home
*

scoundrels

Here's a list of people who recently tried to attack equius.
D --> via http :: via ssh :: via smtp :: automaticly blacklisted

via http

  262 attempts: host: 66.147.244.224
  180 attempts: subnet: 186.202.0.0/16
  180 attempts: host: 186.202.153.29
  131 attempts: subnet: 200.98.0.0/16
  131 attempts: host: 200.98.197.2
   49 attempts: request: POST /administrator/components/com_maianmedia/utilities/charts/php-ofc-library/ofc_upload_image.php 
   49 attempts: request: POST /administrator/components/com_jnewsletter/includes/openflashchart/php-ofc-library/ofc_upload_image.php
   49 attempts: request: POST /administrator/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_image.php 
   49 attempts: request: POST /administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_upload_image.php 
   49 attempts: request: GET /administrator/components/com_maianmedia/utilities/charts/tmp-upload-images/lobex21.php 
   49 attempts: request: GET /administrator/components/com_jnewsletter/includes/openflashchart/tmp-upload-images/lobex21.php 
   49 attempts: request: GET /administrator/components/com_jinc/classes/graphics/tmp-upload-images/lobex21.php 
   49 attempts: request: GET /administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/tmp-upload-images/lobex21.php 
   49 attempts: request: GET /administrator/components/com_acymailing/inc/openflash/tmp-upload-images/lobex21.php 
   48 attempts: request: POST /administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-ofc-library/ofc_upload_image
   48 attempts: request: POST /administrator/components/com_acymailing/inc/openflash/php-ofc-library/ofc_upload_image.php 
   48 attempts: request: GET /administrator/components/com_jnews/includes/openflashchart/tmp-upload-images/lobex21.php 
   40 attempts: request: GET /images/stories/food.php 
   35 attempts: request: GET /index.php 
   23 attempts: request: GET /images/stories/Arab.Indonesia.php 
   17 attempts: subnet: 189.89.215.16/28
   17 attempts: subnet: 141.138.142.0/24
   17 attempts: request: GET /wp-content/.../timthumb.php 
   17 attempts: host: 189.89.215.18
   17 attempts: host: 141.138.142.133
   16 attempts: subnet: 217.149.57.0/24
   16 attempts: host: 217.149.57.225
   16 attempts: host: 192.185.219.109
   15 attempts: subnet: 36.250.160.0/19
   15 attempts: host: 36.250.176.237
   14 attempts: subnet: 5.135.160.0/19
   14 attempts: subnet: 121.2.0.0/15
   14 attempts: host: 121.2.68.215
   13 attempts: subnet: 187.45.192.0/19
   13 attempts: host: 187.45.210.68
   12 attempts: subnet: 77.252.212.160/28
   12 attempts: request: GET /scoundrels.html/wp-content/.../timthumb.php 
   12 attempts: host: 77.252.212.165
   12 attempts: host: 5.135.163.49
   11 attempts: request: GET /images/stories/install.php 
   11 attempts: host: 65.98.40.194
   11 attempts: host: 184.106.228.78
   10 attempts: subnet: 85.25.129.0 - 85.25.153.255
   10 attempts: request: GET /scoundrels.html/index.php 
   10 attempts: request: GET /photography/index.php 

via ssh

 199.180.115.110 : 495 password attempts : mail4.majprospect.com
   117.27.158.88 : 244 password attempts : 117.24.0.0/13 : 
 201.249.174.162 : 208 password attempts : 201-249-174-162.estatic.cantv.net
   62.219.49.189 : 141 password attempts : 62.219.49.0 - 62.219.50.255 : cablep-219-49-189.cablep.bezeqint.net
     96.57.3.115 : 110 password attempts : mail.humiconmail.com
    60.191.139.5 : 55 password attempts : 60.191.136.0/21 : 
  221.131.116.22 : 48 password attempts : 221.131.64.0 - 221.131.191.255 : 
     1.93.32.185 : 32 password attempts : 1.93.0.0/16 : 
     61.155.84.5 : 26 password attempts : 61.155.84.0/28 : 
     1.93.34.226 : 22 password attempts : 1.93.0.0/16 : 
  190.216.175.34 : 22 password attempts : mail.bucyrus.com.pe
  220.177.198.31 : 21 password attempts : 220.175.0.0 - 220.177.255.255 : 
    151.11.201.3 : 17 password attempts : 151.11.201.0/29 : 
  101.227.170.42 : 12 password attempts : 101.224.0.0/13 : 
   221.179.89.90 : 11 password attempts : 221.176.0.0/13 : 

