BlackList IP Digest: 2018.05.07

Digest

Черный Список IP адресов: WordPress +0, RDP +0, Remotely Anywhere +4, FTP +0, xScan +6, Reg-Bot +0, DDoS +0

117.2.50.189, 119.29.80.17, 80.211.161.39, 85.10.39.229, 104.168.151.28, 178.170.159.6, 218.234.21.67, 41.225.146.133, 93.179.68.151, 66.249.64.13

Восстановление сайтов WordPress после взлома.

  • xScan from Search-Bot and CDN. Achtung! (Scan Attempts: System & Plugins)
    IP Address Host
    66.249.64.13 Googlebot Googlebot US
    /wp-content/plugins/anti-spam/js/anti-spam-4.3.js
    /wp-content/plugins/wordpress-popular-posts/public/js/tracking.js
  • Remotely Anywhere BruteForce
    IP Address Host
    85.10.39.229 A1 Slovenija A1 Slovenija, d.d. SI
    117.2.50.189 Viettel Group Viettel Group VN
    119.29.80.17 Tencent cloud computing Tencent cloud computing CN
    80.211.161.39 Aruba S.p.A. Aruba S.p.A. IT
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    93.179.68.151 Transit Telecom LLC Transit Telecom LLC GB
    /wp-content/plugins/download-monitor/download.php
    /wp-content/plugins/front-end-upload/destination.php
    /wp-content/plugins/font-uploader/font-uploader-free.php
    /wp-content/plugins/category-grid-view-gallery/cat_grid.php
    /wp-content/plugins/magic-fields/MF_Constant.php
    /wp-content/plugins/functions.php
    /wp-content/plugins/ninja-forms/ninja_forms.php
    /wp-content/plugins/wp-image-news-slider/functions.php
    104.168.151.28 Hostwinds LLC. Hostwinds LLC. US
    /user/register
    /payload.php
    41.225.146.133 Globalnet Globalnet TN
    /admin
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/v5.php
    /wp-content/plugins/downloads-manager/upload/v5.php
    /wp-content/plugins/formcraft/file-upload/server/php
    178.170.159.6 GOKNET Bilgi Teknolojileri ve Telekomunikasyon Hiz GOKNET Bilgi Teknolojileri ve Telekomunikasyon Hiz TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    218.234.21.67 SK Broadband SK Broadband KR
    /plupload/2x.php
    /tmp/plupload
    /cache/version.php
    /media/system/css    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.

BlackList IP Digest: 2018.05.06

Digest

Черный Список IP адресов: WordPress +0, RDP +0, Remotely Anywhere +3, FTP +0, xScan +10, Reg-Bot +0, DDoS +0

123.183.209.139, 212.237.58.99, 80.211.167.163, 79.110.18.214, 91.216.3.42, 192.34.78.31, 195.154.242.191, 36.72.179.197, 46.2.22.57, 78.190.130.125, 89.38.146.59, 66.249.75.26, 66.249.75.27

Восстановление сайтов WordPress после взлома.

