BlackList IP Digest: 2017.10.10

Черный Список IP адресов: WordPress +0, RDP +3, Remotely Anywhere +9, FTP +0, xScan +11, Reg-Bot +0, DDoS +1

14.104.229.217, 222.181.8.167, 52.233.132.221, 103.207.39.190, 104.131.109.149, 113.105.246.245, 185.106.122.120, 211.115.217.69, 212.129.59.195, 58.187.121.170, 61.178.220.121, 80.211.137.217, 85.96.31.191, 123.249.79.212, 185.38.249.225, 195.47.228.153, 213.183.51.182, 95.70.237.175, 187.73.33.63, 195.154.161.158, 66.249.70.10, 66.249.70.6, 66.249.70.8


Восстановление сайтов WordPress после взлома.


  • DDoS (Hack & Destroy WWW-Server)
    IP Address Host
    195.47.228.153 FMC d.o.o. FMC d.o.o. SI
    /wp-admin/admin-ajax.php
  • xScan from Search-Bot and CDN. Achtung! (Scan Attempts: System & Plugins)
    IP Address Host
    66.249.70.8 Googlebot Googlebot US
    /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.init.min.js
    /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js
    /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js
    66.249.70.10 Googlebot Googlebot US
    /wp-content/plugins/wp-postratings/postratings-js.js
    /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js
    /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js
    /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js
    66.249.70.6 Googlebot Googlebot US
    /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js
    /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js
    /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js
    /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js
    /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js
  • Remotely Anywhere BruteForce
    IP Address Host
    58.187.121.170 FPT Telecom Company FPT Telecom Company VN
    212.129.59.195 Free SAS ONLINE SAS FR
    80.211.137.217 Aruba S.p.A. Aruba S.p.A. IT
    61.178.220.121 China Telecom Gansu,Lanzhou ershuniu broad band dail pool CN
    104.131.109.149 Digital Ocean Digital Ocean US
    103.207.39.190 Vietnam Posts and Telecommunications(VNPT) Vietnam Posts and Telecommunications(VNPT) VN
    113.105.246.245 China Telecom Guangdong China Telecom Guangdong CN
    211.115.217.69 Sejong Telecom Sejong Telecom KR
    185.106.122.120 Host Sailor Ltd. Host Sailor Ltd. RO
  • RDP BruteForce
    IP Address Host
    222.181.8.167 China Telecom Chongqing China Telecom Chongqing CN
    52.233.132.221 Microsoft Corporation Microsoft Azure NL
    14.104.229.217 China Telecom Chongqing China Telecom Chongqing CN
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    123.249.79.212 Wonten Network China Telecom CN
    /license.php
    /28997995.php
    /wp-content/plugins/revslider/temp/update_extract/4889845.php
    /uploadify/uploadify.php
    /75372428.php
    /tiny_mce/plugins/tinybrowser/upload.php
    /tiny_mce/plugins/tinybrowser/upload_file.php
    /0561091.php.suspected_
    /wp-content/plugins/Login-wall-etgFB/login_wall.php
    195.154.161.158 ONLINE S.A.S. Iliad-Entreprises FR
    /wp-content/plugins/Login-wall-etgFB/login_wall.php
    /wp-content/plugins/revslider/temp/update_extract/sfn.php
    /wp-content/plugins/revslider/sfn.php
    /license.php
    /uploadify/uploadify.php
    /tiny_mce/plugins/tinybrowser/upload_file.php
    /sfn.php
    /sites/libraries/elfinder/connector.minimal.php
    /wp-content/plugins/jquery-html5-file-upload/jquery-html5-file-upload.php
    195.47.228.153 FMC d.o.o. FMC d.o.o. SI
    /wp-content/plugins/revslider/temp/update_extract/revslider/case.php
    /wp-admin/admin-ajax.php
    /wp-content/themes/Avada/framework/plugins/revslider/temp/update_extract/revslider/case.php
    /wp-content/themes/liofolio/Lioit/revslider/temp/update_extract/revslider/case.php
    /wp-content/themes/ultimatum/wonderfoundry/addons/plugins/revslider/temp/update_extract/revslider/case.php
    /wp-content/themes/centum/revslider/temp/update_extract/revslider/case.php
    /wp-content/themes/medicate/script/revslider/temp/update_extract/revslider/case.php
    /wp-content/themes/beach_apollo/advance/plugins/revslider/temp/update_extract/revslider/case.php
    85.96.31.191 Turk Telekom Turk Telekom TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    95.70.237.175 TurkNet Iletisim Hizmetleri A.S TurkNet-DSL TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    213.183.51.182 Melbikomas UAB Melbikomas UAB NL
    /wp-content/plugins/download-monitor/download.php
    /wp-content/plugins/resume-submissions-job-postings/installer.php
    /wp-content/plugins/font-uploader/font-uploader-free.php
    /wp-content/plugins/ckeditor-for-wordpress/ckeditor.config.js
    /wp-content/plugins/functions.php
    /wp-content/plugins/category-grid-view-gallery/cat_grid.php
    /wp-content/plugins/ninja-forms/ninja_forms.php
    /wp-content/plugins/front-end-upload/destination.php
    /wp-content/plugins/magic-fields/MF_Constant.php
    187.73.33.63 Digirati Informatica, servicos e telecomunicac Digirati Informatica, servicos e telecomunicac BR
    /lsn_an.php
    185.38.249.225 Sprint Sprint PL
    /xmlrpc.php
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.



  • 

    Добавить комментарий

    Ваш e-mail не будет опубликован. Обязательные поля помечены *