home
*

scoundrels

Here's a list of people who recently tried to attack equius.
D --> via http :: via ssh :: via smtp :: automaticly blacklisted

via http

  126 attempts: request: GET /wp-content/.../timthumb_old.php 
   98 attempts: subnet: 80.36.0.0/14
   98 attempts: host: 80.36.122.88
   60 attempts: request: GET /wp-content/.../timthumb.php 
   56 attempts: request: GET /admin/categories.php/login.php 
   49 attempts: subnet: 91.201.60.0/22
   49 attempts: host: 91.201.63.152
   33 attempts: request: GET /index.php 
   31 attempts: request: GET /wp-login.php 
   28 attempts: subnet: 81.88.49.0/25
   28 attempts: host: 81.88.49.3
   27 attempts: subnet: 109.169.14.0/24
   27 attempts: host: 109.169.14.20
   16 attempts: user-agent: "ZmEu"
   16 attempts: subnet: 89.248.160.0/20
   16 attempts: host: 89.248.160.214
   15 attempts: subnet: 211.94.0.0 - 211.103.255.255
   15 attempts: host: 211.97.155.10
   14 attempts: subnet: 94.138.216.0/22
   14 attempts: host: 94.138.216.194
   12 attempts: subnet: 92.242.57.0 - 92.242.59.255
   12 attempts: subnet: 89.185.231.128/28
   12 attempts: host: 92.242.58.13
   12 attempts: host: 89.185.231.139
   11 attempts: subnet: 46.246.69.64/26
   11 attempts: host: 46.246.69.77
   10 attempts: request: GET /lomac/index.php 
   10 attempts: request: GET /images/stories/food.php 

via ssh

  117.21.191.197 : 1086 password attempts : 117.21.0.0/16 : 
   218.248.46.22 : 502 password attempts : 218.248.46.16/28 : 
   61.174.50.163 : 82 password attempts : 61.174.48.0/21 : 163.50.174.61.dial.wz.zj.dynamic.163data.com.cn
  101.64.236.150 : 48 password attempts : 101.64.0.0/13 : 
  101.64.236.146 : 36 password attempts : 101.64.0.0/13 : 
  101.64.236.155 : 32 password attempts : 101.64.0.0/13 : 
   61.167.49.136 : 25 password attempts : 61.167.49.128/26 : 
 211.255.130.228 : 25 password attempts : 211.232.0.0 - 211.255.255.255 : 
     60.173.14.5 : 22 password attempts : 60.166.0.0 - 60.175.255.255 : 
   61.174.50.177 : 20 password attempts : 61.174.48.0/21 : 177.50.174.61.dial.wz.zj.dynamic.163data.com.cn
   61.167.49.141 : 20 password attempts : 61.167.49.128/26 : 
   61.167.49.131 : 20 password attempts : 61.167.49.128/26 : 
     218.2.0.133 : 20 password attempts : 218.2.0.0 - 218.4.255.255 : 
  101.64.236.175 : 20 password attempts : 101.64.0.0/13 : 
   61.234.146.22 : 18 password attempts : 61.234.146.0/24 : 
     218.2.0.130 : 18 password attempts : 218.2.0.0 - 218.4.255.255 : 
     218.2.0.126 : 16 password attempts : 218.2.0.0 - 218.4.255.255 : 
   117.79.91.244 : 16 password attempts : 117.79.80.0/20 : 
   61.167.49.142 : 13 password attempts : 61.167.49.128/26 : 
   61.167.49.144 : 12 password attempts : 61.167.49.128/26 : 
     218.2.0.124 : 12 password attempts : 218.2.0.0 - 218.4.255.255 : 
   61.167.49.145 : 11 password attempts : 61.167.49.128/26 : 

