET~SL#^JJFIi5tX
z?d$;5PM1sP=W(>!j-jXS?}vF48lGN__m%LS4p<7(`&H+57Z&i3S)qPlhbII&KK@QY
z!%ONg&!48fkR{>g@OxQaCt!Z@LG|C6xY!OH@?*#B1rYc=VJCElM7?fwLTfLhIp5jp
zcU)gsEWvwfM<G!(r+-P!{*s#i1$9qS;{A?$i`Wf6XVJ_$BO&I#2ix|$G6+ToDk2VN
z^r7g1hV_8*b%wgJjDw(n+~&~N8W0wk*Dc5(dp}fWo{jlp?(GsLQT4EY&c<uLe{OF1
zfo@SV_s?@X``7clz2taN>Ca>WYDium{ngm@Bl<n0<Tm-%>K};j9X<x{ba<J6KTv!p
zl}-H{QU&zz8&XZjUSCO$zER@r>)Jw+VBduNf#*Y3N_YXm|I@4&<&)P+jXn#m@}T(M
zT14*_cVz~Rb9@2MNOuWaq40i*&pqEYd2lPVd7g4nJh(fYK+;!Es6nQjwY_(xz7P4=
z5%UKHANqa@%W-5{yL0ON-iIc-qBwBbe(KHV5SC`kKBc|_evJz{3V-$2My3gVP<0z1
zvcr{?pGzt!%KEA-tMBL0Tkd!rN!TftlekJKl+GA1azA0C_R_nKNw!W1%+skN<I5W|
zkcyvYd!pMPI^U-O>W;Y!(W_AH^Tmt&?AP9&@>dwwOQ7QW*G=}+?_Xp2q~_W8)52h`
z!Cg`FoAsPCm@Wvi)O{1uy8iwghwZ^BI*&G(<g5`}VGGXn*sSW18~ik`nVl{t?{8s{
zunLOzv|iRjgb=0+Dj>qtMLBT$-dbVgbTs)AYE(cY(^XAZXRV7;AhrWDieS&=Hy?i=
zfA{dPtUvT;pBTbZ_=^s1J1d#u?ZONKitA~;DI4A<5#2%b0n0?R9L<~LLom4<3dD4!
zBht$pi^WZE+e%dM((K4K_-K8>`?W6CMe;fuaiy~<pn~nrVDcRG{k0hK98I#GzSZVz
zMBh^QdO<V!VNHUs)sf9t@eiY&oqrhZMfcMvrTuTCVYvM;I`{Hp6y;@endvTr7f<tg
z=p$#99I@whe={@wY}stmBCmFJVl7B47`k{v0X@BcMTx$k^qR@}bhwH7IJygG<D>Qa
zpFVv54&3aD=W~dSnBHbz?5|7jtWzP-ck06aP<T5i-U;Bw!@1x_he%cl6MmTbIxdu}
ziC;zY&d87&*)h^mR;)oiK2gn#II^&c)qU6y>YY812i6n17j)`SF6P6TDn2S;OS;Mm
z$8mEyZ&hylxGi(K$=e+4mWMu`*63Y*oLqdoZT@#hL{WgQ5Riv~8A&n_co;giBt?CA
zp%*^Q@^tgphm9!N5(e3>DQ3a<+IhGOv^t{QP{`#|M28c5#Xd%6o*PctK2kz@`01|b
z0ACq-(fgM_7IZ&^e;0Ok>km>~Q&!);C%DitDhx@7uAkOlOxfKczr5eOpCTr-za8$~
zv8#xn-TN0T>CSX7@lzQS0O}F3bnnnP!GNenw{7C7ta&(?AOyM*P1@tsr@cHjX#c!F
Q#dab5zvFdrk0dPs0ODmfZ~y=R

literal 0
HcmV?d00001

diff --git a/phishing-filter-hosts.txt b/phishing-filter-hosts.txt
new file mode 100644
index 000000000..5c24abebf
--- /dev/null
+++ b/phishing-filter-hosts.txt
@@ -0,0 +1,434 @@
+# Title: Phishing Hosts Blocklist
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+0.0.0.0 1111365dh.net
+0.0.0.0 12931-coinbase.com
+0.0.0.0 215323.com
+0.0.0.0 260aesthetic.wixsite.com
+0.0.0.0 3650947.cc
+0.0.0.0 3659ll.net
+0.0.0.0 83291-coinbase.com
+0.0.0.0 94-103-188-123.plesk.page
+0.0.0.0 9825057365.com
+0.0.0.0 abctrvabc.com
+0.0.0.0 access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com
+0.0.0.0 acclimatizable.fun
+0.0.0.0 account-update05.myvnc.com
+0.0.0.0 accounts.google.auzen.us.kg
+0.0.0.0 activebusiness-unlocker3.com
+0.0.0.0 addwsrbh.green
+0.0.0.0 ahnp.vercel.app
+0.0.0.0 aldg.ldgknhk.lol
+0.0.0.0 allegrolokalnie.pl-891241214.buzz
+0.0.0.0 alutipcentra.pages.dev
+0.0.0.0 ambil-pinjaman-daana-payleter.xforms.web.id
+0.0.0.0 ambulatoriprivati.it
+0.0.0.0 amev.ldgknhk.lol
+0.0.0.0 antail-conv.com
+0.0.0.0 apply-now-to-receive-badge.vercel.app
+0.0.0.0 artsea.pages.dev
+0.0.0.0 atmailupdatewptnskmdinfomailacct.weebly.com
+0.0.0.0 att-101072.weeblysite.com
+0.0.0.0 att-1041page.weeblysite.com
+0.0.0.0 att-105714.weeblysite.com
+0.0.0.0 att-105819.square.site
+0.0.0.0 att-inc-107097.weeblysite.com
+0.0.0.0 att-login380.weeblysite.com
+0.0.0.0 att-login522.weeblysite.com
+0.0.0.0 att-service-102155.weeblysite.com
+0.0.0.0 att-sign-in-105669.weeblysite.com
+0.0.0.0 attcom-100762.weeblysite.com
+0.0.0.0 attcom-106808.weeblysite.com
+0.0.0.0 attmailservicenow.wixstudio.com
+0.0.0.0 attmailservicenow.wixstudio.io
+0.0.0.0 attmailsrvrdesk.weebly.com
+0.0.0.0 attnewmaill.weebly.com
+0.0.0.0 attyhhhhiiii225.weebly.com
+0.0.0.0 atw-tau.vercel.app
+0.0.0.0 authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com
+0.0.0.0 authsyncs.pages.dev
+0.0.0.0 autoreplyattmode.wixsite.com
+0.0.0.0 avoid.hold-managert.com
+0.0.0.0 azbin.ir
+0.0.0.0 b45018.com
+0.0.0.0 bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link
+0.0.0.0 baiii-wong.cutvi.cfd
+0.0.0.0 basvuru-online-yap.vercel.app
+0.0.0.0 beionfidi.pages.dev
+0.0.0.0 bet73nn.com
+0.0.0.0 bet83039.com
+0.0.0.0 bet83054.com
+0.0.0.0 bfrescentremebermainsetreouytnoy.weebly.com
+0.0.0.0 biggggggggggg.weebly.com
+0.0.0.0 bitnode.pages.dev
+0.0.0.0 bitvavobtc.com
+0.0.0.0 blackhere11.serv00.net
+0.0.0.0 blss24att.weebly.com
+0.0.0.0 braucrarasuteu-2470.vercel.app
+0.0.0.0 bt-102124.weeblysite.com
+0.0.0.0 bt1business.weebly.com
+0.0.0.0 btuan-dan2-resmi.top1.my.id
+0.0.0.0 buildingdesignsusapdf.s3.us-east-005.backblazeb2.com
+0.0.0.0 business-page-property-897432967.netlify.app
+0.0.0.0 caipora.xyz
+0.0.0.0 calm-pothos-3b24c9.netlify.app
+0.0.0.0 carrefourarabiank15.pages.dev
+0.0.0.0 caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com
+0.0.0.0 catgirl-appverset-nya.pages.dev
+0.0.0.0 catxtokens.pages.dev
+0.0.0.0 chat.94-103-188-123.plesk.page
+0.0.0.0 check154109.click
+0.0.0.0 checkseven.vercel.app
+0.0.0.0 ciente-a.org
+0.0.0.0 cieplo.app
+0.0.0.0 cj12143.tw1.ru
+0.0.0.0 cj87335.tw1.ru
+0.0.0.0 claimyourethrewards.pages.dev
+0.0.0.0 clickbait.design
+0.0.0.0 cnsa163.com
+0.0.0.0 cock2-iota.vercel.app
+0.0.0.0 cock3.vercel.app
+0.0.0.0 cock7.vercel.app
+0.0.0.0 contact-pro-8291-d01.firebaseapp.com
+0.0.0.0 contact-pro-8291-d01.web.app
+0.0.0.0 creosrl.com
+0.0.0.0 curmmgdv.email
+0.0.0.0 currently541.weebly.com
+0.0.0.0 currently890.weebly.com
+0.0.0.0 currentlyserver.weebly.com
+0.0.0.0 dara3dccj.wixsite.com
+0.0.0.0 db.service4db.com
+0.0.0.0 de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev
+0.0.0.0 debutcan.firebaseapp.com
+0.0.0.0 debutcan.web.app
+0.0.0.0 delivery.attempt.failure.ebbs.co.za
+0.0.0.0 dev.stream.mornar.app
+0.0.0.0 dnwqmh.click
+0.0.0.0 dropsmartchain.pages.dev
+0.0.0.0 dsjoting.group
+0.0.0.0 dulb6c5p5.top
+0.0.0.0 ebay-mallwholesale.com
+0.0.0.0 ebt-lilac.vercel.app
+0.0.0.0 echoredled.netlify.app
+0.0.0.0 elbarco.percentadnp.info
+0.0.0.0 eltritongourmet.com
+0.0.0.0 email.mgb.modento.io
+0.0.0.0 enjomugg.firebaseapp.com
+0.0.0.0 enjomugg.web.app
+0.0.0.0 error3456vhubhornbase.azurewebsites.net
+0.0.0.0 example223.wixsite.com
+0.0.0.0 eyeydhe.wixsite.com
+0.0.0.0 eyttueiu.square.site
+0.0.0.0 facebook-avip.click
+0.0.0.0 fame.pink
+0.0.0.0 fassehoizubra-7696.vercel.app
+0.0.0.0 fastdropchain.pages.dev
+0.0.0.0 fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io
+0.0.0.0 fla-1001.square.site
+0.0.0.0 flo4211.github.io
+0.0.0.0 fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com
+0.0.0.0 fnuttlie.wiki
+0.0.0.0 fokeijonnekou.vercel.app
+0.0.0.0 fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com
+0.0.0.0 free-verified-badge-form0-service.vercel.app
+0.0.0.0 free-verified-meta-badge-service.vercel.app
+0.0.0.0 g06668706.wixsite.com
+0.0.0.0 gccndbqg.vip
+0.0.0.0 geriodememerkezi.online
+0.0.0.0 get-checkmark-for-you.vercel.app
+0.0.0.0 get-free-verified-badge-service-on.vercel.app
+0.0.0.0 gitanag.broke-it.net
+0.0.0.0 gruprocuroipra-6493.vercel.app
+0.0.0.0 h5.b9en.com
+0.0.0.0 h5.metacoint.com
+0.0.0.0 hcghij.top
+0.0.0.0 hecregayatu-1014.vercel.app
+0.0.0.0 hejmtxxt.guru
+0.0.0.0 helenblunt6.wixsite.com
+0.0.0.0 help.accountsupportcentre.com
+0.0.0.0 here-apply-for-page-review.vercel.app
+0.0.0.0 hgbk.ldgknhk.lol
+0.0.0.0 hhideiie.wixsite.com
+0.0.0.0 hitummoinneullei-5882.vercel.app
+0.0.0.0 home-101067.weeblysite.com
+0.0.0.0 home-103465.weeblysite.com
+0.0.0.0 home-104341.weeblysite.com
+0.0.0.0 home-105266.weeblysite.com
+0.0.0.0 home-105929.weeblysite.com
+0.0.0.0 homeattatthome.square.site
+0.0.0.0 hpnefhqs.motorcycles
+0.0.0.0 im25.net
+0.0.0.0 info.supercitrus.ind.br
+0.0.0.0 ins-business-home-center.com
+0.0.0.0 instagaramgalochka.vercel.app
+0.0.0.0 ipv6.43-135-137-110.cprapid.com
+0.0.0.0 irmt0ken.win
+0.0.0.0 iujf7839iofvkbcu748.weebly.com
+0.0.0.0 iwimwmiwi.click
+0.0.0.0 jagej73796.wixsite.com
+0.0.0.0 jfdjy.com
+0.0.0.0 kalyani963.github.io
+0.0.0.0 kexoigrufouddou-5902.vercel.app
+0.0.0.0 kl1k-ds1ni.neupdile.my.id
+0.0.0.0 kliind08.wixsite.com
+0.0.0.0 kreelo098.weebly.com
+0.0.0.0 kremlcup.com
+0.0.0.0 kshitij12375.github.io
+0.0.0.0 kucoinglobal1.com
+0.0.0.0 kxbztydc.black
+0.0.0.0 labanquepostale.jupiter-analytics.com
+0.0.0.0 leddevotoze-3146.vercel.app
+0.0.0.0 linnkdna-kget.wxxzsite.buzz
+0.0.0.0 llahi.info
+0.0.0.0 llahi.vip
+0.0.0.0 loffaummuddote-4145.vercel.app
+0.0.0.0 login-att-10221.square.site
+0.0.0.0 login-form.world
+0.0.0.0 login-online-outlook365.com
+0.0.0.0 login-outlook-midstreamauth.com
+0.0.0.0 login-screen-103134.weeblysite.com
+0.0.0.0 loginaccount70.wixsite.com
+0.0.0.0 loginaccount77.wixsite.com
+0.0.0.0 luk6414.wixsite.com
+0.0.0.0 luxlifemiamiblog.com
+0.0.0.0 m.meta-accessibility.io.vn
+0.0.0.0 madebybmr.fyi
+0.0.0.0 maqpiexyz.click
+0.0.0.0 mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev
+0.0.0.0 mayfair313.wixsite.com
+0.0.0.0 mdbrvlfy.black
+0.0.0.0 mesageriepro33range1.weebly.com
+0.0.0.0 metamsk-wallet-3.gitbook.io
+0.0.0.0 metttaa-audddt-new-02.firebaseapp.com
+0.0.0.0 metttaa-audddt-new-02.web.app
+0.0.0.0 microsoft365-storage.github.io
+0.0.0.0 mikepattyjm.wixsite.com
+0.0.0.0 mobilemidasbuy.n3g.fun
+0.0.0.0 monespacepro-client.3utilities.com
+0.0.0.0 monetization-violation.github.io
+0.0.0.0 moodengsol-net.pages.dev
+0.0.0.0 mwsiekdnfjrdufs.weebly.com
+0.0.0.0 mxmxnmx.mx.zya.me
+0.0.0.0 national-au-b.com
+0.0.0.0 national-au.net
+0.0.0.0 nbaaiqjq.group
+0.0.0.0 nexomyacwv.weebly.com
+0.0.0.0 nft-time11.vercel.app
+0.0.0.0 nichcheck.weeblysite.com
+0.0.0.0 ns1.carrier-ast2-portal-apple.com
+0.0.0.0 omadshf.ru
+0.0.0.0 online-assist.live
+0.0.0.0 online-promo-asb.org
+0.0.0.0 openkimono.pro
+0.0.0.0 opportunity-verified-status.vercel.app
+0.0.0.0 ourtime.reconnect-dating.workers.dev
+0.0.0.0 owouwuowo.click
+0.0.0.0 p365kf.com
+0.0.0.0 p4zv8crnrrha27so.94-103-188-123.plesk.page
+0.0.0.0 page-center-manage.com
+0.0.0.0 pavan-patil-22.github.io
+0.0.0.0 pecinternational.net
+0.0.0.0 peesom.chat
+0.0.0.0 pencairaanndannaa.my.id
+0.0.0.0 petty.wiki
+0.0.0.0 pimnhv.group
+0.0.0.0 policies-business-page-service.com
+0.0.0.0 pottatrebewe-2808.vercel.app
+0.0.0.0 pqo.hrf.mybluehost.me
+0.0.0.0 programming--service--panel-totlyy-free-for-you.vercel.app
+0.0.0.0 promo1.spik.ru
+0.0.0.0 protocolsecure.pages.dev
+0.0.0.0 pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev
+0.0.0.0 pub-1778406e4fec4394901793111c187dd9.r2.dev
+0.0.0.0 pub-19b834342e7d465b9f00b3511325a081.r2.dev
+0.0.0.0 pub-21dd4dc659614ceb93e45a6de4434502.r2.dev
+0.0.0.0 pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev
+0.0.0.0 pub-2fefe932a6974485b987c9ba851b5c40.r2.dev
+0.0.0.0 pub-3a46d9914f494078a6d6237513e7a096.r2.dev
+0.0.0.0 pub-442ed822851244a689b3472ea2c6a950.r2.dev
+0.0.0.0 pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev
+0.0.0.0 pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+0.0.0.0 pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev
+0.0.0.0 pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev
+0.0.0.0 pub-7f5cf36445d042168bfacd712e890dc0.r2.dev
+0.0.0.0 pub-803839714a924882a7bcc2495a26860f.r2.dev
+0.0.0.0 pub-8161de4a277e4ee8b532af34954224e1.r2.dev
+0.0.0.0 pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev
+0.0.0.0 pub-8376b5b2334844d193a525d8b8548fa5.r2.dev
+0.0.0.0 pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev
+0.0.0.0 pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev
+0.0.0.0 pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev
+0.0.0.0 pub-9163a97d70394cb499bdd232be6c2169.r2.dev
+0.0.0.0 pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev
+0.0.0.0 pub-98171471e0944ac3a5820ef719bf0640.r2.dev
+0.0.0.0 pub-a263e0790935412eb10cacc55bbced18.r2.dev
+0.0.0.0 pub-a291041b077742899b63a9982f04a56c.r2.dev
+0.0.0.0 pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev
+0.0.0.0 pub-b50adc5d699a4f08aec37102c2103da7.r2.dev
+0.0.0.0 pub-c0a934c950e441db96b882789f53c9ea.r2.dev
+0.0.0.0 pub-c2c250050109456396c933de259a4fea.r2.dev
+0.0.0.0 pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev
+0.0.0.0 pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev
+0.0.0.0 pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev
+0.0.0.0 pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev
+0.0.0.0 pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev
+0.0.0.0 pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev
+0.0.0.0 pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev
+0.0.0.0 pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev
+0.0.0.0 pub-e42cb528b102447385e3145197916f51.r2.dev
+0.0.0.0 pub-e4aff507450c478cbe3f77ad23d75035.r2.dev
+0.0.0.0 pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev
+0.0.0.0 pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev
+0.0.0.0 pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev
+0.0.0.0 pubgm.club
+0.0.0.0 puffagroibrouwoi-8818.vercel.app
+0.0.0.0 qasimk.com
+0.0.0.0 qfjfvseq.info
+0.0.0.0 quauwograssodda-3503.vercel.app
+0.0.0.0 qysgyp.com
+0.0.0.0 rajdipchatterjee.github.io
+0.0.0.0 rechazaroanularaqui51.weebly.com
+0.0.0.0 remote-fix.pages.dev
+0.0.0.0 renggard.47-243-192-240.cprapid.com
+0.0.0.0 resolvepanel.live
+0.0.0.0 resolving--issue--with-us1.vercel.app
+0.0.0.0 resqat.weebly.com
+0.0.0.0 review-business-case.d2f7p3b7pucnle.amplifyapp.com
+0.0.0.0 rlpqwefi.pink
+0.0.0.0 rouloigeilleuja-9523.vercel.app
+0.0.0.0 rulemec.pages.dev
+0.0.0.0 rutinqqwin.shop
+0.0.0.0 rwftfu.quest
+0.0.0.0 s.team-pw.cc
+0.0.0.0 sairanees.github.io
+0.0.0.0 sanseipecas.com.br
+0.0.0.0 sasklelo.weebly.com
+0.0.0.0 sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com
+0.0.0.0 sasktelcustomerwebly.weebly.com
+0.0.0.0 sasktelnetwebmailservermaintainance.weebly.com
+0.0.0.0 sasktelrectify.weebly.com
+0.0.0.0 sasktelscrutinize.weebly.com
+0.0.0.0 sasktelservicecentterwebly.weebly.com
+0.0.0.0 sasktelsupportsystemwebly.weebly.com
+0.0.0.0 sbcglobal30.wixsite.com
+0.0.0.0 scan-vulnerability-guard-v3.pages.dev
+0.0.0.0 scan-vulnerability-guard.pages.dev
+0.0.0.0 scanner-metamask-v1.pages.dev
+0.0.0.0 scanner-metamask-v2.pages.dev
+0.0.0.0 scanner-metamask-v3.pages.dev
+0.0.0.0 scanner-metamask.pages.dev
+0.0.0.0 sec-sign-in.info
+0.0.0.0 secure2-validitycheck.weebly.com
+0.0.0.0 securecapitec.theprimepoint.online
+0.0.0.0 securerpcfix.com
+0.0.0.0 seeteressecalywoi.github.io
+0.0.0.0 seivviice.weebly.com
+0.0.0.0 server.0e7p.com
+0.0.0.0 server.2rk3.com
+0.0.0.0 server.8q3p.com
+0.0.0.0 server.n6b8.com
+0.0.0.0 server.v9vs.com
+0.0.0.0 sevvviicess.weebly.com
+0.0.0.0 shard.blue
+0.0.0.0 shard.skin
+0.0.0.0 shared-d7590.firebaseapp.com
+0.0.0.0 shared-d7590.web.app
+0.0.0.0 shaw-101329.weeblysite.com
+0.0.0.0 shaw-101587.weeblysite.com
+0.0.0.0 shaw-106427.weeblysite.com
+0.0.0.0 shaw-107375.weeblysite.com
+0.0.0.0 solutionwebsitedapp.firebaseapp.com
+0.0.0.0 solutionwebsitedapp.web.app
+0.0.0.0 solvetans.firebaseapp.com
+0.0.0.0 solvetans.web.app
+0.0.0.0 sondfrom.dexlog.my.id
+0.0.0.0 soyokai.or.jp
+0.0.0.0 srdate.club
+0.0.0.0 ssy.hmb.mybluehostin.me
+0.0.0.0 steam.poweredartsworkshop.com
+0.0.0.0 steam.workshopsreview.com
+0.0.0.0 steamcommmuty.com
+0.0.0.0 steamcommuunity.ru
+0.0.0.0 steamcomunutty.com
+0.0.0.0 steamconmumity.com
+0.0.0.0 stepsray.vercel.app
+0.0.0.0 support-metahelpcenter-id100003498934.netlify.app
+0.0.0.0 sv5gardens655665.weeblysite.com
+0.0.0.0 system-portalnu.duckdns.org
+0.0.0.0 talwgam.njmolada.com
+0.0.0.0 taste.baby
+0.0.0.0 tele.zhngain.top
+0.0.0.0 telegrambot-resolved.pages.dev
+0.0.0.0 telegrazm.net
+0.0.0.0 telstra-100408.weeblysite.com
+0.0.0.0 telstra-100469.weeblysite.com
+0.0.0.0 telstra-103234.weeblysite.com
+0.0.0.0 tiktok-888.vip
+0.0.0.0 tiltckshow.top
+0.0.0.0 tnomwzrp.top
+0.0.0.0 toeken.im
+0.0.0.0 tonic.pink
+0.0.0.0 tooma.cellinsurance.co.zw
+0.0.0.0 tpdtepremu.xyz
+0.0.0.0 trattujeilesso-3354.vercel.app
+0.0.0.0 trbinace.com
+0.0.0.0 treibrukeukonno-1395.vercel.app
+0.0.0.0 tuesmad.firebaseapp.com
+0.0.0.0 tuesmad.web.app
+0.0.0.0 tyyyyyytyyy.weebly.com
+0.0.0.0 tzcsjfto.chat
+0.0.0.0 u.updatetrackgre.top
+0.0.0.0 uc-whatstapp-web.com
+0.0.0.0 udxcady.wixsite.com
+0.0.0.0 uklifejv.cyou
+0.0.0.0 updatemail12.wixsite.com
+0.0.0.0 ups-trackdeliveryapps.chickenkiller.com
+0.0.0.0 usbest.cyou
+0.0.0.0 user-transaction-overview.vercel.app
+0.0.0.0 usps.com-trackdck.top
+0.0.0.0 usps.com-tracklnv.top
+0.0.0.0 usps.com-trackmcl.top
+0.0.0.0 usps.com-trackmec.top
+0.0.0.0 usps.com-tracktpq.top
+0.0.0.0 usps.com-trackvmd.top
+0.0.0.0 uspsinfw.top
+0.0.0.0 uwdtsczi.top
+0.0.0.0 uwm-onedrive.com
+0.0.0.0 vaishnavi1436.github.io
+0.0.0.0 validatie-veiligauthenticatie.com
+0.0.0.0 vbbu.ldgknhk.lol
+0.0.0.0 verified-this-request-badge.vercel.app
+0.0.0.0 vo4zzp.icu
+0.0.0.0 vs41.github.io
+0.0.0.0 walett-cont.gitbook.io
+0.0.0.0 walletauthenticators.vercel.app
+0.0.0.0 walletcomnecitt.gitbook.io
+0.0.0.0 walletconnectdapps.online
+0.0.0.0 watranfart-fdd6a8.ingress-bonde.ewp.live
+0.0.0.0 waxed.wiki
+0.0.0.0 webmaillshavv.weebly.com
+0.0.0.0 weeeqweeattt.weebly.com
+0.0.0.0 weigh.skin
+0.0.0.0 weigh.wiki
+0.0.0.0 wgqdqvtn.baby
+0.0.0.0 wgqdqvtn.pink
+0.0.0.0 whatsapp-rqr.com
+0.0.0.0 wirelessvoicebtpaidmailinfoplay047.weebly.com
+0.0.0.0 wscs1231.cyou
+0.0.0.0 xn--metmasklogin-vcb.gitbook.io
+0.0.0.0 xojautruffeuttu-4659.vercel.app
+0.0.0.0 xraiz.info
+0.0.0.0 xraiz.vip
+0.0.0.0 xsuweamskeidjf.weebly.com
+0.0.0.0 xya46.cc
+0.0.0.0 yahoooooo-108560.weeblysite.com
+0.0.0.0 yavanica123.github.io
+0.0.0.0 yi5lq-syaaa-aaaag-acfsq-cai.icp0.io
+0.0.0.0 you-can-receive-here.vercel.app
+0.0.0.0 zeiitgeist.angelocachero.info
+0.0.0.0 zenixoikitti-5809.vercel.app
+0.0.0.0 zeznjx.shop
+0.0.0.0 zwzcn.com
diff --git a/phishing-filter-hosts.txt.br b/phishing-filter-hosts.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..31801aed1a7ae9913fb8e15a6fa9be9d5459da71
GIT binary patch
literal 5304
zcmV;p6i4gf2-G2>m=Ay=WSIMy>PO#iQ@y(%A{<e`)<2agbOQ_$wgfW4vi$ct%XYh@
zOqrrgy0qy5D~9fhD)0R-P5!dH4(QlnIVc}$4?cyw4tag3BeX+?kbS5iRhP8ssi+oN
zVQsfM2J>BFBMyA4jFvEUOs<l?EdFOdzb)>|fB*dJmiv~=`tvWfkN(3U-aYs6>(74v
z>kQhCzkgcQFF`mbLjNaYzXkiP_5c6+v!8$boVj8D{lkAE+&_OENBk%K1Tl9B_uu^b
zv!DD1oUr2WpKXk@5vHtp?BEM;jRW=z8j|$I|8ypYKDO}JpZ$ob=Q@DKKdYGqzy9op
z6YT!`rwou3&ddM(&zi?J!<(N+c$LqJ&sNtj{Ha_V`VTOmyyyR7^s@DbFOqW6aeJ8y
z=i(JkauRAT9w1cHxdg$r6!PIOS{Ps-8;%_4l|L0D5_Ll^nmJ`?2-7XyzDImxtQ78t
zIYl^=gj-9vko4TKKWR;HR3B`GX4=R_d#(n280`%{xGWO__D(sqnZ_#cauD6?x)-Vy
z5xlatvV=23!}<H%qyf73e89+GrrnLES)3oQvkbyZr87;B`(2U)WNn=aoGw$CUo3QX
z`dpU}kNie9x5+GQodsJ(w1*h4-uy-z6X#@a<;>jM1>7l|=YFVrT<IRyXW5=~ulw@f
z-f?YpuTR)ZMtbhVIxZ9!Tv0#2U+O34$Y=O;39OJqI*s@y`I(2$J2`WCzyXCsfCA)%
zd&hx|eqN&X0i9mxX^#GupF51&@(+GHbYz;xAqRXXy9dgEypvGNyI8`1p8HKoy~wDf
zVZi)G;vufM*n1ltGxPX3An)}Uc%7s4=Mi&B)uksOgh4Mvzu(cXJqF>7Gb1SE?SfEQ
zipTjZj{BnxSE~mtcT~_ax)e|M=Mtv-Y?w0vq2%5^Y1uw^EwW{PSY+i1XM$@@eYU(7
zlFN<N%i{W3s0ZPUnMDxZ*u^pnwMG*;ztl@yy*XpXTxqlCx=6HlixNqL5$u8&WhOgG
zpSZVe+j7oX2z@GikpYus+3d+*Foc#V%FOTg+y8r>okScM2F6K^b8P)Cp|=9h9JS%O
z-x>F>5d}S>7Dl`DM$((788j<@eJ(V&c~P%4<Cg9Z;33@}GnB*Z`+h8M(aw9qrq^%Z
zgjhc*Kf&va@`HIvqR6tQcmHUiXg*V?QK;;?=kg483Ukins%52Nj(4UZMS^Aed$vh1
zia)tQUe@L@*OGF~#Z!vMVPq*eDG!I0Oge{4&<bC&iBdGAc%a92KrS6e!#eL#>dhCM
z`Mh3e5V3)Ll?kpUk2k!lA7Kj!*1cgv&ME7^ma)FMX216?6bxY(X5V0j1`YZgIEhe(
z6(fkMZ4+DwvqgUJPEH+FY|MUSSVfSA{m69GlhfnwKn#>fpyU_y+2M?dc1dR^aMU4;
zX^Iz1@jHCci%5(f7E12L<ok>S5bKPR!Y!s$cHeWlbJo=W`K%4-=l(uEX7+=eb!@d0
z>4gf;yWJY1>0W{cK0|qOU1=!+I_CId<XA(b{u6I5g_2q=+R(_?l%sYq^Cc#Q<BaL9
zg_t=zz))gFnZS9zv2`4z+z?%CeAJN+JHdW#Feng1yr0Uo;>=O?LUKZFNXa4OgDK}D
zfmcEc4qG|*O3NNd<b5R_7pHAH-M%$a>IZhn$Lp0H99u(;M4dfI>*F5spuEF5<|!Tc
z0<=J3E?baX2V`ZRYIw@oc`!~H5C+d##3Eo%WSpklP?*bWQ|SR@o)~Hg4Qp?^=QU<K
zjy1mN$JPl>pv@QDZ>@N{Gik28bqwT2r`XQ5M`$2p2#;Q4Vf3`8-HM9d_18loQ%Vb2
zYzRbw48-%r5oMzXC%FOT31dXI{<<L_$X_<mtG4tVxv@fD_ztmRevSa8bWI{@iBbz!
z{HB(+Myd>Vm7@2ZhDyIc-}a^|a4Gbttw0McU%6h#)-pgFM}@yo*dP}Mbz*<ip}V2p
z%Q<=G?w6oXEeg$@gC1^T7eQqotPf&F9rT0js8z{~VDu@wVcaoFtoOm)LkpFDdV3<4
zlfq!0s7FT2qn5SKc3|g^oafME^%Ot6whSnRZ<nxd$6VL?F^Qy8Gz)x`RC;-D({Hr_
zpeNxw8(KERu8dlJ{DqJVSsA?XjvKm{J;ua5akgP<%SYgy&q^+m;6Qppk`N~79k-gl
z(>EYyaZ8mX67<0!TD%dM9z6lk00891up)V-9e@PLG>4OwvYmE-&>8RyEWcMJIH%?V
z!K+m~yd<g*)l}o7s?AS~+BmiNpcM@bHZSf4=T2pgvFB2K)ib;Fc70-g)Kc(SvF#j~
zPAz?ZpHbeuBqRNkufVRu`q%dsET5OK0fSHj(c#-L>UoT4nN3V7QAa0w#5eb#zIAuC
zuWVTsYuLgpU0p*c(Z5#u&bzO~mTSZV4{T5TW{Nm@n%E$HB-p$l<vEbMcz{@$SwrvY
zxOT8mQ4bba>F0rNN%CkI_<l2^+-jJu=Cc7=l<UMw*fjMHk*>XIT5O<tNZNeSEv#F9
zh^L?pL&Ftr7*jRwSjE#td>rHR8FZZ;c^}wt$Kv-{MyUfnYNCdeW#)O-HZZk}azR64
z5`Z#BoJWj|>eTqJ{%LGD0^61&=8V%&<}r_>=2CF(J7%J-6;pgm8Z;1Gro~XQn<CYs
z?^Ut`*P7lWEtcg<JK<a~28?k}ElJvMXTh|+I<=gmRk^uuch85=d<UIJJ+&;yLVll`
zx2L&8>Ko0yoj`I-B-HA~vC-c{>{_A0v5KM2w<jtKb3We-Rg!S2373X&&J^G-<#r7A
z#6quJ96~rB$yn)fP4A}<(<m!`s>@eCt|MPr{vU}4toSg}IOg5MBgIExz4V0rhLYVP
zMRJ&*_^EkqGu0VmokTmvU^D5t^CyX&mrM)JGv*ytCD(J$xkOuuDrGf48{%G>%WW0U
zhQ}V}>Cl^f%OgLykVdDSO(8+7^=Y{0b|3#8cMMboHJv;=cqp%lV*vnT)_cq|4{T%*
zNt|uAWBgZC%CBD}lB*8&N9?(jXDmRTD-L>nKHr^a&&;#$uw__79u|bTXRj&2JdRo@
zcOX$*=_Q)V8i;i+2O;`iLI=GRAlGbrbfh*3yUsDTA~kGNIzsRuIdX)aV8v0<k^vKt
zC|8P0g=Z>CJ2#9yM6&Z>67#tzgQeP?eMV}WBg2u$d&Fh^(Va99+dO?r!yz<R`fiah
zI`sbj_D7@X&Mu|B&WxY?+W_aN1Fl*cBNYzld4`Fko^TzZAd**xQlMi)S7#h>??Y~q
zBgLwY=-YcwH{;p|cB5Bn#<Nu^$GX&N739=8`jcFi_Shhe9q^;DcMcq5V7rsd7~>!X
zFS6Hy$QnMRcp1lAVQkeS7ft%8&G4*furOeI_c`5$`*D=O@T<=|9yvny^QJ|vLmv44
zT?ht2OC<w|aVkGzJzWNfKn|lOV7*L|cdq+AWwKb+8){s8-ATbwX}y2-jL%roqs5sF
zNJBb4$EO@0dVJ{j26{9_V{~*61SZi!c~`LmtEzZ_{Cd2!vR*9ssmBfBdM6@L(jbGB
zopLTS9w<3%7*MN$CQ9ejX2h~6O!OfL(t+e<J5N2YSUn*2Em=aSIB`Soxeuz+N}cJ?
z)ZU#y_a+z^U+m&DAGK6^w(0~4IAoSQZYWx2A24RmpIv9mJfkM8WlF&?$gnj?zO6j5
zRcCees`Hxlstvm6DHr`rnH{&M`o3*wrL_%&>D5354^T8gjnv|5lumd<At#Ky6Ct>9
z(TU-Et5EI`H|`U$*Mr*1_{RfEfZPB|i9#nGbjEp39OKrIN;>mVwl{wnW9MmzozhTL
z#Eh^C);tY8UP#1%h^k%!&R3;dOZ2!0^LN{7AI*Xe$g^Yg*@!1j$ir2>UzUtI_WR~T
zba@q=R7E)LXMWB`^Xh#7x`XhMisd|4oYND|1tKI7jFE~51?ZB-kdnm!3uxLzx~Lmt
z6<bgx3`#oX7&lIG&I7k5M(4hx^HwUU1e&N8?OkHbOYP=W3JuKi&k{UF6~m(4!c{;w
z+7gw9C8APNX(rs6NhAOBNNBxP$t=z=gk@2Sb`VVDE~1#wNdb#9N?GllHNknXntL4-
zb3aIeTB37YCFK+|7M8e>Wi@h%2AErX)Rht#tq@jop%g6Ed8v#*5McqQ%R1r0Ku5r^
za1U;5B<WOeI@$%bw_HUZbt@oBzv$?cl4kLaJEJrJ%Al91T*NVe@ZgeOk_s_62_|_i
ztX_lz(RYpsxS)*ibQ8mzc(e*rWGOifPFf>xBA#?ea#2c0rUYNCPY|Nv0<B{)v?=nI
zNh_V<3Y<{Z3NStdp_~S>*o7q@alY_~3WPDJ5UtlzK$6O7C4@phTUhRxU``wBrLw}i
z7&Jye0gH?amIZzM=b^ojQdy-UcM`PF(R!<uO>5{>tWCxntCd^4N=$(QD?qad?&drg
z%i}x_f8yGpib{JUa0wW!X59D~{mG){iW|?2Qf|~G1QWDM3RqH%r?nd3_#(lXXxMZc
zJ6<{GV-!+&T!P?By1MXX5S<5al;Hr(q-k5W^wIKkJ4-mr4OfOEb4o#wpsiq-40k@U
zW!=phAQp+tIOe2QT%hMHKnPlUA24!z%beyv$TMS%64p82M%!7@_x^ebw-E<pv;@!|
zq*4m}5`_{b0xVH_9M_Y2%^(IH7w5o@t_2Lza3+G_Ohz!y2@ITE(_v?*6p!95-dbU-
zOIikpaPwIr2+f#goH?Zz={&(n8Byr6b^Pog9je7R9&J>}(8t9Dos`y6aJE)YB}mWR
zg4#*uR6^xY0#7l4x1YIq_Vn4#vZ#fRTrE-f$fWD#MLXmsMdRIP*~k&BQ_&d35_i3C
zgIol6VUZ%}{+=zOh)OF|F&eIHFrciKOqdu1fLnaTm$-1?K>$V-t@lAK$Uq98A~NHn
z9<75QxI&${O2R>~QL4a$a84NO>hK&oVMGn)i?}e(dmSWKeu=K*)i)j`g4e=&ENg%=
z(rT1kY3S;m;7igx+K`fFMrjt5vB9HE#y}J@8qH)sScx4tlFS8ZH^VUi$#5Q61RHd6
zd%_P+Mi|AI)ZS^Ojq+(pR)Cuh`=FMvq>E+>48TasQJKiWYPBE=gOba@)`Pts6y3=G
zIm9W!+G_T#&Z}l(Ehn&wzM$vhNtjjfN{{sJ_!2QVuL<)aw|cwx8Y2*?nauRIcVF+*
zY4C_yKTzfv*dEBug}Pzb;0vunnL9Li&8)dnyWt_v@Jsnalm#~|>k2JWWrz@^y$&ac
zP-3*yhQ01@Bo-yC1_?!)l3aijixA|eKbf5)szAg3f>B)%+H#aID9D3p6v>>@n{$Q&
zq0>-=SJC$Kbz#c-m@v0G_nKGC`;PMg#Az`MfN}LbFmzJD9J#z+S1uGm%Y~&}X{1RZ
z#OABjDIRtUa$Z<S*13ee6~sP}AJU<8%qIq5panT;jUD=P$G!Fygx8H^Slju4DJ9o%
zq=M1?g7xv(`@6N0N*jkHMmG=oU#*yr?TVxscZGuELJylFIF=(iAQvbBlO`I5p=#8O
z73-mkbI#waD3=1f-Af$xrCI_48`ezF=7Z2O11SwVyay=c(y^kvsy4DtXpy|-Jkd&_
z^TY~^3ZkNS9Qu>IdCc=K&aYHH-Gc$IC)vdaFBcO8Z@xtyw;V&#XBe6O7a2YY105Tl
zEgyJEU8MRj@@}^?Y)X=R06N;6*gFQ;@2loDQxVMXcg|Cf02TJi(41j6DB4r{+m}pp
zgJtpd`rhu{8{QSu05{<Y-dm9}<FY>kIRD&73?qp~J0=bkBTA)!iN3+5c*;;JdyHsT
zMO$-~7A2Tb321p%(ZlgtRP`)2Mz3M2`11C_!KZFy+;gI_6zQ!JEe#Sh;%85kh-tdq
z>s_CaX>Ih8jy1iwgh+V%-fy}cUa<0-Tpn59|Ldt8gM|@p3_>tCZb<5iF^%BHuBMd7
zIs%~{$1%qpT0bRpg7n1*W>YP%PFYtvIr2@xvp2X8i*z%^y#v&+RJLa2X#G?(lge2q
z6`aKGZ%tNI5=&pSUUZyfpQhr@Zk9>o49{4)oO0L$_G^WMmd8<dh>!^y4KZpx!~NNV
zJJRn~R%C^sqlQ3`d_CmrAjFJvkET&y`#t1;aBPW<2DHdfL6C)*nviGC=O~57rkf)_
zM|~1&t&YkWc^_f+q`4YcN~y>7ZD)X0QRn%>obeuN$$>~p8MPij&!NRM{z2f=Y1diC
z83&%PJthzm&jrUB^MTn&sBk4xYPG*TnpZ2y8W`q=*|+(``K+Z>!llz0RBU2DAg+5O
zj`S@y?l178a#OBid_#YvQRTU9lY(K;7^;3n!Em|SGZ6D7S08Ymq)6ed{24z1;!R9g
z^Qjhlo5!1myRKML8W2@EaFKNW*-2##h*}cPv(vLMVo$k!wtd%^TeI6^$qKSNwv4RO
zElliM2*Okg6k*L?M!X&+X9>?P5Mx}~y}YmV5q2OE^!$|_=j-y{N8Cy-X*pCiuQ+=6
z=75xg)PnK+YQ(<ly*K2(6?kW^<U(^G@ngftpqz*Eo>y2tJjinM_kN;EOf?Fg$x%JA
zHOsLNJC*l)SM~j#G>5_TeRl=n!n1+0#;}X&a3~sy5|XcU=e6l@NZcbD>QOM{ksVd>
zz%e>)C+w^XCfmm*XoI8}7qIlw`B|M<i{?R!*U2^Jx!{9QJ3`rv!h7G~t!Hyzi1@k?
zu9Crsvz5GVlok22q^MHXSA4xkId+&K;tq-H9`3TV*P1izL6PmU{IJx7`U3%7{<*`=
zl&NGXJ#;Q4U#s?~kOM8y=R~FN`wo62zVK5YFh`py;T&TU0j+XS^L!fQFD+00EF4Un
zPoEbms|#X|k5u8qJ~ya^mqqhk_);;#nbnIe5xZ4wb`GGZQ+%v*XT85jzp;(;z7hzj
zzY=$yguOD1y8!2<d~ts<=dq#&6m;`=rc!yrhOKr)&=*Vo)cnk2pto{hF1tN^%j3iD
KKlr`A0UQTSjW&Y-

literal 0
HcmV?d00001

diff --git a/phishing-filter-hosts.txt.gz b/phishing-filter-hosts.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..cbb74fffc95236d1ef40dd52ae3bd3dffe947beb
GIT binary patch
literal 5448
zcmV-O6}RdiiwFP!000021Dsk*liR#<-RD<K)!igjAwLoX`0z57RNX}usmjeJJ3J*w
zBuD|EG@4(Z18F=Xj-jzDV|#1^-FS4L?mi98-(LP<<EVeU{MX)wy>+{nzt16tmwy{)
zc^qws|Ma()|5+4|TK#w-6`@647li$zs(z5_2V?(>`Tuxbtk>bkOZ}qw_2r+}oBWIM
z`m|~%um1v>zt59i_zoNGV_d?Izy8``UoJ{HPk&8(yl}4zW5=ldU(5SZ-v1Bn|FlxO
z@c&W%+jv*SBL6+FUZ!Kti*`4$r2nrkSZlw&uVtg$>v25#dH2Tu`e~E$-+APMW0k7B
z{d%eK)wE3QOQ+-KC>ff%kh673IIZ|GMQYZNW;@hYT!*;V(aQ2-UxSTX9c)kyv@4~2
z92&-PvuWRu;mM{0yj3+t-S<U}&6iP!W0}10DbW*Fu@1{_6uFSmpYeS=Dq+4*1}#^g
zHhSOjti3f>@@QvQj`MDGC8GsNIHB0M!UY!37puN5HrfeFZ(NMJG^=}@npYQ#JB}(=
zPS>;h<tRxcl)D)l>XNT-+Ldc4kGlt%XwO=#!8#nfSY3j&_FE@#r7ppXeYx{mKOAB2
zmUJ<x$C5A0=lH00CH@@U{)oGd4-=!_`FWg=d~{aB)<r+mgw~{{rC8tI9wgUj7l1N)
zese}Bl|Fw?Pr{DHV%>pH+!cy*$BTtuM-4QWuV(gBC@)%+Rz2#hBagGUi??Ukw6yVI
zQlIljc9CN%IlJ@LB+D{h3pZbiI2T?^4J#IctDVkT#K)ks7l{*=zx(jAL>G>evd+wD
z6z+?-gcjp<yLF5J3?M_^XMc%_y9BM%e&5Tm4wnC3qOXTCoK|FyGKp-at&<76)zE#n
z2;gpA(^tQhVdUE@1?|sBRM-)Tf_*D#cMgY3$8X!=8%g{ZLRHt2-wL&T)qf+DJobJ-
zpyHOQ;;QWY$8vW5Ma-YQO4%q60;exYYJ4(%-Q&yRix8F<0e1PCh3krh>*8m^`bcA8
z4T}zT4TVCeNff+4N@G|rT%8QL2v`x48o`t<Ju96}^87qw$^AU40`ZPDeB92z3F}Jh
zKL!M4Ro!o71UFZqEq7Blj^osxiC?ZO-?QCY*b}mQHTK8_v$}cJwl%~xZfDNnl@VIn
z#o*K_p^VlYAC`o9i_47SC)aqkr8MecGMrbx7PEtnF0MSAD{-RP8LMo@G(yL&ac+AH
z9s8zghRh(N+d)u^aLb^2(n5P+1tlK;o7Zb}^EHPFVRxTjc>$=xNtwgic!rxq+}0q0
zG<Mu;uj{%@u&=63T^3^qgu?aN%{*VF=bnc(>J<p<s;mj)EhCVpiA==$XMxLZ6W3b}
zaRiAxOty^kQlp$c77wx75s7(+a71cB6!1lvGBl{Bh2|j^6)Ld6RdL@pEy#9*pVc*4
ztyny$m5*1HzK(*Hv|X~uXw7wVE6MFLqxijE-yX)ssaWQ?pF`0ILgny8)q8C~<X}1h
zz#nUtahOCrTLmJwpnT1+>$PqOZ5VA?SE_mkP_luq_CnT@PfOYbn`|zI?69+bEHDmz
zfU9s<p4}?G#`y?}nVa16SpJ@bfpSV*gw_?X559Wb&IEl1x5=PGT7-Zucscvs<KQyR
zTe(AGAx#-Cb?MiK;l67c_RH|d?R15Sb=-RmYOS(YOXozAh~*tOpA#<dy4{j23F1Wx
zJ4c?q24<UQ6J34+)J4XGx1vw%S5<Xs(1WBz{);Db!YSWvRz&Uye%vaqewudbT<TPd
z9)~^bK3?IlT+DsU_e1sVe99T1bQuu^bT>-ML$+clQNCAMs>F6ilg1d+7HuzOL3tw!
zQMW@udnGtpla5n?a4s4jPFHwY*Qef;m)V;#)v22^&kw7KHA?QDTJ}TWt2LD#ZHl@Q
z*-uYPEKOp9U|Cv-fF;T|{vdlU15!7i%4znF`|V2Za+>yEqCz3fgbBnG@rBy>D>zj+
z%rW(CVC3t=V(Tbc$rhH<;KwMgc17tO#|w(E4t(5NTO$XLiLvH@sO26NUX9=ixoo9J
z!9A|KBu$`Dp{Ym|_(33g8&PBtZj;^?{u}DbX(!6W9bDYdDD4jOw4#tb^Ua6ASKnyw
zXWvlPp3(H;^mp>Z-{2mICa{G~8Pl&RLu!K5l>?)`>MJtslerjIZPzTvHe6~k&&PtF
z?efLJ20cr;Jkk-vL(u!#zOAU7Mb{2(&K;172^`OGVGhCYf^mEm>6<D}X2icykV-3;
z>e0fONc6eRAAX!Em|^+;bnvL=M531Ww&%S|jq`iU3_4hs%0i2y7uDQ_1y%?fqZzkG
zASqe&Xg^0$V(ejdP9NtiuQdy6L^v<1xdvytMjY!MuP#$BPH$II+2xW;G~iLXxcBc`
z-Fv(ub(q!9h9tYyMhURx@0#D}?5ehH`>txUK-o#@lsN55K;d%`I{^3-e)*$*v*n#_
zKFr7BRv(cGj_K6JHE)_En7ioDo@>q)*W@J7@ltr0zCdbx42qp!QBL5~867t-S~_G4
z*dD}b&|8*^v1GE;c5LH)FL!%;*rX=h&g&gV|FEXEm}d9Thbg|k#&Wkl6mf7L?ZgQ1
z<t?7LQTg)`WnDnW;+;=_k@C8@KL;fH-Z-AuXR9ySlkCJX`_O=1O=)ZMNn&r~I!&;K
z)9W~DTd=+-+2!X+-yR3rrycpbNCTet8xh)k6z^vujI{0VL<TZ^CxY^a-|1i3EV5sm
zHv3aRf=6bMSBdiTF=;3CwvU)gg#%4$swFo1HK39xpz~oq6d!c_cEIFO5RAuDK`8Pa
z=*6^4DQJJpGBUfI+meE_HVl8dqOPlK^K1PSD{x;p_LBhG^<cWb8SHG%M<Lga_PNw!
zFLt_2`2HpL9{{pL*K|W3xCf&S+l7uC4YsobIOnhF_^4lJi)cm5pwzq;Y^bu}I*#?R
zP@#4fHb?TdU;*1U={Q;#JiU`-PIW|j8Ru%q-V~G5DA#R$J_Z2af|xfQ%bj~o31T<S
zf{*o9@m0LVtCHod{rngnx!~@!>Scz5arnc!;E=vR4jZr0%59MWVL@F4>fUtG)HGX6
zk!;;jIbIx*K+DVP>)Y+xo43qy<a@iNH20y$L_W^OaKw1>0NNE=Q<mK?J(CspmpMZ6
zb@wilDpX>vqxv%O{vI)}aRjsY`l$UbbDu0GtM0Tjz2Iczf=my>DVx;I)Asu&`kqG7
z!RMf{5$W<G>#?Qju`)aN3R<Zr%O@+a)@E|Lm6GEAE^mbeg9m2k^86W%69-GbipiJe
zY9B^Vi`D4AzXadJFSGMiF~cmuu5yJj7k-(fL-{<R-*zC2KEtdgeg(((uvPXJlM?<s
zf*o%`JArPeGOtlgo5pju)7h3P-Es=Y;*wt3V{r@g#2p_a1~SODFa}_z(5>rBflz-&
zkMq)Bx$<PCpTle-pi~6p==A9PYp_oCsF(CCd6@FIpWzy~Q1KwvYw4QZ=HrfOM#@e^
zFm<T#2eNkAtTB1hej$fRG<{-{UM`EXoyYqdX68t9>KS%n9&xvrbJ!(Vjqo-HuU3<N
zJeppoS2w+u`2BX}fZE55yKT!yn6KD&pbs;f;)O1Q+tcCnr6Y4l&(oF5%Q<%dXJQdk
zms;oYg|l*h<A2YB(*<Ns?g1~P!4OH2SPs8E>3r$&W<*KYo5xp>_f&$m!-iO<cJ}KO
zyfw`b5S!<h^x5Lk!cXY>{QNMSHeVeA^pl1nQ%BVC%-zrqri+*9`3l5H#scj`YG{%5
zj@oZsIbY`Wvf}%fU|xXQquE?^p>OA2dguL~lP=7E@HllNeRn4D{y@E5k)OE(GXz`<
zLNZ8Pw6sb2Co(p$ShNoFRHk>bhcSnK%yT3gl@bpBQivCX?seN8Ep~GI^A~I_GpvCC
zDz<NwKbw@zCFVrbkSWjt7bJZclJUuMn#;X6I1P9;dQrgQAtd1J9az<rK6(D=EU=@~
zV-e>#Ua$8a<eNU_1}N0M#U3A#h~YTPd3^67e+}hj6<}yYYi@|_Ixt&FxgHGD(wJUL
z-f~uY@~ckQ^|Wd=HCobUphH!6LsQqatou%>A*(Zpz5#hAx>I1;VlY)D8dld0VZ7?=
zoDQj#qDr=GXlsh5e`qviyj7ZFA%?V@)4}O$C5`SyPYwG0uF|}1vE{&Jr}Fz4ZS>F(
z4rxkz9Io%=Ab8Je!6dD6It{0-8itx0I?$@?ajZ5`vbxb7ufRbwIuy58Jt0_^P|DkW
z5Do2!=0vu9VA*}ziZjKvY-_=3WngVNFx9u3iN2;PuhSE*8qqQ}z*1c+h8h=Roa;ui
zR?(~u+)V_B^IJoul0(BgBWj$rB?Bi}yLD2xI=v5eic?doo@%2iV+Mw?zH72NhDp=3
zlrmLOQn$S@T&fNz?1xIp?0x#GL0iz(ln;cW$>W`nl2B|z+P<w!R;O-j00qga(^LZu
z4E{9@lqexo*LfX~{Ayrb55M$83`#N$;{zCtYIS~}WM3vo0}V=54ZAS{2Z^51-sIz_
z?@cE<2n?;DrlOp3T#8i+W>amK-$&?#VN)~QM^Pq#n^tPsGX$SdDyySdO)*;m)!3&&
z07wSF^2*SvHrY5G>bBuSr@AUZP0(S$;-n!0yTM&gbY#Q1Ld1xUb~Wc!XKs*fgz9UP
zjnkp8;n1$u6)?)7&w5g6(;-ios?En7+}-G^8>*pU6o?UZB|%{s6GCcL_j#Qmed-Sz
zbR8u<u9NOJ^d#AxwKA*2yN=;TOz;Ml<DylB5`Y{*-UyxbsbCccTvR&@h=r=h{hJQ`
z2#i)Wig!63S;65co-1UuS_!}b=<a$1VIv34vpQIjRTaDr!?Cs*T7+t&G+}AqCpygl
z@N@$rR8d`N0gy>%C__xtRX$E-BkBQJW@xaF(R9!auZ=Psz-Eo8p6CpHr5F(kt)aqS
z=z$DStLx6FPGog@Rcqc4RKY)$seu^Tw4@$n+Yq=mr=ti0fFcZ#H)t<Aj-1_8aF8UN
z4{crt`MKsbBs6MD55&+`R~*1L3Yf~;P4%c5q^6n~<awk)92Wk<BEtYTWp#8jFr$@b
z9CfZH-5^jx&?y5$Lo#|+hY~3m>49g|g|6wDh6Y2@Ml>2$=XJO-43W($NxNPO-I%W9
z2vyaws>#~GRH<lGgG4$_iI5}QYKgSd<6uKRADE87FIZ4Ofpt`v)*x982@158ZC=L!
z+8h_DHAT%uA%(Fu>2R$^R=HT%fy<4nco;(K4_amgsM%$<$eDGPT%FKvPR9)?JDGzy
z2YuQ;FPv76g+R4Jn3dv111n`0yoTL%+w*yTP&R!w5J5)|I@ig8Z}0gV_cM3v$UQ%;
zmSsCquc!2uVeD&$ka=`oJML9UyMm-=w1MF7{1ci70Upo#MijSg#(n0-Cv6Dm#ET2g
zTdX154MF<EWB#b=!S<5{rw_+VMNGFeqFYw!(vQ#OKLq#Va=K_^x1YtpmE&x8+M*d>
z54;!{$-2O=XnM8G83^62JDo1pm0|zz-t8|YnzcNwI(+s6p^TbO#d3N4ImnPY1c&Y+
z<HW#S&=!3MzctT~Z=`{T<EY0uXQwn5^(c3KIoy6kX(uP+&NGPo?r<2x*?VW4k5hVu
z`9^;Yah|ll+ytJ>p$&q_&mWn({|rmSAMT|7Mhys!>0`#{5<%X~Yu~<G=DkBneO>(h
zS>Hb)2-gtx^juiT`-5eZe+df`o#J`L&C}0rq_?VKw<1i6bCbcyGwCOyF14rWnFuE?
z&h;Njkw21Z{y-`xqUFz@)!SyUdml&suW&2db`^x7UxceY9na?=&`MRXGB|wwP0*f-
z#ooSjtt2uD$tF7zPb<k`TFV?pyk5bOQB35r%od_)Wi6UO9Id#p$+T@4I;6M_EE|Pm
z5A9R~c;M7|5z>1pH@4kWq_7j0CMExA%R@?jeIAnb3b0X1?ti^m$^A5_bYYVza4X<N
zd?hmFf{H+q-~>YH?`|^{7#XcIfS~M<bUJJkJuj2f_3|H+Goa7^m|Tz!*fP;rIjq%8
z({r52=A;s~A9KUNW5HQ|Yh||hd{*&W3(l2`9{pjQqA_~VC6$?Ov&Z6@7CG@4AQ&@b
zMV&8_DsWsDX%&OMKWlUco0wy%F($w;X2jzRRxg#ADasEE5Y)A^Lt5iPc5az@d8r&y
z^2w)E?P~d{f+5f$6%uDh8vF)QuybBb^8F5efab1nlSr157=J=YA(T0vPUmfYbMn!1
zs#Cd)J63Xdfy*2vXu3Nrn0nN@qMSwzSZa{vq51F@34jP=q3&2!vE-*wfmyFyTQUQg
zlz*Ph#yZOVVO+6oD6%+imme>!w#%L0R)?Q$w#LfR>Jl*MHR7kNtSrNw)5Vihy6(od
ziG^Aq-zgW3Y9(0=kgV1<EUKu$M;q6Mh>k^1-P@w!uuA|$x~K>ereLjm0I~wNr^x~C
z$EjUp+Z-vS)#O?MDBG37m0BrH_HctqJ`CWhrhN0vzx3-9Z-?;1zm!9^BQuYi)p0J@
zWm6#xOpKNHPyzF9(J|72v9Zt%!S0srIo>nMha`}2B~oG!pRqx|PwUhZ0;>H_`mx54
zFpyVy8uSZ6r;x0~oIRk~m@9WC2OPTU1mYDoq6~grq7}jF(yf9BXPOYy=3XJnN7IkA
zmGWP-HLJd95gu%6ZS(x1^)>&{0$hoYg6p_7Y?LcuO|%lcg|&><%~NR#MZMe~59b8l
z2*8J0i3K?T?C!6Ud@RUcwUp;BSyA#wq1Zwi623DtcKaI@uaD!{WRksKq&LS@`Bq0O
zVJ&_WV^bvKL_jVEtlK1iGugpZlwi_+X=<i-c-V?7P}fo1Xg7#@<i`1#UI9nm5zCPr
zqOZtA*Tgr*j`rYxBW7g2VpISxe3D}Wk$^iMma5paUfzosRZXI}oBNYLy;X7C_>)H7
zF`Rik^6fJ|Zyk6fbbR5;mD`3&j$=pg+*EYf9WTiN8fNxChkblbdqptFA~v7se9!XK
zTj=!z-e&7=Hvuu;5lqgeUTEJ^ImS4C5-kHsZ(Jvks1}kxZmGfc13jLX_t=3JI{YAX
zT~FuD?}!GZ*<iyVN%y&H2YITV#0;;x#yg?xW}eBqMpz|+SF6{DU0CCln(-*4v~bA>
y4~V>cr5S~rN~_~V7=@C(hOJ;NR&MQn(@l-)(Z^T)u^ZV`821mq#>2vbIsgEGp}B$p

literal 0
HcmV?d00001

diff --git a/phishing-filter-rpz.conf b/phishing-filter-rpz.conf
new file mode 100644
index 000000000..75c6b9e35
--- /dev/null
+++ b/phishing-filter-rpz.conf
@@ -0,0 +1,439 @@
+; Title: Phishing Domains RPZ Blocklist
+; Updated: 2024-11-25T00:20:55Z
+; Expires: 1 day (update frequency)
+; Homepage: https://gitlab.com/malware-filter/phishing-filter
+; License: https://gitlab.com/malware-filter/phishing-filter#license
+; Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+
+$TTL 30
+@ IN SOA rpz.curben.gitlab.io. hostmaster.rpz.curben.gitlab.io. 1732494055 86400 3600 604800 30
+ NS localhost.
+
+1111365dh.net CNAME .
+12931-coinbase.com CNAME .
+215323.com CNAME .
+260aesthetic.wixsite.com CNAME .
+3650947.cc CNAME .
+3659ll.net CNAME .
+83291-coinbase.com CNAME .
+94-103-188-123.plesk.page CNAME .
+9825057365.com CNAME .
+abctrvabc.com CNAME .
+access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com CNAME .
+acclimatizable.fun CNAME .
+account-update05.myvnc.com CNAME .
+accounts.google.auzen.us.kg CNAME .
+activebusiness-unlocker3.com CNAME .
+addwsrbh.green CNAME .
+ahnp.vercel.app CNAME .
+aldg.ldgknhk.lol CNAME .
+allegrolokalnie.pl-891241214.buzz CNAME .
+alutipcentra.pages.dev CNAME .
+ambil-pinjaman-daana-payleter.xforms.web.id CNAME .
+ambulatoriprivati.it CNAME .
+amev.ldgknhk.lol CNAME .
+antail-conv.com CNAME .
+apply-now-to-receive-badge.vercel.app CNAME .
+artsea.pages.dev CNAME .
+atmailupdatewptnskmdinfomailacct.weebly.com CNAME .
+att-101072.weeblysite.com CNAME .
+att-1041page.weeblysite.com CNAME .
+att-105714.weeblysite.com CNAME .
+att-105819.square.site CNAME .
+att-inc-107097.weeblysite.com CNAME .
+att-login380.weeblysite.com CNAME .
+att-login522.weeblysite.com CNAME .
+att-service-102155.weeblysite.com CNAME .
+att-sign-in-105669.weeblysite.com CNAME .
+attcom-100762.weeblysite.com CNAME .
+attcom-106808.weeblysite.com CNAME .
+attmailservicenow.wixstudio.com CNAME .
+attmailservicenow.wixstudio.io CNAME .
+attmailsrvrdesk.weebly.com CNAME .
+attnewmaill.weebly.com CNAME .
+attyhhhhiiii225.weebly.com CNAME .
+atw-tau.vercel.app CNAME .
+authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com CNAME .
+authsyncs.pages.dev CNAME .
+autoreplyattmode.wixsite.com CNAME .
+avoid.hold-managert.com CNAME .
+azbin.ir CNAME .
+b45018.com CNAME .
+bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link CNAME .
+baiii-wong.cutvi.cfd CNAME .
+basvuru-online-yap.vercel.app CNAME .
+beionfidi.pages.dev CNAME .
+bet73nn.com CNAME .
+bet83039.com CNAME .
+bet83054.com CNAME .
+bfrescentremebermainsetreouytnoy.weebly.com CNAME .
+biggggggggggg.weebly.com CNAME .
+bitnode.pages.dev CNAME .
+bitvavobtc.com CNAME .
+blackhere11.serv00.net CNAME .
+blss24att.weebly.com CNAME .
+braucrarasuteu-2470.vercel.app CNAME .
+bt-102124.weeblysite.com CNAME .
+bt1business.weebly.com CNAME .
+btuan-dan2-resmi.top1.my.id CNAME .
+buildingdesignsusapdf.s3.us-east-005.backblazeb2.com CNAME .
+business-page-property-897432967.netlify.app CNAME .
+caipora.xyz CNAME .
+calm-pothos-3b24c9.netlify.app CNAME .
+carrefourarabiank15.pages.dev CNAME .
+caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com CNAME .
+catgirl-appverset-nya.pages.dev CNAME .
+catxtokens.pages.dev CNAME .
+chat.94-103-188-123.plesk.page CNAME .
+check154109.click CNAME .
+checkseven.vercel.app CNAME .
+ciente-a.org CNAME .
+cieplo.app CNAME .
+cj12143.tw1.ru CNAME .
+cj87335.tw1.ru CNAME .
+claimyourethrewards.pages.dev CNAME .
+clickbait.design CNAME .
+cnsa163.com CNAME .
+cock2-iota.vercel.app CNAME .
+cock3.vercel.app CNAME .
+cock7.vercel.app CNAME .
+contact-pro-8291-d01.firebaseapp.com CNAME .
+contact-pro-8291-d01.web.app CNAME .
+creosrl.com CNAME .
+curmmgdv.email CNAME .
+currently541.weebly.com CNAME .
+currently890.weebly.com CNAME .
+currentlyserver.weebly.com CNAME .
+dara3dccj.wixsite.com CNAME .
+db.service4db.com CNAME .
+de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev CNAME .
+debutcan.firebaseapp.com CNAME .
+debutcan.web.app CNAME .
+delivery.attempt.failure.ebbs.co.za CNAME .
+dev.stream.mornar.app CNAME .
+dnwqmh.click CNAME .
+dropsmartchain.pages.dev CNAME .
+dsjoting.group CNAME .
+dulb6c5p5.top CNAME .
+ebay-mallwholesale.com CNAME .
+ebt-lilac.vercel.app CNAME .
+echoredled.netlify.app CNAME .
+elbarco.percentadnp.info CNAME .
+eltritongourmet.com CNAME .
+email.mgb.modento.io CNAME .
+enjomugg.firebaseapp.com CNAME .
+enjomugg.web.app CNAME .
+error3456vhubhornbase.azurewebsites.net CNAME .
+example223.wixsite.com CNAME .
+eyeydhe.wixsite.com CNAME .
+eyttueiu.square.site CNAME .
+facebook-avip.click CNAME .
+fame.pink CNAME .
+fassehoizubra-7696.vercel.app CNAME .
+fastdropchain.pages.dev CNAME .
+fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io CNAME .
+fla-1001.square.site CNAME .
+flo4211.github.io CNAME .
+fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com CNAME .
+fnuttlie.wiki CNAME .
+fokeijonnekou.vercel.app CNAME .
+fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com CNAME .
+free-verified-badge-form0-service.vercel.app CNAME .
+free-verified-meta-badge-service.vercel.app CNAME .
+g06668706.wixsite.com CNAME .
+gccndbqg.vip CNAME .
+geriodememerkezi.online CNAME .
+get-checkmark-for-you.vercel.app CNAME .
+get-free-verified-badge-service-on.vercel.app CNAME .
+gitanag.broke-it.net CNAME .
+gruprocuroipra-6493.vercel.app CNAME .
+h5.b9en.com CNAME .
+h5.metacoint.com CNAME .
+hcghij.top CNAME .
+hecregayatu-1014.vercel.app CNAME .
+hejmtxxt.guru CNAME .
+helenblunt6.wixsite.com CNAME .
+help.accountsupportcentre.com CNAME .
+here-apply-for-page-review.vercel.app CNAME .
+hgbk.ldgknhk.lol CNAME .
+hhideiie.wixsite.com CNAME .
+hitummoinneullei-5882.vercel.app CNAME .
+home-101067.weeblysite.com CNAME .
+home-103465.weeblysite.com CNAME .
+home-104341.weeblysite.com CNAME .
+home-105266.weeblysite.com CNAME .
+home-105929.weeblysite.com CNAME .
+homeattatthome.square.site CNAME .
+hpnefhqs.motorcycles CNAME .
+im25.net CNAME .
+info.supercitrus.ind.br CNAME .
+ins-business-home-center.com CNAME .
+instagaramgalochka.vercel.app CNAME .
+ipv6.43-135-137-110.cprapid.com CNAME .
+irmt0ken.win CNAME .
+iujf7839iofvkbcu748.weebly.com CNAME .
+iwimwmiwi.click CNAME .
+jagej73796.wixsite.com CNAME .
+jfdjy.com CNAME .
+kalyani963.github.io CNAME .
+kexoigrufouddou-5902.vercel.app CNAME .
+kl1k-ds1ni.neupdile.my.id CNAME .
+kliind08.wixsite.com CNAME .
+kreelo098.weebly.com CNAME .
+kremlcup.com CNAME .
+kshitij12375.github.io CNAME .
+kucoinglobal1.com CNAME .
+kxbztydc.black CNAME .
+labanquepostale.jupiter-analytics.com CNAME .
+leddevotoze-3146.vercel.app CNAME .
+linnkdna-kget.wxxzsite.buzz CNAME .
+llahi.info CNAME .
+llahi.vip CNAME .
+loffaummuddote-4145.vercel.app CNAME .
+login-att-10221.square.site CNAME .
+login-form.world CNAME .
+login-online-outlook365.com CNAME .
+login-outlook-midstreamauth.com CNAME .
+login-screen-103134.weeblysite.com CNAME .
+loginaccount70.wixsite.com CNAME .
+loginaccount77.wixsite.com CNAME .
+luk6414.wixsite.com CNAME .
+luxlifemiamiblog.com CNAME .
+m.meta-accessibility.io.vn CNAME .
+madebybmr.fyi CNAME .
+maqpiexyz.click CNAME .
+mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev CNAME .
+mayfair313.wixsite.com CNAME .
+mdbrvlfy.black CNAME .
+mesageriepro33range1.weebly.com CNAME .
+metamsk-wallet-3.gitbook.io CNAME .
+metttaa-audddt-new-02.firebaseapp.com CNAME .
+metttaa-audddt-new-02.web.app CNAME .
+microsoft365-storage.github.io CNAME .
+mikepattyjm.wixsite.com CNAME .
+mobilemidasbuy.n3g.fun CNAME .
+monespacepro-client.3utilities.com CNAME .
+monetization-violation.github.io CNAME .
+moodengsol-net.pages.dev CNAME .
+mwsiekdnfjrdufs.weebly.com CNAME .
+mxmxnmx.mx.zya.me CNAME .
+national-au-b.com CNAME .
+national-au.net CNAME .
+nbaaiqjq.group CNAME .
+nexomyacwv.weebly.com CNAME .
+nft-time11.vercel.app CNAME .
+nichcheck.weeblysite.com CNAME .
+ns1.carrier-ast2-portal-apple.com CNAME .
+omadshf.ru CNAME .
+online-assist.live CNAME .
+online-promo-asb.org CNAME .
+openkimono.pro CNAME .
+opportunity-verified-status.vercel.app CNAME .
+ourtime.reconnect-dating.workers.dev CNAME .
+owouwuowo.click CNAME .
+p365kf.com CNAME .
+p4zv8crnrrha27so.94-103-188-123.plesk.page CNAME .
+page-center-manage.com CNAME .
+pavan-patil-22.github.io CNAME .
+pecinternational.net CNAME .
+peesom.chat CNAME .
+pencairaanndannaa.my.id CNAME .
+petty.wiki CNAME .
+pimnhv.group CNAME .
+policies-business-page-service.com CNAME .
+pottatrebewe-2808.vercel.app CNAME .
+pqo.hrf.mybluehost.me CNAME .
+programming--service--panel-totlyy-free-for-you.vercel.app CNAME .
+promo1.spik.ru CNAME .
+protocolsecure.pages.dev CNAME .
+pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev CNAME .
+pub-1778406e4fec4394901793111c187dd9.r2.dev CNAME .
+pub-19b834342e7d465b9f00b3511325a081.r2.dev CNAME .
+pub-21dd4dc659614ceb93e45a6de4434502.r2.dev CNAME .
+pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev CNAME .
+pub-2fefe932a6974485b987c9ba851b5c40.r2.dev CNAME .
+pub-3a46d9914f494078a6d6237513e7a096.r2.dev CNAME .
+pub-442ed822851244a689b3472ea2c6a950.r2.dev CNAME .
+pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev CNAME .
+pub-682ad3b65d944376b919745aae3c56d4.r2.dev CNAME .
+pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev CNAME .
+pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev CNAME .
+pub-7f5cf36445d042168bfacd712e890dc0.r2.dev CNAME .
+pub-803839714a924882a7bcc2495a26860f.r2.dev CNAME .
+pub-8161de4a277e4ee8b532af34954224e1.r2.dev CNAME .
+pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev CNAME .
+pub-8376b5b2334844d193a525d8b8548fa5.r2.dev CNAME .
+pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev CNAME .
+pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev CNAME .
+pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev CNAME .
+pub-9163a97d70394cb499bdd232be6c2169.r2.dev CNAME .
+pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev CNAME .
+pub-98171471e0944ac3a5820ef719bf0640.r2.dev CNAME .
+pub-a263e0790935412eb10cacc55bbced18.r2.dev CNAME .
+pub-a291041b077742899b63a9982f04a56c.r2.dev CNAME .
+pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev CNAME .
+pub-b50adc5d699a4f08aec37102c2103da7.r2.dev CNAME .
+pub-c0a934c950e441db96b882789f53c9ea.r2.dev CNAME .
+pub-c2c250050109456396c933de259a4fea.r2.dev CNAME .
+pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev CNAME .
+pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev CNAME .
+pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev CNAME .
+pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev CNAME .
+pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev CNAME .
+pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev CNAME .
+pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev CNAME .
+pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev CNAME .
+pub-e42cb528b102447385e3145197916f51.r2.dev CNAME .
+pub-e4aff507450c478cbe3f77ad23d75035.r2.dev CNAME .
+pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev CNAME .
+pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev CNAME .
+pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev CNAME .
+pubgm.club CNAME .
+puffagroibrouwoi-8818.vercel.app CNAME .
+qasimk.com CNAME .
+qfjfvseq.info CNAME .
+quauwograssodda-3503.vercel.app CNAME .
+qysgyp.com CNAME .
+rajdipchatterjee.github.io CNAME .
+rechazaroanularaqui51.weebly.com CNAME .
+remote-fix.pages.dev CNAME .
+renggard.47-243-192-240.cprapid.com CNAME .
+resolvepanel.live CNAME .
+resolving--issue--with-us1.vercel.app CNAME .
+resqat.weebly.com CNAME .
+review-business-case.d2f7p3b7pucnle.amplifyapp.com CNAME .
+rlpqwefi.pink CNAME .
+rouloigeilleuja-9523.vercel.app CNAME .
+rulemec.pages.dev CNAME .
+rutinqqwin.shop CNAME .
+rwftfu.quest CNAME .
+s.team-pw.cc CNAME .
+sairanees.github.io CNAME .
+sanseipecas.com.br CNAME .
+sasklelo.weebly.com CNAME .
+sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com CNAME .
+sasktelcustomerwebly.weebly.com CNAME .
+sasktelnetwebmailservermaintainance.weebly.com CNAME .
+sasktelrectify.weebly.com CNAME .
+sasktelscrutinize.weebly.com CNAME .
+sasktelservicecentterwebly.weebly.com CNAME .
+sasktelsupportsystemwebly.weebly.com CNAME .
+sbcglobal30.wixsite.com CNAME .
+scan-vulnerability-guard-v3.pages.dev CNAME .
+scan-vulnerability-guard.pages.dev CNAME .
+scanner-metamask-v1.pages.dev CNAME .
+scanner-metamask-v2.pages.dev CNAME .
+scanner-metamask-v3.pages.dev CNAME .
+scanner-metamask.pages.dev CNAME .
+sec-sign-in.info CNAME .
+secure2-validitycheck.weebly.com CNAME .
+securecapitec.theprimepoint.online CNAME .
+securerpcfix.com CNAME .
+seeteressecalywoi.github.io CNAME .
+seivviice.weebly.com CNAME .
+server.0e7p.com CNAME .
+server.2rk3.com CNAME .
+server.8q3p.com CNAME .
+server.n6b8.com CNAME .
+server.v9vs.com CNAME .
+sevvviicess.weebly.com CNAME .
+shard.blue CNAME .
+shard.skin CNAME .
+shared-d7590.firebaseapp.com CNAME .
+shared-d7590.web.app CNAME .
+shaw-101329.weeblysite.com CNAME .
+shaw-101587.weeblysite.com CNAME .
+shaw-106427.weeblysite.com CNAME .
+shaw-107375.weeblysite.com CNAME .
+solutionwebsitedapp.firebaseapp.com CNAME .
+solutionwebsitedapp.web.app CNAME .
+solvetans.firebaseapp.com CNAME .
+solvetans.web.app CNAME .
+sondfrom.dexlog.my.id CNAME .
+soyokai.or.jp CNAME .
+srdate.club CNAME .
+ssy.hmb.mybluehostin.me CNAME .
+steam.poweredartsworkshop.com CNAME .
+steam.workshopsreview.com CNAME .
+steamcommmuty.com CNAME .
+steamcommuunity.ru CNAME .
+steamcomunutty.com CNAME .
+steamconmumity.com CNAME .
+stepsray.vercel.app CNAME .
+support-metahelpcenter-id100003498934.netlify.app CNAME .
+sv5gardens655665.weeblysite.com CNAME .
+system-portalnu.duckdns.org CNAME .
+talwgam.njmolada.com CNAME .
+taste.baby CNAME .
+tele.zhngain.top CNAME .
+telegrambot-resolved.pages.dev CNAME .
+telegrazm.net CNAME .
+telstra-100408.weeblysite.com CNAME .
+telstra-100469.weeblysite.com CNAME .
+telstra-103234.weeblysite.com CNAME .
+tiktok-888.vip CNAME .
+tiltckshow.top CNAME .
+tnomwzrp.top CNAME .
+toeken.im CNAME .
+tonic.pink CNAME .
+tooma.cellinsurance.co.zw CNAME .
+tpdtepremu.xyz CNAME .
+trattujeilesso-3354.vercel.app CNAME .
+trbinace.com CNAME .
+treibrukeukonno-1395.vercel.app CNAME .
+tuesmad.firebaseapp.com CNAME .
+tuesmad.web.app CNAME .
+tyyyyyytyyy.weebly.com CNAME .
+tzcsjfto.chat CNAME .
+u.updatetrackgre.top CNAME .
+uc-whatstapp-web.com CNAME .
+udxcady.wixsite.com CNAME .
+uklifejv.cyou CNAME .
+updatemail12.wixsite.com CNAME .
+ups-trackdeliveryapps.chickenkiller.com CNAME .
+usbest.cyou CNAME .
+user-transaction-overview.vercel.app CNAME .
+usps.com-trackdck.top CNAME .
+usps.com-tracklnv.top CNAME .
+usps.com-trackmcl.top CNAME .
+usps.com-trackmec.top CNAME .
+usps.com-tracktpq.top CNAME .
+usps.com-trackvmd.top CNAME .
+uspsinfw.top CNAME .
+uwdtsczi.top CNAME .
+uwm-onedrive.com CNAME .
+vaishnavi1436.github.io CNAME .
+validatie-veiligauthenticatie.com CNAME .
+vbbu.ldgknhk.lol CNAME .
+verified-this-request-badge.vercel.app CNAME .
+vo4zzp.icu CNAME .
+vs41.github.io CNAME .
+walett-cont.gitbook.io CNAME .
+walletauthenticators.vercel.app CNAME .
+walletcomnecitt.gitbook.io CNAME .
+walletconnectdapps.online CNAME .
+watranfart-fdd6a8.ingress-bonde.ewp.live CNAME .
+waxed.wiki CNAME .
+webmaillshavv.weebly.com CNAME .
+weeeqweeattt.weebly.com CNAME .
+weigh.skin CNAME .
+weigh.wiki CNAME .
+wgqdqvtn.baby CNAME .
+wgqdqvtn.pink CNAME .
+whatsapp-rqr.com CNAME .
+wirelessvoicebtpaidmailinfoplay047.weebly.com CNAME .
+wscs1231.cyou CNAME .
+xn--metmasklogin-vcb.gitbook.io CNAME .
+xojautruffeuttu-4659.vercel.app CNAME .
+xraiz.info CNAME .
+xraiz.vip CNAME .
+xsuweamskeidjf.weebly.com CNAME .
+xya46.cc CNAME .
+yahoooooo-108560.weeblysite.com CNAME .
+yavanica123.github.io CNAME .
+yi5lq-syaaa-aaaag-acfsq-cai.icp0.io CNAME .
+you-can-receive-here.vercel.app CNAME .
+zeiitgeist.angelocachero.info CNAME .
+zenixoikitti-5809.vercel.app CNAME .
+zeznjx.shop CNAME .
+zwzcn.com CNAME .
diff --git a/phishing-filter-rpz.conf.br b/phishing-filter-rpz.conf.br
new file mode 100644
index 0000000000000000000000000000000000000000..3ed3d27ec330af77db75c88b054c0c945265c42c
GIT binary patch
literal 5373
zcmV<Z6awqv0N9D5oYnpi5ygA}G*TAM-yb2v+{c>r^!K@(dQ*TE&F^jgA%t52rB+L7
zD75YOI_$?uUqT>+Z6rW?_NumO+kgN6Y?`gRq)eHjOuDq`0V{^?iYoul?7ob7Wd-I~
z;XPg*%D!aiNLEPJ;U1wB5`?6~4N`?&dMYZ}d&C=FcUBp$PVI$mLrO`*xrubueY#RG
zIehZ_<Fm!R-?zuV?o@UP+oQD8%H!Yv_5UAwlIf`M*Z0SNr3rBR?NPUW389o|hyQGv
zZ*B8!82<n3`{S?Pi87XN5B0EcKYl)?<YWCHV%}ixUwnOkq&gtMhTk4LbE=AI8?ghO
zg?&7@3o?pWCV!J6MgKSU>-)o4E$k7r|EPS%e0_iD125kmIf0^Zo%Pp`jd-u)8%=B;
z>ofb2<Mx5y<c=%<5*Tv*XMTPC_&@*iA0J)w^~cBG{qy5L{^d`PoIcXjtTD)l^`R&q
zdn}yQIY^-&pr)?vm%bT>$2|5;^XSH=d5ldz|DD!+J^uMW9>ob`dr$fGrIb?LIN1Hs
zHQ(m(7ytaHfBLJ3{8H`GDPbao7(z1a;0jtbbZz(VPa7M+!aFh<dC^-RWT8QH<IpVq
zB#oJ`yf`=E+cS6V^6i#hsHPKYo`q^VnH-iw7QG<#?sGdd!_<w#!1aJOoKMguWF}*<
z6j?z!<y56A6eL~TT#!RATIHO-pM`2BY0}4nQ;yK<$OF@-u52LJ8iFUs8dxZA<;@`d
zeTL|OSWl65u4xJNgF)6Jk8S-V(}}f<iyG=t9?S*N8?3!b*1N33LJ;3WO57V6bP`fJ
z9<H;Sbap$!en=PH`rmfA<>=x8E)dG(#Js4sSFP%$uAh(e)XJ31i&|iTY*(bkQ{>xw
zO->{VPw)_g1qdJ#+zvIk_5H}WcPa8hEy)fyYjwae)8~xao=Fl56o6;6hafPJ6DEc;
zTcV$myG4kX;3zU0q!Wb(yWwinnF}UnGJ7Cbj)7O=P!4Y?tTALLz!;VnqIUP>=VunG
zQO(p!sOtrha(Xq*1vqcXFsXj?_^cLb-<e#?mq#g>`DRbeGK~luj5X`#=2-a9Cd+<}
z%GwLnv}zcnFGO1q6mIV@j>`dNq8F-Zrm+>gz2n@>P---iqeHyR)oa7mQk2b4ah1wv
zwid}i5qQ8$G8ZSZU)=k???gmxJ6uX%f}yG`s{mp#Hd?kRv)@+mfnTT=VUf`=+F65@
z_i_hQYC%Tjm@&CK;r`L0p+~U9B$8+sAR-IP%=yt2B;{pU-4BhL<^BK~)>|V%@RM`S
zk7t|HU11-#Pubgcd#`kW9tgWP(zv#v3)^~@_t5r|(psc7D(gE6$7oL@5s52?O`6Il
zNwZpknaWvn70}3E++Z&o(?~I_WGQ<p(a2L5LQ1Mbp1Y=70<L1{@sXlvMbpru#*CH1
zM9vuN%^}`;v4W=U#z2TM;MPXC9^w<usM+iRID2=@sFYOwmp4t@+^}|~v^}t~i?Ys8
zO@<7mGFH*{Q<IHgs#dR6tuY&?Sv7L{NhP?pBS#ckk+FD^9Fvm%Za^$>N)YU)lv*I!
zRhCZHB2cg^nr4tNwG!>%gSwrF)xtu~Eh*kcNr0G_sqflloN{GDN9&!kW(`n^8RYx^
z{QtOdUZlu-ETYqGZ<fJ%&IsZ|f()7<9BL@EGy?_6J_b6G(Lwlux9Zxy8~SmWq*dEW
zc37a&)m8~UP3eJ^oH%ZPeWznAAf*#?K^EbL$tC#h1@&75wr~fQKn&fCbT#y<S)^B^
zxS$iJ)e!P}n4?j^1F)rlRU{W>*%OJpV<-7iGS{GcpQo-H9&<qcVbU)0p3xD~ClBH}
zSp%`u9U-ttD4<551%7(ft)R$|l+B9f=oXh?asz{5opZ#DfHQ2P<VqQhxw<s91Axtw
z$67(gSh5?qPtD$M_LQ%dCj|kCP}1E)uj-vGbN%O~0lP6E=4;~?GIZ9MXR9&RYT44R
zqPIHq*Tc43*L4)*Y>eokGeWCz5&dj6ES;L5*P>}em&@x0@~B?(DzBK=x8{uny7)Q9
zn(4|0Lhjl^${eM{TJn|zU%T|do0X__ktWIy$oHJm^R7htm;>ao6${tP?==HR0OT1;
znH?x7sB6nJva^Wpwh)w2ogU4Q22*GsT-0z2ItDogAU))Sx~N$=)T&iR;F_w=XdPOM
z^$zGXWE16!#;0sZ5(bMxL&BLjhAr0YvGGUEbEV(3#1AhI45jc{8aB_@Z7UyJNI6F~
z;{CdQ7|*@xJ!Swj6+Sg1p&~bBlx*^E+fE^CgE!uG$MC9|D^kVT7Q<Iez)7i)%dFs0
zCP)&&6-vQ9(x>VSVj7pRNKz{lRuCiI2wb0K1u*~sh+mG#ir4A@gaMLdQj^PkbpWAr
zPzjjT#lBTa@)gpcPSEg@xIWZVO>%Ubr*O<l5=}_nAy2eq$vE#CDzl?peaS%~VaEgM
z8AHG$V%rgLO+%;4nQV8Luuh#m)CSGvXZ`xzZA0lYHo!x*2_L=(t)It)m)X%cCHl$9
z1LAXv(4kEajc?63j`P%v%F^s+OtAX3$&(JBi<zQDj~?@ZACibulu58?BY|pzm=_@K
z>;YkIVlBU`|JcAnK|LN|lP^QMvLLP)_%t`iI7d@+q?AF7{nCh4un$r%h;;cr$ZP}G
zLs93;?q=KRX`X_1G#NLzfvaoWe?Ofj@#*>fX1Uddd_UOHVbHDy&UL^?9g;|ysiqV&
zV``P;n2drFfILQ=N4QOWZ2UKUkPSOw-^n5o&Lc@&y^j<ER_Bn!FwgBAp9u#Ef@?HR
zRP2s){Wv__cMZ7F{0<H6I9~6iT|B@H%zx=EN$))cT=!Rzgguhkon^lv`F7AdXgpda
zp`9@F^f+%UDOjnq%)>=Ma*QOD>Xk9mk74ZDAcNn`(7^kF%A!o^9A)1L)eS;*lTfO0
zfSaQ1xj8V%i$XvI>vNsvZlSoIhc<QUXY*4ZUF0uM7uo-v@q`VZQ#UQjyOHN=pCb$D
z0Cz*6W$a9Hln;DI+HzfEwKi5UERBMlO@~v5utf!u0c*14&{gsrjwo2JL>IG$kBsPI
zv!u3;BcpewrhqWZPE1eLcGD1dR*eMdB*>x$?)BCmzO9iis2!ByKtp&{?1BIo^PFc*
z#F$0jmAqKNq5U#es*fKOo$4FZ@8Bqe!v+w?hAgl5`*V=_%p%UgPOygjTQcSuF0Lz7
z?@OUtM$xN&SR+-|CfK<G+P3W_a?nZva?R&#Amt=@tlXueB(|v>5qMm9vd|M)9Gxub
zrvZy{y;RrZm73Clr$#+wu}d(e>M{0&r9Pa!JBVCQ;HjHQUbp(@q)l-1^qv&ZrLovq
zBcW63o%OAKmg`L+mAw+-`~FnG5z50ALvBO_4~43!C}M)kn}8@@1R+4djIPe}aBl|X
zP9ep*yw&-1>#exlV<ElL2~&<;*TtrHt01MWFNe68_5_Q{4){?zx*nMs+wG%TYgq)m
z#L);M8w{bu%h=5eUAh_FIEcbA6VI9o3;o0oruk~zPoD!v9yK}iWTEJK%g}9I9{99j
z2nNARCH<F4*}bxRHUfws4!tJ8UQQAxMfaCBS}ghv4Q?em5s(Wl{HqWiHmuKV>q;OU
zmVf(q@Neng@^gdqRnh8{-H3oHyihSzZouja8h~EUmsb{Iz<2aFnCpy0Dy%H}Mh8^N
zW;_<i>=@9ff~G=Ik~3mt3R8t!fpj2x`BL)p%0&;h>?;#O&50LEp~BLoRR+^f$GxF|
zqA3{Y&}{M`A48NW#~_Hnb~O;+P_)Xzz_p~0$C?w*B!x9o2xwUJmV@P6#eumv>x);c
zSB+P!&}CCM4#%3<6E^jqb2d5TyhA&cNKnB)D4L)owY)h-2~G$i0h1GLtBvClnzzeB
zwL{){6Jm*8a%JNG1A+m{03leTlMNc<A_<vq52>O=KJ2G{SzY#71W#!>Dsn<t1Zx=?
zHC`y%2Ze~PUjouA$~~{r-xvba1&h;y;sBUecU$=+g}A2qGYgLF?wb!W<yCM{l~J-J
zI!2>?twI1)Lik9{bRH>E)k3Kj5!TjBQ`alg11{@;W?g4AFv1{n8!ztDH22Mj{fegV
zmVRl}v~)@-qvpxl#eL01&t2d3El#!{2feIKqr1V4YS#|X%<AJ>Wo>WGI4q;;4Z369
zVL!lVvG2QnXj*svI-vUVSaH^KzfR*aH3;L_kHZ3HvdYC2S6sRl#%1dJdC<!|nMK1q
zC_R|IaRJ>PQmihLaUcLZ+_ZWn%NoojSd-M7xFbS%189^1QEQW4kRcSTs!(2gtx3r>
ztmdxn_!vddguK<D-ZJ_T_Xg^vS8_otT)SjpB-JQJ)zQT~Orfg`ssqhUit^|g8dVU5
zwsYB{hK%rB_9&0+4P$s3LrA4GE;lhBWTR9>@`R9U>qE^sLo`Wlb&7pUr4`|fDuAtl
zayJ7MQmCz_al|~=?12i*ff21!0UZT}5CG#CE?SlZNr+o7*r1CWg=>J;;x+PuHvaRV
z4y9m2^ejaQ$XjoOZOozX)7s$9jZkXGkx)?^C?!|9xdiO=7{}2cnK;mqIzv<oYm_o~
z_hVm988i39i0+sdH8#S5ng*sk=4ycCT2$CM4Y%W`qeyp$0zIlhuJKyzv(%+)XXLD!
zcnsUBOZS$??JyxNb4JdQ1W~OhHApcyOCPDuyJ172mPjl~3SoxmIhmRf^={$0-7?Yq
z2ld3v2u-BdkxPTN_or&NF;`|Ps?@b0qW0>5z^+=o^yt@pc1r3-UPaU$+ooZKa{_~$
ziYq(Ul1iD=QBQ%Gy-V$_0XG>`OhRuy4h$$IN;wHqEiS{P6c3=hO^)HANML2j-W(%E
z_sT{Ci3;R2SHF*yo}~s!NrEF#qG%pIw71VfdV2bJX~_w?XRHq0Q*j|zlE^%qyZgB2
zIkX8nGp3PU_{~a%ELIB`wfAu0;7Azg&KaArVxy9P-9T095%cObYc|ku^wzs!jid$o
z@JM{b-J7UE#-NdLfT%SuXxTsnxVe_N2#xR{<xk7N(mPqn*sDv!>u)j;tP`{jp$$MT
zjiO{E#O(dZbx@ACjzNi$k|8(iQ3kU*6lY4M9h{Lij!8+Zw8ii^(7`!da&1OK)`V|8
z7#LG3)P;~3`>3OV%5c~WtXAX2b68U4(sCes)<#$(fTQGMX+H4VI)f_3KSy{By&e0~
zkNy4Km#MW(V3mF8xvam0Sskx&AD=T`A_n*M*7uj(3i~{Fcby8QlIT7E&fDM9J@oF2
zexS<hisK&KT%?b%AN{Y#uG{;ehrZqmai#o-Ri5EDmVZQ9@DbbXriahS6Nu7YfxrYP
zMoT~9+#jDH78R@p@kN@FTy7L+ngFN%)BEIzYH-B)(yO>2v=t~}P>=`D4uhYi^Yd*R
zgw8+_UdQoxzP>RQeN2>({r%XNTP%-9yze>*K{o)j)^`nSq=5IeY_HdM*=FFb;FtCt
z*Lcs!W&71RXBh5E)ANgkWG9!fsV(B{$oDvPJ7al<DFZFZNgF)%{C&h@Z!7R`xhC1|
zc-~=3lWw+-4I2C@xBLBZevV@s+i|Uu7}GT9Kht7#9N$2OVQ1Uo`bLLM5gf}-y>!`h
zvxu5H!Y);#VW`AuO<eHuKPk$k0B`p^ukunY0YNJpM(F7#w9KJM!*)DPx9LK;qP(iH
z>Gsycr%xFtMlnpD*v6uQsOU}C^LP5>ke41VZP7kG6o%JRtYU<hOTYwkUun7i<QR%J
z!@%^P*YIIs^Ys(YV_D+@!YK7&<eeW+Ta*;(0CY6WIL|PB{C)Rj&eSB9&u3YN9sw$B
zG6g^VZWE5*;@@5+&TVeBw_E$j=WP2F%mCbkr?c<)%#5r43^oB5-)Z5KGf5H$$^n&9
zz|{GpU&T|7McHEoyCKy022}*cDgmQ|?daj;zNzY&SH`Sjy721y!RFI)<$R_@LuukW
zn;ST!W{-bsqC!m5^tu1-zq-u(G2i2{Loco%65jYc|K^{y3szpXY>(_*|66DC2`3zG
z3_>v2Hxy;Xkd}A*sisti+6lI=>-xU_d|TfVI!XFsd9$}#ULUh%8(>{-N<Pm+|F%WC
znBv+2YFH{;a~3zcYB&{?CI#Un{QMAEQOnrQN>p{6WSyqs&OvVP+28i-+bO3!;!7Xj
zo38VAU-yT)CW5v~Y&O~v{+tnynE(H5H)MsRqXtiqd_B?kYa(W}Ycvh|^8c&+5B8SC
zbpS1LL<q7J(h%}290eB8*bMSoey{y^YOU$0+-rGUHhQvrD_F_4uiyX2)5F<A=ehWj
z@J9A+F(N7L+V@rGGlsEkju7~C&i4Y>)34wmz1&wIB%b+>%k_z5n^ZcAt{c?;oU>Ld
zsVW%djHGitupTjlC{(u$3Dm4&@nGk@6-N1%;QI^ws9lun;EyTKm7_ejr%Esk+F-SA
zC>SACUX8Gt@)U-YM3&N9_0_%&*qfMe>Y)~UgXbyD9cL`b4T!1&R2y}4DxxqJL~RnJ
zROC4)u|sa3&pCa$Q;QjxDkEMnC**`;VZvh&2vZ|agi}i%$>?*=V~!?}LtI}M&g<=s
z0}{dPxW1fT*M54t3JU9VsH<L<i}{d8ninykJ)0c4?ZP{O${ye()psM!fy567CQ#0k
z<Y<HC!-Fa{f2}L3#8#u=c`LOF<F*0|+o`<M8T-#CNiv=3dzK!;h37uyFx$oS%Zf&#
zgcJ)saLhU!5_YGW=mQ$!<fw`V_UNpIuyZaLY#+EnX0cj3!YnTopi_jAY7vxpC9bi^
z1#h(45z1zic4dcC&*r@l@pU0wB?k_(3fgwciu_rTRVCZYzD^E%hwUS;kT~z*E>C{V
zIm-+c*)B)3fhd$82<YmQgS+XcLRL~tQEjK@Dt`yD(E@!=RQkTB(LM30@A!nuxvnc#
z<|+iV+D<L<&Ojepp8Q$bOx$;=7b>euBH8C!;2qvK^dm2eR>Sb6W<oXdFxnEaTh+$N
zfTB+G@vNH$_Y&pCHjerxz^vt!x?>gWm1W!oI4|vs_k%>dp#~Im^I!m3#O#=3Lj-*=
b&^yvW%;>EGnkBi7e8Th1?r-FCeGE7b$oizL

