Home >

Scoundrels

D --> f001ish attempts at misuse of resources


D --> via http

318 requests from 139.159.154.70
316 requests from 139.199.15.51
297 requests from 188.131.159.241
295 requests from 211.159.155.202
108 requests from 54.242.143.23
108 requests from 60.251.193.180
108 requests from 80.211.168.143
13 requests from 71.93.209.114
9 requests from 39.66.79.50
9 requests from 119.186.36.62
8 requests from 88.249.49.124
8 requests from 115.126.25.213
8 requests from 140.143.123.40
8 requests from 14.203.57.158
8 requests from 203.151.179.189
... 127 items truncated ...
33 requests for/wp-login.php
17 requests for/imp/test.php
17 requests for/horde/imp/test.php
17 requests for/horde3/imp/test.php
15 requests for/
9 requests for/index.php
8 requests for/xmlrpc.php
5 requests for/public/index.php
5 requests for/TP/html/public/index.php
5 requests for/scripts/setup.php
5 requests for/html/public/index.php
5 requests for/thinkphp/html/public/index.php
5 requests for/elrekt.php
5 requests for/TP/index.php
5 requests for/TP/public/index.php
... 492 items truncated ...

D --> via ssh

11attempts from  76.16.0.0/12
8attempts from  88.214.26.0/24
7attempts from  66.165.208.0/20
6attempts from  190.248.128.0/19
6attempts from  173.210.0.0/17
6attempts from  106.12.208.0/20
5attempts from  88.176.0.0/12
5attempts from  87.197.0.0/16
5attempts from  73.0.0.0/8
5attempts from  68.174.64.0/18
5attempts from  31.173.238.0/24
5attempts from  217.128.0.0/16
5attempts from  176.191.144.0/21
4attempts from  95.232.0.0/15
4attempts from  93.32.0.0/15
4attempts from  92.88.0.0/13
4attempts from  91.0.0.0/10
4attempts from  89.218.0.0/19
4attempts from  89.17.32.0/19
4attempts from  80.59.0.0/16
... 12 items truncated ...
41attempts on ftpuser
30attempts on test
28attempts on ubuntu
25attempts on user
22attempts on admin
20attempts on root
19attempts on mozai
15attempts on freeflowdance
13attempts on aradia
10attempts on equius
9attempts on zabbix
9attempts on rosebudburlesque
8attempts on www
8attempts on saskatooninternationalburlesquefestival
7attempts on teamspeak
7attempts on support
7attempts on beachesfencing
6attempts on sybase
6attempts on nepeta
6attempts on mysql
... 39 items truncated ..

D --> via smtp

4 attempts from 1.55.175.22
4 attempts from 2.235.171.28
4 attempts from 5.54.78.2
4 attempts from 5.204.111.80
4 attempts from 14.226.85.27
4 attempts from 27.3.121.1
4 attempts from 31.166.69.212
4 attempts from 37.19.108.35
4 attempts from 37.19.108.208
8 attempts from 37.32.126.57
4 attempts from 37.238.112.23
4 attempts from 39.53.76.17
3 attempts from 41.39.243.185
4 attempts from 45.120.115.2
4 attempts from 45.124.145.142
... 77 items truncated ..
1172 of warning: 2600:3c03::f03c:91ff:fe7b:7e52 is unavailable. unsupported dictionary type: 2600
970 of warning: smtpd_client_event_limit_exceptions: 2600:3c03::f03c:91ff:fe7b:7e52: table lookup problem
202 of warning: mynetworks: 2600:3c03::f03c:91ff:fe7b:7e52: table lookup problem
202 of reject: RCPT from [...]: 451 4.3.0
196 of reject: RCPT from [...]: 554 5.7.1
110 of reject: RCPT from [...]: 550 5.7.1
95 of Client host [...] blocked using bl.spamcop.net;
9 of Received-SPF: softfail
8 of reject: RCPT from [...]: 450 4.1.8
4 of Received-SPF: permerror
3 of Client host [...] blocked using cbl.abuseat.org;
2 of warning: non-SMTP command from [...]: GET /login.html HTTP/1.1
2 of reject: RCPT from [...]: 550 5.1.1

D --> blacklisted

The first set are ranges blacklisted by hand
pkts bytes target prot opt in out source destination
3 201 REFUSE all -- * * 222.176.0.0/12 0.0.0.0/0
44 2902 REFUSE all -- * *  58.192.0.0/11 *
0 0 REJECT all -- * *  106.13.0.0/18 * reject-with icmp-port-unreachable
0 0 REFUSE all -- * *  111.72.0.0/13 *
44 2600 REFUSE all -- * *  111.192.0.0/12 *
5 300 REFUSE all -- * *  118.24.0.0/15 *
12 480 REFUSE all -- * *  125.64.0.0/11 *
6 260 REFUSE all -- * *  221.224.0.0/13 *
0 0 REFUSE all -- * *  222.128.0.0/12 *