smtp

 1898  blocked using bl.spamcop.net;
 1534  warning: hostname does not resolve to address
  771  blocked by greylisting (20 attempts from 91.140.137.122)
  589  blocked using zen.spamhaus.org;
  421  blocked using cbl.abuseat.org;
  380  reject: Sender address rejected: Domain not found
  260  warning: numeric domain name in resource data of MX record
  198  Relay access denied
  171  reject: Recipient address rejected: SPF
  146  reject: Helo command rejected: need fully-qualified hostname
   84  Received-SPF: softfail
   77  Received-SPF: permerror
   61  blocked using dnsbl.sorbs.net;
   24  reject: Recipient address rejected: mailbox disabled
    7  reject: Client host rejected: Access denied
    4  ...: warning: valid_hostname: empty hostname
    4  warning: malformed domain name in resource data of MX record
    4  reject: Sender address rejected: Malformed DNS server reply
    3  reject: Helo command rejected: Invalid name
    2  ...: warning: premature end-of-input on private/spfcheck while reading input attribute name
    2  ...: warning: p5B25A975.dip0.t-ipconnect.de[91.37.169.117]: SASL PLAIN authentication failed: 
    2  ...: warning: p5093116d.dip0.t-ipconnect.de[80.147.17.109]: SASL PLAIN authentication failed: 
    2  ...: warning: command /usr/sbin/postfix-policyd-spf-perl exit status 255