literal 0
HcmV?d00001

diff --git a/phishing-filter-rpz.conf.gz b/phishing-filter-rpz.conf.gz
new file mode 100644
index 0000000000000000000000000000000000000000..93fea3a8b412dc4c7cd3552e00e88315245403af
GIT binary patch
literal 5545
zcmV;a6;|pWiwFP!000021D#t*ljAsczW1-l2>W11m~8G#&&6ZUMA#AI_JpT>nHyFK
z5(!WQNQwIO{vatcNhOrkVO3RD74WdV^?MJ{AKrdbt`on!{dKSGUg_Q2pG;4bwr~IQ
z*T290TW8p@Q`Y_ThqwP7IB|mi@|Go85v6IAmA@s)FIn<SS^gdUf4&TA6!w?5^o^6{
z?VqL_{hJ)cX%d<({|uV{FufSa4$JMG8|*JX|GdNMgvQMDKlh|NlTk!cbxw>w504E!
z{*TdrQA}w2{~7!b-F+w~`J0(W=C^4Ep>Je<{J*?muKo0wOF6a|U3VPK?n-`s=S=)3
z;s_;}<)?rA?YF<Y<;hR~`u3l{zWwdL|M)fz*O*Ns6*_)wN}2d=Z>;Ny#RlRqL0aco
z(H2QrzBN^mByV|zA5~H`{@=+@Z@>QS4I&_&pDF(7rxc&OD)~Ov!oB_buYdfnKflF4
zrCFP&5i?5r-T5PYbY*FoXZg0NN{Fy-FPviWSzWAh+c8)mX^T2$Y~9p$-Dc4y&)OG@
zwos2GkJ6@zQY=1n!X9HU_D_l?E0eOuw3~s1GB?inxou^TmyN9e|NKIa6=yLjsTgs}
z=(sbxPRC^tWnM80ES%r~!$=0jpC{{7k3m;LI}yuCue;2oU36F6q>TGz)?c>bNo>3`
zSWv`dx<a6njgPw(jZ?FrlT{kqjwbDGNQ_${5YEqbr2BX`3bES4UJw3YOms0BhR^nn
z?_&Hp>irRC?N%L~*o~$$N788}!0V`K)2v9dw20|+y{;%Hrv_Mo8_7)=Hs)gf?Cz=R
zqCx2c>4}awA(})3Svujh_ae>M+xRS?wtPKi>WDL=8b&pPr?GOYPBDkKtR2Bp%;<T`
zl40nUNSkxyOf(86z{Q9Xz7s)?jLwSSL11yJyUXxAIBkzTS6X_f)<Jv@hY++|wo5w)
zg@MXskKQjfai=I!zuxyWWev`MPtl}pY)=#1RqRPN-AXgByGdJrHwn~T>AXpPNK<Ct
z9?6PvhG)cza1`aYlxnB3Iluj?YQLexe?gSgRrW)os!5t}h`hue8-!NeT$P(R+~)74
zQ|1fVIFH<Wqp%WaarRW*i|%EQkHRO*$}kCZmrOx*o#1e_`*c_zZp==05LQh#;xILa
z2>ZL-80NE!W;SF26HHRTnEas)7eOaaW`imBrsEOp9dnFs+kd4>$7=j&phcOa&4z{&
zxlo~q?(44W`fAR`VVTIj++FQH%XSy3j)ay<<QJhTndw~b<ZLfxR>W$M*tK^kozlnE
zlwfakHi))ta<ht=<f~3QPvaCBjWHrxNYGbeM@CD<Re&{AxH{K*dkW#2JjvTYV_9q)
zfo1H?gNj~IG2U>J!2is&IBk}YPEfV`{DcWG6haDYR=F8sqHY_5DBRd_FGi83u~+*f
z*~DeqS(_CQeQ>dnOl%}0v6B-MG^|d7EOa-IkiB$d)TQqMF1U=FZZSk>aOAdEu`@%8
zaJmj2bW$B0^A6?+*8(db1DCPQ5ltfj%oHVvz!XQtd9Q+I+XddEtLIuYjKFfETM+u{
z0<fg2Jx4kvm(8gdQG-G7yDZmLTh~W}alltmPP2lwFNThzkU)-L9fiUl(=s41276W<
z$Z<gUGT`fy0^a3iQI&Pf(;bwuY{{g~*%Xt0@T*{v&B5Ruc53V*v|~J!E7A)IF6A!H
z9D!*=oqOWqAA>MpT!w=bX#(8`Kt67JteAmq0@}e8Oh7~=HsfyHICN%9ckn1AkKH+q
z$7$8v)OlWhY3_*X7qD2k{V0ItdGKg{pKuZ`zU$3rhqffGwjhfEcx90?js%Z^-uzWZ
z9qs^hVb1GY)OhsElQfn{db}h5BFPZ3_jj8a;XCZuZ3j+c-|zSw3m=Qt%_I2UEf849
z=05tHHu<*S`wT$3011b7=bW)aFk)~TKcZ~G>9$8?xs<Yss)n(sAUTU@TD4Kpa7vJx
z)TE#==O`cTX@QhQdTL~RHlvJvoVp2fUd=`)$B2H(*$;weZgSBnZ*?)epXdh{OOFJB
zvIM0TQ^Z%YqMc(4*G>AkH=`!wb|!s3_4_BQ;BYgx2k?Y_AvS(hPHqpz`9u+jd|FL5
zb+lsTP<l7`(Tbxj2)$i*Mi3U3bX#r<_~6bX){r6!wnv2L9k4>kTZxX65yu_;NN6EP
zQsE)+iolJ^A;`kqda(`sH?52N9gRJ9&~5{xgg%&lLLhr3n-79#*@$s8V_uZij4T_w
zzk?rgg?K>fmCbI#n7DWkDKfaOkTQxzEbz21`kb4Dnt~Wx5+<lI$B4{ocoMKg&Jqu6
zI3kI)VsF%SLgb9<s;xre0G0E~@k%e`!AcU91fR(N;L%BT_%{Mltk{sOIgAbupVRQ>
zJ5vA|#*bRXdYGmjTHe#1N0#c$BV`60Ok=JviXayiMB4#eup6dHJvnHS=jc&=wj#u+
zgV9<XO%T`0q0FhB2c9oh%Q~mWbVrhN-_X-_$r3f3LyiVGN<{bkUGRI37x@e`c~3}!
zOKk>0ZOLQgH)D25RaH%$R6#}AF{U{^?P93HXCqdC;`jJ99>rC~ceJ_cchN0A!V?_*
zuA?Q)8c!HH=zGp(g2B}b32;27BUm57HLi_fH%<sAkf}k&O`@u3g8^(0;M9sO%0-)J
znNK^m_P%Gky*g}M6HYgZ9YOvu`LwtQt|1P+yIfqnn^r*_*hgsELHWWQ_t+?YFQQBX
z;F!DP=_jgDME7!l=kE>Ujbc{f9Nfu{9)pDj<Z4_f6?PJP<)*#|H?)|#PN=ACnk+cI
z>BX%$P`%8^A0#<&-VaEM{3Ce3A}O<~`VmQ+wcn8-{NcC%SI~>>2QB3OWZ~f98Q8)Q
zem*)?kKA^xb3Sk&N%gTrxpA_HBplkg>bKDc9KUVQOB4WOy(<tovID&6cisi<k3mGH
zhPjFhVAj0EpE^p@B$)iFv3CiuF9iDu0M&Gmb(6Qs$oWXwR2NOi^{BJz&pm!V`Thfx
z>`>=*8&=$d<cIA<M}h=fs}`8^t2;i5i&3yvqzs&!DJt6}s9eV`Jx1K7T7l<q-U=vS
zn<gDQ1%~@NNnlq;xR=f(ZSbV%>^nAX<MYu%@fCo1UYDVLPu@Z7Izvg9ZU<iI)h(RG
zxAgO)xg(V5(<BB10b}!rX}~7O2tKS^oMPJ`1Hgi~2(7z{C{K%EFom<#N3Kb9gaeJw
zm&^5b>`g7R>&RYhA<eyM?Z`VLC4r552_Ri5(xMEm=gVZ#y)u_&;kbLJ@e#_S){Z}Q
zJn9i<avhMxb5Z+2bMK6L#qY4wS8xJ!midCP_a<rnGX1`hKHMlW_>gLBNa`@jbgT+r
ztPJ*D04qhWNUtd7+I04}P!iqi@`@@T_{Cpm%%9fS6QJ~k_G2s;wQ4;LN+AD!GQOUi
zjUJQ8fGt){YyvX}a_*T%_&g!s)&PrR09o~90mdJ}tKcbmPRF?eI^HU654i2ayg)F`
z^O5MC2&Pp2l)XJhXJ2J^(aq33c3fKwXy9$Z45%4Lwl2;QO#Kx+4pTp4<zBJTSR)-&
zDYEd<zUchbSbKF8gD*=S`ta!uL<13WV(GNRI^S)sJ9-0`?SY`rP$3U^?Kq#Dm!^6G
zho02mnE1+NG%M5HYnXv88J{!ktm$wz7ZTXnDgpDBhmlV*SUl=4{YCee7{9LzfvSD<
z=-aZS1N)+F2D<9m1TSP6M4b+&r;JR)J@*S?=Q*?iEnVb%mYRnAg;s2T!+)=gQ(JgW
zGD5xJ2Cd5?k8;SZr1O;H8CZ$k%XJmx;YyHpDC=UM&OUcRTD<`Q-IQPaW#&;qPRRO3
zvugH>PZ|dL2}9wj9pZT4Y)A+F!DC;(0x)7OLOS6ST6n#q7`LJ{XEU8A{CqOz0a|;M
zn}ZI;b#B<G$8k@x+M3@{oVtO&JCb-5sJAncnP?zGsB4sE0ZkkPQ-1KfW^B}A5W<>1
z_I0vVn?^o15;z;~9S(U4!~;xs*=9$B>h*qp(yhUO8!(_~TcdnWQZ|P$9;m@nAO(&x
ze;E>x$#639ew5e^aJ9JI1FuX1!rlQ@_5P~+BeTGYT6B>!u3MIS4)RT&a#JY8y+Iw<
znuum+nCTul<X2N3CJKa>2|;AW>Ke$F6-2bM6imuSFjA2+9<#4w>bfbCN)%GCB5#W}
zN$WOG)0Cx6&3PLf)6ymfc+N!4fwE~UlZ57Fn&w$ak|qs}$x_Y>&Z@Gl(gI0;n~S0(
z6&D32D&clRW3c;_GbtL{6cYJ<od{A@Sh6Lo=HYdukfO~q0_vh@u(_sYEhSBv(vlTP
zXiQFuinncANPqiZH`rF?Az7M>nk2xWfiVS6&zmg6yjf9@s%dFn)R`a|t4Lc0*QpXx
zaw1rjQc@%m+-7abn@W_lNednx(`1C_v?_TEPSq7{Qyi=$MC7cjco7@}ac7i3_?0Xe
zXKhYuNmJ~#%36{I`BpPg311(qIVohyn?gvQNZFQXYwA2WMwU$GRZ)~YDYCR`s3eTn
z(88uoI18SqNphqGby|=%E0E-onlhFZSSG8QDv`l4X_Z1z;H+v<2xvnI`N|xFiYzNc
z8Xg0XpR{G&KrT&2Th2-W=0h=ZUWxEJp1&o{a*QYno`P>>1_9BgEE*ZMpQe#DtwGRM
zw2(<b3W7tG2?yJFRfpH1!t1b1OPq%nC57HpOt7Ye@lno$V|bYs=uM#2SSN=8uo4PO
z5?Lgv4BBa%Ryk>FUMF7FXwkNqJj*kR)gZ1HV^~fIhsDsks8d3cTHaJPr@TpJ&`#SX
zg+S|6B+yZU@nw@GLe}sTGO5Bg2XW^jsoSK@%K{oh(}V%SmL;W3@U#h!Y5lD~cu?0x
z*5Ek)d~K6?zLymXjv;kj;zT7SIXFjX#j_%VlEcVzDuOblWkR4XylPw6Lek*;d5wGo
zOiOZ3>d+XLK;Yh<6L_?gQ>X*9yKZ2FIco(8j=_v&l0fQUTv_F91yjwr$V$KNi!pf%
z<*8d(C@(}JD3pwqvM6B_X%e<mmeaI_muYjXBSq1QoTQRV0>v(Kn!Fg(HVH2?%8?p!
z{DmAyLTg1@OJ399n1-i<G;P5lpG2n67?xLA+OjIoAllFvp1}YLm;wAo(Xg7pXXgn7
z#4<wKDm(`MIVCA51Y$}9jVUUT5Gc0f(5WEbc!QXcrG+RZ{5;$sHVb)SlD37If@4J9
zmQrw062!SQt6Pc?f=n4Y)Ow}|#}pZ(W!6BS5f|#bDFsH9aN4j&S*GDJM9LDDT_&uk
z8%9Mg>zcq+d0i%XkOwmHK_h7y+^Khj1m>19xSa+YYs3CP)*0l22`L7YbwOn%;jCJ(
z3Pr`L@E8fzCOAkc3dCFlQZQR&HI9|DBxDOaV7YFht0tuWfMtpTnw^b;&rE~h>V$N&
zKW;$TNgm{E#c5k!I86i-0cu%mI44mKE(IrC>~7iSd?Pt<<?jX@;OIewGCAPwJ-L$6
z5IuEdB&SK0!Hjeiy{~0RbqN5n5t-MHj65#tDD!2sHpAcH650p=+|A+!6t`){z2}A}
zm9@ykqcip!O*WVff%-&Tc&ol(`-y`6<#^09Sr0j_hly$bd@g(mK6b<DETr1r#Xyvu
zQ9GfKj86v=wPh9*!8jr56)eOcWViZsIx8L9{i@zQo~4she42#)%m-}j1nHyUynY91
zeTJZsJp_bkiMB!^?;yA2d0iv5#2!1*nGm0RpA#M1jl<#gL}|x*sb>QqzdIZ{JCCE5
zdUU<7!hAD+vd;8kJl_aj(;*E4$@`P3`x_RAKSVR}%`j-F^Vf{8DJ;9OS6#oG=8>WJ
zyw3f2ua6r7yI3ds*Tj_F3zm7f5@s1P#d*TX{o4&+tBQ6L%p{ugfR4PPenF~zdg{wW
z*l{$czl$pST~zt+pbC))_Wo9H>%s1MTo%owQyj-y*D$vHx)Czs3%M+Idohfv7sKu1
z=;<!(PC5?EJEZL#{@EzZ9`keyJaEWfgqmliUZ~yukwPNsA=I9Y$2`>Dobn*O1~v+{
z&+TlV+UNVG!VjD5-m8L7#Gjh%adj2pn*@&#O55aRDR4vdTmeMq*<U*4uP=JuNy?`F
z0Z9e)`2&*LUkAJ*G5+PS(T{6-?ho?vPyyO6XY+x_!C8Jc%Y)+USk2`K=gP&!`@?OC
z#+t<(iHgk_A68>Ve<!{L2-Ys~zNf3A3e06yR<Yjq$AdXTiMfAj><eH%W^DI)qk8YM
zk1NVA6lm!C$t~fY=~kUvS6<$`CVwR#9HslIS6{oZ1+s)f;=_^N{D!}Rebm(yPZNBA
z<{D%Y!KWm4E<L0W+E!&*y}sYP`{+lhQ%^CU*pWkk>l!6`&O0znA9~XfPBs%b|22si
zIpFfyBmfbvd%g3oD%SVYzQb3&sBzH)$b|g!gY4RGYJWbixbgPLqImuMcun>Cx$`Gg
zp1r=Uaq8&I5g4@D+)p{xIp#Izygi&Y{rNf$+eRb&eWzMYYP4cofaHwn!Bo+~N84$<
zMRfn@>HJACaA*lY<g|GNi6b~S9e}Lh_Dqx`KMrY;8>zoidOF-FfU>8fn2ttk6Q#&t
zf`b9Bdct4Y{Coei#k=M9@qdLJvb!>Skj`vtxl??92!n&M<L>qX=5xl0MQ0FOhh-wa
z+<Lx=Ul`#_5J*f%e<gO9W44%2YrU`J0acoXhYdEmZRGuV8rDV7*(-MRHG81h?Opj~
zDRAi1B8XRh5^eprON@^E>(W;bA|^ZBg4$zMMET9}H@%&nzv=B+_g$}t2QPcwaQdcq
z?)jHqz?H2jOlR&ayQ-(gJ~CSH5xm^+Z6?a@HJMdf<W&G~+<*^p%0I{fu-m;q$@dTP
zpJt+T3ce`$xI%GzWuw~{+pK&29hKP>*Xs}~_9@8O7NO@`XVMAh{C8qp=#ue%0lC_+
z8H4vXcRCzJ3#QyRQ$4PC_)Qg`K;4;mMU#knk>tE04RGYnW4VYT`ifYbhi%4qCKveM
z&CSRo#pnPp=HMM0ngnt@|5U|=`_*p0MOF8v?J~O)Kg~{W<Hkqp#yj3@-kbb*+S=P0
z9?3htTgpY<Kos|T_uzTx$dVLwaD$fFG|SVionCb0gRIBq_v`$b(U24_<^XAqlavB6
zeu{i?HYCu?NYr(U<L^!DKytCuS@?@;q4+_DHhWn}QLXdXh3w7kgV5EK)ywY@E&iGf
z3g<8BzH05F%I*}|<^5gbE+S0YQ}A6QxD@%+>ivsd{*71Y#8;t|Ly`{<=<ntImmiU-
rjAqM(tI+CVpbF0Ums?32p6aR(mu;$lJzv@OVch=#&f(hm0XqNy!)neU

literal 0
HcmV?d00001

diff --git a/phishing-filter-snort2.rules b/phishing-filter-snort2.rules
new file mode 100644
index 000000000..33efefc43
--- /dev/null
+++ b/phishing-filter-snort2.rules
@@ -0,0 +1,462 @@
+# Title: Phishing URL Snort2 Ruleset
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"1111365dh.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000001; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"12931-coinbase.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000002; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"215323.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000003; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"260aesthetic.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000004; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"3650947.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000005; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"3659ll.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000006; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"83291-coinbase.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000007; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"94-103-188-123.plesk.page"; content:"Host"; http_header; classtype:attempted-recon; sid:200000008; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"9825057365.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000009; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"abctrvabc.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000010; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000011; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"acclimatizable.fun"; content:"Host"; http_header; classtype:attempted-recon; sid:200000012; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"account-update05.myvnc.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000013; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"accounts.google.auzen.us.kg"; content:"Host"; http_header; classtype:attempted-recon; sid:200000014; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"activebusiness-unlocker3.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000015; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"addwsrbh.green"; content:"Host"; http_header; classtype:attempted-recon; sid:200000016; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ahnp.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000017; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"aldg.ldgknhk.lol"; content:"Host"; http_header; classtype:attempted-recon; sid:200000018; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"allegrolokalnie.pl-891241214.buzz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000019; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"alutipcentra.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000020; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ambil-pinjaman-daana-payleter.xforms.web.id"; content:"Host"; http_header; classtype:attempted-recon; sid:200000021; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ambulatoriprivati.it"; content:"Host"; http_header; classtype:attempted-recon; sid:200000022; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"amev.ldgknhk.lol"; content:"Host"; http_header; classtype:attempted-recon; sid:200000023; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"antail-conv.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000024; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"apply-now-to-receive-badge.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000025; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"artsea.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000026; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"atmailupdatewptnskmdinfomailacct.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000027; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-101072.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000028; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-1041page.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000029; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-105714.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000030; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-105819.square.site"; content:"Host"; http_header; classtype:attempted-recon; sid:200000031; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-inc-107097.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000032; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-login380.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000033; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-login522.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000034; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-service-102155.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000035; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"att-sign-in-105669.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000036; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attcom-100762.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000037; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attcom-106808.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000038; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attmailservicenow.wixstudio.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000039; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attmailservicenow.wixstudio.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000040; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attmailsrvrdesk.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000041; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attnewmaill.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000042; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"attyhhhhiiii225.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000043; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"atw-tau.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000044; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000045; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"authsyncs.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000046; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"autoreplyattmode.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000047; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"avoid.hold-managert.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000048; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"azbin.ir"; content:"Host"; http_header; classtype:attempted-recon; sid:200000049; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"b45018.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000050; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link"; content:"Host"; http_header; classtype:attempted-recon; sid:200000051; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"baiii-wong.cutvi.cfd"; content:"Host"; http_header; classtype:attempted-recon; sid:200000052; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"basvuru-online-yap.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000053; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"beionfidi.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000054; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bet73nn.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000055; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bet83039.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000056; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bet83054.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000057; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bfrescentremebermainsetreouytnoy.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000058; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"biggggggggggg.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000059; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bitnode.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000060; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bitvavobtc.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000061; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"blackhere11.serv00.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000062; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"blss24att.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000063; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"braucrarasuteu-2470.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000064; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bt-102124.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000065; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"bt1business.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000066; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"btuan-dan2-resmi.top1.my.id"; content:"Host"; http_header; classtype:attempted-recon; sid:200000067; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"buildingdesignsusapdf.s3.us-east-005.backblazeb2.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000068; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"business-page-property-897432967.netlify.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000069; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"caipora.xyz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000070; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"calm-pothos-3b24c9.netlify.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000071; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"carrefourarabiank15.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000072; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000073; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"catgirl-appverset-nya.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000074; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"catxtokens.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000075; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"chat.94-103-188-123.plesk.page"; content:"Host"; http_header; classtype:attempted-recon; sid:200000076; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"check154109.click"; content:"Host"; http_header; classtype:attempted-recon; sid:200000077; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"checkseven.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000078; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ciente-a.org"; content:"Host"; http_header; classtype:attempted-recon; sid:200000079; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cieplo.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000080; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cj12143.tw1.ru"; content:"Host"; http_header; classtype:attempted-recon; sid:200000081; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cj87335.tw1.ru"; content:"Host"; http_header; classtype:attempted-recon; sid:200000082; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"claimyourethrewards.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000083; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"clickbait.design"; content:"Host"; http_header; classtype:attempted-recon; sid:200000084; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cnsa163.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000085; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cock2-iota.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000086; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cock3.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000087; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"cock7.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000088; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"contact-pro-8291-d01.firebaseapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000089; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"contact-pro-8291-d01.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000090; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"creosrl.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000091; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"curmmgdv.email"; content:"Host"; http_header; classtype:attempted-recon; sid:200000092; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"currently541.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000093; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"currently890.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000094; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"currentlyserver.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000095; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"dara3dccj.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000096; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"db.service4db.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000097; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000098; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"debutcan.firebaseapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000099; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"debutcan.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000100; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"delivery.attempt.failure.ebbs.co.za"; content:"Host"; http_header; classtype:attempted-recon; sid:200000101; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"dev.stream.mornar.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000102; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"dnwqmh.click"; content:"Host"; http_header; classtype:attempted-recon; sid:200000103; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"dropsmartchain.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000104; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"dsjoting.group"; content:"Host"; http_header; classtype:attempted-recon; sid:200000105; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"dulb6c5p5.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000106; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ebay-mallwholesale.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000107; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ebt-lilac.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000108; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"echoredled.netlify.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000109; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"elbarco.percentadnp.info"; content:"Host"; http_header; classtype:attempted-recon; sid:200000110; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"eltritongourmet.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000111; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"email.mgb.modento.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000112; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"enjomugg.firebaseapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000113; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"enjomugg.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000114; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"error3456vhubhornbase.azurewebsites.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000115; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"example223.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000116; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"eyeydhe.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000117; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"eyttueiu.square.site"; content:"Host"; http_header; classtype:attempted-recon; sid:200000118; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"facebook-avip.click"; content:"Host"; http_header; classtype:attempted-recon; sid:200000119; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fame.pink"; content:"Host"; http_header; classtype:attempted-recon; sid:200000120; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fassehoizubra-7696.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000121; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fastdropchain.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000122; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000123; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fla-1001.square.site"; content:"Host"; http_header; classtype:attempted-recon; sid:200000124; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"flo4211.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000125; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000126; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fnuttlie.wiki"; content:"Host"; http_header; classtype:attempted-recon; sid:200000127; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fokeijonnekou.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000128; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000129; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"free-verified-badge-form0-service.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000130; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"free-verified-meta-badge-service.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000131; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"g06668706.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000132; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"gccndbqg.vip"; content:"Host"; http_header; classtype:attempted-recon; sid:200000133; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"geriodememerkezi.online"; content:"Host"; http_header; classtype:attempted-recon; sid:200000134; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"get-checkmark-for-you.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000135; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"get-free-verified-badge-service-on.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000136; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"gitanag.broke-it.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000137; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"gruprocuroipra-6493.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000138; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"h5.b9en.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000139; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"h5.metacoint.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000140; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hcghij.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000141; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hecregayatu-1014.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000142; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hejmtxxt.guru"; content:"Host"; http_header; classtype:attempted-recon; sid:200000143; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"helenblunt6.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000144; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"help.accountsupportcentre.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000145; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"here-apply-for-page-review.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000146; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hgbk.ldgknhk.lol"; content:"Host"; http_header; classtype:attempted-recon; sid:200000147; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hhideiie.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000148; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hitummoinneullei-5882.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000149; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"home-101067.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000150; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"home-103465.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000151; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"home-104341.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000152; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"home-105266.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000153; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"home-105929.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000154; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"homeattatthome.square.site"; content:"Host"; http_header; classtype:attempted-recon; sid:200000155; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"hpnefhqs.motorcycles"; content:"Host"; http_header; classtype:attempted-recon; sid:200000156; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"im25.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000157; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"info.supercitrus.ind.br"; content:"Host"; http_header; classtype:attempted-recon; sid:200000158; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ins-business-home-center.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000159; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"instagaramgalochka.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000160; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ipv6.43-135-137-110.cprapid.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000161; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"irmt0ken.win"; content:"Host"; http_header; classtype:attempted-recon; sid:200000162; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"iujf7839iofvkbcu748.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000163; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"iwimwmiwi.click"; content:"Host"; http_header; classtype:attempted-recon; sid:200000164; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"jagej73796.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000165; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"jfdjy.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000166; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kalyani963.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000167; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kexoigrufouddou-5902.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000168; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kl1k-ds1ni.neupdile.my.id"; content:"Host"; http_header; classtype:attempted-recon; sid:200000169; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kliind08.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000170; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kreelo098.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000171; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kremlcup.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000172; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kshitij12375.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000173; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kucoinglobal1.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000174; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"kxbztydc.black"; content:"Host"; http_header; classtype:attempted-recon; sid:200000175; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"labanquepostale.jupiter-analytics.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000176; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"leddevotoze-3146.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000177; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"linnkdna-kget.wxxzsite.buzz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000178; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"llahi.info"; content:"Host"; http_header; classtype:attempted-recon; sid:200000179; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"llahi.vip"; content:"Host"; http_header; classtype:attempted-recon; sid:200000180; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"loffaummuddote-4145.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000181; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"login-att-10221.square.site"; content:"Host"; http_header; classtype:attempted-recon; sid:200000182; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"login-form.world"; content:"Host"; http_header; classtype:attempted-recon; sid:200000183; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"login-online-outlook365.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000184; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"login-outlook-midstreamauth.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000185; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"login-screen-103134.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000186; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"loginaccount70.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000187; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"loginaccount77.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000188; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"luk6414.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000189; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"luxlifemiamiblog.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000190; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"m.meta-accessibility.io.vn"; content:"Host"; http_header; classtype:attempted-recon; sid:200000191; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"madebybmr.fyi"; content:"Host"; http_header; classtype:attempted-recon; sid:200000192; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"maqpiexyz.click"; content:"Host"; http_header; classtype:attempted-recon; sid:200000193; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000194; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mayfair313.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000195; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mdbrvlfy.black"; content:"Host"; http_header; classtype:attempted-recon; sid:200000196; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mesageriepro33range1.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000197; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"metamsk-wallet-3.gitbook.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000198; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"metttaa-audddt-new-02.firebaseapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000199; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"metttaa-audddt-new-02.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000200; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"microsoft365-storage.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000201; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mikepattyjm.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000202; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mobilemidasbuy.n3g.fun"; content:"Host"; http_header; classtype:attempted-recon; sid:200000203; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"monespacepro-client.3utilities.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000204; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"monetization-violation.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000205; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"moodengsol-net.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000206; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mwsiekdnfjrdufs.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000207; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"mxmxnmx.mx.zya.me"; content:"Host"; http_header; classtype:attempted-recon; sid:200000208; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"national-au-b.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000209; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"national-au.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000210; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"nbaaiqjq.group"; content:"Host"; http_header; classtype:attempted-recon; sid:200000211; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"nexomyacwv.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000212; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"nft-time11.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000213; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"nichcheck.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000214; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ns1.carrier-ast2-portal-apple.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000215; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"omadshf.ru"; content:"Host"; http_header; classtype:attempted-recon; sid:200000216; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"online-assist.live"; content:"Host"; http_header; classtype:attempted-recon; sid:200000217; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"online-promo-asb.org"; content:"Host"; http_header; classtype:attempted-recon; sid:200000218; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"openkimono.pro"; content:"Host"; http_header; classtype:attempted-recon; sid:200000219; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"opportunity-verified-status.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000220; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ourtime.reconnect-dating.workers.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000221; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"owouwuowo.click"; content:"Host"; http_header; classtype:attempted-recon; sid:200000222; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p365kf.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000223; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"p4zv8crnrrha27so.94-103-188-123.plesk.page"; content:"Host"; http_header; classtype:attempted-recon; sid:200000224; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"page-center-manage.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000225; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pavan-patil-22.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000226; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pecinternational.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000227; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"peesom.chat"; content:"Host"; http_header; classtype:attempted-recon; sid:200000228; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pencairaanndannaa.my.id"; content:"Host"; http_header; classtype:attempted-recon; sid:200000229; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"petty.wiki"; content:"Host"; http_header; classtype:attempted-recon; sid:200000230; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pimnhv.group"; content:"Host"; http_header; classtype:attempted-recon; sid:200000231; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"policies-business-page-service.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000232; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pottatrebewe-2808.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000233; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pqo.hrf.mybluehost.me"; content:"Host"; http_header; classtype:attempted-recon; sid:200000234; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"programming--service--panel-totlyy-free-for-you.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000235; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"promo1.spik.ru"; content:"Host"; http_header; classtype:attempted-recon; sid:200000236; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"protocolsecure.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000237; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000238; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-1778406e4fec4394901793111c187dd9.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000239; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-19b834342e7d465b9f00b3511325a081.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000240; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-21dd4dc659614ceb93e45a6de4434502.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000241; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000242; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-2fefe932a6974485b987c9ba851b5c40.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000243; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-3a46d9914f494078a6d6237513e7a096.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000244; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-442ed822851244a689b3472ea2c6a950.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000245; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000246; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-682ad3b65d944376b919745aae3c56d4.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000247; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000248; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000249; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-7f5cf36445d042168bfacd712e890dc0.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000250; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-803839714a924882a7bcc2495a26860f.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000251; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-8161de4a277e4ee8b532af34954224e1.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000252; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000253; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-8376b5b2334844d193a525d8b8548fa5.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000254; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000255; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000256; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000257; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-9163a97d70394cb499bdd232be6c2169.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000258; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000259; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-98171471e0944ac3a5820ef719bf0640.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000260; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-a263e0790935412eb10cacc55bbced18.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000261; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-a291041b077742899b63a9982f04a56c.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000262; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000263; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-b50adc5d699a4f08aec37102c2103da7.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000264; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-c0a934c950e441db96b882789f53c9ea.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000265; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-c2c250050109456396c933de259a4fea.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000266; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000267; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000268; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000269; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000270; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000271; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000272; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000273; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000274; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-e42cb528b102447385e3145197916f51.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000275; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-e4aff507450c478cbe3f77ad23d75035.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000276; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000277; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000278; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000279; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"pubgm.club"; content:"Host"; http_header; classtype:attempted-recon; sid:200000280; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"puffagroibrouwoi-8818.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000281; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"qasimk.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000282; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"qfjfvseq.info"; content:"Host"; http_header; classtype:attempted-recon; sid:200000283; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"quauwograssodda-3503.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000284; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"qysgyp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000285; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rajdipchatterjee.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000286; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rechazaroanularaqui51.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000287; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"remote-fix.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000288; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"renggard.47-243-192-240.cprapid.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000289; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"resolvepanel.live"; content:"Host"; http_header; classtype:attempted-recon; sid:200000290; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"resolving--issue--with-us1.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000291; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"resqat.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000292; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"review-business-case.d2f7p3b7pucnle.amplifyapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000293; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rlpqwefi.pink"; content:"Host"; http_header; classtype:attempted-recon; sid:200000294; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rouloigeilleuja-9523.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000295; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rulemec.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000296; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rutinqqwin.shop"; content:"Host"; http_header; classtype:attempted-recon; sid:200000297; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"rwftfu.quest"; content:"Host"; http_header; classtype:attempted-recon; sid:200000298; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"s.team-pw.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000299; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sairanees.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000300; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sanseipecas.com.br"; content:"Host"; http_header; classtype:attempted-recon; sid:200000301; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sasklelo.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000302; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000303; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sasktelcustomerwebly.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000304; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sasktelnetwebmailservermaintainance.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000305; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sasktelrectify.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000306; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sasktelscrutinize.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000307; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sasktelservicecentterwebly.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000308; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sasktelsupportsystemwebly.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000309; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sbcglobal30.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000310; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"scan-vulnerability-guard-v3.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000311; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"scan-vulnerability-guard.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000312; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"scanner-metamask-v1.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000313; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"scanner-metamask-v2.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000314; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"scanner-metamask-v3.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000315; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"scanner-metamask.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000316; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sec-sign-in.info"; content:"Host"; http_header; classtype:attempted-recon; sid:200000317; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"secure2-validitycheck.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000318; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"securecapitec.theprimepoint.online"; content:"Host"; http_header; classtype:attempted-recon; sid:200000319; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"securerpcfix.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000320; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"seeteressecalywoi.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000321; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"seivviice.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000322; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"server.0e7p.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000323; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"server.2rk3.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000324; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"server.8q3p.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000325; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"server.n6b8.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000326; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"server.v9vs.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000327; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sevvviicess.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000328; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shard.blue"; content:"Host"; http_header; classtype:attempted-recon; sid:200000329; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shard.skin"; content:"Host"; http_header; classtype:attempted-recon; sid:200000330; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shared-d7590.firebaseapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000331; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shared-d7590.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000332; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shaw-101329.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000333; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shaw-101587.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000334; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shaw-106427.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000335; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"shaw-107375.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000336; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"solutionwebsitedapp.firebaseapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000337; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"solutionwebsitedapp.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000338; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"solvetans.firebaseapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000339; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"solvetans.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000340; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sondfrom.dexlog.my.id"; content:"Host"; http_header; classtype:attempted-recon; sid:200000341; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"soyokai.or.jp"; content:"Host"; http_header; classtype:attempted-recon; sid:200000342; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"srdate.club"; content:"Host"; http_header; classtype:attempted-recon; sid:200000343; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ssy.hmb.mybluehostin.me"; content:"Host"; http_header; classtype:attempted-recon; sid:200000344; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"steam.poweredartsworkshop.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000345; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"steam.workshopsreview.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000346; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"steamcommmuty.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000347; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"steamcommuunity.ru"; content:"Host"; http_header; classtype:attempted-recon; sid:200000348; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"steamcomunutty.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000349; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"steamconmumity.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000350; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"stepsray.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000351; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"support-metahelpcenter-id100003498934.netlify.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000352; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"sv5gardens655665.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000353; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"system-portalnu.duckdns.org"; content:"Host"; http_header; classtype:attempted-recon; sid:200000354; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"talwgam.njmolada.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000355; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"taste.baby"; content:"Host"; http_header; classtype:attempted-recon; sid:200000356; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tele.zhngain.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000357; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telegrambot-resolved.pages.dev"; content:"Host"; http_header; classtype:attempted-recon; sid:200000358; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telegrazm.net"; content:"Host"; http_header; classtype:attempted-recon; sid:200000359; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telstra-100408.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000360; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telstra-100469.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000361; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"telstra-103234.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000362; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tiktok-888.vip"; content:"Host"; http_header; classtype:attempted-recon; sid:200000363; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tiltckshow.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000364; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tnomwzrp.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000365; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"toeken.im"; content:"Host"; http_header; classtype:attempted-recon; sid:200000366; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tonic.pink"; content:"Host"; http_header; classtype:attempted-recon; sid:200000367; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tooma.cellinsurance.co.zw"; content:"Host"; http_header; classtype:attempted-recon; sid:200000368; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tpdtepremu.xyz"; content:"Host"; http_header; classtype:attempted-recon; sid:200000369; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"trattujeilesso-3354.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000370; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"trbinace.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000371; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"treibrukeukonno-1395.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000372; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tuesmad.firebaseapp.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000373; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tuesmad.web.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000374; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tyyyyyytyyy.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000375; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"tzcsjfto.chat"; content:"Host"; http_header; classtype:attempted-recon; sid:200000376; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"u.updatetrackgre.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000377; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uc-whatstapp-web.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000378; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"udxcady.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000379; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uklifejv.cyou"; content:"Host"; http_header; classtype:attempted-recon; sid:200000380; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"updatemail12.wixsite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000381; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"ups-trackdeliveryapps.chickenkiller.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000382; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usbest.cyou"; content:"Host"; http_header; classtype:attempted-recon; sid:200000383; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"user-transaction-overview.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000384; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackdck.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000385; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-tracklnv.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000386; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackmcl.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000387; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackmec.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000388; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-tracktpq.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000389; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"usps.com-trackvmd.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000390; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uspsinfw.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000391; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uwdtsczi.top"; content:"Host"; http_header; classtype:attempted-recon; sid:200000392; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"uwm-onedrive.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000393; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vaishnavi1436.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000394; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"validatie-veiligauthenticatie.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000395; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vbbu.ldgknhk.lol"; content:"Host"; http_header; classtype:attempted-recon; sid:200000396; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"verified-this-request-badge.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000397; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vo4zzp.icu"; content:"Host"; http_header; classtype:attempted-recon; sid:200000398; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"vs41.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000399; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"walett-cont.gitbook.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000400; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"walletauthenticators.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000401; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"walletcomnecitt.gitbook.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000402; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"walletconnectdapps.online"; content:"Host"; http_header; classtype:attempted-recon; sid:200000403; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"watranfart-fdd6a8.ingress-bonde.ewp.live"; content:"Host"; http_header; classtype:attempted-recon; sid:200000404; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"waxed.wiki"; content:"Host"; http_header; classtype:attempted-recon; sid:200000405; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"webmaillshavv.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000406; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"weeeqweeattt.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000407; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"weigh.skin"; content:"Host"; http_header; classtype:attempted-recon; sid:200000408; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"weigh.wiki"; content:"Host"; http_header; classtype:attempted-recon; sid:200000409; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"wgqdqvtn.baby"; content:"Host"; http_header; classtype:attempted-recon; sid:200000410; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"wgqdqvtn.pink"; content:"Host"; http_header; classtype:attempted-recon; sid:200000411; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"whatsapp-rqr.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000412; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"wirelessvoicebtpaidmailinfoplay047.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000413; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"wscs1231.cyou"; content:"Host"; http_header; classtype:attempted-recon; sid:200000414; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"xn--metmasklogin-vcb.gitbook.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000415; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"xojautruffeuttu-4659.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000416; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"xraiz.info"; content:"Host"; http_header; classtype:attempted-recon; sid:200000417; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"xraiz.vip"; content:"Host"; http_header; classtype:attempted-recon; sid:200000418; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"xsuweamskeidjf.weebly.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000419; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"xya46.cc"; content:"Host"; http_header; classtype:attempted-recon; sid:200000420; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"yahoooooo-108560.weeblysite.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000421; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"yavanica123.github.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000422; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"yi5lq-syaaa-aaaag-acfsq-cai.icp0.io"; content:"Host"; http_header; classtype:attempted-recon; sid:200000423; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"you-can-receive-here.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000424; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"zeiitgeist.angelocachero.info"; content:"Host"; http_header; classtype:attempted-recon; sid:200000425; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"zenixoikitti-5809.vercel.app"; content:"Host"; http_header; classtype:attempted-recon; sid:200000426; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"zeznjx.shop"; content:"Host"; http_header; classtype:attempted-recon; sid:200000427; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"zwzcn.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000428; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/hpqhv"; http_uri; nocase; content:"alturl.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000429; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/descargar/kmsauto-net"; http_uri; nocase; content:"ardilu.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000430; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/parcels"; http_uri; nocase; content:"did.li"; content:"Host"; http_header; classtype:attempted-recon; sid:200000431; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/servicesatttttmail"; http_uri; nocase; content:"flow.page"; content:"Host"; http_header; classtype:attempted-recon; sid:200000432; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/sky/indian-stock/dashboard"; http_uri; nocase; content:"hdfcsky.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000433; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/sky/login/verifyesign/modifyemailmobile/g3mail@b.c?status=success&digio_doc_id=did241119142331957uip6e3c979l3r6&message=document%20signed%20successfully!"; http_uri; nocase; content:"hdfcsky.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000434; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/djgj07/"; http_uri; nocase; content:"is.gd"; content:"Host"; http_header; classtype:attempted-recon; sid:200000435; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/pubgm/"; http_uri; nocase; content:"pay.zing.vn"; content:"Host"; http_header; classtype:attempted-recon; sid:200000436; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/go4bnv/"; http_uri; nocase; content:"rb.gy"; content:"Host"; http_header; classtype:attempted-recon; sid:200000437; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/18ab5a"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000438; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/4ff03b"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000439; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/8wtcv4z"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000440; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/96a02f"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000441; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/c0d1afz"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000442; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/d2f265"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000443; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/eacc63"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000444; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/f9decb"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000445; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/mzhpkzf"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000446; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/nbyh9vh"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000447; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/sa2uoq0"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000448; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/tcthi8d"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000449; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/tnab363c6"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000450; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/wx1eo7w"; http_uri; nocase; content:"rebrand.ly"; content:"Host"; http_header; classtype:attempted-recon; sid:200000451; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/tvybxr"; http_uri; nocase; content:"surl.li"; content:"Host"; http_header; classtype:attempted-recon; sid:200000452; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/carrefour-926/"; http_uri; nocase; content:"tinyurl.com"; content:"Host"; http_header; classtype:attempted-recon; sid:200000453; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/t8vi"; http_uri; nocase; content:"urlz.fr"; content:"Host"; http_header; classtype:attempted-recon; sid:200000454; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/t9ka"; http_uri; nocase; content:"urlz.fr"; content:"Host"; http_header; classtype:attempted-recon; sid:200000455; rev:1;)
+alert tcp $HOME_NET any -> $EXTERNAL_NET [80,443] (msg:"phishing-filter phishing website detected"; flow:established,from_client; content:"GET"; http_method; content:"/talr"; http_uri; nocase; content:"urlz.fr"; content:"Host"; http_header; classtype:attempted-recon; sid:200000456; rev:1;)
diff --git a/phishing-filter-snort2.rules.br b/phishing-filter-snort2.rules.br
new file mode 100644
index 0000000000000000000000000000000000000000..772bac1e7f922269a639eb92fa1b9bf4a505cf68
GIT binary patch
literal 7437
zcmV+o9rEIV>Sm89s%k$3KqF=0{QVA_R{!_Cocu!mQlmte`5~u5Dxi!4RsiGoTKbjM
z<cUi_S0X@(bJ-c&KbwW;`(@t>w>X5v;=rwtSo!yL_&aIC{EfXS&;O+P8!{;f1?6*+
z%Pb*8hswgDvFg@UT}O32QsY{-eB&P8y+XBYITHAuq3R=Rx7*DHO9;b1kh<|FkGaKN
z?Azn-H!2&&_0h59qx@4$xyr{sHjf4C4?lVQ%kj5o?%U&x^<6L_m^A;~b>C$7&6xlE
z;U|wjc^{Oqe0zw8gZuHzliB!KW+65n?ft7Ce)9N~CmgWix5rlNaXwtOQuQ$FcUAy@
zK}PmZ-1v3;i;|z)@xxCZOR78iFBtsfi?jWQpFA={R=z!Ch<>YiKlZmCE7h(2ecPzo
zjy}ilIjtY~l4ivJ7%E8K|G_Kc>prSI9zXr_zx$g%`M<yYlYf3dydUg$A3yz*fB)w{
z`NzNggTMZT-|D}{?zgm7|MU1|DC@T$|I5}qelE?&6CVyM+KTSS-yeB*?YE^uhVHk%
zs{Q}VWOw;)^S1okkN@mX{`tq>Md|-v=D6vvpDBb8syA-yh;!E;KOFq?RO+8hUH2~8
z=b@BNPlIpk#v|xh#)q-*k3#O-g4TTak5PPoWIVr#@4r&wbU7)(Y@+z}Ghbv0a<EFA
zB85>>$pEW(tG)v)b;C-QU-Uj1DWb4y0zvhroAkh~y}~t=W%7PO$=XxBQOOC`fsZz6
zCOXB$I5Hs>KRlM57hEK$0z2ZDQJT&SsyCT~b;2hw+nP_9trC_M9Y<M<rSNT)wS1{@
zv#ps)+^5w?ZZwmd3g_yPiEiNbn4zT<0dWQ6o&r?*Y^GI#FD=S}D_Ke{R<^0=n$GZW
zpYiO4tYq0xcoj-8aA+TlycNE$x3rprl}@av$XJW@H$}m`A!Au#p3iXZDtX>`^^XK8
zV0*GH9xER=So9o@;~93KDR{SX@76tTJNL=o(vHj;JgzzUw1ba?{P1j?gw#R`&FA*{
zs6#t(ZL4%xKhtP~rUr#OJSDNL?D(2tCeIFvPY4j11Bk#5xII?P{2c_!3x!`eb8<T2
z3XW|aYRWW);5t;|R9|Q%1;cYOYgwrXkXV5{vnig%Fw08Kq~q{6i|JxDeO7^mbRwI<
ztyn6ttTa?C*Mch>*q)^tfc$pu#OtWB?7>l7(yxRHSX=ppIQ#qT1UoR7j%A_~-5?ba
zbh(U;<*3R~i}R4cSK^84nL+3~E31zEqnLP8kuJZL@Ww0HO3|hY4&5|l6kbWxwy1<^
z?4F?&B{WjPtC=6Jk_(yWq%cMuV8c~tjf`RiP2W%8_H4B&JeRQ>`ZE*skSf@Z-3ac8
z+3HCaGTUOhnqSqVHb?3H_k)_WDFCG#JL`_U`OK~bj;IY~>uNz3@lqydUJ_hMklow1
zZA3&;nm1ZSy)IUvRY6)-Yr3tk#$9Tor1_>w^D{WRwoohVRAndoYNKJT${lT~#iiA(
z)N0Cj_`7B`B!>;hX>~z&bS84V6Vib7Kgvth1a`y?pP3@3ECTC<LuPF{G3Eoyn(p=c
zhvlA;AcnzvANo_~<8H8-^;0$}*Y`p@%!W|Ck@`hO71!k~ZzDCQV=3G<I*12#cIV&2
z8d`xFh=^S&uH3eI61R&3)^OGg<!rgJUZ5poH?()Nt5NuBMoMuZN5vD{8m&iN>Y!p=
z^5PmD>N2WMO}E57MKK!Kfyl%!YUS8+VZa%40Ez``#?<Z_(_K$sS2J?2nbr@&M4_GN
z)>s#!Rw&l(J2hN#!kOl3-!0n<OiYsT4KoVCtL6*Rb$x?r`+}&;d?`{xZLCJymp@yq
z49#Z9P+G;tq#n9rxn+BeX^K=rDP-d;+P+-6sftc(!p=IdJqxw<vuGSqvWz7Vujvpx
z+#M`v`vPm$$Va`3gEzfJX$20q@S=DtECAGqb)Df6n%pvb_~0xv5$s6X1Jsn%?#^aR
zGJ%cLpp~5ZVJ%%1Ps_a|W}OHD3v{Fm{C$6(Y&&#1G%_F9k?NKTQ?t}|${w~I1X<1)
ze=eXP!%Pr&VK#bfJ4j_tD@blbe|$<`{lt6=CABiTHv@NKUC5aU8eOt+2uDs@bt7b9
zY}-M})~#V3_b@n)2WJ(mEZ#kRtUG9JdhdXgvMw~Y>tHb9K=aH4DcN@DrMVK?T^PME
z@c^O%-Yq-~YDDo}Wo<#*br^|<7VidRz*Am@z?~?`;Zt6)?AXzLMyl|D;`I_dw@2Es
zyy~FmI4EVLfR#-4K;cd;W8E^wgqBsju<WQX>&~SasPeiK31Yx%>JkfxJ`fh{hzY^(
zEXgQUC`#CO>=ntGy5=3o*#PaxC|0nw&UDDe2*0PfPVj{?Hinl|oAEnfoCGp$FlFQ#
z%T65*$(Ty^nZvS^;H;KISl!8uN(4xOD=~gG_42pT;&Mz&PfC-LjZ+7-#<Y_u80L3Y
zgU=jfP|n(CFCn{5Jv-dYdp4IvyIBp`fnN@#T9&0}{b()Ipe&n3KQTSJ873tL&@<~g
zrgC}RKmo;TT=<ppve!zY4PFVG{kEM(1syoIY9W?hEj>-5h$*pJR&*pDiW_hKxed78
zS}1Uw=fZ8`AJB(Zu;JvUa&F-v<p?>qz)I>8uUFVEd7~BPSH{0EvPi6x-GE|+GOb7>
zSDvX_`$f)(5~P4NoYwr@TXUGEnG&8@dqz0J&74sqyHDdkDx;u5D}1m<I9KMQ)QYN1
zwXEncw!Y5F=sda>g|xy7>m|_7kZt1gk=*Oz!NVF05Jg*8thsbj%~VrdQz}TnU>LN*
z<SME;9r3WvJYGsMVhv?RD{QX3hw+(0Ti5MZTJbV3ikvHLovk8c?pIRU^yk**E#&}J
z*TAP`JkflVu7|Y3<SOx*FPD_6Le;WD;5NMRb{pzJJK(HZ8&ZpVPAg2W(!na!hQUck
zC5N^)SB_X9AU{GV(F$j)7Hff0a7*-Qa|Sl_Q@;tPt(Vo_1xl>|lUMhpt)11x<yjVB
z1^|G4r*Sy;T08)=K%DH+mD;s+xXKm}A<c6pRxsMyT%EJ{q@@sibQChO2CQKi=Ww#I
zl~dx>yRjx4>}zVuf{)=N8W%}41dp7Qf||D0SK~`;wR$SG7GWnPU<ZOM?MTlQBkrlK
zj$ub;SBFt^IS;4q5|=^EyI7&S!Z^P^x9sS+8WYh9x2vTkBQj6@4d{FYyUdkzO=r>~
zD?4dxfOQK(9SB%KEtyZO0-vp2-}mFt^_2(Ox?zRHYHf7$Yvm_p3s}WFVy5IUV8FcN
zhj@fp39qo4ZCF{K<h=p%zN9T0yI0rRI$s%aZgpjp`h*oM#W&U-Q}Ev(VdXQ1E(xPr
zaj&iWRU5YEcI0GRPIP2oy`EG)QTEj(o8j|>@mgE2tF4>iS6#4Tk#ZTiw(eFA+3dQ}
zv$>VFZdQ{vv>8{pp*HL1eCg$cww6|*u;DY*_q+171wNn^E>?lIp~pD;7VB1vwpLaq
zKG_;RFqos-aim;hoJ&!L*04Pz8-jr;vqy0u<6+MUTbjW3lxv;$!Aj5yn<}qu8#yGx
zD`nr>v5jgAAyJIjyhmbY9OYRCc4C-<=XK>o*ALJNFRMhB3M$<jkOiBy>JTp}AxkP~
zWZ%QADB&b0cr{~CE7bZUVJ$1PHLW^xJ0dRItMIXsM&k(0L3!8Kys9D;q^UQBHJHvb
zJw8^{aIjQ!E1aU^bJm1*WOHF5|D%Pf+3GC_X0$b`N{(Q|*a{iK+RUg}+aC3fR+v_`
zS#+E|*NO>cm{0=~qBHQO6)sl6KsnTI$H*^=LcmH|sP<fjQB9PVbDwP+^q6P`zM+f4
z73iY=0@~VE`RxfSJ_j{SmCf3|ROY$3=b3}GC!lulH$<9x)#O=QgQ_-c$9JMNw<R^_
zQe$T7Dh##tqH0riFLvgNh{Pkd!;wcTGg@Ih<+0rpMc0i>Qf(cmJho><pSr2Ep{?(f
zTlS2>+t%k@Tbrq%+RH|jo<gd@tXs6TkQ(l-5l}q-^t_170joLVJ%8%$EVmq%AO)*o
zqK6sctKpGK4ZF1a*$zsZGaL54l#IgKb1#qXxYfBVeUK@kJM?PnAN3JD#kji&Y+teR
z>;3+mkdX16(h3);x_A#8g<;b6C6+-(=MHTxq)zi`S)hfm)#k2>ObcypwY8LrhI-d$
zqa`ewlzqFk^_PluF}(^+r0G2PEm&<WrD8FXF}AoSwdzya2f9ux+@%s-VnOz^KrWPU
zRiM>P8)8E|g$~m~s(eCew6&j#<Vl(;7i{RNgS0iGy16WQ8-N{gTHAXqv>vn*4dm@<
z!9Wmb_G!J<)_JNIx`*}I+yatGIn{wv;^!sU+8R-XLjZ^KJ%`Mfo0OoHxaM^bzVFWk
z*4p|{{ZA^um16E#f&hh@ZOGCASFjP0y$E82f;qaGw#HOj0^F%;l$D4as;w!NXM&sa
z>6g2rSz9-%y#Wh^zF3AwPD;(DNtUf0t?;HYYu<~6va<`k$I2Q%n0TTxp0#zH8U?Ji
z#zqXn=A5f6;>9`{!dqMWsoS8Cn0Vf_(u*pZky%qJX{o9=tkjfY#S46Cr43bR1={g|
zTJL9ABh$*)cp7HG5y(NA+s&g|rvO7MEva^d6b~q!Su^+9pWevTPQ}X$1<<6G=2S+W
zxzziNUUiY3l>ComEmmL+-Q+9crL`o_BG!!_TIpQXu)<XccNdpuc5NAO7OixzY7XHY
z-Z8v+c=OK<JfIrNzNPaQtP6w2=6r!YUCHQhNGr{%yb@;sdOcsRhqThCDzGBHQ@Fui
z=R#B4=TTfLtIpH85^Y9krAyVmNOp?}D((VaTIp7GAQr)QY2|okP^x5+sLbNDG{@o9
zVKulS1#o3sMyf+Ay{VGsGviPSmC7x-CCGt1kQ}(eYA`7Cke+CzHB~sI1LIC1#l(-i
z&8n>{RWF6@dq|5^?@-FlDivz$q5Jw)Tg$5K`aBCCy_ZjD>AUlBOw87_Of1VspPTpE
zI#>DS`g?u;KCi#m3&3g7vC1Jgn)0y=8`>IEHRc=t|IhOLKF_y6y<Z1dM~ik<Mt~$*
zOfo2WDY*t#2&?!P-^VQ;m(K&S_E=j_s-3saJ?ER$1_^o4)|x6HZr%6m*Gs;I4z$LE
z?~KbC@%>$msPYn>`7Mh`O>X^o{5iJKqN|i+ZkMm`w}17cutYlB@OwDMU7H$f$yl*!
z>mfC~U4vPM*4e9n`#>AE9jC3QREu%@xxT!e`{nCzeLnl`dVgH(rtM2ICHL;vsix<f
zjmL4&XOBJ}*T?7IpRbZcuPIt2sx)&3yxeb>kJ?mNV*UUw?a1q=udJlz4cZz?{a@ww
zTn7Ml$Hr78hU949(z&;F#teBmQ72&IEme)jY~Gzr&fbSVga`l<OshNrJ0H-O5ffu;
z@s#Czj75Tb2qlIA+8R@t^hO9(Tsg%ja5hbdnk8m6GqDT=7`S{(L+iBLmhsl<Iy&a$
zDITenmxwXVh<djZ#&l&iS#FxX!UUEi4|s`>M8UJ%fj2u3wU{--gn0<4HHOc`%gmaX
zvC9xm0GVT&FJi?G%o#4%yut<N2&w3tu!82a$vIuhX3H|*O2Cs@kzo|ADdo(hb2+%O
zL^P$$Vt|!dQD@)^-!eC6rBmo$fF=_?5a2bg(Cpc*5orZ)DC6EW_I3#;Qv%qT^=!#a
zlUZso!nCy`O99(_R1WMbgAZ$ij9h`kk<Bo4Wg<U02&c`l6EN@wFrk_QRhzrh4TLZ@
zJv)dIx#5Nw>3Vzo)=AVBvElMc>59gfRI~FEFk#mD?UO7dVq-3F3PCAbCTzP7$-=@{
zU&6L7HDRBN_u$|#3>g(po)lnVxOzLkJ=!4JTr5kmXLgzl&{dUyCofk547!Fg(~Kxm
zQ+RWX%>%Z>t4wg16t1OXbFDcoc3)LUxOyhS)QQ+wk#85}E0(fC#L&H&>mpiZurUEU
zvn2xsR_Ni(krZM$dMo(aW7f0TcMfJofs=Zu4<}*3UNAB;Mb^qLutW^JrNdxYLsc2g
zeJ!IhH!KU3NM>FEBeSAV6^f7*#LTf~A){8rELtt_5;LPEBPyk)d+;6>oun`@5e8K#
zyv!&^IMva%MWdOamd|B|YQBZiI})()MwlpL$bjK2lQ=D%s2U}2iAune*%Ep4REM(S
z9=&R6%4QKl7<G|0o|-=V0-r5T!+AG*Q^2kr%N}#IuB<%m?Ty_=39bU3g{uY;KvTRy
zcj*Gyc_S<6Fy~U`v4MtTNfW_y5~c|D)xpYz#lp?C8d7sg4K|^HT8R-p6EH9<nl&LH
zF}k>Ht>oDw2-mJ28UP~~GLJ;ymJO*np+{N~CnUO~TH+<XQj^Q>Y6&d{R9{PyfY&T9
z2nb5R%;}7|1Z_d{mm^9h{SrU|t`2hx+!G5kqS#x8vW#T4Tuoaw3aL~E3A~fx9t~+0
zhbP&Ej}0ld0_3Q$l<jrez{*G7ippb<EEg8#wdXbrFK$<dXU+tyTyX2o5us$zv^WJ}
z!m}H-2`GoctGM9x>m@&*O9tE8pat7IUeD`go!95@^>Ua&2QzIA+#K=~_siEu$3s}d
zBR~6n|GW2(#Um}6wT*tB@%-&x7h?DOwJHvhL1z+JrY?W?*S{OA!q^$_b-BeesMn*<
z_l~}<ttVTnb#}hR|8ZX9`}rAX{5&t>dSO{Kva`SZQA@Qi|8=s|_PQlI`}_4Z&U#@z
zkm&%&19=!NwCK^c{OtSn^Ivz~mJ-@fTZ6V(4Rf0P;}FvL>^OcekGJD_j~J`1S6jW#
zzW>DZxM|U^Egpp5O(KW1aXe(9Aa`;Z4mA%)v(e*3YAq`#Jd*wKx^SWK%F{}}wl*xM
z<`b<*-eY?Ln~W^hYir!*s@yyVw1pIH-y1}3mE!AlQRHPyxdL`z*|pTA@ttZYK?v3n
zUld*u0z0mKl}9T**t#WZU6mqY+0dm`&TAJb5DU_Q77U|AjGK*CxvhDsK-oR|R2H?Y
z>M(k&sEc;Z$8$H*EUq>zaW6Z*#rk~ua^@VDm}_v}mZcf9BKd!KvJLYkiY#rAHCrRr
z*K{}S#QT-PV-+Yuv?vv_!D$(7r6uzq_be1!ge@9<vI_D*5*4vyuku-!H^?K&D39YE
zvnf#^*oh6Z9W+$V)aWv3m5<xQi-pLJFK0Af20yX2L3Zp^^#-)c-t9IiB<q1!(v21g
z#`?Vjx5YYzGW3dkN$55CQm`9jJ;3&CLc4#wgtStkRTgk@?B)f@_8{zisNO!3QpzmE
zqd3X`gP7Ms%j<?mrhvzqP0aj5Xq81=EKimX+bBgwKGD_;ZZ2IPD`qSuISTxJC931r
z)&p+UTh-2!sH#a@Be-Ou*;VOqIJ7`kR7K`pfvhRb_)>WS*-(|(&m+h^RXL}#Ks(Ss
zR~*82J`JrhdK;Fl`p1|PNsxhfq6lRl4mPdwb~9JrL&w};rfxVtw94!4=E8^>#Sg7=
zck^M{;9{Z^YVroO>Lrz>gk~H-)|9c=5@bUK2Q?UAd$Q!4&v0@IUAM9kxZ>d-^bxfF
z!5wvR;)xYv$tl#+i=6zStvB0T8b<dg_i~5tHj6@Rs%e!ATTqmAryYo=%%AxJR+420
zt6332Gia5M+EbTu^DWHA!-b%DZ&{`3mi`evzNgP8po3h?mGa(iM##EETbHz0nN*HJ
znI@PJRe*ckVp9mA)!IRAozLdg=(Q2Lh;W~#RR(9N9Mx&D)trGmu_6{GP}0_}Y*nh&
zQ8L`!a%q(<S<*N=YWsCyLw}4lWd}Kt*{d~9O79*9T4hd_mD7Y3aUsUi8`IArjaC_w
z#qIi&;d2E>Y}_@wyI95vMXL<R8cPL#tq^#8hUCFPCZRQgtV(s@Gt9RPusxxH9{FdB
zD^Q#xDXnq~Gh&>xW(aetEEtijJ`CC#geB4x;}gd3L#r&nOkc5unkTBCL%oY>X_e{M
z&6E+ii*{+1&DTw?3aI3W^=Xx{S721yYued3j&sJKRo-2rO1|3Kv7B5hTy5>Syi#Kd
z*C!uBz#3eUaL34L!9d%;l_Zi4%0{cqvtFmB6o6aw{%~bPJJKf)mnyI$hYwfrNW}<k
z#|qLaH>?(`W~jA2kvx`?m{Mli*0jn1%PBR_6k%Lkw94VC6{{I(&TYrGrx+6xYBCuF
zR^q^hC4g(!qpgEgs)?LdJ=(fdE!6vi`L3)^8rm9Cd8B@9c`h}LN03%oPHkv>=W;}c
zi>0^jRSps764rsq&9ZBQS}Gg|TVx1%VI6T<b8ido4t}JqSyV8z-P3~4liNGB*wFSp
zURs!-gas2aYiR2ewXYq8Ej-g*!u5)99EIDB?2hqR-RC811S_dcnX%L}4y+<8m@~@e
zSdO=R#?l#$P}oibpjAFn!&c5S8&fzZ6~yjE5N$1`Zb6Z<_;^CzQ<h*o=mRFCk&Hw>
zQkHtWAfG77864U=N10R>ip#}|+8RW8q+PBS`=O+*H&m#!E3g#NWjeQ2v~_+8s}rbf
z5l#|X^)b%0^?-_kCB7C^LUtl~T6f#Kxf7FHU=8J(=e8FwXq5@n{IK~K>qdngN~!{u
zdYnCIl{b_h&ZIw|gOlC3*Y>4aXVGGLs_g6PEA7Qv+0TiZ$QiA+hl(e)cGHzgu~MFM
z1FiOoinZ~YO(CMCnq8QsESJWG>Z*^W1SY1{rclERDobB=fn3?*Tn{7v|DX{fh0Q5C
z<aiyf$h6uWswNk_(T$d#Ry#i>wpfnxWrOp4qSXZ0g@~^U5$etor`4WM@qbGTA(1C(
zwXstygOo)D?1W3!mwTNx_HCrqrcLuo$Y^0stIe6Bc0J~%9Ql=@)mBXD5zmWkNyp}T
z0J-(4F;H>W;o<J|uoBVMn#m(qu|-HF+Ah#)E2iunS>OrdHxy4nyIiN8x7@TfV`{bD
z=?Sgowk+6cZA|xO+Q`?|k*Ox{4D|70qSeGQi0Ir&t4)_0*t@g~A(S1-J(m><>qITy
zH|T!s0JPd;DLO!m=7aN?=tk2Y3m{tUvlLJ_oDj)^kb8cFRzIJ2lkqQB?tMe(u9bmZ
z$_rY}-a9pBFPk3ht8#6aZ)mj{)5ShWR9B=@`H`vYrDG&nl$;78+FCO;vJXajC)%l2
zVrJ|LsIU@;eDD*W@8O(SR!i#gxjr_oc9nfQ?rS?<+xc65ZOioi5tD_2zppCbYugjm
zwA#AqlYBWW7V--DYYzolO)T=&ZI-Sk*^zH(Yxi{7*Kt2A`XW{x969c*=C!qd8hj1K
zp<6DoiVwEY?a<7eu8=7P(rS~a#jmp8Uq`8QA+jSvy7=XwY{ygdcF5<H%`LX<o8a2o
zNksxib(p=cR(-vD_r0(A`VZ{VySp>S(<9HmR`nB0zdv*PdlTgx{LXPIeS@DnS}FaX
zOZNZB{Z9I}PHG{<B(zjYOlD|w^r-AKOkU;w=LffR-|x6&59(_6GufT$5Zw>rzjaD2
z&HMXDUq4vQ^WmQBvm3tDssk0iI-Ot*(J(e|&yyz(xcP_Tx@RM3wLRAJ^R*^D$5X8;
z<e9IR7;9^j_56H^5oQB2_3${u7J_@NU`M8sUY1VHz)nn~@v8RJpIdGHwx-k9)I%qi
zCs@IhvYivKWGYz6RC02Wy#ZD+l@P4$Rf5$_rDbwxXJ8FeDtxwM|18a6d!|#I?`=9a
zU<amC0ol^4yM-N@PSw_pMt2K4@o!Wk%&J$mf7I5D>|f~XdJ9a$m9%v#dp^GEdC%|s
z)GZgTiMaejTa&W2Ux&ly{;)~*wNcfn6z>ZowRJCh9A9-jNh&wA>_2?TGSO=OG1Csv
L8vZfhGgs>Y+BvMN