  • xScan from Search-Bot and CDN. Achtung! (Scan Attempts: System & Plugins)
    IP Address Host
    66.249.75.26 Googlebot Googlebot US
    /wp-content/plugins/wordpress-popular-posts/public/js/tracking.js
    /wp-content/plugins/anti-spam/js/anti-spam-4.3.js
    /wp-content/plugins/wp-postratings/postratings-js.js
    66.249.75.27 Googlebot Googlebot US
    /wp-content/plugins/wordpress-popular-posts/public/js/tracking.js
    /wp-content/plugins/anti-spam/js/anti-spam-4.3.js
  • Remotely Anywhere BruteForce
    IP Address Host
    123.183.209.139 China Telecom hebei China Telecom hebei CN
    80.211.167.163 Aruba S.p.A. Aruba S.p.A. IT
    212.237.58.99 Aruba Business S.R.L. Aruba Business S.R.L. IT
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    78.190.130.125 Turk Telekom Turk Telekom TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    195.154.242.191 ONLINE S.A.S. Iliad-Entreprises FR
    /admin/images/cal_date_over.gif
    /admin/login.php
    /wp-content/plugins/hd-webplayer/playlist.php
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/settings_auto.php
    /wp-content/plugins/formcraft/file-upload/server/content/upload.php
    /wp-content/plugins/wp-mobile-detector/resize.php
    89.38.146.59 ArubaCloud Limited ArubaCloud Limited GB
    /site/wp-admin/setup-config.php
    /blog/wp-admin/setup-config.php
    /wp-admin/setup-config.php
    /wp/wp-admin/setup-config.php
    /wordpress/wp-admin/setup-config.php
    46.2.22.57 Vodafone NET Iletisim Hizmetleri A.S. Vodafone NET Iletisim Hizmetleri A.S. TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    91.216.3.42 DepoDataCenter DepoDataCenter RU
    /wp-content/languages/themes/upcache.php
    /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/static/cache.php
    /wp-content/languages/themes/timturl.php
    /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/static/timcache.php
    79.110.18.214 Atomohost LLC Atomohost LLC UA
    /wp-content/plugins/nextgen-gallery/nextgen-gallery/products/photocrati_nextgen/modules/static/timcache.php
    /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/static/timturl.php
    /wp-content/languages/themes/cache.php
    36.72.179.197 PT Telkom Indonesia PT Telkom Indonesia ID
    /wp-content/plugins/revslider/temp/update_extract/revslider/saber.php
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/formcraft/file-upload/server/php
    /wp-content/plugins/formcraft/file-upload/server/files/saber.php
    /wp-content/plugins/work-the-flow-file-upload/public/assets/jQuery-File-Upload-9.5.0/server/php
    /wp-content/plugins/simple-ads-manager/sam-ajax-admin.php
    /wp-content/plugins/simple-ads-manager/saber.php
    /wp-content/plugins/downloads-manager/upload/saber.php
    192.34.78.31 Ormuco Ltd Ormuco Ltd CA
    /admin
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/v5.php
    /wp-content/plugins/downloads-manager/upload/v5.php
    /wp-content/plugins/formcraft/file-upload/server/php
    /wp-content/plugins/simple-ads-manager/js/slider/tmpl.js
    /wp-content/plugins/wp-mobile-detector/cache/db.php
    /wp-content/plugins/formcraft/file-upload/server/upload.php
    /wp-content/plugins/revslider/temp/update_extract/revslider/db.php
    /wp-content/plugins/wp-symposium/server/index.php
    /wp-content/plugins/wp-symposium/server/lPuxUYvqsgcDRV.php    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.

BlackList IP Digest: 2018.05.05

Digest

Черный Список IP адресов: WordPress +0, RDP +1, Remotely Anywhere +6, FTP +0, xScan +7, Reg-Bot +0, DDoS +3

77.45.139.246, 103.99.3.134, 182.100.67.252, 185.12.179.163, 193.201.224.212, 43.254.240.20, 51.255.33.31, 107.152.104.157, 160.177.78.12, 5.188.10.26, 78.187.194.69, 88.241.37.198, 94.120.58.62, 95.10.17.255

Восстановление сайтов WordPress после взлома.