automatically blacklisted

blacklist:  adding  134.213.24.37    for  requesting  '/scoundrels.html/wp-content/themes/Avenue/timthumb.php?src=http%3A%2F%2Fflick
blacklist:  adding  146.148.50.23    for  requesting  '/scoundrels.html//admin/categories.php/login.php?cPath=&action=new_produc
blacklist:  adding  159.226.170.51   for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  162.253.145.117  for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  162.253.149.156  for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  173.208.206.194  for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  176.10.114.132   for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  176.195.215.163  for  requesting  '//administrator/components/com_jnewsletter/includes/openflashchart/php-ofc-li
blacklist:  adding  177.73.233.247   for  requesting  '/wp-content/themes/Telegraph/scripts/timthumb.php?src=http%3A%2F%2Fimg.youtub
blacklist:  adding  182.50.130.31    for  requesting  '/scoundrels.html//administrator/components/com_jnews/includes/openflashchart/
blacklist:  adding  184.168.152.182  for  requesting  '//administrator/components/com_maianmedia/utilities/charts/php-ofc-library/of
blacklist:  adding  184.168.46.209   for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  187.17.106.49    for  requesting  '/wp-content/themes/blacklabel/framework/timthumb.php?src=http%3A%2F%2Fflickr.
blacklist:  adding  188.165.245.32   for  requesting  '/wp-content/themes/blacklabel/framework/timthumb.php?src=http%3A%2F%2Fpicasa.
blacklist:  adding  188.226.241.169  for  requesting  '/wp-content/themes/sportpress/scripts/timthumb.php?src=http%3A%2F%2Fwordpress
blacklist:  adding  188.244.38.87    for  requesting  '//administrator/components/com_maianmedia/utilities/charts/php-ofc-library/of
blacklist:  adding  190.197.87.113   for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  194.146.200.68   for  requesting  '//administrator/components/com_acymailing/inc/openflash/php-ofc-library/ofc_u
blacklist:  adding  194.146.200.68   for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  194.146.200.68   for  requesting  '//administrator/components/com_jnews/includes/openflashchart/php-ofc-library/
blacklist:  adding  194.146.200.68   for  requesting  '//administrator/components/com_jnewsletter/includes/openflashchart/php-ofc-li
blacklist:  adding  195.112.139.2    for  requesting  '/scoundrels.html//components/com_joomleague/assets/classes/open-flash-chart/o
blacklist:  adding  195.114.19.41    for  requesting  '/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_imag
blacklist:  adding  198.1.122.68     for  requesting  '/wp-content/themes/blacklabel/framework/timthumb.php?src=http%3A%2F%2Fimg.you
blacklist:  adding  198.57.202.230   for  requesting  '//administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_uplo
blacklist:  adding  198.65.102.31    for  requesting  '/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_imag
blacklist:  adding  198.65.102.31    for  requesting  '/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_imag
blacklist:  adding  212.42.63.227    for  requesting  '/wp-content/themes/sportpress/scripts/timthumb.php?src=http%3A%2F%2Fpicasa.co
blacklist:  adding  213.251.182.11   for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  213.251.182.12   for  requesting  '/wp-content/themes/blacklabel/framework/timthumb.php?src=http%3A%2F%2Fpicasa.
blacklist:  adding  217.26.145.200   for  requesting  '/wp-content/themes/cadabrapress/scripts/timthumb.php?src=http://www.sakura-ku
blacklist:  adding  31.47.242.18     for  requesting  '/wp-content/themes/cadabrapress/scripts/timthumb.php?src=http%3A%2F%2Fpicasa.
blacklist:  adding  42.112.25.90     for  requesting  '//admin_area/charts/php-ofc-library/ofc_upload_image.php?name=vito.php'
blacklist:  adding  46.246.69.77     for  requesting  '/wp-content/themes/Avenue/timthumb.php?src=http%3A%2F%2Fimg.youtube.com.barga
blacklist:  adding  46.254.20.132    for  requesting  '/wp-content/themes/blacklabel/framework/timthumb.php?src=http%3A%2F%2Fimg.you
blacklist:  adding  50.116.47.66     for  requesting  '/wp-content/themes/blacklabel/framework/timthumb.php?src=http%3A%2F%2Fimg.you
blacklist:  adding  50.30.43.136     for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  5.135.181.73     for  requesting  '/scoundrels.html&sa=U&ei=csn_U6PSAYLmyQPu54CIBw&ved=0
blacklist:  adding  5.135.214.33     for  requesting  '//administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_uplo
blacklist:  adding  5.175.234.21     for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  5.175.234.21     for  requesting  '//administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_uplo
blacklist:  adding  5.175.234.21     for  requesting  '//administrator/components/com_maianmedia/utilities/charts/php-ofc-library/of
blacklist:  adding  5.39.19.170      for  requesting  '/scoundrels.html//administrator/components/com_jinc/classes/graphics/php-ofc-
blacklist:  adding  5.39.68.144      for  requesting  '/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=http%3A%2F%2Fpica
blacklist:  adding  60.199.166.90    for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  60.199.166.90    for  requesting  '/scoundrels.html//components/com_jnews/includes/openflashchart/php-ofc-librar
blacklist:  adding  62.48.127.14     for  requesting  '/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_imag
blacklist:  adding  69.162.106.20    for  requesting  '//administrator/components/com_jnews/includes/openflashchart/php-ofc-library/
blacklist:  adding  69.85.79.135     for  requesting  '/scoundrels.html//administrator/components/com_maianmedia/utilities/charts/ph
blacklist:  adding  74.15.163.71     for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  74.50.0.195      for  requesting  '//administrator/components/com_acymailing/inc/openflash/php-ofc-library/ofc_u