literal 0
HcmV?d00001

diff --git a/phishing-filter-snort2.rules.gz b/phishing-filter-snort2.rules.gz
new file mode 100644
index 0000000000000000000000000000000000000000..0907ff8ef88d2ec8c6554c1520135b350d81da45
GIT binary patch
literal 8012
zcmV-SAG6>eiwFP!000021Kge8kL$Q~$KU%`7`u5$fE8Dye%}QO6zHOPNRuMj07Z);
zpvWVMV~W&Jls%fizNBaFZc^l_IDR<sy?3r>Y|GYX$iwfU$n*X7@{@@czFhueG5ccN
zeEIVqe|Pzl^C61M9}f#V#DDts^5;#<2>Q!Kl%g&;FGTZGS$+}am!|oz^!Sf&n+dRg
zx$ujY=jGSO<N22<!0Q1{oxe%X`K@1JlXH5nCB|+4^8NR7dTTi{<=5|5Y40*XF&P^n
ze7}8un$PdktAA${xc&e0;&1K8OVdIA<d2~8$MhSx$J6rbzq_PkEyw4vOjHY4dkubm
zm*0QI!v0l8Im&btX(7Z*RNLiOzx~6%|M-{R|M=5Iy7N-}^W|4R{^w6W{_*$!^1H_m
z|GO{0tLy52F27#)`O7!|=Tlw2et)^cxSIq^Lj;u|fAhm-vi|-B_VkW6Jqh%8Q}F9w
zlr`Yu4;STKOn1I~^KU=?l%AY{{AGo>c>Pz8@pP-&MlZ}k{N}G7_^sdL*H<kdHH7q_
zmHQsg4Zg@2VcpWFC<3IH{BYTgPQT`l8~@=F;P!?8@EbA|#8B}<dE@f$F8_j&PzZ7;
z1aB%)AtI>gA!tjPj<7&9irvjyehWk(H8~(DK$Jt>F{O|YG!zjG)*=SUmK=h<62nu1
zWJeCgki<<{6};~Yo`U6;^v{)L(Sk&zr$?k0P1$s*n;<rffgA=osu*tRD;@=2(xae~
zdfwR%>IgYdd`65L1Tz^Wqw$VeKU>F|x)3={s8dHO(*UytxfzWJk5hza&6*&+r-J~S
z4u^z7P(<Mm7mJTHv256S-W+Dvs;DB_+3ZsX0w#}laO~LGbw*-R6J!$24aQ?PE`^=q
zaMr6U1jHnU(-W*x>-!$Yh0Or~D}>M!t#WZ&9(WX3CbtcV13kqmt)5x>cXi7(jlC8L
zL{AWeg*kZZuhKdLNxK*Qz(vgkui1FKzax<$s9o(5&8E`*ARo!h&NSR`a0r4Tb{&l^
zHsfC8DqW$abh6mwY16v|_BQ#j?kv4EGa88zr^x8AGWuY)U~WmXGJ`ZfA_%J06>j(;
zRuI&vF3Qw(()Tw!2_^{Y(rvS6;rzXbKA#aJm0FBa&w#E-1VMos;tu!&4MB+-*VJ7;
za@_kC-F{uQag)zKP3c}tgA9!JMC?ig<!g)uFL~LCPa3$_WJFJtNX>Kqc@C3-D3hj3
zO8yx{s*);^o)2t)J!Alu-vkK<CyB#2mFJqvp?gjv5hSTtKO0x|<#U)+beS~bIYUlW
zlVq|(xETeh2MOLZ&mq&$Bx7cmf=dp!Z96=N3`KDp)9EKDW!FBbBXxA4w0+q>2MS3+
zn=_uz0F$!j$I`2KXyXyN4F6DEjK{%Jmt?VoThMv+4R(@TlT^13?wN|k$3aroo=du!
zbQ7Y%M?z86-is&?^y$Z%pqM@4lJ5MnAnE62O8c>Iu$yBqzP{trmnqc^Nq+n3)Q&xa
zTelQh_yC(d^PuE4;4d1l35wjCPhDj3Ru`*usf~n)$b+E1eIJcuCLjTzCuGOEDS40A
z1{!*zb(GUNf{||RthH-<6Ja|Kxis_pz6deDP39`c#z6H3rk#YV+&ta(w?@>=Y*UJ|
zdBK4-?uvwv6GWKgTyghqX6lGH!_<Vd{-O~CVeGdf9EEqOO+ax<{IzZkJ(Zh!n0J%W
z23wjmH9;1!tDHlOx(!7JeN|QiB7~MGgr-J>Ku?p7Q-J-k!Vy*&A*|B49nyFHIHU6?
z`W!(+Pp6J%{^f=bgrIIUscEF74tX$XONu0JDXkkL;vSrqpaiv2T^9(zIm^@XWr?>h
zxFsk;?Y@gTofLYoXbEc1AP*H}koytgC`8?r=#so8C`038#ejIu!mO5{CXM{-hBf?d
zLr|T@<FUuWiF7{uYFP9eXX}Z!xuPW~Ru5x!I=qIwv}8Yax#@}R6+89<<Q|Kprr4N<
zqBI`8!zd6N5JA=Yb@yjhX~h=&mOl1b^g~xyVraWOLR&MPh*6lHl2y`dK1lX<BJFbP
zN`egRT5LZ3bT6t=)M~(Q8XYHyB?OrKk)_LMq`UG4JK^aBK`J{Ky@1{F=_DO@@=DZI
zQ@2gWG@mD<n?WAtE)FKwEw`f7i0}e&R}n-OXA^9ZI3!*>#KN8EyL`HuBA2)5ui(%x
zn0NHluUceePcEX=wFI$%N`bfL<-pPl71C9{uA@m}hZ{Kb?75>SZdHCR6q5OXROO``
zC_>n*$7=^YLGAjIt5j4h-Z={g5(a`=^`-Bss=>uTP@Gz6)-y@=^gw{S3>sZp^aS;1
z9ydp6BKw#(K>|TgaJpUc7O@CcPf%xibrps2QKHL;z9mVc!Uxfj1kvGxASf);9jRiT
zFD?39-B*{KO(sBI2#-3G(GUL^aPs;~v=%cEl%N6p9xPtN7zpamBdqJJZw&HYD<lkp
zB8HIe*t4lQ`Zdg<qRXQnN_-wQT^@Oj3<P{6^z^8fK~`F+7yKPU13f*eNA|g^xz-~h
z33`H5gQ%uyYKyj4s;Fh9ijlWNQTKY3L&ZB;k40G)RoGw8l=TCD?I(8kVPbjT*(2FS
zO8JMLAieR3O1kGL*I}Rw1XHc@vLpz?ntaukeV!Maa;3ch490O!O@zHmBsQENn;Y9>
z0J*Z&2PXq!OQ9!bwY$Hr3*uEbPSE&D2fyvB3{fr8IONG>PSE&D?=L=PTfaH@1FLfo
zl&yyyTh(k$UY3bOfu3AV(&8*uY3+US7WVY1(L@F(=z#@eENre&i#?Ib3EE$QT6_R)
zL8GrG<OFT7z>YE`d9~%1;iA-TW4WX;4iJKlSYTr?(Yx6nAw7r}I0zbCJ!VbWI*%;Z
zN^udbj2S0raRu(hug5$;C3ocn4X%C$f||P$bhUyIe5mTCy)DO>MwgG`RPsHgub*$Y
zqis9n1P!j>Ew8u+Au9CAR8G+73Qjon0#9H;P@0}G9$*gin&+IL;ngG+jNV@hc{3a4
z1P4Kjt4XfFHmveVoS>`Kl+FtlZ{CkF$f9e97Cn6<=wp?r#60=+lzA_LR#wx?KFOky
z=~m<~x_F&zy04^RMr|dUVkhWsl|bZj<{W=;A!u=x4p9rv*=%A`sd&wTo*bRrm`lli
z*f@Q<^hW<_fgOF|Oq)bWTCYI5eM_VAjwjLx+FniWh%vn&Db}k&qCiioPW}q!#XARA
zf8Y<r1m)`1RO5czban1->Z<X|XIb9YetdmDMQOG>_Cg{~(CKOl07YsoW-{rN9-e|l
zb|fvo8nmD{C4%Nxe+wx+EI&y-jS)TNJC|+S_FdWHPaF_*!kU$GdVHN(N|liy&=a_G
z>M>r!n*M|<yc_mWT^5N)O^`<{9{Z738Lm0X7UvU&YJ#p;8O+}sh`xG+d52Glp3cpp
z-^rPcAxXW$M7&9Rg3ecSIJV$ZPUOuNWYN|`h2KW#iQc7Q;{XnE>>VgF$Pz8vupnL^
zC+KXosCh9jcuTDaI$5RBHoz=T8INrHT%*Sbf_7F5ysYu<EwcGQDtf>PI#?}W!HxEC
z@d+6VK^v=Fn~Z%<H}1!_`4B(qn<G+b2vP}<E0Edqq1PWZA=4=sxZ_6>dWv+J$1AgX
zzPcs-?=2DtdTMl8j0R(#uxNsyKh<L5v93vdIXJ8ZQ#5@q@Vg5^Vd~fHcg@T8DUR`+
zppVrjlB#Z-=OE!!k<``Co8gg>2&zaL(YDV)QjtY6h~YU%YLZCODW$*p9{#Edf`(Pg
z=3rW0ceeWIgF2Ok9SH_KwQ5$;;LVv5G_A@TXIRSZk`gm996K{kvoRp?=n3-Ji=WH=
zKLTpbcp)H0(SahAC}$buI_D)u%N4!i9Vcj5Wwu+(>Z;&Xlm2xD=Owy%Hz(*|Wx^WE
zE4Y;SIwT16<f%Dcrmn9B<EPtoR7Y3$=u3+TI#`*zS?_E5in&*Spk>vIoZ+Rby5R{E
z%>)grUMBs5*)iw|(W|tlbY^HP?B&h`&8e>N=FJ?A$sbz#qiBW_f3lFE57pK3YoT}U
zOv+h~O&be{HfEfl>D1Mll(3XNeiS9>K6MQM)|Ugm(je$Lm0+w^9f<qg30h2D)4`*8
z;iBpq>~V#lebn{H3xH<pM`<}?!=R@>uW#dfJhfsEyI~{@^mM0{qjawaZ0V$P$)%TL
zOK%bi>5?3aMj>vZBIp=pL2J1A=-;8Jc#XfAm!Nl)HO^hNlf`w0$nI}%?+@8A9`El+
zOz6o{Yvp1POE3}ikNQA>wy}eteU$anB#(8?8C!&+=5>P}F9_O6Sw9<Bq?5`P<>CqZ
zx(RwqeK5&83Uifdi<G?*w3GS(@v#G{@JF=XU#qsk6CDJdr9PQ_z$jLuKgtNpBQA(s
z8lqfwm2!NSS4Z)xe##;bg4R<HG@r|qyAppYh@c78-yrFpfP|n*J+5t1B~M^MP_7<t
z)=aP(xtcMx6+9ROU8mN^*03V=7T9+)8f)UojAu8btJefgsMd6T<2kN@O(#<M6oMX9
zt9;!Iyq)iu7pn<+Pp$IqT__8mWY}&FbtJL6$@{7tK=Ep%b8?4(UD=GFDb*^^Nt%$f
z8U83k(2#1?W4PJr#GGU%=tQ-`E_2xn*n+RBAl(e;mUf(=FI66O*Zo@DrL_=?$HIqP
zOBC%26+ySD^n)04UBp9c9SaBdq7=_5-%ZeZ>hIIRtmQ2T`cSP#1;6_#R&7)4(T5am
zkT3QMf)-S(xx$vt>3mtyM`J<IglhFEwMi+Tmiu^|%vCd+4u^z;ps4i@9)&Wq1M|l#
zS#`vm{TamKnS!7(RYnudyNt%W;%2;k+(Qp31O=_no+9(^Z5n$ba>64Bx>l|C-N045
z=_Tl6+ObuwAn07RzO8R=ePikG`zhH9NF?ZKS@#GV(k8i9jEHSwpiBa7v!NhpROLn~
z&Fjl6qT`_;=uze1&9A3a_Zxb^Bxq9QrdY)6I?b`yiwJ@aRnDm8Q4jPP7k33grz*E|
zrep{vFU#DcC~_6597?y%Vv?b!M*S-FzDx|MV4EQ5OZB;QCY_zxBg=N&NGLk0C{i}N
z`UGTTKFmlk=t)n%fxDWN$9k54AYm8?V#vYra3-F=lu=GcjK_{X))KU<@<+(RgFQ~h
zr2`jQJ`B0<K3pLnruGC~tNh&`_al8py!b5$x>ape+gv9+p+V4;YOCLGy$UXbMT&0s
zY^d`J#De#I!9~TA5ZkYh*)SwT^i=Aj2<S(pm}1Qp*%75FLBFa^-lQwG6isa*1oq4^
zK|iVul*x_b>r4>dG!Q{sstsWGD^rWaV$c(0;FL5$O6PQ5KqV13@(Y5VQyav1;<>d6
zf{s#~S>1BOoEs%*8MXPOHVyn$5w^$B`qfkmZBQlXAGP^h$TGkPcPK<(_UJhrK|iVO
z)w3l`DSD3ffF+$e+9fxFZc<zDbCBzr-|=Usq|}2P*dqF9&-24m=}A6Qf}qdTW5SHH
zeKS|InN)&CQVB!!%G*y*S>&Y+1kI$jV=Ooq0CEzl>#CZoTEZ|jpr)w@C0p6BAP^b#
zG#PbWUzaV^6R5fx>LKsnuQ=z5_np=QE~9}aqhai;x~c_qx^A0sn96dj8qO=x$g=0C
zj0l=iWk!N)U2D}gL(6Lg<4{4}$W}x8SankhTt=KGqZEC(RulANUr${-bS22PO-*W$
zs?*5rNDyTN6AYD*iB4Vjsk8N+8b;YSd~8%*;xej8GOA?V>S5sZR1bC8^{Jb+xkMPR
zpp)g$;xej9GOAOw*1Zs^-K0~HZ9j}v-3gFFwQ^{X+fhT3QCrGJOHeHzWnE5b^jAZp
z`xct9=e0&=)Y4?s3#qHIZS;^nNY{=7Pl2hC5-QcSy2fQhQ)jnHPK!|{aotX}(rTz=
zH;p{?y;clTAdhP_b#|wqg~X`pw5%tt`x+))PSen&pY>gZ%ZR4V?xsdfRa@7ME^EQt
zew?JzUCQG6q0|aD9yK&|c3)O~HFUg|L+T1CICY~^=@;He(e`aQ;WDDBvwPn1lz2$d
zbx=c6+fCAwQ<WgqLezj8j~YRg(U8~TH(j4}Q7^_ps|J!7NW#0)Eg-ienmW7B<9#!V
z|LyMFmfOaWF#IaJ7dv;PNCM!Ywx)L9WC}+L5>Em^%F@$sLr!Kg7n`|hxvD2sj_ueY
z#V<|t-yqOG145je8uFTGKp?4J@ZKTM9|@W|yYF46Ish`Xio1$SE@4m-m4UQo+73C6
zXzJ`<*<9nhTEKW@xKL1swA$)kRCT9}!DU2KXZJ?b9B5Qf^+OynsXHy8z?GHbRqb%+
zAq7pHJ=86eLua}wmuiX+0|ZaQ8U@h=atWDHPn3~nQkp?Y)$y*Dvg+Kc#AV9#wZol<
z6f|}A(AOX!yV_Pz(@Nka`lhn3s|V$(7I}`XrKz()PBU9|Lp3nLp#o8LrKQ$FD5b5b
zdt62}QAR^u@fybLuH#J)!%-fehQ7%<K(rc{5lx*fW!DK9k%W>AGMiMbX?W8aDO<yo
z#nq54O`WYoC87K<?J!8l{XLA=tgEXAl3K-#>~I;;)Y-ZML7nGkE6aIp6v%C;{=0r~
zg6Y9ZTt+l?wuXoiRRyXV5}Rn*(CUFPV<AsNTwyb!sk1d3pcv_f+VqCo$|@+*v~XMq
z26r3sJY?GuWu)q%wPIipN6zxWGFdz0BozLFDP(=rQ)M*tl@X0HHHVz0OvP#kRj#c&
zXF7$;h^Efgy{WD22W~(gRj!5#M6<T32i>v;q$Db%j;78wjp2e@ZVZ$pz3wFM1%s<G
zx{-2dkr~m{*`_sZEo&fR4L3bhAiTAegu>q$s8Mk9T1Qi7n|_d>7r7O#=B|NndINe1
zpbZ1aBxFW3b+%=LaMoBMI|DUsHz*}Et2xvpLlyzJjA-g?%Nwmk(?h-AaNe<ASRf?o
z0VGrF1n#q=P7q}zofB2ZMWuPyYh{`1I%yhaI#Ds?F`K5&c2!<PQw^H+uLqCPb#<*P
zBYU{f2ITqdj;79b9gGqc1dIYeqT|Z7u5aX!r8aLh?mD)vC(6h{=`Ud*sx9wKEqejU
z-!>f#OH5a|b0Zx|ojuN_o_2+Upr<IKos(l&y$b7oUwzT{HU8!@g63^E8U1|4+jL0K
ztL^44?uhn=XYbe$G-|u;5^jt!z~!yR$bx}N!M{Q13EtZyj*kuT2BD{CgS;5O<z5DG
zvWrFUyiU-M4KCs=pE9g+*(Vv~ZTAA*@uDH<$`<ULy-}V2z}{d<(2p(HWgKNNCGU!c
zv!Wgv_*|8G3v%-YF;E7AY~nf{_O)>vv8^FNbGA<sul?*k#@!ah9mdyUkNDkU3Hr1F
zotsSPLn}eAHh8<<-v8(tqGhzDX<WB4)or_8CR@sRo4k8qy67|n?cBn&-R{=;a`OvP
zUq6CgZBXh?s~@eOCc9r`F^C3V(i1do3;SeetFZ+NLEpBpC%@cocfXYJykbQJLDhP9
z$?fHBw-Kpd8$n~XSSBmyV!M}GBSD}iOJnX>w^$e#aEn|<&~+`!C0f5(5E@xclqw*h
zs0pHo*U3&Rwhm<kUDh&-WG6j_?J`S0#Zk|0IaaUjc)3jR2w`zcNON}GM(4%I^4eos
zXB+M>An05;RW6H7aQs&w*#PPkzFHD|$VFRxOoA#VxRwN!9X^qkDv_vP^3^}z5GEa2
zD4!h>bD!??wy~xsOJ{%CMZ`yht9uh1f|^(9aaxs}ScPsQ%Lsb7MJ<=&*da3osj^$@
zqZoG?OmQ&eIRi$}+U@_*K}XY&M6+ajglzi`BTjMD=v3I>fJ%c-h5rqx;14c>JQZ{#
z1l6w9MfBrR_yuo;5+i8;_Sv_&DGoV#18L_+4@pG5(h~)v<pzh=Wjfm}_}OkN)Y0Xq
zXC4xofhd}=>AWBXEk+0$!9@#)3pN4}IX&*H$DZFN=>Hb2KMwETFwI2J1nzV4t*mUf
zA#z|;IW*zQ5IJzF9Qqr>j0ZuL!_ulAkwZ(B!!aBYkpo2)dVD6081d5vLG5|YQ$N|5
z2noSJ6hXZD1qT5^U$=|^uElg>s7mL9RWe%4MTm@`&)c7%z$wty+%baAZUEz6)Kv{P
z__tvb_b~%OU$^f_MBlv!38#vr<;|Or2&zar)`|BZAt*)HY0n<R-;Qo_qIpl!>HZdM
zaC1*jk;!3`T;iLeWFSlgH8u$Pvc+{V`BkN{A9=kZo<%hy=)e}&$9k2%Ttj)miV1>R
zH5i#wELOt|M$kho#z%Rc)eok_e!;RGW(57xV%{53ZtLAbO(#Q&_cdJeo*BG6LeL@Y
zlgf7#@pFeFB9WFR5dbjHdqSKUB<OnfJBfW?Jg`7=o@NBi&Ay}9mp!3I#XuFsGVim;
zL_yH13{b$3DIeHdav4EOvTqBsU+cckcG~j#bsGwA>TiMG4~&<KO?h`aA}NC6^bonF
zh+SeUMBBb+Qiz}#+2@-6B1e&&mc2B)z8WZS*DxY6p(k2_#C-&Twp`|Ql13s1h#&|9
z0;E(@J&+L46Q{{ewtSwKQ9?17R;)p^BMD**a#m|9zBM93-@ic69PAsG=bSSw5`}>x
zg_wdYKzi`1e@lKPX!!LbmG(W)a0yy`{XvB_AW+{zg`P%D{+iZn(f56Mc%&>t(6=kW
zS#+KmyW=HWg4SGVS?BvRY={sDs?XJ4?NWNIL4lz7To<qL8nQ8h##w1yXDGt#H2Ed&
z;nm?nujTWOM1-K?+)T1tu=8GiJf27x2ujWX7qnljpKOe4!I<Favw{T8uToHcks47<
z5p=go!Fm<;tKF~bvaChT27w<O1V!d<<1Ed4*7Oi`ulmjdbwv+BhpO~={mGxuH)s$v
zqe@R5FD|WR?%$6@fu8u>%YDm>dLYs2>liFvEke*&YS+abf&q@PZABg~@a_+K3UoIg
zTABxb<0FDbQTuiB&R&jEKUSpG8U($fK1Yh&kg#s>!-Akk)V{^yHE<f6jT%C3FCQVF
zczw0YHFp;eh<xZN(LE|S0On1@2r{rC2gwqp&ifCF^~jwF?H#>TA?P8s$L+Og`rBQk
zuXyr<pq<p8X-vz3NTVfAW7ZQQjgC5v+|CG%Mo*kZ+HQz62I4f1+2GM2=o*!2_{AYU
zS|n%=wckyO`sooN5R{+yxmXu#0%&tQ9Zt~o>5%ZsMIOH9ti|qcM$rH1)hJOWZ;QkF
z$&YeRXZV5F`QH#Dg`NaGl-kS5jMwFSEvI!t0zprGLUHDuhpS0&9=N2J15%-+87+F@
zM$i}PSo!n0m0lwi_5@v_j>v2Dv6P<pyu<rUsmR}F8fsmySU5OAYbd}0Jbp+hYlzqb
z1}Eqf^~nWN>teM}ZwQr!ERqF~B=ed&Mr=yV2^vD(Wu7Q?GNi&8)5^YtbLHN=g<2P5
zOMBn&9FaLeXQ;dUu%^8Gt4BgWPoaLZ#G2w+9tZY122RlQ2@u#D`~{bl@Og9udHC^+
z*L9K;G<Et!fH+JLl%?a%+>W&1?Q7%&4V!+afVR4v6EtRet?9{2dcqCwc|0d*!*ut-
z=7rQROH!3K=}pe1**s;N<fGypdIBM6%XE)A)(xxi)-7;?HcTH&k(*9ruc2uj{ZbrS
zp;v7LjhH^x3sm=Ech2r9?FDbefL`DebYuDm(m(Nhm^eWnrcVS|8#_5c!=;b7->sbE
z)p~Pr_{oHx4*hsY-j-V903hhE^pNNE^{1$-UbNLawt{nl9!n2-$i-_3N(1>R0w-v)
z^zdT374adZEZ{?qh14$I3N3x<^;Y4rp{GYdg%;Ub7B0s6!xm>7(4Rqaf<{bF>wOxn
zkExW)Xs1<64Qy6K5kk<G>1h}LvHGh|$rqxp@Wm-XkEW-6E|-ro_hLn2Ku?`M?@zrT
zrd)dJ^mN{C=i~d2_u&8ij|B#eXn*(}Ii)>Jh?wX})|0VO%P`7ty3P@b-L?4adi67G
z!T4#%!$#2R>9ol_&c>gEGTxLE(zHB5>!(w8%gY{d`Ds;3dG_(=yz)6;4d{@NH3X4e
zA1A*U4-zn@RbNj=#<N=CmisxnvvC?;i+EEqn($upm#5c?zK6|@;iq{u`Rg2h^Q!!0
zPb16U{8yFwKXAgd$6w>FvzOs7#*cpe&8+%2Z+?Z_x8ZeN4>eR0tR6(S`>nN158W`a
z(Ec*ROCVZ*h2P(2cnkk(s(eOk@)w^+bo(?t{`uAacbs4zx{Q~qJN=xLkL75P7zu(&
zXIJC=7l=0bD4*~i$^+?<I6-Ty)3|cA9DhM7sB%PlT1?O)>s0qr3HcX@tO{}g5rf5v
zU>(7otC;#?P6P{y{+{%~pI-}#px4%EXl2#7FXlwBdeD`rrTglDB3Lt+#x<?@Von6h
z11q&|*%xynD8=1itp4JRN6_}`G(XSV_4(B!IYBwTsK<FY&R-0QpeB#9+1Fe3#h?g^
z@}$$*_vVX15me=Ak&3lUw_l5jpb^>W{!!btyMHk#g2Fr<5A_j#&MD>xYgo@d2pW`~
zv<$(zbq~eRw0|)ZmHhHReGo~|x$Kns!~Yx;AbOTAAR!_s%+qj{Ux|pICQot-Uy0}k
OHU2*{d^0TG>;V8QXM&>u

literal 0
HcmV?d00001

diff --git a/phishing-filter-snort3.rules b/phishing-filter-snort3.rules
new file mode 100644
index 000000000..e8685a9a7
--- /dev/null
+++ b/phishing-filter-snort3.rules
@@ -0,0 +1,462 @@
+# Title: Phishing URL Snort3 Ruleset
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"1111365dh.net",nocase; classtype:attempted-recon; sid:200000001; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"12931-coinbase.com",nocase; classtype:attempted-recon; sid:200000002; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"215323.com",nocase; classtype:attempted-recon; sid:200000003; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"260aesthetic.wixsite.com",nocase; classtype:attempted-recon; sid:200000004; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"3650947.cc",nocase; classtype:attempted-recon; sid:200000005; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"3659ll.net",nocase; classtype:attempted-recon; sid:200000006; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"83291-coinbase.com",nocase; classtype:attempted-recon; sid:200000007; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"94-103-188-123.plesk.page",nocase; classtype:attempted-recon; sid:200000008; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"9825057365.com",nocase; classtype:attempted-recon; sid:200000009; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"abctrvabc.com",nocase; classtype:attempted-recon; sid:200000010; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com",nocase; classtype:attempted-recon; sid:200000011; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"acclimatizable.fun",nocase; classtype:attempted-recon; sid:200000012; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"account-update05.myvnc.com",nocase; classtype:attempted-recon; sid:200000013; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"accounts.google.auzen.us.kg",nocase; classtype:attempted-recon; sid:200000014; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"activebusiness-unlocker3.com",nocase; classtype:attempted-recon; sid:200000015; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"addwsrbh.green",nocase; classtype:attempted-recon; sid:200000016; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ahnp.vercel.app",nocase; classtype:attempted-recon; sid:200000017; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"aldg.ldgknhk.lol",nocase; classtype:attempted-recon; sid:200000018; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"allegrolokalnie.pl-891241214.buzz",nocase; classtype:attempted-recon; sid:200000019; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"alutipcentra.pages.dev",nocase; classtype:attempted-recon; sid:200000020; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ambil-pinjaman-daana-payleter.xforms.web.id",nocase; classtype:attempted-recon; sid:200000021; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ambulatoriprivati.it",nocase; classtype:attempted-recon; sid:200000022; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"amev.ldgknhk.lol",nocase; classtype:attempted-recon; sid:200000023; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"antail-conv.com",nocase; classtype:attempted-recon; sid:200000024; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"apply-now-to-receive-badge.vercel.app",nocase; classtype:attempted-recon; sid:200000025; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"artsea.pages.dev",nocase; classtype:attempted-recon; sid:200000026; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"atmailupdatewptnskmdinfomailacct.weebly.com",nocase; classtype:attempted-recon; sid:200000027; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-101072.weeblysite.com",nocase; classtype:attempted-recon; sid:200000028; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-1041page.weeblysite.com",nocase; classtype:attempted-recon; sid:200000029; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-105714.weeblysite.com",nocase; classtype:attempted-recon; sid:200000030; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-105819.square.site",nocase; classtype:attempted-recon; sid:200000031; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-inc-107097.weeblysite.com",nocase; classtype:attempted-recon; sid:200000032; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-login380.weeblysite.com",nocase; classtype:attempted-recon; sid:200000033; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-login522.weeblysite.com",nocase; classtype:attempted-recon; sid:200000034; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-service-102155.weeblysite.com",nocase; classtype:attempted-recon; sid:200000035; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"att-sign-in-105669.weeblysite.com",nocase; classtype:attempted-recon; sid:200000036; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attcom-100762.weeblysite.com",nocase; classtype:attempted-recon; sid:200000037; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attcom-106808.weeblysite.com",nocase; classtype:attempted-recon; sid:200000038; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attmailservicenow.wixstudio.com",nocase; classtype:attempted-recon; sid:200000039; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attmailservicenow.wixstudio.io",nocase; classtype:attempted-recon; sid:200000040; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attmailsrvrdesk.weebly.com",nocase; classtype:attempted-recon; sid:200000041; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attnewmaill.weebly.com",nocase; classtype:attempted-recon; sid:200000042; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"attyhhhhiiii225.weebly.com",nocase; classtype:attempted-recon; sid:200000043; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"atw-tau.vercel.app",nocase; classtype:attempted-recon; sid:200000044; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com",nocase; classtype:attempted-recon; sid:200000045; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"authsyncs.pages.dev",nocase; classtype:attempted-recon; sid:200000046; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"autoreplyattmode.wixsite.com",nocase; classtype:attempted-recon; sid:200000047; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"avoid.hold-managert.com",nocase; classtype:attempted-recon; sid:200000048; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"azbin.ir",nocase; classtype:attempted-recon; sid:200000049; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"b45018.com",nocase; classtype:attempted-recon; sid:200000050; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link",nocase; classtype:attempted-recon; sid:200000051; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"baiii-wong.cutvi.cfd",nocase; classtype:attempted-recon; sid:200000052; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"basvuru-online-yap.vercel.app",nocase; classtype:attempted-recon; sid:200000053; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"beionfidi.pages.dev",nocase; classtype:attempted-recon; sid:200000054; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bet73nn.com",nocase; classtype:attempted-recon; sid:200000055; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bet83039.com",nocase; classtype:attempted-recon; sid:200000056; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bet83054.com",nocase; classtype:attempted-recon; sid:200000057; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bfrescentremebermainsetreouytnoy.weebly.com",nocase; classtype:attempted-recon; sid:200000058; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"biggggggggggg.weebly.com",nocase; classtype:attempted-recon; sid:200000059; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bitnode.pages.dev",nocase; classtype:attempted-recon; sid:200000060; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bitvavobtc.com",nocase; classtype:attempted-recon; sid:200000061; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"blackhere11.serv00.net",nocase; classtype:attempted-recon; sid:200000062; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"blss24att.weebly.com",nocase; classtype:attempted-recon; sid:200000063; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"braucrarasuteu-2470.vercel.app",nocase; classtype:attempted-recon; sid:200000064; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bt-102124.weeblysite.com",nocase; classtype:attempted-recon; sid:200000065; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"bt1business.weebly.com",nocase; classtype:attempted-recon; sid:200000066; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"btuan-dan2-resmi.top1.my.id",nocase; classtype:attempted-recon; sid:200000067; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"buildingdesignsusapdf.s3.us-east-005.backblazeb2.com",nocase; classtype:attempted-recon; sid:200000068; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"business-page-property-897432967.netlify.app",nocase; classtype:attempted-recon; sid:200000069; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"caipora.xyz",nocase; classtype:attempted-recon; sid:200000070; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"calm-pothos-3b24c9.netlify.app",nocase; classtype:attempted-recon; sid:200000071; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"carrefourarabiank15.pages.dev",nocase; classtype:attempted-recon; sid:200000072; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com",nocase; classtype:attempted-recon; sid:200000073; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"catgirl-appverset-nya.pages.dev",nocase; classtype:attempted-recon; sid:200000074; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"catxtokens.pages.dev",nocase; classtype:attempted-recon; sid:200000075; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"chat.94-103-188-123.plesk.page",nocase; classtype:attempted-recon; sid:200000076; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"check154109.click",nocase; classtype:attempted-recon; sid:200000077; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"checkseven.vercel.app",nocase; classtype:attempted-recon; sid:200000078; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ciente-a.org",nocase; classtype:attempted-recon; sid:200000079; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cieplo.app",nocase; classtype:attempted-recon; sid:200000080; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cj12143.tw1.ru",nocase; classtype:attempted-recon; sid:200000081; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cj87335.tw1.ru",nocase; classtype:attempted-recon; sid:200000082; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"claimyourethrewards.pages.dev",nocase; classtype:attempted-recon; sid:200000083; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"clickbait.design",nocase; classtype:attempted-recon; sid:200000084; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cnsa163.com",nocase; classtype:attempted-recon; sid:200000085; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cock2-iota.vercel.app",nocase; classtype:attempted-recon; sid:200000086; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cock3.vercel.app",nocase; classtype:attempted-recon; sid:200000087; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"cock7.vercel.app",nocase; classtype:attempted-recon; sid:200000088; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"contact-pro-8291-d01.firebaseapp.com",nocase; classtype:attempted-recon; sid:200000089; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"contact-pro-8291-d01.web.app",nocase; classtype:attempted-recon; sid:200000090; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"creosrl.com",nocase; classtype:attempted-recon; sid:200000091; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"curmmgdv.email",nocase; classtype:attempted-recon; sid:200000092; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"currently541.weebly.com",nocase; classtype:attempted-recon; sid:200000093; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"currently890.weebly.com",nocase; classtype:attempted-recon; sid:200000094; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"currentlyserver.weebly.com",nocase; classtype:attempted-recon; sid:200000095; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"dara3dccj.wixsite.com",nocase; classtype:attempted-recon; sid:200000096; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"db.service4db.com",nocase; classtype:attempted-recon; sid:200000097; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev",nocase; classtype:attempted-recon; sid:200000098; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"debutcan.firebaseapp.com",nocase; classtype:attempted-recon; sid:200000099; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"debutcan.web.app",nocase; classtype:attempted-recon; sid:200000100; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"delivery.attempt.failure.ebbs.co.za",nocase; classtype:attempted-recon; sid:200000101; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"dev.stream.mornar.app",nocase; classtype:attempted-recon; sid:200000102; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"dnwqmh.click",nocase; classtype:attempted-recon; sid:200000103; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"dropsmartchain.pages.dev",nocase; classtype:attempted-recon; sid:200000104; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"dsjoting.group",nocase; classtype:attempted-recon; sid:200000105; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"dulb6c5p5.top",nocase; classtype:attempted-recon; sid:200000106; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ebay-mallwholesale.com",nocase; classtype:attempted-recon; sid:200000107; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ebt-lilac.vercel.app",nocase; classtype:attempted-recon; sid:200000108; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"echoredled.netlify.app",nocase; classtype:attempted-recon; sid:200000109; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"elbarco.percentadnp.info",nocase; classtype:attempted-recon; sid:200000110; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"eltritongourmet.com",nocase; classtype:attempted-recon; sid:200000111; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"email.mgb.modento.io",nocase; classtype:attempted-recon; sid:200000112; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"enjomugg.firebaseapp.com",nocase; classtype:attempted-recon; sid:200000113; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"enjomugg.web.app",nocase; classtype:attempted-recon; sid:200000114; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"error3456vhubhornbase.azurewebsites.net",nocase; classtype:attempted-recon; sid:200000115; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"example223.wixsite.com",nocase; classtype:attempted-recon; sid:200000116; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"eyeydhe.wixsite.com",nocase; classtype:attempted-recon; sid:200000117; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"eyttueiu.square.site",nocase; classtype:attempted-recon; sid:200000118; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"facebook-avip.click",nocase; classtype:attempted-recon; sid:200000119; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fame.pink",nocase; classtype:attempted-recon; sid:200000120; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fassehoizubra-7696.vercel.app",nocase; classtype:attempted-recon; sid:200000121; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fastdropchain.pages.dev",nocase; classtype:attempted-recon; sid:200000122; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io",nocase; classtype:attempted-recon; sid:200000123; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fla-1001.square.site",nocase; classtype:attempted-recon; sid:200000124; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"flo4211.github.io",nocase; classtype:attempted-recon; sid:200000125; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com",nocase; classtype:attempted-recon; sid:200000126; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fnuttlie.wiki",nocase; classtype:attempted-recon; sid:200000127; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fokeijonnekou.vercel.app",nocase; classtype:attempted-recon; sid:200000128; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com",nocase; classtype:attempted-recon; sid:200000129; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"free-verified-badge-form0-service.vercel.app",nocase; classtype:attempted-recon; sid:200000130; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"free-verified-meta-badge-service.vercel.app",nocase; classtype:attempted-recon; sid:200000131; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"g06668706.wixsite.com",nocase; classtype:attempted-recon; sid:200000132; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"gccndbqg.vip",nocase; classtype:attempted-recon; sid:200000133; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"geriodememerkezi.online",nocase; classtype:attempted-recon; sid:200000134; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"get-checkmark-for-you.vercel.app",nocase; classtype:attempted-recon; sid:200000135; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"get-free-verified-badge-service-on.vercel.app",nocase; classtype:attempted-recon; sid:200000136; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"gitanag.broke-it.net",nocase; classtype:attempted-recon; sid:200000137; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"gruprocuroipra-6493.vercel.app",nocase; classtype:attempted-recon; sid:200000138; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"h5.b9en.com",nocase; classtype:attempted-recon; sid:200000139; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"h5.metacoint.com",nocase; classtype:attempted-recon; sid:200000140; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hcghij.top",nocase; classtype:attempted-recon; sid:200000141; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hecregayatu-1014.vercel.app",nocase; classtype:attempted-recon; sid:200000142; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hejmtxxt.guru",nocase; classtype:attempted-recon; sid:200000143; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"helenblunt6.wixsite.com",nocase; classtype:attempted-recon; sid:200000144; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"help.accountsupportcentre.com",nocase; classtype:attempted-recon; sid:200000145; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"here-apply-for-page-review.vercel.app",nocase; classtype:attempted-recon; sid:200000146; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hgbk.ldgknhk.lol",nocase; classtype:attempted-recon; sid:200000147; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hhideiie.wixsite.com",nocase; classtype:attempted-recon; sid:200000148; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hitummoinneullei-5882.vercel.app",nocase; classtype:attempted-recon; sid:200000149; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"home-101067.weeblysite.com",nocase; classtype:attempted-recon; sid:200000150; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"home-103465.weeblysite.com",nocase; classtype:attempted-recon; sid:200000151; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"home-104341.weeblysite.com",nocase; classtype:attempted-recon; sid:200000152; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"home-105266.weeblysite.com",nocase; classtype:attempted-recon; sid:200000153; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"home-105929.weeblysite.com",nocase; classtype:attempted-recon; sid:200000154; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"homeattatthome.square.site",nocase; classtype:attempted-recon; sid:200000155; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hpnefhqs.motorcycles",nocase; classtype:attempted-recon; sid:200000156; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"im25.net",nocase; classtype:attempted-recon; sid:200000157; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"info.supercitrus.ind.br",nocase; classtype:attempted-recon; sid:200000158; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ins-business-home-center.com",nocase; classtype:attempted-recon; sid:200000159; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"instagaramgalochka.vercel.app",nocase; classtype:attempted-recon; sid:200000160; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ipv6.43-135-137-110.cprapid.com",nocase; classtype:attempted-recon; sid:200000161; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"irmt0ken.win",nocase; classtype:attempted-recon; sid:200000162; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"iujf7839iofvkbcu748.weebly.com",nocase; classtype:attempted-recon; sid:200000163; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"iwimwmiwi.click",nocase; classtype:attempted-recon; sid:200000164; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"jagej73796.wixsite.com",nocase; classtype:attempted-recon; sid:200000165; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"jfdjy.com",nocase; classtype:attempted-recon; sid:200000166; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kalyani963.github.io",nocase; classtype:attempted-recon; sid:200000167; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kexoigrufouddou-5902.vercel.app",nocase; classtype:attempted-recon; sid:200000168; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kl1k-ds1ni.neupdile.my.id",nocase; classtype:attempted-recon; sid:200000169; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kliind08.wixsite.com",nocase; classtype:attempted-recon; sid:200000170; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kreelo098.weebly.com",nocase; classtype:attempted-recon; sid:200000171; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kremlcup.com",nocase; classtype:attempted-recon; sid:200000172; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kshitij12375.github.io",nocase; classtype:attempted-recon; sid:200000173; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kucoinglobal1.com",nocase; classtype:attempted-recon; sid:200000174; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"kxbztydc.black",nocase; classtype:attempted-recon; sid:200000175; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"labanquepostale.jupiter-analytics.com",nocase; classtype:attempted-recon; sid:200000176; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"leddevotoze-3146.vercel.app",nocase; classtype:attempted-recon; sid:200000177; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"linnkdna-kget.wxxzsite.buzz",nocase; classtype:attempted-recon; sid:200000178; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"llahi.info",nocase; classtype:attempted-recon; sid:200000179; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"llahi.vip",nocase; classtype:attempted-recon; sid:200000180; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"loffaummuddote-4145.vercel.app",nocase; classtype:attempted-recon; sid:200000181; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"login-att-10221.square.site",nocase; classtype:attempted-recon; sid:200000182; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"login-form.world",nocase; classtype:attempted-recon; sid:200000183; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"login-online-outlook365.com",nocase; classtype:attempted-recon; sid:200000184; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"login-outlook-midstreamauth.com",nocase; classtype:attempted-recon; sid:200000185; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"login-screen-103134.weeblysite.com",nocase; classtype:attempted-recon; sid:200000186; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"loginaccount70.wixsite.com",nocase; classtype:attempted-recon; sid:200000187; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"loginaccount77.wixsite.com",nocase; classtype:attempted-recon; sid:200000188; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"luk6414.wixsite.com",nocase; classtype:attempted-recon; sid:200000189; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"luxlifemiamiblog.com",nocase; classtype:attempted-recon; sid:200000190; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"m.meta-accessibility.io.vn",nocase; classtype:attempted-recon; sid:200000191; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"madebybmr.fyi",nocase; classtype:attempted-recon; sid:200000192; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"maqpiexyz.click",nocase; classtype:attempted-recon; sid:200000193; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev",nocase; classtype:attempted-recon; sid:200000194; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mayfair313.wixsite.com",nocase; classtype:attempted-recon; sid:200000195; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mdbrvlfy.black",nocase; classtype:attempted-recon; sid:200000196; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mesageriepro33range1.weebly.com",nocase; classtype:attempted-recon; sid:200000197; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"metamsk-wallet-3.gitbook.io",nocase; classtype:attempted-recon; sid:200000198; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"metttaa-audddt-new-02.firebaseapp.com",nocase; classtype:attempted-recon; sid:200000199; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"metttaa-audddt-new-02.web.app",nocase; classtype:attempted-recon; sid:200000200; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"microsoft365-storage.github.io",nocase; classtype:attempted-recon; sid:200000201; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mikepattyjm.wixsite.com",nocase; classtype:attempted-recon; sid:200000202; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mobilemidasbuy.n3g.fun",nocase; classtype:attempted-recon; sid:200000203; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"monespacepro-client.3utilities.com",nocase; classtype:attempted-recon; sid:200000204; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"monetization-violation.github.io",nocase; classtype:attempted-recon; sid:200000205; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"moodengsol-net.pages.dev",nocase; classtype:attempted-recon; sid:200000206; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mwsiekdnfjrdufs.weebly.com",nocase; classtype:attempted-recon; sid:200000207; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"mxmxnmx.mx.zya.me",nocase; classtype:attempted-recon; sid:200000208; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"national-au-b.com",nocase; classtype:attempted-recon; sid:200000209; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"national-au.net",nocase; classtype:attempted-recon; sid:200000210; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"nbaaiqjq.group",nocase; classtype:attempted-recon; sid:200000211; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"nexomyacwv.weebly.com",nocase; classtype:attempted-recon; sid:200000212; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"nft-time11.vercel.app",nocase; classtype:attempted-recon; sid:200000213; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"nichcheck.weeblysite.com",nocase; classtype:attempted-recon; sid:200000214; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ns1.carrier-ast2-portal-apple.com",nocase; classtype:attempted-recon; sid:200000215; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"omadshf.ru",nocase; classtype:attempted-recon; sid:200000216; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"online-assist.live",nocase; classtype:attempted-recon; sid:200000217; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"online-promo-asb.org",nocase; classtype:attempted-recon; sid:200000218; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"openkimono.pro",nocase; classtype:attempted-recon; sid:200000219; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"opportunity-verified-status.vercel.app",nocase; classtype:attempted-recon; sid:200000220; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ourtime.reconnect-dating.workers.dev",nocase; classtype:attempted-recon; sid:200000221; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"owouwuowo.click",nocase; classtype:attempted-recon; sid:200000222; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p365kf.com",nocase; classtype:attempted-recon; sid:200000223; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"p4zv8crnrrha27so.94-103-188-123.plesk.page",nocase; classtype:attempted-recon; sid:200000224; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"page-center-manage.com",nocase; classtype:attempted-recon; sid:200000225; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pavan-patil-22.github.io",nocase; classtype:attempted-recon; sid:200000226; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pecinternational.net",nocase; classtype:attempted-recon; sid:200000227; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"peesom.chat",nocase; classtype:attempted-recon; sid:200000228; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pencairaanndannaa.my.id",nocase; classtype:attempted-recon; sid:200000229; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"petty.wiki",nocase; classtype:attempted-recon; sid:200000230; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pimnhv.group",nocase; classtype:attempted-recon; sid:200000231; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"policies-business-page-service.com",nocase; classtype:attempted-recon; sid:200000232; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pottatrebewe-2808.vercel.app",nocase; classtype:attempted-recon; sid:200000233; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pqo.hrf.mybluehost.me",nocase; classtype:attempted-recon; sid:200000234; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"programming--service--panel-totlyy-free-for-you.vercel.app",nocase; classtype:attempted-recon; sid:200000235; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"promo1.spik.ru",nocase; classtype:attempted-recon; sid:200000236; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"protocolsecure.pages.dev",nocase; classtype:attempted-recon; sid:200000237; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev",nocase; classtype:attempted-recon; sid:200000238; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-1778406e4fec4394901793111c187dd9.r2.dev",nocase; classtype:attempted-recon; sid:200000239; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-19b834342e7d465b9f00b3511325a081.r2.dev",nocase; classtype:attempted-recon; sid:200000240; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-21dd4dc659614ceb93e45a6de4434502.r2.dev",nocase; classtype:attempted-recon; sid:200000241; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev",nocase; classtype:attempted-recon; sid:200000242; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-2fefe932a6974485b987c9ba851b5c40.r2.dev",nocase; classtype:attempted-recon; sid:200000243; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-3a46d9914f494078a6d6237513e7a096.r2.dev",nocase; classtype:attempted-recon; sid:200000244; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-442ed822851244a689b3472ea2c6a950.r2.dev",nocase; classtype:attempted-recon; sid:200000245; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev",nocase; classtype:attempted-recon; sid:200000246; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-682ad3b65d944376b919745aae3c56d4.r2.dev",nocase; classtype:attempted-recon; sid:200000247; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev",nocase; classtype:attempted-recon; sid:200000248; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev",nocase; classtype:attempted-recon; sid:200000249; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-7f5cf36445d042168bfacd712e890dc0.r2.dev",nocase; classtype:attempted-recon; sid:200000250; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-803839714a924882a7bcc2495a26860f.r2.dev",nocase; classtype:attempted-recon; sid:200000251; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-8161de4a277e4ee8b532af34954224e1.r2.dev",nocase; classtype:attempted-recon; sid:200000252; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev",nocase; classtype:attempted-recon; sid:200000253; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-8376b5b2334844d193a525d8b8548fa5.r2.dev",nocase; classtype:attempted-recon; sid:200000254; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev",nocase; classtype:attempted-recon; sid:200000255; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev",nocase; classtype:attempted-recon; sid:200000256; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev",nocase; classtype:attempted-recon; sid:200000257; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-9163a97d70394cb499bdd232be6c2169.r2.dev",nocase; classtype:attempted-recon; sid:200000258; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev",nocase; classtype:attempted-recon; sid:200000259; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-98171471e0944ac3a5820ef719bf0640.r2.dev",nocase; classtype:attempted-recon; sid:200000260; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-a263e0790935412eb10cacc55bbced18.r2.dev",nocase; classtype:attempted-recon; sid:200000261; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-a291041b077742899b63a9982f04a56c.r2.dev",nocase; classtype:attempted-recon; sid:200000262; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev",nocase; classtype:attempted-recon; sid:200000263; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-b50adc5d699a4f08aec37102c2103da7.r2.dev",nocase; classtype:attempted-recon; sid:200000264; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-c0a934c950e441db96b882789f53c9ea.r2.dev",nocase; classtype:attempted-recon; sid:200000265; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-c2c250050109456396c933de259a4fea.r2.dev",nocase; classtype:attempted-recon; sid:200000266; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev",nocase; classtype:attempted-recon; sid:200000267; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev",nocase; classtype:attempted-recon; sid:200000268; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev",nocase; classtype:attempted-recon; sid:200000269; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev",nocase; classtype:attempted-recon; sid:200000270; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev",nocase; classtype:attempted-recon; sid:200000271; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev",nocase; classtype:attempted-recon; sid:200000272; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev",nocase; classtype:attempted-recon; sid:200000273; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev",nocase; classtype:attempted-recon; sid:200000274; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-e42cb528b102447385e3145197916f51.r2.dev",nocase; classtype:attempted-recon; sid:200000275; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-e4aff507450c478cbe3f77ad23d75035.r2.dev",nocase; classtype:attempted-recon; sid:200000276; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev",nocase; classtype:attempted-recon; sid:200000277; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev",nocase; classtype:attempted-recon; sid:200000278; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev",nocase; classtype:attempted-recon; sid:200000279; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pubgm.club",nocase; classtype:attempted-recon; sid:200000280; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"puffagroibrouwoi-8818.vercel.app",nocase; classtype:attempted-recon; sid:200000281; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"qasimk.com",nocase; classtype:attempted-recon; sid:200000282; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"qfjfvseq.info",nocase; classtype:attempted-recon; sid:200000283; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"quauwograssodda-3503.vercel.app",nocase; classtype:attempted-recon; sid:200000284; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"qysgyp.com",nocase; classtype:attempted-recon; sid:200000285; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rajdipchatterjee.github.io",nocase; classtype:attempted-recon; sid:200000286; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rechazaroanularaqui51.weebly.com",nocase; classtype:attempted-recon; sid:200000287; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"remote-fix.pages.dev",nocase; classtype:attempted-recon; sid:200000288; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"renggard.47-243-192-240.cprapid.com",nocase; classtype:attempted-recon; sid:200000289; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"resolvepanel.live",nocase; classtype:attempted-recon; sid:200000290; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"resolving--issue--with-us1.vercel.app",nocase; classtype:attempted-recon; sid:200000291; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"resqat.weebly.com",nocase; classtype:attempted-recon; sid:200000292; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"review-business-case.d2f7p3b7pucnle.amplifyapp.com",nocase; classtype:attempted-recon; sid:200000293; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rlpqwefi.pink",nocase; classtype:attempted-recon; sid:200000294; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rouloigeilleuja-9523.vercel.app",nocase; classtype:attempted-recon; sid:200000295; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rulemec.pages.dev",nocase; classtype:attempted-recon; sid:200000296; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rutinqqwin.shop",nocase; classtype:attempted-recon; sid:200000297; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rwftfu.quest",nocase; classtype:attempted-recon; sid:200000298; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"s.team-pw.cc",nocase; classtype:attempted-recon; sid:200000299; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sairanees.github.io",nocase; classtype:attempted-recon; sid:200000300; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sanseipecas.com.br",nocase; classtype:attempted-recon; sid:200000301; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sasklelo.weebly.com",nocase; classtype:attempted-recon; sid:200000302; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com",nocase; classtype:attempted-recon; sid:200000303; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sasktelcustomerwebly.weebly.com",nocase; classtype:attempted-recon; sid:200000304; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sasktelnetwebmailservermaintainance.weebly.com",nocase; classtype:attempted-recon; sid:200000305; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sasktelrectify.weebly.com",nocase; classtype:attempted-recon; sid:200000306; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sasktelscrutinize.weebly.com",nocase; classtype:attempted-recon; sid:200000307; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sasktelservicecentterwebly.weebly.com",nocase; classtype:attempted-recon; sid:200000308; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sasktelsupportsystemwebly.weebly.com",nocase; classtype:attempted-recon; sid:200000309; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sbcglobal30.wixsite.com",nocase; classtype:attempted-recon; sid:200000310; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scan-vulnerability-guard-v3.pages.dev",nocase; classtype:attempted-recon; sid:200000311; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scan-vulnerability-guard.pages.dev",nocase; classtype:attempted-recon; sid:200000312; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scanner-metamask-v1.pages.dev",nocase; classtype:attempted-recon; sid:200000313; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scanner-metamask-v2.pages.dev",nocase; classtype:attempted-recon; sid:200000314; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scanner-metamask-v3.pages.dev",nocase; classtype:attempted-recon; sid:200000315; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"scanner-metamask.pages.dev",nocase; classtype:attempted-recon; sid:200000316; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sec-sign-in.info",nocase; classtype:attempted-recon; sid:200000317; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"secure2-validitycheck.weebly.com",nocase; classtype:attempted-recon; sid:200000318; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"securecapitec.theprimepoint.online",nocase; classtype:attempted-recon; sid:200000319; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"securerpcfix.com",nocase; classtype:attempted-recon; sid:200000320; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"seeteressecalywoi.github.io",nocase; classtype:attempted-recon; sid:200000321; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"seivviice.weebly.com",nocase; classtype:attempted-recon; sid:200000322; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"server.0e7p.com",nocase; classtype:attempted-recon; sid:200000323; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"server.2rk3.com",nocase; classtype:attempted-recon; sid:200000324; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"server.8q3p.com",nocase; classtype:attempted-recon; sid:200000325; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"server.n6b8.com",nocase; classtype:attempted-recon; sid:200000326; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"server.v9vs.com",nocase; classtype:attempted-recon; sid:200000327; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sevvviicess.weebly.com",nocase; classtype:attempted-recon; sid:200000328; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shard.blue",nocase; classtype:attempted-recon; sid:200000329; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shard.skin",nocase; classtype:attempted-recon; sid:200000330; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shared-d7590.firebaseapp.com",nocase; classtype:attempted-recon; sid:200000331; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shared-d7590.web.app",nocase; classtype:attempted-recon; sid:200000332; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shaw-101329.weeblysite.com",nocase; classtype:attempted-recon; sid:200000333; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shaw-101587.weeblysite.com",nocase; classtype:attempted-recon; sid:200000334; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shaw-106427.weeblysite.com",nocase; classtype:attempted-recon; sid:200000335; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"shaw-107375.weeblysite.com",nocase; classtype:attempted-recon; sid:200000336; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"solutionwebsitedapp.firebaseapp.com",nocase; classtype:attempted-recon; sid:200000337; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"solutionwebsitedapp.web.app",nocase; classtype:attempted-recon; sid:200000338; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"solvetans.firebaseapp.com",nocase; classtype:attempted-recon; sid:200000339; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"solvetans.web.app",nocase; classtype:attempted-recon; sid:200000340; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sondfrom.dexlog.my.id",nocase; classtype:attempted-recon; sid:200000341; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"soyokai.or.jp",nocase; classtype:attempted-recon; sid:200000342; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"srdate.club",nocase; classtype:attempted-recon; sid:200000343; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ssy.hmb.mybluehostin.me",nocase; classtype:attempted-recon; sid:200000344; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"steam.poweredartsworkshop.com",nocase; classtype:attempted-recon; sid:200000345; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"steam.workshopsreview.com",nocase; classtype:attempted-recon; sid:200000346; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"steamcommmuty.com",nocase; classtype:attempted-recon; sid:200000347; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"steamcommuunity.ru",nocase; classtype:attempted-recon; sid:200000348; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"steamcomunutty.com",nocase; classtype:attempted-recon; sid:200000349; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"steamconmumity.com",nocase; classtype:attempted-recon; sid:200000350; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"stepsray.vercel.app",nocase; classtype:attempted-recon; sid:200000351; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"support-metahelpcenter-id100003498934.netlify.app",nocase; classtype:attempted-recon; sid:200000352; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"sv5gardens655665.weeblysite.com",nocase; classtype:attempted-recon; sid:200000353; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"system-portalnu.duckdns.org",nocase; classtype:attempted-recon; sid:200000354; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"talwgam.njmolada.com",nocase; classtype:attempted-recon; sid:200000355; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"taste.baby",nocase; classtype:attempted-recon; sid:200000356; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tele.zhngain.top",nocase; classtype:attempted-recon; sid:200000357; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telegrambot-resolved.pages.dev",nocase; classtype:attempted-recon; sid:200000358; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telegrazm.net",nocase; classtype:attempted-recon; sid:200000359; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telstra-100408.weeblysite.com",nocase; classtype:attempted-recon; sid:200000360; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telstra-100469.weeblysite.com",nocase; classtype:attempted-recon; sid:200000361; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"telstra-103234.weeblysite.com",nocase; classtype:attempted-recon; sid:200000362; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tiktok-888.vip",nocase; classtype:attempted-recon; sid:200000363; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tiltckshow.top",nocase; classtype:attempted-recon; sid:200000364; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tnomwzrp.top",nocase; classtype:attempted-recon; sid:200000365; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"toeken.im",nocase; classtype:attempted-recon; sid:200000366; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tonic.pink",nocase; classtype:attempted-recon; sid:200000367; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tooma.cellinsurance.co.zw",nocase; classtype:attempted-recon; sid:200000368; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tpdtepremu.xyz",nocase; classtype:attempted-recon; sid:200000369; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"trattujeilesso-3354.vercel.app",nocase; classtype:attempted-recon; sid:200000370; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"trbinace.com",nocase; classtype:attempted-recon; sid:200000371; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"treibrukeukonno-1395.vercel.app",nocase; classtype:attempted-recon; sid:200000372; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tuesmad.firebaseapp.com",nocase; classtype:attempted-recon; sid:200000373; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tuesmad.web.app",nocase; classtype:attempted-recon; sid:200000374; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tyyyyyytyyy.weebly.com",nocase; classtype:attempted-recon; sid:200000375; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tzcsjfto.chat",nocase; classtype:attempted-recon; sid:200000376; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"u.updatetrackgre.top",nocase; classtype:attempted-recon; sid:200000377; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uc-whatstapp-web.com",nocase; classtype:attempted-recon; sid:200000378; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"udxcady.wixsite.com",nocase; classtype:attempted-recon; sid:200000379; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uklifejv.cyou",nocase; classtype:attempted-recon; sid:200000380; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"updatemail12.wixsite.com",nocase; classtype:attempted-recon; sid:200000381; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ups-trackdeliveryapps.chickenkiller.com",nocase; classtype:attempted-recon; sid:200000382; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usbest.cyou",nocase; classtype:attempted-recon; sid:200000383; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"user-transaction-overview.vercel.app",nocase; classtype:attempted-recon; sid:200000384; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackdck.top",nocase; classtype:attempted-recon; sid:200000385; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-tracklnv.top",nocase; classtype:attempted-recon; sid:200000386; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackmcl.top",nocase; classtype:attempted-recon; sid:200000387; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackmec.top",nocase; classtype:attempted-recon; sid:200000388; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-tracktpq.top",nocase; classtype:attempted-recon; sid:200000389; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"usps.com-trackvmd.top",nocase; classtype:attempted-recon; sid:200000390; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uspsinfw.top",nocase; classtype:attempted-recon; sid:200000391; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uwdtsczi.top",nocase; classtype:attempted-recon; sid:200000392; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"uwm-onedrive.com",nocase; classtype:attempted-recon; sid:200000393; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vaishnavi1436.github.io",nocase; classtype:attempted-recon; sid:200000394; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"validatie-veiligauthenticatie.com",nocase; classtype:attempted-recon; sid:200000395; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vbbu.ldgknhk.lol",nocase; classtype:attempted-recon; sid:200000396; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"verified-this-request-badge.vercel.app",nocase; classtype:attempted-recon; sid:200000397; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vo4zzp.icu",nocase; classtype:attempted-recon; sid:200000398; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"vs41.github.io",nocase; classtype:attempted-recon; sid:200000399; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"walett-cont.gitbook.io",nocase; classtype:attempted-recon; sid:200000400; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"walletauthenticators.vercel.app",nocase; classtype:attempted-recon; sid:200000401; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"walletcomnecitt.gitbook.io",nocase; classtype:attempted-recon; sid:200000402; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"walletconnectdapps.online",nocase; classtype:attempted-recon; sid:200000403; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"watranfart-fdd6a8.ingress-bonde.ewp.live",nocase; classtype:attempted-recon; sid:200000404; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"waxed.wiki",nocase; classtype:attempted-recon; sid:200000405; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"webmaillshavv.weebly.com",nocase; classtype:attempted-recon; sid:200000406; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"weeeqweeattt.weebly.com",nocase; classtype:attempted-recon; sid:200000407; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"weigh.skin",nocase; classtype:attempted-recon; sid:200000408; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"weigh.wiki",nocase; classtype:attempted-recon; sid:200000409; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"wgqdqvtn.baby",nocase; classtype:attempted-recon; sid:200000410; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"wgqdqvtn.pink",nocase; classtype:attempted-recon; sid:200000411; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"whatsapp-rqr.com",nocase; classtype:attempted-recon; sid:200000412; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"wirelessvoicebtpaidmailinfoplay047.weebly.com",nocase; classtype:attempted-recon; sid:200000413; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"wscs1231.cyou",nocase; classtype:attempted-recon; sid:200000414; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"xn--metmasklogin-vcb.gitbook.io",nocase; classtype:attempted-recon; sid:200000415; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"xojautruffeuttu-4659.vercel.app",nocase; classtype:attempted-recon; sid:200000416; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"xraiz.info",nocase; classtype:attempted-recon; sid:200000417; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"xraiz.vip",nocase; classtype:attempted-recon; sid:200000418; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"xsuweamskeidjf.weebly.com",nocase; classtype:attempted-recon; sid:200000419; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"xya46.cc",nocase; classtype:attempted-recon; sid:200000420; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"yahoooooo-108560.weeblysite.com",nocase; classtype:attempted-recon; sid:200000421; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"yavanica123.github.io",nocase; classtype:attempted-recon; sid:200000422; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"yi5lq-syaaa-aaaag-acfsq-cai.icp0.io",nocase; classtype:attempted-recon; sid:200000423; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"you-can-receive-here.vercel.app",nocase; classtype:attempted-recon; sid:200000424; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"zeiitgeist.angelocachero.info",nocase; classtype:attempted-recon; sid:200000425; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"zenixoikitti-5809.vercel.app",nocase; classtype:attempted-recon; sid:200000426; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"zeznjx.shop",nocase; classtype:attempted-recon; sid:200000427; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"zwzcn.com",nocase; classtype:attempted-recon; sid:200000428; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"alturl.com",nocase; http_uri; content:"/hpqhv",nocase; classtype:attempted-recon; sid:200000429; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"ardilu.com",nocase; http_uri; content:"/descargar/kmsauto-net",nocase; classtype:attempted-recon; sid:200000430; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"did.li",nocase; http_uri; content:"/parcels",nocase; classtype:attempted-recon; sid:200000431; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"flow.page",nocase; http_uri; content:"/servicesatttttmail",nocase; classtype:attempted-recon; sid:200000432; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hdfcsky.com",nocase; http_uri; content:"/sky/indian-stock/dashboard",nocase; classtype:attempted-recon; sid:200000433; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"hdfcsky.com",nocase; http_uri; content:"/sky/login/verifyesign/modifyemailmobile/g3mail@b.c?status=success&digio_doc_id=did241119142331957uip6e3c979l3r6&message=document%20signed%20successfully!",nocase; classtype:attempted-recon; sid:200000434; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"is.gd",nocase; http_uri; content:"/djgj07/",nocase; classtype:attempted-recon; sid:200000435; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"pay.zing.vn",nocase; http_uri; content:"/pubgm/",nocase; classtype:attempted-recon; sid:200000436; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rb.gy",nocase; http_uri; content:"/go4bnv/",nocase; classtype:attempted-recon; sid:200000437; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/18ab5a",nocase; classtype:attempted-recon; sid:200000438; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/4ff03b",nocase; classtype:attempted-recon; sid:200000439; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/8wtcv4z",nocase; classtype:attempted-recon; sid:200000440; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/96a02f",nocase; classtype:attempted-recon; sid:200000441; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/c0d1afz",nocase; classtype:attempted-recon; sid:200000442; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/d2f265",nocase; classtype:attempted-recon; sid:200000443; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/eacc63",nocase; classtype:attempted-recon; sid:200000444; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/f9decb",nocase; classtype:attempted-recon; sid:200000445; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/mzhpkzf",nocase; classtype:attempted-recon; sid:200000446; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/nbyh9vh",nocase; classtype:attempted-recon; sid:200000447; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/sa2uoq0",nocase; classtype:attempted-recon; sid:200000448; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/tcthi8d",nocase; classtype:attempted-recon; sid:200000449; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/tnab363c6",nocase; classtype:attempted-recon; sid:200000450; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"rebrand.ly",nocase; http_uri; content:"/wx1eo7w",nocase; classtype:attempted-recon; sid:200000451; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"surl.li",nocase; http_uri; content:"/tvybxr",nocase; classtype:attempted-recon; sid:200000452; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"tinyurl.com",nocase; http_uri; content:"/carrefour-926/",nocase; classtype:attempted-recon; sid:200000453; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"urlz.fr",nocase; http_uri; content:"/t8vi",nocase; classtype:attempted-recon; sid:200000454; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"urlz.fr",nocase; http_uri; content:"/t9ka",nocase; classtype:attempted-recon; sid:200000455; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; http_header:field host; content:"urlz.fr",nocase; http_uri; content:"/talr",nocase; classtype:attempted-recon; sid:200000456; rev:1;)
diff --git a/phishing-filter-snort3.rules.br b/phishing-filter-snort3.rules.br
new file mode 100644
index 0000000000000000000000000000000000000000..8a38f0ec5ef87cd727eabc315e634f8f696d0978
GIT binary patch
literal 7345
zcmV;i98Tkb3J;7Zs%k$3KqF=0{QVA_R{!_8ocu!m(x61>{UN79Dxi!4RsiFdmR45l
z5ubprM1T^Xlh|3u_rdf3OHH~VEHo@(3t-r?g*IEG1bXTE{~0N+IY+iqCVjWdsoK=~
zf2xEcrCO<0>L~S3s%9gn7StN*gv~IE?XZZ2;GBnYF8nZnv9LhNP^0Bq|DHbu8)M1{
zNcAU=xy7yZ_4xaZ%0_X0bS(Ka{}fZM>hX`wW5N3ECy#$QE<JKzj~(l$U_vly{<-VE
zWcOvve}4PP<4@iPWh`G0@o;cIe)+$tK9*UC)kk~(>f28qCJ#7Z#jnR!>#-m1w^H>m
zUw@Yi;4jF?e#Pqd<2MTb-YMUH@<^#nU%>oNBIo39KY45nQTcjY4f<bI-xvI?$4Yf;
zmv<6X+tKI3drs>IzF##p{>M<^Dxdr2D?|S#-{$etKmWVG`IG<q+dui|2gLiqe)sXy
zKl%56{*!<F+dug0fAEZc8Or+g<KJrG@%KvG@LCUt6>UZL;~y?P+-+vR;_E3MTPpPj
z=Wc6#{a6SgRBznY#pb2___t!RQ1A!G!@A?r{MYgAUC^<NHpL$vh1^$Sseb%N7e72Q
zo?qgJUs-c$IVr(xqIm79C@^ahg_QGB7$ub{7)tNfcYvjCSjqB>-WOutFbb`VRlVsZ
zJ#cI9K#W#?@_y&1=rxg}k`u+CPd8~MI>p2|G9eW|JeHjw?#x<-F{=MZX*x5g-b50`
zq<)9l)_lTjt?`EFbUtgb6rNi=mhVN^$WIR9KCM1-qnXUCT~UurbOX1?92w1D2_QoC
zo&r?*WOi4VFD;q`B6VhJv9e5a5<0`fea1}{Mwzx$_z7X=a%dlnycNE$j~rUNE1h`i
z6tNc1C|i#?<L3=w-Y?_aRr0*?lS;GZVDyT%cqEGMTJ#)_;~itrdh6ZFy<7LV?c68-
z$T8~AuE#YepLXz(kRP6nlaN|Sq50fC9}77qo!u%O)@z{70LEIl!_zEp$WC7}%;ecY
z@d*JUa{v+80k_ABnZI!<eOvg2Gbd*&h|mR_hng}?m^I!?oazUMRNL@OI=ms3GCWow
z&uoh4q1GExYtV7{o5ggonttD$LOPMn;8r|pc|#g?E!TpHAV#k<YXI{3^MTh<W7&hF
zxTJrQ^<Zt~7vk*iO%r3#6>DXp6Wt)KvQqBn7dcv1(PDeF`pGh>n`RLD$up|c&QVOf
z@@s}an*AaXI+3CcT^+h<h%gc<U2EA<HFobfO5<vzB+)7lNF}LEbW#{&A&SuvXpM~G
zgqpseKzf~MQ+V%eH}o4O&JZTFAG;A`l*%QBJKae!T~(>E*XAfa`%q2xwUp9>Z*-^a
z`OK~s&r$~8BU&hmcv;spZx)DDuHD<VZA3&;nlBEeUR|t0D-Q66)|zRp=5ACgC(Biq
z<+=2nU8ogynSYny6K$@C9+f-VQYylswNa}n<Kgd~)sP%E65`MqlG>Tb@urpYtW{;>
zt6dnQ-2KcHIb}mACOJN9(}^)YykWY}pC6WcMuHdy?|tY`nUA}{X4X&Hq+H(%?Jyfc
z^+xI!8C6`Dv%HPeoQ|b%SJ@H_`^MxmhS5Rk3`E4P6jyFrJ&D`J3B%}eGnBLC#@cIl
zjNMTG><gomrWq;4g&ZBe{9&|B@z+7cn3{kXTjC#8r=~}iUYp-&j6vFkgs%NBSQv1|
z9DriMnlZJz#&n;f_`;03!%XWBYld-5nyEdWEG2Xv={t*DKjBPswcp<8g;Wo*`VBJ*
z!Hb+)-gRx?Ir<Dk(tIgWL#;gK=<^8$DnqjwGL%-aF{y_x3*?PnOI1mBR0>(q%F*W^
zj;o>ptF_G#qt{|>?bFunC|Sl5h}U!o9`1%|9DT+jYUKOI23<VgrL+QvTX<2t71m9(
z#=6e%ew^;l9zHnB$ix^`YFVw0#y4eSBOk!VY0yee{cr?WeNW4sx=>8YQVVpX4E%k6
z-uy9iwhT2N*pcd%3RAPxc8Vr{3_?-P*lRn7Aj3=$cVRM#{urcnI|`C>)Te&gFMeXa
zg_2qs-J5|su`cAy1dT4)ID{icryh(aF#Z^n=`$5da0Y|pcu7>j%HrKp(IbPlZ}yEu
zuvO9Ei@``iCH@(_W2HZa-n_%1-G$MM6GurH{r1W*SfptkwsQWy7)AwyJv|8-co#Km
z49KJvKYWT4Z;YL0o;`&6RPlNVp4%(On6F64a~za1=3q$e@Ib+*Z4K*|ky>Nx@Z*h9
zNu|qY&Onu)dzm!|Lo5DRK=d6{F-9riR-z=MRN+wLld-p|Y3iP2&?Xx=M%7{kTgxCS
zY$TOj(shC_lySbdaW>?&aWYc1FEAZ@-k3T$o-vi|Bgq?+(B)bVVRa|R<ry^xL`snl
zd*yGVMVYgACS}*SjZ=rCrRv(+hWVSqC~XchC}-`nrJ^sUUZ=R3x4vI_?PiNG2K{j;
z)v_!->ql#u24&eS`ibe$%`ho3fSy^`F_p{f1_~%%<HE0$mpQ%bjJnxV4u4GJwUE%c
zRSPkf;hkwR%tFq>8=_N4Yp&k>x1Q%<*R16@&xPB>KVTz=(9+2fwC?kea)caf7*g@a
z>lL;VRt^E<RMcS&HtvnxfMOvFhX^%So~c50HIvw^IT%KlYJTpmIZU$yvu_l=YB<Bq
z*x(v?tq9zv4@4Y-%UQ#@GEeHTR5;-c(MbX36P3|<bT#c90?qjX=x4|_@!73xck$qe
z6{Cj9LFwEUE><(u6xS459<U=3hk$PCl871)>&*LnwK~?Wz8nI(nM#b$6xzDxyE(*1
z*)SV-a*#H)>w?!)+Vtnv<}Kxpqi4aVWxU8nm*&760=gM`)993xs(`{9LMVB7<Lx%I
ziDOWrYHdi3NyH%_oF(@*Jz#LsagrnlcGKYn0`j9<B!?hv7N`YE!7b6J%^BFxPkpvk
z4z}j@1xh`UwRsLJ2VQgF@+=E50|3DOWZib`wRiw#fjHTt%OS}@+>90vxS^(rgij9a
z<`ov7v=oB-`7s?u7)F&iBQ*jnWk_1D*5nf4teUdm9;LLGF6|Ji;pJc~2a2<PiLF*o
zxr^5BWDUlkTuVFBGsTE|YDqoDsL|;#YA)yD)Lr5-sCgGFbXOSX*XNcU9ap6yhoEmN
z2WoT7-^LO;cJB-$VJ~!mJzLQ#2axkxjNKKmg2lGqD1_3sc75NEL)V|U$U*1K;?>&d
z=GV$kiXIH5_r*-fVZeZS#}9GJhS^UHt&^~_cJs<lqe?y6$L>Rc93)O<;B_XFCH83B
zQv9Omr7~GNBdmO`P%F-;7D&lK<1AupZbweG<wQpY*6T^dml&U}Z-&nk#(O!~o6%<Y
zp;%$`%-1W(LEChEv+G9Bs#7`Wnu9j98CSTWHiUk&^nN1;Vl!(ue1`gdSH8B+Djb5U
znR6R@jI(dC=JMn~YpVXc3*5=t`Py-$T=_%ht>Z8{IU{qEqVh+Y1rRv3wzhX+^y<_)
z@6LHR1U55u+eQwF@J@`cVzyCjAtZ_soA*e}jHBHAFeX(};Qvpc==y;}ur))|CRFL(
zzz7|$Rp$vi0Y+*<jqH0GrE#6)M50v(wL-0bWvy074v6Muw<F@Ry$T<(gdWX9L(8`u
zFwIq`AWb<0hLLLgH_Jy(k-e5`ZiQ2He9m@pj5@wBw3SXMRBnB<W0nJ)8Lq2v-3l4P
zTHV;LZSS4UAt0JXijK4AS}~yv6KY^WbPfqP1XVM0DTmta82Lrf7!0Wb)Sk;Qs)^Ea
z?z3%!9s`F^8t9^M1-ht>mK+$(^gUt4=b(nE07j0FE<6|a+|Vd`<<JiPhDcMdn#RZh
z%q(I%z7wsvEvY$|8Z%RO@-7D(^I(4WVrQ<1NIYUY9C<{XatIJ+-R_B^^ZjNib&!LI
znX)}2`qWKFBRM#jeZOZ6-nPRS45>US8&!G=sRong$$_-2?5#2|7|l`RMI>QpUFJQ1
z>g_DYzMD0N!f2p}8RDzqkxK1Kd6j27sA6V=xiTMN6us`?(cPjVNlPDOO6Ugba_}ra
zgQpmG7lG|7R(`$TpF@-Bu}N?Us%8A%!$w^z<@g9pG2O6D4y5I!d|DQ0A>>q(Rgr0-
z&7&NMOYJ&)j(Ku#pOk$F<ltQfwyBoBiayg=pYxUjaTypC`YTI9YSpK-5AujZ&@MyU
z0;6`aKn`o7JaC$~kHsh$z?-V=98aON95_sEV%VgmZ9{iTC<hqxnx<{K0b^9++TLrS
zZQ_`;j=w!E7zhH*KCO>(kT7RMQ_(p#R;+NCoAGi={4DjC1B{uy0UXZv95P>SvW7z{
z39p0jeSZr1<=|m{2LY}WbH@?{DAa62mJYarjfm_;5MyW)=H9<@fHF@AaEI<uR)X3f
z2P88E!Oi*f%U$>)2OTpCSR8lnPk7{{)VL{aVP`o6D^sQFYlX723%tk5DsB|Z!SuTv
z1k75%T5DhWTy4&|$|7E@lV~0}aG2M_N(-DG4#~#UV^JM8B`sC;hLxH!tXRO#A+eZw
z6==r;YQ3K!wdatZ!9Y+mJCK7ix0^?`4xf)hA~H`2Dc&p<D%GE318}W!wKN%xC-4D>
zgk>rdw}siy=qZ-jNy-0}t=$a6XeROGQnQxiS;U%2<d7uIAr-DdxVyMKvulf!RSrqh
zTz|tmykmIt@aCTzctDH9_$rO;H+}|<&G7>?-I;C#%pu{KeII84dOcrsU=GR6%&Ca)
z6mGEBnGneFUW-d*mBQa7QD?;=shK+>*^S3wu|S<e(lfWmBDnwB8ESU0y;RA1h^i!_
z1IOVlq%d+h1#o3sJm_&qR%TcQR}ZC7soceYS(9J}g*V&BYBMOa`%Dgr%FNz$VB9IB
znD~+N+Hz1bXHysPN3=-wMzbWURH&__<#Hf2qtx=jX_o)0XGXM@4e?yn*suJK`P4!V
zl4k#>E48boD^(hBNP?#0hw9C~9E{`uW&ZCt^yeIHjyZ48L#WTY!)gx1XDTDYUTfjN
zn9Ro>hA5xncYGa>__=-@h$Sj=Ffvblbgm6mct&XaMGjPE{iFMN|GfBuH){)rX~0*;
z^^ExXstVD@N9PT1AS(7p|NQ);v2q~gG69e4=hyr1@&*i2X^sdtbBv**1nV@NXv@L0
ztUT@zg1kC=^`Ab_hUH!5U|hb-<NJPjKlkPH-}-p<zhJs}RSv>sI4Oyl&&w=rgVp1>
z*^AD9{M>&&{{3S_+GSsIp!CVF({On{uD8+&3{rV1xlhUa2UFZm)r=f~%fIR$uXO-m
zcWg{mVn~kmEuDK?XUvexiMFDc-c{9j%;w$6<m^2;@`L~&!L-T)itA(gGGbzEEuOM`
zkFiL!br4Dn135sMD!d&+6<1F237oBALd_DhnweMz3I%lNmWIN!+m`Xx={h>*<S8Dh
z6{jp1MwH&|gfU&2O_rOcuP}in$wMThPesAA+<`Yc54D&zyWpk-s5OSqK*Abzn6b+c
zO#qo=nlEC-4$K)Y_aveN&Jj}4Ibnr{&nD+|DVr_JfGeO(jVgvww5F6Zlg{Pf$`a9(
zGK+<x8dW+2SNN8>IV+t)_X0GT=z$;-(_xxDyReW}@P;z(U1M*Ta55#KxJHyMxoI*>
z4Mv!@c4R4Fn~%zU)F(1Dve+OaSKx4DGYnms$S#4?=GXxR^a)`?H3zCTciR%e*!0*F
zM&!Qpi{RUgx2h^UqPB<)msd(xG{&Tw9j7QHbv!9PvXF?4xxgs|rEHn7?Q>AC2;Y4U
z+q%?*eJ<XEgTpXnRJb;cqKGQ1&rgcW2GQnXS&BWg(`10Is(>=}S|z}sYbdjZ3q@)Q
zZ;r8fz;=<S1~^O#*V2)_9X^ZQR}~Vjo{2DRWif5Y_loirOIaae=+4?Fg;p7C3@EPA
z#z27;dN^|=g&2<B3cmK3=h{A*LnBMzq#o+SNf@vfjEqc?wXzE=uz=pxVKA(rs*L8o
z_Swh{k24*SnRh6tQ6*G`B4h<IbF5j&s1-4bR*OhTBg>Kzl~U6^cn^zCQW%&BgDO-c
ztXht6DlaK2qnV+W&t-;czJ<~|0*dJEFj2;k0mE4)=~C%L)hKanDWFV^HssAy9m<M(
z^s1>Tn?(p=lqvXSYWU;}e6~0Z=iTg00lRiAdu__P^USobw|5&QxC(d{t{S8qnc@w)
zOP5ewZ)XJ^=3J^gHfTs#(nRo_gefAQ=+MT6#lp>X420p68f-!XwGtzI1{Bb!GHXIW
zVsvrYTFJ9V5UyQ4G=zdWka;8mw`>T*2R+h?I3dv;)dC6W3pKgyu9nbZK=rjG33$!&
zgN&7c!n!nLE<syRp|?-Tq(5>*z|~=HfoB%ch!T6tP?nLbmaA#2Mj@5TAQ8z_Wsge0
z<>5(IKs{t)D?pA4OW9sVgrfS?TTyuolI6mpy!PCN;n|{Y@XQ%dR0rI;b3`Z^v<gH)
znDFdIZ34=nB2l^e_Ib&V*D}Q)HdMg&j<@rEUFZGv=YBoRpn<F$Kv~DX<9YqOHDJat
z_4)VywSPbR8^O$h@Yve-D_(z^_~zO3d9R9tWY7kO!8-c?J>UL4C`5H<{Hp7t-%PK5
z`ux>ICOH_fh3f2lkN<Jr<LmViXMDe|LU;29nxeBmS>PSo*S`&}<+vYw_Sf56oONM6
z(3M)x91mnSY8=Rn-T&<8{o{9cY%t$_Uk+ewV3E4Sxnq%7({>zxu0QX`>q+{MgB{ze
zv!CBF<pK`m#|943uh!d388Zwog<BuA^zq8Cj~=+WH_+AR=f~swPw(qEpE!^oTg1-$
z>*IcX>+8oyzkbExf>|gzK(a|XUmrY#0qsFdj_-9iw@UH#x+wCprP#q3wBNPVrSU1*
zn>B`FR6iG95du4|Iec?SChSb<5#F7MSTg7wiUhkxfmo0Zv;f^S?6a9e(O*+kpzI!f
z$}{|%s7~6np)T7sAJ6H{Ew45#aoqvlWqm$<IdhIn%r$sFuw^%mQh4hEpM?1`%$9vH
zS|>)VpQWkz1#=EcSp|v^Et(5sl(>wx(h`X<y%vkjYP63&Q3f+8?D?;_LCvoFAIzw5
z)GfghD%dp=W75)Wor*S1d1B&FT-iq#3z6L-3)&w}df3_^J9esb77m4*y<S$@dLfaT
zi3l>~24fl?+jR=-xRf@P<kGUX!%>-F>jk6NacJjIYrM9SLm_Dce$Ap}>$!0!syFA^
z{4tGXG%&nnncoO4uNxkj0^Uy97RE@&p^&wKiBUdmrI_jXk^@e=Eu0%GW-KKn2>g8|
zD)*6tNjvq`z4IhG-IN1N8%}&+^*bC6dtj8dyv)0T(dxkXQgH)gwB=(zk1)Nq{5hS4
zW6<20pjn#~9ftzXR?2n?sKAnDO<|eT+OiK<heNSu)m<vlF*lg0b8pC@*t6F(&VpA%
z4n><yYuVspq7!N$UmWVAWZJlzae&bp-(E`?qX`|<U@&?`$u~ZI_}|aCM9^x2NH*AL
zC0zs=ZA<Kl6=I1op6SCzJjua|-4+H!x8xMK!*^Z2aW?}TiVB;_CEaNU;wkfI{9s5$
z*+CL+xWf^L;<`R{DL3E346JW4#b<9Qt(nrUY?iN)Q5`zSwK$DZ?f#6XadJ>w1M5mA
z&6i=68n+Ckm-{w_5L!J`mxIJwwrI9_Xfy0RfI|USOD1)r#a3eoX3~b(hCo3MeCkx_
z(NQwo&CWR#CN*q`qw8XKZRig_Wv7r6n^U*ON$IK5a41-6R8G^aDybMtZ%jYdRSpG6
z4cbzLu4*$nHtw3;T`Yb?ITR3e-LK%U6#|dXkUThuEDmGTREU?)FyE$N^vY`V$Uj?L
zf#MjnITXEA8Kk@}?V3|%ofB=f{gMM%8k*PYPw;2Rp^&7i-RNS?6YFTIUg{1G1tGnL
zbyk;MghOFRuXfi~B}ZJvp+KV<U1_grXX7}Ir;S6gL~E6NwP(2vzY=pfaG`x)V+z+N
zAI4x9xtwsv$Z1F6=)YDxlI?iRp<teGQBw-QEqcEQZF<szjlC?x7`69s6_3#B&?eE&
zq3E0is%EIQJ&`<?l9*Cv8UY*%$mx8|Gez)0%b|#yg{)?zIkz3#o?=W)sL4bWhEzfu
zmH@7PPY$AH$u1kUdvZ`S7wi2){i&@6YH|QF`@DW^c`h~icjr(D%%#RB;-nXPZ+4x5
zli@9nV$k4b*|k9}6^?`LLdHKRMkTGew*_~1Xp{q9nYnHEwBYmP_D(fMa(oASkLtwU
zHX)-(4sPX+b`+K%l%@^)x^NtY+l}mw@s=ZMe6|xqst0ApQa3^jrKn(zuxczfmQ=*j
z*?ZmEWJ5R<*Rs;e_E$||t8BU54^eU;F0aL^vG?(0>NWPkdZ<CFo1*E!G-~YY@nV`Z
z=4WtnkStYLd5TL>upGe3K5v(+#eOKr!K%#qb_JFqx=d%@P7V@fKAk{ii*S<As_(}u
z2a{5Fkbg6%gzQA}v@X|@da@8}7)G6%=Qh(K4h5ww58Z0HZdBN!YPPl1b%Wzjtjhj9
zlm2`TPWHq?j*o7gMT;~-jL&1PupMh<f6vl@Q#mxQG8jPX)f2mRr92KY4$ZC%>`R?Z
zA)=)kZ8XxfL*h*BSJi|9I^oce%E|?W4{x|Yu559xhmqgvc3EE7oT5XH*Fl%((6q|f
zFL<LHDHMk$QHH3^1o^VTdA@OI<=BOYuL}|CVgzw$24!$#xEUt~aA?qEV2b%&2V;`!
z>&v~)8ruwWXozIl8q+O;I5aF$*YBx^vCgl|q0x|~wZqjo>$<rfKrXFT0J~%z9_~&L
ziJKg#$UeV{EkY_$@4}(ckkLD`PCJU77))!RQ>UGCt8&003)MS4q1D`$1zW9+>E28y
z7;+FIV}EC$4;zw0D=@`y!)Fc+fgED*(k_Hhb|m*)5;}@WF~4uny?+l5&3x2LajbqM
zl8J6K{n{vUXzpVU-EcxA3qsBsi$lL(=_cb}tlV>X-?~-?b}26ot?hSe3=dvfXwFV;
zm>)Pa9CED>64e!{RK6z8Q%~{R4RbnB$$^R-Y9EaBPP9|4#LU=bBrv2L|KKM+-)^<M
zp{3&gTpt^gbTPgj5PWT`WuyPYJGM;!s<Yp><F%dEVoW-U*^zGt!48Xsyh8rIhXSo8
z*7uY{!zZ5yM~-{4ymCMS)6nuF2aEE77N4%+_FkvCp?8{@Qt%n9^`lwKDWsmy%`LX<
z_r|@W?DzLI)?SQkJ+qg;J1E;~V4J-Tkd<_i!|eCU^x1o5mlnR?f|9d$E978y4AJ*h
z{f#q!f9Cf0#z;N?I}4@#Ha~Z?Qu;ra?EjJbo$z&?)Ix|!XsMK#%+ToQQQ2vjyvqI0
zS66$-@3>@F6+HTx?EbG6bbk?Cs<TV;{{B%EP-s0FDtvXRs<Y4a*$v-K6=cN7PkZwZ
z#dQWf*PWQIa+}v+uN=-#AI8kr+fs+uq~~}(3gUHLuhaPL;oe?n#R#*32ij4SRxeAZ
zX4*-vj#ss({scLgpGJbSQxBb79%zLeww)8OL@lk<q;+zUy`fcd7QxzH1zN31yG#!4
zOl#zD_-x1iNt|eVP2M=)+jMTUgWN43TY7bmw4>auwr(`KN7_mKS|iM=SGIrkt?4vb
zueZQ7T#_JCZ(sK1e~#Akp5OUF4mj$=uN3dH?DCQht}dHoe-0}LH1+vt*?;(wzgD%5
XCq2o5P&Hub*iJjJ8nqbwo_eGnRrGEx