smtp

 5562  blocked using bl.spamcop.net;
 3124  warning: hostname does not resolve to address
 1868  blocked by greylisting (23 attempts from 85.135.172.177)
  795  Relay access denied
  381  reject: Sender address rejected: Domain not found
  295  Received-SPF: softfail
  197  Received-SPF: permerror
  131  reject: Recipient address rejected: SPF
   93  ...: warning: Connection concurrency limit exceeded: 51 from unknown[27.38.39.42] for service smtp
   83  reject: Recipient address rejected: mailbox disabled
   32  blocked using zen.spamhaus.org;
   16  reject: Helo command rejected: Invalid name
   12  warning: malformed domain name in resource data of MX record
   12  reject: Sender address rejected: Malformed DNS server reply
   11  ...: warning: valid_hostname: empty hostname
    8  warning: numeric domain name in resource data of MX record
    8  ...: warning: non-SMTP command from unknown[113.17.173.11]: GET / HTTP/1.1
    8  ...: warning: Connection concurrency limit exceeded: 52 from unknown[27.38.39.42] for service smtp
    5  reject: Client host rejected: Access denied
    2  ...: warning: non-SMTP command from 1-163-163-64.dynamic.hinet.net[1.163.163.64]: GET http://www.scanproxy.com:80/p-25.html H
    2  reject: Recipient address rejected: User unknown in virtual alias table