blacklist:  adding  74.50.0.195      for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  77.68.140.208    for  requesting  '/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=http://picasa.com
blacklist:  adding  77.90.237.188    for  requesting  '//administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_uplo
blacklist:  adding  78.138.100.127   for  requesting  '/scoundrels.html/administrator/components/com_jinc/classes/graphics/php-ofc-l
blacklist:  adding  82.144.181.82    for  requesting  '//administrator/components/com_redmystic/chart/ofc-library/ofc_upload_image.p
blacklist:  adding  83.223.111.224   for  requesting  '/wp-content/themes/sportpress/scripts/timthumb.php?src=http%3A%2F%2Fpicasa.co
blacklist:  adding  85.159.237.64    for  requesting  '/scoundrels.html/components/com_jnews/includes/openflashchart/php-ofc-library
blacklist:  adding  86.125.62.8      for  requesting  '/wp-content/themes/cadabrapress/scripts/timthumb.php?src=http%3A%2F%2Fsauliz.
blacklist:  adding  87.106.99.214    for  requesting  '/wp-content/themes/blacklabel/framework/timthumb.php?src=http%3A%2F%2Fpicasa.
blacklist:  adding  87.253.162.11    for  requesting  '//administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_uplo
blacklist:  adding  89.185.231.139   for  requesting  '/wp-content/themes/Avenue/timthumb.php?src=http%3A%2F%2Fimg.youtube.com.barga
blacklist:  adding  89.252.144.33    for  requesting  '/scoundrels.html//components/com_jnews/includes/openflashchart/php-ofc-librar
blacklist:  adding  90.145.155.16    for  requesting  '/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=http%3A%2F%2Fflic
blacklist:  adding  91.121.18.186    for  requesting  '/scoundrels.html/wp-content/themes/blacklabel/framework/timthumb.php?src=http
blacklist:  adding  92.242.58.13     for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  92.242.58.13     for  requesting  '//administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_uplo
blacklist:  adding  92.242.58.13     for  requesting  '//administrator/components/com_jnews/includes/openflashchart/php-ofc-library/
blacklist:  adding  92.242.58.13     for  requesting  '//administrator/components/com_maianmedia/utilities/charts/php-ofc-library/of
blacklist:  adding  94.138.216.194   for  requesting  '/wp-content/themes/Avenue/timthumb.php?src=http%3A%2F%2Fimg.youtube.com.barga
blacklist:  adding  95.211.1.140     for  requesting  '/scoundrels.html&sa=U&ei=hED8U87jI7Cw7Aa3h4CQCg&ved=0
blacklist:  adding  95.220.97.222    for  requesting  '//administrator/components/com_jnews/includes/openflashchart/php-ofc-library/
REFUSE     all  --  1.208.0.0/12         0.0.0.0/0           
REFUSE     all  --  27.115.0.0/17        0.0.0.0/0           
REFUSE     all  --  58.208.0.0/12        0.0.0.0/0           
REFUSE     all  --  58.248.0.0/13        0.0.0.0/0           
REFUSE     all  --  58.250.108.0/22      0.0.0.0/0           
REFUSE     all  --  59.0.0.0/8           0.0.0.0/0           
REFUSE     all  --  61.147.0.0/16        0.0.0.0/0           
REFUSE     all  --  61.174.51.192/26     0.0.0.0/0           
REFUSE     all  --  77.39.0.0/17         0.0.0.0/0           
REFUSE     all  --  87.229.111.0/24      0.0.0.0/0           
REFUSE     all  --  88.191.80.0/24       0.0.0.0/0           
REFUSE     all  --  93.114.40.0/21       0.0.0.0/0           
REFUSE     all  --  115.168.0.0/14       0.0.0.0/0           
REFUSE     all  --  116.1.0.0/16         0.0.0.0/0           
REFUSE     all  --  116.255.128.0/17     0.0.0.0/0           
REFUSE     all  --  123.31.0.0/19        0.0.0.0/0           
REFUSE     all  --  125.128.0.0/11       0.0.0.0/0           
REFUSE     all  --  180.76.0.0/16        0.0.0.0/0           
REFUSE     all  --  122.0.0.0/8          0.0.0.0/0           
REFUSE     all  --  123.138.0.0/15       0.0.0.0/0           
REFUSE     all  --  174.37.192.0/18      0.0.0.0/0           
REFUSE     all  --  182.48.0.0/18        0.0.0.0/0           
REFUSE     all  --  190.144.0.0/14       0.0.0.0/0           
REFUSE     all  --  202.117.0.0/18       0.0.0.0/0           
REFUSE     all  --  211.103.128.0/17     0.0.0.0/0           
REFUSE     all  --  217.20.169.160/27    0.0.0.0/0           
REFUSE     all  --  218.60.0.0/15        0.0.0.0/0           
REFUSE     all  --  218.0.0.0/30         0.0.0.0/0           
REFUSE     all  --  218.108.0.0/15       0.0.0.0/0           
REFUSE     all  --  219.140.0.0/16       0.0.0.0/0           
REFUSE     all  --  219.239.88.0/21      0.0.0.0/0           
REFUSE     all  --  221.0.0.0/15         0.0.0.0/0           
REFUSE     all  --  221.224.0.0/13       0.0.0.0/0           
REFUSE     all  --  222.184.0.0/13       0.0.0.0/0           
REFUSE     tcp  --  66.249.73.0/24       0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  76.191.96.0/23       0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  81.92.112.0/20       0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  82.97.18.128/26      0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  87.118.96.0/19       0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  95.32.64.0/18        0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  106.10.128.0/18      0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  114.32.0.0/12        0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  183.80.112.0/20      0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  202.204.24.0/22      0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  203.188.200.0/22     0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  213.229.113.0/26     0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  213.240.224.0/22     0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  216.27.14.32/28      0.0.0.0/0            tcp dpt:25
REFUSE     all  --  116.8.0.0/14         0.0.0.0/0           

Last updated Tue Sep 2 00:48:02 2014 GMT