literal 0
HcmV?d00001

diff --git a/phishing-filter-snort3.rules.gz b/phishing-filter-snort3.rules.gz
new file mode 100644
index 0000000000000000000000000000000000000000..fd2579342e032971d3d9a56adc84da99b3fd150b
GIT binary patch
literal 7859
zcmV;k9!%jMiwFP!000021Js>eZ{)a@hVS=R7&Ey@fJh@!-)>-m1$Ka3%qEM;1X%1%
zK#@l(x+qens4C09eh<s;p3NdRqUPdkO}D39cB%Cg$;0>X<K_2Hzvy7#`RP9|dc9~n
zJ^k(HpPv3|oe$;H&zpf2!oPg~^tVNc0P6XP7re?C%Xs}uQ9SeFxvu{kfBxg!qCKq7
zPwYvF{pt7H<M*FN53d_ox&Hxw=TB~iMNIf_T|!va=O2EU@She#F5UdYEX-Ya$VP1f
z_#c+fyZQVc-~E%8VAqs4e{VkCiWm8-+q{go=@zh$UyJYm;}c%%vVC4l2YCTwuHH@W
z;)kyvOaAX7h(X|0gaIEOck%SQKmFxDe*F8NfBfZ1*!?N{*Qek8_+P*L`17Ct?Wb=q
z{(fGk=kNZ{9X);h{^<_Gs_}zT5J2Jw{N0zwmH&PLp};?n8jO0nxHWuvlFkOO;rTm;
zkFu%NCASd1`=fOdZwr5J#JYxkfoBl{%nM#E^MLRA^0aD&MfLGuU!FYNp4pc_5Fp`w
z$ujA*jh}4%_z&Z7LO7h&B`=dON=g__Az%#`2wLWM{T45f1XU4&!Uj|HRhvtB7^9|z
z(HoQ0@EbxHUCH~C4ZkIX(_@!dlo{)~j9~y+u-Cliv8y{w)ls7AcwN*jR=K1C>ItEU
zK?Z-ruPG#~phO~3zpVKRa`Um_e72w)cs*(<f_64HZZbBntBgmXR$-+qFz_v2ELtUf
z0F2fLVDyZj?_w~JkDEP=!)f8T&4%nlFc)<`?>C!PO-p)MYd$%wjF5}%9c;d>`E@$X
zRgvNf`Ub<cYKzS<+pKZ&3O-5nF-pQhD0N@`aLFeRaJ)%T5*OlPmlzNwm|QH&VHQft
zLKrpW`1firSB&fCFib}Z#=zvAaaUoi2GmJe*E3!*&Z>Oa-ro<?k<u7u3wn|G+>3|!
zTXO}sqez^T*q8@xvPIh$F$<e1A*{$2u^YUG&)-Jp=QYO*=UN@+WVARpBZBjK@%o0^
zBG-rWD^5yP%y2ssHaICQVS~VGh~M8*x>-(2KP-#cGwbeIaPeLN)kHQ3HNlA<i<1%(
zKCEyi0FsgtVaBTWq0R40u<LbJ+Kw*1iV`<q@PonZN!5~+%m@LKL`)O;CsFE{AMeOf
zRV>!Uvs^tnuDV6lbdIVl=uvg7&)3&Yc*x@=4kIyQNZQIc{!;Yq*}~$)$c&q`ExY0@
zS4okp=4V4;SrOw}!QZq5tc{%2^;x=_8l9djHntc-nx;QXM@xhRL_n~jZBAFpmLgcw
z72R1dV!|UT#LotYYX32f8aAa}5?lZOgiX7nXjMTF&ELF=GkEFZz9ObVEZifRIfFz@
ze(V=~Xnb&9pTVM~KJHl%+liroij?Ts!UdoFIx+cex^mst1y;SS+1Km+hSQZ*P3$vR
zcPrQQ5s|8)#p66IW{<(rDLAu0s3IjsZVs#4#Tk{&!eUwZki<kvhrAEk=Gq^Ipd>hk
zsxDZUQWiBOaWRN-A3zH`x5k*cxpBYjo4C}|`+DJgdK>js47G;x4RkYdTiR*7t#382
za=nZgIpRc%(e`@yV_>8{2JEu4yR%a+w{X+B91qVO)tnU2dfWV#Ig4cj*)Gn^J=c`f
z2-a3-N3C>v*Hu@fctTrRn-ocES{z-8NnsL5Lk^^_l0YbFhhg-vK4$)5h5<b0T6P8e
z&TV_JZa<Nq)RgqZpr>CSXP`*w3ynpDLN+<bH3co28%o(BB&{KANJ#}F<n;m`7|Y{u
zQ&FU>dv8dI1+%Wa!rML3cp6d~!HZ3L;l;WI*f4u<ixcvvAte{WW2S_kon&oDX@|hR
zE?zxT1xcxhusznMS&nzQ&N>fnVfnl#EJ|xgiHc1dg>P06r?%E@6^k14wam9Q1F?n-
z`_X*B5Q%Z}9R{9MkfhYb*HzWAC(ah{7QCT7>-x4TdEc}#`Wrp&Ns)z;;*dfw&WrqQ
zKfL0#El6>gIa^%7m$P!<mF&+HQOii7c@Lx8V%IikVXv%C7l<t<MYe)g7cfh_QS7UC
zR`RN>tEO&q#U@Pn>t1a7&bM65ODs(+%#`5LmZY%5q`k?I1(`89%j|w)m10}bVtWhj
z3iiY#LrY1e$cqU1Z?>tjZAhVk#9&gfqR*w#^6+SG+ft)h;Rg1E>TfBD5UKHhkcr&+
z!#ma5o)*YrTuOO#q%_7$+#OWr;m&fu9Y!IgDPFp^EbCMhQX;|#J?|)wAY44$g;yuK
zo{p4Gh%tE(I^-XD*I^h^!oaSAHA$OOJ5qYU$t%ya3*tmK(>271$}=!6F_`uY3@HJC
zPlOC{{2}Y2ONlC2K57qf;ZkBI)b-Q><Jy9RlIuxH1rKiZCZ&LSQaWMt^E|0r4sp%q
zVH8da#p4sRW5RP{ytywaGIf1%hN+^+6zAE%pTVM}8<g;(R8qd2S*6%h(hX|JKUdyY
zYDl7?Bpej*avaAdYdR^jN|Z7iSkq@!rv}lNtQFOe6-8G1^>xRL1K4Xf=6C1EJgz}~
zi1fqhM&FV81coh0Vb3azzNZM4rYcxbkb*Hfj*{n}cbt!LN4SR^hGE5`%HPFdK1Pb~
zmaoBsnDg0rD|}LkQ4$@>-e2cS(&#E9WyGnxTh>|lATL7O<N+2&%7{~~FD^tw-O0P{
zcts;6FE%qYvR>-A<lry~C0T)8&z{Y~nES;USn+-mIw3~NlM{xJnds7yJ}|*Z*>Qrr
zI1kEzIx)-6NZE3N8HC3!bcrQogHU$KqrJ*eC{hlcV1n1d*~wuZ4=J077%9We$0$TT
zPeUH}d)bh%&6km~+ywjL=53lzYHmi#aPu2fqUI*$vI*WhUsiQ<yKDnSy^l?!;vHr8
z=jGOfrNE4o;U>Jr)iuC*d17#akuu(d9d>nrQ#_<3#2&&1dOP7q#7G%%jzYrV+%*$7
zy`&{bq%1c_F+;u_-xA44xonPj$8d4_eH*;U+NN(#NLEt5nn)I65_>X#C1tHSzO19j
zYJra|eo@)$Xz;ldI@fY364VhXw@rkJRzvJe&?9BJIT}}S#`4cIeiDj@l58055bZQR
zEGa)-)`R;z4j?$sa;1?}7$-s4b-{?grgX%lY&b`|1<ZJ(vbgHQB$On@=&qn&oV9Ru
z+nF#=N>(g&IjpxumHTSPwj8c(62*P)hS&F<7kas;Pbe}{&YPnL$Ue^6z?*&e_GZxq
zyZCCZccMs1nQ{Ij=nO%8(*6dVloZNTG)>dBMRO);A?3_DNom#aI^`(w4}(w=A`{j=
zr(nka{1x7H{^783n5iPg6tc&f`C0gDj2zj1sv98X!WrTIS%CcNJL>EiQc8Lx3M?z8
zeDK(vXF8+|Mv-#jocy+UhZ@r91#{4*>dP}_MM<1o>U`+ICdKuh7Dw!cqlI45oB}DQ
z&5N8a`Xy!Bl$5h3Msg36*hSc)eSUSK&5*L!yuiyG-rhn!ZHG6iFj9`17cgK4gGur!
zg-6O(Gw$8ZzaFr*EsOKv!+R)+tR_X~A^SKYC2FIG4*=erhWnY8MM*harr~<xU>-)w
zGV^lL3bZ~o;X}$V^P<Bx&)CCS*o*<4)m_KWR6SAx!p-nF<fS=z5(OjWtNDplR!w~t
zi_ycX%5NJdlCd~FteQ8?S*(&ER?qvhSQRlWyjlDcpPiWzB4wa?SuBi~*EOGAa9-}x
zz<L;nlB&=%uT#b#NSSEHg?~BfS?q0f@Y|YetMb7gX6i^Wt=TtQt4ENCN*#PsWaw#u
z1u+RP<|$4!Ualv0W;0R-ntHi4c~xettnqJ~F;<*7jDV4H)YN_s#T6_Hc6%6vl8n&X
z%h+~huibdN4svU&?!*)$DMw9x*YkbGuW9SENLgsUU;_WrmTiA(@P(9t=F6yF(kdAx
z!EhC37gqO8nZ7KBlv(B#-khHNHo8qIw`Fx-oJrhC`C?uTyJl)-R-?w-7Nrd&*_$#_
zCYV>FQQ*aM-_j!kDL2fk2QaSa&-6s3JTMVxHgZea8$rtQ@``T_`i1ebt<&QjDLc#S
z7AFEH;|5_^QUOuY3D>vbJ?u*656kz%D3tVp5reR=8!Y&8+(!AbEqDo^35#8B&@yQ;
zCMgF?14_Zo1@{hF$*MDp)k%3-8g1=WS&>~Q2>Jc(?fua$4cq(sVJ=GY!5DGTN!uz(
z`B{EoBrIwpWoK#JIErnaqe=~sRjjH{v>#ITmXBkzvyW5UIX|_3fRxwe2UlF>8=Ys&
zVbx8_-tq(H^Q<zr1>@YcZ0eLwiImgjC)Wp1Hf!}^X%bK0Ok%6av8@vGi+H?w$;y*Q
zk}y(Mm=C<q<t%M+CLJVYiun&%?I|o$YGS)K*lV5QAtfueH={?GwV3sQWtIX&$^~<N
zEECPJ=E1t^K^q-*%y#qJ;SqmQrkFGSXxN9@=i`2O3m7R+%vroH8s7Hzv;lrnUYN7E
zJL`+gVOP8AO>QVE7IB}Y1;}2tuolUD`p#ccCYiI?N1;9Tzh|N!DTB;e4gO}vJ#FBH
zlr!cGYdo}D!{S|8dSNFxVL8i4`DDh3KCjp8E{uVYJtl3Uk3+&JCMowz<O(6~qsMeu
zh0MY|EBIMk9#U4A|C}(*qlc67#hkVDZgpe8^f6n5^Vs^52iG|%OUzkcVZpoIU*;2$
zo|7`goE=I*l(|Z*!?x$PobqwAhmlB$4`<<Fa1fpBQA^>AdAWtCcy*HL0VidY8S#RC
z7ePCl-Lx~0XD6B%DdFLwm)x{EgE28A3q(%JMRUHd8m`KYFJ5iqi33(SDJRYOZGN-!
zTaJI;cY*2UVH!%B!#<jkFxVw$LsHrFG-(nR0CQ5tnRXCDzrMUCIRkT2o|zWj+`J2U
zznusIq)apI7_tx@_*wdV6({AGX|=pOyco_6rgKuxnRaD)JiAuMB?oKZS==2e9><=V
zG&)ME!OcRgm+|=Nd7P9_=I8Vq-nU*u9*-9|jMLJ?K@~nbgc=f#&g7(QGTj39s!@Nt
z9H9=Q^rTQ?0NAV!`>(bvYY<^uPsDLj_L*+;v17^~w`uWhnG%l!2JX&Z!6&5^q+B%J
z-EH>`za~u>a8mA>OWD-dF{L9SWs<p6@3&5R>-|OWc6GnmVbz?Jb>_o>;bX^IHb=*!
zBnd&vKXVZ`VY3AzgvmHhA59_UkGX)<v5>xIgDI&XDVxj%V0CjI&w)S8(UIb?QfM!P
zwJJ`AilmJjoRkOV0wL@vPOO}i!{wr9d%2~JHITBfTpX$b4gYJS@gr=1HR?<V*rfa{
z7Z(i(JPdG$jCVzMLbsCgw_ILbe(@tlgu!eOf0!_|O3K|5lcmXvd5+in=K6@W(Spf>
z3ufOx{2@>KUUE{tmyg7k<?Eua2_qAvj4cr*IO)u%pLp`L3@LNVWg9ZaIDi<rY}>M8
zvJ%jbHOO)7K#E4xx#vlo9W~Cj?W&@IY6Mx8ebvWZ93^8+vaVICPvz{XarQ%3R%OMZ
zRaH|D{a6%3Su<AhS`-~i<RoR1896yqs#3D4`-W8#hQ5TV7L9@m;p>8@ax!Y1*czFV
zBXmPojcwDn1&F4>qV0ujRdRW9a-1+iUvhzjRn=j|?ONFnqN~|Z%c@A_EQxWJqH0v%
zvudpRs%Sf`vQ6B6%SvcP(Ko4_6*0~VBarGa>8u&voM^g!D65u(;Ia{Yom`$ZG0vtC
zwGtp3Hi)Viv1gHet-1#4p<|Uw=4_~Oc3h}(Xlm7Cgl(IlXV_3{A)u6XqpDO+YI>+a
z*~15cBB&WFsbpV@b{rVi<A(QwC&ycAdZ?AqKs-ynRiYZ1>M9sjF^+wWuXSyi%1KQR
zwPP*EvZ<<C6%}VqH;h867FBQ87fPnK&zhPZ>WZ=}`<7Lr$I6C{wH>6y;;030x~3RY
zIjQNPjx`KLp5Sc@6`(4rQ8SDsf>xYYklH?LPL8vWE2`?Y!+x{lL$72F*wLUsDpdo?
z<w;Esb+Iq02VNp&RVjw?w&vJ@4qaV!V{-mkQ`19TH?~8IP<=C0V^N7pU?Z&yh2d5;
zZE|^1(?i_=F*g}mjqOua^?;hMks!Mo6YfE&R8DGos8cnokf^|H1<SL<WK7m5>P0bD
z1shYx6KZODsAo+n`c}0?l(s|F_gIMkQ{B02If^4;_*rH#vx5R8Zi_xMZ_-ETf@On*
zB>`za{e<kS?&`&K6=D{Vc}`Z^m9~qoghGGl@<&Cg0a_J?(`3#L9VaJ@3CK8ymbN8h
zMXO%2o(!TZRqA{~jZF{rT?rzgEoA{Zo&j^+RfSY-*$=8{lJo2an;rt$LuAqRMNeu9
zYHuhD&N#2@Vc=4fT`FgZj<YWdT0$IZTUvF{J!60EyDE+`b;DCRvFRbk+O~!sS`Ums
z#AQPxDq2DE!Wu|RWvWhSu<4<pE*MBX(eyp!Wkm-uh_q!<L9i`|U~MWVHa)}(5I%9P
zq>z-BVgOkLSxehN;!SujSt=(sJ;b5q>Y@Pk0|B>gNZ;_D5Fue?fc8!2#HNQh=|T9l
zeJMIYWg!O;wY*lehWxB7lIIhe79HnM_KmE20_~|J?ImHQ5{f~>Qj;Nh{Os^?_FW<B
zY7ixbSUZS<lnRu+EL$boA(a!G9^#!SCF^=BVEimp32Kj%rYd{hkP75NB4>+D4~Ytr
zF$yV}0QuMPmeH;zaGiozjP*@2CpJAK8qt)j1S%=0=s@k!MivYb79~IrrpDVAn;sHf
z&p;DUS*wz&3Z8TV#!~?Adl*KOIkD*>N%~qzA#2tO(D7|Q3^gYu1^w5@0Vb6bn;w$1
z;zM0^kf&6Xwxp{iP}XG+Lu#Yy)OpReM#ssNs*9G^1*dJt2T4@hGEouH)&)t9L)i3?
zD&hiQ(R0$hCZ`#s*d;Fn>)@vCljnz8Y<ftw(3c8mxB(#RmJX^>UB&t+iD<)9*R$IW
z9jAhng+a$GC2d8?x*7%+S+&qj2`^IfvKE;h8t0r(>u?mK!zFi=VxzNqaCY6T&bqEV
zvpE)(ne3f;J>OC`FQf8~y{oI*yu7E_FIT9HWA7`2n{0G&;Z_Ki5g5hJ+-#VH$^GHS
z$C7ljVbUFrU4>ranHl(~t32VxgvuWlF7Lvg%vomEi8*#(b$!CwtwQAz>*O4Lz?J?;
z-)xP_AJ$1Tj?9UiwpkU+sPz^6JX1ogLgg3hq_@*1Uxyl!j_#u}i+$6)&TDAzSD9ry
z#Efk9XIwr|`Njg_orM$O0+n~{yBPYPC%qy_E-KY7WN4R_n@Q$uUM8&`Y3_*?DtlQs
zE%#k2oiExPKKG8wI~FARWc4WZG|BbKvc9g)$R|`LvTmK^EP46>hRR3QtwEdneb*-U
z7kj*AP^pVu1-0h)Rr<r{s8Jck`aDQBXUm>*ei#IkeDLu!xRKCLQpGtz<pS%O@lr1m
z0ODwKyk0Xw<^1ZIzfE$o>3V^na(#_FK~8*h%XMaY@*|&>*{tSryj~~2IcJn{VUCp#
zPB0UM%&QM}mTrGRonWK**o+MD?pK3K2Py&{nE>C+aCru`#)k@589>dRp=$6^dH#|a
z`gy9kT7+QlQ~%L3DEuG#UWbryeOapchllGv4Twsc4E$YCl$@!;L{NFkdd^I?tq?IC
zd)LCr#+5mdZ6rBgA*ifo{}<s2yb2kfiS}c$1P1iLY%5QY5!7VW2{MYB>`Z5?5tE(3
zLZwP1&%7Q@rcKI9B|&9J`}VG>vW-nzKsfx-<2h+O>(Ie*7K=*rJY3}B^eh((`aggB
z@E*qN(c!s;#|5#3wnAl0>m|I{Ne@tLdhAxG&-tM8qxDj6o7SgNO;o0|?<6`eWV<A>
z5PU3^yOAUoijSqcleBiJ@v)d@=#p3(d@NhP`6L!xYGHc^Gw;uYGgKPk64SqEDtQ>A
zM~C5W`e>Chg34z$V!&03w(g6Qr40!x-`T%_rByT}sGMd2XwS-`gl=%IBn(02Gy5H@
z?%K0h6dzVYtJ7FDKCG6s^;s-blEF@E^rruOuZRKgY%pw*^QFeb4j0!Z12g_~YxO9p
z659xsPpr2_C}-zf$d9;=pHgCgpmK!u_F->K=ho%d<86aVQ#iq5_&$Evh@kRx_5P7x
z=HUmkdTox|)e}_ytv>E4%NM&#(6P(~9}7msJ%1_j4V7c-o9sJ|fA1PjqH3^F0mMA7
zAt_5o<-+<0&HAd&cD!-`L1ni39cMLbNNk-RAC8&VS*PKkvQ7mY2m|bqzU7>tvPk{h
zg!5X5y~t_#tWl;#`FSgKJ)yA*Ry+xjM2kv9Y;`<RC5><Dx@pcPhN#R@-}|UO%hZ}R
z7c0LB5a!2gh!Rw0s6exiFbJFLY$qmIQbX0KfS{rBfenwt7??yvkdw@x7c(*tu)!V=
z3@tL4SaE5vA^SX-cw*ldDznm0wC9{q%aEY5BaM4TgJT&CO|<Av#%@#wq(721XXngO
zS&sfmMk){zC&@5riJ))6-m<Ri@=YI(eyDsz1AGRL8Sb7E$Wd8^24m;_>6RoAR4T#B
zn>4vT-bql21Zy-;Idn`=8F>b4XAqupnzZq&dz}vAHh=DisZc3{ML;&|<h<q|kLO_&
zRMNn~rLI@0C+WS-2&6D4GIUgCoWTv+u%!C41eM!na8eI$y~*`vjj>rt`ua>Gp%MeD
z^fMD@*Y;4kX?|x)T-ihAm>C|gulVD{<}_61nBmF&RRx<;+nu1Yzg+WmiHmy>#QAM>
zGDW+g^0{1jwnL-%0No~w-6!Q<!=w~e@xhsRoH@*h%D8g9O<Kw8mh*=_yjq0HyYk(0
z;sN%uI@3I;JS*45XRlx&WHbhI(SpfCoYNdqqFZ$SaY>Ar6vOHV=|kELNKkP|7aPlX
z#^b)N%x>}Iy4+7lJ5-*Qt6yH5^FQxMeoGmiP}y7lm1r_s5>bPeXy#KAQHz%-9#Kpn
z>d+E}<(@>;qb1sAkwS#Z#WE6Uqmrh9QJGb)y9k~?brJ|FnXu29HBvaxK`ELCl?&y@
z;LV0@x}>B@Kf{a4kMeamo&_zlP3lRHYz-Iqh34_^l3EOtRM>`L%_lM5%;lC(b~+4$
zNhN?F)$j|E1^5)W*q57QHZU>D6JiyWPvvIm^SR`jA5JPzxm0eRmM7u^CXuki6@-w*
z=aFcz_I4bJqOz(4Bw+d>&{^lxI}k<XTlr>#ux%vQ;Z&1V2(b)c1@W3rNisR1s0=E1
z7AGDQb0JegG_1?vlcG;ZHdrHMF83wHS)QVDs@&O!6#1@i`Y;A2CGlyqIr$6Qw)8a^
zipqo%FytNnfC~<1m|9d!dc35#1yEEblW&ZqZi7lbjCXP0f=SsgOi>v~{y~zk8;GJZ
zihQl@#ic!WPg#ecsB9s3?PT0E^RluY!oswOaXOmUEfaebv^^2nP}xN8p8K*QWy+ch
zMP&>5VX}B&C;BE%cGM=@_;5n0qB4g3uvf?|+^UpZLs&D~)cuL%0+l=DhhzGg;tNSp
z`9i)ij&FLVs0<)K{JKjv`<v9_s?G#COnTwt!Dw^5wg*M!_xNBJ`})etqN|(Y+_3?Q
z%JcETHfA(uFcKxta8XpIj}Ki>_sl;SV;Ow2F=Jf$d&Zg0HD8JpK1{j+)It`m!QnEc
z-eh)>?!<gCMP&^6lv;;TY9DfDMmYfq2R@rLNTITcd`hD~ETn%S=&bIFGa>?&XXH~p
z&GjRtq!vZx7x~<u+$4o_Oe%s+VRh4AF<x(4o&Mov-!9AjvK=PHq%4>ddRl)@Dx~Mk
zjm&+!%^sw@&5oZtrKpT2g%<gw|DJkbF}V1{oS3AEn(Y2M^!)dzpOtBRob(JKP8J-d
z#w1@ZLUDh4{QSm-7k$%4XpjOvSbqB^n7<4b`o&>>@>Tg?(+%HV3+WFT3mtr$t%#4~
zZ7|zGPx9MH;*<XjIsdm0EUf-Fzw&4c{4b$LZGRV*|E|Sv(5ot1mStap+#_XQx2s+n
zNqFD(6LHPIW_SzSjK9I_*BLJ1pH&h6MJeKg_a~}#njZf+{NImBfoY$Q;wKUHI$n$R
z+hI&ha%^Fb{0VQ)H}jJ~x(?%foE25!(;*)pe@{7DI+*P^Ca#L>gJTAU#-Fg39UE$P
z7`6L?s8p$f42MzsFNoUhfp7HasbNZsFUZ<Atf<ss)bb0W@<NnM9dFj^3$ltzRZV>u
zm3%=|$vAJwVO07BQB^M_KOBQmxsLuS>ioPcx99P|)O<l!GdwQ+b~()Y6%~_b)oSm>
zVb-rGnF0?N-5pM$=~vWD!LWfegf~ZN>#wMq_K#B9c0bID%O2HDKb`vv+hh1}hdFVX
znVH8g&0}-soK$voSzk4W^H)@cslfZpmHSECcH7|%gsALOe~q%g9Zt|ud8+;zC7X`-
R(jT<ae*rw^0#xFG0RZGNO1=O9

literal 0
HcmV?d00001

diff --git a/phishing-filter-splunk.csv b/phishing-filter-splunk.csv
new file mode 100644
index 000000000..2034d248d
--- /dev/null
+++ b/phishing-filter-splunk.csv
@@ -0,0 +1,463 @@
+# Title: Phishing URL Splunk Lookup
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+"host","path","message","updated"
+"1111365dh.net","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"12931-coinbase.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"215323.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"260aesthetic.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"3650947.cc","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"3659ll.net","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"83291-coinbase.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"94-103-188-123.plesk.page","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"9825057365.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"abctrvabc.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"acclimatizable.fun","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"account-update05.myvnc.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"accounts.google.auzen.us.kg","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"activebusiness-unlocker3.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"addwsrbh.green","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ahnp.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"aldg.ldgknhk.lol","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"allegrolokalnie.pl-891241214.buzz","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"alutipcentra.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ambil-pinjaman-daana-payleter.xforms.web.id","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ambulatoriprivati.it","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"amev.ldgknhk.lol","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"antail-conv.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"apply-now-to-receive-badge.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"artsea.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"atmailupdatewptnskmdinfomailacct.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"att-101072.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"att-1041page.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"att-105714.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"att-105819.square.site","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"att-inc-107097.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"att-login380.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"att-login522.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"att-service-102155.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"att-sign-in-105669.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"attcom-100762.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"attcom-106808.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"attmailservicenow.wixstudio.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"attmailservicenow.wixstudio.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"attmailsrvrdesk.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"attnewmaill.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"attyhhhhiiii225.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"atw-tau.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"authsyncs.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"autoreplyattmode.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"avoid.hold-managert.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"azbin.ir","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"b45018.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"baiii-wong.cutvi.cfd","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"basvuru-online-yap.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"beionfidi.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"bet73nn.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"bet83039.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"bet83054.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"bfrescentremebermainsetreouytnoy.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"biggggggggggg.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"bitnode.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"bitvavobtc.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"blackhere11.serv00.net","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"blss24att.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"braucrarasuteu-2470.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"bt-102124.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"bt1business.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"btuan-dan2-resmi.top1.my.id","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"buildingdesignsusapdf.s3.us-east-005.backblazeb2.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"business-page-property-897432967.netlify.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"caipora.xyz","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"calm-pothos-3b24c9.netlify.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"carrefourarabiank15.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"catgirl-appverset-nya.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"catxtokens.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"chat.94-103-188-123.plesk.page","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"check154109.click","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"checkseven.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ciente-a.org","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"cieplo.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"cj12143.tw1.ru","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"cj87335.tw1.ru","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"claimyourethrewards.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"clickbait.design","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"cnsa163.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"cock2-iota.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"cock3.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"cock7.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"contact-pro-8291-d01.firebaseapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"contact-pro-8291-d01.web.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"creosrl.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"curmmgdv.email","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"currently541.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"currently890.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"currentlyserver.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"dara3dccj.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"db.service4db.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"debutcan.firebaseapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"debutcan.web.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"delivery.attempt.failure.ebbs.co.za","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"dev.stream.mornar.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"dnwqmh.click","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"dropsmartchain.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"dsjoting.group","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"dulb6c5p5.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ebay-mallwholesale.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ebt-lilac.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"echoredled.netlify.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"elbarco.percentadnp.info","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"eltritongourmet.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"email.mgb.modento.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"enjomugg.firebaseapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"enjomugg.web.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"error3456vhubhornbase.azurewebsites.net","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"example223.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"eyeydhe.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"eyttueiu.square.site","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"facebook-avip.click","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"fame.pink","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"fassehoizubra-7696.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"fastdropchain.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"fla-1001.square.site","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"flo4211.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"fnuttlie.wiki","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"fokeijonnekou.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"free-verified-badge-form0-service.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"free-verified-meta-badge-service.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"g06668706.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"gccndbqg.vip","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"geriodememerkezi.online","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"get-checkmark-for-you.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"get-free-verified-badge-service-on.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"gitanag.broke-it.net","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"gruprocuroipra-6493.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"h5.b9en.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"h5.metacoint.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"hcghij.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"hecregayatu-1014.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"hejmtxxt.guru","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"helenblunt6.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"help.accountsupportcentre.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"here-apply-for-page-review.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"hgbk.ldgknhk.lol","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"hhideiie.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"hitummoinneullei-5882.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"home-101067.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"home-103465.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"home-104341.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"home-105266.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"home-105929.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"homeattatthome.square.site","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"hpnefhqs.motorcycles","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"im25.net","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"info.supercitrus.ind.br","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ins-business-home-center.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"instagaramgalochka.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ipv6.43-135-137-110.cprapid.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"irmt0ken.win","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"iujf7839iofvkbcu748.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"iwimwmiwi.click","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"jagej73796.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"jfdjy.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"kalyani963.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"kexoigrufouddou-5902.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"kl1k-ds1ni.neupdile.my.id","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"kliind08.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"kreelo098.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"kremlcup.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"kshitij12375.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"kucoinglobal1.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"kxbztydc.black","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"labanquepostale.jupiter-analytics.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"leddevotoze-3146.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"linnkdna-kget.wxxzsite.buzz","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"llahi.info","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"llahi.vip","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"loffaummuddote-4145.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"login-att-10221.square.site","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"login-form.world","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"login-online-outlook365.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"login-outlook-midstreamauth.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"login-screen-103134.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"loginaccount70.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"loginaccount77.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"luk6414.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"luxlifemiamiblog.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"m.meta-accessibility.io.vn","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"madebybmr.fyi","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"maqpiexyz.click","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"mayfair313.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"mdbrvlfy.black","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"mesageriepro33range1.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"metamsk-wallet-3.gitbook.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"metttaa-audddt-new-02.firebaseapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"metttaa-audddt-new-02.web.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"microsoft365-storage.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"mikepattyjm.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"mobilemidasbuy.n3g.fun","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"monespacepro-client.3utilities.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"monetization-violation.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"moodengsol-net.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"mwsiekdnfjrdufs.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"mxmxnmx.mx.zya.me","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"national-au-b.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"national-au.net","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"nbaaiqjq.group","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"nexomyacwv.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"nft-time11.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"nichcheck.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ns1.carrier-ast2-portal-apple.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"omadshf.ru","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"online-assist.live","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"online-promo-asb.org","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"openkimono.pro","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"opportunity-verified-status.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ourtime.reconnect-dating.workers.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"owouwuowo.click","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"p365kf.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"p4zv8crnrrha27so.94-103-188-123.plesk.page","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"page-center-manage.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pavan-patil-22.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pecinternational.net","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"peesom.chat","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pencairaanndannaa.my.id","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"petty.wiki","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pimnhv.group","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"policies-business-page-service.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pottatrebewe-2808.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pqo.hrf.mybluehost.me","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"programming--service--panel-totlyy-free-for-you.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"promo1.spik.ru","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"protocolsecure.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-1778406e4fec4394901793111c187dd9.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-19b834342e7d465b9f00b3511325a081.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-21dd4dc659614ceb93e45a6de4434502.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-2fefe932a6974485b987c9ba851b5c40.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-3a46d9914f494078a6d6237513e7a096.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-442ed822851244a689b3472ea2c6a950.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-682ad3b65d944376b919745aae3c56d4.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-7f5cf36445d042168bfacd712e890dc0.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-803839714a924882a7bcc2495a26860f.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-8161de4a277e4ee8b532af34954224e1.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-8376b5b2334844d193a525d8b8548fa5.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-9163a97d70394cb499bdd232be6c2169.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-98171471e0944ac3a5820ef719bf0640.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-a263e0790935412eb10cacc55bbced18.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-a291041b077742899b63a9982f04a56c.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-b50adc5d699a4f08aec37102c2103da7.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-c0a934c950e441db96b882789f53c9ea.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-c2c250050109456396c933de259a4fea.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-e42cb528b102447385e3145197916f51.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-e4aff507450c478cbe3f77ad23d75035.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pubgm.club","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"puffagroibrouwoi-8818.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"qasimk.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"qfjfvseq.info","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"quauwograssodda-3503.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"qysgyp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rajdipchatterjee.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rechazaroanularaqui51.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"remote-fix.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"renggard.47-243-192-240.cprapid.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"resolvepanel.live","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"resolving--issue--with-us1.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"resqat.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"review-business-case.d2f7p3b7pucnle.amplifyapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rlpqwefi.pink","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rouloigeilleuja-9523.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rulemec.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rutinqqwin.shop","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rwftfu.quest","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"s.team-pw.cc","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sairanees.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sanseipecas.com.br","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sasklelo.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sasktelcustomerwebly.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sasktelnetwebmailservermaintainance.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sasktelrectify.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sasktelscrutinize.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sasktelservicecentterwebly.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sasktelsupportsystemwebly.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sbcglobal30.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"scan-vulnerability-guard-v3.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"scan-vulnerability-guard.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"scanner-metamask-v1.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"scanner-metamask-v2.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"scanner-metamask-v3.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"scanner-metamask.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sec-sign-in.info","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"secure2-validitycheck.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"securecapitec.theprimepoint.online","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"securerpcfix.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"seeteressecalywoi.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"seivviice.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"server.0e7p.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"server.2rk3.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"server.8q3p.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"server.n6b8.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"server.v9vs.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sevvviicess.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"shard.blue","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"shard.skin","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"shared-d7590.firebaseapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"shared-d7590.web.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"shaw-101329.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"shaw-101587.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"shaw-106427.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"shaw-107375.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"solutionwebsitedapp.firebaseapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"solutionwebsitedapp.web.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"solvetans.firebaseapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"solvetans.web.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sondfrom.dexlog.my.id","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"soyokai.or.jp","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"srdate.club","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ssy.hmb.mybluehostin.me","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"steam.poweredartsworkshop.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"steam.workshopsreview.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"steamcommmuty.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"steamcommuunity.ru","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"steamcomunutty.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"steamconmumity.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"stepsray.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"support-metahelpcenter-id100003498934.netlify.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"sv5gardens655665.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"system-portalnu.duckdns.org","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"talwgam.njmolada.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"taste.baby","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tele.zhngain.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"telegrambot-resolved.pages.dev","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"telegrazm.net","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"telstra-100408.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"telstra-100469.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"telstra-103234.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tiktok-888.vip","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tiltckshow.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tnomwzrp.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"toeken.im","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tonic.pink","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tooma.cellinsurance.co.zw","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tpdtepremu.xyz","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"trattujeilesso-3354.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"trbinace.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"treibrukeukonno-1395.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tuesmad.firebaseapp.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tuesmad.web.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tyyyyyytyyy.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tzcsjfto.chat","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"u.updatetrackgre.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"uc-whatstapp-web.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"udxcady.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"uklifejv.cyou","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"updatemail12.wixsite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ups-trackdeliveryapps.chickenkiller.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"usbest.cyou","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"user-transaction-overview.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"usps.com-trackdck.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"usps.com-tracklnv.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"usps.com-trackmcl.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"usps.com-trackmec.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"usps.com-tracktpq.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"usps.com-trackvmd.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"uspsinfw.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"uwdtsczi.top","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"uwm-onedrive.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"vaishnavi1436.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"validatie-veiligauthenticatie.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"vbbu.ldgknhk.lol","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"verified-this-request-badge.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"vo4zzp.icu","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"vs41.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"walett-cont.gitbook.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"walletauthenticators.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"walletcomnecitt.gitbook.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"walletconnectdapps.online","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"watranfart-fdd6a8.ingress-bonde.ewp.live","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"waxed.wiki","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"webmaillshavv.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"weeeqweeattt.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"weigh.skin","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"weigh.wiki","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"wgqdqvtn.baby","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"wgqdqvtn.pink","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"whatsapp-rqr.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"wirelessvoicebtpaidmailinfoplay047.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"wscs1231.cyou","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"xn--metmasklogin-vcb.gitbook.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"xojautruffeuttu-4659.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"xraiz.info","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"xraiz.vip","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"xsuweamskeidjf.weebly.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"xya46.cc","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"yahoooooo-108560.weeblysite.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"yavanica123.github.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"yi5lq-syaaa-aaaag-acfsq-cai.icp0.io","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"you-can-receive-here.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"zeiitgeist.angelocachero.info","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"zenixoikitti-5809.vercel.app","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"zeznjx.shop","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"zwzcn.com","","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"alturl.com","/hpqhv","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"ardilu.com","/descargar/kmsauto-net","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"did.li","/parcels","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"flow.page","/servicesatttttmail","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"hdfcsky.com","/sky/indian-stock/dashboard","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"hdfcsky.com","/sky/login/verifyesign/modifyemailmobile/g3mail@b.c?status=success&digio_doc_id=did241119142331957uip6e3c979l3r6&message=document%20signed%20successfully!","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"is.gd","/djgj07/","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"pay.zing.vn","/pubgm/","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rb.gy","/go4bnv/","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/18ab5a","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/4ff03b","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/8wtcv4z","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/96a02f","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/c0d1afz","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/d2f265","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/eacc63","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/f9decb","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/mzhpkzf","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/nbyh9vh","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/sa2uoq0","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/tcthi8d","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/tnab363c6","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"rebrand.ly","/wx1eo7w","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"surl.li","/tvybxr","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"tinyurl.com","/carrefour-926/","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"urlz.fr","/t8vi","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"urlz.fr","/t9ka","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
+"urlz.fr","/talr","phishing-filter phishing website detected","2024-11-25T00:20:55Z"
diff --git a/phishing-filter-splunk.csv.br b/phishing-filter-splunk.csv.br
new file mode 100644
index 0000000000000000000000000000000000000000..260f73ae1c4e6521cf3a91a89bb3622fd92f22be
GIT binary patch
literal 5905
zcmV+s7w+i71{Q!EYxe*2`@314xo;*vI7E?2VHe{M1r$oRf=$r2{eP!l(t!&X2Ec?Z
zr+Je6Pvrko?D;9$?n(7_|Cs@Qwso4$0uz?7z^qeB!3k~vpbG^B1qBuMpg0sXG&J1D
zP{nrtfF{PnwO#)5b=l%R><_>GaZPPadHFId`2qiOY$HFv{<f6oIDY){^=}7q6aMh)
zxcV~)=S1j#W$X_H`$Mh&`^PU|fAc<4#rB6^{42oy^}AG-U-3eSb+f;J@5e7+CGI(3
z!9V<3dp{1tl_m8J+~zxPhwXxjB!|oIBSY$EhkyL?)ll7R1dCtx&7mK^eANZh{_txn
zh(D$Goxgr9sjmay!PLE-&+ca}%Ll%<OiTY7I&AUvA3xX9`p;i~?vTSjfBm^J5B>c0
zXSqK-{QU8gbI#?Y!)gO#e*XINKdzFmN56hnRN~H8z>Xfp%l`UvI}_%0VI?QNq?{MZ
zFa~;t1lLkXv|ltaz}8pn$<r&n{}qQw#>h!Cs|@x2<d5C99T(y(g@vDJ72!-0KF@>;
zNskTNlOFXEfl7L2p_w*v(wR>YIN$3D&ST!@J+?-h(Z}dkzoMb-qgz?FOtm5c$AxMp
zoEhqm3y%ktq3)J;=;_lU2Sek?=ueiBJ85$GVw&#vnKvhq*=)2o&lU>fgPD#-pUds@
zJ)PJG88UL$>=4$5XfK3twdz*dQ-Yv2Yd$I$CmuHn$MHN=wy@AGEYG|?=~lMesb#~Z
zmaRNt%L(bRk=b&gxZsMq@%d0YJ$gEP=p4}?Mbc=%lf?JmUE0Wz@&k6rBmiU}2izMz
z)%0z@o0vu~bTkFJJI4mS)O2YIW9f;ePQXDtcY6lq4rwF4<nyo^|Bhq3NiG-Zg;eyI
zP9zS(f=5MowKuFxC;JX*Ye##pqv!VAL&~xICWpZLPA^2a-J9>i-U(-%89@PSTqLPf
zif=RE*O0a0>h9T@TRIEU^cLssnUsAB)-Y=dBBphI%b7j9t3|b%MY86Xa3;9c)E<(S
zOi~V2Pm_hr_GKrWF*6B5p-wZKfm$uKlMd!`O}G9ZeS}nKxs}RIQ_mV^G=L4U$#_w+
zaU+q1_qwiYN+}7U-{QMShtcKg!RETHPnu>^soCP!Pq#E0!Gxa@H~QM{?As{dfYD3E
zW4q()dkM&>5G+Ye`E?7zs<Wum;N#;`rl}%j$0^PDoX`J&gLpekkax3f+diG59`}G%
zFQ2vwvAkn?g3}4*8`Bg;mU)S1duyR+I%1<?P%q=%f@Et%Nhy)5<c0dt&qRF;1h%zv
z)Ik`y{*fEzi)nM1N{%U{!-FG--N>A40&m!7$)rW>kX9i40f|}cNQXN*tUILKuvaYO
z?z!CU`WswYJ^&KYU91CFVN#U(31@NLKazN;yJAJo>CnR+#(1;Ib6aadL7(i6d9K3n
z6)LpRaS)*lYX)el<fq_bGIqpu&ZNWJRCOPGoI#TXso3^JdpS7WZw5{w0+VvGFKDB|
z5h87pjz(l{En!SkVHihlgAY1U$b!R3N8X)ev1dJGwnj-|CsV7#*;2e~My_~BN2x&H
z_XqD_+;(!5zLrL$6Uy7{n_5v+nrTqMCCE>%8?6-&4O8$`S639{{=u6|p`=!mHZ<@h
zrl2j1bcsP>KT7)W4Nm1S9=e2l;1M{E6Klgx@(snU`&(8HH;5+5zvWaAC4}LtTr18j
zmAwOD7pewuEwo%U#z7?DrVs|PN5@w3svnYogh<*iPV0DO>oFTCHR`Pm((X*L#lBWl
zm%yvuRM$>ANS*c_Ajl)i4frJJB5fr01WBbsRSvTFr#x9`pv@h8?{h0MOW@Z6<20s<
z%nYp7{F(%5&WckihANg;x6Ge6>b@`Gq&itBs7ci=y6x7Aj~iz+{GBZWns+#d^*wz7
zD#+mdgX?rSILfK@NCk)e??WMDj1!q=?}-BGiQ|(cY7P#p<OY-@j1gJe>xQ%=f6b9z
zrN#^3BN|j&&K$AnM)#19?imrNBU-8dE^n%ayr7zbxkAyoMtz|lptpHa{X&lDUTTI~
znwawS+Sid8sagtc&e;44DR=N~Xphp>`h-#>#>;vbo145o^i&q(wM7RvQQ8%nsH7T;
zQ_)*=oorHXxXzd~qS>n$HViYy_rc9U^@T2ttO@y`Vtf=LS=4LlB`;;v9hvu{=WXe}
zI4XZ|CwEbr@TDH+K9;3@oDqRaLTCA-q|(#54!4#nfI0=AQ4x_njTNX=+WiwkcE~*9
zjdxfPKYP6oOhZqiu!D$+z?qIlo|y<c(nF*(!bNBe*OETNRUl@vQ<K(2XuX4i?3;Sy
zqeUPZ0DyckXaae~4S;w^H2H(I5+-h-0%0MqKs&dh1m{$<9wzHmcH(KNx}`K#m%XU{
zp6aD?YEB_cRD?BzJ?+5j#yoo8(oyZmGhxoX^2GEgIped)_V0s>hnB9LN04{R(Mb2?
z3$SaS-RpA;mX2$(L)Ip9qJzDOK~GQ<EzL)nQW0KpuOuuYk0|P>Pw89OG)=Q%Q)8bi
zi}yLW*Fw*f?XSd|O28d=tWW$TDzOH6J&2v~SjixX_Pm4SuHHoKnw3rMa{oxlk5%d_
z9do)^EPqJq0}~O<XyDc2M=j~7Kqh6GaQv*AI*U1(Rnx<cREL1Z%<QawS<_>B)wiOr
zxWEm4sOH+IwsWT7WAE>Gr^{f3XW)t(X19&pTOE>*JxUEhwvFQ`wd+J6Q94wSsFYJ1
zA>^def)Q_T__w&HvV8*AH3duw(<qnv*!Plh#<6Xfh@NMWM7%Gdpzh>kK#>Vqs!79B
zN;04!Q_xyW6L@Qdg%0!%y?=){6WF^R8RPnD)GS<>Oxw{O!%4f){Vp+&N@})U`xFF@
z7n*XQuF`m_5tR_Jlc`m82P>#6JEpThg?*U@xwk&0f@5Af&WS2XxYUG8LpWy&z*&;&
z-q{l~y;4Rz!i`5Xv$Uzi^XdFBYM%b2DP3v5_H-rwNeUmZ;KN8`JO6+lF+4U#rafW1
zAtyUYmcW?z#CJ(c9kGlM${^aZ4suL-Zv06?<2lic;|OU(RkhA@ODP9i5wty<yk|w+
z3bVC6LC=c&=Es3J=h~WjdT=3)t~+{6Qlu*ki+JYuyxphY!BZ7h4Ag5IILNPojy^~X
zbjf2JsbeJ`VsK7x*f3mWf{801B$BJ?;YVyK=V!=3o(pz*z2BdE9DC%5whh)K7LsUT
zm@#Wxi4n%Ww_@CNB#JA2D@+CF#JbWyA^44?LtH+R{JXRT<jSVPl+hjMKslyRbR>ai
z$)1AfoUD-0Xi0B8G$ZnoO9kRxP37G)tb4hVjD-f8@tl;wF&=*Xc7xRJ3HIbn3Fo%l
z*<o|yn?(5=jD)5_&k-%TeoBkG-Ck+D6K0-XN5c308NlABw!>9&Wu(9kEe$`Almo8a
zXGHQ!kTW!_(zX3N+ySO4xuiEqdvNvK;@$CAJ35!zQxhJwNa+X+Ppyt>YP+{5xjco`
zoeb7V{tNTm?$~>mZQf&q5IV_tk!MI1h3lXQrLQ2I@sZ=bH92Y0dZ~^Vzy_@34e*g8
zd3Zne8a#Z8OB?PfKy%}!SuQS%L~wc`j3q5u=_PMT<@$kbN&;FUM_!l6diex7Q`x?Q
z+bz22?Idn#Wg{7Tqm_SGOZW^qK57`z0Bex!@BN+kH{IX#a|7Lnf`#kEfCvntg?c%5
z90p*LvI9u3$4e_P<1)U>euKZxo!I2qi3dmLIG;0Y<>XfxF602U$&FK+FP)~cP3wY4
znrQcWbR63&H)V&=)@X^MrXyWwEwxTndZEy(>p&|U0?nBak?YG$d8WPOLXTQd(++&w
z$f@6=c;;G%K3e@WWz@>AsR`e<oY8mU)0JkP9zC%($7w288P_OR84$B`$VoqAWgqN^
z`kb?`xz-hgX~jT~5GrYga&m!lH_#3^A(I1o+K3Rn`H=(tg=$c}3(iCLKx}2Fwvs4#
zd$NaA0dfwLCYyj69npck-x_W#9cj<&*}oQ!k?%t6tP4dioQkN6uyn1W!wZRU=!Dj;
z^&GE4*Ba@5dx|DE!!W}#<t<w8n2PPRB;@*t+fI7v+kNX%q3UXhPK_B(+mW8V@$9-U
zAlK(o4-{-Te!ti;9N}CbLKNN@skm2wHfr=S&gfwRO{<_g^%*lOHld2>m9)w-Zmi^-
zdp?^GEPO}nW~rnSXo8xwvym|;HE<_|1~zl}EWtxi!B5&wTzQ0{CsApb0xBhyW&$3F
z8u@q_adxwcX0nDMOp}_l1#bd}i4G%LDPXcjsaZQa8*d%Vnmg?kgC8V8O~G2OqOyva
z8Ky9a)e^@g8en!xQ=d`-!z{$CxljtG**d9=KoEWctIPU<69XLp{lp!>FpSbFZ*`a_
z)NbY~q^WNf5Tu)Quu4fYIm@k48UUr&Q&2GRp$Fl>Mm<I4gSQe)bX?4O5*9?=ZH>nX
zZ9MmxFy=)bW`!}Z7_9~?XCqG&U(`OzNhuwe5`3Cn1Ro3+I9nF{KArq#CTD34S73#j
zX931}FO=0Frg>s9O?-Uf0Tl>iP$AAvO94?TtCbK6(^NQf%LKF9%ucFVI2*ji04QLR
zVZyS~F)|)%C!|!fQh{3uTIevlS*tnrp}%LIqj6@|%1%y2ra-|gK(he$WTAn|VLvkd
zMXn91ptLgrCy##Cj2jn1x>wL#apRa#3Wl8oZ@gAf0gH<9XragQNrE-Ou;z9+I%Ta3
zK}g|n@`6uvH~g1DunwG2h66AYn|=PI3p0-*O@lKxTp5ncDg|DGo(02bxOI_D{q|%C
zVv@*=Wmam%1v<_=c(1i{9s{3~ww|N=95co!F<a~Qv9Yr_cKp+mKTmaFjFte}fmBL?
zn}Sfn1b`_>hZ-h3rx^sV!(=U}$Yww<4QIj&&SU@st!H56m}Kl@s1y&*PHvusnQhe4
zTZHsk!VArqW}I22CkbobN*Pe-vLmKxP+C-zu{_K{Aww4?<8@S8OTpP#;rDpyxSdd2
z$*hW~EK1-pL~!%Fi;g{fww+nf!Ue9TAY5P)GH=orxrxCz_^df_gxRWKjAD^P{>@%a
zf?GdH;q~z{6$TNMR;WTST+QBqnzdxY1TO&WlqS9@OdPlufI)@XIj<&UAcczonMqS$
zm@Rn073#=U6c+p(r1IPgYlWF%0}s#<18Oi|#D%fWX)n2QQ?LgP-f2w<@3fd*puHYt
z<g8J0rQ_;F$fu||OnVTcW=3h|m6^Rm8I6G;WH6e^dQ?R=@jJn+m-AqH075jJdlq2!
zI@&SO4~|9{#hBF2YNd^Gaf-75+Z+X`CO^@g*rI0uM$R0S2^?mvCPZOSa_N}?v+Oi<
z9SYhJFGg5uNv@W0l|<&5Gg#SqK}-9SF`S@Re8jWiOU1N(4Hy@@HuG95Apnt@nSZkL
zy4!LeH*JMSNd6I+>mBO@wP8lRihhL;)B<^IP~kO_)`~I}cYR#nVtO-``zz*Uff}eX
zM3~Y<Xay0<jApfBE8B_8ejrh`#7=nT<kBTogoLH^kBp{~z+lDpg1)=S==3s45;=(N
zr$Iz>NN0}Wa|kp*N3aR1+wr<ECVwbnUM*uQX~DE@I37T(7R?9+F!gRne~|Qyp7QH;
zrA))Cg5X}cVvmEyr^R@v8V%O!4LPn@l)6cIL(7P*A^ngBxnVlcg909monzt}wC9Ff
zIaUe(MnB<~dOX6!oLKxGa{%2hSRRk9oweqeYu`1wQS+d#vetuGFCw6{c4h1ry0AMk
z4na~oqzu_3>87IZuG&DU)Xg8_-lh+}ODQ+$rdZzhm-3PzV=99Z+;rY(%|dC-@y_NU
zlZ!4c>=n{RmH{=8Q?~QhMG^5qXB8z<b!Q*ilboEA{Q_*40Qc}D`gm_ZvnZ(xQVSBy
z{Y|OgdaOXlj3B12;?++=Py32TO*>wUHYk5e^3~MCPfCEwL7`J~4qHPH+kKTZ=3o)i
zd8X8LNk`4WF*FD6;6!~&@Na&}JO`I2H$zCLJsZr=iUAm0rfO?<LdtYVXkBSfcNCP8
ziGc*8Ei;F@k`R;?RMS?t90yq{oz)a%eAcr8uO}ry8<z%<Ntfu`%aZ>~hsuOmv93iA
zt9}vlYNK1*N}{NM<-aF~Sj$cWzUQPsYTDV-%3Yq2XsPs(Z(aSW0x|jDy|tUJyHjj-
zCgpqG_%9`0<VJ-dTsRql5Z?%>t_Vs6`bBe7heaiUzU=!x`i;FD7CJE6*9Ce#+~VTp
zd?P!yr&DxCt8lYL6*EB0oyd)%vW*#dDR9OZlgiFkDtGv%om#BGDdsk5J^9#^d=6!<
zmpOURF#I#*W~VlII&9YhJI#;1Y!ILjVnsBOPzUZtyM`Om&zcv{;4nT)2{~DAJm*R$
z!W=jri6Z6BXSaVM-dNqMqj5`B2=pr`frgB~EIBHL$Ck|L>DkMZ%=7GHsO@R%zW1`|
zs-PU@vR|KiAg&7f{BtGkZyx33g>0YFOWA>X+_shdh`>E|T=1ZNgpP+h`v~MY;`Iu>
zj|Zj=TPs9L?e^I8>f8b$9Ux;~#pLRE;&_&v3*pl00<bx-?GWZ21r4Z|y5Aq@OE{)V
zg8Ij|N9@I(b#u^Q4q~ND<r2jKWUKTKPp%bu>u?-olf%65H^SRPxP>v*c)F!x<Z)7e
zml3<%+9XtTkc+GzJQ~@VMToN=IF3gBn*7u6fJ@uv@0O*}9JaopOv74`Wp0<CU6TmG
zkWR^~(YDdD>|4$u|2zb)q~Pn8Pw;m48<2<vGx^$&7x;DV0X#}M4(F0IuF#wRB*ZD&
zNy!*$I@_9jJ0Z0-!<o2}lgvs84-NDbROI=zrDa(hbca+L|C}3931)6sPV_Z3vJ5jv
zTVJP7O3tD_pMxgf7<+d%6+-GgF4(a5tH&13(VcXncX_38uT&p6l2%fE*)#goi=$lZ
zl%YFE5^Pr&bhaNGp>`5Om|&(?JwgsO;z|xk@jA3tBf8*?!Mll4(~56vE1Z75x)&n8
zE)3UTVW;6yT2{%XL<_X3Ia*%fb@t4=n_<S`5QupP-S|^q6^g|Y3bn_M>j$Jz|44y`
zzhi@&DN{)}YQAwH`B>Y$GhvjIevx#E?A_^IOZJ8D@_^Cnh!IEcgBWPTHOdjaE2NJu
zlSB){3~b+RT<GjII!xgaD@-)+8`Pu=E!H+kAJ`<E&3al(mA+k#ndHGy8ra)KchcL7
zv^%yZe+vO0+Y6ez45D6HEY6JLY{5NsKbTTq&;ug*Ca$-#JW7XZIS~3jnA5wYXX-ur
zm4nO{C!kM$yv+>)`dl9$T<-<g`d9@51K;cMTF<l#YDn8a{u2T=4|Re1{oEUjUWj1m
zRzI{M1-cCk%=ZC1(t?Ki`M8zKui@fb`CGR!lUz;~0HIxLh`v2r%oE@3d4DfkRA=AM
ztN!^Npsfq+#3U*D%JO@5SKiCgc=Y=^Kqzmvo^<1Ez8Cp}lYj20|1$@ii$7WFr~d88
zxckfh3xCc3OW{vK3PN$tEmuNHZnYWdm{59a>?Z5<+soSA`jb%nx>(I`2}ZTT@QuXE
zKpfk4|3-<M)addjiTDnW<-yFi`$%)sk7H2ba=-jGVMRdSR7aPwC>P&LQ7)gDOI$x{
zO}7(sd<LiChB*}@lMc9>ukKIvNzB;^n23oz&jN>-apr=EV$wkIubrFZQ+&||^fiRN
z{j(m=&wk`CyL+|g3fwgiqrBKHcis0j&EYn6J%f{z^wT2;*PCN87w9&!kwXIp`gyx|
nO>gZf-(#lP;*vrjR!nVnchv1eV|@s$&u2pHnSBB{0NYju<`;L&

literal 0
HcmV?d00001

diff --git a/phishing-filter-splunk.csv.gz b/phishing-filter-splunk.csv.gz
new file mode 100644
index 0000000000000000000000000000000000000000..7de4df5e529e5e681e26bc1ce7d41c88a9ea11f8
GIT binary patch
literal 6110
zcmV<47a`~$iwFP!000021H4>KbL2LXz0a>u*q7Z1lO_m&AAR19*n<xnJ2RKPC4dAA
zDiWYTuu7$0zloB%J&y2c18})pEy-2+@R4}=5=ijpmw&jl;<uOozPRJ!{POb8|M~6Z
z@B4cC>&tH;T+jV)KfnBQH;~YLd+EDgG>kR9{72V)>$`7K{xALi|9szF#N*owdol2M
z`M2}={udkZ?L@C1|4#4uudv|`3qf5{+K+F){<;t{s8)yV*A3P?L~N{E6UJZnuf}}+
zOrQSEY4pec=fgj*pC2V7e-CHWxtU={|9o5i{4XzL>vDeCa!FrsU9T}LAMoq<QEC4J
z5-1=mKV8C+e){F79nyvV+3+~1Q}o?upUqEy`-#zu57Jy(kNK_n-G6M;%lDsO?x+q&
zLuD|b&L98fr#~CxY_*>`Yjkivw<9;UnCYHL-t)31hYs*a7fepKclVw@Ruq5+xSPe;
zYF*OgyskwjZQ}i0Y0_r;Wyc#fO%0>T+gCiU?f&VDg%GA*c5<X)DcW#QI>j4(Eo)WN
z%0Aiy^%?U(e~tJJqq9y!a>2K2SXSRk(e(NAf(EW52iha-&XjJ<>NW!X0JUOkPhZk>
zIDKk9>86wI_PF`tLzy9tb_q0K*uwdNzCDljx)j7n?uP0-oTq7PPQM0y#aNbvz?l0H
z)umk`V!<i6_&qz8#<higFK2f(OG|&R{&FQ>T?-msafx9KS6ID6;)-UPSua@6M61q^
zkAg^Nay!M_6yZrmM{Dp_&itm_+U(B1!Un!E03Mnh9xHt^w(mB??P$qd>r6?^bA=S5
z+oQYDnr>YxXdG{Krral>q0+(M$}XvWUmuMR_a=oVqDET9jRLb^l@$@wfmIwSZ8SWe
z9D3iAKdzf`-iG{JqQ68=glc`19lDe#;84ivzpNM6M4t$P<?*VEAxC14x(E}S+vDvd
zVc+Ht7B%m@&auCn$C{lWx#2vYy6PCRuj*0<#vA2OG-8w}$f`(g@iaMk`iEhzh(zWH
zq#K96I><0}Q$>)>SYH!Fto%&1(rH}y%WzyM4ij(D<ZPx6346R}l(mxi$Aw;wUVSg?
zKv3+3vr4!<DPi~N_k`(38g-n<j)yys=DU@@B#ol>91pLL8VcYfNrxn6veN~FRW>Q$
z7HCK=VKoiuRq8`bW$k|`=UW$x8B{`cY%1DD1@@uPf#1e;UAN)Z$Nh1_MJ^x5rSF$_
z>#m@rL;j9#u)XJgvA5%0_M&yWrCHB{es%s@ut~H$n|ts}tIu?Et+uA1@#A*Jvk9Ks
zjLie8<cc(+!CPlsg{7e|jokaPUVv%h9iJ;0m7=Us8}WE%u(+YZNU_2nNI!-1k$ia6
z;B@7d-(PhAsOdy<6`aMT8_}FfW%r;IrD4|#Mr5qbvZL#Y?#rt6IC??UUuCc(oH{~;
z<4kx`gdDpn6p)^Zyswsssl>i-&{Y|xbUycReBaQD+gzK%&f4u!a`Q%=Zl%P2AvsB@
z1*sU=jcpI!l9E9<Qqy&^Rpe^qZy%`ovK{=syO~#Av&XPg{C_mlJPO{=!<apKb@oxz
zD>S%0L}=e19|di$TeF9B2}i?KFZ5ig=`o@WXI?sr1jCid3WTLe&pLC#b&se6t;+}F
zz2H&|a%>G-D5%OAPIvFm7PdY2k~&$`F-To6F0KvPC434ljekIuuBP`CuIOtBXnldy
z)<1;O7u4hkf_0=FR;RCJEgyJ8UxS^sBME^Gv>`4fjqYnG+s@Z~3c%ZRXKg$Snw>_@
zWpT4Bxa~m{f$0+Q4$)L`?d)fiB&7B;Zj>|Z4`4&tLoOZkwQpQVP{obOI<IATtYg?G
z&?(2;X3D4Urem#j5%WeyaVGyWu$-?J?Gfc3M_kJ`{EXYSm|Kf^FRY~5NW8Z`h_GvD
z#vk^lxvOeF=NuSoKp0Xt+-Ut;Wyi^=_G_0`7**CX_S{-KG{dBIBY^8hv0-k+WE9Mt
zjUW`s>4wMS?LjP!>}|5`Jw)5)eYPi=-U_xxok@eQwz7W!lwQpSSC>_1OW7xGdunYy
ziHz8yQU`UR{eXg4xAsU8VQaS#J;bs-@%OjwQdpH4N|TNaVj_L%e1+g{j@OWKN#7E~
zS#U7URSjD1GN-Y{tdeU#nhn<VehH+lVJ*uRs8X}$6Ym;<81*GYG%K1a*&?nAA}yCa
zx16G|@q3$(@CyQ@=u+?t$;}PRZrnekZo4h2&1Vlj6+K2n{~ES)S*mg44}j9#h%tu9
zg&b~|Q<3+49zMYb(c_nqqv$puzUK@ddrDnv1Y>;Q!(6bE?UYV*XO$WW3mR1j*9LBG
zFHG<jHf;Bj$2k^`124gSoGL;y4)aih&Il#t;8ZIv+1JBDBY|E`{$iRpyVCa>T<i4S
zm1GDqoXa0r9p_nt=oxFjs_IKN+pByu{aLp4Ri&E3SIKV*k+sGVDy%^x_+uw8K8h|n
z>(4}yEU)ORD`z!a(Y*%m@fxa}>)Ty&b=-EtABVRiS68+`ci$%U_VMUDx8G|dIyNFU
zpY_*hK5GP<T%p;0FDR<g)jxnz*oH6UikM3`48t^bLlvT5wDv~5EiF-TIioZ}Bs@0y
zFJAG(wV$We1?{KixxY$E{+egKdDL<34D@G?_Pu5;RN36kB;#ReRivfcP-<IJlq~Vw
zV<1ioZl`!Qh`GuJ+(ou(#<HjUWHT?hTsBlzFJJU>aj!*FEAq~W3p^m5xhz*y8Do6i
z())XAm$Tp|_yt$=YNg;;hjH@RSo{4F$hq%<lJRFfL}8SO&1X4z=7;AQX~dhudzG13
z)U`^X{pI2eI#);JUtBu3jaHM#b6wFja+>-o!xJ`q7N-x@Dx$w2xEN$*2*H1BKG%Yf
z{V>#qnESaV1f)cN@^@9TfXnXDUfzy&3#82TL$7!gGw!xt7LB=i<ESOBqm|`SJdf6S
zL(#pU{iFF&4)UDf%%~WP&MJW<SRlf-<P_*~t#Tsh_S?`3-Y_od??~_HsucgaxTWq&
z0_E<?9l*Nt)s7RNU9h*S(&s3q8mW)FyY0Tw*TQ=zuM{L-M?TJV0{^QuuVn|~3hM*B
zn+INDJK&1%!I4_F;WQ?kjhwqG!STAXYhw=P9dXXN8@FQNGPUdKh;Z^fkqWbVrSxbG
z-CV`f$@sSFv+Vxzl|GQ%E9?0vYxvEX6O?5Q3RYIO;qU4rJ&bOj<*UWauAsobowx@g
zcyhkibEgl+hH}vLk(@5O$+e;}c%!KOfemM(%4X_HlJ;smG*?RC+xz?b$J6bL-bG$l
zxVW-MLZ2o}Zp5s?S|E*|87yHVn2=S*J6{uQK5tg`eVu*ZPmH|7mrwmyQ`qp=eTs0V
zHH2&Fhf;iDd>U^yXFiY3^9`g5IET&;B*@ti<JHQypHN?E{Mc0qEq{O*>p+~>LFCKE
zRcybn&f?}^bBg*>)cE$?3Tr-}OX8GUT_Vj8+FLm_yMaOVP+M&6!xgmpwmW=(d=wV1
z8{C7BT@z?o9q!a8E#@8WoA!v!n*;CRpp2;e$=U`F3og=HtKvnQQSr9gN8zBqVScbw
zbhyXBc?7>;m6E#brQ30B?)fPpsd)<ZeD+&XaS=vJ`COC2oJozxdqYyaR(Zmoqm`~z
z*qn~x2sTkDYK|0Qe&|AZvAVe{?)h5r>sH5m15p!Epn*f3kJj_0=;MmE;PH77n=53A
zPtd29pDDAUD||Scq4E=#^3CPu=EC}Uhq=O(gj}<;9APEjN;L@UemEp~Y+s`}ZI#Pc
z+xzzJxA&I*d^~_cRWZx{Iqa~~@@vXgp#F>HqMLtS0l2r<x55>H9^b?E0DZsJm_Tn+
zlX8_UtC25wr!UX*+gjq(AC!4Rr0_;*?2-B=pEAMoN>t$*$3QCSxY&}nP`*+TAYFH)
zHkb33Hcf1~1p-h-uMg$NUS1vXWM~PXpxHcmrze5?`!W2HAe~1I-wbEWj^F0%d*0KV
z8w1aRUdlSJ7|T*|xQFw8($~Ubcqi3xwM89$7azAtM<3$_`tb;V!R5T?q3!2M#@7Qb
z%Jv9u;2TmuZf*L$LL}c&yWIHik)>!@*%6PhwfUZ8L7QGvDg%@(nVc{|;f?5>r1PU}
zb=&SXf4LQot$U!=NCL9?;~neoMP5anFyw<$%2e=<O`jj;RDsj>x6odqrP);LiTM%3
zB_$b={Ssl@vXvi|Q8Z#6*CvIuJ|3SnR2A#Ao&k-u$L_8rBQcpxL5KCL2DH2s-%mxq
z?GeHDdK|f6S^&;gqPBKI4FkwF_T@3haT48t!lD*@7IVkOnKQ;Tn?_^iDwwmHxZtA4
z(TG8+*>;`ck}=*(=q6SJvuDN#qX#(;OlVXyM<HP_D5xQl()JpdG<(cwi<6p!9fx`B
z5Qc%eJcAxhoqk%hIP)F|O^AsGcN+DqV3JHpExH<*9K>MenF%Xq(Tx)g>yVGs7{?L1
zd8mOY$a~Dx_tdXm2pFbWaWVD?y&hneRr)z}APt}%m;%vRS}l5(W*Shci3w8&bLzox
zHApj)r;dY~8BMGNK(6IrL={Y;n_dBt&tQc%dgd@%#b~UDeuln^-;Npw%=bG-1Hv*h
z3ACoOc9!(JY2;Nft<;teLP*nzo(+?-pv_1uJk6caRpxW*_{8Ut37C5^(d3Rw>t0Yd
z`(YY7TLqI1jEIiJ`iKIFjU@4d<pe7FULdQ3Id^?G%W<N0IrVBbS|TkTA|`GItkciD
zKBVe7Aqrs_`K|0}fvQQ0$<~RV(_}|A62LqtVLJf=Xi{Zo$ZgFq*6F9h978OVG@nLD
zMZ7m?)RUy(t&FLHX(SV5y`!i?{p1wDv?RiZ&WeuNDmr0i1BZDuW0$E`iFu~Z^}JWq
zTUxG_Ff|7-6fxB(Mh4K0_DT6%nTgpdI$@p|5yHr@BaR2cms8)N9Z4tIZm1KpiEcP{
z<J`?$3SvCPIt^M&sgy>;raG8&erh!N&^U^IqUp@@J5POHH*(NbFku`e&8Sqs$#X#s
zrWZX084@X6VHHkLvIC+!Gt4u^vTh>(;UnvMa@vj?7;9kajtD2~k&YBCGm7YlqRTi@
z5a)VEsDep7l3hovLyjv4J`W@nxWQiLepkZeGm+molR_{8J5)rnT3R6~rm?P$PS9Mj
znN;4)sh<|bj2xIX7AUYtuDVK?^VAvHE5k@#(?1<&mRKLzXw9gqU`~c1OtUbwK0C{Z
z@iZTLHtT`+L=81CO-}(#P#7cKB_=%r<t)6T1*&_1d8mU)`3VC?2uL~MM2sf}?0^D`
zHN=Tk{MJmA^Yu)iw3H{2jHbb+^-7JHXIiFJFp<yFqCp9iXS05s6{Ucj3F5#xFPbWt
zqSs3H6U7tC%SJv)Bt%I`3q^A)SshHUR+2K2ofhMy6>>X{KvKbsvg1{J$aXpD>t;=I
zJ_~7}aLqKyzKI5QuA_(S*webC4k-eZqfmCRBsS+vMPkrH9ZXB11!y7}iqSA2sXHL{
zBTXyUU5!|_Y^`2TRnVlhu*Be04Cg&K((J6t=IR?9Zo3xU6n?X>_IBV~+49o26KEio
z2*(kOfris6sWKpsV|kRVxry*<Tz)n}A_K2jqY@?}ng4(oz@IBbcsre}QV|t#%eA=H
zy;s;!j_8*KqG`q0{9kX^w)7?rgP&zDcJCkw<ap89eUpx{4RHXQ_yB>YUkQ@-@67I<
z)XcPh+WGl}ZTTQe`cz;V&8>i+JSj9@2iJ{yz38WPQ*X$tKf#2Mbe2sp-dPGP(Fh>z
zDI(8MW5VfAFA|c&=BlVKLs?yhBrTRd;~|0d-SC`rZD_erU@7gKX|(A&ogN~)oeGvE
z#HUX8T5?Q~6pej8Cu8$)C(QTuQyuG+Ka&o0{@9R5E&6PjDC<xL^zd2@{Yt-x24RCX
zg9b%MZKlj|3?j6h?i|NFMeL|M+4$kHmWXL&U)#|cshh{63#0e8wm$Y4#my)`h3I<i
zr&R!-9IGQd^C`Kr)gXxQM_8#D#lj97k*1ALLXhk9HVbDn-X3m@ONsnr^=3#2bBMa<
z6IRJBVXfrJ<OovOY)qhe$i0ra3R#ojn39bp!y5m8(wIb93{S!^cNnp3Jp2|Z#cz>P
z{st)=BDDO}dZV?Vwm6U?8%1XnsMXgPR@(Wp3X%d7F=Za_dhn*#!%BQZ%%!x6@`FT!
zgtiS>HWiM&(2i~f3!LM;q0KlN!?bN}B+Yw$88~nY-<BM>*JsJ{zV=*QIdI3@7>IGl
zO(}Q^%Y-{_B^XFY3>jKNDhh<uDpQx!ZO@hp^@|Yd3@8AfkTj^|BdYm`I9)HyBF@Kx
zTf_zF47fx%ti0{)`w4}L#HLjLA&XqM@Zu_hvC7$sw*>lkx2pDFTr2%Tdz3arJGj}k
z!sO2955jl$$f-(u!5_k$-}~xIP%|9&2*a8K-o505o8S<muv9oEfZ&}Gt)8q>KG5M!
zQAaKT0Q)}0nFl$o**TPv*B|JFl(;N!ZTr+4dT1CzF>_przApk+y9p^2-+3`c9ro}k
zkGJcsJhD*Xhw+3i1#QFmbUO3#>uq-&?^HdTa+PGOU;(AfQ3K?ufeB|Hz3YS$qz#B7
zAj^!XW;#gS>3q4{23f%=`AHENvo<Ohv$rFM<9_5VX6Z?DpYUER`juq-$XEXSs}#O+
z@js=M1s_{WG;MTkcD-In`Gq1pDRJkTXqD5tep>uM3+goT{Taeeb=F8)2U~Qmheb(u
zov|VL^+q0x_DpmV1_is6*L@-_;t47oV|r-Qf!Xb{vOKX+9!FmxB@prC@Y+;9wK}!V
zT9+Nl8w*WVOgi*JvDq9Sd}@m$&g%z%a9pUwMTSQm9c?aa%C|xepqR34)(Q@EJ(6TL
z!OMmS-JD@}Q}#zvFDcZ_;)qEtQc^v}T+WW}w7&H;Ius8D&ub4MTL<z}-VFLZfW8>n
zBIiKY5p&(9Q0WkfJ1M|%9U5VSkSmD{RtM%HBu`;jFIC^YCR<wd{{_9XBO`h*J5F?T
zudt!V;mL?T_KF<c*qZhzmnId1TnsU2pE;|QhqZuo-j4zvv0^lbV|ixqSFMgi5e*g;
zF`a3U021tYBk})eTT)etr6R!(3YG}Zg6X(MJZ)uBI2N+e9hYUujig(M$8h8*A2o?i
z$CzQwUJjDGjX>{<!Z^>uf3wK}RkT`~$k>!Oy^dP9a$=|UBygjxg^yXS)LC3}cpiPx
zS>>$Kxt<2vh}B8Fw4!A;d536q;VwoNjxT`JPxuQAx5$HUnmesmbAzPq=H{uMW3;sQ
zc0W)_ZwFSJ15FP9q&@FWV3DHXzJ@$jaS%qK?qTrE(203}ys#)pkl|322ikM?%Vu~<
zj<H1>9r7qEj#cdC9<UnwRM$Gim@-Vx=2(zlUYLb8j%kCWya;@SG-)Jy)kZyP4rO`G
z;&`TvgPz6Rt)J|$zn;!}uB+D>X~tl~Mv^r8Q^#yh-7^dGr><v{30a3HOI=Txr5T1+
zdM!0<o*CBI;?Vd-8xtFi?1#up+&L*E$a1ukVA0mR9Bd^qV&$v-ji)J#eY|K>4VGz<
zw1xFV7nASakh}ZvypKe{UYRa^fRzqX_(u3$+Xq-XUA8%eDC(md1qV75G6)>RKvrya
z`fwWV-htl%&r31l{zz2IO4Ty7pVe{)Uw6hT0~0MoC)=G8;a)lDN;YxpKDk>hyIEu8
z?5=kTzhfge3g=x@;y?bWa{2d0zWFVrm3;m$tcvTtD<{7j^$iB1I35m%+u>N0<>7X^
zBr}|KDQ}lsSNii`Jv;&(`VD?R^<c{US?p1wR`_K@tW(#`e-PD53VEYe<$E-b{bff*
z9XaO<l7g;u`@1!Ll?d9yVFk~jyT%<WJ5r(Q3JfBcBP;abDyoy<Kt9&>zN|QquTzxc
zap8czoyESWIgsUE9YoFY(yFM7^N9l)YhRyB4&?f#v}Dnaez_0r!ZL=on(w#q&H)`n
zk=%370Uc$$o2z1hwxTM}r95+hPp^Y^mx(H7%6IQ$K^*7m<*A|`?EK}tghb=IcFAYA
k;!Lz&1N@TLetq-nXy`$2t)K@L9Ze7a3zXiomp8Bg0ILZPPyhe`