automatically blacklisted

blacklist:  adding  118.186.246.27   for  requesting  '/scoundrels.html/wp-content/themes/blacklabel/framework/timthumb.php'
blacklist:  adding  118.186.36.218   for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  118.186.36.218   for  requesting  '//administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_uplo
blacklist:  adding  118.186.36.218   for  requesting  '//administrator/components/com_jnewsletter/includes/openflashchart/php-ofc-li
blacklist:  adding  118.186.36.218   for  requesting  '//administrator/components/com_maianmedia/utilities/charts/php-ofc-library/of
blacklist:  adding  151.1.158.62     for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  152.3.245.90     for  requesting  '//administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_uplo
blacklist:  adding  156.54.110.109   for  requesting  '/scoundrels.html//administrator/components/com_civicrm/civicrm/packages/OpenF
blacklist:  adding  162.243.33.145   for  requesting  '/administrator/components/com_jinc/classes/graphics/php-ofc-library/ofc_uploa
blacklist:  adding  173.214.174.179  for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  180.179.207.167  for  requesting  '/wp-content/themes/sportpress/scripts/timthumb.php?src=http%3A%2F%2Fimg.youtu
blacklist:  adding  184.107.131.42   for  requesting  '//wp-content/themes/Avenue/timthumb.php?src=http://picasa.com.pueblotricolor.
blacklist:  adding  184.173.107.16   for  requesting  '/wp-content/themes/cadabrapress/scripts/timthumb.php?src=http%3A%2F%2Fwordpre
blacklist:  adding  184.82.89.66     for  requesting  '/scoundrels.html/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=h
blacklist:  adding  185.17.149.247   for  requesting  '/scoundrels.html//components/com_jnews/includes/openflashchart/php-ofc-librar
blacklist:  adding  186.202.153.29   for  requesting  '//administrator/components/com_jnews/includes/openflashchart/php-ofc-library/
blacklist:  adding  187.108.198.64   for  requesting  '/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_imag
blacklist:  adding  187.45.240.37    for  requesting  '/scoundrels.html//components/com_jnews/includes/openflashchart/php-ofc-librar
blacklist:  adding  190.7.28.18      for  requesting  '/wp-content/themes/sportpress/scripts/timthumb.php?src=http%3A%2F%2Fimg.youtu
blacklist:  adding  192.163.218.206  for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  192.99.4.10      for  requesting  '/scoundrels.html/wp-content/themes/blacklabel/framework/timthumb.php?src=http
blacklist:  adding  198.15.111.90    for  requesting  '/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=http://flickr.com
blacklist:  adding  200.98.197.2     for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  202.29.16.245    for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  209.126.71.204   for  requesting  '/wp-content/themes/blacklabel/framework/timthumb.php?src=http%3A%2F%2Fpicasa.
blacklist:  adding  211.255.32.154   for  requesting  '/scoundrels.html//wp-content/themes/cadabrapress/scripts/timthumb.php?src=htt
blacklist:  adding  213.189.2.49     for  requesting  '/scoundrels.html/wp-content/themes/cadabrapress/scripts/timthumb.php?src=http
blacklist:  adding  216.14.117.90    for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  216.14.117.90    for  requesting  '/scoundrels.html//components/com_jnews/includes/openflashchart/php-ofc-librar
blacklist:  adding  31.223.168.21    for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  54.246.105.34    for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  5.56.133.10      for  requesting  '/scoundrels.html//components/com_jnews/includes/openflashchart/php-ofc-librar
blacklist:  adding  62.193.235.191   for  requesting  '//components/com_joomleague/assets/classes/open-flash-chart/ofc_upload_image.
blacklist:  adding  62.210.211.32    for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  62.75.178.131    for  requesting  '/scoundrels.html/wp-content/themes/ecobiz/timthumb.php?src=http%3A%2F%2Fflick
blacklist:  adding  66.147.244.224   for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  68.235.41.67     for  requesting  '//administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-of
blacklist:  adding  68.235.41.67     for  requesting  '//administrator/components/com_maianmedia/utilities/charts/php-ofc-library/of
blacklist:  adding  72.167.99.183    for  requesting  '/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=http://picasa.com
blacklist:  adding  77.222.40.166    for  requesting  '/wp-content/themes/ecobiz/timthumb.php?src=http%3A%2F%2Fwordpress.com.nikantc
blacklist:  adding  77.222.56.165    for  requesting  '/scoundrels.html/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=h
blacklist:  adding  77.252.212.165   for  requesting  '/wp-content/themes/ecobiz/timthumb.php?src=http%3A%2F%2Fwordpress.com.motobih
blacklist:  adding  78.47.198.206    for  requesting  '/scoundrels.html/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=h
blacklist:  adding  81.95.96.153     for  requesting  '/scoundrels.html//components/com_jnews/includes/openflashchart/php-ofc-librar
blacklist:  adding  83.169.35.187    for  requesting  '/scoundrels.html/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=h
blacklist:  adding  84.52.64.76      for  requesting  '//openemr/library/openflashchart/php-ofc-library/ofc_upload_image.php?name=vi
blacklist:  adding  85.25.139.47     for  requesting  '/scoundrels.html//administrator/components/com_jnewsletter/includes/openflash
blacklist:  adding  85.252.49.107    for  requesting  '//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_ima
blacklist:  adding  86.109.170.163   for  requesting  '/scoundrels.html//wp-content/themes/ecobiz/timthumb.php?src=http://flickr.com
blacklist:  adding  91.121.175.191   for  requesting  '/scoundrels.html/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=h
blacklist:  adding  91.121.175.191   for  requesting  '/scoundrels.html/wp-content/themes/TheTravelTheme/includes/timthumb.php?src=h
blacklist:  adding  91.142.210.136   for  requesting  '/scoundrels.html//wp-content/themes/Thetraveltheme/timthumb.php?src=http://bl
blacklist:  adding  91.215.216.62    for  requesting  '/scoundrels.html&sa=U&ei=rqZLU5GcBuaX4wTk0YGIAQ&ved=0
REFUSE     all  --  1.208.0.0/12         0.0.0.0/0           
REFUSE     all  --  27.115.0.0/17        0.0.0.0/0           
REFUSE     all  --  58.208.0.0/12        0.0.0.0/0           
REFUSE     all  --  58.248.0.0/13        0.0.0.0/0           
REFUSE     all  --  58.250.108.0/22      0.0.0.0/0           
REFUSE     all  --  59.0.0.0/8           0.0.0.0/0           
REFUSE     all  --  61.147.0.0/16        0.0.0.0/0           
REFUSE     all  --  61.174.51.192/26     0.0.0.0/0           
REFUSE     all  --  77.39.0.0/17         0.0.0.0/0           
REFUSE     all  --  87.229.111.0/24      0.0.0.0/0           
REFUSE     all  --  88.191.80.0/24       0.0.0.0/0           
REFUSE     all  --  93.114.40.0/21       0.0.0.0/0           
REFUSE     all  --  115.168.0.0/14       0.0.0.0/0           
REFUSE     all  --  116.1.0.0/16         0.0.0.0/0           
REFUSE     all  --  116.255.128.0/17     0.0.0.0/0           
REFUSE     all  --  123.31.0.0/19        0.0.0.0/0           
REFUSE     all  --  125.128.0.0/11       0.0.0.0/0           
REFUSE     all  --  180.76.0.0/16        0.0.0.0/0           
REFUSE     all  --  122.0.0.0/8          0.0.0.0/0           
REFUSE     all  --  123.138.0.0/15       0.0.0.0/0           
REFUSE     all  --  174.37.192.0/18      0.0.0.0/0           
REFUSE     all  --  182.48.0.0/18        0.0.0.0/0           
REFUSE     all  --  190.144.0.0/14       0.0.0.0/0           
REFUSE     all  --  202.117.0.0/18       0.0.0.0/0           
REFUSE     all  --  211.103.128.0/17     0.0.0.0/0           
REFUSE     all  --  217.20.169.160/27    0.0.0.0/0           
REFUSE     all  --  218.60.0.0/15        0.0.0.0/0           
REFUSE     all  --  218.0.0.0/30         0.0.0.0/0           
REFUSE     all  --  218.108.0.0/15       0.0.0.0/0           
REFUSE     all  --  219.140.0.0/16       0.0.0.0/0           
REFUSE     all  --  219.239.88.0/21      0.0.0.0/0           
REFUSE     all  --  221.0.0.0/15         0.0.0.0/0           
REFUSE     all  --  221.224.0.0/13       0.0.0.0/0           
REFUSE     all  --  222.184.0.0/13       0.0.0.0/0           
REFUSE     tcp  --  66.249.73.0/24       0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  76.191.96.0/23       0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  81.92.112.0/20       0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  82.97.18.128/26      0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  87.118.96.0/19       0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  95.32.64.0/18        0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  106.10.128.0/18      0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  114.32.0.0/12        0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  183.80.112.0/20      0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  202.204.24.0/22      0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  203.188.200.0/22     0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  213.229.113.0/26     0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  213.240.224.0/22     0.0.0.0/0            tcp dpt:25
REFUSE     tcp  --  216.27.14.32/28      0.0.0.0/0            tcp dpt:25
REFUSE     all  --  116.8.0.0/14         0.0.0.0/0           

Last updated Thu Apr 24 12:48:02 2014 GMT