These were blacklisted automatically by triggering a trap
0 0 REFUSE all -- * *  5.77.55.67 *
0 0 REFUSE all -- * *  5.98.23.99 *
0 0 REFUSE all -- * *  5.101.156.11 *
0 0 REFUSE all -- * *  27.147.160.48 *
0 0 REFUSE all -- * *  31.131.67.14 *
0 0 REFUSE all -- * *  37.59.108.85 *
0 0 REFUSE all -- * *  37.115.191.132 *
0 0 REFUSE all -- * *  41.136.131.103 *
0 0 REFUSE all -- * *  41.200.45.243 *
0 0 REFUSE all -- * *  43.249.218.58 *
0 0 REFUSE all -- * *  43.251.16.143 *
0 0 REFUSE all -- * *  45.40.165.6 *
0 0 REFUSE all -- * *  45.40.166.170 *
0 0 REFUSE all -- * *  45.73.73.91 *
0 0 REFUSE all -- * *  46.118.155.61 *
0 0 REFUSE all -- * *  46.118.155.222 *
0 0 REFUSE all -- * *  46.185.239.75 *
0 0 REFUSE all -- * *  46.252.205.222 *
0 0 REFUSE all -- * *  49.150.11.56 *
0 0 REFUSE all -- * *  50.116.64.27 *
7 344 REFUSE all -- * *  51.175.192.46 *
0 0 REFUSE all -- * *  54.38.79.193 *
0 0 REFUSE all -- * *  59.41.21.95 *
0 0 REFUSE all -- * *  60.51.32.177 *
0 0 REFUSE all -- * *  61.92.206.158 *
0 0 REFUSE all -- * *  63.250.204.22 *
0 0 REFUSE all -- * *  66.96.128.60 *
0 0 REFUSE all -- * *  67.227.213.209 *
0 0 REFUSE all -- * *  69.27.124.170 *
0 0 REFUSE all -- * *  69.49.102.232 *
0 0 REFUSE all -- * *  71.60.153.30 *
0 0 REFUSE all -- * *  71.91.168.209 *
0 0 REFUSE all -- * *  72.167.190.74 *
0 0 REFUSE all -- * *  74.208.56.193 *
0 0 REFUSE all -- * *  74.208.56.210 *
0 0 REFUSE all -- * *  74.208.57.157 *
0 0 REFUSE all -- * *  76.174.205.87 *
0 0 REFUSE all -- * *  78.129.161.190 *
0 0 REFUSE all -- * *  79.42.195.12 *
0 0 REFUSE all -- * *  79.170.44.140 *
0 0 REFUSE all -- * *  79.170.44.243 *
0 0 REFUSE all -- * *  81.27.92.78 *
0 0 REFUSE all -- * *  82.165.80.45 *
0 0 REFUSE all -- * *  82.165.83.15 *
0 0 REFUSE all -- * *  82.165.86.91 *
0 0 REFUSE all -- * *  83.20.106.247 *
0 0 REFUSE all -- * *  83.243.58.157 *
0 0 REFUSE all -- * *  85.92.42.23 *
0 0 REFUSE all -- * *  86.123.64.165 *
0 0 REFUSE all -- * *  87.110.219.209 *
0 0 REFUSE all -- * *  88.147.30.93 *
0 0 REFUSE all -- * *  89.64.51.46 *
0 0 REFUSE all -- * *  93.43.180.103 *
0 0 REFUSE all -- * *  93.99.6.158 *
0 0 REFUSE all -- * *  94.193.197.90 *
0 0 REFUSE all -- * *  95.68.160.157 *
0 0 REFUSE all -- * *  95.181.52.98 *
0 0 REFUSE all -- * *  95.188.68.19 *
0 0 REFUSE all -- * *  95.250.51.111 *
0 0 REFUSE all -- * *  97.74.24.190 *
0 0 REFUSE all -- * *  98.24.102.136 *
0 0 REFUSE all -- * *  103.27.239.216 *
0 0 REFUSE all -- * *  103.50.163.22 *
0 0 REFUSE all -- * *  103.55.47.10 *
0 0 REFUSE all -- * *  103.67.235.41 *
0 0 REFUSE all -- * *  103.67.235.69 *
0 0 REFUSE all -- * *  103.215.81.107 *
0 0 REFUSE all -- * *  105.158.109.189 *
0 0 REFUSE all -- * *  105.226.9.98 *
0 0 REFUSE all -- * *  106.248.242.250 *
0 0 REFUSE all -- * *  107.5.253.76 *
0 0 REFUSE all -- * *  110.224.132.118 *
0 0 REFUSE all -- * *  111.91.230.106 *
0 0 REFUSE all -- * *  112.135.71.91 *