literal 0
HcmV?d00001

diff --git a/phishing-filter-suricata.rules b/phishing-filter-suricata.rules
new file mode 100644
index 000000000..17d814e1a
--- /dev/null
+++ b/phishing-filter-suricata.rules
@@ -0,0 +1,462 @@
+# Title: Phishing URL Suricata Ruleset
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"1111365dh.net"; classtype:attempted-recon; sid:200000001; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"12931-coinbase.com"; classtype:attempted-recon; sid:200000002; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"215323.com"; classtype:attempted-recon; sid:200000003; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"260aesthetic.wixsite.com"; classtype:attempted-recon; sid:200000004; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"3650947.cc"; classtype:attempted-recon; sid:200000005; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"3659ll.net"; classtype:attempted-recon; sid:200000006; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"83291-coinbase.com"; classtype:attempted-recon; sid:200000007; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"94-103-188-123.plesk.page"; classtype:attempted-recon; sid:200000008; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"9825057365.com"; classtype:attempted-recon; sid:200000009; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"abctrvabc.com"; classtype:attempted-recon; sid:200000010; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com"; classtype:attempted-recon; sid:200000011; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"acclimatizable.fun"; classtype:attempted-recon; sid:200000012; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"account-update05.myvnc.com"; classtype:attempted-recon; sid:200000013; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"accounts.google.auzen.us.kg"; classtype:attempted-recon; sid:200000014; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"activebusiness-unlocker3.com"; classtype:attempted-recon; sid:200000015; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"addwsrbh.green"; classtype:attempted-recon; sid:200000016; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ahnp.vercel.app"; classtype:attempted-recon; sid:200000017; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"aldg.ldgknhk.lol"; classtype:attempted-recon; sid:200000018; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"allegrolokalnie.pl-891241214.buzz"; classtype:attempted-recon; sid:200000019; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"alutipcentra.pages.dev"; classtype:attempted-recon; sid:200000020; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ambil-pinjaman-daana-payleter.xforms.web.id"; classtype:attempted-recon; sid:200000021; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ambulatoriprivati.it"; classtype:attempted-recon; sid:200000022; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"amev.ldgknhk.lol"; classtype:attempted-recon; sid:200000023; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"antail-conv.com"; classtype:attempted-recon; sid:200000024; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"apply-now-to-receive-badge.vercel.app"; classtype:attempted-recon; sid:200000025; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"artsea.pages.dev"; classtype:attempted-recon; sid:200000026; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"atmailupdatewptnskmdinfomailacct.weebly.com"; classtype:attempted-recon; sid:200000027; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-101072.weeblysite.com"; classtype:attempted-recon; sid:200000028; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-1041page.weeblysite.com"; classtype:attempted-recon; sid:200000029; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-105714.weeblysite.com"; classtype:attempted-recon; sid:200000030; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-105819.square.site"; classtype:attempted-recon; sid:200000031; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-inc-107097.weeblysite.com"; classtype:attempted-recon; sid:200000032; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-login380.weeblysite.com"; classtype:attempted-recon; sid:200000033; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-login522.weeblysite.com"; classtype:attempted-recon; sid:200000034; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-service-102155.weeblysite.com"; classtype:attempted-recon; sid:200000035; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"att-sign-in-105669.weeblysite.com"; classtype:attempted-recon; sid:200000036; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attcom-100762.weeblysite.com"; classtype:attempted-recon; sid:200000037; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attcom-106808.weeblysite.com"; classtype:attempted-recon; sid:200000038; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attmailservicenow.wixstudio.com"; classtype:attempted-recon; sid:200000039; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attmailservicenow.wixstudio.io"; classtype:attempted-recon; sid:200000040; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attmailsrvrdesk.weebly.com"; classtype:attempted-recon; sid:200000041; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attnewmaill.weebly.com"; classtype:attempted-recon; sid:200000042; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"attyhhhhiiii225.weebly.com"; classtype:attempted-recon; sid:200000043; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"atw-tau.vercel.app"; classtype:attempted-recon; sid:200000044; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com"; classtype:attempted-recon; sid:200000045; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"authsyncs.pages.dev"; classtype:attempted-recon; sid:200000046; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"autoreplyattmode.wixsite.com"; classtype:attempted-recon; sid:200000047; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"avoid.hold-managert.com"; classtype:attempted-recon; sid:200000048; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"azbin.ir"; classtype:attempted-recon; sid:200000049; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"b45018.com"; classtype:attempted-recon; sid:200000050; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link"; classtype:attempted-recon; sid:200000051; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"baiii-wong.cutvi.cfd"; classtype:attempted-recon; sid:200000052; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"basvuru-online-yap.vercel.app"; classtype:attempted-recon; sid:200000053; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"beionfidi.pages.dev"; classtype:attempted-recon; sid:200000054; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bet73nn.com"; classtype:attempted-recon; sid:200000055; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bet83039.com"; classtype:attempted-recon; sid:200000056; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bet83054.com"; classtype:attempted-recon; sid:200000057; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bfrescentremebermainsetreouytnoy.weebly.com"; classtype:attempted-recon; sid:200000058; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"biggggggggggg.weebly.com"; classtype:attempted-recon; sid:200000059; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bitnode.pages.dev"; classtype:attempted-recon; sid:200000060; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bitvavobtc.com"; classtype:attempted-recon; sid:200000061; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"blackhere11.serv00.net"; classtype:attempted-recon; sid:200000062; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"blss24att.weebly.com"; classtype:attempted-recon; sid:200000063; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"braucrarasuteu-2470.vercel.app"; classtype:attempted-recon; sid:200000064; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bt-102124.weeblysite.com"; classtype:attempted-recon; sid:200000065; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"bt1business.weebly.com"; classtype:attempted-recon; sid:200000066; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"btuan-dan2-resmi.top1.my.id"; classtype:attempted-recon; sid:200000067; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"buildingdesignsusapdf.s3.us-east-005.backblazeb2.com"; classtype:attempted-recon; sid:200000068; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"business-page-property-897432967.netlify.app"; classtype:attempted-recon; sid:200000069; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"caipora.xyz"; classtype:attempted-recon; sid:200000070; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"calm-pothos-3b24c9.netlify.app"; classtype:attempted-recon; sid:200000071; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"carrefourarabiank15.pages.dev"; classtype:attempted-recon; sid:200000072; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com"; classtype:attempted-recon; sid:200000073; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"catgirl-appverset-nya.pages.dev"; classtype:attempted-recon; sid:200000074; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"catxtokens.pages.dev"; classtype:attempted-recon; sid:200000075; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"chat.94-103-188-123.plesk.page"; classtype:attempted-recon; sid:200000076; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"check154109.click"; classtype:attempted-recon; sid:200000077; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"checkseven.vercel.app"; classtype:attempted-recon; sid:200000078; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ciente-a.org"; classtype:attempted-recon; sid:200000079; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cieplo.app"; classtype:attempted-recon; sid:200000080; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cj12143.tw1.ru"; classtype:attempted-recon; sid:200000081; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cj87335.tw1.ru"; classtype:attempted-recon; sid:200000082; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"claimyourethrewards.pages.dev"; classtype:attempted-recon; sid:200000083; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"clickbait.design"; classtype:attempted-recon; sid:200000084; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cnsa163.com"; classtype:attempted-recon; sid:200000085; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cock2-iota.vercel.app"; classtype:attempted-recon; sid:200000086; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cock3.vercel.app"; classtype:attempted-recon; sid:200000087; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"cock7.vercel.app"; classtype:attempted-recon; sid:200000088; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"contact-pro-8291-d01.firebaseapp.com"; classtype:attempted-recon; sid:200000089; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"contact-pro-8291-d01.web.app"; classtype:attempted-recon; sid:200000090; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"creosrl.com"; classtype:attempted-recon; sid:200000091; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"curmmgdv.email"; classtype:attempted-recon; sid:200000092; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"currently541.weebly.com"; classtype:attempted-recon; sid:200000093; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"currently890.weebly.com"; classtype:attempted-recon; sid:200000094; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"currentlyserver.weebly.com"; classtype:attempted-recon; sid:200000095; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"dara3dccj.wixsite.com"; classtype:attempted-recon; sid:200000096; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"db.service4db.com"; classtype:attempted-recon; sid:200000097; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev"; classtype:attempted-recon; sid:200000098; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"debutcan.firebaseapp.com"; classtype:attempted-recon; sid:200000099; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"debutcan.web.app"; classtype:attempted-recon; sid:200000100; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"delivery.attempt.failure.ebbs.co.za"; classtype:attempted-recon; sid:200000101; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"dev.stream.mornar.app"; classtype:attempted-recon; sid:200000102; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"dnwqmh.click"; classtype:attempted-recon; sid:200000103; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"dropsmartchain.pages.dev"; classtype:attempted-recon; sid:200000104; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"dsjoting.group"; classtype:attempted-recon; sid:200000105; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"dulb6c5p5.top"; classtype:attempted-recon; sid:200000106; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ebay-mallwholesale.com"; classtype:attempted-recon; sid:200000107; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ebt-lilac.vercel.app"; classtype:attempted-recon; sid:200000108; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"echoredled.netlify.app"; classtype:attempted-recon; sid:200000109; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"elbarco.percentadnp.info"; classtype:attempted-recon; sid:200000110; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"eltritongourmet.com"; classtype:attempted-recon; sid:200000111; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"email.mgb.modento.io"; classtype:attempted-recon; sid:200000112; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"enjomugg.firebaseapp.com"; classtype:attempted-recon; sid:200000113; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"enjomugg.web.app"; classtype:attempted-recon; sid:200000114; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"error3456vhubhornbase.azurewebsites.net"; classtype:attempted-recon; sid:200000115; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"example223.wixsite.com"; classtype:attempted-recon; sid:200000116; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"eyeydhe.wixsite.com"; classtype:attempted-recon; sid:200000117; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"eyttueiu.square.site"; classtype:attempted-recon; sid:200000118; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"facebook-avip.click"; classtype:attempted-recon; sid:200000119; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fame.pink"; classtype:attempted-recon; sid:200000120; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fassehoizubra-7696.vercel.app"; classtype:attempted-recon; sid:200000121; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fastdropchain.pages.dev"; classtype:attempted-recon; sid:200000122; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io"; classtype:attempted-recon; sid:200000123; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fla-1001.square.site"; classtype:attempted-recon; sid:200000124; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"flo4211.github.io"; classtype:attempted-recon; sid:200000125; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com"; classtype:attempted-recon; sid:200000126; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fnuttlie.wiki"; classtype:attempted-recon; sid:200000127; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fokeijonnekou.vercel.app"; classtype:attempted-recon; sid:200000128; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com"; classtype:attempted-recon; sid:200000129; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"free-verified-badge-form0-service.vercel.app"; classtype:attempted-recon; sid:200000130; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"free-verified-meta-badge-service.vercel.app"; classtype:attempted-recon; sid:200000131; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"g06668706.wixsite.com"; classtype:attempted-recon; sid:200000132; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"gccndbqg.vip"; classtype:attempted-recon; sid:200000133; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"geriodememerkezi.online"; classtype:attempted-recon; sid:200000134; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"get-checkmark-for-you.vercel.app"; classtype:attempted-recon; sid:200000135; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"get-free-verified-badge-service-on.vercel.app"; classtype:attempted-recon; sid:200000136; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"gitanag.broke-it.net"; classtype:attempted-recon; sid:200000137; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"gruprocuroipra-6493.vercel.app"; classtype:attempted-recon; sid:200000138; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"h5.b9en.com"; classtype:attempted-recon; sid:200000139; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"h5.metacoint.com"; classtype:attempted-recon; sid:200000140; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hcghij.top"; classtype:attempted-recon; sid:200000141; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hecregayatu-1014.vercel.app"; classtype:attempted-recon; sid:200000142; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hejmtxxt.guru"; classtype:attempted-recon; sid:200000143; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"helenblunt6.wixsite.com"; classtype:attempted-recon; sid:200000144; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"help.accountsupportcentre.com"; classtype:attempted-recon; sid:200000145; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"here-apply-for-page-review.vercel.app"; classtype:attempted-recon; sid:200000146; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hgbk.ldgknhk.lol"; classtype:attempted-recon; sid:200000147; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hhideiie.wixsite.com"; classtype:attempted-recon; sid:200000148; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hitummoinneullei-5882.vercel.app"; classtype:attempted-recon; sid:200000149; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"home-101067.weeblysite.com"; classtype:attempted-recon; sid:200000150; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"home-103465.weeblysite.com"; classtype:attempted-recon; sid:200000151; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"home-104341.weeblysite.com"; classtype:attempted-recon; sid:200000152; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"home-105266.weeblysite.com"; classtype:attempted-recon; sid:200000153; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"home-105929.weeblysite.com"; classtype:attempted-recon; sid:200000154; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"homeattatthome.square.site"; classtype:attempted-recon; sid:200000155; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"hpnefhqs.motorcycles"; classtype:attempted-recon; sid:200000156; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"im25.net"; classtype:attempted-recon; sid:200000157; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"info.supercitrus.ind.br"; classtype:attempted-recon; sid:200000158; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ins-business-home-center.com"; classtype:attempted-recon; sid:200000159; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"instagaramgalochka.vercel.app"; classtype:attempted-recon; sid:200000160; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ipv6.43-135-137-110.cprapid.com"; classtype:attempted-recon; sid:200000161; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"irmt0ken.win"; classtype:attempted-recon; sid:200000162; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"iujf7839iofvkbcu748.weebly.com"; classtype:attempted-recon; sid:200000163; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"iwimwmiwi.click"; classtype:attempted-recon; sid:200000164; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"jagej73796.wixsite.com"; classtype:attempted-recon; sid:200000165; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"jfdjy.com"; classtype:attempted-recon; sid:200000166; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kalyani963.github.io"; classtype:attempted-recon; sid:200000167; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kexoigrufouddou-5902.vercel.app"; classtype:attempted-recon; sid:200000168; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kl1k-ds1ni.neupdile.my.id"; classtype:attempted-recon; sid:200000169; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kliind08.wixsite.com"; classtype:attempted-recon; sid:200000170; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kreelo098.weebly.com"; classtype:attempted-recon; sid:200000171; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kremlcup.com"; classtype:attempted-recon; sid:200000172; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kshitij12375.github.io"; classtype:attempted-recon; sid:200000173; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kucoinglobal1.com"; classtype:attempted-recon; sid:200000174; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"kxbztydc.black"; classtype:attempted-recon; sid:200000175; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"labanquepostale.jupiter-analytics.com"; classtype:attempted-recon; sid:200000176; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"leddevotoze-3146.vercel.app"; classtype:attempted-recon; sid:200000177; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"linnkdna-kget.wxxzsite.buzz"; classtype:attempted-recon; sid:200000178; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"llahi.info"; classtype:attempted-recon; sid:200000179; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"llahi.vip"; classtype:attempted-recon; sid:200000180; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"loffaummuddote-4145.vercel.app"; classtype:attempted-recon; sid:200000181; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"login-att-10221.square.site"; classtype:attempted-recon; sid:200000182; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"login-form.world"; classtype:attempted-recon; sid:200000183; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"login-online-outlook365.com"; classtype:attempted-recon; sid:200000184; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"login-outlook-midstreamauth.com"; classtype:attempted-recon; sid:200000185; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"login-screen-103134.weeblysite.com"; classtype:attempted-recon; sid:200000186; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"loginaccount70.wixsite.com"; classtype:attempted-recon; sid:200000187; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"loginaccount77.wixsite.com"; classtype:attempted-recon; sid:200000188; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"luk6414.wixsite.com"; classtype:attempted-recon; sid:200000189; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"luxlifemiamiblog.com"; classtype:attempted-recon; sid:200000190; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"m.meta-accessibility.io.vn"; classtype:attempted-recon; sid:200000191; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"madebybmr.fyi"; classtype:attempted-recon; sid:200000192; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"maqpiexyz.click"; classtype:attempted-recon; sid:200000193; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev"; classtype:attempted-recon; sid:200000194; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mayfair313.wixsite.com"; classtype:attempted-recon; sid:200000195; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mdbrvlfy.black"; classtype:attempted-recon; sid:200000196; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mesageriepro33range1.weebly.com"; classtype:attempted-recon; sid:200000197; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"metamsk-wallet-3.gitbook.io"; classtype:attempted-recon; sid:200000198; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"metttaa-audddt-new-02.firebaseapp.com"; classtype:attempted-recon; sid:200000199; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"metttaa-audddt-new-02.web.app"; classtype:attempted-recon; sid:200000200; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"microsoft365-storage.github.io"; classtype:attempted-recon; sid:200000201; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mikepattyjm.wixsite.com"; classtype:attempted-recon; sid:200000202; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mobilemidasbuy.n3g.fun"; classtype:attempted-recon; sid:200000203; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"monespacepro-client.3utilities.com"; classtype:attempted-recon; sid:200000204; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"monetization-violation.github.io"; classtype:attempted-recon; sid:200000205; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"moodengsol-net.pages.dev"; classtype:attempted-recon; sid:200000206; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mwsiekdnfjrdufs.weebly.com"; classtype:attempted-recon; sid:200000207; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"mxmxnmx.mx.zya.me"; classtype:attempted-recon; sid:200000208; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"national-au-b.com"; classtype:attempted-recon; sid:200000209; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"national-au.net"; classtype:attempted-recon; sid:200000210; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"nbaaiqjq.group"; classtype:attempted-recon; sid:200000211; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"nexomyacwv.weebly.com"; classtype:attempted-recon; sid:200000212; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"nft-time11.vercel.app"; classtype:attempted-recon; sid:200000213; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"nichcheck.weeblysite.com"; classtype:attempted-recon; sid:200000214; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ns1.carrier-ast2-portal-apple.com"; classtype:attempted-recon; sid:200000215; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"omadshf.ru"; classtype:attempted-recon; sid:200000216; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"online-assist.live"; classtype:attempted-recon; sid:200000217; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"online-promo-asb.org"; classtype:attempted-recon; sid:200000218; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"openkimono.pro"; classtype:attempted-recon; sid:200000219; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"opportunity-verified-status.vercel.app"; classtype:attempted-recon; sid:200000220; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ourtime.reconnect-dating.workers.dev"; classtype:attempted-recon; sid:200000221; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"owouwuowo.click"; classtype:attempted-recon; sid:200000222; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p365kf.com"; classtype:attempted-recon; sid:200000223; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"p4zv8crnrrha27so.94-103-188-123.plesk.page"; classtype:attempted-recon; sid:200000224; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"page-center-manage.com"; classtype:attempted-recon; sid:200000225; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pavan-patil-22.github.io"; classtype:attempted-recon; sid:200000226; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pecinternational.net"; classtype:attempted-recon; sid:200000227; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"peesom.chat"; classtype:attempted-recon; sid:200000228; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pencairaanndannaa.my.id"; classtype:attempted-recon; sid:200000229; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"petty.wiki"; classtype:attempted-recon; sid:200000230; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pimnhv.group"; classtype:attempted-recon; sid:200000231; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"policies-business-page-service.com"; classtype:attempted-recon; sid:200000232; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pottatrebewe-2808.vercel.app"; classtype:attempted-recon; sid:200000233; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pqo.hrf.mybluehost.me"; classtype:attempted-recon; sid:200000234; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"programming--service--panel-totlyy-free-for-you.vercel.app"; classtype:attempted-recon; sid:200000235; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"promo1.spik.ru"; classtype:attempted-recon; sid:200000236; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"protocolsecure.pages.dev"; classtype:attempted-recon; sid:200000237; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev"; classtype:attempted-recon; sid:200000238; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-1778406e4fec4394901793111c187dd9.r2.dev"; classtype:attempted-recon; sid:200000239; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-19b834342e7d465b9f00b3511325a081.r2.dev"; classtype:attempted-recon; sid:200000240; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-21dd4dc659614ceb93e45a6de4434502.r2.dev"; classtype:attempted-recon; sid:200000241; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev"; classtype:attempted-recon; sid:200000242; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-2fefe932a6974485b987c9ba851b5c40.r2.dev"; classtype:attempted-recon; sid:200000243; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-3a46d9914f494078a6d6237513e7a096.r2.dev"; classtype:attempted-recon; sid:200000244; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-442ed822851244a689b3472ea2c6a950.r2.dev"; classtype:attempted-recon; sid:200000245; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev"; classtype:attempted-recon; sid:200000246; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-682ad3b65d944376b919745aae3c56d4.r2.dev"; classtype:attempted-recon; sid:200000247; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev"; classtype:attempted-recon; sid:200000248; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev"; classtype:attempted-recon; sid:200000249; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-7f5cf36445d042168bfacd712e890dc0.r2.dev"; classtype:attempted-recon; sid:200000250; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-803839714a924882a7bcc2495a26860f.r2.dev"; classtype:attempted-recon; sid:200000251; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-8161de4a277e4ee8b532af34954224e1.r2.dev"; classtype:attempted-recon; sid:200000252; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev"; classtype:attempted-recon; sid:200000253; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-8376b5b2334844d193a525d8b8548fa5.r2.dev"; classtype:attempted-recon; sid:200000254; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev"; classtype:attempted-recon; sid:200000255; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev"; classtype:attempted-recon; sid:200000256; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev"; classtype:attempted-recon; sid:200000257; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-9163a97d70394cb499bdd232be6c2169.r2.dev"; classtype:attempted-recon; sid:200000258; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev"; classtype:attempted-recon; sid:200000259; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-98171471e0944ac3a5820ef719bf0640.r2.dev"; classtype:attempted-recon; sid:200000260; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-a263e0790935412eb10cacc55bbced18.r2.dev"; classtype:attempted-recon; sid:200000261; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-a291041b077742899b63a9982f04a56c.r2.dev"; classtype:attempted-recon; sid:200000262; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev"; classtype:attempted-recon; sid:200000263; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-b50adc5d699a4f08aec37102c2103da7.r2.dev"; classtype:attempted-recon; sid:200000264; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-c0a934c950e441db96b882789f53c9ea.r2.dev"; classtype:attempted-recon; sid:200000265; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-c2c250050109456396c933de259a4fea.r2.dev"; classtype:attempted-recon; sid:200000266; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev"; classtype:attempted-recon; sid:200000267; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev"; classtype:attempted-recon; sid:200000268; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev"; classtype:attempted-recon; sid:200000269; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev"; classtype:attempted-recon; sid:200000270; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev"; classtype:attempted-recon; sid:200000271; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev"; classtype:attempted-recon; sid:200000272; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev"; classtype:attempted-recon; sid:200000273; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev"; classtype:attempted-recon; sid:200000274; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-e42cb528b102447385e3145197916f51.r2.dev"; classtype:attempted-recon; sid:200000275; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-e4aff507450c478cbe3f77ad23d75035.r2.dev"; classtype:attempted-recon; sid:200000276; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev"; classtype:attempted-recon; sid:200000277; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev"; classtype:attempted-recon; sid:200000278; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev"; classtype:attempted-recon; sid:200000279; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"pubgm.club"; classtype:attempted-recon; sid:200000280; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"puffagroibrouwoi-8818.vercel.app"; classtype:attempted-recon; sid:200000281; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"qasimk.com"; classtype:attempted-recon; sid:200000282; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"qfjfvseq.info"; classtype:attempted-recon; sid:200000283; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"quauwograssodda-3503.vercel.app"; classtype:attempted-recon; sid:200000284; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"qysgyp.com"; classtype:attempted-recon; sid:200000285; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rajdipchatterjee.github.io"; classtype:attempted-recon; sid:200000286; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rechazaroanularaqui51.weebly.com"; classtype:attempted-recon; sid:200000287; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"remote-fix.pages.dev"; classtype:attempted-recon; sid:200000288; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"renggard.47-243-192-240.cprapid.com"; classtype:attempted-recon; sid:200000289; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"resolvepanel.live"; classtype:attempted-recon; sid:200000290; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"resolving--issue--with-us1.vercel.app"; classtype:attempted-recon; sid:200000291; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"resqat.weebly.com"; classtype:attempted-recon; sid:200000292; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"review-business-case.d2f7p3b7pucnle.amplifyapp.com"; classtype:attempted-recon; sid:200000293; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rlpqwefi.pink"; classtype:attempted-recon; sid:200000294; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rouloigeilleuja-9523.vercel.app"; classtype:attempted-recon; sid:200000295; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rulemec.pages.dev"; classtype:attempted-recon; sid:200000296; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rutinqqwin.shop"; classtype:attempted-recon; sid:200000297; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"rwftfu.quest"; classtype:attempted-recon; sid:200000298; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"s.team-pw.cc"; classtype:attempted-recon; sid:200000299; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sairanees.github.io"; classtype:attempted-recon; sid:200000300; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sanseipecas.com.br"; classtype:attempted-recon; sid:200000301; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sasklelo.weebly.com"; classtype:attempted-recon; sid:200000302; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com"; classtype:attempted-recon; sid:200000303; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sasktelcustomerwebly.weebly.com"; classtype:attempted-recon; sid:200000304; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sasktelnetwebmailservermaintainance.weebly.com"; classtype:attempted-recon; sid:200000305; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sasktelrectify.weebly.com"; classtype:attempted-recon; sid:200000306; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sasktelscrutinize.weebly.com"; classtype:attempted-recon; sid:200000307; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sasktelservicecentterwebly.weebly.com"; classtype:attempted-recon; sid:200000308; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sasktelsupportsystemwebly.weebly.com"; classtype:attempted-recon; sid:200000309; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sbcglobal30.wixsite.com"; classtype:attempted-recon; sid:200000310; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"scan-vulnerability-guard-v3.pages.dev"; classtype:attempted-recon; sid:200000311; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"scan-vulnerability-guard.pages.dev"; classtype:attempted-recon; sid:200000312; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"scanner-metamask-v1.pages.dev"; classtype:attempted-recon; sid:200000313; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"scanner-metamask-v2.pages.dev"; classtype:attempted-recon; sid:200000314; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"scanner-metamask-v3.pages.dev"; classtype:attempted-recon; sid:200000315; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"scanner-metamask.pages.dev"; classtype:attempted-recon; sid:200000316; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sec-sign-in.info"; classtype:attempted-recon; sid:200000317; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"secure2-validitycheck.weebly.com"; classtype:attempted-recon; sid:200000318; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"securecapitec.theprimepoint.online"; classtype:attempted-recon; sid:200000319; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"securerpcfix.com"; classtype:attempted-recon; sid:200000320; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"seeteressecalywoi.github.io"; classtype:attempted-recon; sid:200000321; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"seivviice.weebly.com"; classtype:attempted-recon; sid:200000322; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"server.0e7p.com"; classtype:attempted-recon; sid:200000323; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"server.2rk3.com"; classtype:attempted-recon; sid:200000324; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"server.8q3p.com"; classtype:attempted-recon; sid:200000325; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"server.n6b8.com"; classtype:attempted-recon; sid:200000326; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"server.v9vs.com"; classtype:attempted-recon; sid:200000327; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sevvviicess.weebly.com"; classtype:attempted-recon; sid:200000328; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shard.blue"; classtype:attempted-recon; sid:200000329; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shard.skin"; classtype:attempted-recon; sid:200000330; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shared-d7590.firebaseapp.com"; classtype:attempted-recon; sid:200000331; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shared-d7590.web.app"; classtype:attempted-recon; sid:200000332; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shaw-101329.weeblysite.com"; classtype:attempted-recon; sid:200000333; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shaw-101587.weeblysite.com"; classtype:attempted-recon; sid:200000334; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shaw-106427.weeblysite.com"; classtype:attempted-recon; sid:200000335; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"shaw-107375.weeblysite.com"; classtype:attempted-recon; sid:200000336; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"solutionwebsitedapp.firebaseapp.com"; classtype:attempted-recon; sid:200000337; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"solutionwebsitedapp.web.app"; classtype:attempted-recon; sid:200000338; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"solvetans.firebaseapp.com"; classtype:attempted-recon; sid:200000339; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"solvetans.web.app"; classtype:attempted-recon; sid:200000340; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sondfrom.dexlog.my.id"; classtype:attempted-recon; sid:200000341; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"soyokai.or.jp"; classtype:attempted-recon; sid:200000342; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"srdate.club"; classtype:attempted-recon; sid:200000343; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ssy.hmb.mybluehostin.me"; classtype:attempted-recon; sid:200000344; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"steam.poweredartsworkshop.com"; classtype:attempted-recon; sid:200000345; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"steam.workshopsreview.com"; classtype:attempted-recon; sid:200000346; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"steamcommmuty.com"; classtype:attempted-recon; sid:200000347; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"steamcommuunity.ru"; classtype:attempted-recon; sid:200000348; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"steamcomunutty.com"; classtype:attempted-recon; sid:200000349; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"steamconmumity.com"; classtype:attempted-recon; sid:200000350; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"stepsray.vercel.app"; classtype:attempted-recon; sid:200000351; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"support-metahelpcenter-id100003498934.netlify.app"; classtype:attempted-recon; sid:200000352; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"sv5gardens655665.weeblysite.com"; classtype:attempted-recon; sid:200000353; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"system-portalnu.duckdns.org"; classtype:attempted-recon; sid:200000354; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"talwgam.njmolada.com"; classtype:attempted-recon; sid:200000355; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"taste.baby"; classtype:attempted-recon; sid:200000356; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tele.zhngain.top"; classtype:attempted-recon; sid:200000357; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telegrambot-resolved.pages.dev"; classtype:attempted-recon; sid:200000358; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telegrazm.net"; classtype:attempted-recon; sid:200000359; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telstra-100408.weeblysite.com"; classtype:attempted-recon; sid:200000360; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telstra-100469.weeblysite.com"; classtype:attempted-recon; sid:200000361; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"telstra-103234.weeblysite.com"; classtype:attempted-recon; sid:200000362; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tiktok-888.vip"; classtype:attempted-recon; sid:200000363; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tiltckshow.top"; classtype:attempted-recon; sid:200000364; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tnomwzrp.top"; classtype:attempted-recon; sid:200000365; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"toeken.im"; classtype:attempted-recon; sid:200000366; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tonic.pink"; classtype:attempted-recon; sid:200000367; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tooma.cellinsurance.co.zw"; classtype:attempted-recon; sid:200000368; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tpdtepremu.xyz"; classtype:attempted-recon; sid:200000369; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"trattujeilesso-3354.vercel.app"; classtype:attempted-recon; sid:200000370; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"trbinace.com"; classtype:attempted-recon; sid:200000371; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"treibrukeukonno-1395.vercel.app"; classtype:attempted-recon; sid:200000372; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tuesmad.firebaseapp.com"; classtype:attempted-recon; sid:200000373; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tuesmad.web.app"; classtype:attempted-recon; sid:200000374; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tyyyyyytyyy.weebly.com"; classtype:attempted-recon; sid:200000375; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"tzcsjfto.chat"; classtype:attempted-recon; sid:200000376; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"u.updatetrackgre.top"; classtype:attempted-recon; sid:200000377; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uc-whatstapp-web.com"; classtype:attempted-recon; sid:200000378; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"udxcady.wixsite.com"; classtype:attempted-recon; sid:200000379; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uklifejv.cyou"; classtype:attempted-recon; sid:200000380; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"updatemail12.wixsite.com"; classtype:attempted-recon; sid:200000381; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"ups-trackdeliveryapps.chickenkiller.com"; classtype:attempted-recon; sid:200000382; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usbest.cyou"; classtype:attempted-recon; sid:200000383; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"user-transaction-overview.vercel.app"; classtype:attempted-recon; sid:200000384; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackdck.top"; classtype:attempted-recon; sid:200000385; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-tracklnv.top"; classtype:attempted-recon; sid:200000386; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackmcl.top"; classtype:attempted-recon; sid:200000387; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackmec.top"; classtype:attempted-recon; sid:200000388; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-tracktpq.top"; classtype:attempted-recon; sid:200000389; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"usps.com-trackvmd.top"; classtype:attempted-recon; sid:200000390; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uspsinfw.top"; classtype:attempted-recon; sid:200000391; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uwdtsczi.top"; classtype:attempted-recon; sid:200000392; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"uwm-onedrive.com"; classtype:attempted-recon; sid:200000393; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vaishnavi1436.github.io"; classtype:attempted-recon; sid:200000394; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"validatie-veiligauthenticatie.com"; classtype:attempted-recon; sid:200000395; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vbbu.ldgknhk.lol"; classtype:attempted-recon; sid:200000396; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"verified-this-request-badge.vercel.app"; classtype:attempted-recon; sid:200000397; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vo4zzp.icu"; classtype:attempted-recon; sid:200000398; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"vs41.github.io"; classtype:attempted-recon; sid:200000399; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"walett-cont.gitbook.io"; classtype:attempted-recon; sid:200000400; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"walletauthenticators.vercel.app"; classtype:attempted-recon; sid:200000401; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"walletcomnecitt.gitbook.io"; classtype:attempted-recon; sid:200000402; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"walletconnectdapps.online"; classtype:attempted-recon; sid:200000403; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"watranfart-fdd6a8.ingress-bonde.ewp.live"; classtype:attempted-recon; sid:200000404; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"waxed.wiki"; classtype:attempted-recon; sid:200000405; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"webmaillshavv.weebly.com"; classtype:attempted-recon; sid:200000406; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"weeeqweeattt.weebly.com"; classtype:attempted-recon; sid:200000407; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"weigh.skin"; classtype:attempted-recon; sid:200000408; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"weigh.wiki"; classtype:attempted-recon; sid:200000409; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"wgqdqvtn.baby"; classtype:attempted-recon; sid:200000410; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"wgqdqvtn.pink"; classtype:attempted-recon; sid:200000411; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"whatsapp-rqr.com"; classtype:attempted-recon; sid:200000412; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"wirelessvoicebtpaidmailinfoplay047.weebly.com"; classtype:attempted-recon; sid:200000413; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"wscs1231.cyou"; classtype:attempted-recon; sid:200000414; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"xn--metmasklogin-vcb.gitbook.io"; classtype:attempted-recon; sid:200000415; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"xojautruffeuttu-4659.vercel.app"; classtype:attempted-recon; sid:200000416; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"xraiz.info"; classtype:attempted-recon; sid:200000417; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"xraiz.vip"; classtype:attempted-recon; sid:200000418; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"xsuweamskeidjf.weebly.com"; classtype:attempted-recon; sid:200000419; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"xya46.cc"; classtype:attempted-recon; sid:200000420; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"yahoooooo-108560.weeblysite.com"; classtype:attempted-recon; sid:200000421; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"yavanica123.github.io"; classtype:attempted-recon; sid:200000422; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"yi5lq-syaaa-aaaag-acfsq-cai.icp0.io"; classtype:attempted-recon; sid:200000423; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"you-can-receive-here.vercel.app"; classtype:attempted-recon; sid:200000424; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"zeiitgeist.angelocachero.info"; classtype:attempted-recon; sid:200000425; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"zenixoikitti-5809.vercel.app"; classtype:attempted-recon; sid:200000426; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"zeznjx.shop"; classtype:attempted-recon; sid:200000427; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.host; content:"zwzcn.com"; classtype:attempted-recon; sid:200000428; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/hpqhv"; endswith; nocase; http.host; content:"alturl.com"; classtype:attempted-recon; sid:200000429; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/descargar/kmsauto-net"; endswith; nocase; http.host; content:"ardilu.com"; classtype:attempted-recon; sid:200000430; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/parcels"; endswith; nocase; http.host; content:"did.li"; classtype:attempted-recon; sid:200000431; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/servicesatttttmail"; endswith; nocase; http.host; content:"flow.page"; classtype:attempted-recon; sid:200000432; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/sky/indian-stock/dashboard"; endswith; nocase; http.host; content:"hdfcsky.com"; classtype:attempted-recon; sid:200000433; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/sky/login/verifyesign/modifyemailmobile/g3mail@b.c?status=success&digio_doc_id=did241119142331957uip6e3c979l3r6&message=document%20signed%20successfully!"; endswith; nocase; http.host; content:"hdfcsky.com"; classtype:attempted-recon; sid:200000434; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/djgj07/"; endswith; nocase; http.host; content:"is.gd"; classtype:attempted-recon; sid:200000435; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/pubgm/"; endswith; nocase; http.host; content:"pay.zing.vn"; classtype:attempted-recon; sid:200000436; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/go4bnv/"; endswith; nocase; http.host; content:"rb.gy"; classtype:attempted-recon; sid:200000437; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/18ab5a"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000438; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/4ff03b"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000439; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/8wtcv4z"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000440; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/96a02f"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000441; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/c0d1afz"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000442; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/d2f265"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000443; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/eacc63"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000444; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/f9decb"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000445; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/mzhpkzf"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000446; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/nbyh9vh"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000447; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/sa2uoq0"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000448; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/tcthi8d"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000449; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/tnab363c6"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000450; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/wx1eo7w"; endswith; nocase; http.host; content:"rebrand.ly"; classtype:attempted-recon; sid:200000451; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/tvybxr"; endswith; nocase; http.host; content:"surl.li"; classtype:attempted-recon; sid:200000452; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/carrefour-926/"; endswith; nocase; http.host; content:"tinyurl.com"; classtype:attempted-recon; sid:200000453; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/t8vi"; endswith; nocase; http.host; content:"urlz.fr"; classtype:attempted-recon; sid:200000454; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/t9ka"; endswith; nocase; http.host; content:"urlz.fr"; classtype:attempted-recon; sid:200000455; rev:1;)
+alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"phishing-filter phishing website detected"; flow:established,from_client; http.method; content:"GET"; http.uri; content:"/talr"; endswith; nocase; http.host; content:"urlz.fr"; classtype:attempted-recon; sid:200000456; rev:1;)
diff --git a/phishing-filter-suricata.rules.br b/phishing-filter-suricata.rules.br
new file mode 100644
index 0000000000000000000000000000000000000000..b06da31b89b207977135b74e9d5b5cace2261d8b
GIT binary patch
literal 7411
zcmV<P91P=uIyR0ds%k$3KqF=0{QVA_R{!_Cocu!m(x61>`5~u5Dxi!4RsiFdmR45l
z5ubprM1T_Kv$M`~If(jY<<k>kqGA#gfI=rGxXW&tpzz)6?is0P_oSHJk!krmKf7{g
z%}P=7eXQmCgj&Ak-^li!=H&f17J0&+Sbx@^4HN<ebJ_df6EyI1{GpdI`-c6!U!rS4
z$OFCJPab`XJK5Lc?>8zN#r09K<n#Sg%VeR#;~$&Hg7t@=JpSeQ{fYZ}oV9)%Ob8~;
zKX=`i?7oco&mVsB_>=cR8Ozs0JRIDQU;d%qW9f(3w$a|d`r#)JqlX-@;@4xV^*ASP
zw^H>md+>k&{(_9`AKCkM{F|cBUHQXL9@8r6Uoi8N!E?nAKY5G}N%?v>BKTJGvh!~}
zR;pY3eV0?UReg5db6P*}%{hJk$56rP(?6(X1pks><nhx#|GU5WlmGkMKl$ee#QVX1
z_wmy|`S*YRlYji%Kltk}Jf~lVvVQ&eU$yq}xz<=b^x?3gt>}LI{W0cV_%%&P(EZjh
zo&LX3tn>YEPxEo%Hs2NBcKZ79pZ&={|M=?<-%_d9`wJn2>W$lK<XrIM%k>^gso*s8
zH6MH*bS$Gy@%y8Y`<kelSN}&9-ya#zFY*0XHt#DZC74YV2bdYELWUztER@11sSIXT
zykFk|mbzgj%P)HWMM3kCH4aj}=_WmJYfsdM94GH5UC2FCGAcPC4}88!Gtns~#*qoB
z_~Ehad?`W5e&&%Xj?#2yP`w%8$P?9r+17l*Y;E?l=-9zpEQK%FU&znhM=kmf<36oE
za-*4Csy<kcOmqXcM|UO#T}3U})>D8=pS72Q_|l@`)RKkNVr6Sec6Nq``;2D}a^--z
z!gC9p#G!pK@>cl1UO{U%RXTC)J7FzmN@R$60p8ETJnZM(Rr0*?+zTP2nR}8g9ut0>
zEP4*d@xVM#N8YX6yLFG-&VBM%&?BRg$2BLPcJPsqAD)eqkXlHg`P@DqKR{1h-zpte
zHZxd|FQ;&ar}2K49Y0~1$+Lsv69Po$03xshZjTi+e@7LnP~jKOoSa9f1v@tnHD&63
zZb_9m)kkPa_IOVC{45oYixtQ-o8q|u<7cTEb{zg@F<q=C;~b83BAdajIG6XcG!&m}
z!3jNc&q57Aew}UTb<|k);3zKXD=q|UE58tDf1eqc2M(^4iB5Ebv|TnI-s5t#zpKSL
z;MREppLj&fAoR7*RmX-=Onm!%%&&x=u?3e=wCRx<x@j2r*pi@-#_>^O_rR{093v&R
zrrnmG!C|74!Wchr8_qy$WE7{y^!-HLbD2%y;W%|ee^y{0($w^0H&Tz7rTu7PaCuBu
z;gj-ebChoW=1`LtvY~Y8b=|QppV^gFkY4HYwH721FCV1uji;74|K7H3BO;R0JVPr=
zzgUHq!R2SIiCbas+th*@?cy8lE?`|>s1^1PxYd)lweeQj<&L)G210Aj)N0Cj`1_(7
zQu<g76<RM0_RmC)*Fl(J)elmv)-#XT^qDDg%H|?ZST}3aiE-Ha*>q38dsyxn31S$$
z_n|*!KJEsaSwCfya(yqf!)yrE8>wGpRB>I-@-|X)I+nuS2HvnmRw6gdhDI|35wR=9
zmD^TN;&yQ`8xEMEoGmw2Eh~R^L%AL=8%4Eeq!br&G`sh-(UzB32NmPAklI*W;;1?`
zU4i$UgGMtC1Ugqi39W{X0cXqsC>E?4Q@d+S_u8$O&B(oGT3^YV4?PjrD&Eo)b6@wJ
z-S(Yurn%Y|KlcJty?)ybGYY}8ZL{mTx^&R}!kYcQ6se&W%7N~e(HeM$W;0|ctzu(R
z58XnlpL>ldo^gDnkVR9V`(?L_tEf^UKjJg@%+^-sy4Ip(8A~8u(;;}c3tL0?3w22&
zA3P<D0rEbj6*%0&i{h=YI3j)4b%qD}uyOYA!C8(N%p<MZRc0CI_N<EyL)bVCTFI#&
z=7j}%TJC8h@`P(F(2+9m_x-u|^w3#c`#!KE)h!jKW~uEo$UQv>lAJNzkfR~POb~Zr
z7WO?oNFS^(NKS{^SoZx-%(qZdE2Dcea3|J<oSC4}B^!ruj2&w(<tC4w9+ZRP8ky@_
z2FG!0dBMu!U6S9|gZ4t_9X(8Zv!#~@gNf31jCsHfPY=BlPKS0EM$b+>f}6~XzlXu@
zAe5f?+Mt(*k+8kiHX#F^@@g{mM1F@)!`IJaNBpc+T^YseC3tRk(Bm?lwa;--${5Wo
z8Sa6?om$4aWekWZKD+kws4#P=g&C;wb$cPRnKdQG0-_Is!aQQ42U{)~r3$lVZ;!q0
z>8lIuft5c%kMv^&Tl3z!Y>aBSkLv_qC}Sa7(Y5Wr9mdHOrlgqInBeEB!@7*AWIw?D
zJP8hHIfT`nJifV%(bN(X(7tqk8!fgv`F&E>Py9G_>>5*|AbZR&$cE}W$e^6H&+`6W
zo_elyGq3ZPqjt01%maTulxkU)p7o=(OoOs)7X8HZ=w_Id7(mag>zK;rbpr(yuW{j5
z%FB+X2v**NR#rVdjlLR~xm62s3D57-WWMB5ou5TVBwEzFxrsAe-^4{6=ecm3_y;@z
zEtosGUW<)9q#PlS0nCyT<Mj&L))QzUGGXL?0!5*c?FJOHAfZL-yYfs`@g|TA5;B_E
zuut=IZ_Qx}kO|!*_w;dwo5_F$+EzwvOKipsE%YY(I9KN5^+{*S`B`)rT{_D%I*+b2
z6ts|>cnS0~WSe-`+19yu@Su${<}0l}u{!NhGu0H=l(Gw0MH^a(Nd!4?eIC}C*UZl>
z*3dN2LQZ0dV0@;~)^%MBT0FMR7d<JhAQ7lKzM0adKesk-DF-LH4n8g8-%qVn_JI~+
z5|JEf?oz6ZIX?@*AmEL++t7080n2M`NG<v*v=EnQDH4~-;G|<ETxmH8s}=~zkDwaR
zLP4T|FHj0@i9T)4z=nS6S5lPLj99loshKXfN`8ydvJpd<XIX$5008#RHIBWO<S<|s
zh?70KWmu(^B$CBLVAb@+#9e7QiGvoOv=oAiPm2w1W<xj5f%QTmg-8jmSCdHMbv0$d
z<<J9(`9RG)y|Rd-w8X@=OKi1zTC&S%C!3iEoS$~2XNnQ`)Mk3jBcu0W)LhQPsk_8w
zQ1dQU=&mr%ug@(zI<5j1&_Y#WVabS08FdbwqE5_ov(|Q@*TqK>rG+LIammJj75s9m
z-6IRCzjl4!k3-k5@+z%5;i}cz=;qhTPa4$BiVww1$zi~NdB+d&SbIWG%$m!wvf6s<
z0_1(#cMq_8rl_>SgmJ^o&Inq{8`-D$jND@ugEvH2c~?a9V^lMBl~$Q(@@sBKPPXMl
zM+VmGNez3QpX}QVpC^nLN^44VH}exQ1Xvf`N~yGpgms%;H+mK}QCc-(*oHRa3OCdy
z7nr&}KPxRA;i3(np}yahudV7Xv`~xq0oc%EoPCRRX<cc_2orB+EpOJq4(&Knu8~#+
zeE@B^A|n&WHA}ET<gKtJLh|Q&=APWwc^83(7IF|vVB5$c5uS8@ZuT417DA#Jv3ZZg
z%s9#so_V61f+FHnh^`-?g=R$LfT>ZsH{^m#w5t9ooX90pV`Sf>D<)@>6Sig>s1<7c
zNPc^@(&7;NZ%4#sdllZqx1jlJ>690xMIwr$AWi-ov%wUO@9<{Jxye$^t#FEt&)ItD
zkxL2-8yrmL%o^M|hgoSsh-e4NZ?i&%uok_@eA^=vK?`w+CQirMbFG+Ah6yz=Avz&P
zXrUJ2B+8+7J4Sv{G?`h_pxbj9Mm14d&V9CR&|`uYRFf_WSD=eZ6e}$cu@s)L;&V{L
zls&2RW0B9rJx6Wi9!KxsZ-_MYs#vAcLJ&=U$9JMNw<R^_Qe$T7vZIvNd}xBZ7dvxB
zMB)+K;mD&52(%D*sQm7UqU*+Ko6<@TmESX>Pu(>4R$AYof_ui`Z97b6mbkiXROu<C
z8q9QEX{m<p-U>#9O?6FC3~*-6e((8HZ)dr9osiMUhM^v2h_8l6Dm4(tVb69@#mrj$
zD>(3xd+z1Y9iS`w(+8Onx&oZiIt^dIQ;fTd!1fg@zuxc9tX!<saL_`np+xUtqre<W
zKZXX273o%5s$n0WmIYb}>m{~VWLju*rL=TI&}5=%)@G=CK+5`!O6xd;9x(NIOl-`Q
z{Mwk((hZ^6Q40a=Os)Eq_U64p3l)dR1EJ{~SRfZDu|Q~b^8&abY-P78A2KOIX{BWz
z0!Ku}A+sO4j0vR$AC7jw*)TAV3_#m^Ewts(6E*ktv|u0zH2bt(DXs7jhaZ>&*2dwe
zCk-WWO8nf0sI=gNn*unT?>S_?++;Jf#Lm}2_`W}z43*Y-_>nrmm16E#f&hh@ZOGCA
zSFjP0y$E82f;n1^(gF~d2DsBBKv{`+Yf6hhR5G|ZpMJTsCY4rwSQoHBh3xI{$VsX0
zCy2|uKno2BGk-f-C_B5rd#r4evWdbb_Mo(~LqA}xH73;$PIJyx7V%=83@@s*%)>44
zg=DNzXsP)SbTy=oOIoVx4J$QeSaCxfw3K^rd7vE+sP%q^`5v@<3i}M=v_KBZ+-@G#
z+Aw!$DgAI|NbxvFnfc!|`$avj_H|W?6pRd7ia;1gtWKRz>*wa#Ny&dCe)eZJ#3_b&
zh1Zfii&z)-p`}7Zjfblc?k+CR?Ap?#6lkduQBUC=-Z8v+c=OK<JfPh=Kesx%QzC=L
z=3z}goy4m6Kub}G3dR|LUeA}Z546;SaCpRb3OCs6oQx^`(2q-HRhKYrvCSP?szI!e
zWVc9ax5kDyXsHUZF&4r1JKVOJL8+2OAu$uUJdeZs0oh<z3gF7Nw2}c@YCuE<4Yq|+
zs8lY^C}cSKKy+-t3S&^_27W+G2?#f(1LIC1#l(-i{-w0~Lnj4MdQ^*4?~ss|mkPC&
zxth|_5J_rzX5Qg;Ekv}H^<2%As>*Tip*~kil~#zT;_dhL{ri3Uy={VoMr8==?lk3f
z&%BiufcT4i=l?&J=f`<I2kPV2P$6iPg)pW@5eTB@)e4RY%!0e)Cq9mQd|lrT#Qa93
zwI8m!ckb59C|^SER%r<cN8P(0xA#jvhsDswkdKV(8S(K^MMzSNN~(TFq`Z57ef{a0
zK%;ttmG|rW$Ma7<8#B@Boa7xGt?p|{Rfx^Ll-6qK-fw}yTz>ZI-#*ZWt*I!j-S9s5
z&)ens+?V&i_4eK0Ahzj5Y2}8f|DEysKcF?%_m1NTFYb7J-M-%b{!|TaB~1rtB*>_-
z3@(rR^)*+HnP?w@kt_4|re-F*(O7BWh93*>-|GOt?%0^B#E=~ATRQi)&X^&W6FtIh
zysxV9n9aMB$=NHex|RSS!L-T~xAQ4|88I=o7Ef8e$5<qsR|zGCfzkpHCcPU%6<1F2
z37k#cQnSRYW+s+_a091qX=u#5Z5eN!uA^g4p5l>O;|DmV5w~|cVN6$MljWxAD@<TX
z@&KFoTogRZ9eA_zP>WeJ7))h>T4VT3*vzQRj9rFk0>~WGd=V>lV9s#4z!pw8M@U8I
zgca2DCg*f1n=Q+LD{)UoUBf6^Q_7i1=W=jmiD*ih#c(U5ZfD>M-!eC6rBmo$fF=_?
z5WqH0)9l%em$ZU6lyUDGd%J{_DZ%ZGs#|i?WR@C?Fm3I~QouGJl>=|f;IrBwBUj*X
zWHSt1naKCn;<Pz-;s)LYCRB5vYIAqGi4ex72WuIT8!o|-*bDhKW>H(jhRZ9ZD;i@`
z%^p9v2{UJH&a#k*jk&-n1f^`5u<bk!e+!?!gKb@E!af)8!NFk|GAf*vtlUC(^*U?w
z-5}arEK9LxcA5;(Rh76WZ&U&dx`r}SzZ9t{ygA0^0o%b=hB!<L*V3_?QqPOsR}~Vj
zo{2C$0&c9x4~p^?OIaae=w6YtmsS~UOx(_BY@omjJ)Aj`LJUW51z&s293OAb!N?mp
zsfYS-5(exABO_B}t?U9z;K2Jj42CsSmC@YSv?OuEIc~l(^Tdsex}ho*AuEWPW6eTF
zt%zB)TEHeo-X$X{rKWrE9u}RXFfb7YRVdg@KSwy_05;vx%uvhcGD9`rLg^ieTX;82
zlrdz$aF$8zlTK8PGQLPB?#XCO-aOTzthh(7nwqj%gb+slm&d23&%VHCi_>u4&E6ES
zYsa#?bl1t})1KemZIs|D;90n85RRSV4Z2Gg+|IjML5De)Dvu4+s3lDV&q<gfcv}Z&
zE-V&quJa+)b84^&4b)1E@R_)QQFqpafW+wHvbB<Dk04yTdT79noX9*9fm=4DdPa}5
zB2GwjN411ae6J>#-PICW45+@ABmu8kKD(7o+|0g=xdd%NiG!_5CjIDG0au5)1#ZBF
z5jXahp)4a=EmzZ4jY2AwK?3%qyGQYa`Qb^nS*eC&D?pA4OWB?`%B_6vt*AT($#P*)
zUVCoC@I}%>dFD*q$_cmb91%(eO#>|m6Q13uO+YymY{j0Z_e;KgFM~a8g9g8MJe{}e
zI&a^<x9edB6-bm8O0n)U9@qER%0kRW<v#bz{(1DL<PkKAqVzw%<NLRwjO!ndTU8t+
zgGO;?=3M-HJpJ8~g>BAwsq4K?Z|PrszI41;rL|8Q`Pum#|Kq&H$M;*D@%ep~$k~2I
zBRTtB?JMtn{Z|D_>5GPc_Q%sxoONM6km&%&1GyOi(5Qv7{n?M(+fP@46bwqGv=B;Y
zxB2ta$MF@Y{&D<Xzn+ipNAx|VHBm}G`|%kaZiGf%l(30QN7Q})Ya-*(m%^=gT6+KH
zAsan*FwM_$qH@_EuL~DyyDhZTMQQRmHJ@lj@*dk0*kt5FuF?W2cIW0Xpq=R}{Zdo8
zRf@0IMUj^+4Qb|q?XIORjqlefA(N3us#SPJ2<*7_vk|n^I*ChcqJkr0S!sh-3MVHi
z5DU_Q7Ni}dTDt?SR81;fpzI!fT3-9FtvYG>iaKxCd^~sI!Tf5&5_i4U`>fBWFK5ni
ziMa+1M{)0<E295~4VPoS%oq0px#qHn^{KUk8^YdESH1#8h!&kfZWw@!w$d^}koU|M
zyO?(m&}Z<I4@B{-OeE4{R;LT(BT;J}!#!noE4hMsVs5sL5J_KYc|$9`l*bkeksZXd
zK;O8^Y;BMoJJs4Qw31P|MZOTf#g@b|B(o6)y#TH<KZOsL35u02mkFAcu9gJ`@muDe
zi_z}+7P*oe&`N40jAA(}+0M|r57k>&NpKked~`$fpSR-e(DJ(BktyH-vXN|=IJA;t
z2_2E-!*0|U8}>?zuB=Ws#)=tBNmhfuuSB_`N^7mGd42@WlPJ?eX~C7KLyHA=I2=}!
zD^{V*yCT=*Ilk0zCO53Y*v}(*&ni5pvp^3_pA&8Q9e)6=1Xa3a%ZM<N140IaPh?c~
z=6OOZ4Ha`*BIuYK%+xhI0$ORR9PI+h)<!@p6_uq^Hn^DRglbwcw0dkgU~<ejkZUHX
z*OJ^YHG>)qb5D|d)4YrRSnMYBx6VX=*)VuQcG^!pdSHM~tPso4ho2rrhq=-kD63O9
zx?i%6JA9Y7l9NG%R%$2CD(Ox;5Koyuhc&Y#$qr^_QdPO3m0rm+mvZwh%p!PMQM~c9
z(!`~#bcgR^)@{&1u0@>Ol#7>}jw`K368fNJ_)O{chMfJ}JvQ1DLTEMbNoj?Vw%wi9
zLIEjtLue%=(lWfz7F!+K<P$4mmVuJevLI_x*+<E6S7U=#@*h!A&!CLU#tr?Uz<(t<
zF&-B_PD*#47+Q&dB;_>K+6M<?>5b|8IRdSOKf;o~QDa&h78`fX?k<*ghd?W#k6NtY
zuN4B1&yYMg81T@>^fjp@KEr$)%-rKL^vFM3T!CVrw4jwLhcVmec5j?hWkD;%%QGu2
z#1T0mvrlMe1hkUcFf}=5Ywlp`vC+G&4_b+99OZ*sXQvH9D>;oLPWOzGE%Jp{0vZmh
zwAZw=aU5Ho4XrdX`jvdOIWp;8vo)n<Fe+GM3fCteCNmrCO1NX>bOwg*pYw}k!|6aP
zk&1VyDFxsbz295f!ES{}>9U`BWXs_y9x1cXcGDBIQk`hvHAAiKiR7`A#FR4KLxfgB
z6BgDyQ-oHsKr1DQMqe}1oZF6VPcbGY)MN%avt(czmH@7-gVIV7E$c-~Iw-9MF<b9f
z=3Vik*-8sPRIYw(c`h}z>j_#(JIpoSmGNLduXolyj7yE<$OFThW!DC^R5%WH)|Puj
z9<jf<w*_~H!%$k3!AWiRwBYmP_D);8m3|4&)g~BJ_CgMBrS%xrx1+GhS!-vnyeS+<
z;dUdtV?6A&DQ0glOUf)WmO9!qE0ThF;P+xVYQzakXA~&;4!lAuy@qZpV|*`#^FelY
zpQS4;-LQ!56X@f)4CtA_VEuAnzy!GvOUr<f39QF!889(%XK+d@G?<hl#bslV(n1WC
zYnQ9Vekdue!QjGn1(qVZOy@GX(h3XiK7q;>;Uu9|ADu>Nt%V>Q)!RWOWG9lRbr;Q=
zYsoQy*^v7@xBg{AE3t)k1Ayo2Mui<oh<m2g{p}5{G#ILMCjI#woa`#8(vO9oMT;q%
z&QIrGX&u(eJ}2GT5NIvK5O%TT$O(GpDYx<&T5B?dURVM)g@~5wD1a^<a7v78?e{cG
zfJJC6zR<lO)9o!6$dxV5^)T|o?(Vw6<`f-rybdKjXsyCf-UV-TZN!Dv3Ja0Ygw?)m
zaGv+j8pmIV__`3G?wnI-t*sCqrE|F`UeH=VAv9R<EX_P&-}-W|v&MQu&{`a!ZL?U(
zRA?=N5R`Q=mlKv>8Cpvov<}HkAd$7rTn`{O*D?XnZ9hERogOCON=qPA?kctjsl*mx
zXf1h=yd$d)ZKC~$om$NOwDY=&(xL~A{GFcAYHrJdt=7hLZ>CjKrIioLduO1J<^i-O
zG+3&N6tosMsQGtk7eXjIl6x)_bL5G#-Z$u8)fHN683ad!$h;a5Cc4q|`>Y>Y>lrxu
zh7%%L5VAk;(E8z!n~Z<4a_>{9^ZLrbF69NSS$C(#<jY!zXd?Fw^Ch$vJviA1iRy|}
zDnDdQopkV$GR$eluCxR~?SC-RJJC+H5;J4B5XUUB?t`EBd`r~(SxZX%Tpt@}Zc0Ai
zyJfoQf7_1N7Oi9}Mpv$j*WmjjCJP0<Qy}=-_QNKn7E4&nJzv6Mv5;5D-}X?T)x-jw
zNVx0V%Z_~0Qfgtb)IDH=m`-s}Nsb)%nYvnvFf8VrNdGu48!E!%Js{&J^N*41st%<V
zZCKP*m+$wtqqa30*%8v3|K^}<#}`Y+WfpF3v1MNY)l%r;=A0H}sdc^;Z0g+mc6RNz
z|HKKMyT(!2>&oQYsy?ys`!lz{*Xya7-#J!W@A7j;E2aN)$^IX?-$_5KlUfKd2`!Zp
zlNlNvJt{j5lUKR_`2pTq|2r<(0~?n7Om=^@i|&K)w~pbZd4K<Cm?3NIanJSH4c|Oe
z5*5BW-yj=;Hkt|DSL%S9e<-efgQnE77K=H^qBZF`o>v9snXg+8wG_Ho%r_Q^5oQCI
z9XyO?S#j?l<dLzfm!(rP$P?psysAC*=gP~vW9&{nbaF|^f-!76Ctw+QkR@Z+$wl@C
zWX0G;u(nqTSu=K*$)TM=HjLr$*^d1)MMmx!zj3~|>D)jb7{3K%ORw$<d1U-nTQ?fr
z74pRY+8SY2y|VqCmrcjGz1{-TaN%Vmu%@2({LYtg*^nf)4ZzDr(%yge1+hu?xjBVa
liucAgFB?TMbv(&EHnr?Oe95k1*8H1JJHTxCHwB+LOAj4bjuij^

literal 0
HcmV?d00001

diff --git a/phishing-filter-suricata.rules.gz b/phishing-filter-suricata.rules.gz
new file mode 100644
index 0000000000000000000000000000000000000000..3ee3c2982cea0f1a0a89c3e37c5d47fa8a788520
GIT binary patch
literal 7993
zcmV-9AI9JxiwFP!000021KeFrkL0+Kz3;Cm%=lmf7DuGMyMYB3*v9%WYcIxQV6hj2
z5<?OzB~nFEnWg&m8_cTiu@^oh>Al2ccNMZSQ&PSl74d=}@xFihS^EV(J^k0L_gS0i
z=`TP1`1I$)=|Ot=^wY7x4*p-hfBMU&qzCosN#vr;IL}1&bDn<^`KPM-AAJAI>!uy-
zpPu-WlIPQJkNfAJMh7nknBn{#e&!E$g-uR)wb}b^|MbHT6JA{QY_RJOt6Xl<K{o2e
zgZp9o_&y(h<Iz9r0nDCq@b}C6p?H!%+rtgvYuXLW{bS+y-#_8G=HugB+7B}<%f;F0
zP5$uJFznyaAic!1$OW9ge~YKz{NYdk`Q@*F{POdYH0M+HuTQ`E^4~vy`RR}U_T#q~
zf4lC}r|<sHH+uT|_tOpfU8A8Cco@*Y-+g`>7km2zJ6>(U4}tpq=<NE}VbNgx=lgZp
z3Vycg^V49B$5%gn_a9$={_f+w+3x;t-r@Kt>PpSbfXB}ai`;jAZtzKZ59@~4%pBmy
zKR@kSVS~Ou_~$1F*H8TO@2KGwUBR=#Y7-hOwCLlY1y#_3SA{6zz!qe|*15!!&EWOG
zZu&J`Ee?7~6*}I?c~>@U7#;^(5eC~WOPt%Pse)|_(WSbrhAQX|nM7V>ylpd%?rTG`
zabbZWJdV93i@g<9UNzXs;~Kl83Rw1ocUSx!g_q}K@eW8dcecZDxNt*%+}T%fdJODZ
zTf-JRErwNPCIX`_@ixfOxo=KxTE&@(6E@SLS2V{Po)6e~n8!g2!l3P8eD<Ct<rQ1c
ztBJfZ3gX~*Hd*Zcz~u1;h8;V*Opl{4>7w`g3jMKbgYF?a%wmTNxH$68$&xy$)NObD
z%q9mAajTOhc5*gbaQXu*Om5rbh{>`#xu}WZ&&A9ajBv~2kXyQt7nqz~>_sj{12WmH
z?YJnp;3eyix3|Y_K$qVwhu7PH&z-!J_?;=ZJ`7yYC3<VGmu%DKS+3G#N=hTMO`Z#0
z(6QIix^-vxEtpo1TZ0p}#<56mo!*?jBClim@%&xTWppcClboKQ%j1lf*zxi2YZQ4A
zbh+EMEoWxzE%P=217vbpFVzGo5nj+GanA3M<mBnnIKN_Nf6v!$n>YJqRoaX;yow2p
zM+Xo6a>m^VbSa+q8P9p%h!5P+WALJ-jlJZd_a~$8Xrr$h<h6;|i<~(2mUnD_Iiv#?
zuJ<@_P8qm1Ll~XRyC%8e1!eq;owO<1JQ;mK9(^T}-F;C~M!$o*>H)C-3tm;pHmFG3
zKu-ppKyZL{-6h+AFah)k6yfJhoqiiM<l)zC-X_DRO!@-T|8NAD0p1s$_(N$MXMyh5
zXaQ{>Hb9wEH-Ni371k*vBzz@h258_G@GnWgDO105#)rm-5LFU*!p!fMd3mG^Zk2Qi
z-{EI`^2;KPZ%a4!W8Yxc$DVz?`2WY!jk2O_sr@v=o-h(v)`U@82itOnfM69QEkP~m
z62Ys*4nEsOWvevU?#{;{r^^A~dTp3?k3%I(_WH8Qc^lQP6<K1}%kk_%OS3l1vaI!0
zxa~aTTupELEX4FW>Wl0v4aF<ydK9KG(|FxqD^W7Njp+Bn<nE%)<#A(iy2e5xl-;bE
z*l_r(X2baStac^n!rrfkJ2Gpqogq7A(wd%%EEB~0!<tbmoe=7)k}hiB6vo8)!HO{2
zw#bVv4sJ~wZdJy?CCl6T(ZPOSodqlO;4qgrJK$gTIK8oFN@iP;<#N5Aet9H8r_1d$
zHaDg%@s7OC31hxu;?n!LHTE@KnzqQ{GJ^xoSs1d-^Qe7vHC>{%?7JutTgpvc)8%JQ
z9)puk?uUmX6J?X95Y(D3RrB}RS&_UfrKZc<Jpa0#B&pNWWpMtuueUY=VePAC-fo<&
zXUszDnl7O`^rG-e3c}R<e(Z8nBijph>>0@2XGl_5k6{2~!5j1<u2axuc3*c^1%8ul
z&Tjba&#dj5vJhR}ggCh9@r?6}WZB*z^=6%9ujk`?P@0@B+GWi)i=W@Kq8H`RB{g@$
z=^DT}80`_LK(D2_@G61mH-awy9kiNZ*#atLKqoImSyW|RHB9ko)T-*_p>N_~a@|7D
zz>X2+8k>Tyar~s+k|AQW3?~1XIa5~gHzi>Uyn1^9lQL!5kY$L&EIs?@i)}PDT?4>?
zuCU~J$M77(<1;l)LmKlAS1>7=U_+Jw4&gA!B(v`EdIC*H81A;%sJ3nC^1J7-qq<=J
z#+f@F2TYgGJ-1C!RMCLx61YX`^+W=Thd8)Nr&2<7OP8aC=+sN?*?V69IApq{%<Pia
zaRpFXx?Ic-7m;b}WlC6XYs$EbB*+bA$W0Pty5tL=$iatkx2z2n4OPzBs2zj_w6U3X
z+x@D{5LSuB^n#8qO><y(w?s8|N0*}=Ze1sJWf1m9JPue82JG<3a$-WAGUL=0<dL^s
zo`k$4k36g<0G9-wEN4^F$wCdobJAM>jx1+WJ^R@2SE@b^Gg;E6KosLR)>+*SLsrUS
z$a-FPS=p*yb_H)_*=Kp46>fhyF;@lt(vIwA-N?eOkbC0xc%s_1bnVn1evl@a-E|##
z=#h+$=Q&--iw?7C>;oPfLp3A^4Elb@W@m5maVv1TR=Bd=JCG||tuxZawLV$Gr_AkT
zo#SRsI9-7W<?Obv()nSQ+Qbh(a=HQ&YJavqsNGD?9uZxeF10(Bz8<Qr3X8`c$4i#d
zVW>W{RW8eIwhQd|<zs?2r>ivqz0a0Vt1n?dj?<NyfMK={)B-AHB^0MCHvvm89TJl*
zw6^h5nT>^ljSoYot2_aVciLMs*~8&sQ8zeUA&L9w8(XKIg<bi^$CRbvbfqM~Jlpk{
zrqn!)(-o5V20b<pqpKbP&RJKKRehb09zFYeVG{X<so2N0_n3`7oUV`ryoU9gAViTe
zD97mvO27%HnjsA}UHW!<e}FzxDz9?7!V;q#pttst$*bNX6L7jx5~Ey!Z4m`EI9>IK
z5#hmX_1n=qnKgA+rz9wJ^&$|z4+Ac#V=Z(gBgW@_lvyS5k%eC>dl?seK1j{<u;nrQ
zm9B~eLJmb$d6HwND<y$vD+TB5LwGu-smW5d(e$CH-n)pxhYFmx9|DQqI?j|vd&tEO
zAkDsE?AxR04PAMO(H!36vB>H!`f<Eu>D*{9pr5TVaIr^Hz@tm)wyNm&>!ylxH)B)u
z7e2}SwzmDt+bMFr-4Yg8aJq^TqXWp^RZ$VyT}>wonpyeRvg;|`gRaQL-<tyulpi+v
zXRJY%9Zq>&*KL#6N$D<K#ffPcjOt$|hH2m9aLJOu3H!TMu;M>=fj7<G>+C&_yrhfV
zXZM|Yt8|y(_p&oBAktNr2qySPLEx+EhBZm{Aj<^<1vYYGy+e|eX&*J9OIKlHa>wQ@
z<^oo4PG)u46-n(*mKe?z>pL)U5w0VQHjtZ8Ts>}vlCFZpJWR8Gj#_9!S1|%(nuAH6
z(jP%8uuQp^>B>gT@VxrhSI?&7@ol@Du2RGd3z&X6j89|gbmbyKtr_+)n6)3<W}Sbp
zvKoiKqKn@__AZPY*z3LO79!DbOS<F9vbK5ZFDU}hoURnaJZlA7r%grE)q$9`Kh_m_
zi-BWVKxb9kiloj?m%P~(?gGGdsv0P#s~7PBz9{P|89XNrzAV0N{fq}Mh=Z?0T_=Mt
zsDtlBmkhq73?7l;|L`nnu9~he#Jm|8=a-$W)>}86!vg!`u*otyy^1Po?2WECL|7Ql
zFnd7`qrE$Jrj25~dmMR77x|ujD;a!uaUpvH7w6YH!tlMEq?79umR-!3l&VCWt}uk&
zt~D!*j29LDG#Tf4iijhps}!N#>hlX2OybPraLH0QeLRm%TXfov*GoSfP1&X_x1g&O
zp>KM<t@t}~H8EXjh-W#$b5k^3+R!9jVTk8ZJx6wHvSjTdms1+u)kVURO1dHt7kIUL
za>r;7rR<SaU7j=)MOW|PvhYi$c5XCs^<z_dfj9{ePFLLFvS=jgd7I?d=&C$i9Kd4p
zE-7-;)pkJG>oOd1yF2MhIb85MUO#hDG*yC6rz_KNIl`idX|cUrcwA$X<!G1J{>`6i
zV0YoV#{rY&W{d2lc{yOimqQVb=VQa`xl9@)GF}gH8z1N@Gc2GKT&=fnkQKa4+WbaW
zqhZm;T$GX7WdhG`udi?SFy0?;Z;zuVOWl@5&N{9r2VI?pcd#+bx#`L@EOs2_v92K}
z@sO3gtWxf4y0Q(6owUgiTM(rbX?q*#YB;>34|{k*UCib2OpLB<!#m{nT??5#{9^5;
zsH><TPFKO<1N}SfY}M+$NTNLa9A|-wwgvV9GgA}RhVUX)h?dipc(@zkV<}{lCk;x_
z6?^zQ@J$+cx=il4)EMQ{P}8M!$Lpd;ShZYrkL@1?o36UUdf&K_VPA)R*S%h}Kbf}d
z`uO}IU9pE%D(KICb!<Ez->6Sl>tU5In}*l(Epob$uExVEZ`Qaxvq)feeGCT@x=r5J
z!2o10S{fsFa0!)a=!!qA@*Jgh$ZC>2JYC_3RrT(=jA!JqBwfXa6?PdmW5ecbQ8;NP
zNRfEqboC!XY+LtBc9Y8jKD$pRhYD;la}RV?9q^;xhk8_pQp#rrZdoppON-K#c=*S5
zh^#Xz=;}SJdT@5Pqc7?z+r4$@72+r11YN0zRbOC3Xy@~q67vLIv4_<nrN^X3$-O^L
zW{Qc8hj|=0UE*gA+>4F{)xP(Wu;TC`ztM4p$OK&hh+qV--=x>pWLIsM`?Hi=pDyXM
zp?>(Z+Xel;k0<(qt~$he+cjL28K0dx#yx@g3Azdq>+AYz)>nrA-%g1~K8~3z-!u2y
zTP{d+vOcbzyI%q3nC(4+t{{ZzrPMFaFLA0qg02>Xfmgepa=2YnTo_$32s8T32Tekr
zFyAidDnS@M%=ap4iIZ-Et|EllIUA&NIxHUBy~siZlHlC7ZHcr2S;l5psrGqfkC)mJ
zboC!T78xK&y?Yj986OAT5C@H!*=iAb&#apshfS8A*$vD^V@_rnLVp}^M;CB#Ux(5D
z{G}Wup4=aMN<^b83t<lz0y(>5GI)(l$-6M)&AJP?xP+9hI)uI1<96WhxamhhR~2F_
z>gqB^1#Y_H4_o<mZ3kzZo26)W%epeGp2~RJW?U2uDa?MkkH9=`46;n_UOMf)`argZ
z3b1kXjjk@lCa=<D8~V2;6Cz=(k*@B;27?X_{&h?uYCwXn{KE#Y+m#Koj6mDcMQaAB
zos`C?uzW<uZBP|-wH-F_{*2Nz5p<OsHocnp8ac*BSDIn7$jCJOP5GRA0Q)La5fi%T
z>NIRN6a{n8!woXg=50!rLRYt8d$DYGBl@#`IUu|lGi^dwwE>gy$;ovM7yqVHfc@XV
zl6mWw^L$q{NY`@^boCtWgEXA&o4&-1$k7#SK)~J(cKJ{;i=Qy2E84Ifea5)}kfRuy
zrYQMPO6bN4hH-3RkhQFs6LHpPNn4|7+A^=99APMnuI$35)q-<A@U~H^i?&8b+8SNo
z7G+TiXjEBOeK+QLUsRkIqLO*bW353~{2^FFaHUE$)KypWa)7=opsZxAphOc@xrnv~
zCv6S%5?l=<w0&ESP2Dv)$hyXE(#fGw@qI(kwg!yQ6+)sN%Cf~<rEP|;mu<!SYAEw)
zYZR2NQOL4ZUB}C@?8>}p@g}K5AsAjjBlE6~wnj<W8YTKq)e3=q0g=eM?fRl@1V}N|
zva90zMn%~gbuKF<VW@d8%Y4KbJ9L$5YpD8`mnz;GHEC<KLaL&#E7f5XY3jb?=s+qd
zp%|)KmC@E9%|&aZoT8UVK<lv_)X){O8GDX*PAxhq;$sSFF4_!G16reKlq^TC+7d>U
zk7HNiYi(0RTZ1$gZN_RCi@Gc;m6w9oZ9mFEHJH7$U9N^`zfqCqqHSKZMc43BcG%0&
zi8TE%U<+4L)NP%Q(bgc%MO$8Tq~TID4U~Y4v_d8}7HE!Ah!UdxMkQ!lqYDdstENSs
z(TcuPLj@Rek(?H)hWNfgnv1p}s#d)y&=zH>IL4GpAmQlSs%*#j@r{Z!7j4_I=^KRJ
z)qOeUr7R^nk1AIfQdHf<_YKlqwEf@iu5HJ0+=%{4@{oO#S`tZJ5G;~ES@0&AwnWJ!
zCAa<cDcU`|vx@`}75JgLfu8Q3p0Rumsj5>HSx4wtul6N_xS=Q$pvr5hWy^}P5lSVq
zfm(~Uij@>_7f`{%+#pcKO9mwzFM3*(ee&8DL#;)-vL?K1R8zzfMbNH;2~m+szzhNT
zk<Lbon+-`gSDoOZp-sto(e%$EjtJG3ee&8DL#;)-wgl<bl)8YbjRP~RtqR>YWheTg
zPG9Y*QEO3<oJ1E*S9F9?(Bq;kB$tvgA*5Dio6JUun~kn4XbDlYX=v3#*obkYYpa-T
zSuK;<K&?eNZyE-Xg9%O`t8h`PidIn2@>&t0lhs#^T8j!+a1i6F?mDRGixwg%Y09F4
zgi;X2n`AanYf)K%=!~m>g{HJr0wgI^vQ69djL1&&WHwN1Q3<nv6$L0yNGhx*T`fC8
zl!jCZbL9XVsI{mh9Z2)0D^;tgF0_E+M6#YTsO-xkeeJ7maI+!GuGXw0FgJQlJ56}m
ztDZv<%ZNzV8!d7+y0%cP5~`$-PlPH+*+U(t%cfV2NM-}I7L~0kHE%nrKyMU%33^<T
zx+*(alL|ywDjN-IEvhOg<0%yL3Iuv98%|qB0F;sy=Utu725K#;YE_rK1ngQ-)q)<U
zwJtamvAqJto}5z})LK-v9S5aFHS0^-SMWotKz{%|T?euwoek7lRFjVNT4}}`1yx(q
z3Be>ODJb+VrrKmSP-{_5D=ApjLhV{n+K`rM;DVJMNRYZ`$xjd(hMNuE_pE3rD<o}N
zDKzPuhO3IGh7}||ilWw{eG#`N6rCjP^N|woo3fOJ;w{`JUHZCcgIbIB4czJlOacK^
zu!f4h?%RrYQI67DChzTOTHI{(P{wiy7^S9-DtXHw#p<eo@IhpeT+ug}wdgSAa$Lo3
zuq|S#+4p>Kvk`7yZ?nnTwmfur1g}ZTm3uQ?k`4;t^+dV$=YI40nq+rW;Wb3Lt{kTI
z-~i>U6we4`{X^3mtth<S{cvB>rZ-y6=lEHfC7$Pn>z?(IUa@$6PXNn_Ke(H@T}STt
zbv5ir*X#<f`-#(2bo%Pe=Yiu-czsWtw!^@k%4w5Tlw@UB!Pg>}i{pz?X@lS4Wx>zm
zrk}?j(;8CYH9>h{exCm{-mf~#ZV>UZ)gS7-hu04Uc)0R#B-r8gM1gm0^zDyx?~;3+
ztEz7nBAR8DcGNkameKV0#E$tDUfUEmF4vpxO}-erzfTihPZTKI#@P(ojH6!9JnL9>
zNZ{f%M{(<@CoK;oe7ycBZVkp>uQy|Jf0`3U8LzUt^`T$$>k6;9A1+!&=kuWXlr6Vh
z%KdQBN;e<-5?KxRZ*sv#@Vc9LZoM{(hQuASb1vL|&?R2b{xa%uKA_bIUN@77I_Oaj
zZaGifjDC<)Z@1Y<J)F;@-<-3(bzzGBjYpUv*qK><m?!OSPv}P&pvW1pI>4o#lS4aD
zaPXZC@X4*zhX`TF2?0m}YL`RUYvkCyd`dj?I5zYRcKEMeR<R3d_<v$Ti=Bt{*@)WT
zJ%Bt;172My<S@>HkK~Y#H^J+b;w87)wnA2L{N-(&4J&sl+emt)OYmB#{4XAkkWgVJ
z!NzvX(G(OSL$;Mi@RRR@zdC}SejogYf&lw2_>X|cs|dBsycuj}Y|^d`g4br{)xomL
zHa;2!A^&GjrL_Ft;-*0I1+F6VaMFu2lU`=13G<f=&3+O(+$6X~#s~T-<Br#G#cOzF
zr#(RD<NY?911q9<eOA0S+h)wM1rNMtE3XBgywJ^(hL|8nT)7KLLrjq)Zm%S9j2Uvo
zwiay~;u<;Pt=oJWV#G>qdj)Lo4~1;J`s@@JA)?*Dey|;Gu>NA~Zm@X$QzBS^q#D*0
zd2gH+-0Q>*R0OY|%AerF)lzm55xfp60Q;7eMG1H5LGxaM*FWV4c-A(D!BgbmYg!!#
z&ya&}NW%_;$1B(7agBa=Ul&p_$R7^)&39rUIqtWJ(Qi6%>yM9ohaY?Dc;ody@v~L&
z1#+c7<6f&I3q*p~>BP_X`NB;;yZoFm&Up2lQ#>ZJgk#(UuUCop_xv=8pA7JfO|ZZt
zczsEH+$Wtc^G!q5!d>vum^|)@Pm1Aqok(8ze}ML{GeK$CYt+~Q>NKq(ZQTj4yU6dD
z*VP(8z2Di8;58BX0eZD-NFC`8IcPhrlSu@P*AfIkLlEQl14q~hUh9vqZJy8lEhjxL
zao?+UnNj7}9Bw;8qbGYj%bCUrUIDkUc%)rhUo%$MhnFYtntr@?{bq4y@X@ZhTIEGS
zu{OJ5KYFyn4lv&akT&)_%_CPlZO|EB*f8k1;Nrd?ELs5<^r-X4$qpRKl`toSwFWcf
z=-DmikbO0*II@=+uL;K&0gox>v;BBG#CUyhJcCqDi}q+1!)vVZGyeMUvo*X{8h_v?
z6^OW__|fXPU@l?4WNq8#o7o@X@%m!~xS))yF}I|YhSvfk*m=4=+>!<tuR@#kMcdpY
z+`M=N+H8$XYNbQ)8dQXNo}kRo<7lj3-SgbFob$(RKX$yTY*9fkPETw8d4KE&j8~R9
zz_p&W8MXIwMxatYvgU->WFk0WESG6A1h0!kaM}pBUi5mIt(~)ybnMW8;}v47_7hi!
z_c`EoiTHs$b(aHPCx~!=e#9?Fwq@freFzWf&wZHl*aLV!UbF&j&DSMvbbxdwFN4!b
z8XT{G!z!~I3^2UhvSjhLPMY0lRobdPC0F-DtuXK!GOU-;^!mKz@;>i>+Ktzf;dMvH
zMo?vSXsGdeF|3Qvo}o<X*udGv#<d<|xsgzEUt*6_m&OEIwYGWzua!9E30}0?#euh;
z%eWUgo442jO5cu1bi7^-t6!c62fywCc}Ys=cx@a0jC-_O8t(dg;GX1|hP(MDxMPEh
z6x{9iz#W!r8t(3U;NB*cgd49rL&R-tpY|XKuL;9?Q^CuJNrQ`5qTQx!wpuw*s!6I8
zue-v=;YBRpOi4+7pfe3#pM_^DDjtl^Hf=^T@HL#^7e>avOB;Q(GHnxL%||s{?CFw^
z^SB=}T7?GXhv^M~3UEn4_Vgdf1XqJTQkvlPU)W~)cr3Y*`^!<h?hBiz<&o%yR-oPB
z?S_!WpCfKD&zA(?6t4vX00-nh1@qbY12;Cs>&Nh701}wh(u8BfUttGt0en!;#m2Pe
ziWIN$!i~oTx1PI@^-9&e&Ec}K^I#@st8}h!OOlHo#p}Ru<DXjPH*+!j!J<`hUnUcy
zKk;ol@N}5sHCF(z`U-ylx^M`2gBQ6OPDvfSC|>h~7udAh8LxC3uIjo4n{;M~;x$J2
z9dF96REpOC;knNtZgX(gq-UQLuie4TI32fTKJBqYSh!I!W5wp@%gFBqZH@$Qy!Hn-
zFMU~&GU;hB#cOx)X|s3~I(GUW=fT))lj2BSg4giib3Q{&>ejy3YY1ybYt|hpOYyoM
zd^&C(Nqz?uuiwE7Y{Ky<ir3iS)2}zpCx6jKo%=(99IaOSymMM7IJ#22J_dJwnx7w8
zS+uM!4jz1@c)bkneB;(g4w*ZBEt%pqGq@WzUNe8^oM-UKhm6bKUo*)~ZsbxVv4B>y
zfl|w&bs1pNX4Bb8yCYAGC|<*Zhc+e*+W3%jJLqwiTmlPoT2jYrfAG-Oe9q=#LNFO?
zi$ekquNT5YKkWH4$)29#^+9;t9@3^IHarS$b>^pEe4Li+DRwH+R{0wwwtxQ3!oBVF
ze`kh|VRd5~H62!Jl=hOlfxC~(<e`F_vsaUoom4qx#x;p5L^cb5p=#kV82a7hD5LUm
z|AH<e1BSm4^W}Z)<3oxN;=<Q%j^Z16HWS)UQ-zkM%l*SxWk6&3Fw4t_;{GINxQBMr
zbyB^Amr1+f2xh{b%V{6aO-*+lO(j33S;g<;G@E8&M*T66_`|<NF8>9W4y*swuQD3^
z{G!ZY=HJvTe>3V=xF0K8mStChN+)H<n$;||CbDa~k+}Mo3H}RA#b4pyuM@n5e^f=h
zqE_*n*DLnxINtyM-tnSnbIEx)7tP0Rc8t#lwVxM;HgT+CnD*1M@O%D%H<oYvAAKUS
zwD=1-!%T(U_Os(eKJ0&Lh{)vPFT9j37mV+xMGMC*2#y49(CT^G_XQDe<p!;wZ*M_v
z^zlw|C|U{M)x4<sw{nA4#mhpKynpY+L95+W)mJrpD>rCmy5>^W<gMJGmBf9gw0vu(
zqG)CD^f)b-$9tnOT3Kwx{nTxzw~~Wa8+%@@^R;*@IcUXkkl|!n^;UAws^eg}AT^Qo
zJLzF)_3`bq)N^xtD>-Nda@g+T)9vQQ$A?G>>;DX`IF{Tw-OsDbx~ks4k`s)*r#@(7
vXjO7(H?x}>pyiSGZa*z(1#;*v{C%{b)y9F3?tQfUq>BFoq{i*s$i@KxxuW-M

literal 0
HcmV?d00001

diff --git a/phishing-filter-unbound.conf b/phishing-filter-unbound.conf
new file mode 100644
index 000000000..393536f71
--- /dev/null
+++ b/phishing-filter-unbound.conf
@@ -0,0 +1,434 @@
+# Title: Phishing Domains Unbound Blocklist
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+local-zone: "1111365dh.net" always_nxdomain
+local-zone: "12931-coinbase.com" always_nxdomain
+local-zone: "215323.com" always_nxdomain
+local-zone: "260aesthetic.wixsite.com" always_nxdomain
+local-zone: "3650947.cc" always_nxdomain
+local-zone: "3659ll.net" always_nxdomain
+local-zone: "83291-coinbase.com" always_nxdomain
+local-zone: "94-103-188-123.plesk.page" always_nxdomain
+local-zone: "9825057365.com" always_nxdomain
+local-zone: "abctrvabc.com" always_nxdomain
+local-zone: "access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com" always_nxdomain
+local-zone: "acclimatizable.fun" always_nxdomain
+local-zone: "account-update05.myvnc.com" always_nxdomain
+local-zone: "accounts.google.auzen.us.kg" always_nxdomain
+local-zone: "activebusiness-unlocker3.com" always_nxdomain
+local-zone: "addwsrbh.green" always_nxdomain
+local-zone: "ahnp.vercel.app" always_nxdomain
+local-zone: "aldg.ldgknhk.lol" always_nxdomain
+local-zone: "allegrolokalnie.pl-891241214.buzz" always_nxdomain
+local-zone: "alutipcentra.pages.dev" always_nxdomain
+local-zone: "ambil-pinjaman-daana-payleter.xforms.web.id" always_nxdomain
+local-zone: "ambulatoriprivati.it" always_nxdomain
+local-zone: "amev.ldgknhk.lol" always_nxdomain
+local-zone: "antail-conv.com" always_nxdomain
+local-zone: "apply-now-to-receive-badge.vercel.app" always_nxdomain
+local-zone: "artsea.pages.dev" always_nxdomain
+local-zone: "atmailupdatewptnskmdinfomailacct.weebly.com" always_nxdomain
+local-zone: "att-101072.weeblysite.com" always_nxdomain
+local-zone: "att-1041page.weeblysite.com" always_nxdomain
+local-zone: "att-105714.weeblysite.com" always_nxdomain
+local-zone: "att-105819.square.site" always_nxdomain
+local-zone: "att-inc-107097.weeblysite.com" always_nxdomain
+local-zone: "att-login380.weeblysite.com" always_nxdomain
+local-zone: "att-login522.weeblysite.com" always_nxdomain
+local-zone: "att-service-102155.weeblysite.com" always_nxdomain
+local-zone: "att-sign-in-105669.weeblysite.com" always_nxdomain
+local-zone: "attcom-100762.weeblysite.com" always_nxdomain
+local-zone: "attcom-106808.weeblysite.com" always_nxdomain
+local-zone: "attmailservicenow.wixstudio.com" always_nxdomain
+local-zone: "attmailservicenow.wixstudio.io" always_nxdomain
+local-zone: "attmailsrvrdesk.weebly.com" always_nxdomain
+local-zone: "attnewmaill.weebly.com" always_nxdomain
+local-zone: "attyhhhhiiii225.weebly.com" always_nxdomain
+local-zone: "atw-tau.vercel.app" always_nxdomain
+local-zone: "authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com" always_nxdomain
+local-zone: "authsyncs.pages.dev" always_nxdomain
+local-zone: "autoreplyattmode.wixsite.com" always_nxdomain
+local-zone: "avoid.hold-managert.com" always_nxdomain
+local-zone: "azbin.ir" always_nxdomain
+local-zone: "b45018.com" always_nxdomain
+local-zone: "bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link" always_nxdomain
+local-zone: "baiii-wong.cutvi.cfd" always_nxdomain
+local-zone: "basvuru-online-yap.vercel.app" always_nxdomain
+local-zone: "beionfidi.pages.dev" always_nxdomain
+local-zone: "bet73nn.com" always_nxdomain
+local-zone: "bet83039.com" always_nxdomain
+local-zone: "bet83054.com" always_nxdomain
+local-zone: "bfrescentremebermainsetreouytnoy.weebly.com" always_nxdomain
+local-zone: "biggggggggggg.weebly.com" always_nxdomain
+local-zone: "bitnode.pages.dev" always_nxdomain
+local-zone: "bitvavobtc.com" always_nxdomain
+local-zone: "blackhere11.serv00.net" always_nxdomain
+local-zone: "blss24att.weebly.com" always_nxdomain
+local-zone: "braucrarasuteu-2470.vercel.app" always_nxdomain
+local-zone: "bt-102124.weeblysite.com" always_nxdomain
+local-zone: "bt1business.weebly.com" always_nxdomain
+local-zone: "btuan-dan2-resmi.top1.my.id" always_nxdomain
+local-zone: "buildingdesignsusapdf.s3.us-east-005.backblazeb2.com" always_nxdomain
+local-zone: "business-page-property-897432967.netlify.app" always_nxdomain
+local-zone: "caipora.xyz" always_nxdomain
+local-zone: "calm-pothos-3b24c9.netlify.app" always_nxdomain
+local-zone: "carrefourarabiank15.pages.dev" always_nxdomain
+local-zone: "caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com" always_nxdomain
+local-zone: "catgirl-appverset-nya.pages.dev" always_nxdomain
+local-zone: "catxtokens.pages.dev" always_nxdomain
+local-zone: "chat.94-103-188-123.plesk.page" always_nxdomain
+local-zone: "check154109.click" always_nxdomain
+local-zone: "checkseven.vercel.app" always_nxdomain
+local-zone: "ciente-a.org" always_nxdomain
+local-zone: "cieplo.app" always_nxdomain
+local-zone: "cj12143.tw1.ru" always_nxdomain
+local-zone: "cj87335.tw1.ru" always_nxdomain
+local-zone: "claimyourethrewards.pages.dev" always_nxdomain
+local-zone: "clickbait.design" always_nxdomain
+local-zone: "cnsa163.com" always_nxdomain
+local-zone: "cock2-iota.vercel.app" always_nxdomain
+local-zone: "cock3.vercel.app" always_nxdomain
+local-zone: "cock7.vercel.app" always_nxdomain
+local-zone: "contact-pro-8291-d01.firebaseapp.com" always_nxdomain
+local-zone: "contact-pro-8291-d01.web.app" always_nxdomain
+local-zone: "creosrl.com" always_nxdomain
+local-zone: "curmmgdv.email" always_nxdomain
+local-zone: "currently541.weebly.com" always_nxdomain
+local-zone: "currently890.weebly.com" always_nxdomain
+local-zone: "currentlyserver.weebly.com" always_nxdomain
+local-zone: "dara3dccj.wixsite.com" always_nxdomain
+local-zone: "db.service4db.com" always_nxdomain
+local-zone: "de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev" always_nxdomain
+local-zone: "debutcan.firebaseapp.com" always_nxdomain
+local-zone: "debutcan.web.app" always_nxdomain
+local-zone: "delivery.attempt.failure.ebbs.co.za" always_nxdomain
+local-zone: "dev.stream.mornar.app" always_nxdomain
+local-zone: "dnwqmh.click" always_nxdomain
+local-zone: "dropsmartchain.pages.dev" always_nxdomain
+local-zone: "dsjoting.group" always_nxdomain
+local-zone: "dulb6c5p5.top" always_nxdomain
+local-zone: "ebay-mallwholesale.com" always_nxdomain
+local-zone: "ebt-lilac.vercel.app" always_nxdomain
+local-zone: "echoredled.netlify.app" always_nxdomain
+local-zone: "elbarco.percentadnp.info" always_nxdomain
+local-zone: "eltritongourmet.com" always_nxdomain
+local-zone: "email.mgb.modento.io" always_nxdomain
+local-zone: "enjomugg.firebaseapp.com" always_nxdomain
+local-zone: "enjomugg.web.app" always_nxdomain
+local-zone: "error3456vhubhornbase.azurewebsites.net" always_nxdomain
+local-zone: "example223.wixsite.com" always_nxdomain
+local-zone: "eyeydhe.wixsite.com" always_nxdomain
+local-zone: "eyttueiu.square.site" always_nxdomain
+local-zone: "facebook-avip.click" always_nxdomain
+local-zone: "fame.pink" always_nxdomain
+local-zone: "fassehoizubra-7696.vercel.app" always_nxdomain
+local-zone: "fastdropchain.pages.dev" always_nxdomain
+local-zone: "fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io" always_nxdomain
+local-zone: "fla-1001.square.site" always_nxdomain
+local-zone: "flo4211.github.io" always_nxdomain
+local-zone: "fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com" always_nxdomain
+local-zone: "fnuttlie.wiki" always_nxdomain
+local-zone: "fokeijonnekou.vercel.app" always_nxdomain
+local-zone: "fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com" always_nxdomain
+local-zone: "free-verified-badge-form0-service.vercel.app" always_nxdomain
+local-zone: "free-verified-meta-badge-service.vercel.app" always_nxdomain
+local-zone: "g06668706.wixsite.com" always_nxdomain
+local-zone: "gccndbqg.vip" always_nxdomain
+local-zone: "geriodememerkezi.online" always_nxdomain
+local-zone: "get-checkmark-for-you.vercel.app" always_nxdomain
+local-zone: "get-free-verified-badge-service-on.vercel.app" always_nxdomain
+local-zone: "gitanag.broke-it.net" always_nxdomain
+local-zone: "gruprocuroipra-6493.vercel.app" always_nxdomain
+local-zone: "h5.b9en.com" always_nxdomain
+local-zone: "h5.metacoint.com" always_nxdomain
+local-zone: "hcghij.top" always_nxdomain
+local-zone: "hecregayatu-1014.vercel.app" always_nxdomain
+local-zone: "hejmtxxt.guru" always_nxdomain
+local-zone: "helenblunt6.wixsite.com" always_nxdomain
+local-zone: "help.accountsupportcentre.com" always_nxdomain
+local-zone: "here-apply-for-page-review.vercel.app" always_nxdomain
+local-zone: "hgbk.ldgknhk.lol" always_nxdomain
+local-zone: "hhideiie.wixsite.com" always_nxdomain
+local-zone: "hitummoinneullei-5882.vercel.app" always_nxdomain
+local-zone: "home-101067.weeblysite.com" always_nxdomain
+local-zone: "home-103465.weeblysite.com" always_nxdomain
+local-zone: "home-104341.weeblysite.com" always_nxdomain
+local-zone: "home-105266.weeblysite.com" always_nxdomain
+local-zone: "home-105929.weeblysite.com" always_nxdomain
+local-zone: "homeattatthome.square.site" always_nxdomain
+local-zone: "hpnefhqs.motorcycles" always_nxdomain
+local-zone: "im25.net" always_nxdomain
+local-zone: "info.supercitrus.ind.br" always_nxdomain
+local-zone: "ins-business-home-center.com" always_nxdomain
+local-zone: "instagaramgalochka.vercel.app" always_nxdomain
+local-zone: "ipv6.43-135-137-110.cprapid.com" always_nxdomain
+local-zone: "irmt0ken.win" always_nxdomain
+local-zone: "iujf7839iofvkbcu748.weebly.com" always_nxdomain
+local-zone: "iwimwmiwi.click" always_nxdomain
+local-zone: "jagej73796.wixsite.com" always_nxdomain
+local-zone: "jfdjy.com" always_nxdomain
+local-zone: "kalyani963.github.io" always_nxdomain
+local-zone: "kexoigrufouddou-5902.vercel.app" always_nxdomain
+local-zone: "kl1k-ds1ni.neupdile.my.id" always_nxdomain
+local-zone: "kliind08.wixsite.com" always_nxdomain
+local-zone: "kreelo098.weebly.com" always_nxdomain
+local-zone: "kremlcup.com" always_nxdomain
+local-zone: "kshitij12375.github.io" always_nxdomain
+local-zone: "kucoinglobal1.com" always_nxdomain
+local-zone: "kxbztydc.black" always_nxdomain
+local-zone: "labanquepostale.jupiter-analytics.com" always_nxdomain
+local-zone: "leddevotoze-3146.vercel.app" always_nxdomain
+local-zone: "linnkdna-kget.wxxzsite.buzz" always_nxdomain
+local-zone: "llahi.info" always_nxdomain
+local-zone: "llahi.vip" always_nxdomain
+local-zone: "loffaummuddote-4145.vercel.app" always_nxdomain
+local-zone: "login-att-10221.square.site" always_nxdomain
+local-zone: "login-form.world" always_nxdomain
+local-zone: "login-online-outlook365.com" always_nxdomain
+local-zone: "login-outlook-midstreamauth.com" always_nxdomain
+local-zone: "login-screen-103134.weeblysite.com" always_nxdomain
+local-zone: "loginaccount70.wixsite.com" always_nxdomain
+local-zone: "loginaccount77.wixsite.com" always_nxdomain
+local-zone: "luk6414.wixsite.com" always_nxdomain
+local-zone: "luxlifemiamiblog.com" always_nxdomain
+local-zone: "m.meta-accessibility.io.vn" always_nxdomain
+local-zone: "madebybmr.fyi" always_nxdomain
+local-zone: "maqpiexyz.click" always_nxdomain
+local-zone: "mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev" always_nxdomain
+local-zone: "mayfair313.wixsite.com" always_nxdomain
+local-zone: "mdbrvlfy.black" always_nxdomain
+local-zone: "mesageriepro33range1.weebly.com" always_nxdomain
+local-zone: "metamsk-wallet-3.gitbook.io" always_nxdomain
+local-zone: "metttaa-audddt-new-02.firebaseapp.com" always_nxdomain
+local-zone: "metttaa-audddt-new-02.web.app" always_nxdomain
+local-zone: "microsoft365-storage.github.io" always_nxdomain
+local-zone: "mikepattyjm.wixsite.com" always_nxdomain
+local-zone: "mobilemidasbuy.n3g.fun" always_nxdomain
+local-zone: "monespacepro-client.3utilities.com" always_nxdomain
+local-zone: "monetization-violation.github.io" always_nxdomain
+local-zone: "moodengsol-net.pages.dev" always_nxdomain
+local-zone: "mwsiekdnfjrdufs.weebly.com" always_nxdomain
+local-zone: "mxmxnmx.mx.zya.me" always_nxdomain
+local-zone: "national-au-b.com" always_nxdomain
+local-zone: "national-au.net" always_nxdomain
+local-zone: "nbaaiqjq.group" always_nxdomain
+local-zone: "nexomyacwv.weebly.com" always_nxdomain
+local-zone: "nft-time11.vercel.app" always_nxdomain
+local-zone: "nichcheck.weeblysite.com" always_nxdomain
+local-zone: "ns1.carrier-ast2-portal-apple.com" always_nxdomain
+local-zone: "omadshf.ru" always_nxdomain
+local-zone: "online-assist.live" always_nxdomain
+local-zone: "online-promo-asb.org" always_nxdomain
+local-zone: "openkimono.pro" always_nxdomain
+local-zone: "opportunity-verified-status.vercel.app" always_nxdomain
+local-zone: "ourtime.reconnect-dating.workers.dev" always_nxdomain
+local-zone: "owouwuowo.click" always_nxdomain
+local-zone: "p365kf.com" always_nxdomain
+local-zone: "p4zv8crnrrha27so.94-103-188-123.plesk.page" always_nxdomain
+local-zone: "page-center-manage.com" always_nxdomain
+local-zone: "pavan-patil-22.github.io" always_nxdomain
+local-zone: "pecinternational.net" always_nxdomain
+local-zone: "peesom.chat" always_nxdomain
+local-zone: "pencairaanndannaa.my.id" always_nxdomain
+local-zone: "petty.wiki" always_nxdomain
+local-zone: "pimnhv.group" always_nxdomain
+local-zone: "policies-business-page-service.com" always_nxdomain
+local-zone: "pottatrebewe-2808.vercel.app" always_nxdomain
+local-zone: "pqo.hrf.mybluehost.me" always_nxdomain
+local-zone: "programming--service--panel-totlyy-free-for-you.vercel.app" always_nxdomain
+local-zone: "promo1.spik.ru" always_nxdomain
+local-zone: "protocolsecure.pages.dev" always_nxdomain
+local-zone: "pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev" always_nxdomain
+local-zone: "pub-1778406e4fec4394901793111c187dd9.r2.dev" always_nxdomain
+local-zone: "pub-19b834342e7d465b9f00b3511325a081.r2.dev" always_nxdomain
+local-zone: "pub-21dd4dc659614ceb93e45a6de4434502.r2.dev" always_nxdomain
+local-zone: "pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev" always_nxdomain
+local-zone: "pub-2fefe932a6974485b987c9ba851b5c40.r2.dev" always_nxdomain
+local-zone: "pub-3a46d9914f494078a6d6237513e7a096.r2.dev" always_nxdomain
+local-zone: "pub-442ed822851244a689b3472ea2c6a950.r2.dev" always_nxdomain
+local-zone: "pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev" always_nxdomain
+local-zone: "pub-682ad3b65d944376b919745aae3c56d4.r2.dev" always_nxdomain
+local-zone: "pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev" always_nxdomain
+local-zone: "pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev" always_nxdomain
+local-zone: "pub-7f5cf36445d042168bfacd712e890dc0.r2.dev" always_nxdomain
+local-zone: "pub-803839714a924882a7bcc2495a26860f.r2.dev" always_nxdomain
+local-zone: "pub-8161de4a277e4ee8b532af34954224e1.r2.dev" always_nxdomain
+local-zone: "pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev" always_nxdomain
+local-zone: "pub-8376b5b2334844d193a525d8b8548fa5.r2.dev" always_nxdomain
+local-zone: "pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev" always_nxdomain
+local-zone: "pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev" always_nxdomain
+local-zone: "pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev" always_nxdomain
+local-zone: "pub-9163a97d70394cb499bdd232be6c2169.r2.dev" always_nxdomain
+local-zone: "pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev" always_nxdomain
+local-zone: "pub-98171471e0944ac3a5820ef719bf0640.r2.dev" always_nxdomain
+local-zone: "pub-a263e0790935412eb10cacc55bbced18.r2.dev" always_nxdomain
+local-zone: "pub-a291041b077742899b63a9982f04a56c.r2.dev" always_nxdomain
+local-zone: "pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev" always_nxdomain
+local-zone: "pub-b50adc5d699a4f08aec37102c2103da7.r2.dev" always_nxdomain
+local-zone: "pub-c0a934c950e441db96b882789f53c9ea.r2.dev" always_nxdomain
+local-zone: "pub-c2c250050109456396c933de259a4fea.r2.dev" always_nxdomain
+local-zone: "pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev" always_nxdomain
+local-zone: "pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev" always_nxdomain
+local-zone: "pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev" always_nxdomain
+local-zone: "pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev" always_nxdomain
+local-zone: "pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev" always_nxdomain
+local-zone: "pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev" always_nxdomain
+local-zone: "pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev" always_nxdomain
+local-zone: "pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev" always_nxdomain
+local-zone: "pub-e42cb528b102447385e3145197916f51.r2.dev" always_nxdomain
+local-zone: "pub-e4aff507450c478cbe3f77ad23d75035.r2.dev" always_nxdomain
+local-zone: "pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev" always_nxdomain
+local-zone: "pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev" always_nxdomain
+local-zone: "pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev" always_nxdomain
+local-zone: "pubgm.club" always_nxdomain
+local-zone: "puffagroibrouwoi-8818.vercel.app" always_nxdomain
+local-zone: "qasimk.com" always_nxdomain
+local-zone: "qfjfvseq.info" always_nxdomain
+local-zone: "quauwograssodda-3503.vercel.app" always_nxdomain
+local-zone: "qysgyp.com" always_nxdomain
+local-zone: "rajdipchatterjee.github.io" always_nxdomain
+local-zone: "rechazaroanularaqui51.weebly.com" always_nxdomain
+local-zone: "remote-fix.pages.dev" always_nxdomain
+local-zone: "renggard.47-243-192-240.cprapid.com" always_nxdomain
+local-zone: "resolvepanel.live" always_nxdomain
+local-zone: "resolving--issue--with-us1.vercel.app" always_nxdomain
+local-zone: "resqat.weebly.com" always_nxdomain
+local-zone: "review-business-case.d2f7p3b7pucnle.amplifyapp.com" always_nxdomain
+local-zone: "rlpqwefi.pink" always_nxdomain
+local-zone: "rouloigeilleuja-9523.vercel.app" always_nxdomain
+local-zone: "rulemec.pages.dev" always_nxdomain
+local-zone: "rutinqqwin.shop" always_nxdomain
+local-zone: "rwftfu.quest" always_nxdomain
+local-zone: "s.team-pw.cc" always_nxdomain
+local-zone: "sairanees.github.io" always_nxdomain
+local-zone: "sanseipecas.com.br" always_nxdomain
+local-zone: "sasklelo.weebly.com" always_nxdomain
+local-zone: "sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com" always_nxdomain
+local-zone: "sasktelcustomerwebly.weebly.com" always_nxdomain
+local-zone: "sasktelnetwebmailservermaintainance.weebly.com" always_nxdomain
+local-zone: "sasktelrectify.weebly.com" always_nxdomain
+local-zone: "sasktelscrutinize.weebly.com" always_nxdomain
+local-zone: "sasktelservicecentterwebly.weebly.com" always_nxdomain
+local-zone: "sasktelsupportsystemwebly.weebly.com" always_nxdomain
+local-zone: "sbcglobal30.wixsite.com" always_nxdomain
+local-zone: "scan-vulnerability-guard-v3.pages.dev" always_nxdomain
+local-zone: "scan-vulnerability-guard.pages.dev" always_nxdomain
+local-zone: "scanner-metamask-v1.pages.dev" always_nxdomain
+local-zone: "scanner-metamask-v2.pages.dev" always_nxdomain
+local-zone: "scanner-metamask-v3.pages.dev" always_nxdomain
+local-zone: "scanner-metamask.pages.dev" always_nxdomain
+local-zone: "sec-sign-in.info" always_nxdomain
+local-zone: "secure2-validitycheck.weebly.com" always_nxdomain
+local-zone: "securecapitec.theprimepoint.online" always_nxdomain
+local-zone: "securerpcfix.com" always_nxdomain
+local-zone: "seeteressecalywoi.github.io" always_nxdomain
+local-zone: "seivviice.weebly.com" always_nxdomain
+local-zone: "server.0e7p.com" always_nxdomain
+local-zone: "server.2rk3.com" always_nxdomain
+local-zone: "server.8q3p.com" always_nxdomain
+local-zone: "server.n6b8.com" always_nxdomain
+local-zone: "server.v9vs.com" always_nxdomain
+local-zone: "sevvviicess.weebly.com" always_nxdomain
+local-zone: "shard.blue" always_nxdomain
+local-zone: "shard.skin" always_nxdomain
+local-zone: "shared-d7590.firebaseapp.com" always_nxdomain
+local-zone: "shared-d7590.web.app" always_nxdomain
+local-zone: "shaw-101329.weeblysite.com" always_nxdomain
+local-zone: "shaw-101587.weeblysite.com" always_nxdomain
+local-zone: "shaw-106427.weeblysite.com" always_nxdomain
+local-zone: "shaw-107375.weeblysite.com" always_nxdomain
+local-zone: "solutionwebsitedapp.firebaseapp.com" always_nxdomain
+local-zone: "solutionwebsitedapp.web.app" always_nxdomain
+local-zone: "solvetans.firebaseapp.com" always_nxdomain
+local-zone: "solvetans.web.app" always_nxdomain
+local-zone: "sondfrom.dexlog.my.id" always_nxdomain
+local-zone: "soyokai.or.jp" always_nxdomain
+local-zone: "srdate.club" always_nxdomain
+local-zone: "ssy.hmb.mybluehostin.me" always_nxdomain
+local-zone: "steam.poweredartsworkshop.com" always_nxdomain
+local-zone: "steam.workshopsreview.com" always_nxdomain
+local-zone: "steamcommmuty.com" always_nxdomain
+local-zone: "steamcommuunity.ru" always_nxdomain
+local-zone: "steamcomunutty.com" always_nxdomain
+local-zone: "steamconmumity.com" always_nxdomain
+local-zone: "stepsray.vercel.app" always_nxdomain
+local-zone: "support-metahelpcenter-id100003498934.netlify.app" always_nxdomain
+local-zone: "sv5gardens655665.weeblysite.com" always_nxdomain
+local-zone: "system-portalnu.duckdns.org" always_nxdomain
+local-zone: "talwgam.njmolada.com" always_nxdomain
+local-zone: "taste.baby" always_nxdomain
+local-zone: "tele.zhngain.top" always_nxdomain
+local-zone: "telegrambot-resolved.pages.dev" always_nxdomain
+local-zone: "telegrazm.net" always_nxdomain
+local-zone: "telstra-100408.weeblysite.com" always_nxdomain
+local-zone: "telstra-100469.weeblysite.com" always_nxdomain
+local-zone: "telstra-103234.weeblysite.com" always_nxdomain
+local-zone: "tiktok-888.vip" always_nxdomain
+local-zone: "tiltckshow.top" always_nxdomain
+local-zone: "tnomwzrp.top" always_nxdomain
+local-zone: "toeken.im" always_nxdomain
+local-zone: "tonic.pink" always_nxdomain
+local-zone: "tooma.cellinsurance.co.zw" always_nxdomain
+local-zone: "tpdtepremu.xyz" always_nxdomain
+local-zone: "trattujeilesso-3354.vercel.app" always_nxdomain
+local-zone: "trbinace.com" always_nxdomain
+local-zone: "treibrukeukonno-1395.vercel.app" always_nxdomain
+local-zone: "tuesmad.firebaseapp.com" always_nxdomain
+local-zone: "tuesmad.web.app" always_nxdomain
+local-zone: "tyyyyyytyyy.weebly.com" always_nxdomain
+local-zone: "tzcsjfto.chat" always_nxdomain
+local-zone: "u.updatetrackgre.top" always_nxdomain
+local-zone: "uc-whatstapp-web.com" always_nxdomain
+local-zone: "udxcady.wixsite.com" always_nxdomain
+local-zone: "uklifejv.cyou" always_nxdomain
+local-zone: "updatemail12.wixsite.com" always_nxdomain
+local-zone: "ups-trackdeliveryapps.chickenkiller.com" always_nxdomain
+local-zone: "usbest.cyou" always_nxdomain
+local-zone: "user-transaction-overview.vercel.app" always_nxdomain
+local-zone: "usps.com-trackdck.top" always_nxdomain
+local-zone: "usps.com-tracklnv.top" always_nxdomain
+local-zone: "usps.com-trackmcl.top" always_nxdomain
+local-zone: "usps.com-trackmec.top" always_nxdomain
+local-zone: "usps.com-tracktpq.top" always_nxdomain
+local-zone: "usps.com-trackvmd.top" always_nxdomain
+local-zone: "uspsinfw.top" always_nxdomain
+local-zone: "uwdtsczi.top" always_nxdomain
+local-zone: "uwm-onedrive.com" always_nxdomain
+local-zone: "vaishnavi1436.github.io" always_nxdomain
+local-zone: "validatie-veiligauthenticatie.com" always_nxdomain
+local-zone: "vbbu.ldgknhk.lol" always_nxdomain
+local-zone: "verified-this-request-badge.vercel.app" always_nxdomain
+local-zone: "vo4zzp.icu" always_nxdomain
+local-zone: "vs41.github.io" always_nxdomain
+local-zone: "walett-cont.gitbook.io" always_nxdomain
+local-zone: "walletauthenticators.vercel.app" always_nxdomain
+local-zone: "walletcomnecitt.gitbook.io" always_nxdomain
+local-zone: "walletconnectdapps.online" always_nxdomain
+local-zone: "watranfart-fdd6a8.ingress-bonde.ewp.live" always_nxdomain
+local-zone: "waxed.wiki" always_nxdomain
+local-zone: "webmaillshavv.weebly.com" always_nxdomain
+local-zone: "weeeqweeattt.weebly.com" always_nxdomain
+local-zone: "weigh.skin" always_nxdomain
+local-zone: "weigh.wiki" always_nxdomain
+local-zone: "wgqdqvtn.baby" always_nxdomain
+local-zone: "wgqdqvtn.pink" always_nxdomain
+local-zone: "whatsapp-rqr.com" always_nxdomain
+local-zone: "wirelessvoicebtpaidmailinfoplay047.weebly.com" always_nxdomain
+local-zone: "wscs1231.cyou" always_nxdomain
+local-zone: "xn--metmasklogin-vcb.gitbook.io" always_nxdomain
+local-zone: "xojautruffeuttu-4659.vercel.app" always_nxdomain
+local-zone: "xraiz.info" always_nxdomain
+local-zone: "xraiz.vip" always_nxdomain
+local-zone: "xsuweamskeidjf.weebly.com" always_nxdomain
+local-zone: "xya46.cc" always_nxdomain
+local-zone: "yahoooooo-108560.weeblysite.com" always_nxdomain
+local-zone: "yavanica123.github.io" always_nxdomain
+local-zone: "yi5lq-syaaa-aaaag-acfsq-cai.icp0.io" always_nxdomain
+local-zone: "you-can-receive-here.vercel.app" always_nxdomain
+local-zone: "zeiitgeist.angelocachero.info" always_nxdomain
+local-zone: "zenixoikitti-5809.vercel.app" always_nxdomain
+local-zone: "zeznjx.shop" always_nxdomain
+local-zone: "zwzcn.com" always_nxdomain
diff --git a/phishing-filter-unbound.conf.br b/phishing-filter-unbound.conf.br
new file mode 100644
index 0000000000000000000000000000000000000000..0a0231013039b2b90d0bc1276cf8f1f3c3ca3632
GIT binary patch
literal 5409
zcmV++72fLcnEE23m=Ay=WSIMy>OZ*uWqN4^LKX1mWUuvrL&BCordXD*RMVEFN|h=~
zyK~XF^sACP)0OGUD%ET64jkWSkaRd@{5wGz{8xcjNV|@ND!`F&BppG=gCj70IHpQ=
z>pm4dpo(-QbVm6$hO1lDfdL1r*C7mTCs(N{kW4y%^mA@;pZELc@3-8yT-G0HFZG{)
zDT_Y+(^lMj?&H@V{rt;Wh>E{|`q!U9I445?Gh@F6`>pkV{`#Yzzx$lIVgLQZe<IvJ
ze_mSWC!LI#vxNIEe*MwUl4qQ-;_shrjI%p-t$FO=*?7_c`vnb2O*?;cR!sbD&#yoF
z8L+4`nEfLe?f&&gKW#$w-#^@7N#S$#U;nImY%{-Id4%<SPJFhye&KI8WYfQe0i2)y
z#brq(`kB9f{*ZId<)Y)Z){FUvKXo~D_x~#&9-lA0TR6!{sJY|?1!9Oa3$CS*iN9@O
zfPHK@a-diKNE%C;L%C??l%XM9_v`k3F&k&4aKFwe!kHx8TEc~-=Z^hJ8w!dxSt~Tt
zMlQObq``;L-rz&}6(L~nv{TO0r8%eDX3@Q_d!bqp(HTxvmT+chI8Q~6pcv<#4;cB|
zYX_uh7NSFSmO(mJJea1({Vodx#O+Q;=iE`4Uo3QX`dsht9r=wTg(9<z2fnd2$h8pT
z)tlewD1{<WTR9o5E8tGyJYUCck1O5d`YhX%?sdQazuR$bb+1p@OGbL`#5yh%7hF+4
zzu!EL%#qKqI}p||BXt__P51{7pLcTR@_+*hi2w!23HOcz8~v<lm|&+DdYWTytLF}*
zwtO~s(MG0uyak4DCgr#c$U6zOyoFo7&U3#>sTUcQGz^&ENIb+9r8ulMIx_UoI3VwB
zKkGV2>CYqPl2Ye-hY$w65dD5Hz^P*p&NwrIj$)kTw5H;<CVwBkHe5X{TkfbXAn85!
z<L+F-^^gs7rckDcJR8!o*PyjvZF4`V@g|%Ju5}*Q%4;FHG*&N*yF!F|5YCuc1bJf@
z%Ph2BvGBV}y(a88bIh1)4ngF4XSH{W^DJ5CQ3Wr0?{>mMySHuIa?V)@{V}SG448w8
zoC^9w#suA*wws6TeC6tSb`o)57#OcoG{@HO68h-nnxi&6_nY}))rhJYGiM~#^=FBi
z-}9i<^YyvV+>&bbN;7Wr{1<pgx5o_SF#EnA%UiVbp0Mfl+czQBPs&g5I-~qxUXm!X
ztm)l9S}2;&)M=dP_}=PJg<ZvR&g80PrD2YDrXfYL75zQiB&JeW<OV$=Jsxu{DaR~M
z-5!ULrSL62IILvSCEsSP*m~+r6LH{y9$TtH>NpzKd5==>9`*#E*DqwGazFz_OiMbC
zH@vGK;Thln=Y|bAr^B0H#%zsL`Mr0cU?>4)$~TyyL4!UAP9l_H4F{&>Fa;OW`CdP`
z8ckK%)|k5ESQbGV_9N3#Pfm|pX*A4!jtzWEpB>JaXqR+$f-l&FF--vg-F}BJdQl<6
z3IO>(oE)}J2C>d4DcoY@HRztx&Bwe2$Y*UpKleBF#M=*Y*0I%2q!%i<qEu@LyA%vG
z@EOXJ>&Dv^pkt2PvS>8~dVc54rBG6<MH?FVnsU?*X1>IvaGbT;d52}C3NVnd2}R&M
z-`F}1Qf{bPYkZI|qA3W_xl2L~Yz9MhbFDaY6!k*WFzAk`SMhx-??M6_^FSu=``l~3
z@?qU2Ch531ZIfVoSR<ug+94mC^00Ai4Z%7paR3(&dB}tIO%zGw(t$6=HlWe55+v6F
ztRG?xPkA$C#x4WG7%NO-(I8i3oTl7RDWm8u7t98<32Y5CH>|zw1)Vh8ajfx8acLX@
zfcPWYZ>{)9-lVLzbqr?1fUte0D?$SqLwM+#d!ncIMBgfUn!gT(Oerm7u^|uzG7!%f
zN0f~ooa6?SCyWu<`s;>#Ab;6JuiDaq__I#X+q;}t`Z)rWmeV99Xf47K*SV=faF$~B
zd86okr=ij><kEgq{9ZRbYAeu6j$W?Uv5l(Wc3_^3(S!|h8E)*@A9VoM4E9G6xaRJc
zpiix2U|wwWa1$32^NWC^1}hjF{UAG5Lo|qhFD+IL<BoCG{{Y-Qv{31xa#*pP6ez-x
z=6bX|YFX=S2bx)I#IWhHdTQ1AEyMI?TelkKG1s+CH%SSunaAhzq|(cKn|`a!2tESe
z+0bc)Rjh@ZFDxPCKoUQ^@s1l(#cGU+c_LhfcQ!hKcRo9j#smk_(*P|&33|t^=I`_k
zh*{jyV66mwbXLNCnwcIw0nq>e<cG10<dt>+5+KtYPS&ne+5x=sj5BfdUX|dS`nr(C
zn8kxC9DEg?gwCjrk;9`lPTiNxCCt2!y>{_CQ<-DzxyAT;=JZ8XpO_!D6ns`pXagvn
zTKfJzqr7`bM*1gTfnA67ukS5bKCg)tyrwh6`_smVc1wcc&oTIts%qzE$F_?n@}zx9
z*UFY<v4$<(E^liHCHmJ&-?@nI#g=Qt0}pIZ{AP-?;3!*zSOVaN20jHwZoxqo7i74B
z5_?sR3uv0l1y;H{|9(jxgCE<7<b-N9%vST+fGo<X$$B?Uy~A>?Hcf>OASHUn(Yl3o
z%Z~{<Ys1iRg&W3nb9kldpEG<M<MSDGon}yhZMb9c`z)jNfjvD(U6Cv1dDb@2EIj@0
zhQ#p%t%{)#Jko(`DZ^U*(<zp+ZOajJ#_Lj)$2^XjOToGCn2EMlT(j+MGUwEdxEMj)
zc&QeBr;;WO;q|Sc#j@1d3Fm+@V2t0W=DfArSuky{PD7Je*iJ9~dC+_aJzjuvIZeZS
zS|M*VR3FVHQr{@=>;z6@EP<Y|t=Png>^oLyaI8~qP}|euFH`w^FH}jwr6yb&!Z~w%
z<SMsguqPIJ<&wMv%||j;x?I!y>BBV2PPNJBD<9X9udLmr?Ex!3j5Ka28u*doqdEoi
zg#Ct+-6GYcGWEny&1;*f&KT<?+OZ+vYX02$lf=$TrUmC2^Nw(@<GJTtq7RaW52<=K
z#Jw^norIqak3GyYc@gz3kNn_58qGgBCqy2a)-x|?&BuSo9Rqb7U<h10cqp%lL2_WU
zp7EGx9@t29CHCeCJH`tUDPHx9L~>;y{DwW3@{9$@bHzcg&*%GsjXa6G@33VfmM2E4
zb*{ap1oJrBXq*NT#g)EiF8&!3mk^i`b_b^hof&W-|9d16UOiRk2$CcS@e<UWY?&N6
zf-~T^rOAOuNy403M=lln6lzXThIPtwiKon1^SP+d5-KYB3H!8<3`Y(g#okXJ3hNAs
zi4$v0M54LU_j~|hsmb}<AC0Cvr`P{FGk)&x@V`NGz*S3Qq{0C`&oGhH6Rsl^MDof|
z3UqAN_~rxdq2(qy=8^ajeS7ce9){F`-G$$s@oZJfkX|Yn8DwA|{YkD^w$>oi5+EVS
zSNp&*2F9??j4=*U@FK5-Fw{llLx4%KaCHbxcgaPQK57e~BAFN<3jX%<I<)(7$Yy-2
z&pRGDLih8gMXte>Yy;{HzyOZ}kL2!9d5k-~XHWw&fmlw6J~>F<x$eIaEv~FsVv5#Y
zcT#XP-r~A?#%C<)(c(<*<*_<G$EO@0dVJ{j26_zRMlk%q1SatkoK1sOrxPz8Aio|j
z#JYeAe(G^UxZaCwl{84KdqAAec}pdS4b32&2&~dM^*+n2WLSL&V(kJm`aaM7U1vQY
z_APlM#U$y3-g6(+l|euxE?bE~33Tstg#h`SJ@ZjZrDv-Iu(+?7C661ziBTUgX6L-B
zvk6O5*ZYc6FbuM`251j`Ke2U;<m*-EHS1NU6RoFQ^fL+PKj&26w+*edwt+CcI@TeX
zu>3@57xrPoobZN1P8fM7LX0hYPYj2QC;BAz$$297deGPbT<VMxAUA+g;<Vd47%h=c
z9OK4*wV(MY+k0FvR+4!H5~*Uqs#q4w3NW}Ddc2T`2a`^kQJZnTD&1P5$BpnAaI1YR
zsRFwr4|s}E(hec-9g>w~)Un^UB$QT$$|kr*PWzdkt4Q;$h6B(Tm*|shJR2qF^n`PP
z2uTEEq~bvVx}-6rWHG=3nl_PI)iTB^wxCKFlyu55Zk*(t2X0M_&izd1tyEG8G*K<u
zyTq86+U-bEXkeCqo!~L57#8got^&GAB~fWuA}S@7X2NYr8hLq3XuVa*EY2{5Wl@WE
z5KQE*B4I)&1uV`eWwm$K1n0qO?sZVi{VEA+iOzAAlvB)DSmJVFPZ5`BfVst2Eu{oT
zD}>ctC<TjkUMeFHL|DM-a((K;Ku5r^a1U;>CFxXfI@$%bw_HVEwXA?B{i35&N}9zx
z?u^m^D1%<2auo{$2oEmlC8-dDlVFnP!s<mh5dCMHfD2kjY%;M-B_6H96j@46gOk?C
zhl-VSNODn1N2UZ{tWOZ4;R3B=F|<|XvP@d(3|HWUvQ~icAqeF(h{Y}}`HICC9#MfX
z1{I?9S_()~Ijw|H=&PFLjtS<pv0f@Gyo*6&1Qf8yxL~=U_sg61LP}+oirh)iLPzVZ
zRyM6smt$=*-dL^N;#Fb_6j%Y8MQ{&OW=xNBzkDUG4XUWLHv*S{!D_~hkI}CeHCNnt
zW|VT1NkT9|tE7M>#dvZq!|_FeGtsbVH~GAB&c`UE@VErQm(*(EyC6Cb-YCNXm`Rg5
zUeZU)lknBda>JG3$edCTBxoxbCc~XiY+3Cp8;C_BGmbf_6&L6^3lM_V-Up1_dg<^#
zS)LhVl(5eEwo}fEQ4yA2!ehk(W3&X&9;8wV{1Sx{CIT!`dK{hWdd(mP9T(@oO(qK%
zq~S~i!I_L;oE;cAx$2fJhD!11-Qukk#=4|sa0m}yCxXz7X~vmTdXdf*oRkrTE+?I@
zX40WrjN{Qpg$#XMOwdVbEd^)m=H&$Gxm!>>$(%~497^CRCh+!WaGrhodS_YG!bh%_
zD12nn71W{~a+9L*?(1yi2-c}+jADtq;<7<5g1fLt5%fr?YEeX`6{;8wS2h?>R!b&K
z3<AI{zG5wL;lP6cj4E31gIbV*6h1{{##gOq9R$G@>cmwN4uXwR1s;TR!dO?s>*$0L
zHJESX!Z`1BkX-pCx*<XJ;8G%ZEv%=R$WTUFjgl+PDzV-8k~FVYkdkIbX%>{R!J|yZ
zKol|>&19>ai5+ncG8d%XGA9@$!+Bs4Y|zQA<-a-^VH9Ihd#9B)%BLk+0dA-dO)X(b
zt>UD>0F1O8m5CgzRtusqD7g&GIJF*><^UJCM5P34tJ$|YubPRq`~s%+1w9|nOJ2gS
z^hocHFO`b@nlP_RT2b|0V+0~Klf}BNcVF+*Zt#fNZY)M)V0)l!v{W?=8+@TvD07Df
zubH((Sv5Q~K;fkPx%Oo@Eb9s_Qe}uxC6CMrB9t1ryJ4^U8?U)&ffbL#?#TRgS2PJB
zy$FlUF2##k!~TNNIAB(CmK*_qAlWpEWKQYLIYR-@lL0;wZu|MVFl8IWGS%wbYhE$$
zJI)6Xr^UbnGLeuD44s-WM=r0|l?x>>LB;60(nyo?x?nz;ol=+dNzRK;LU#Gla0+4{
z{GZXGbj&9P5X&PiE>hH?KX=^gIDlBSaWJgyd_ZLnuHi_9rsZ4K$7ApB)=DaE9Qrfb
zl*PL{X&1IDDrpKQ6dV_N@GnOIrglIsPy!}sH4MYBnlx^!hv5@&{$?v=T_F9uB%>XK
z^%!TbAx)<3gOPz}Qa}6Z9-xpn=z{4#(?iw?Et0pKaTk>i-6vT@#-I#*UqOG8H;=!y
z#MY5SpYFhb>PPR`T!PsWguLlVdE9y%bRV-M#5-!}%P`Qf;o0(muM8)F)hqw5+8H)g
zbe=!~QbgE02H5Yb<`pn@nBVW5Cp-rb4T+&SV>C##rwq%!Wcm#%i?_G@?cROn-8f_b
zTlVs@%}B-e_`tyUb$wHbkwl{%Q?s8Noj|*8^$jkQQBS2gr4hOQ+M1hTQ9>G{FhVaY
z_fDr4_==1TO4+y<N`<10;mBGW9`{^DT#~%Z5((QZ8u4?kK&#Pm*Xv!MkZEo7k%w&P
z4fJ*Ft$V-ec6eo$&s;vre&(B|G;=0KVjob}!nqRNUM#*5X||hnQ^ZYKsK;^4amSgS
z8fv6=%!ni>RD~*+S_$OH4<kBzgZr2-jz4Tq1%rB_MK*J!%}f=O%2_8BU{3Y7zShMR
zOJB5J?8o^jOc*%iv`iXjc*fH03dVN8eywoO@;K@a5i(>fmXgvrq5`{cNBZ5$ip4@=
zCLjvvV(;;FkV`7jxlAPB_j~Bo;q=-X4Y1{@q6<1FJ}JS`Sw2uHEE;n<@^jQDvDR9b
z+9U5H%;cW0rq^BSaednv+^lGO?k^ud`Yt(KwZCH2dH@Z$@2s2*>U%@3Ym74vJpCS%
zy23pgj4>aWnLbBViIf_Sqek-vq4;hpQw_6k^NI6WOR0oQr!$M?#C|~B<BXUD-&*7T
z1^!5MJWF_dLw}@E?NHj2!V?+S>hy|BM3qa;KsZw!eZYB=svy6`YsOE2cwZgO`82iF
z^mx;7*Byt~V&`LMI~UpPIy<Sl0c6jB^XxQiIXo@5{O>!m#GIXS7GG4=v1MwO&I_q(
zA>1g0KrD0iQg-T5cHiOIW#`7L?_S<@KEe(cLP}rXalY#DK4Rawqy;wddBxGgHwRDp
zAhlp@`90=}=MA}U1>Tt}x!hdY)m*{Iu+Dq)o>!_i_<+wjEbk|FuW5XEaBR5~;^9F1
z;HOOLUDfw{(j2BmNbj!T)Q$^w9D`@mqhZ9&&A!iWxS(pYsN^Z6Hq@hF$RlfEh6y((
z54u3aykL>|!US!Q6ypMxzBvhIC-ml#k>Yh~03u)T!DuHagrcL``vz~DVCRL1uM1&?
zo{gA&=XH|?@WALQ=w4s(^&aJX+YFCA>99Qxo^EP;HG_toiMmZc2-2ZtK>!!8bBCKL
z(@?s5=v+v?tEf*QR~nEIasW<9@8HMjw|?pa=4dk|oMTL4U_&%LB7Yj>uZ)ogMjnIh
zPoEb;HAaLvK2oDa{M?`xjR|A<hhJhzIJ0`;XqC4KvC09Al}Ub_c4xi6NWVEMcC3{^
zNd0BqbrSKnK@$vEZlW*FFXlW}v~UN^4E%rOuwknmm-WSxKQ%w|7+CDUn9F+LZ+U!F
LV=v`<eFNklcD!t5

literal 0
HcmV?d00001

diff --git a/phishing-filter-unbound.conf.gz b/phishing-filter-unbound.conf.gz
new file mode 100644
index 0000000000000000000000000000000000000000..343030180fdc00fea1b8d51083b9b47f49b35a8c
GIT binary patch
literal 5586
zcmV;@6)ox?iwFP!000021EgF_kK{OVzWY}cb}u$yX~dTvb2Qd~4?Y<1?!}h{pP9^*
zD5XSYR@Sfg$E@lek1>GA+M4d_uIh+jFc|U0gRJ@U+h2Vg?XPeDb@toYhtu0%=1Kan
zz5Okyc@O68-^N*AN592?`t#f079*oIzrN9i@`{j(ioZ6^ueAA9i2uRA|NHymSG)cC
zM&68kzWww5qJML%z3n#W=f8mFKjz6U@`NSNF)rJ$zx;B722#~}o_?9+_>iluoFAiI
ze_6hi`uZB&|LL_2+jp4%Jbto5$bZlKs*{@YV#A9p@&D@^WS#dfSw8Bs9mnfBpFZR-
zKde*#MMkM4q`)e2tUl%dUH(My!CGO?b+GYIZ%L2m_V@5^Ubg&yv~*yk(z6dqPFn1M
zffB(e%OPwVX}5T`(d+u*-!~s~<U{dh;9aftG2t+d8C&cb9g4O%z?m9Wk-o18wz`aV
zyVl7`j`(^i8qq<qj76l<alPYn4y}fNZ1raKzNQU)?c{D(@4S}L&!HaY(->;OE1Cj<
zL-htmTvoYwlefg^Cy4rxYP7Z6!!ZK_GFG2K)rfj}-b3bQ6602%W~gjyxqsMD?^}I6
z9dbs0w`$*ffH|r?BrLFNjx$PQ9^0zU^=Y;CaBJtVB;#s3)^b^ns7G_E@%tLiSDeCl
zNIu%rI*;>Jj=@`aSJe-MazY8O)&B8u$iGLw06XF;UrxEz#@>&ZCgsO!@!=vT87d=X
zkkuleqXiVz?`~eFt$tWldvh#lA7z|ZzpVZaf2n;uWU==W1BED|te(R?=U|s*d{$w8
zRB^6Wt1UdFQqr7k!3nN$vjxVC_}=*G_m3rp?K&ABT%sJ|+!2PfYJBD>A0xsPfl9x4
zGBNU#kCUYFcQ{1{U;7SUPlkHC?MQ2NV$5LjK_?_?hOT@;K$;J%Z@$SX=r_!|+4YXh
z44ska#5ef;DPYsdSZzBL^MeSiP1n+IvbKHG7qceM{n|Jp>6NVGZv6ZYa{D=xdA+YD
z<=B$I3HFhA$0DZZ86O@Wl!_8Ypo`oK0A)wn6XI{l`De=B_HD77-?z#DdNr!oe;{RJ
zmF*eymXBOJfZGBvli_D$3(7KipP|%w9!-S|g7wyz!}XzjsQr3CrnqQGpCM04_f*!)
zFm>ZNPVJqp%X61!ar)TKl%C$5ze**%W$)Ivjs_M^?!LVX%4@$k*eE5r(TD5dLU5Am
zF{8%Td%XKvJ9Egg-S>5`<^cJ&ddh+t0(+W+^TuZ%rLwVOA>`Q1#-257$R-s$hZJ4Z
z_NqecWR+cCU7E#L^Ztxse&$D)@~7WEO4zUrTsYfcKHlNPD(2Lv3W@xBwyPziPSDmg
z8GVKtw~cayR>3A#x$9M~a@(WbfdO4p;56}-rD$O)SCRZEp$im^`>SpY6h+oH`8v)E
zLCJqyFsj{;D34A6c%(+)pInTqH-?J8vT}=6gWf^G+_3qFRWwJLA00qC`)XOyH?Q%D
zGP>hv_1Z3-)#%+b!-iV=Wkw<W{`@$k9H(lT<9XgHrYP4#(K7359r}D6wE}!yiO6<b
zjlAIvy8i{`?F{dD5=J=_ycJz-$O*6^2D$qO-D^25Nh2tfVMgSplV8UQ)R2nct-@0l
zs1@Jie6=Az{phod^>>?VeYP5A<D>zSjb2}K=r?;uZ<!rY+5^yRCF^-T9g{BOoFns+
zIy+X!2dUTnkht#{6Pd)L^wSegW#f6Z54oCxqevD+l8g0cTpp2!O_DaJ(bj0mY31iA
z3(O84Rz}{HkfWj0G2ukjr%8}$NbUS;Q$dy)DSsp)RT3GiBO`9>n6t>fPSeTUYn$rY
zW8xLQIzAB)`6&LAs~?(gaHULW*L+3;v|~o=OF^A!RQ=UUaHDeQEoIKRwrYE=D=wL?
z6lsTw_eRNqkxp`j6jQNvyFC#vmfU(*KjzidsS<t#!2NIywMQ*Oq1XIm%kvatN1xEW
zMg?J~CDtxY8PI84r8X>Af5<}#_j*GKCZ~Fu*C5xNRm0;powE?tAkl7<TqAHCRedhh
znC&vhG^{?Y^M0t#KB`uWMWh1bfEGvbL^Cpu540tAlVgs5SyWA9n$zS1h}CCwO=d)|
zmY?zMsN{-6Thb~(4-=L;4T%of;_4&X4#4_kb6TtyTGZ1?)v2QkF{ACa;WAG<itRFg
z{>hf-&vsqsm2uJD&%1&JKO12A0hfk=1P5D2QElH-O=Brag?tdPPy0m0RKyYEZv9>`
z-EvY}HP6>d-u;plKu%8RSB{%cC%4U>XaBLIKd8EPX!D&FyfFo8S&X{N=42%#KC1M|
zR5v%`?<kLJub1Z7r$C+tSER&%<IE`<tgm~n<0XPh1C`Ig>(?zpoWCwb;=GdDc*v4q
zvNCK7&S%RwdKdPHs7~H;^+&WQc>QG#!CvQrd5~KKQ`>zp?70QkF?A&;**vCR-9DbQ
z@yjDWsiN<;)#uHRHJ_92D$VbkAEV0xwSFfGa3jCu6-zobZQJ%;(-wr>N$X(L?NlRt
zj!2;+z-_{R>(zev`g6u|$Q7$s7l52~O*X2YC5M*S|H#-sCd6|=W0Bl4$WyIWI8cS6
z;~4l(>yC00zCHT|DA4kuphP~Sr5<d~bO@B`;M0IIC)=F$>Fh5V$r*NE?MXgm+|v~Y
zFVNjyruhCI>(hSN0--CmL5%={63<J$bp7KRa$lAiCCzJ+mBqW->hsbmdDLqHvD&-0
zkAfYZ)V1J3?0ojddS8;x&OYwbgfk6xA4lse(f71K!FjT;i>bEo*5-?m@m73`k+Yxe
zOc|q~ZTmgOfez)2DADmN{jDJ1otI$U`L>}@L$=aSjiU8{#ZOdZU_~k{Yj`rw*T;3=
zP-z-q%^}xT{T!ve%#or14c@U0z#8QV?cH=r>Gpgr==S|`Z)?sf!UTSI6(LQ*rH5aq
z*jxc^4}UbY@cYGeJsbS&?pLMvj`#U#)<698nD9BPvbz8VE*<NJ5*WHTbIDQVD#xb`
zerQ>CsdTmPvquJT^KQ(%S7K-i!v8vwYh^YPJbVx3mPcomGwQvL9*&ppAG2+6MS>mY
zW+*rruuP-gb2^sm1|akoLRlyBZMUancp7IVN0PJ1yZVSvqwCkD!2$6ol?=DtE;9lM
zX1(kS47FCM4#sEnI;UVoBZ`V181i8&MtDJUfTAf}O_0?U#ZCQqfB$$LQ^u>4ag=AD
z)4+Zb9+!0E?3_f7O8yyb#R(S$`$*UO)#sZ8N=tf<PtH^?ry0;_vdF(~^yWQ|==buT
zcYSewvQ(2dpM#lnXPeEv>GW7B<x|26FL_=9zDk^~DG12lF?J=4`?cliSxEuM`{<pW
zyqvtkx*06ft5~f*-@|$3M<0PpbA3O`1(P&ZJ=L_<?&%L{Z;Q9@&yOtVpX6f>Yg5fQ
z+|BQLhoda=G3kKT;pSxs5*<T!CqBuilYYgC7g%yKYQ2x{nFT?U-O}~Fw`eaITV*)e
zf)R4E|Fm7JM|#H=t5-@&Q;=g^1t+Q|93Dd6#46ZFg``wAg8E|_dGn~r>vi5{7ZJeK
zh6*e_p2|%MlfT*}Js`PECFe53Md9E^Zfbwlft@lQR!;ciHM~f-4e&tJWHsAk@^zmz
z&`1K(JI?g-q`Lcg{CtCwz12C*5l`DZ!oD%zaUYwvNG|TOn%xy#El=;$dzjv9{Q7uG
z1o#1ccx?w?%e~6EA^1P^8KrbkQu^EFmNl&oD6^)g)Q@}qc7uymO!p8ZKi>tf&#y^F
zSrP~v>KC~p)KOq;kyfeGm9GomtXVm}Wwx_BzKQ%wkP?`@#X4PM<T1d*rx|Q2<H9vP
zj=y^N_FRMQkT`914@eKcjc-tKMf675R-gAZ9aNpJ-O)(vSQ+`c$Ux<AwQEjL%#V40
z?D(9ON){l~)ny#a!awf4Uc<VcCGEEP+n4IE@x^D?_w}qRXLWg(p#mEEv7$5^R~D;%
zTIfeSW(4D6?KV$!dN*)L88p(SM7lL8<;tvvWkEW5=FEK;KZWx>3lo+ZCk>#ke*a44
z$4E89ymJ~ZAS>F3t!R4AneDO5ZLZI&!`{`n+cSEMV>m@HozTZm=|@w3&NiWQuwxbH
zI6j}BQ_$l1=_|NVn=k%)j36M6v!2JVX?||fS$0(sLamjK>aJs)XfEyGgw@XVR?Ak3
zdZoFNx~}I<Yq_(Uvw;r{=>|p!(WLK;844r~s%M;WYCFSQp$6A9iU~p(6|(6`z9dSF
z;YPP&XbIO=4a{;OTVpxI3lu;3l3*2Lw6neHx$D}YYpiTrs5eO6nG&6xb#`D>LI&qO
zw%2!hP_h?93C){)NlfzA3<Keg54`DmY^+VqI$^ex&Cupc;;^;pDTNM{bJ_NTV!WeP
zQr*fy6zJ48QW$A<OO)h|gCFQYn7*|_^@N)eNj;T@saBW)r`5G;ATXGa(lRYt!wV$A
zm8p_&?ACE@^uT226v1v=I!Ib@cAd7ZO)n!lBe^4{=hm6Vxk2E2ea8wUIiVeEITxnk
zl(fBaQkxFZ*bj}-1$OEi*0Z4_Tn?1?Fj}XyrW`8Kwr?9(Ac?dDp@F2>S#II!0$%DE
zL~%;FB_)!EhBkxfdiYUK)nK%+a0@s+Gp#MrDV@AfltB*XhT!Z3g+r-c@ZOc+Q{THz
zbzmD>#a+WCmoS!S435sUU5QT0rnq-Rz)pq>g-B_&)x7}ZDPsyG89_LB8Xy65Vt^7Y
z5YDo3ydkatGY8T#IdrCLQphPj3{ZqJs-PL%t4NY&QW_wV>Uc+_Y&!P}Xr@e0Tmfbd
zJ%L+x#5Rav38|u|jddOH-8F3q(!rIPZMvZunBa&JMH(%&7D6d)4e3iH4e4ipVDYZw
zw1=6J-G-hfj}WackR-cKz*0g<hSQU(HI!2T17MgbTi}^WG!g+~+F<~yG(D`%I?_-a
zT*Hj)@+Ij8&YTdpL53qn!PS8XT@UDEda$xU5>^*Y1CPexiIxp5V3Qe3MbfcI5*rXM
z-2k*S+%{Gr*tBq509{B^f|;5rG9Z%-3_3Z>2g@XJ#z}yIV5%vSH1v%TR2hOCia#1g
z9Aes%&Y4aXNa_u-vLCpCKQ)dZMl@?F8Fb4i95i2&p@0$&KtUGZz3wDx1J=NyG?j8_
zOC+HVAd-O3qWb9(BfPbZ1Q<AjC@MHR)1$hfgj?ZIWguB%yYMfF9tOBofh5ZY;jFPj
zqNXFX8x)EiMmVBoNbXP|iBqiv?STQPRXWxS3poPC0Wi=BQX)w@CxE@8(Y))mvdndz
z1Z<j4G_1hlu1V!hGiapZlrAMej%cKo9$OnqaNKnieuTvp#E6b7*E*!BA-Oqkbz36I
z0S+V#L@Y;ziUJdEU}*<)G2P^&$_YK>xT`}#=OkJ@uh8Z_W{-SJ3YxE*-28OSXz*_C
z;_jQh<y@!Sb_rF`pl#c1jI0<=wLqokc6#Q_Rabd2KD`->XwWY<e=fROFn!2%mSG>|
zDsQ_N1=Hl!PU-f?`S<LWZ?)lclB=nCSJ8BhJW%{ua)rFwZ65FT)#Bz1t3K&p{juM+
z9o_K*)~WWbV1fr3HyKL|lb)3PHbY211X3I7x`nB3*>y-iIA8L^9_zT=9@hDs_lI!*
zarP(c$I<Q=Sq*{~INiFBcCtGEK=<gw?e_4Y-p+^biq?mVZm(~<-Hv8LTOF;Os^xL~
z|B~3!>?m01`@f}J36i5a3_X#lBqZtNIL3B}S#08s!0AT<GQX$lPa*fDs+a24vq4~6
z%af=tzURg(J%C@fgyi?x7M}aIQ=O&11BeK!6SW(frA)RK{lg@yg{qsT^T|2$FfR0%
zJIfw5`e1wI#s!v(HYxz{Q~0}9{{{HsMyTw;U=ImMs?NoEvAjBZ&YyCNb7AB&{8R@U
zbIeaZs6KayN~{EfGAB3d1ve~3&^}g?VeXUF5w=2>O7d#^+Zb5`7z`I<A`mpe((xa#
zr+>hfKgQC5N_;B%DW~-sy*#nRJ1s%A-*YyU=exiKM@on&!cz@S_i9+EnIy*RI)EDl
z9;lT0u>A)dFED2}fyG1L{gh5g>#W7T77rcN*Fcv(xwfQB-(F?L*akdHx^%iHPm)fn
zVseUW{Sy};hU`g#zTKt1p`elsoPhfwGsXS~l$Kcs$cS{&GM7sE0bXujKLTFQr=J18
zkPwy!wAgpYnyqw2qB1iT`#&QP^^4|e0D~ic#tlcE$H<2RV@9es+7y%&nzxf}xh||L
zn%(goR&G#SG4H41*;n5ZS+D``rm{TRd&OW!*wiF8^}$3f+LRPsE!YphZ<KB#4#fIC
zhABrrF4^h*%-9DIu}mdn2Ghr0Qvq<pe4?B9o9VNhr%0yXGRRsU5AZ3^_uIWZXB5l%
zbU~L+8GpT8uDRUt)dJhd4JH;cidMo)zt1TE`LTw_Zkpb9Tynx>fqP_3@@m=>RN$h`
zPg7$Z)_%PNienzOvVm<5D%~dAz;jQ?siWl@+)}J{&TSR+9h=+S=s#?E%4IVK-3HsT
z+wDeRmImDgfvb3=sNL9poZUbXwF-IXdiP?j(SqV;2Md2JV8wxD=c8MECoJ<F_i%%R
z73)+V32iGt<srlde0eZQEGx@PMk!8k6_P<okH{%qx!9`MT4O9bmiG)oZvc0`=Q8tr
z`=Ds2TbPy){-B#?VHUo51WVzd#9}Q?1eJ@nUTPBet|<yO!oWVj<ukmE{VR&{Ex4RA
z+{V}<&9+H}nC#wZv)%zZ_QzAs6oY5WZGVc`;eNneernMoYpd%>RVC3^$_LVAf>n+a
z8jn38tzp;~C9eo8`e8BXx9bK!jqtesz;q^MV|vl$W6&AQ#Dw9MjY+*EV!#!qY_4&X
z!HZdwM0*CmNe6Ea;Y~?g`={YaAJ65L?6od#IS(33I(4V(Pn$Mu(ngxKs$xdn-f!Yz
zcxum<ro%qu_NGksJkLX+#om%g{!A~W9(kuiz#f}{PT*cC-`|vGT?U(SMT3%!5;|m0
zyHPOZvayhYAtT2P;sJgDdq{cZw?dm5qaCaQKSvd694OKMk-xzbBX9(_fM^FUX3F3L
zgP?lBH#nw44ocTgN+e(vq+EXelCKmD#kTz|OR#d5^9_$T_oAEuBUk`vsw`pdDhymp
z)G7wwhK^5%^H+wFyzs|Ud8C{uZ^O`?!RX*xe3L{)e@EZ8fpy{H<DtMyiwwy%^ri83
zT+fvF;wrdr0>6D66_#lzEt>~jVeg5bulw1Oi9hY~0b~Alxn}lfosd2Z+XoVrsr%KW
zFWrmz>C>O0W?Ve{E2BRJya5bD-=7x2SjSC&LbK93)C$?{STBSB6EK3MJhWLE{kE_G
gL%=%h!#!u(*)(rTT5KL?@t1P{U#k;j*i>Ht0O~3d6aWAK