0 0 REFUSE all -- * *  112.200.46.151 *
0 0 REFUSE all -- * *  115.28.43.234 *
0 0 REFUSE all -- * *  115.249.1.85 *
0 0 REFUSE all -- * *  117.4.80.17 *
0 0 REFUSE all -- * *  117.191.11.106 *
0 0 REFUSE all -- * *  118.123.19.159 *
0 0 REFUSE all -- * *  118.175.93.207 *
0 0 REFUSE all -- * *  118.185.203.98 *
0 0 REFUSE all -- * *  118.241.36.248 *
0 0 REFUSE all -- * *  120.27.114.224 *
0 0 REFUSE all -- * *  121.42.50.93 *
0 0 REFUSE all -- * *  121.42.152.155 *
0 0 REFUSE all -- * *  121.42.154.116 *
0 0 REFUSE all -- * *  122.8.64.172 *
0 0 REFUSE all -- * *  122.164.24.214 *
0 0 REFUSE all -- * *  123.30.135.10 *
0 0 REFUSE all -- * *  124.109.48.7 *
0 0 REFUSE all -- * *  125.161.219.231 *
0 0 REFUSE all -- * *  125.163.210.60 *
4 184 REFUSE all -- * *  131.100.90.11 *
0 0 REFUSE all -- * *  138.122.140.54 *
0 0 REFUSE all -- * *  138.128.242.121 *
0 0 REFUSE all -- * *  141.226.218.27 *
0 0 REFUSE all -- * *  144.76.103.235 *
0 0 REFUSE all -- * *  156.217.89.207 *
0 0 REFUSE all -- * *  157.45.4.49 *
0 0 REFUSE all -- * *  158.181.19.142 *
0 0 REFUSE all -- * *  160.179.205.94 *
0 0 REFUSE all -- * *  162.241.216.152 *
0 0 REFUSE all -- * *  165.16.3.6 *
0 0 REFUSE all -- * *  170.52.107.133 *
0 0 REFUSE all -- * *  171.78.161.78 *
0 0 REFUSE all -- * *  173.176.30.209 *
0 0 REFUSE all -- * *  173.254.28.43 *
0 0 REFUSE all -- * *  176.97.142.163 *
0 0 REFUSE all -- * *  177.52.160.33 *
0 0 REFUSE all -- * *  177.131.25.132 *
0 0 REFUSE all -- * *  178.221.121.22 *
0 0 REFUSE all -- * *  184.107.229.18 *
0 0 REFUSE all -- * *  184.168.152.148 *
0 0 REFUSE all -- * *  184.168.193.152 *
0 0 REFUSE all -- * *  185.2.4.27 *
0 0 REFUSE all -- * *  185.175.33.175 *
0 0 REFUSE all -- * *  185.202.84.138 *
0 0 REFUSE all -- * *  185.220.102.8 *
0 0 REFUSE all -- * *  185.234.217.248 *
6 304 REFUSE all -- * *  185.234.218.33 *
0 0 REFUSE all -- * *  187.32.167.10 *
0 0 REFUSE all -- * *  190.186.173.170 *
0 0 REFUSE all -- * *  190.248.137.92 *
0 0 REFUSE all -- * *  192.140.148.17 *
0 0 REFUSE all -- * *  192.185.176.102 *
0 0 REFUSE all -- * *  192.185.176.148 *
0 0 REFUSE all -- * *  193.77.45.19 *
0 0 REFUSE all -- * *  193.169.254.82 *
0 0 REFUSE all -- * *  193.169.254.92 *
0 0 REFUSE all -- * *  193.201.224.225 *
0 0 REFUSE all -- * *  194.113.106.125 *
0 0 REFUSE all -- * *  195.16.120.147 *
0 0 REFUSE all -- * *  195.246.8.153 *
0 0 REFUSE all -- * *  197.242.156.112 *
0 0 REFUSE all -- * *  198.71.228.60 *
0 0 REFUSE all -- * *  202.134.152.98 *
0 0 REFUSE all -- * *  203.90.116.226 *
0 0 REFUSE all -- * *  205.204.76.192 *
0 0 REFUSE all -- * *  213.45.88.228 *
0 0 REFUSE all -- * *  213.251.182.107 *
0 0 REFUSE all -- * *  213.251.182.114 *
0 0 REFUSE all -- * *  213.251.182.115 *
0 0 REFUSE all -- * *  217.197.250.66 *
0 0 REFUSE all -- * *  219.77.192.69 *
0 0 REFUSE all -- * *  223.19.212.30 *

Last updated Fri Feb 22 23:50:43 2019