literal 0
HcmV?d00001

diff --git a/phishing-filter-vivaldi.txt b/phishing-filter-vivaldi.txt
new file mode 100644
index 000000000..ffcbf9c3a
--- /dev/null
+++ b/phishing-filter-vivaldi.txt
@@ -0,0 +1,462 @@
+! Title: Phishing URL Blocklist (Vivaldi)
+! Updated: 2024-11-25T00:20:55Z
+! Expires: 1 day (update frequency)
+! Homepage: https://gitlab.com/malware-filter/phishing-filter
+! License: https://gitlab.com/malware-filter/phishing-filter#license
+! Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+||1111365dh.net$document
+||12931-coinbase.com$document
+||215323.com$document
+||260aesthetic.wixsite.com$document
+||3650947.cc$document
+||3659ll.net$document
+||83291-coinbase.com$document
+||94-103-188-123.plesk.page$document
+||9825057365.com$document
+||abctrvabc.com$document
+||access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com$document
+||acclimatizable.fun$document
+||account-update05.myvnc.com$document
+||accounts.google.auzen.us.kg$document
+||activebusiness-unlocker3.com$document
+||addwsrbh.green$document
+||ahnp.vercel.app$document
+||aldg.ldgknhk.lol$document
+||allegrolokalnie.pl-891241214.buzz$document
+||alturl.com/hpqhv$document
+||alutipcentra.pages.dev$document
+||ambil-pinjaman-daana-payleter.xforms.web.id$document
+||ambulatoriprivati.it$document
+||amev.ldgknhk.lol$document
+||antail-conv.com$document
+||apply-now-to-receive-badge.vercel.app$document
+||ardilu.com/descargar/kmsauto-net$document
+||artsea.pages.dev$document
+||atmailupdatewptnskmdinfomailacct.weebly.com$document
+||att-101072.weeblysite.com$document
+||att-1041page.weeblysite.com$document
+||att-105714.weeblysite.com$document
+||att-105819.square.site$document
+||att-inc-107097.weeblysite.com$document
+||att-login380.weeblysite.com$document
+||att-login522.weeblysite.com$document
+||att-service-102155.weeblysite.com$document
+||att-sign-in-105669.weeblysite.com$document
+||attcom-100762.weeblysite.com$document
+||attcom-106808.weeblysite.com$document
+||attmailservicenow.wixstudio.com$document
+||attmailservicenow.wixstudio.io$document
+||attmailsrvrdesk.weebly.com$document
+||attnewmaill.weebly.com$document
+||attyhhhhiiii225.weebly.com$document
+||atw-tau.vercel.app$document
+||authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com$document
+||authsyncs.pages.dev$document
+||autoreplyattmode.wixsite.com$document
+||avoid.hold-managert.com$document
+||azbin.ir$document
+||b45018.com$document
+||bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link$document
+||baiii-wong.cutvi.cfd$document
+||basvuru-online-yap.vercel.app$document
+||beionfidi.pages.dev$document
+||bet73nn.com$document
+||bet83039.com$document
+||bet83054.com$document
+||bfrescentremebermainsetreouytnoy.weebly.com$document
+||biggggggggggg.weebly.com$document
+||bitnode.pages.dev$document
+||bitvavobtc.com$document
+||blackhere11.serv00.net$document
+||blss24att.weebly.com$document
+||braucrarasuteu-2470.vercel.app$document
+||bt-102124.weeblysite.com$document
+||bt1business.weebly.com$document
+||btuan-dan2-resmi.top1.my.id$document
+||buildingdesignsusapdf.s3.us-east-005.backblazeb2.com$document
+||business-page-property-897432967.netlify.app$document
+||caipora.xyz$document
+||calm-pothos-3b24c9.netlify.app$document
+||carrefourarabiank15.pages.dev$document
+||caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com$document
+||catgirl-appverset-nya.pages.dev$document
+||catxtokens.pages.dev$document
+||chat.94-103-188-123.plesk.page$document
+||check154109.click$document
+||checkseven.vercel.app$document
+||ciente-a.org$document
+||cieplo.app$document
+||cj12143.tw1.ru$document
+||cj87335.tw1.ru$document
+||claimyourethrewards.pages.dev$document
+||clickbait.design$document
+||cnsa163.com$document
+||cock2-iota.vercel.app$document
+||cock3.vercel.app$document
+||cock7.vercel.app$document
+||contact-pro-8291-d01.firebaseapp.com$document
+||contact-pro-8291-d01.web.app$document
+||creosrl.com$document
+||curmmgdv.email$document
+||currently541.weebly.com$document
+||currently890.weebly.com$document
+||currentlyserver.weebly.com$document
+||dara3dccj.wixsite.com$document
+||db.service4db.com$document
+||de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev$document
+||debutcan.firebaseapp.com$document
+||debutcan.web.app$document
+||delivery.attempt.failure.ebbs.co.za$document
+||dev.stream.mornar.app$document
+||did.li/parcels$document
+||dnwqmh.click$document
+||dropsmartchain.pages.dev$document
+||dsjoting.group$document
+||dulb6c5p5.top$document
+||ebay-mallwholesale.com$document
+||ebt-lilac.vercel.app$document
+||echoredled.netlify.app$document
+||elbarco.percentadnp.info$document
+||eltritongourmet.com$document
+||email.mgb.modento.io$document
+||enjomugg.firebaseapp.com$document
+||enjomugg.web.app$document
+||error3456vhubhornbase.azurewebsites.net$document
+||example223.wixsite.com$document
+||eyeydhe.wixsite.com$document
+||eyttueiu.square.site$document
+||facebook-avip.click$document
+||fame.pink$document
+||fassehoizubra-7696.vercel.app$document
+||fastdropchain.pages.dev$document
+||fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io$document
+||fla-1001.square.site$document
+||flo4211.github.io$document
+||flow.page/servicesatttttmail$document
+||fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com$document
+||fnuttlie.wiki$document
+||fokeijonnekou.vercel.app$document
+||fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com$document
+||free-verified-badge-form0-service.vercel.app$document
+||free-verified-meta-badge-service.vercel.app$document
+||g06668706.wixsite.com$document
+||gccndbqg.vip$document
+||geriodememerkezi.online$document
+||get-checkmark-for-you.vercel.app$document
+||get-free-verified-badge-service-on.vercel.app$document
+||gitanag.broke-it.net$document
+||gruprocuroipra-6493.vercel.app$document
+||h5.b9en.com$document
+||h5.metacoint.com$document
+||hcghij.top$document
+||hdfcsky.com/sky/indian-stock/dashboard$document
+||hdfcsky.com/sky/login/verifyesign/modifyemailmobile/g3mail@b.c?status=success&digio_doc_id=did241119142331957uip6e3c979l3r6&message=document%20signed%20successfully!$document
+||hecregayatu-1014.vercel.app$document
+||hejmtxxt.guru$document
+||helenblunt6.wixsite.com$document
+||help.accountsupportcentre.com$document
+||here-apply-for-page-review.vercel.app$document
+||hgbk.ldgknhk.lol$document
+||hhideiie.wixsite.com$document
+||hitummoinneullei-5882.vercel.app$document
+||home-101067.weeblysite.com$document
+||home-103465.weeblysite.com$document
+||home-104341.weeblysite.com$document
+||home-105266.weeblysite.com$document
+||home-105929.weeblysite.com$document
+||homeattatthome.square.site$document
+||hpnefhqs.motorcycles$document
+||im25.net$document
+||info.supercitrus.ind.br$document
+||ins-business-home-center.com$document
+||instagaramgalochka.vercel.app$document
+||ipv6.43-135-137-110.cprapid.com$document
+||irmt0ken.win$document
+||is.gd/djgj07/$document
+||iujf7839iofvkbcu748.weebly.com$document
+||iwimwmiwi.click$document
+||jagej73796.wixsite.com$document
+||jfdjy.com$document
+||kalyani963.github.io$document
+||kexoigrufouddou-5902.vercel.app$document
+||kl1k-ds1ni.neupdile.my.id$document
+||kliind08.wixsite.com$document
+||kreelo098.weebly.com$document
+||kremlcup.com$document
+||kshitij12375.github.io$document
+||kucoinglobal1.com$document
+||kxbztydc.black$document
+||labanquepostale.jupiter-analytics.com$document
+||leddevotoze-3146.vercel.app$document
+||linnkdna-kget.wxxzsite.buzz$document
+||llahi.info$document
+||llahi.vip$document
+||loffaummuddote-4145.vercel.app$document
+||login-att-10221.square.site$document
+||login-form.world$document
+||login-online-outlook365.com$document
+||login-outlook-midstreamauth.com$document
+||login-screen-103134.weeblysite.com$document
+||loginaccount70.wixsite.com$document
+||loginaccount77.wixsite.com$document
+||luk6414.wixsite.com$document
+||luxlifemiamiblog.com$document
+||m.meta-accessibility.io.vn$document
+||madebybmr.fyi$document
+||maqpiexyz.click$document
+||mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev$document
+||mayfair313.wixsite.com$document
+||mdbrvlfy.black$document
+||mesageriepro33range1.weebly.com$document
+||metamsk-wallet-3.gitbook.io$document
+||metttaa-audddt-new-02.firebaseapp.com$document
+||metttaa-audddt-new-02.web.app$document
+||microsoft365-storage.github.io$document
+||mikepattyjm.wixsite.com$document
+||mobilemidasbuy.n3g.fun$document
+||monespacepro-client.3utilities.com$document
+||monetization-violation.github.io$document
+||moodengsol-net.pages.dev$document
+||mwsiekdnfjrdufs.weebly.com$document
+||mxmxnmx.mx.zya.me$document
+||national-au-b.com$document
+||national-au.net$document
+||nbaaiqjq.group$document
+||nexomyacwv.weebly.com$document
+||nft-time11.vercel.app$document
+||nichcheck.weeblysite.com$document
+||ns1.carrier-ast2-portal-apple.com$document
+||omadshf.ru$document
+||online-assist.live$document
+||online-promo-asb.org$document
+||openkimono.pro$document
+||opportunity-verified-status.vercel.app$document
+||ourtime.reconnect-dating.workers.dev$document
+||owouwuowo.click$document
+||p365kf.com$document
+||p4zv8crnrrha27so.94-103-188-123.plesk.page$document
+||page-center-manage.com$document
+||pavan-patil-22.github.io$document
+||pay.zing.vn/pubgm/$document
+||pecinternational.net$document
+||peesom.chat$document
+||pencairaanndannaa.my.id$document
+||petty.wiki$document
+||pimnhv.group$document
+||policies-business-page-service.com$document
+||pottatrebewe-2808.vercel.app$document
+||pqo.hrf.mybluehost.me$document
+||programming--service--panel-totlyy-free-for-you.vercel.app$document
+||promo1.spik.ru$document
+||protocolsecure.pages.dev$document
+||pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev$document
+||pub-1778406e4fec4394901793111c187dd9.r2.dev$document
+||pub-19b834342e7d465b9f00b3511325a081.r2.dev$document
+||pub-21dd4dc659614ceb93e45a6de4434502.r2.dev$document
+||pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev$document
+||pub-2fefe932a6974485b987c9ba851b5c40.r2.dev$document
+||pub-3a46d9914f494078a6d6237513e7a096.r2.dev$document
+||pub-442ed822851244a689b3472ea2c6a950.r2.dev$document
+||pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev$document
+||pub-682ad3b65d944376b919745aae3c56d4.r2.dev$document
+||pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev$document
+||pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev$document
+||pub-7f5cf36445d042168bfacd712e890dc0.r2.dev$document
+||pub-803839714a924882a7bcc2495a26860f.r2.dev$document
+||pub-8161de4a277e4ee8b532af34954224e1.r2.dev$document
+||pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev$document
+||pub-8376b5b2334844d193a525d8b8548fa5.r2.dev$document
+||pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev$document
+||pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev$document
+||pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev$document
+||pub-9163a97d70394cb499bdd232be6c2169.r2.dev$document
+||pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev$document
+||pub-98171471e0944ac3a5820ef719bf0640.r2.dev$document
+||pub-a263e0790935412eb10cacc55bbced18.r2.dev$document
+||pub-a291041b077742899b63a9982f04a56c.r2.dev$document
+||pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev$document
+||pub-b50adc5d699a4f08aec37102c2103da7.r2.dev$document
+||pub-c0a934c950e441db96b882789f53c9ea.r2.dev$document
+||pub-c2c250050109456396c933de259a4fea.r2.dev$document
+||pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev$document
+||pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev$document
+||pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev$document
+||pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev$document
+||pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev$document
+||pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev$document
+||pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev$document
+||pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev$document
+||pub-e42cb528b102447385e3145197916f51.r2.dev$document
+||pub-e4aff507450c478cbe3f77ad23d75035.r2.dev$document
+||pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev$document
+||pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev$document
+||pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev$document
+||pubgm.club$document
+||puffagroibrouwoi-8818.vercel.app$document
+||qasimk.com$document
+||qfjfvseq.info$document
+||quauwograssodda-3503.vercel.app$document
+||qysgyp.com$document
+||rajdipchatterjee.github.io$document
+||rb.gy/go4bnv/$document
+||rebrand.ly/18ab5a$document
+||rebrand.ly/4ff03b$document
+||rebrand.ly/8wtcv4z$document
+||rebrand.ly/96a02f$document
+||rebrand.ly/c0d1afz$document
+||rebrand.ly/d2f265$document
+||rebrand.ly/eacc63$document
+||rebrand.ly/f9decb$document
+||rebrand.ly/mzhpkzf$document
+||rebrand.ly/nbyh9vh$document
+||rebrand.ly/sa2uoq0$document
+||rebrand.ly/tcthi8d$document
+||rebrand.ly/tnab363c6$document
+||rebrand.ly/wx1eo7w$document
+||rechazaroanularaqui51.weebly.com$document
+||remote-fix.pages.dev$document
+||renggard.47-243-192-240.cprapid.com$document
+||resolvepanel.live$document
+||resolving--issue--with-us1.vercel.app$document
+||resqat.weebly.com$document
+||review-business-case.d2f7p3b7pucnle.amplifyapp.com$document
+||rlpqwefi.pink$document
+||rouloigeilleuja-9523.vercel.app$document
+||rulemec.pages.dev$document
+||rutinqqwin.shop$document
+||rwftfu.quest$document
+||s.team-pw.cc$document
+||sairanees.github.io$document
+||sanseipecas.com.br$document
+||sasklelo.weebly.com$document
+||sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com$document
+||sasktelcustomerwebly.weebly.com$document
+||sasktelnetwebmailservermaintainance.weebly.com$document
+||sasktelrectify.weebly.com$document
+||sasktelscrutinize.weebly.com$document
+||sasktelservicecentterwebly.weebly.com$document
+||sasktelsupportsystemwebly.weebly.com$document
+||sbcglobal30.wixsite.com$document
+||scan-vulnerability-guard-v3.pages.dev$document
+||scan-vulnerability-guard.pages.dev$document
+||scanner-metamask-v1.pages.dev$document
+||scanner-metamask-v2.pages.dev$document
+||scanner-metamask-v3.pages.dev$document
+||scanner-metamask.pages.dev$document
+||sec-sign-in.info$document
+||secure2-validitycheck.weebly.com$document
+||securecapitec.theprimepoint.online$document
+||securerpcfix.com$document
+||seeteressecalywoi.github.io$document
+||seivviice.weebly.com$document
+||server.0e7p.com$document
+||server.2rk3.com$document
+||server.8q3p.com$document
+||server.n6b8.com$document
+||server.v9vs.com$document
+||sevvviicess.weebly.com$document
+||shard.blue$document
+||shard.skin$document
+||shared-d7590.firebaseapp.com$document
+||shared-d7590.web.app$document
+||shaw-101329.weeblysite.com$document
+||shaw-101587.weeblysite.com$document
+||shaw-106427.weeblysite.com$document
+||shaw-107375.weeblysite.com$document
+||solutionwebsitedapp.firebaseapp.com$document
+||solutionwebsitedapp.web.app$document
+||solvetans.firebaseapp.com$document
+||solvetans.web.app$document
+||sondfrom.dexlog.my.id$document
+||soyokai.or.jp$document
+||srdate.club$document
+||ssy.hmb.mybluehostin.me$document
+||steam.poweredartsworkshop.com$document
+||steam.workshopsreview.com$document
+||steamcommmuty.com$document
+||steamcommuunity.ru$document
+||steamcomunutty.com$document
+||steamconmumity.com$document
+||stepsray.vercel.app$document
+||support-metahelpcenter-id100003498934.netlify.app$document
+||surl.li/tvybxr$document
+||sv5gardens655665.weeblysite.com$document
+||system-portalnu.duckdns.org$document
+||talwgam.njmolada.com$document
+||taste.baby$document
+||tele.zhngain.top$document
+||telegrambot-resolved.pages.dev$document
+||telegrazm.net$document
+||telstra-100408.weeblysite.com$document
+||telstra-100469.weeblysite.com$document
+||telstra-103234.weeblysite.com$document
+||tiktok-888.vip$document
+||tiltckshow.top$document
+||tinyurl.com/carrefour-926/$document
+||tnomwzrp.top$document
+||toeken.im$document
+||tonic.pink$document
+||tooma.cellinsurance.co.zw$document
+||tpdtepremu.xyz$document
+||trattujeilesso-3354.vercel.app$document
+||trbinace.com$document
+||treibrukeukonno-1395.vercel.app$document
+||tuesmad.firebaseapp.com$document
+||tuesmad.web.app$document
+||tyyyyyytyyy.weebly.com$document
+||tzcsjfto.chat$document
+||u.updatetrackgre.top$document
+||uc-whatstapp-web.com$document
+||udxcady.wixsite.com$document
+||uklifejv.cyou$document
+||updatemail12.wixsite.com$document
+||ups-trackdeliveryapps.chickenkiller.com$document
+||urlz.fr/t8vi$document
+||urlz.fr/t9ka$document
+||urlz.fr/talr$document
+||usbest.cyou$document
+||user-transaction-overview.vercel.app$document
+||usps.com-trackdck.top$document
+||usps.com-tracklnv.top$document
+||usps.com-trackmcl.top$document
+||usps.com-trackmec.top$document
+||usps.com-tracktpq.top$document
+||usps.com-trackvmd.top$document
+||uspsinfw.top$document
+||uwdtsczi.top$document
+||uwm-onedrive.com$document
+||vaishnavi1436.github.io$document
+||validatie-veiligauthenticatie.com$document
+||vbbu.ldgknhk.lol$document
+||verified-this-request-badge.vercel.app$document
+||vo4zzp.icu$document
+||vs41.github.io$document
+||walett-cont.gitbook.io$document
+||walletauthenticators.vercel.app$document
+||walletcomnecitt.gitbook.io$document
+||walletconnectdapps.online$document
+||watranfart-fdd6a8.ingress-bonde.ewp.live$document
+||waxed.wiki$document
+||webmaillshavv.weebly.com$document
+||weeeqweeattt.weebly.com$document
+||weigh.skin$document
+||weigh.wiki$document
+||wgqdqvtn.baby$document
+||wgqdqvtn.pink$document
+||whatsapp-rqr.com$document
+||wirelessvoicebtpaidmailinfoplay047.weebly.com$document
+||wscs1231.cyou$document
+||xn--metmasklogin-vcb.gitbook.io$document
+||xojautruffeuttu-4659.vercel.app$document
+||xraiz.info$document
+||xraiz.vip$document
+||xsuweamskeidjf.weebly.com$document
+||xya46.cc$document
+||yahoooooo-108560.weeblysite.com$document
+||yavanica123.github.io$document
+||yi5lq-syaaa-aaaag-acfsq-cai.icp0.io$document
+||you-can-receive-here.vercel.app$document
+||zeiitgeist.angelocachero.info$document
+||zenixoikitti-5809.vercel.app$document
+||zeznjx.shop$document
+||zwzcn.com$document
diff --git a/phishing-filter-vivaldi.txt.br b/phishing-filter-vivaldi.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..4d05c8ef40f54928e360cec508b4c922545bc5aa
GIT binary patch
literal 5638
zcmV+h7WwJ%kQ<7kq}Bcq5ygA}G*TAM-yb2v-1lqN^S{5F)!Y|<f)O#aKZSja1(aGX
zsiDxe&wFU<|2R2cq6pYV1jxA*mphlA_kXIjcFQZTq$r`Irpw6{A(mS-{68Z<#)0>w
zHDNAmi89e%lJ}Bk=914#@QUOok}ms9(u(92Nf%Rf(9)-(J0Y^ks(9)+9YbqR(K--A
z?7Fux)b!^T*Mg(TxAODrvc+xbkH7wYr@B+zzBVjD{Wu&?mA`)PU+Dzz==Xp8{Q8%?
z2=4y)t9N}BLMhRY|J-$d+;@LGj{o`N=hxr8GZn0V{H4Ae++V-9tjgDVQN(z(cREn+
zhzuM4@z>6rJ7e8O?7>vxLIL~*1w}q9-#J_KZ*zY9{4!U|JAu+KTWI!=pI;im>mPsB
z1&YGwWB=%DBi>tjvxx21K94_2+CK1IKbHJkV5s*k{`lSRlu}AhquV!h8U2+@)`mb}
zW4~x6Y@#R)N!lcQ_iEI=4%yw*0ao6T$;yk~Z6uV7Nl#<9470TMy5r(~KCa?J_siie
zgHW9o>hTb&*D`yohin+TV84%k?8aG7V-o#?v0P3tHgJr!SgX|JTV)Pxx*jEc+I*Db
zAbK5Iba)8W&C=$}?<PyL)>8nck6wGpwMB^sQj07!ZK~ZU!+pklf#gV)mMInq?SoOa
zDv#~{9;Oq!1Q#uKg7#P%Ydko2)nazp_w1p3kGZ(-ZqZA~`SsWEZj;_^N8AtTlfVD3
zc-%_z=>Q)IW%lB+sD4nr8l-8TPlQo!#cOGoJ-_zz=Ap)v?LjNBK|QK;DD@?SAulq;
zCj^MX0YnfPZjX#bzBhjBtI7+FBp3Cu%>$=GmnN<YlO%p~hGz+5jtu05P4TSF^vc=a
zBBo1l5(O>NiNb)}uqLa;k#7|ML(+IC8<g)O)a|&Mi9XO16s}km4{!kTniF|tj`awR
z;+jI@25VVfh{oS}UX)p=PIYrHB<-g}P#@I7m+gHW$5{;zcRkc12LmSWg&%iPwAbr0
zcgvg{jxn!TKf2fFHTDI~AKdc25~}OfI7T=LZBbCX8sjuAKVX}JP+d1qz3kPP9^C_4
zmS%WXOqYFq%eXm8;*(OkGs{_=@l;b89`O=x(Mu)n-uHbcBI^6`qo+$Sw0^-FE?J39
zY~JwZ&sO-yrBbWHA){q<SD`fC>m6<FK@E*l!R+s<aFra6SO~_LL@Ff#Qkt{ayL}8r
zN#*Z8%`kTAA^jaNu-*m<Vwk=6VLJPg?*{w0ed^x#+k2%0%t)x;NYmO!9k=zY@39{w
z<+Vy@+B`hPBjtYp5s53sP1?pMNxM3kG4*Vv2_)u9++gFwFi0t`<fz*G8{}EXSg;_F
zAG*^^*m;iwZl{X3DT4tGmH-qha>3MYj_FpSml)c<sL3$~{VGN1pZJ6`8Me;=;cIs+
zsFdtHZMzPOgk*fJ{QzuO)5sKPwm^Z}7@O#axvOU|h^~9pTg|zK)hMpCOoQ9#_p8NT
z6s&<Hr>tbShdm8A6Lh_s+A3tX%Bp3n0-;-?>qZHo{TmM-H2tD9ECH3esyNG&2=Q3v
zLHElvSCyxy^)6@}7AU6z@_m1T2GR$S6Yr@CZTi73iSSa;*+>8sFa+^XW5d>2s7P*e
zZKI$s^966E`$3PxG|tkgZ6!A@(CF%$gpika^PRA)+yZ-g10*2l6H7%F@rH#O{C3+^
zYzz326PMr=y`y?H4ys$EGbR>5_fbWc$iX~kp@6N&MPZ$@PchgNi}j%;UrLr1dZUk7
z>v7Zrh3&m9<h`Irr&Mexzyk(|rLNh-yT=M@f}p@W1k?*k3`JbqWDk9F#%3!rSk_lv
zJp6|S*D1MD!2w0u`qDUHXoYFtRWMc9Y7bhdl@K;}$|C}bo`Ear#oyzgI&xktr^nKP
zX>x+)Gb{%Mw6pd(kj-&Mf`ZP2GXh^9_Ih2{NlXuG#Q@q0qozd+4`*P}YKFmxt`oY{
z*9{a<y&kK)Qdv((9Gkw$nP|YKv4vRoc{y2qQ(m!hOMbH?DTp{E8dIfB@&i#uPRTv^
zmm!r1CCvtM($jYarCGIxZYEx@u=hZqNsx)@!R|m&^DS4OiT!EhB<!~h&6~-Nd9=*7
z7YhyCg1JIE2KXUi)mUg)cnGhe;y}&?RM2^J*7HNq8z?r(1MQnGX6YFS<YMPSoZ^;R
z35aP>pDh_SBf(MI$lwuoak18+ZCe}X<z&}L=xj|7<8<!L?5Tjghv3r+a#F%Em{NAG
z`d+Jfka*+mb`%MSxgj+-L?cW$BjBX06uwpnC^Pm-krisiJ<+F`0%D$)spZTSDyx;M
zMn$gAx`G%10K^Z!niH?p0|*Nw$>y#Z`0ByKXiXLAu|5sGQj!i5CSas1C#7%0z$@?<
zp&8?AG?<)tnUsU5aAHOt<W!U-{g6mS&aP>#``R@&W>0PN+=Bv>ln$h4iV=_G861bK
zdDNz!+3CB+b=Kxk8+2EAnAhj-JIa?)1b(n6D4P*<4mlIlK)Lhzloo1_i@STF2`s})
zSX(zu(_`)?4UA*6Hahd#<Vo*)#X`wpz<}kz4@sCV5HnZ+0$@a;AkM^HXCN;vzUJsU
zN-?rd?B5jSF=IOl;x350B^scTY%7U!0Wl5B`0RThrCHEV;QJ_R6g<1;9NyJ#J3Z}X
z-R@RfkJhbz*W>=C*NrHs?CQ6Jx)Z_5v5*BQd{;-|#wO+O!%Y@$6G!-D{=MlxZ1XRT
zw0}_<xYa*nmDz99duIAScNqUi?#~>#eo#s+YUs6|+1Xd4JfXJBym(!v-%!!zKg$yT
zb>A&jNB0X!6{zgz-aj)PfwtfVH*jNRS{kY~27Cs7zgcb#q$O-ekJ0!RS@{4QmnD5T
zrsbRpdtVaa*#!li1$u^<pV071Idip{gE0$j-^n2nUZ)Ci3n5XA*t|y)<Kxj^;|`pV
zv$~+uOeL?T9;Wg3LBlfD>#IBV)0E57FEzjn%)cpF?D2b!xbCkiXP$6Y#tv0HDfDBv
zgmJwf=VuH{dwcRDDLQG2*zHw#ahPXl|MSE`FI#lY1_i=q&mHXtFi#`O=OhO$lpclB
zvrwvIV2+te;O@XEFN$HuT;=Az-E(_(^Y?v<wC6fM^g?Mp4`bUrJPiDF=%R21x@f2l
z?+F_|XFV^S!uz?pXQ~M}z~2yQne?EUMhCtVZKbWLIhUFkmriB>4To2Ua8*T;5nFcT
z(KW9*JW+J4pF&1MItrps-BJsE9|eQAEr%tg?!@#|y`IO?ux5tI<XLl-#JIQl@a?SR
zL~NlA9t^}+!wEV-u1h>yCdMLWc7-=D@#y|rF+rsd3atikbOfGaJX{2EY{>F@zdtX+
zDTD6b!%j$+gosAf2A|dyS_q9545Jv-Fy7-3Q4|EVv%W`DL=*r7xIL427fz`)o*GYt
z%I2D=D3Q5K1ack=kdzAIWR4ST+7(rLz)x!79nGCa*(J}|Y_?+>xO^oM_MT|90zshZ
zTH$>mjPXS=dq!7E+Eh}Krv-p1-hRw&LXqoDfm3;9!uS2@*T)F~t`tir5(KE!Y(tSU
zT){>}@gj&3Di&ltGr+xeRJ3v(rV*Ser(bWq*8`5~;|gIeN$dG*C1)OrZ-sh@Ya+~G
zVM)ND5WQLfnHl4MPIJz&h<J%tRYyu8lFX~Z^(kQ839hFRCb2SgBR2xDPR1?y+THyO
z)q?OS)<6!bX}64eo3+Fp^&#X3=7g*<P?7pv3RXjI0K|alPvG{e;-ut%Q^_JrUZ=U$
z<Y&WF8a7#1B|KbQpT)J6CH=+W9o{j#Wq8Za4Kj3WZLJ7z0ZnisOA81G-f2VwK(FV^
z?@vg?cM3Py>&%lGR~9QOI8n+bjYhIN*jMfJW~@rmqm1mYS-BUW4szQ$XaDXm1#op=
znLTQ;YN1xDEXfv`1bz6=)jb7N!(jxpK@10l6qC#)xk7q2YLWQff{=B!N~U>grBIk;
z-j0b8Eel8sjJ2H)EOkGfbftE+bfs~^XV%krtcCE0kcZFtuqBqVLqFHVnuWj7#S)eJ
z2p<L@!wFGjVDh5x8?%++mY)oL^clZ%Gh6tkxDD+&@X+Qae5%ceH3i8}7C1#j3seAN
zbYtIYV0qC!BlErCo<gP&_p{|{u$(4>*{|(*g?VRbHQP|o;Dw@>S}Ig-M1Cc?msN%v
zE#$SQ%3Y9xepo=ZXc1O~xLOIu3Qp|rdn>yPJ6>$4zLcz)j&`2^M`8d+M%Wedk>vk6
zHzSnl5n=7^JnKQ(0dQGIwCnmn3log8^j@=So*zRu;jp3|^fD}+nis8<vg$EAx0r)m
z%tH@)=y7(#G@51YI-^H3Jh~sDd#IiD%DKVWX<Q~XSTuvAaTsB8I1G9iyFCQvgvHg<
zZ<S7^CBvkZk3oaYL$aHUsa1yH!-PnAno8Jo<vuy6nZrV-k!GD188uNKIaZ>fbS&{^
z!)6r`R4RaS2O=M86G@;PVz_aPpE;Uydd29|&EPFG3ggsKJhfBWtWxmAIXI07WlZZP
z#O{T`Bgte`g~N1PJQhWUq05>bln0nYX<8CBiiti$GL2SGrCQn6GIm21yveA=v2YM^
zHiABME{~KBrPea?ms#3S(WH|bkSe&$2q0sJp`$IEQGN6*au6x1(#Z(Ekc<g{%4VH*
zYtW2ECz8Un46gJ7ADE+Jgn~~$o`6V7l-<x7ICUzMu0D4(s!OIQlZ{EMk&`Ppw{*KX
zW1`P$@#(cXOHmR}ff`Yv+`7z6`+3Qoy38g-W}whRf@zVrMXj$M9$|f;o20ZRIhd2o
zW+oua8UcNH9g019+Vm+T-Mz_b-2vfD?dvw<OuKZFUd@O+&{?6?l5TUg(N#0gVPG|}
zX2{f`W^dsU%yUL%*IQ<Qps3kIgh0(^ez_@Bh$|j(n^7*p=+4uTh<uI&0!jCgIIGG(
zcXIO#&SB<eaMUYMdV_%8FkOrl%?$^Gv}#4vbK01yAZm*-to&wY5WuZ*>&=J<nuajM
zEZ`I<+H6BB8e%;)sank(61<2Rp|>7>G=a0*C^l?HtH=tyuUtO$)8TASJ2!2~FtgK0
znAy-IXs}h6l`_rFG<&%kr3kgvO|mp_K(`nO!IhA82}w*vnbJu^oRqPFWPrO3n^7Z2
z_a5Mtlsae7sOAWBWi_!`m1-W)sd#l-U>=%C(F4pt)C|?hcvTj=?5=~@oE+F`j<niP
zx@jPY$)FRbA3=i3g`F6df7AL{+_TBo;wHo`NHk{Q67d8~;fBScuQn@Hn+58)I$*w}
z_h{)Fylgx<>?I)78uBzI7Mg1;1-Hhsb~Ivm&6X9-T~K?GWOrp6RUm~OqjesB{`~-Q
z3tUoYEkEzqZSL3S`?{S}`-0Es-H+|}d%4*6eSNLhQFq3Tb$|Nvy#h?qaa=R~gxoOn
z8~i)Ye>ZFQuiT_*fjl0yf7Mp^*!THy{`>EIrFnV%=U6CodqO^b{{HLglbv8#Xsw1b
z7=1tDMgQ&tvEdDt4JcZ6U*3l$VZmS!!#NrF($li6NOM5H|2}Wu|B^L4m-+W;ug_o(
zhv)U)?t^;7<8#xb2<74v2gZ2x^ZvirRo*s*;?w{6e)Y@q$9KO!H)g%?y?*(8F4p${
zGCz8+%lYhkevq7ib={l635ac7zt?g7dDT`#yg4QWxM?A0A*7#9>I<$;&tpp;*j~ro
zAE^iF%2GQoKr%&tBrLh%l-n~dAa6CqQs4W}?f$N{38m9$zdnDi+qt%%pL%}z$rw5q
z=xw<9tth;R=VQCv@9*vMp%`L!u6wV?dVVO!*lzXXL)oL#>Gp>9vt!S?7MH4{uWsS+
z%Te2{!dXWmAx0>NAKyRqb1g|A8G2OXyx+ditkrY;u8T6tZq8p{KgVm|FYB^DetDM5
z5DdKrM`qRjrc)<>+@&7xnlM{}VEh;!zFqth<=fmV9-s|%LgR=Ecs|>|0O`&dcoh?W
zq@79tiN=h&pOG0dg4U3$yy+2sIh`IdvU|fgou9tv>4l9-$&=y}yKrEDwfa8s<NNgL
z#AgYd1*r0LTLm6mJjoHhg8?Tkte0(%KenE@ERmjGy&BuA_;`HQZQp+D6qaOY0P@cF
zTMT;Q&_MqoDRmqb{`2>~Ze1?G+Fq}1Ypn!nwl=Ng=6qFP|3+7ON1s>aGNxY1%U(zE
zl~gqhEFLFD&kq)p#0AvaPBG-lQwm$-xZ7!EjCS+*^tUv+b(H#QlsU3Wu7h~kvst94
zYFW~nsicUXVlI2iS(SN_<{0L~A)ZJLj}pp5(W6u1Go{1#C@khz#!}Or4j`F|eEMbu
zbtGPzzH_a&+=JmQwxjsS>P%FS>Vi5t1sdQd!#pNVJrZjar3!bD5{70|2%+&!P-u*A
z5gSsYU=0JM<bNnm9_Xf*TnpUOHyzD!oC1so<yY(EG>=2-^sqb@JwOCm)xGM&(>I^D
zc~7|dIWCxj$5^LvoUjyRBB26^7-N&J*~7&uF!)s&{Ix-l@fnf_2SK4)FO&MMc9#b9
zC_j7L@Nyzx5V!;P_->O}EZJ1%5lY?m6WHr89U5E^bgd71H#TB*g`cIYbKQ$<V`Mrw
z9pdqLNUkj=&$cx-zj8g7;;k;12gYwImVWxC^dD2WJ|%~sC&Xbip`>`HNOt{L$0-Gn
zM`Oz?`Xb!+RM&|(JI35LG<ZKA_s-(>L{baxDG9AdNE7E`MADKHN~3~gN;|L}DaIs}
zUdCVoZde1j(Mcndy%~Iefge?7n7;XA>vQEKgc)fP5Q#d`g$)U551uzG6q#!(L(U?4
z(OXc>y)C$VZKbzE&i?MtQ`$Q<M~oR3p3YPsz^q(F+B67t6>_ffz=rIQ+fCv<_~(0X
z#ed{lzWH&I+vP6@TpD~~RpDEba$d0{OOI7Em8U3lG*n?_daH@9q>z>N_9$XIQ4T(y
zxdiKB<)v(M;QYGWGq}za*WNshb~&#0LvD3Jq=@ctdBRFc#tBsS2q&pQPs=)7YjR)$
ze%?c#Hf=h1kc8>Vm<HU-3vTgviv^+X?!2-x>qnny_<XV?Tk~$tI$)3S(3Co}B5f;-
zk{}?8rL*BE6$vsS{}^lv5iN0`RK{Fzy+X3M)-PzN+gzcrSe={TA<rIEuj0}yx}(G^
z^8~tI@J1(VrMttPeBI#$1JquK__`1p*cy{{rfpx#5*Kl_{<oKVogC-VyrXcm$59II
zF0;Ifc2O3%k=6}g$OL2xHabCN4|g}r$@X7uRlQaN0e?raT7eA}0XVrit*NlxzS9#L
zm$t6hn46H`sI-9Y?*jDMe-Rha{A#^xyAYz&3zB=TS?Kn@VVKw#c!?zNC19bt$2ch+
zvl|t_$pW%K{;}9iqkoBdL;Qzp6JXc+GVj#Hwpmjt2ZXN5OYH}Vctb!3z?ATqnceM<
gB^6NA2P3@`9mEW}b=EC`dVk{c&HVBDTptVV1`_N7g#Z8m

literal 0
HcmV?d00001

diff --git a/phishing-filter-vivaldi.txt.gz b/phishing-filter-vivaldi.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..9c263b25ff85174d02d42ef39a119dd500d56cf4
GIT binary patch
literal 5846
zcmV;{7Aff;iwFP!000021DsmfZsbaGefL-B!uDVcm=ts4(!hlc!v_2?4~9K65A!m}
zm6cW8L?)}m!hF0>R;l}TEvar>-P)KDxkQ|ZIFZyZFMsr*vtM5RYv-4pAKI5c{r4YU
z{;eDJq4P_4`Td{$QFg}v)8GB_@~6qjV9l2oT2P)5l2P%;qWD6KFGBnU<NxtK`PnXC
zUdW4)+sp6Qi~Nh5?b~Vxy~R2HbL{OTTP(N>VOqYtzP4Cjs$7r#YcIQ#oNeZO7wr5x
zeQfFDcWD2?Ydb9eALYOAuBw>if5vszahv00hl^O$|K}IXwOc>t@<H!x*B$1uJ<Hdx
zw#olp2B{=w`P<(JK3FNtE+1_82Q%umw?l{nv|%LEqaUJVobLNkN(7_q;b~b&yM&z$
zUgszOzWDH<iN%VBSGm@APn)j0-$Tu4liouE=M^j?b)6CHW$Ns5$fHwkglZ}ZQDOdj
zb*XfikNEm9pkdY}U#wo|xah~~M>~7xwG4h7@@{OqAs0NO5kDL|C~%}{mXkM6=IeY9
zy|YxE&D}cOjgIROvMb68k@wqic($h~wdC!Hm2EE9vmNqv$q((VSnx-y*2NDvLbeVu
z0POtWC~3@Tnbj_DXKQb_vm2&(RBgLlPSed$XWAT}hhcYs0lM3<&bIT|jR)Bc-ohDK
z-4MzNB|KN_`FtxJ*15YNbT_^2j<;iL@Dnf|W_fYuk{f#~(JS9&lOOi7mqTWx9Aq}h
zt+R-a{N0UnzvL&Ya&PX`)=q|T_S1}95Pa^#?YKQAPd5aKHT5_gA1pad-IfjGDGOsZ
zTWw+gOi9z)loe;=yY+H-V;3#wR?e@7evvCCxWm7k!(vlr2tD?6Ma^jn!*b}2AKVz9
z0xbb1u&Uc0_8S7Q3bfJ>foCy#72+f={6jHO!Norms!5YCZ!0oe9;NOj{Gek96;1Vn
zsStR6V0G~`VuJqYkc*v<NT^sE2~GS+*tY{V8c$P}&F8{+0=c3p>CecOby0sV7rpwi
zSzzswTf=Jn_<s@g<1@+mIGdO_lW-aADGGLJiEW1uj}J;kQVIbg*Hlcbs2M}}ExmqA
zy34vucJb?y8HBe++5Xw2iz%0F&`TnE5N)$X=teV)#-^&3JdT)qH+CjNvcXJqcn~=&
zKjeP?{+Z&UAoabZl5SJh%b~BjuItMqou_S;JJFt(9i{EN^9QMfx9r{e($RqptvfF7
zg7Vx?4u^<ot@Fd-c2-zEJB_I8dJRXPYiDl9m*YCG**HMcW}8gqcWiAOoHzct$&?Kh
z8-|BN*-*2BHP4?5{_q?;YPsZh+goL4U<-T(zm4k_hH*;(Ncr}+kE9GHfG?kK--jc-
zslr2TRmhizot-Tqc?_JQxaT3NTNcUzmDIwsT=gtxxvasifM!*sY#c7RhJKbYRUlt0
zcxt_{UMk-}QF4~v=V6=(h{IjUQ>zE%9a_XUQWru=PR8X618>NzTtZfWZYUfc7C2i)
zAC~#bBcegGX$H}p!-m3MaS*ezie~D(+wKpkrJqKW@AvI|`?%|~X$-q@$(W*CH|YuH
z**frBm{cKN4n#b6sz#3R1{8Nf=^bJ6jWEiY;H9W?Lt3C&G;;MPy5_Q<;#yeh{+viU
zt)IILLzn_!%!W;-77XuUJb;2H#&<I0KSfMI%r(x%NrBJ-t3NypF7^nH_Z&ys<Gamd
zKF;mk^Qjvjr1z1Bu{@keKCibUb;X!?HquGoZ}5Q)yV;^8F{vZR%_9kg{ED-iv0;&<
ze4w8itdwSc3^H{*2(VAas^l1$nhp`GSsi-^Q;^)Dn~TNdndhI$$0U0{FVfR;rK~rP
z*SYUobIfh5kar_9e(E+jI1$9(MCzvakw{ESAh*w@45EY?t@o)SW>o$`2)I!XgO)Pq
zT$z=%))|*fXNr_f#%rS_TEI$jg+!6Dd3oCa2}|B;m!HPj<*|TX+<v^BP_04B;WN8`
zlX+rmV>=%sIY+*={S<N+c`kUPRcgUR`B~nIAM*v}L-u(;&V!sE=0gGR{OcqmV3wPa
z;q=z;9;447(=9#7H=-G({VD3rvL8e2rP1}Qx9hE)Dz%tI%*x*nz!)1?MAx0bC+s4-
z2S-_yhc43h1iY=@fwh<pEGUsVZKrU~F`uG7ux-%I#jfC1Cd@v7FCe&k`@m-|SkC)a
z<&hW-;hs3!VL$dOits1?{U-CozjmI-nQ>7bcdNpAu0&6s;bKTf{4V$P*S^Q(Z7Gsz
z0^)YF8|pxMIE2;uHPwPRsjV8vLne=YdIW?+bC^$eyvxaDvAfZqSCs#(Dw{IlH3)_X
zsZY@4_KTC5kod^r7n8lY4nL!k=3Y<5oeMA)y9<&$PB(IJ<ox3*=w2CJLEOdbM^ac2
zXyMuo+{g_o^6_hj`Emac#*bSOuxFARj|F5mYAc6jf(e&<ySrfxz-jc$!QTv^hWh<D
z4E8Xlx&k)|rk3Mm*tQI=V(LIzS)BS>y`48&`012Lh+vpDyI$8=b8W`6cr8$T?e|g(
z-smAT<cIR-YHd-LWnC3z3Vp5CgHdm74shK($5IHf9{=WpJ^TDh(QidUb|C{uM~8Tb
zY)jfJ%04^#*CuyNk%{O<^ftMg;gt*-{Vx34c}0PQ-$##TD=T@Es?9s_$;LkP2zVT=
z8N0fNbhFd#&hPJY<<2<094?-H#rIb~81TSs2`K)rMlL%wf{}ctak&9_y_jOV@RC=g
zv-oqwc|R)O+1HlEU;Y&}@n4o8!@B&ste4Bb-$iJTf5r5F_2ySp5XuQ54dIkA(uivH
zQ)!uQs-|Oe`MVw}2&iAbZs#9q5m&S({&1bqtzEbMa<gFzR?$jypliI5;VF~aeIMT6
zL*A~p1P!d$4yr>`CV>};asKt{aGgNP!?p8z6r62#y~>IhyYT(l9=$!KcGapw>b7jR
z^Tv9gOvXDO*1iW81`DHDpNYDrsddKQUhb>P&n|{Oq!?)bkEJ;KM#(;r60|ITLaL$7
z52TP>@jw2Q%GSGSux|IZpxz>_>P>?jd_V4cD(*uv*7O`Mh0%PN*9Ar1AbxK}mh4*x
zciC_BJy_)3CLtGO3l7=0F_-TSDN^pIW0`aGHB8{M$_Ob^w=aI~LxC;{5V+|F{F1lk
z)$H4SQN7*_tb140tns5e9+X}yUMG^fKl%RD<LhIY-UGJ#id9WAAokAeA7(trZj*y=
z(5E~tm<RhldgMSfq{fVECYmAz*F#4RnOVr-;V@KAB$>yy{Lp!LE8h4$-{b)~yc>%q
zWdV%$on9YE*I_|qd9-@05{Z+nF$K5XsANYT)Zf)PY)0po`;hNPI;rIFw%Ta~QgEXE
zI$_&$hN97J!Rv>z4}uDU12ms)#t2UlBNV&gU<R2TP`dKd`}_G~j{DaIT_<<`fyG{*
z-c{6YbWS3<L`R`L=7fvX+Oa%j*UM>2lT7L=7Rf_wc{=kr_HnH?uAu{geDa>@L+m=9
z_1;{&m3Tq<Ty)X#rA*9cgnf2TbdmnZ?p2XO(~VS>lv)oZkN5bg;dgW!w)e943Nzl1
z_m}#fUEiE})K(vW`Y}J=M1L>Q_id`5bGP~1fw#%q_wD=`)4e>6!(3z|EVlSnuQ2r_
zPrV*Mbl$)T26PYeb5`BU4ZY(GGp5ef8#Nz0v{4V3M@f&jz21WPFgDAfwW&rv9=%@<
z*(tsR3)v-$#Af0y_#lQ-03!jMCS-#>Wym9+G*QnLo^({b*YmiHE&zRzBF*u&&C>+X
z`-7e0js3n)n&d)_08_cBb;}3V-oLTzN0gLE_v5Vz9EPVkTSIiZe{2DwbbR$0@Ab2z
zAG_-f|MTsQvEyu)v5RlQ5>7oW-Xd$b{cKj3x*_e~`}d)L&+-4fNucxl!Qrw6*}<~e
z!+pqigZD)jovQS2`?trQe?W=oH>pp@#C`@BvJfv%NFpB%UhghM|C4|p79?#s1C+?U
zOQ2aKbn<d<`FNKwBHEUnySvr<$W~}w{Sxwc(eh*ze(gudsQcT+_?HF;508#HWNt^|
zUe*C||6BWU<<yA-kLw%_lE;f%FhLzM^qKKO1$p*h=Lf%!r*S>4`1+V5CgA?y?hP>U
z^Rd?RFwZ+lt7ZJTYuO9+y%MF5H$D&Z$|E`vM3L_@N}mIHl3RX`hdB<f)2iD3hU`pM
z`?$bYsNLgivUVB!Jl-YWJ{~mEnMBSrG4IJoYB3>YY!A)$<ojWFd_?Uu!jcHt?DnGn
zYqxuU?lCf1WGj2J8I5l&pF4JX8}r@lusJj*b_dRI7k+?F3%1$EziRo`oMP$0c3Buh
zw{6!p_VaG{0#elN$sg`8juEtpWA|}Y@idFTDd4ZvTIr~+DzpTeOWQbMwR5%AvXmm9
z=~K0;s(Ddb?yTml;Y~rRhM_&wq^^u<QfiH=8F~+DD}z2oHLfTW6NE4-WKolZ8YRYX
zqf610glnrBX1S21u^e*=)PsZ?PC|@!wpKNFRoPU9m1T*A8>uUkT+LZ$8%8A*IIpqG
zy3&o3wIE7pUL@3*<fUoQ9y{LfqN=gKGO|#@Y$XfO@#ktB#xOOdn4NMi%eqmFSJX<X
zOWBCjYGomXkye*PNnSX(KsUnFr4_0s+$7a%Dh*SmFb!;1m8u~)q>vJgyeJJ%sR0aB
zNkF4?TpQgmSvf_p>5?{*rYu=$TiSSmUKz<9F*Uc&6wWmQ&+3Y$)SS?cm7EJxa7xNr
zIjKzrq}EMgbn0w%!O%Qagv*9<bknj@T2qe2XjzwqOR15P07*!XmE{&#5pca@(BqVH
zOOk5nfQm*`HT+dm)fg=-JObD-Q`+Qe(da@^1|`l7fh7fn<5Vqp?UM0U*RE0(WSUZO
zS8&NC4k!u(Lz=QmuBL26yCVW;Gh8SDtJGH40`aPhNvRn@I0OpdAFDA$ix$AOEF3S0
zOGS4>N+z4iR7HfN;!T4kD5DB%!i{M)&7?GlFjeu2NLf_wf^4QtO<XFvo0`Da6|n`N
zEHQ<sX<=Q39OH^I8KwXOvqjYu4HF!YQl!wJ>_RA|ts!+%t%-jO1d~)1r!|fi&)U>9
zIzyB?r6#LN;B-Ps23ty18p<ic0oj2mn{u}jg#?~V*)#~8qJ}wGg&qxNESQm1LQNNd
zLreq(G9xhxU_l&IHR6`(#>$i$<`qQ&Ou&?)WKD?xXU0+yS5K?42I#69#I@nJunIub
z!f}BBB1JN~HB+QPo@y9YbCx%jN#cx?2m!%VkydN!!U(DinrVY?Xbl~}ZAs-!rBZ6O
zAy(E6H}G5G2q2|dNlBwiM&b2@nxTjmj+jB(;kB+L>HsU?I8CK&%A^`{K9K}M76q#Y
zq<Coyi4brGpi5cO)F?=la4Q_j2Qn&l4L@R@rh)rXYL+#^S!0DnH6^ra6zUTr93X3=
zCsJyhY9(k5<fGzLtQHnZ0)+qp>;y@wN#_Jof+#evYOO4DRV5MNrV<59nZy;bA{C8B
za*jDwB0`Bq;;OO3CYeiIMd2?@tDqw)u3YJm@tOz}Ug|Qb<`4uDha#4v#G`1#1C~}e
zBGW}8a9Z%pZdJEWos%GoUV$*4Mvn|kQe^K9O?iK~r;2ZG?~aRod$_cDTP0=$`&*XL
z7@09xFE#VFwA({ZJj=cD@l9F)f8N_fn>(w#-Co;~tKoRVyun`4%A35~UP&#LkcmO=
zkor|(us#KS<mbd_Q_6z6#2}ncq)Vw9>S!qvgYgwy$r6LEF;=Jc+n;yS|2A$VN{)g+
z^owvOG3VzXq9H0Mhu7C{x0>Bi#F<o0O%>fBXP>W&F*GHa46kSV3Q!F_JJoyzsFvB6
zc%&h!q)B{>*)2ft`V&|8ZcT-w9jR7Sx{_+zIB^YyT{N#S#+QkH-^ABk<~h}Abh(o=
zhOM7x_#X^eYw)?smQQYo=NQk#$zc)3IB-`wxOc>vkUI|@8ft?x$IQxquM1I35gh)#
zj+1-sm_&eg5Ur%ky6Jc(yo5Bo)>4U_i?ZbIP090m4m~dIN?vgm*f<A%c++%3M&`9n
z%jqt&nTs07&B`@3k>#`^b+>`_8}wHtxU>83)KF=-0C$*9VWUj~!%$O{yi|c*M6%^2
z%XR&pkgPeYGTAEdCiC~ZG_BS$liF4ouRI>Y8LKL;yNTzJ6+Cs|`ao=F^rD47Dj7fS
z30K=9VB?U<uxazf_`_g}*Nkxr`>S~`**`NF%d12Fgw6SZI2chjj7riv*b7AGVW^kn
z4jvk5<NXU2>Ja9Z7=6L8D$Jg=r{6N3f6EyEjxoT+*#`^mDY!Z2a3(D+MG6c39@6vn
zapGkZlPN5+FJ5a=@p?*<`$&M9Th|N)o;MQKK7c5J(aHf-cHp^j(Y8W_Z|aOP`{MUH
zKsxIp4v-#A9O@;(77vixXKQ>?J5Mu+e>E?>Js4i{TTQV}IbthM2^eb6ucK)Dif<>#
z4)hK)(eYu%_rrC4+<)e}fjjgw*B#S&2V4p(W|Um8Qz<U(Xqh|gd#goVXhA&xFxJAf
zJAzCz4MIKTJxX9NR%z6r3MwL{qxZU}M#Pb4mKrleuPXT#SA_Ssjw~9~LQ$<ccnm2P
z&tNPWb(lBviSa`<3)Eqc3EHa4*&#@DQ_y=8g8Wb&;-5l&W#uZdONANHA)vY!Nj}La
z#CI&QYLTA4;0J!j1N`6+JkVg>RVn`1c1ZfQvTd(uEOBXW*X!*NM=>jrCHWv-lsZ<V
za0xca0w8ud?6Q1Us-!914r8goWG_vIRVxSMXMD*Vv2q(w5YjMmoG42cb1k4l7S6HS
zhSpIPT0NoXE{8QY-x&{!ef~4X=fiZZ6@^s=I8%>p*4m2FGQ5eMw_+iOPpRBLP&|2_
zZ!53HN>z2EuD#xhBL+jPr=g@^p6zIrs^Elp32Fx}$z;wT)OKZ^+d75233j*JLi=F@
ztaWcNJwa$I635pNoXP40)6xF!Xb%3SE4V9^l!~0d!4C}q)@Mc2Bgyn(*^x_jn11*#
zpk3_9%saEnOTf5j21CMXS&>gD$kot}kq){T3!fzT>CM0{?HNsnkX_{p%(1`Qhz)8b
zP3Etn(Rn%tJJ*Ix^ZLN2VGf{KUxF2wvjdmF1OC9p8lz1Av5!{lwm%EH+fK`s=x`<h
zcfg-DsCb-`G+33YB*FTO14x-O^<)Yx%K)=!yS*!hQntqo6)S&WK&$JB!Pd<&LtCYL
z3}6&`FWGgeHEa}qdqtGwsfI(_9#Bh#c}d!e(<Q#`n{<<%Nv%N8Cs@|`r;-lq==|}L
z#Dze6|B|-g(Hk<Ax*K~~$l9vQIM$J1t5a{yC4f8bXvwX`B3c_jNX!6=Z%a@*ls%qV
zVSSP_VUGt~^2_P;B7DQTqj*U(Fc(OcrZ@TkqdrGtnj~Pt@Q8P{7Z2!Y52|OIXI(tQ
z5)8LC1O$Lq4(>a`0&S2*<S);Tom;(6=1tnPR(g8$A7Lx$CkcfDN;jTF=s=>P1fQJf
z#MV@#xFB?L>XHs$mwRZ+hMChjK6yf*mjo>pbf#u-Q_GUTVfE?_N3UI$aWI-3!R$@o
z^m|Rk==olA>qfWs#&sOwIb5XgEHM3kpqJYwbTQDEntq_!AJ^Ma!SR5I0JyJ+D%idH
zgSeIrF~bMmpA*V5(}dvtu!jU)=1(~}qH_Z~F>)bn&JoOk5T#Nv3NEKs-sX&4ieAC(
gu@(WhU(euxqkQ*X;AiYcwt;p31!amua&tof0OrPQXaE2J

literal 0
HcmV?d00001

diff --git a/phishing-filter.tpl b/phishing-filter.tpl
new file mode 100644
index 000000000..d35c36da7
--- /dev/null
+++ b/phishing-filter.tpl
@@ -0,0 +1,437 @@
+msFilterList
+# Title: Phishing Hosts Blocklist (IE)
+# Updated: 2024-11-25T00:20:55Z
+# Expires: 1 day (update frequency)
+# Homepage: https://gitlab.com/malware-filter/phishing-filter
+# License: https://gitlab.com/malware-filter/phishing-filter#license
+# Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+: Expires=1
+#
+-d 1111365dh.net
+-d 12931-coinbase.com
+-d 215323.com
+-d 260aesthetic.wixsite.com
+-d 3650947.cc
+-d 3659ll.net
+-d 83291-coinbase.com
+-d 94-103-188-123.plesk.page
+-d 9825057365.com
+-d abctrvabc.com
+-d access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com
+-d acclimatizable.fun
+-d account-update05.myvnc.com
+-d accounts.google.auzen.us.kg
+-d activebusiness-unlocker3.com
+-d addwsrbh.green
+-d ahnp.vercel.app
+-d aldg.ldgknhk.lol
+-d allegrolokalnie.pl-891241214.buzz
+-d alutipcentra.pages.dev
+-d ambil-pinjaman-daana-payleter.xforms.web.id
+-d ambulatoriprivati.it
+-d amev.ldgknhk.lol
+-d antail-conv.com
+-d apply-now-to-receive-badge.vercel.app
+-d artsea.pages.dev
+-d atmailupdatewptnskmdinfomailacct.weebly.com
+-d att-101072.weeblysite.com
+-d att-1041page.weeblysite.com
+-d att-105714.weeblysite.com
+-d att-105819.square.site
+-d att-inc-107097.weeblysite.com
+-d att-login380.weeblysite.com
+-d att-login522.weeblysite.com
+-d att-service-102155.weeblysite.com
+-d att-sign-in-105669.weeblysite.com
+-d attcom-100762.weeblysite.com
+-d attcom-106808.weeblysite.com
+-d attmailservicenow.wixstudio.com
+-d attmailservicenow.wixstudio.io
+-d attmailsrvrdesk.weebly.com
+-d attnewmaill.weebly.com
+-d attyhhhhiiii225.weebly.com
+-d atw-tau.vercel.app
+-d authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com
+-d authsyncs.pages.dev
+-d autoreplyattmode.wixsite.com
+-d avoid.hold-managert.com
+-d azbin.ir
+-d b45018.com
+-d bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link
+-d baiii-wong.cutvi.cfd
+-d basvuru-online-yap.vercel.app
+-d beionfidi.pages.dev
+-d bet73nn.com
+-d bet83039.com
+-d bet83054.com
+-d bfrescentremebermainsetreouytnoy.weebly.com
+-d biggggggggggg.weebly.com
+-d bitnode.pages.dev
+-d bitvavobtc.com
+-d blackhere11.serv00.net
+-d blss24att.weebly.com
+-d braucrarasuteu-2470.vercel.app
+-d bt-102124.weeblysite.com
+-d bt1business.weebly.com
+-d btuan-dan2-resmi.top1.my.id
+-d buildingdesignsusapdf.s3.us-east-005.backblazeb2.com
+-d business-page-property-897432967.netlify.app
+-d caipora.xyz
+-d calm-pothos-3b24c9.netlify.app
+-d carrefourarabiank15.pages.dev
+-d caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com
+-d catgirl-appverset-nya.pages.dev
+-d catxtokens.pages.dev
+-d chat.94-103-188-123.plesk.page
+-d check154109.click
+-d checkseven.vercel.app
+-d ciente-a.org
+-d cieplo.app
+-d cj12143.tw1.ru
+-d cj87335.tw1.ru
+-d claimyourethrewards.pages.dev
+-d clickbait.design
+-d cnsa163.com
+-d cock2-iota.vercel.app
+-d cock3.vercel.app
+-d cock7.vercel.app
+-d contact-pro-8291-d01.firebaseapp.com
+-d contact-pro-8291-d01.web.app
+-d creosrl.com
+-d curmmgdv.email
+-d currently541.weebly.com
+-d currently890.weebly.com
+-d currentlyserver.weebly.com
+-d dara3dccj.wixsite.com
+-d db.service4db.com
+-d de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev
+-d debutcan.firebaseapp.com
+-d debutcan.web.app
+-d delivery.attempt.failure.ebbs.co.za
+-d dev.stream.mornar.app
+-d dnwqmh.click
+-d dropsmartchain.pages.dev
+-d dsjoting.group
+-d dulb6c5p5.top
+-d ebay-mallwholesale.com
+-d ebt-lilac.vercel.app
+-d echoredled.netlify.app
+-d elbarco.percentadnp.info
+-d eltritongourmet.com
+-d email.mgb.modento.io
+-d enjomugg.firebaseapp.com
+-d enjomugg.web.app
+-d error3456vhubhornbase.azurewebsites.net
+-d example223.wixsite.com
+-d eyeydhe.wixsite.com
+-d eyttueiu.square.site
+-d facebook-avip.click
+-d fame.pink
+-d fassehoizubra-7696.vercel.app
+-d fastdropchain.pages.dev
+-d fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io
+-d fla-1001.square.site
+-d flo4211.github.io
+-d fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com
+-d fnuttlie.wiki
+-d fokeijonnekou.vercel.app
+-d fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com
+-d free-verified-badge-form0-service.vercel.app
+-d free-verified-meta-badge-service.vercel.app
+-d g06668706.wixsite.com
+-d gccndbqg.vip
+-d geriodememerkezi.online
+-d get-checkmark-for-you.vercel.app
+-d get-free-verified-badge-service-on.vercel.app
+-d gitanag.broke-it.net
+-d gruprocuroipra-6493.vercel.app
+-d h5.b9en.com
+-d h5.metacoint.com
+-d hcghij.top
+-d hecregayatu-1014.vercel.app
+-d hejmtxxt.guru
+-d helenblunt6.wixsite.com
+-d help.accountsupportcentre.com
+-d here-apply-for-page-review.vercel.app
+-d hgbk.ldgknhk.lol
+-d hhideiie.wixsite.com
+-d hitummoinneullei-5882.vercel.app
+-d home-101067.weeblysite.com
+-d home-103465.weeblysite.com
+-d home-104341.weeblysite.com
+-d home-105266.weeblysite.com
+-d home-105929.weeblysite.com
+-d homeattatthome.square.site
+-d hpnefhqs.motorcycles
+-d im25.net
+-d info.supercitrus.ind.br
+-d ins-business-home-center.com
+-d instagaramgalochka.vercel.app
+-d ipv6.43-135-137-110.cprapid.com
+-d irmt0ken.win
+-d iujf7839iofvkbcu748.weebly.com
+-d iwimwmiwi.click
+-d jagej73796.wixsite.com
+-d jfdjy.com
+-d kalyani963.github.io
+-d kexoigrufouddou-5902.vercel.app
+-d kl1k-ds1ni.neupdile.my.id
+-d kliind08.wixsite.com
+-d kreelo098.weebly.com
+-d kremlcup.com
+-d kshitij12375.github.io
+-d kucoinglobal1.com
+-d kxbztydc.black
+-d labanquepostale.jupiter-analytics.com
+-d leddevotoze-3146.vercel.app
+-d linnkdna-kget.wxxzsite.buzz
+-d llahi.info
+-d llahi.vip
+-d loffaummuddote-4145.vercel.app
+-d login-att-10221.square.site
+-d login-form.world
+-d login-online-outlook365.com
+-d login-outlook-midstreamauth.com
+-d login-screen-103134.weeblysite.com
+-d loginaccount70.wixsite.com
+-d loginaccount77.wixsite.com
+-d luk6414.wixsite.com
+-d luxlifemiamiblog.com
+-d m.meta-accessibility.io.vn
+-d madebybmr.fyi
+-d maqpiexyz.click
+-d mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev
+-d mayfair313.wixsite.com
+-d mdbrvlfy.black
+-d mesageriepro33range1.weebly.com
+-d metamsk-wallet-3.gitbook.io
+-d metttaa-audddt-new-02.firebaseapp.com
+-d metttaa-audddt-new-02.web.app
+-d microsoft365-storage.github.io
+-d mikepattyjm.wixsite.com
+-d mobilemidasbuy.n3g.fun
+-d monespacepro-client.3utilities.com
+-d monetization-violation.github.io
+-d moodengsol-net.pages.dev
+-d mwsiekdnfjrdufs.weebly.com
+-d mxmxnmx.mx.zya.me
+-d national-au-b.com
+-d national-au.net
+-d nbaaiqjq.group
+-d nexomyacwv.weebly.com
+-d nft-time11.vercel.app
+-d nichcheck.weeblysite.com
+-d ns1.carrier-ast2-portal-apple.com
+-d omadshf.ru
+-d online-assist.live
+-d online-promo-asb.org
+-d openkimono.pro
+-d opportunity-verified-status.vercel.app
+-d ourtime.reconnect-dating.workers.dev
+-d owouwuowo.click
+-d p365kf.com
+-d p4zv8crnrrha27so.94-103-188-123.plesk.page
+-d page-center-manage.com
+-d pavan-patil-22.github.io
+-d pecinternational.net
+-d peesom.chat
+-d pencairaanndannaa.my.id
+-d petty.wiki
+-d pimnhv.group
+-d policies-business-page-service.com
+-d pottatrebewe-2808.vercel.app
+-d pqo.hrf.mybluehost.me
+-d programming--service--panel-totlyy-free-for-you.vercel.app
+-d promo1.spik.ru
+-d protocolsecure.pages.dev
+-d pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev
+-d pub-1778406e4fec4394901793111c187dd9.r2.dev
+-d pub-19b834342e7d465b9f00b3511325a081.r2.dev
+-d pub-21dd4dc659614ceb93e45a6de4434502.r2.dev
+-d pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev
+-d pub-2fefe932a6974485b987c9ba851b5c40.r2.dev
+-d pub-3a46d9914f494078a6d6237513e7a096.r2.dev
+-d pub-442ed822851244a689b3472ea2c6a950.r2.dev
+-d pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev
+-d pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+-d pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev
+-d pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev
+-d pub-7f5cf36445d042168bfacd712e890dc0.r2.dev
+-d pub-803839714a924882a7bcc2495a26860f.r2.dev
+-d pub-8161de4a277e4ee8b532af34954224e1.r2.dev
+-d pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev
+-d pub-8376b5b2334844d193a525d8b8548fa5.r2.dev
+-d pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev
+-d pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev
+-d pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev
+-d pub-9163a97d70394cb499bdd232be6c2169.r2.dev
+-d pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev
+-d pub-98171471e0944ac3a5820ef719bf0640.r2.dev
+-d pub-a263e0790935412eb10cacc55bbced18.r2.dev
+-d pub-a291041b077742899b63a9982f04a56c.r2.dev
+-d pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev
+-d pub-b50adc5d699a4f08aec37102c2103da7.r2.dev
+-d pub-c0a934c950e441db96b882789f53c9ea.r2.dev
+-d pub-c2c250050109456396c933de259a4fea.r2.dev
+-d pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev
+-d pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev
+-d pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev
+-d pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev
+-d pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev
+-d pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev
+-d pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev
+-d pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev
+-d pub-e42cb528b102447385e3145197916f51.r2.dev
+-d pub-e4aff507450c478cbe3f77ad23d75035.r2.dev
+-d pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev
+-d pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev
+-d pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev
+-d pubgm.club
+-d puffagroibrouwoi-8818.vercel.app
+-d qasimk.com
+-d qfjfvseq.info
+-d quauwograssodda-3503.vercel.app
+-d qysgyp.com
+-d rajdipchatterjee.github.io
+-d rechazaroanularaqui51.weebly.com
+-d remote-fix.pages.dev
+-d renggard.47-243-192-240.cprapid.com
+-d resolvepanel.live
+-d resolving--issue--with-us1.vercel.app
+-d resqat.weebly.com
+-d review-business-case.d2f7p3b7pucnle.amplifyapp.com
+-d rlpqwefi.pink
+-d rouloigeilleuja-9523.vercel.app
+-d rulemec.pages.dev
+-d rutinqqwin.shop
+-d rwftfu.quest
+-d s.team-pw.cc
+-d sairanees.github.io
+-d sanseipecas.com.br
+-d sasklelo.weebly.com
+-d sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com
+-d sasktelcustomerwebly.weebly.com
+-d sasktelnetwebmailservermaintainance.weebly.com
+-d sasktelrectify.weebly.com
+-d sasktelscrutinize.weebly.com
+-d sasktelservicecentterwebly.weebly.com
+-d sasktelsupportsystemwebly.weebly.com
+-d sbcglobal30.wixsite.com
+-d scan-vulnerability-guard-v3.pages.dev
+-d scan-vulnerability-guard.pages.dev
+-d scanner-metamask-v1.pages.dev
+-d scanner-metamask-v2.pages.dev
+-d scanner-metamask-v3.pages.dev
+-d scanner-metamask.pages.dev
+-d sec-sign-in.info
+-d secure2-validitycheck.weebly.com
+-d securecapitec.theprimepoint.online
+-d securerpcfix.com
+-d seeteressecalywoi.github.io
+-d seivviice.weebly.com
+-d server.0e7p.com
+-d server.2rk3.com
+-d server.8q3p.com
+-d server.n6b8.com
+-d server.v9vs.com
+-d sevvviicess.weebly.com
+-d shard.blue
+-d shard.skin
+-d shared-d7590.firebaseapp.com
+-d shared-d7590.web.app
+-d shaw-101329.weeblysite.com
+-d shaw-101587.weeblysite.com
+-d shaw-106427.weeblysite.com
+-d shaw-107375.weeblysite.com
+-d solutionwebsitedapp.firebaseapp.com
+-d solutionwebsitedapp.web.app
+-d solvetans.firebaseapp.com
+-d solvetans.web.app
+-d sondfrom.dexlog.my.id
+-d soyokai.or.jp
+-d srdate.club
+-d ssy.hmb.mybluehostin.me
+-d steam.poweredartsworkshop.com
+-d steam.workshopsreview.com
+-d steamcommmuty.com
+-d steamcommuunity.ru
+-d steamcomunutty.com
+-d steamconmumity.com
+-d stepsray.vercel.app
+-d support-metahelpcenter-id100003498934.netlify.app
+-d sv5gardens655665.weeblysite.com
+-d system-portalnu.duckdns.org
+-d talwgam.njmolada.com
+-d taste.baby
+-d tele.zhngain.top
+-d telegrambot-resolved.pages.dev
+-d telegrazm.net
+-d telstra-100408.weeblysite.com
+-d telstra-100469.weeblysite.com
+-d telstra-103234.weeblysite.com
+-d tiktok-888.vip
+-d tiltckshow.top
+-d tnomwzrp.top
+-d toeken.im
+-d tonic.pink
+-d tooma.cellinsurance.co.zw
+-d tpdtepremu.xyz
+-d trattujeilesso-3354.vercel.app
+-d trbinace.com
+-d treibrukeukonno-1395.vercel.app
+-d tuesmad.firebaseapp.com
+-d tuesmad.web.app
+-d tyyyyyytyyy.weebly.com
+-d tzcsjfto.chat
+-d u.updatetrackgre.top
+-d uc-whatstapp-web.com
+-d udxcady.wixsite.com
+-d uklifejv.cyou
+-d updatemail12.wixsite.com
+-d ups-trackdeliveryapps.chickenkiller.com
+-d usbest.cyou
+-d user-transaction-overview.vercel.app
+-d usps.com-trackdck.top
+-d usps.com-tracklnv.top
+-d usps.com-trackmcl.top
+-d usps.com-trackmec.top
+-d usps.com-tracktpq.top
+-d usps.com-trackvmd.top
+-d uspsinfw.top
+-d uwdtsczi.top
+-d uwm-onedrive.com
+-d vaishnavi1436.github.io
+-d validatie-veiligauthenticatie.com
+-d vbbu.ldgknhk.lol
+-d verified-this-request-badge.vercel.app
+-d vo4zzp.icu
+-d vs41.github.io
+-d walett-cont.gitbook.io
+-d walletauthenticators.vercel.app
+-d walletcomnecitt.gitbook.io
+-d walletconnectdapps.online
+-d watranfart-fdd6a8.ingress-bonde.ewp.live
+-d waxed.wiki
+-d webmaillshavv.weebly.com
+-d weeeqweeattt.weebly.com
+-d weigh.skin
+-d weigh.wiki
+-d wgqdqvtn.baby
+-d wgqdqvtn.pink
+-d whatsapp-rqr.com
+-d wirelessvoicebtpaidmailinfoplay047.weebly.com
+-d wscs1231.cyou
+-d xn--metmasklogin-vcb.gitbook.io
+-d xojautruffeuttu-4659.vercel.app
+-d xraiz.info
+-d xraiz.vip
+-d xsuweamskeidjf.weebly.com
+-d xya46.cc
+-d yahoooooo-108560.weeblysite.com
+-d yavanica123.github.io
+-d yi5lq-syaaa-aaaag-acfsq-cai.icp0.io
+-d you-can-receive-here.vercel.app
+-d zeiitgeist.angelocachero.info
+-d zenixoikitti-5809.vercel.app
+-d zeznjx.shop
+-d zwzcn.com
diff --git a/phishing-filter.tpl.br b/phishing-filter.tpl.br
new file mode 100644
index 0000000000000000000000000000000000000000..c0fa13ae4f6d712b463444c3959693cad77dda8e
GIT binary patch
literal 5261
zcmV;86msj~D3T$fm=Ay=WSIMy>hsnArh1nGEK$JjUKc{>1{fr431ot0`Tw8m)0Nb!
zwz5KztI(vXkmU;3d*6FGeV>zo)Au=_GaoZ_J|{0rI9p7s79mrZlX4aSWjzU*@@z3O
zu4^)!P4q>9QV5YtI#(I3f-`+Ve4wORJ>Jp(I`0G9KjuDu`MsYf8h7+x|NQHg`<Bc4
z^S8B+{=+Uu*mEC0fBbiU^(Vjl-p_xXGZXRGKXUeM5YCCv|H;^|1^czu|NqPH{ruJE
z%nkdmfA~*?`{$46n*2#mN=%e+*8>y?IAO(K|7>HNVwtt(v4bb)lmqq)8j=<#e|5Hr
zrnUa^dq0Y6L03@sdt=q|%kTa0hUmZkp$Zm-@BBaiS@YOtea(4<>-`iyTV22KE8-aR
zFJZt4q<;BzhmZaj{FmSRg~T7uIhTu$+cjV?aiVaNlTdS+2x^9$BEhv3GUZ4M1MFkN
zkpsQ*XOLL_e&nK=Q-+4HZgcxy|MOTW+?hE=IFp21OSq8q+_66?y|KVdD>TzaE_#yL
z;KOKd@F6iL1nix%WCNXpjcJ4EUe~=)t%zWO>B<t$3=QWKakJKC-tz$?e;Kofrdc+F
zb(TRGV^2)e<9?U<Ly1JEs$`!O<`)Z{oj%un@5pcDT|s7H&onk-PKFq--uy;|15?FT
z&gN$a+$o&r`?2=8(mk%vvOVcu_x-i*xVF02C+sC7J$GUq7m5q6sGr|&!Qnab8SWVZ
ziJIv&;yd>$51)5(=JJ383W)#($O-q30~`HZvus+Y7kZlGB>8iPQCohBZi6G!JU&X}
zyLAUC1M*HnE$^O2_dNHTlzNd-NyC8ojl@G-vA1h&qhoUi#{qdCfxzn=r9Y3DOR6~s
zgAfM25dD77Z~7R7GtP|ow(%z^pejC-dHY;XZMZsgTkfc~<8;ry-pnPe*T*ntCP$_D
zp`~T-Z%K=WEBDU$Q4!7r*Sg?+@>)nPFF-Gg`x%FN5YCucM41<`SZ0Cpv_Z|KUh==g
zW5!&It(NOfZ|@d`T|R`O;8kcTdv56WwryL^ISZk`wtA5Plc)GJgo_MSpeP9C;qm^m
zdY+v`92f@1m9IIrewWZWbiy39;kn;kbFC3IB3gM)O<*0dehnkr{Pnre-2N}{N;7WX
zegq!U?J+|+%)al(@)qs9Cv1BC_DzWOlkyY1&L}^amn4cTYkK#O7K-LGbsELDd(Y)r
z<2mG<$yLir!yNBSLyCDh{XN?xrrVX=pnLpy%(bK(bGM5<4kJrxuooOwGU?Lp&<d}x
zh<fN7@j#F5fLuC$c&qasrQU=29-r4A@_atfo~%i;^LWF%`Vr26)yx|<<eV~NiZL7H
z)9<|t1w(N}(Knc(L4!UAP9l_H^Z*6$fr1O|(B=o%^3uAsF*WRQiy#gAk?E)>r^l^Y
z8R8+Z=m>pwIAfw+(%A{LG6-XuVxMBa!xz1%n%NW}#^U5*c?1yajFQ4Frpvv1PIm|P
z6(FCr0sY+Hr0cRD<g8<>ok%ZKa1)8v5Cw(+4Sa_3<eKnV0XpV*{aLLcxV*xfOQEDz
zi#9a!HRY%s%zTMS;W+DmeaHGB0u0DqMFQvf#@2C=a>Got@xje9nF9d7>=ZO09L?rh
zapoxcRWcB#%f^=6TVgX3xOy&4Yd`l|f<J8P6iLU$X`899vPMeXwL?CxFl*r08bV@e
zv!Nk_9`c}Ljp-w$17Dy3xM&^)$#p;z*Hyz)ZXVbeWk4AGpc0F-CPc<*$_*8sjrxvd
zL1D1EiW=75_DQD9b{uPb)4M{Wso)%LZNIhR46kHAA?p~3WGQUlej_xHF@%Q#ZH=B9
zlXew-#&?H8rj!=4*bs;U8HneLBg#e(PI3dv6UK;a{dGe=kiTrAS8eH$RpU_9zAG!!
z&k>-|O3Am<hXz8DHx0<tQJ-mF6us{>RQiRYi8pnUis?~XfmX+6<$4_(UxJs0j^I|p
z2D$K!5&NSK@Q$t!rcRi<UxGfh9)ULlJ>0}WMz0UtP}Tth{UAF)k}(SS{2m*|9iz-w
zz}-U&mELc+9?MB_7Rf*8XnEAK*4YlUV8|5)JyuUmU#bifkJpS}=P}onvP!;njeg(0
zq|(cKn|`a!L=VGvHgsK?2B#jqs}Pb|%E24&xM7yZF(&2-+F0CVGXn2?4oY5v1L<iw
zBb1<b+-m+#-+-9KEfm!g^f8Q1BN&(-Jps`G0OXJ3M)FEK011$34ksg*NIT%MCG#fc
z?^OxTsc%OoP>V-01PfEoBRQ(yGc;=B)Hla?2fEhvofhU)<`{dXk@n1qVb&++M=b@P
z6*t|0(y68I?=#A~mt>@W@)g*1SpWLog5~oPVQ|xHiNlq^2<<s>BI+4(mCnRI4c^)U
zop2uB{H|<S7Hilt!uwi7DAB)G`p$)qi7nTN2Oij-_{|jDkZf%bGXMbxXkck__Z`YP
zc89_5C06qR6z?vu(z{@6BYChY-nvH>TMe_-d^RA9a$3A-)6_deQDW1S5`a$?5i8ij
zy5)zwf76Dc;R-j5xhct2o%_JYF+QI`*J+nR-f+j__gMzzz;4%5&oyVBXKe$ZSqil@
zBwia33t<Kc)kx>;y85RB=zH68#GG**sXXR!)LaVAeaB3+wPKAo;(_klBQ1uOc!5$a
zI<2H-a$3JoEtchpIN?k%28{8aR9q)-XTh|+I*le`q>cA;Z$5<P2~egrG{&Zde2X2q
zG?z$y%T9L!=&&s?9=Bto&j;7ELW5%!?vmRRBSbNu?}aK!xYUG8LpW#7%U*Lk276+m
zS1xH0nvZ0xbh)PY(}!u473xa)%Exu&E2~HU4_NVGq;Wje_ek+EbqG(`Zz$O<Qh`PB
ziJzL+HdCE3)=9Ku9Pn>Ecm5=?^O9-7dB(gWST;TPoJ;geB@OWTY>0bht{1bO4Uav{
zGcByX<&hs;NTXZFr|6M5V*{UL(#L<t9Ru|yAa%kH9?ENC>=LZ)tj9d_z(#`JZ1bKS
z;|n<AwSJLEt_;Un?75U@EI^(s4tjk)-!~St8QFK(vh^h?RKrc!Yf3PWgNWV+62+C?
zV;G^9gepo4VOdBKP|g5|R@q}Zbpl15BgSiuw$UOaubUh>VjFOWCB;a%7DV*%xK#K}
z6;DaSM$%s5fsH<&i;Bufv-l?_Y#bSm99d@jnnRz~lDHsUZknOF(zgIW^m(ek{n2Q;
zbK>q^XU5O{<@X!J0aq=JkqQU&Ji|m%Pq>ay5Xmb;DbTT5{W}l1*Pff?@T9^KeS7ce
z<|lDrj|F6BJX@7AWG;o%&<*40PjZF&v_T{aKns004jg0Pi*J}Q#z6{R<lPB$%|l@;
z0>ec#usCLdTr}yUw&0juNMP~K8|T{nejMF9arJq}BS+|d-n7UyZi=_@gD?bq4YIHy
zN#)%zFOs1Nl!SmQL}xPOo$LOetO>j#OkZoSJ1IB_AMVvNK4VFb7H9Imk9vHLPdPsH
z_|WeS^biELprnt$BwmFzgX!%G#RKHm<AuRPD)_0#4dHsvOD}1VWfP@1m&vY@!v;K@
zghDT!Q%9R;J)-v^h%JUzta6@MKEECi`<8r7Dye4ZJ@-M~5o->863V><y7y&aF~L5b
z`KYDRv(;3X&t|jaal;%>eZZK#@uJSwDNfz{oKi3hvJ?t*NBa}o7*wiPo!6{am7juB
zF8Z0i{}QMAzHMlwwGD*n)p>`%sSTv@GIprK32!Lmgpqe51e3I#7#?T_9Y}UEpNPF4
zG-g1O0!o0~07{8cya*VWkrT(b;qh+He3b1y_H3Ef5=h{M;Z@d3USYz7h8`~@B7!O*
zYry%cbZdzo_oB6)t@go`bjcV$9+W;T;Upoqy?hQCE&F{7rt=`TV%O(!+RywPDax&D
z0Ocy#9N3SU|LZwD;ang>62Ta$cu;^YX$&b@46uNvO+<;SF;=k!Rl=a8Q;u=tB<DPE
zYhrZf6rHzHNhQ!kwP^1WV_s@AcT#9zmLE#+7*!05b_-VlO*JJd4NF9&q|!{7yOKs8
z{e;$AmCWJ{Ls%BIXa~VWZeoTBofNP*qm<R&SreQGtGU-fF>^)|)DoTJDk-O!v9QEN
zX7I%&8end*aaBrSv_e?Tg;KCs=cO_NL4*aI&f#kp208+Ug?lj7PtvL2bhHa<Z@G##
zu2w*le$mk>CC%a;cSdOdltC|1nV4b#;lU-nBo$(C5=`=3SiJ}bqIC=ta6!Oij)_rB
zJX(b*vXq<#C#{hWF-<xoxhSP0Q-UwnCkWASf!47Y${$<Hq?OKa1x_ey1sETKP)>tb
z?81_bDPMR*1;Q9qh}LT<AW7x45<;PkyXB4v=CrY1Dl5E;L1P3Iu*kSz4$y$n*Ir1e
ztWuFX30mlAz17O5F@HJMCgY9O$}L_cra*xepjia>@W4j(I0B=axHhPw(%uMM0tTxY
zH$F!DO;K~jjb}zFQ&kDU1g(++mK5XZhzf9gk>E@;Y{*<6ublHS3Mo7;LGUHYE#YVo
zod<7};Q-8}QRh+mXnA^!xwG7GWjHdY6a)#{3WmvW=M!5Fk=TP+Br@ZelUi|sp0fZU
zXzhK#$n7I{%C;cSj4?`B=X`yHv!Y>L^%5Rq3dU#&pgl;X6!;|yB}@cZqV(8R-{>`i
z7<62m15-T<7^LA$1i_h%V2lwMIC;=Tm7!8RdbfCMg|RMa863jHp+pdxG0ix0N-xq(
z2u{j~Lg(mU<1HPk#W)^qRLIcB#RQ#{)>3eGL|smhp1TFLlgz1v%Ao|FVghe}*WlUP
zp`B$>3m>^!qVSPP6XK#Ba+9L*=1?|r1nX2ZMzO?AxHiZ|a2FOSf^N*XM-i1)sA4o+
z*<e6fEtxPe2mrU(m@aYQz=HscDq8P@T9APhK1F24#x+_8L2!jSag~IFV53xl2jQGB
z*4%>k(+MMLFh}CTIPZ0kT=^xsR+T<XP$GCOtS4gyC?l;#$(80_y*6Kx=JAA-G&4%G
zpo|S3Wike$kkM!+tE(n9J7<^+(#}U!hGaMoEP@R>x#RVWlMzNSCbf53X`_5vk`>@O
zckOBkOO$w}zyOT29F>V2tX2!6FeteUY!Hj}pe!8X62X*UZ8iH==T$SYmJ1vOFX;Jr
ziYK#P>5<+YUt3G#HDO+oN0`0W7=cL5WGZ*xeZ5bk!6Rm@)6*E(9=J(}WW%t*7g~if
zcWCgMS?_5?!(-#>lJZ9?32s={6<Vaq5CLUu-3cNTjFH{2*Zqx>ks|#P50stAHHJ_L
zp&Gf8*=2Fh4f_j5sQ}fo2zH><3Z_vcb4qW{84906uDqJn_VaaN%1Ch(Tb+B&E9QO2
z`2gayXiwlyxg8iPA23HQuh*3eC1s&=)|Ez@l#m8*YNy1iR&ri!8s0_NwG_nO1$*gG
zI_47t?5!xc<f}t}?zq>QgV!x16V`S<6!Dog9H|hyj<7x+dw;i9QfcGZRL?_ndM_w6
zW4rvFgB27U7kVZDQTl!k19E{9FqYmh42^_y0Ii1xdn@^y02Q2J^RVorY!vY%Y%=Gt
z2_L|qB}<rM%O0SRt4fKuf*-O@Xpy{S=gw1Lhc{lfI<VLOn4mw&n+JMW;$cYHTM7eZ
zM421Nwm}nwS@^y@?)|IM78s7+RR9OVK*xq>%LiT^3oGPKzC}C3L9fIHdQn)|I|kVA
ztLC9x2IluW=TSnGhHGPJPUq(m?I~UDONM-|vUvN9w|n>6ch++CJ)TFg8tIPB;sR94
zn?55(5{-5Yda;MGA})I0;6k~VF41Nd;t6VNp6H?kHyEdr<&_MUtVOBDV{sje?iAEk
z1DJ<z8Oze+(*X8ZYKa6-oksl3D$2HdpS|Ao37OVLAE9|uZ7D0=?t8!KcK9uGGM880
zXT};z6;&~E#sHXrc~mJ424X&SU43B-;5*dgIOe!LY9>NLchk&=PX(GZ{4HhmBR_2I
z><#YepUygX9D?qJ0vu|N>~Wt=DrcQk`dHE5dRZ(VOJB5JG#+Fcqqxxl%A|3IXDl86
zIpKi)TH&DOanv0mL`8x%r%YpXnSeXe?^ae7Ce<~8J3taWz7DeR%4RPbD)l|E7MNVM
z(Uh4>SHv+}AZKQp#jaTj1o;3XKSzBMYb_vdjJ%J~#|>BMi%UJOZ#&)8ih7UQoJe0S
zIjq}Rqt*lHInpa+XVl=|cHL{7ap0LcCSwNA>)#mjftd=u)k>t)DmXEk$FMDBj$*^?
z+kE1D)>10r(&=brPV5K7qltN2zqE1x0soZERI|o6^hX*M>q<<jB}P7X&8i;8WW)@F
zd~NCj&XXihAH2@^2@vl!Pn}PIJ?rtN;jTvnNf{RQ(p*GnK0C>iu_Q8Zo}FIU0)GOL
ztL(c{OP!rGZb?~mY|+)y$+DsrLML)kH>$HInyg1w>F}(Y-SY|T<^4pCu)|8`XrI71
zUyphpu|1bG4lB$njvl_*E$bk)U_6U_)(GLeA@{AoJ98zMWf0e10V8Xnd-I-G0wcUw
z(s1>DDqa;t7cWDhh7i}++y}>Y^1G_<_oO-WfZMw(q5)p4ggOR)cS%F-K(rCoVwJ27
zIwrwBhft4#A&*2Ts0_=?qFrcEFBk~>P0$8OF)m=~HTzOKIi<-6QoK&tf8>G>M#z>*
zn_J!c25)rUd?DiNLKW_khj)8kw>6!(D9IMDulRb8GFvK+Y!<<z37*pJHM-f!Lr|br
z{W#$U6b=L|ujdXoQ>GZjJ#;Q4KOn@XkktYNHlkT`dk5c;NBq<W%+Y2_ILDX-fRgpZ
z$frU6%5}tr&YZ@l&kJ=+Tf-b5sYpYg8`QGhz*FhKA7v8GtX_D_{D$R44glrbe`efS
z?=RAC{>$911VZXB{jQUU%Zw2Y%mdkn`HMM^6*V59C&SB$7zrD;TEU<%mi(#tna3a%
Tlx8lGzHfPaHd)=@>l=6%73T@j

literal 0
HcmV?d00001

diff --git a/phishing-filter.tpl.gz b/phishing-filter.tpl.gz
new file mode 100644
index 0000000000000000000000000000000000000000..2495b66c6c1233285a7474f047f5e240463dd9ae
GIT binary patch
literal 5405
zcmV+&72@h2iwFP!000021D#q+uj4p&-p{WnU^WvVQtSO_Ae$f)On_Mg$YhfppE7NU
zltoIm{Oj{kl69|TS9OrvT~${+ht%PDeuq?N|6R3C41ZVF{prs?{-Inee*f{GCuL7c
zH$VPntg}D<wKeS0g5$?u{^PIz1h)U~IdOvj{v(N!EQsSE$^Q{WzbDb}dHz43|MlLh
zLD=7a#6LKhfBa=!_<zVjTt}hV?AQ34=|oQ&yzS&%Z-4*ow+1gKG-Rgxtt0J?3?h(=
zaKH7NJliv7|6MVm?f+-;pWAgR7WpqT4$O;bdZ8CKKmVV9V6D@*t)(10iMG8Arg@Ox
zo{9<ojW|LHR{8z8*?)=u^yfbX{6~zRw8;4>)WR(TNu9<4GfMjjepNr3#Ce*e`%@7S
zVckhM#loAqTjh36EEd&S88Ws#)ouG+yGoP#eeD`HiP9jhsvyQY`c~LW=ykmit0a%|
z66-wK31x1W@b^BzpcNZh!N$Qax~)EmK}p4kQ$~laX<8lTS&(@1XLwTt5&MDkiho<D
zRUP;rgtj7-quxf%s9mr+MU;o#Jn8T6_EZ}-25%4{86QH2qYW?3N_J`zbhJuC#9-9k
zHN~(il5l>r13iV!AjJB*lkUCfOtc~C`(>!*O^81ieY#*H?K;+qW-zU}kX9=Jr3F<T
zCs~}tSxCpnV`Unh>ft_aAd5n6$i=i!I;z^BSNcpkq61EdCP7c;R>0-LyEH>*!<(R?
z;v4(e5@!b04{CyjLgm(RF}+Eq9l_en=xN_&-?ww1%`I>y7z7j0Nk9p2#BryCv*IYK
z>#*Lc{af#}y>wh@Y5XX(?;xh2?YzIsIoKA~O*X=J-&~1V>|gLxa$Z7(KP6Ui9op-N
zfDJwMNl}`4mx}80CsW~oN~cxyD{`LvOlT{H33&joKp^HnV^WQVAYRI%s6R8|H_)T9
zNPa~xs;K%*_gdeCfjyVlcOzHk|H7iocaC8ixDWI<^J#JO4DCB*KH*2<CrR=*Dx8aq
zM}HcTqqO@<1AB6?qwR%NqYXG*o}oJYQF6dicGk=uymLfU2)MW3mf_-<4asD%#>uoi
zK%imf;C9l3Djll9|4y?!imNAu5;;?$i0;a^ZM$MhhJGH&DQ_P3lqAhvstcjH66sy2
zLMA%ZjhyT~PqI+;62ke=ZI!;Pt3hMI&7cgh(M>93lCR@-8iz438k{1S$uaLh1f!+m
z>UGOhxH8px7go3`jnew{InVZIlu^6nAkhgb2G|zm3{Pg9oi_8qkW@8aKW{WlfR10q
zQEq~ksoQfhMP9g^#3150^o|%s&-z1KYm*G7Ixakrkqu-Zc64Hd3zX4O7jB8Y<Wpv#
zE`DbC<GOBKva3#z_H3s@XZjcgWJ{}bR4sB@gE&Cw!X-)1WoT2>k3bOXf(Ye?Vl&v$
zL(pVj_E}H7B7%MZ9vIw=0#Ifsutn*&+bTIfg=a+d1|{G=Ki0>#3wq;D#s(=(GFHD&
z7zQB$H=q&<KfJ{GtI`=_NO2&I9_idbRdbvsS(;}>UWPnw;5B(oMs-WZkaWFY8%sas
zM=&;OXafvkDx4wEGdaG%-JQ7r`5eYi#D%{E48T7O@@8=amjrma?1NTJsLii-WeT1t
z0uq{`*`E8>?9{Wbr)lVJaX5_YNL8k3{(Yn+s+*xJ;ZB19lH*5_y$}dO7p`_*#<V4I
zvBLlcRFDM9IC2yZg!IE$`8I~C%bfRxpz;`tM{y{D^L(=VuK7=VK3P21L0H<M-Py;X
z>l!|V!e``dWPrxn845l)`%bFr=w~D!jsO_1R1PmoIb-Kz^5it!3Q5N4J}8n@N?8O&
z#aNJ$lm#>{>L9B)C4jCa$tVIRNC$hJVHy!%D;eI*AVZ(17c)%jLUeSD=udjuY2S3i
zMXS80hsYnI>s=^4E&&b@lv+#-A7o{lLW}f9y09~YCc{2o->%*1%O^SF)^>nA@M#o+
z7oXwwY@7$~z<A?2du(aJ@;>)D#1BB^88xMCZ>TQ9l6F^{K(cB*I663qU?<cn-lEnW
z;$5_q4A?>M`QafP7}R5|mF5QJP(9${o!G0_;t^rj(9oAX?Vjab=(FiYr0x$|-D%&n
zDu%%fX_glgdKk#JmS^&SV!`FT!9KIMxcgKh5`_H0QN%1}WTW?C=SHE%BVdz+32MwG
zAd~993?cz%!+xupl2|KFMm<IphoCI#;-F11IB&ua){|!|Nstr#1pY4`TxE;jk%vRY
z`e;)X#yl2_-^6Q81|$-0eci^asYfv@4&J&BXSSXP7$gq4!UTc_LlA9yY|%dTAob{A
zZ?B(=S_Y6=)!Aq*F6M}tWS^(hPCZX&t7VzeOWcs?)>ZWSn3G8Lw?p`%zKdXOwgg{c
zec&62=!sg7FL>dHOOb8TXZ9v4ilQo`;%ME5G0o|<31P(L8B4+yJN!3X#6yKEuvtki
zSV{oG?c#+C=C^%&o=;nOLT_^{9bVf&bRiv}%>a32bJJ!RkzQdJgKmigMOGg(_z6|L
z7CVB%qt}ARrh9muSaVY6XRJf?K{Ny)bM(zkc3e-KJ9odkuo>5ygu*N|ZQ&wsTJtqK
ze0Hs44_x3@aQ4M8h+ys5yrLF}F^EZt+wrXpy&RiAz;iB?dW*!9a%0zFgIbK}Tvd=)
zRdQU<bYf}UicdY%Moob*eooEOy()d6=1Ecff?6l_PpC-v_}~9_4AoPwg*;s?k|1J`
z%?z2?kE;$H%H|I~k)q%5xmCGgw8*R+PP3A1u!Ffp4sQz-$nE8zJJO&$c8w40)8&W{
zR6iAA1}K!~_)`XP932}MHFPclkb+4T=%L25EUUCuMot&X#xko80j+MTyLI^cD>a_s
z1?Ms?>o<QoOMc#GUI-c?t!f~fm*jO3ccTy&fRvn@G05xaX#GnYUjlApt)Mq#IfZ(*
z1LaGrpful;zP|i|cx_EoA9sN9u4Ut1crF$Wr~u~DGCxQ*`mk$SLrEL&?05QbGiTw_
zN%)bLP@=D+=nV`4$<AXBF@^vMpq-s!d#XioMG=5AJVcPj*|BIKA?XX(B)A~mgtz<s
zv25pgVAHnbr1r|YK5f~pHBu79kXIl8YZhnuaczHu5Uj@(N%B@zR<cjb9t^eoYiw%(
z&FESb#cwBV8+jcMI>lF9<6GfZ7R&tcl@HH2{nQ~XTwBsXYjv>V3$=Wsj+Y|yCo;$3
zI}nWM6zLSj3eWLw$)&-1Ca9<a;DZ;La9W(dBS3aD?S@d!Y8|-tN}w_N^7W3OS019k
zV5e4%Y=mlha_g8zak!!z(m*J~YsK%#3^X`k`$suDPKT)l)Y^Ti16cF5N}x)l=|FTN
zj!@cfp|h9Z=8ySYutbvwESuAUjEsa$!WlT4Cvgi9Pago+XU1>nt5a++)<_4d2No&J
zAB?>ONT)8M_h&EX?rm!Z>V*Y3v2>h6oi@)i)6O8Hc?jbB3@8>!Elfw}jiJ6^iRbc%
zt^Q;tn3QSPGn&`e8;>p<Yg$O}4obgSB@j*WJn&H-d++Yv-F0^l@&5zeWw!)@US2`a
zdXB-~QG6SG=4_x)qORxb7yi~rVcksFZ92S1OBXobX2geh)QX)J(D5N4v_-N(ldXIX
zu`UUG9VSah{DtEUyw#rM)@N=}3RtSF3w<l{Z4`R$3~2P($NDRRi-Lv$>Ibuq_;-vN
z@$dz4kj)$_(yQPA`hG*9Z|zaA(JlgW`ep=q<AQ$usef}b<88#>U$N7}k1q1Lfj)ao
z6&v(0oJdky^XtZaK^klQ+s?}Nb;v|CkO&+oNRn3v=>=1M%F~EX3-&@-(}n)LV13j;
z-vdGPav#CutGM(Cl6i;5z3TL7`m%d(us1ku@OtR-#HvpTjfV(`KQt{t;!jUsRoY)o
zctQu-%|K;nD`3IZAz_>b<-PM4K0DOJE3{|>XV5XvD=7VpSr@Y-)A#DKc?m|GVW!<0
zgO_;eM+$(D2tj1R$`V+KWkl367fi}ZFj9~_9FiCIvaGVG5SbJ#OY5wT;u1Y}9J9D8
zIj@iGHLX&Butby`K#kTiifEe0ahl{Ls^SBC5_6t$R^)XNXK2alRAf0RxX7?Zj!bo6
zhomuQQdG3cBwDgE5~L{bqMERhzpXBX6m^;qFlJc=X{wUdlvH_4bCyL1_LO7=uj@FI
zS)D~?1vv_j7vfZuBm(exWzVolUL^@uOR|g<RZY{ZOaw_-LF)XtdJ&PF6Tym@k}Q%?
zC988@6(XlqobfmIDj__jMb2yJqAX|~V-x5oMauGmXGeAzFQEjcEM&$wt5Z@+8bi1u
zsY!CwOvywc{9#GSNhV`nWkT{u$~wnbRi;OFnKPLdS(ft%jcHL)G|;?+CslRC*-`c?
zN&zp+I3snE0p^pEGL~dmJSnOol1KKqh+%Ogh*D$%w#{KOnSwt{l1#*J?7)suotG8#
zT_v>UEEmu$%$)K<yshq)m(wH#bC&TKn#mI=o>qBQ$v1zmDp}GJw7Q^~j53lDY#@&~
z6vK=1ZFMTV_sKYi>^#dU9H3x=RXO5>a(-mzd7Oa|!5^`D3a@23{Eb91i(+|<raCTC
zQkT4pyt~k>uCZj2CKT_08Q$4hN(hIC(=sb#LZVVG9+y&H#qt<Ubrr)#Wh^4N7{S!M
zN+Kak#ITHtxA1`RQW2GPRHu0c)6+O&09koXDHA-d-q>q@(T1&-WtLPB-S4HY60g*}
zU`KXRmN}%)DM_IlLJOW`3EUG=m{M^x6U`$6yYr&1;lNRaZKfqqFVqsHoRkN47QuWz
z;38y}m{S-RepyzCmz33l9NDo>9!0PrRFfBJT_B)RE|T28?VUZX;RR)lIO3Uz1cjrp
zTxK~OIgZ|<iKR5I5%+b9)uqU4k&;+)N#K%sN~3r7x{7$7P>yzj;~#)*38xcrDS1hc
z>=lm%sp^bF?~#mQdX^SRT(crgV66i?PvEr~d>7%IRjee)lW7FSvxJbkcw<LSj7bcl
zK;o`o`m7KUflEpb=QwJHS4hlBoQYf_ts)aaI@kg8>l*4mvWv9NrQjkbs2*`r))aXf
zO%$A=_8L91X9=TuQo$3Efy=bY1(<UrN(7F~<2QC9WscCxBbJpFqau}MNf1!H%%k+U
zRT=rr9MufT%;zG4$cPydK?O<bw^)^B0)1l{3f{cTs4OHhN9_%p6|8t;mvBk~p<|Ju
zbfG9glOidxg_K1H2X264+L5kLXafOG6a_%J8HJ1$AHl{IZA*7~LX)dJ%gKuC-d3V5
z#7v+LYYpclNU{6l3bSqIy^9#gnJa(J>43A&;?N)fC7#HG42I~jB?GyRDnIr!Xvcli
zD%JfJkqm(L4H<Ztl|kZ<G3o^Wz8zr<fO7357F4t&-*s@oP0Cs{X~7L*1*1LUa4=qp
zdy~kYXnlb?f1wrfM3#L@%YJ0qf6MW9aW%C4^(Lg+Pl;iK)~H4(^l9Un1a+Pqbvcaa
zkpw$z9L<ovUT;c=_Ozby4L9lJ7+yzV7sP5qhh97AZ`+qN*27n{p!QY$mS`&!P%v5g
zs_kIO5_@SyYYw~i!%noU8T#{b3E!|z>d63fHs^C|r(w`i53chK_2;Q0y2MTlw}tkR
z1ppk>=T`vhg|EXOqM7(S11{wJZNx{SWs9=Z<0q3h(Cixr_e;69(@r~EC%TV(l&uFr
z>Dv*7WoSUA5qt9&qW(-FXht}0Fr}}C{Tbssm-cOr@ADyDFvWkwko*xt`fG**Rj}vh
zB70s~TZSZ<NUJym|K7XqdRTZE@uy!bbSE_U=oI_q<ofHledQW@<^z78=|3$(s9|<H
zBXb?xSg2`I>fJ-u3&Tj1{b48>F6m*Yx~4}ijZ%LYn(E1Z4NdE7->&ZM$y?2LYhO?H
zvL2!OCp6Ef8+G*Q*yV-(?X(5sH-EyNemrS@QuC_(Ikf;P`Z=}q=bIm>#(xNA^md`f
zy{MnW{=oKKdY^+G(#=oiZp4=vnoG2(@VdLtD0|Co&1^12g=PrPE9c;^we~7!?Hryu
z`mJ4tpRNtF^;t3O%?-}P{r6)2P{QZXU6O_2Icm47i|<7I-gTp!-v-C!bY$zKpQEF{
zJUjC0ZtT>{DBeWoL+al$&Ju(E-eo)7P&|(C16WZ3mLBh7?UehHD6}o|y!d$Av8J%?
z%t((RAK8UN_1oDG25${?pwFFY2`A5Kj#z)zOz6Bk36!|UNjLuba=T~pWBxdT8W(Iu
z_mH_Zjz{-AXYq;E4a-Gl_VJ^!?+hQmO8a6+laHszPF<Y20O?fE!*His$Gm-SyX4w*
zx5v=$&qnw=54A2}v|@YBcE)tjiD;3o>^LlC$=}}J7Glp~OW>99`Lzs0b8bAN#3M<V
zAVvFgFtZz|KfnHxcMyPQ<3)@YqqPZQ;M(I9RQZnZPm%N_eTySEFF*dDLzZ$6X3x@@
z{hVtI*BfF;%`VMyHM}e_vfu_5>#$_tm);f_`JE9yAM4$C@rUc@DP*%*qG4Ut7xg%K
zWA1IRyzlvi1m1xRds6J;4<P}K_6x1iQox(9RgseYRBio-vPK8~Q=$)7jic?Cl)b$M
zW$C%C7ecG2&xDS(KOy)k_KD#7>u18$@$Uo_&)o;d8+VpH)Yo$t7%lh!r92fd5oJ%B
zOe)UO;<W@Wb(c8hZ=iu3n&-!h{?o;;`IL^wOV|B0*PWCNmXFr0`}lqBWU|Mj4;5Rq
zKiTZ?k-?3$!a4u#t~*>gtTz$gL^8wi*mz}uoLVsDJ}<BxDD%Zbz5v6GcqfoZ=YizB
zAQeDK<H15eQ9?v0ZvBq?Z{&`o^gOQJkY<YlI2}*s@gxA({q?PTBdO-J*YovhU$VLK
z>*VyFDffYA23aD>2hwoeJ^O}8_8DRU)714uaW9w$SA9$7C@YU5SZ3oSjrU-<>%dnE
z57yROwTaP#67S{=6Ab791&Y!b_`|1z748F3j~&ykPg~Z!+wms+y^>J;EDz$`XY{FC
zt1*+4S$>d{tGxL1&GPJz<lzVY82`nEW|g<sz|PNaUz&h0X|Km`U$E!EL*?h!;Qp(F
z!%iMTDTmey`NH3kwT2Nu(!uPTdkC%W23B*<e^3zBZwoy1`Mx(;kK2Q--(37JY?5@@
HMlt{ZV>5#b

literal 0
HcmV?d00001

diff --git a/phishing-filter.txt b/phishing-filter.txt
new file mode 100644
index 000000000..ceed72497
--- /dev/null
+++ b/phishing-filter.txt
@@ -0,0 +1,462 @@
+! Title: Phishing URL Blocklist
+! Updated: 2024-11-25T00:20:55Z
+! Expires: 1 day (update frequency)
+! Homepage: https://gitlab.com/malware-filter/phishing-filter
+! License: https://gitlab.com/malware-filter/phishing-filter#license
+! Sources: openphish.com, github.com/mitchellkrogza/Phishing.Database
+1111365dh.net
+12931-coinbase.com
+215323.com
+260aesthetic.wixsite.com
+3650947.cc
+3659ll.net
+83291-coinbase.com
+94-103-188-123.plesk.page
+9825057365.com
+abctrvabc.com
+access.secure.coinbase.verification.logln.54-211-248-107.cprapid.com
+acclimatizable.fun
+account-update05.myvnc.com
+accounts.google.auzen.us.kg
+activebusiness-unlocker3.com
+addwsrbh.green
+ahnp.vercel.app
+aldg.ldgknhk.lol
+allegrolokalnie.pl-891241214.buzz
+alutipcentra.pages.dev
+ambil-pinjaman-daana-payleter.xforms.web.id
+ambulatoriprivati.it
+amev.ldgknhk.lol
+antail-conv.com
+apply-now-to-receive-badge.vercel.app
+artsea.pages.dev
+atmailupdatewptnskmdinfomailacct.weebly.com
+att-101072.weeblysite.com
+att-1041page.weeblysite.com
+att-105714.weeblysite.com
+att-105819.square.site
+att-inc-107097.weeblysite.com
+att-login380.weeblysite.com
+att-login522.weeblysite.com
+att-service-102155.weeblysite.com
+att-sign-in-105669.weeblysite.com
+attcom-100762.weeblysite.com
+attcom-106808.weeblysite.com
+attmailservicenow.wixstudio.com
+attmailservicenow.wixstudio.io
+attmailsrvrdesk.weebly.com
+attnewmaill.weebly.com
+attyhhhhiiii225.weebly.com
+atw-tau.vercel.app
+authentification.coinbase.suspesius-detected.54-211-248-107.cprapid.com
+authsyncs.pages.dev
+autoreplyattmode.wixsite.com
+avoid.hold-managert.com
+azbin.ir
+b45018.com
+bafybeianm7lllm6v2rpyuah5gzsh22gxfikab5ie3xei6f2n3ngfvsx524.ipfs.dweb.link
+baiii-wong.cutvi.cfd
+basvuru-online-yap.vercel.app
+beionfidi.pages.dev
+bet73nn.com
+bet83039.com
+bet83054.com
+bfrescentremebermainsetreouytnoy.weebly.com
+biggggggggggg.weebly.com
+bitnode.pages.dev
+bitvavobtc.com
+blackhere11.serv00.net
+blss24att.weebly.com
+braucrarasuteu-2470.vercel.app
+bt-102124.weeblysite.com
+bt1business.weebly.com
+btuan-dan2-resmi.top1.my.id
+buildingdesignsusapdf.s3.us-east-005.backblazeb2.com
+business-page-property-897432967.netlify.app
+caipora.xyz
+calm-pothos-3b24c9.netlify.app
+carrefourarabiank15.pages.dev
+caseidhelprecovery1324354657.d1gfid59auiw2u.amplifyapp.com
+catgirl-appverset-nya.pages.dev
+catxtokens.pages.dev
+chat.94-103-188-123.plesk.page
+check154109.click
+checkseven.vercel.app
+ciente-a.org
+cieplo.app
+cj12143.tw1.ru
+cj87335.tw1.ru
+claimyourethrewards.pages.dev
+clickbait.design
+cnsa163.com
+cock2-iota.vercel.app
+cock3.vercel.app
+cock7.vercel.app
+contact-pro-8291-d01.firebaseapp.com
+contact-pro-8291-d01.web.app
+creosrl.com
+curmmgdv.email
+currently541.weebly.com
+currently890.weebly.com
+currentlyserver.weebly.com
+dara3dccj.wixsite.com
+db.service4db.com
+de23fff6-68cc-4a3c-b169-48dba9317a4b-00-3rsqyaime1q8f.worf.replit.dev
+debutcan.firebaseapp.com
+debutcan.web.app
+delivery.attempt.failure.ebbs.co.za
+dev.stream.mornar.app
+dnwqmh.click
+dropsmartchain.pages.dev
+dsjoting.group
+dulb6c5p5.top
+ebay-mallwholesale.com
+ebt-lilac.vercel.app
+echoredled.netlify.app
+elbarco.percentadnp.info
+eltritongourmet.com
+email.mgb.modento.io
+enjomugg.firebaseapp.com
+enjomugg.web.app
+error3456vhubhornbase.azurewebsites.net
+example223.wixsite.com
+eyeydhe.wixsite.com
+eyttueiu.square.site
+facebook-avip.click
+fame.pink
+fassehoizubra-7696.vercel.app
+fastdropchain.pages.dev
+fjsfa-5aaaa-aaaad-qflaa-cai.icp0.io
+fla-1001.square.site
+flo4211.github.io
+fnbficaupdateaccounttosecure.tor1.digitaloceanspaces.com
+fnuttlie.wiki
+fokeijonnekou.vercel.app
+fp53bsvpd3ysnf73bk1ga0wm8bqzy20ipw.weebly.com
+free-verified-badge-form0-service.vercel.app
+free-verified-meta-badge-service.vercel.app
+g06668706.wixsite.com
+gccndbqg.vip
+geriodememerkezi.online
+get-checkmark-for-you.vercel.app
+get-free-verified-badge-service-on.vercel.app
+gitanag.broke-it.net
+gruprocuroipra-6493.vercel.app
+h5.b9en.com
+h5.metacoint.com
+hcghij.top
+hecregayatu-1014.vercel.app
+hejmtxxt.guru
+helenblunt6.wixsite.com
+help.accountsupportcentre.com
+here-apply-for-page-review.vercel.app
+hgbk.ldgknhk.lol
+hhideiie.wixsite.com
+hitummoinneullei-5882.vercel.app
+home-101067.weeblysite.com
+home-103465.weeblysite.com
+home-104341.weeblysite.com
+home-105266.weeblysite.com
+home-105929.weeblysite.com
+homeattatthome.square.site
+hpnefhqs.motorcycles
+im25.net
+info.supercitrus.ind.br
+ins-business-home-center.com
+instagaramgalochka.vercel.app
+ipv6.43-135-137-110.cprapid.com
+irmt0ken.win
+iujf7839iofvkbcu748.weebly.com
+iwimwmiwi.click
+jagej73796.wixsite.com
+jfdjy.com
+kalyani963.github.io
+kexoigrufouddou-5902.vercel.app
+kl1k-ds1ni.neupdile.my.id
+kliind08.wixsite.com
+kreelo098.weebly.com
+kremlcup.com
+kshitij12375.github.io
+kucoinglobal1.com
+kxbztydc.black
+labanquepostale.jupiter-analytics.com
+leddevotoze-3146.vercel.app
+linnkdna-kget.wxxzsite.buzz
+llahi.info
+llahi.vip
+loffaummuddote-4145.vercel.app
+login-att-10221.square.site
+login-form.world
+login-online-outlook365.com
+login-outlook-midstreamauth.com
+login-screen-103134.weeblysite.com
+loginaccount70.wixsite.com
+loginaccount77.wixsite.com
+luk6414.wixsite.com
+luxlifemiamiblog.com
+m.meta-accessibility.io.vn
+madebybmr.fyi
+maqpiexyz.click
+mawonr0-oamasiucue-opawmcnee-qiannaser.pages.dev
+mayfair313.wixsite.com
+mdbrvlfy.black
+mesageriepro33range1.weebly.com
+metamsk-wallet-3.gitbook.io
+metttaa-audddt-new-02.firebaseapp.com
+metttaa-audddt-new-02.web.app
+microsoft365-storage.github.io
+mikepattyjm.wixsite.com
+mobilemidasbuy.n3g.fun
+monespacepro-client.3utilities.com
+monetization-violation.github.io
+moodengsol-net.pages.dev
+mwsiekdnfjrdufs.weebly.com
+mxmxnmx.mx.zya.me
+national-au-b.com
+national-au.net
+nbaaiqjq.group
+nexomyacwv.weebly.com
+nft-time11.vercel.app
+nichcheck.weeblysite.com
+ns1.carrier-ast2-portal-apple.com
+omadshf.ru
+online-assist.live
+online-promo-asb.org
+openkimono.pro
+opportunity-verified-status.vercel.app
+ourtime.reconnect-dating.workers.dev
+owouwuowo.click
+p365kf.com
+p4zv8crnrrha27so.94-103-188-123.plesk.page
+page-center-manage.com
+pavan-patil-22.github.io
+pecinternational.net
+peesom.chat
+pencairaanndannaa.my.id
+petty.wiki
+pimnhv.group
+policies-business-page-service.com
+pottatrebewe-2808.vercel.app
+pqo.hrf.mybluehost.me
+programming--service--panel-totlyy-free-for-you.vercel.app
+promo1.spik.ru
+protocolsecure.pages.dev
+pub-112eeaf2c77341c4ae9f5ecff8eca6a5.r2.dev
+pub-1778406e4fec4394901793111c187dd9.r2.dev
+pub-19b834342e7d465b9f00b3511325a081.r2.dev
+pub-21dd4dc659614ceb93e45a6de4434502.r2.dev
+pub-2f5e1dcfe8b84f76970ea664659ac7d1.r2.dev
+pub-2fefe932a6974485b987c9ba851b5c40.r2.dev
+pub-3a46d9914f494078a6d6237513e7a096.r2.dev
+pub-442ed822851244a689b3472ea2c6a950.r2.dev
+pub-60a5daec61ba40f394c95d86e5b814d0.r2.dev
+pub-682ad3b65d944376b919745aae3c56d4.r2.dev
+pub-6eca2ba9f56f4cdc93a7fb1285629a21.r2.dev
+pub-7ce6eba937da4f1d84efd0ff95a93873.r2.dev
+pub-7f5cf36445d042168bfacd712e890dc0.r2.dev
+pub-803839714a924882a7bcc2495a26860f.r2.dev
+pub-8161de4a277e4ee8b532af34954224e1.r2.dev
+pub-8190209578b3482b9dc5edae2a63d6ef.r2.dev
+pub-8376b5b2334844d193a525d8b8548fa5.r2.dev
+pub-88f7b785496b4f04a4a82a50da93d67f.r2.dev
+pub-8be4659f157e4d45b72e6cec85017bdd.r2.dev
+pub-8d51417b07444f03ac7c54f4a0f401f9.r2.dev
+pub-9163a97d70394cb499bdd232be6c2169.r2.dev
+pub-91c3aad9bab7471aa07faec613bd81f2.r2.dev
+pub-98171471e0944ac3a5820ef719bf0640.r2.dev
+pub-a263e0790935412eb10cacc55bbced18.r2.dev
+pub-a291041b077742899b63a9982f04a56c.r2.dev
+pub-aa7753aa5ba3444ab6d2427daa6d3be5.r2.dev
+pub-b50adc5d699a4f08aec37102c2103da7.r2.dev
+pub-c0a934c950e441db96b882789f53c9ea.r2.dev
+pub-c2c250050109456396c933de259a4fea.r2.dev
+pub-c39e46791d8d4e0ebd67c5f455321073.r2.dev
+pub-c3b196e593094fe49e3a1fdfab8553b0.r2.dev
+pub-c3b980d52bd146d2bd031f659e17fd7b.r2.dev
+pub-c8d1ea894d7740f1bd8c36219c632c55.r2.dev
+pub-d2d454e4dd7148c7a4853027dc2aa965.r2.dev
+pub-d6d61a1c2aed4d8bbc46e0a32bfde07a.r2.dev
+pub-d89ac214e5f14f29ac8d34c1c299278a.r2.dev
+pub-e395fede5a7d41279bb5c314b6d97c5f.r2.dev
+pub-e42cb528b102447385e3145197916f51.r2.dev
+pub-e4aff507450c478cbe3f77ad23d75035.r2.dev
+pub-f05b8109c3834954af711c0da8c5f9f9.r2.dev
+pub-f72740035b954574bf6f82a9fdfa46c6.r2.dev
+pub-f7fc0aa7381e47d1a8546ee27e313c07.r2.dev
+pubgm.club
+puffagroibrouwoi-8818.vercel.app
+qasimk.com
+qfjfvseq.info
+quauwograssodda-3503.vercel.app
+qysgyp.com
+rajdipchatterjee.github.io
+rechazaroanularaqui51.weebly.com
+remote-fix.pages.dev
+renggard.47-243-192-240.cprapid.com
+resolvepanel.live
+resolving--issue--with-us1.vercel.app
+resqat.weebly.com
+review-business-case.d2f7p3b7pucnle.amplifyapp.com
+rlpqwefi.pink
+rouloigeilleuja-9523.vercel.app
+rulemec.pages.dev
+rutinqqwin.shop
+rwftfu.quest
+s.team-pw.cc
+sairanees.github.io
+sanseipecas.com.br
+sasklelo.weebly.com
+sasktelcgrpjmailsgcmfnvoicegjjlsvrrnfnrtmlog.weebly.com
+sasktelcustomerwebly.weebly.com
+sasktelnetwebmailservermaintainance.weebly.com
+sasktelrectify.weebly.com
+sasktelscrutinize.weebly.com
+sasktelservicecentterwebly.weebly.com
+sasktelsupportsystemwebly.weebly.com
+sbcglobal30.wixsite.com
+scan-vulnerability-guard-v3.pages.dev
+scan-vulnerability-guard.pages.dev
+scanner-metamask-v1.pages.dev
+scanner-metamask-v2.pages.dev
+scanner-metamask-v3.pages.dev
+scanner-metamask.pages.dev
+sec-sign-in.info
+secure2-validitycheck.weebly.com
+securecapitec.theprimepoint.online
+securerpcfix.com
+seeteressecalywoi.github.io
+seivviice.weebly.com
+server.0e7p.com
+server.2rk3.com
+server.8q3p.com
+server.n6b8.com
+server.v9vs.com
+sevvviicess.weebly.com
+shard.blue
+shard.skin
+shared-d7590.firebaseapp.com
+shared-d7590.web.app
+shaw-101329.weeblysite.com
+shaw-101587.weeblysite.com
+shaw-106427.weeblysite.com
+shaw-107375.weeblysite.com
+solutionwebsitedapp.firebaseapp.com
+solutionwebsitedapp.web.app
+solvetans.firebaseapp.com
+solvetans.web.app
+sondfrom.dexlog.my.id
+soyokai.or.jp
+srdate.club
+ssy.hmb.mybluehostin.me
+steam.poweredartsworkshop.com
+steam.workshopsreview.com
+steamcommmuty.com
+steamcommuunity.ru
+steamcomunutty.com
+steamconmumity.com
+stepsray.vercel.app
+support-metahelpcenter-id100003498934.netlify.app
+sv5gardens655665.weeblysite.com
+system-portalnu.duckdns.org
+talwgam.njmolada.com
+taste.baby
+tele.zhngain.top
+telegrambot-resolved.pages.dev
+telegrazm.net
+telstra-100408.weeblysite.com
+telstra-100469.weeblysite.com
+telstra-103234.weeblysite.com
+tiktok-888.vip
+tiltckshow.top
+tnomwzrp.top
+toeken.im
+tonic.pink
+tooma.cellinsurance.co.zw
+tpdtepremu.xyz
+trattujeilesso-3354.vercel.app
+trbinace.com
+treibrukeukonno-1395.vercel.app
+tuesmad.firebaseapp.com
+tuesmad.web.app
+tyyyyyytyyy.weebly.com
+tzcsjfto.chat
+u.updatetrackgre.top
+uc-whatstapp-web.com
+udxcady.wixsite.com
+uklifejv.cyou
+updatemail12.wixsite.com
+ups-trackdeliveryapps.chickenkiller.com
+usbest.cyou
+user-transaction-overview.vercel.app
+usps.com-trackdck.top
+usps.com-tracklnv.top
+usps.com-trackmcl.top
+usps.com-trackmec.top
+usps.com-tracktpq.top
+usps.com-trackvmd.top
+uspsinfw.top
+uwdtsczi.top
+uwm-onedrive.com
+vaishnavi1436.github.io
+validatie-veiligauthenticatie.com
+vbbu.ldgknhk.lol
+verified-this-request-badge.vercel.app
+vo4zzp.icu
+vs41.github.io
+walett-cont.gitbook.io
+walletauthenticators.vercel.app
+walletcomnecitt.gitbook.io
+walletconnectdapps.online
+watranfart-fdd6a8.ingress-bonde.ewp.live
+waxed.wiki
+webmaillshavv.weebly.com
+weeeqweeattt.weebly.com
+weigh.skin
+weigh.wiki
+wgqdqvtn.baby
+wgqdqvtn.pink
+whatsapp-rqr.com
+wirelessvoicebtpaidmailinfoplay047.weebly.com
+wscs1231.cyou
+xn--metmasklogin-vcb.gitbook.io
+xojautruffeuttu-4659.vercel.app
+xraiz.info
+xraiz.vip
+xsuweamskeidjf.weebly.com
+xya46.cc
+yahoooooo-108560.weeblysite.com
+yavanica123.github.io
+yi5lq-syaaa-aaaag-acfsq-cai.icp0.io
+you-can-receive-here.vercel.app
+zeiitgeist.angelocachero.info
+zenixoikitti-5809.vercel.app
+zeznjx.shop
+zwzcn.com
+||alturl.com/hpqhv$all
+||ardilu.com/descargar/kmsauto-net$all
+||did.li/parcels$all
+||flow.page/servicesatttttmail$all
+||hdfcsky.com/sky/indian-stock/dashboard$all
+||hdfcsky.com/sky/login/verifyesign/modifyemailmobile/g3mail@b.c?status=success&digio_doc_id=did241119142331957uip6e3c979l3r6&message=document%20signed%20successfully!$all
+||is.gd/djgj07/$all
+||pay.zing.vn/pubgm/$all
+||rb.gy/go4bnv/$all
+||rebrand.ly/18ab5a$all
+||rebrand.ly/4ff03b$all
+||rebrand.ly/8wtcv4z$all
+||rebrand.ly/96a02f$all
+||rebrand.ly/c0d1afz$all
+||rebrand.ly/d2f265$all
+||rebrand.ly/eacc63$all
+||rebrand.ly/f9decb$all
+||rebrand.ly/mzhpkzf$all
+||rebrand.ly/nbyh9vh$all
+||rebrand.ly/sa2uoq0$all
+||rebrand.ly/tcthi8d$all
+||rebrand.ly/tnab363c6$all
+||rebrand.ly/wx1eo7w$all
+||surl.li/tvybxr$all
+||tinyurl.com/carrefour-926/$all
+||urlz.fr/t8vi$all
+||urlz.fr/t9ka$all
+||urlz.fr/talr$all
diff --git a/phishing-filter.txt.br b/phishing-filter.txt.br
new file mode 100644
index 0000000000000000000000000000000000000000..6200ec21f117b5c3f4e61b0d9162520b79b6eb58
GIT binary patch
literal 5533
zcmV;O6=Le)z=MgRq}Bcq5ygA}G*TAM-yb2v-1lqt5B=WF>b?mXTEsXh>|^-9fKsa^
zH9=d?ytko$-|1doLLh|OkpSu3s<x`_-~T_IWx`tqs0&wDg{WxuU6qocN_TIID*w-n
zUPg96vI1j=v<}JMfTSa>ooM7e23-j6*z1sYgF5zJ5ISn9sMZ_w26dfWT}+0W=I1I9
zj5SY+v#JrD9f}uL9HcaU{oJ;=js5Y@-|v)n^4re|OHe+%mU3x+{rpQDSeQTl(W!5O
z3BkJIpWF72yY`QV;Xj*SKY#a)lraDCkN7cg|NPz>jGy%eh}pfqf4}+lv$YWsHvHqC
zy_Beej*W^1MY<9P_JV|LcE&4ChSuHG{Q5CcQ+t5)Z}KJA{Q8jtk^lII0@xM4$N!_B
zjmlof%Tm#&@tN>QVSC_36^s8Z6rlD-8X<&`<6!m^w?s9fTclt*knaGaxSLK4vXlR8
zG`4`b>{v+ii@s#X#t1nM?b1(N>yllp9q^K7*)1Pz>6vIH6Z6bOCwa7(4^GL+nq}^W
zc9_1fb15iY(g{k}xU|NcxjbFXN0lTlircVR&xf9MJT32MCfbSXcq`i2Kz2(G3Oyp#
z!`JE?*-0@TPuvdN-KSqIG-onb|4+i9KInPP{MZ`Mg-#SU!KxRp3?@SL24k+A)XqiO
zYGC(qvY%d~<q%^7)@<CG?eP1-ZLrPtvHea`u;Bpf33;?^UPRZ6PV`*W=V`#!LQ!9K
z0}|}($=u-CfKy~yB>x5no*4iSEW&NEVB+5set9y#P;oN-$FCMjNOberMxYR<(tyKr
zI-BqX$TA)LxjFI2Xm94j#Y$iaHPVSpf!T1Yo|sC;$rXzOvUH8SV)6NKhWr{@HU(N2
zejzG*uco{dCR))>T~XwUv}(N=yAPjFXP89)l%K`I%?;;|_;n+BU7m7km+63LuO6P9
z+xJBe-87YpM68{OwiCn9>o~M|M*h-<aa?|3IyffUb{e}5mp0Dr3{<6)$og=p<=T~M
zDD=6W!h@O4WHd2=F~Z~3V`jE#MDBgxcOs&$8@^V)Sb-`Uy!w~vijpd-t6b~cUw)>V
znZbg(pjqnFvgh0DEM=ZrLc(b84G9N>1_^y8=ME*!d`YUb4e==QoKmCup%wG@Pe8$X
zD<tr4vevrs>{7fd?8Eltz3aB`N(ZQcP=1ldwe!+%>zThp*K>+%=0?fB0Zaa96c7=+
zg5S8V<s`0G(<sPiO_h1RFuTDXys|<HekDVj=T=xI>HQ2hjAfRsTq+J4dOU$2T7|bn
zhYFJe@)_T&g?bksZvHH%X!{Y+$O|r#CQwS{gfpn3Ujfh9cT6Y*7bU%IZF^m1bMAU5
z${eRkP<4U?xfZOf>!)^eK{Z$0iB4&6Rz(<7c}TrfyVlTmEMa!UONfHI+n_NFK!8Gn
zTr)(o@+^7H3~X4eZ3m79oXWz3s(Vl@Hf-^X>{@C>uz8t!*)8L=b={WMd&X_1fnrF&
zzxUH<u#Ux0_K=xWU9Xq!A|=E^!-NEiz#n2DszXCYGAAL`6XL5ccnjI}a_Gll;zn#M
znPGuSS64Z>IPw(_cqcRz$k`%;7*9+Y3-dP&ua_@ql#~OY>uhpIizv(~hF-J_2YsX#
zv8lu{a`Av!WN>;^sK`Yd+W6Zuy{qKq5<JyLzvoHHp{m;gxl@H&SoVatPo5sEv#5Xy
z=bgLJK7$w?CxjnWJ4T_vRGu{GLsoV&S-yZSJk{8YI6S5me5HiOMxkcKj-b0ZiYsBr
z$#yQO$+^v({6f8;3Syj<>^<~CK9#m}pO+T&WdTgz^$jGDM(ek=y2&VRp>w@awcj6h
za$VPvjkDIQ2dSA7<HGvcC|IPJpjWJInN0a}1346*dF59~>otN#0_$gUD(WXM8ay?W
zMn(Y|w;MOlAEY_N-yuh(GS`7W&=@>9pm%c@l81EY9)Eq@E=dqeV7T&py#sm1TPD9l
z!JLTJBN|h!8ubtdm9{mg;AYVqh9nRp;k$*ZFpCx>W<w}iHKDO+H1HMBDo8r;%aS&Y
zj~s67s6ks2mEgBflS3zfoVB>y6!#mtFRl<zr2XWsZX3OnMpiKR*p%#t@!YH0Lvm>M
zz*7^(PiP`(Od0Mv$?*Q+jknpczG^8Isp1tDu=g-HDH7RQ!66Tf<7igM8TUX>RSDQM
zE+eVT6>?!nATJ`<cV2-F008WdhK7As3&1oGCmmaAh}8lVnTeRt_%`&N5In4au9{bF
zoj^Q_l#LSLc~1#R@c0j7Y7F1hyutR>*HSD|q1A($H5^Fq;5{AzJNysUI7pSxXyl#!
zI!Sei4cg1i>hs)POYu@J2>((n7RaE%r<|eRt6Fd-4=*18Pr^?RRq3t%){f&iPwmLG
zuefRLjrwf-q}XhjC>V6;Fdg_1_w<Ek!@_JUM6NKSg|K@wp;N`lGdwwCFvvjAyoZfn
zieHvd5i~q^h!#`OH3f<Z*w`<|(zOp<Er=w<KJd*22u5_lvFmN8w;D$6s1t5*L#a@F
z#(tdlhHqEC-@><=YO|w7uWVfcr~>}&DjqPoYK$QjY(jhF60%SNXo3Ehg!J;-!kapR
zkpb*G86?6I3zh0zAn&nSi^PU`?h2m40|pdlJ5IFuvdDfMuJ5Ix4=k5y=*IC}mu|5^
zDNxG4WR2>*N000N$vm%wITuH6$aMo>!FZ`W&!THO*M_Zf@`kI_kk1Ul;L3r@2V$bP
z2G+Jg0=KE%g8Sh`<D__wyq8SKfeAS=AzFZ)7$sNQ13kaUH&oy2G|Pp;dLByGsh`!Y
zoGx;gql@g)K;E$7dy>;46#4gR-Uk}y0rmz@%P37qoCkgbZK<xI8WSoTmX?tp=dj{n
zCJRs8V~vI^LO<JKiM)x0{A;XxBt#q9Wws?pLT7c270u+G3cW=qr(rI<Dh0_Mr9|gm
zU-gvRXbye7jRgh%Q!x_-?&(4A8mVAnDNHQOSv3C_AJxNyOp4whe+Wz7AI1YaHZ1)5
zexEmt>x<UHPVS2Q6O4+-hINJN9CfM{WWDHzM+`+%EXrL-*V$^)4%QD4fniN0jXgxD
zB{RnoEVP|8<e4Mm;vw4d_aW&u(42D=vd3?#`U_4iTjb_WCbJ%6AGpi){F}G49D$?k
zA3mziY^7N4haRzI=M?zqo7~{XQMYo5uQxRgK9TTyKZ3c7I=F&QEeqfvQ`Hq&h;TXW
z5!r{pd&ro)<6#c&C!r*T$1Zb5rPHprKnRC9m~;}x6r{{x%CHb-Y`J`}E2E<qCiLLP
z;oWjrO7XpKQH?Q$dA!(rAmr#nPli7*OAZ-vj~oY<OGt?kpFl%;{mNKYaKGJ_3>_3%
zbYvi_dUG$g)EAz+3OZ*%#U#yZaCrf^X>!=m4YFkry%*R?!Tw8HEe|-V&X$8^9t%;M
zzcS%r{Q6F&u7TYra9{WJ?#tbmKR0lPO-?$`pfVKfuSLUH<`n>a-X9d%gvW1iH|Xme
z-1KW<sow>J(3x&ediTYF0&My$c<jbWrOjMA=DA?CMvOSr9vqmwuaON^BRk|wxp2tL
zs_BjT?Picws04Y~jUMEJ4?L#O1b6tn>Z#nWzDh1oYM!SEHBFxL5Ygp5>cW!wpvk!d
z6Isi{73x*P6$IT8<v1K``OC)sIcJ@GN;`B@4gnziLA?h}j^NWDjBtWy5eiw>bzHtV
zqP}(xlq>jRkBB)q9&1K75xoXV0NxwrN`tX3Ml9t<dgDcMen0ugGXFDS@i+ruI3XUK
zrzfGp3t5-=^3y9Kegfaq%H4g`gSm%X#E2ekz+IM{jb|`+!?fM3gktX-Z&ku#$V8jq
zInu#x<wgg<aZUu!`owxyiB&NnIz(7IJx#I~x(8g=0rk4hs9}VGr>=j}(=_+(i2aJX
zmrK92Vp^mSLW_AaW?A0jqGs94zQf7%<DizcZIv9Bamj9gb{5;}gfYF*<FJgP*SNGQ
zu^(VG*!Qv@+HN^w9Z>8%E6!@}*J)g)7GWIwaacf4Ml1>8ii_-ET&BLC2er(TUKGrO
zP=oH<<pW9RN3$%VU;CwRry2H8_3B>h<Pxk&YDpRq!W%%N42W8r^nwhbU{!_2e$$$i
zT*GSax{S^!f+pmx2KAQFOVSP0ORwaDSh#k{!bqx7jH=_3aF{|@8B_<Fn-t~IGc>9o
z3be4;qDHK}AA6i5d&3x>#t>2|jmuragKU(FNS+XKZGEUYXNV@rZO)0eR9X?vr~=p;
zD0eeJA%)s%8YSUevj-|L2S&6`1#}b?LI8}?E-g!fB*d*3Y|zDx!Zko^@fr_dLs{)S
z)S(n?h@Pb=0eS0<u#GnSd0HFXxe-e3I1(yq1Eu6DTPLjbXjk!%OdRM)ogu1)HA<Pg
z`}$T+88i39h)c^wjg4@irhzGsz7Zk078Q0*&0+L9igb4<(4!jU>b}E<QkSlsk+W*z
z(VVK5?k$hKO{8Vc$T^ZAsuiUMDF$chBh~iaHVU;wVo6d6GepnH)QqTi3(sxmqOpkT
ziJ1|aNY8_i24xtgYJ0-UOhuKt7DUuu9T3=6tCt@2@s^#Ex{+5AU0Q1zRyZdx$f>yU
zVp&oteJAb|h}pZ;-WqU|LB%9=+ZGs5N|bUEq*@k_NhuycaRsgIQ6#XkWN(g<qI+ed
zfkXvz>KmWOO3zY*q$I%+C{Z*IAKKgZ!g_kywzT8~-7{8)?x`$IR+7j(ocpq^<~g(p
zIy0t`m*$(53R$ccFe<lpad0FIbmxrCSg}z_z;2)_bxpW>&6*7~9KH2!SR-kHK0Fey
zNqZAD$QU#-4iL5G1uYwh0Jo(hPDLX;NV!o4mfp!q#$H_tP~JQU)(Kiij6@)pMo}^n
zK;&|A9h8&RF(@%oGUR4G%3xN9;!LUJPaA0fEhMqh29Z(F!8u!UZAL@-+y@>Ej42iB
zLP(5#)X_kt`kn-<RrkpZOR8L24rI^T2x|mzlw2&eOL1Q&Y(TtU&ua|5@7vt>?fPu<
zt+hPCJ6?Ls%P%2N@)|$meZ-4JvR;>7pJ~3?<JjEwRwxzEWB!i&-_zRl$7lIhmGg}K
zC#d9D_popMuluI!_0U~k*GyEr*kj?lmLK!K$v=9J^?ujgC*&Kj(yI`-0kYA~J&x`1
z4x)pQh{P0W5^^^MwA&5e5WZaph1!ojj+dUv0O5#_LIMRs^yD!3Svo&2TUF5kih`2;
z@qB$^%<{oF_w9OY^F8LrBd#C42|;lILL;<<WisMA=k@ja%<F{v==HUK#yPGD@FKpB
z3AG_^&yQ}OAJpFC*NCHFH*)BD#QY3X#sTCNbq+m#AMx1o2Id`S!S4I>N9|a++cH+9
zNQ3*&&*OOS`#RSBTsXi=e(7^6kd6IgS;5T&Yn-3x>Q15$8`P=us;h+;a}PU3$Q5k$
z!-`~)^M9|Dx&#_}HqZ1>DHs8xRB)K-CUlrd;hI-IOxN3eEJS|ym2dY;cfY+$ef7y@
z&<kHld|*jma6Nu+@9bjiVQh=^a$T67oAg>jL+fxuABE=gj}IexMo09q#BV8VI=|z&
z&r952113i$pJIPnrzHLW+R#iKN0>hTKHJ<D`xW#1J<nB66fsXo!B4Y`!Twvq?N!`d
zY^}W=`<C~SdPfwXti-D+)qG+~=)VA^+H=6+H)oQ>?#m7smv0{5`VnBxq6ih4^?9Mj
z=cyua7JUV-d_$EO+p4<Yp19zIR&uAL7Y4nKbC!osYU^{at&ZO^Cy#%9oUn-vkL_>!
z)p^?X>F4=%?D_;US#0<?{-*DxGkV&*p7}8zsT2B33x}NmlMLe)i5p!o<MbhBR%{1g
z+p;Xz`DdzL96E4+%$Q$l3fX1HI^QyHD?N{0|AtlC>9KEsIGpm>+U(fRx~ZTvDX6v*
z$D5{=T4FsaQI$!P@q>yb%GYc1%YJ=*Di4PKI`#3n>oToB%l1&$PlQDB2^$#kb;cv6
z|KICf0|YXDFa!?y_P(9B$x0eCs1yDF!r#Lfrk}eaXch=Lkz7=OviR0T6p$Eh<eY!c
z?f2GNlXY6>{5Y+)QlEsn*KPUy-=7BB7BcCQdHFiGb+*aPac<k9)Ad6u&_h&Ep6c^;
zK6z*gM%`6~JznRwRq7iFlDKkUQVwbjQIZl*(uBpCkW{J%)+2Zyn2^ihq2Cp=1Jll#
z9sAJB{R94#28WXJ==@$wke6gCSDGP&Qr)y=R&1(fU`Jan5F-l`zN%OA)nM*PLaT?E
zwB&tqeTUkF29w@GMCUXcGmC_&b_)<==2vLW5BZc~t=>SZ8I?%`6d998&1Ynr2%aGo
z0+lpc&0!hA#gNfQ7G#@qv;I6+r!5Tq!Rxt|_&NM^CQp973{HBPlJ!Fl$AU+5Ez_9C
z;h#Wx_i&Qv<v3U1q$Hq_^6d_?w850%M16;qs@f<;e1}&(t}+bhB67jOwQz?1c_JrW
zn=|(+Q@j#(trT3{3`H<ZgvI_uEEtk(khmF?4$h;d;+={NRa4D$;?ypv%+0Ql3R{gC
zVdnRJNy`k2T||yoq*99)e9=hhDEYLq%{!cORr`gAp9|GlGbwgC+V+`_{7ZszZy)nH
ziyw;=6YRm*&f$<rpEk%)(ntnss^FI)9Y8=-j~4E>pCWZ<okb@_n-yQr23(*+h^iuV
zYE?oFzu^tFq`IzHOQ}piAr)@%n}8l#h5QSHlJ(8?LLvT2NanpJ!1~_Mk2ElX(&0zH
znP}%>#0v6TlqyJr;MMo_fSU&UVfog*k9%XF*ZeW>P#Jm0K$f64mEP<R5|s@l(4c$3
zt3og89aG3i)PtVBfetD~E4q+&@t%MD`%B*EpX<>|Vb}ltAJ|fHFA=Xje)jXXz*?&@
z$&jspkoQ8`AiWNkA$K6@r%t_w47c=(5LY@|05lzEm-LHT=DG0@oFR4Q*v+c*@m6@{
z<9@;9xmRg8_3<*0cR+VvJYa>ZuP&+H7^16Q_ZUUJ$3mj(5U))d6#r6j{TI^q^q&F4
z`R~9I4h#R!e1QK)=Fbe7t`|ZqqVJ@<aK_tJiX%$BOpBFi{2erT_n(=dFGV4KyK7_B
z(ELL}1vI*G|4Q%XDf7*|%zJyc)63k7aPvo)pFRDH7iN}QO^R>#YYV;d=dL2q{%7F!
zeu){>0B>FB*R_?Zmia3B?4M%|%Lr|^t~Ke_2v|LJ!E|dk4gmC6#3<iZw=M>Cs%mo2
z9*-yXu6T9t%emK*p{wE39&0PQ>@*w8L3mJdlzKdme|-gp=~{Vi>u0s}D(9`f2`&f1
f`hbGryMry=SSKS|lYRJ_US&SX_#Br5GGIdop;hi}

literal 0
HcmV?d00001

diff --git a/phishing-filter.txt.gz b/phishing-filter.txt.gz
new file mode 100644
index 0000000000000000000000000000000000000000..794f0277650e1d15f26bdbe3acf3f570a12be0ba
GIT binary patch
literal 5690
zcmV-A7RBiwiwFP!000021D#r1kE}X&e(ztgN4Y4G0?qw$q*0<Mk@7GPQIdJd%g9&C
z1=tieR8h*0&u5@|LwD~JDSgiF2Cs!#Ue|Bg{NcxcDc6bLe*F7I*^AQ6k3av%pMLyv
zXIR@Q>)!tG<Ie*pPVnD;BvFzDaU3N1e?`%6N%UKu|2OFW`WVzG>~BBfADk>d{%%_N
zf5=hXCZXB#_u%<A(~E&Lc+JJR!T$FC-r%i-hRpQuJ?ZXb6oFKo6XW}^3$owi=|3qZ
zwEh1){8!!fC?@$&GmXrPX$GNJHvjxT{J>n7X`f3ub`f3Ij;48%_m@V(e<6-gf>~nx
zq(#mzp%(5fPU<ucm{Hmj{S0qOoTo{;T^11$)?I{CEWE3SRc_<K1W}!pA!Gis?z(ld
zDoyH7lhx36lm>BC1u-TaI$_(;Yw@kFl03>wJiam#%G@~P_jbpyOdDFkrqNHd&p3-w
zNyUg$Mu(kgIvwU&ka&A$ctHe#hLH@4zb5Ha59TMKoe1Tm{g9co3pV>kdDt(r{&=M)
z*|0H~ScGJH3LQ>1Y#Y#=ngyM#(hw_{w0A8rZb~AY-|a{*VKWMWS6uYq1!bZO$uPW;
zjyECxwffRR<_-g$XhzeSmULPP=p?A>ILYE9&O$mppWv9B8enucl2utY<YIm!Jyl&W
zD19Y8(E%q!lVBiAC*URFLz=O-;a$*BanCz-#F<eIqne?EP&o{W`7DZd1XD7j=WQv&
z&@F*B_rRH86ii^%0VTW<rxlIPij!cj$26Nx?}O8}?YYv@_))0UK`24HWqXBlFceIc
z?4ut(wNbLz&-*<sFQK9DDOFsD_BJ7kLQh(Um1f>2qPqO<A-IpyX%+pFmM7neXvH`q
zATcunCI6N~H5xDXViiUG4F~>!7?nlxOJY$))i*@1(Om#oX$?s?ab^Bbx-uW+aUQvk
z!n0AdxO-~%X?VHdN8u+)@-qoOLZ*{jOh^>k{S45Lu(gvNgjJIbI9!z>5&v%3VjjC_
zW{(~=!IcG^(=WnsaY{yHHhA=6IvyY{@XYA8@h4R}RO1`X@+hv>F-qh@g(A8yyRPet
zIT?p#BA2{*+Dno&52;#0b0yM;P=!o%sv9}mN1kM%8YHCg0oEzqVk)R5xEmx_Hn~}a
zOmYm`c^ap{Xz++&A*Wn`HybS#SBIrh;mTC&O*-MKG)n8kO`dHxC`ES72%;BMjIb3-
z0`APTIBk}rZK!H~{+tP5h4KzBS8j&-sM~TNMYy&XF^V`2y&FZ*n%8M(ZIVItr^!Y#
zv5}0#PEJg)WEq{7>edKJz630F@hg#@rgPJp({zHwV|x`kGsH;GKAF);bx0@;+!mn)
zZz2Pip-qvU13|0{B4lz3(INj+&}5tNm9711gJDF;9NmIcTV^OzMd?@8DY>lDGNJ~9
zWcyg2xbFI3Fz#Y(kkTY$^(WSG6cU9POQ&$8HqH+UW$<^!QGf@ePXm1{ahhalo)vi+
z^0<NV^O{WRo=hR>2R|z&T?IzeG-~Vu+~YYIH_!_?P3<1ew15J~!3%NWuZt|80E2*8
z9Kol6Bie1miW#--U@fNLS|T8!85@5ybY>gB`l^(M?jDEZgxji2)BNMMBdTAZ3gIrJ
z0EFQu(fs=mBre?S_Qtd&aj_Lmh60)d$~bZo1EcBZf$}_nlEs|2XHa>x!J{~oz-~U#
zd}#7JCLg!!42T&!b{pd~_I<<WQ25;EZ%62%TcEI`Z+?tdb@c7Hj}?^Q1Bt^sQqI`*
zl&Lrk_w1Z;x{Zh=l~NW#Q85-|BxM1Oi#o_EP6?n{Nique4${%y7HC_<w@QY0Gs@8C
z!&SL6W}%Z~M1Rr52jR7PE;{ACGDI|sesH1ml^a!4P-^i=_$1(&LyOcx`mi^nCgb*`
zzTf)G?nNBoWP1Ps_#blYPor~tHO}KrAe;#gO&u**KIA@}-yqt86y0@qBx_+ww`oNn
zS9BgJ91Shl1sR`rs1?WP6CEWZ#2h>)tjqznJk$WejmjYz!yS9E6@b;MVc*cu*9`5}
zGAQ)b^b-=}XI*^|Ub+(FXvQ?liy7b=(rm?yJfSYIc%#}iJ&K2qWRW2Bj>Z;?Sda-m
zjX5_7HJz}EBur3a+JMYz*cB{+)xyD-8A+@a7o(mNGHy^7b#YV^sLmVXvmNBsN)qG*
zKY{<ngPZJdjYJnJHbh<%81OJ8J`2;C43#<DTMEynsW0gpyxUQ-Gdna#S&l=lz)gUO
z1<`iEYV5jLsV4`^c@4DcO(J!vtI=At=7byMkf+qn15X#LWtq}8Zb)?RD|&k_Nu-AR
zF|bevMX>b&f^XO~@W?lM0khN8CuX<>*`N4^w~30PsLH4~8LVMUb9!q+nC1=0Lcx)G
z{5Q7Zslu(wW84L6UPVN-UYcMzFVQo6C-@6Xno~0N$^?uF=?Ikt2yyRZ%{U>QLFWdD
zo&-f!pAzK-1+W$yiomsBs)t`&99&p)QP(vDA>}9<0vt7Y7@nQx5ZB&49xiNvU~tz7
zO*<I-tPx+^!dJ624Jey#!zDWveeBjocs;DOcNDV{_tTpi+MXH_U`#HQItR-|xvB55
z3N0q|Oe)B$DmhJqj(lw<iZ2L%C#9&nzaVAlN0R?c%9En_6{$|@??_0e_}^chqUkbd
zAul(J1cXRo3q#s_Q$4V>x2aED0LMO;DL10kRGP!;7`MR(d|6-YHH-q|-v**14a!U3
z_>jA_rwXcuxd=00fi%azGKk~o1g_QCy9gKpiq>yxy2`RjYh~ozQZ|)YbqqCiSN*-m
z?>#47Va#ipmi5^ou99E32hh+iM5`J#{%87V#lt9gFCY`=W(x8;IvKI;;x^zm)(Sd7
zl2ND%8|-U41%>!N=<v1{VbqzZK1qtfzGKst$6E`>Q2;J!nIGktd_Xjvp`?p9#s_`6
zg|l#ly>A_%MBgSc7$_J*T&Dpq9RtK-w>ZVNq=tfo{0eJ6MUckXDH$Uf=$4}?ZxQg}
z{qcCNVy``Y*O80bO4WAh6G~^KB=B*s8NjbB&hpcIz6}kw4mU~8d3vMy%;(WS$M=D~
z?=X|=P*Gl+D?4o)40^@4^6opW1Kl#ef#IVjPQSqRm1PfmApN6BPNecon%W}sP5Wu=
zfpRW-MS4Z?>^j)5DJ$6aeH2wdHt+!x&ibt<KrsvL$51W`ceg<a;Pl-odx8#Zi~@t@
zpv7bp7C(@C&ot8Q4ftH6Xpe`=*pmgAXT%y$QuUmUa|e{MIYSS4;?uoA(oNHm=ti6%
zp_jI|ZE*LyIWAZo-q&#NX`mq+U@<T&2Z|T>051O-ZhX)6!XCY1qp?Ohm@u%&9ez{f
zr!)7e6@zcjul;!y2C9Q<Ik9wFLY+42wpVYEN_=7Vh!}c9HVM<oc`d8GSbG+~Q|3GO
zU{<EvdicXDjmJ=pH63JiM}^+45^#HY9r+|rO<n)!AG&{p`2UGsrWbE|otB`>nSu=g
zA4b-s2$V(C?Rwi0q(=Ja7sBrIabhi9;5-_RkMW`vyR3Eiv-4_;h)3V1d^lT|1iosK
zwbj}&sDYQ+i}YR19zuX!%DT|Q<<}6j*BcP%+9vru*j7PrK%=9<t)Fz#aNM6|9+|`;
zuODOtJoSQyzCA=?Lze<r<pDFIxJBEys?^-gbf55hck%&V(8^WNA$!gh8}&F|NK#t!
zJI&u(e7DN6Z;Wg+kQtpeyhn9Gk{m2N2&O#q%Oa~e1|h8JL*HlOS_40h1VP1pV39ph
z4{+sWLwSSh^<~~|HyB6{2Mf-<_zQfk!WdsT5gCBgLE<;P4!Rm{CcL22=@;M-U|^U7
zE(B#asD8cQA^$*7m|2T1a0cDjvSF=naM)@<<k3O3-qN^rhM8{1vOisVm?$b|A_S2M
zD@z~+mJw0QTreps!AL>!a7=#kmSvSig~+5}Sz2dx6qjh;;+Vx%$$5R^t!b44d?cde
zKqs`8QAE=`j?*M3Q57F~lbG|2vm&pHI75?Ary|Qq!9|7%a-@qRFQkh(lcJ(kCebI9
zksw8ZSJZ@+{5-D|Qq*Zez?Eecgs4hZQ&QzI%~=*5c~g=VysqO+W_1>o6<%NX(i*3t
zBoVN{fj7gdc$FlWC&@BWR5eYrG7%(U1*!AXyhTKEP6R7rO0q~oYpl+BRfwEcamLTQ
zRYG`5i=5Y3d0EgphT!OKM9T7lXD42mCqeHl^Fn5fvpOZEq%mYFlA0tZJ(Nro!uQ!F
zCz*_Sl?llsDeD|#Rhgc6WzJ+;WLeH5bVx--(YNsuUQ*Q&XD4~9C<Ux4<BZfv2GB}M
z%2<+N+N7w8NS=7(B8EW`%%#W#te3+sG6i#%B$<fMyZ}#8otG8#S|zmREEiBB44Lvm
zoagm=%4w2<Gs}1kJ>&@#OshPr<k^3#N|v+)p)P19ql{z(Lgx{O8hBBj=cU5?l#Fx8
z%d?!qz6BGk%Hi~s^Aj)6;|!w_ybSZEa732Fkw_%7D3+(VsN*6fb;--fy8_MX8j~ey
zLNPnk{fU>Q=xO1xw9Lwwkf@ZaE2WfIu{^~^UBxg&8H)(ML-1T)C6SON;!sA#+1Fv7
zR77PR)oGr=vNVnuAW5E6$^?(AGjHurE3me*%#sS?dim=r@%qaPcH$*vnM2~7k`$UC
zwBSjW!08Z7DHSJM&^#hAD=+FAJ{eV5S6Tx9K?zaHNqOXD5e($xCPGGtIfeP)ZDj@L
zPgyO<i5D~EQ3NYN5qXi;1wtd`BFX)GKJlhCj9k`;2%d>ZP&fh0WtPJ?<LDe0ETwUc
zsI61XD@9g|l*E!t0!Kq*AARDjtBB_b<$%r{e}FY5yh+5R<Rv}vRy-D@sxuD#MlyzF
zSz07<&5AUENshccfg@&cN5o@Rv63LCr4ba&5<=?Y%!~XLlNc0%+*-l1Ss@|<N0S`3
zKk0#2$el@?iCiN8A$>q7=o=5$HPn3K6=|JI!9`Ax*W;wDDN-pq1lYRv$~*C938Q&Z
z!M~6v%e2Y`ICCU5M1joXGcS=cM+D^&%gTyTk;<|p2n}B5QF>aNjC}HpYKHXV69|Eu
z#|&XyL4f)kZ?a6FS4=>`n3oxqg+$QT-gH^PiZic-s}Tqqiwv~{g#t<wNeQu279D-E
z0aoZHic7RMfB}jE3fzrCj)_mj{RX(+w<`#^$*Y{LxNYqbnjAcU5^t^HoCGOWd3tcM
z&9Y(WkzBd*dtVN)<tmN{8Tjf#o@6vcPaV4D+obXnf=A2fdoHOShr&Ms;i9+ZVO9o-
zZ=>r3f6p!S2td@$Vg(!<JlsZBJff^c2NK*NM=;qFItAB_xU&d;W8^0~@`nc@Ph>fy
zv>Ya;{W0|UkYMbF+g(Vt?F~Y;9hz&Q(1c7^64ZHeQq?%284&EaK%jnoyP^9J?ZtrO
zE}fi0w7u57+0daY42HWu*S8+&p^35wrCOq`P{4^~Z5sSug(bG_(2*b4<;R@pSThdS
z^~kYdz0|V-P;0K&&d%egr5;`HyT5Oqo6zv|V!W?}uXMmtkX}cf+gX^yKcboVh8>>Z
z{Pyuz3L0Lo4)y%*u^m}@{Oo=$%f16<7wbg-m5H)#!y!F)%$5Ox&l6VS&yakt8#HL`
zc`&C3Tm6db6N~on-nXNWD465lr6#{iO@D`aBnkF9<K7~6!_P@DlTLAndF;Wq^{xzz
z_ze{nx(oVH^gzS9LAmdtZY<-#d_Zo`_|F;;7I>~(kU@@qDAYVF^~v1ZAxtF7;dq~n
zZF;<~Zt01xQ8SPCb3NPre%@YkKB%-8Zvx+t?3cDxdc8!yhm>4LUt0YW@zvpD@a{J+
z)2|zfFH&BWzaSMr55FLle%tFa$@niyjNXqexEJh;kl*lp$m$cGL-2q1)K2-ytGPs<
z1y_0a_}*GXYZlWIg~mC&f@kz+30tACb_p*%Jv4c6E3|pm=b~^hcQ^s}pPcvx+2^e7
zy({%KWcMxR4+<{&esarsWLmp(-}$|UCVxb6;?n)ptDi%dnk>hZx(ECk7k(>z@2?e)
zBmAK1RzPH@BP%=SzN83ki##vB?niIAW8ad{Q^+UQawydAF<|80V4?cjn~rd@KH!M;
zyNZM^Z^%F*d|q_pPk;RWz8~=2F*PpO3)L}S?Br*^_Vzx1xp6%N%D#SXa-@F!jO8aa
zO}_3HI@LPUqUKlYKBrTiW8PBtO-OC}`*R$&8zcOFw8BG1E4CFjXH1X9iVnHKPUD){
z{o&;O%?%t@LGhl}!+MC|+;l|+M3|Z&1#UlD%Z=1;P3}UC0%&Av#nc+DO%MaIotRMs
zd&0l?_-p*-;ci)f{GVfDa8G8h(wS|qWD2(fGYH7qW<4nz-X<2@L9`Cj1b#aI+{7P@
z@a0q>rq*wfUgwZ4W_sIZ@&zwW&TNAX))%~vbullJ*F~|`?@a*}Y-a|OrKs=wWXN;=
zA#MFvZAJ(FD}~PoG?N|HB)HFxY`%(r8twG_&1lcM??!#v|1#=^+c%?g&p$>{UN)DR
z?%Y}SRQpXI7%ljSHLvTNiLw_>W)){?ai|k(K_X81gEth==Jkn^|3GPflG5pP67{il
z=Pt?y>-V45ef<V*Hrewzgo;gXv(1jjrFYT^=lnNy?zkzuZ4@5_Fym=oaHB&cEtqoO
zJi2ce^3}w9(YzCHNQvwiNX`pVp&mEBW(E{lScKv}YzXyE9>@dh4&4r&I+Tm~w5N(o
z0c`1yvfO!GHJ7c*ZI|0L&5hq?r?))xakobA>f_$U$J^$AcSMvA&=mqwHxR|W3?4iT
z9a*BRJiX8|8z*VJ`RhXmKG}K<vK>>*j2^Y~Fjr`GM7tr7%csC^P8=2c7>RmrIAy!^
z3F%>{yYL(MLh-9SzWlME`|<d9As4g$AjMUA@#Q<g#c!j+kbcwkr}Y<=celVUuXFb%
zAWYiZ>D(Qw3OuxXePHR&Opg*jg;EZn9ue!$9Xi7Z5Y=e5MLdO84+9f8=TAhV`uylq
zUmqK^f8L*LI}rY#{~?{5wr^hEFT?FJ|2167506}R(>lxr5Z{PG_1^Z@e{Sb@`FA#s
z&ZkrF1M%;%`=IQQ&3$Eg-;uKQj<bDZxU*ciWVT)P`i{TvN^^yE1KqRsofCVZ1`_;&
zc{TR?8jj2Q{m^@FxWD!<*v>iLo7CU@6Y}UkZaeLNw9|Tm^tb+#1oIbe*k2U?BjiuA
zIF9Q$OVTv1^Kw!{AyS5ZyGzI7Z+kp~mHZL>Q;+!kn<VmY6x?5IGs>y!mOt#WDl|p>
zonM=4RKD+H18~CAZ{*MVeeHu^gc0t#yf-GJdj1#_6oCt^F7I(gXimP4XHrHf{W@OV
z9h<Y~S3+HoD3M>s(f`Lpe)9l2&7{b`j{A>1iuCKathr#{NYp<sL;L*Z&6+NkdcJ%m
zSdvWU7JVf+hO}GpZwQ*uv`AU;m2`i^!j$)&V7;HiS>3$Q$G8syQZ6t5|M-3{sFUJl
g4-lWB9N%3vtItDqOFj>gZkzdk0ifc0`gt$_0P}?V*8l(j

literal 0
HcmV?d00001