  • DDoS (Hack & Destroy WWW-Server)
    IP Address Host
    187.28.83.123 Claro S.A. Claro S.A. BR
    /wp-admin/admin-ajax.php
    /wp-content/plugins/revslider/temp/update_extract/revslider/myluph.php
    /wp-newblog.php
    /.libs.php
    /wp-content.php
    /wp-includes/wp-xmlrpc.php
    /bogel.php
    /…/&sa=U&ved=0…
    204.197.220.22 Virtustream Virtustream US
    /…/&sa=U&ved=0…
    /images/jdownloads/screenshots/.libs.up.php.j
    /images/jdownloads/screenshots/.libs.up.php.i
    /images/jdownloads/screenshots
    /cache
    /media/system/js
    5.188.10.26 Petersburg Internet Network ltd. Petersburg Internet Network ltd. HR
    /…/&sa=U&ved=0…
  • Remotely Anywhere BruteForce
    IP Address Host
    51.255.33.31 OVH SAS OVH SAS FR
    193.201.224.212 PE Tetyana Mysyk PE Tetyana Mysyk UA
    43.254.240.20 Beijing Tian Wei Xin Tong technology corp. limited Beijing Tian Wei Xin Tong technology corp. limited CN
    182.100.67.252 China Telecom Jiangxi China Telecom Jiangxi CN
    185.12.179.163 Aruba SAS Aruba GmbH Cloud Network DE
    103.99.3.134 Vpsonline Vpsonline VN
  • RDP BruteForce
    IP Address Host
    77.45.139.246 Rostelecom Regional multiservice network access RU
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    95.10.17.255 Turk Telekom Turk Telekom TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    160.177.78.12 MarocTelecomASDL MarocTelecomASDL MA
    /wp-content/plugins/woocommerce-product-options/includes/image-upload.php
    /wp-content/plugins/viral-optins/uploader/file-uploader.php
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/l.php
    /wp-content/plugins/downloads-manager/upload/l.php
    /wp-content/plugins/formcraft/file-upload/server/php
    /wp-content/uploads/_input_3_css.php.jd
    107.152.104.157 Total Server Solutions L.L.C. Total Server Solutions L.L.C. US
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    78.187.194.69 Turk Telekom Turk Telekom TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    5.188.10.26 Petersburg Internet Network ltd. Petersburg Internet Network ltd. HR
    /statistics/plugins/wp-admin/admin-ajax.php
    /statistics/plugins/wp-content/plugins/revslider/temp/update_extract/revslider/myluph.php
    /statistics/plugins/wp-newblog.php
    /statistics/plugins/.libs.php
    /statistics/plugins/wp-content.php
    /statistics/plugins/wp-includes/wp-xmlrpc.php
    94.120.58.62 Dogan Tv Digital Platform Isletmeciligi A.s Dogan Tv Digital Platform Isletmeciligi A.s TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    88.241.37.198 Turk Telekom Turk Telekom TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.

BlackList IP Digest: 2018.05.04

Digest

Черный Список IP адресов: WordPress +0, RDP +1, Remotely Anywhere +4, FTP +0, xScan +3, Reg-Bot +0, DDoS +1

178.46.165.65, 103.99.3.137, 123.183.209.140, 169.255.5.138, 218.65.30.156, 185.203.242.41, 95.10.191.11, 5.133.11.87

Восстановление сайтов WordPress после взлома.

  • DDoS (Hack & Destroy WWW-Server)
    IP Address Host
    217.182.70.191 OVH SAS OVH SAS FR
    /…/&sa=U&ved=0…
  • Remotely Anywhere BruteForce
    IP Address Host
    169.255.5.138 SWECOM SWECOM CM
    218.65.30.156 China Telecom China Telecom CN
    103.99.3.137 Vpsonline Vpsonline VN
    123.183.209.140 China Telecom hebei China Telecom hebei CN
  • RDP BruteForce
    IP Address Host
    178.46.165.65 Rostelecom Rostelecom RU
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    5.133.11.87 Artnet Spolka z ograniczona odpowiedzialnoscia Artnet Spolka z ograniczona odpowiedzialnoscia PL
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/XAttacker.php
    /wp-content/plugins/downloads-manager/upload/XAttacker.php
    /wp-content/plugins/formcraft/file-upload/server/php
    /wp-content/uploads/_input_3_css.php.jd
    /wp-content/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/Avada/framework/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/striking_r/framework/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/IncredibleWP/framework/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/ultimatum/wonderfoundry/addons/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/medicate/script/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/centum/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/beach_apollo/advance/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/cuckootap/framework/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/pindol/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/designplus/framework/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    185.203.242.41 NovoServe B.V. NovoServe B.V. NL
    /wp-content/plugins/simple-ads-manager/js/slider/tmpl.js
    /wp-content/plugins/wp-mobile-detector/cache/db.php
    /wp-content/plugins/formcraft/file-upload/server/upload.php
    /wp-content/plugins/revslider/temp/update_extract/revslider/db.php
    /wp-content/plugins/wp-symposium/server/index.php
    /wp-content/plugins/wp-symposium/server/yAhfwZLKPVtSzE.php
    95.10.191.11 Turk Telekom Turk Telekom TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.

BlackList IP Digest: 2018.05.03

Digest

Черный Список IP адресов: WordPress +0, RDP +0, Remotely Anywhere +2, FTP +0, xScan +7, Reg-Bot +0, DDoS +1

148.229.1.28, 209.141.61.11, 121.205.250.37, 178.239.176.23, 217.182.70.191, 77.234.46.222, 78.111.49.166, 95.10.181.93, 66.249.65.133

Восстановление сайтов WordPress после взлома.

  • DDoS (Hack & Destroy WWW-Server)
    IP Address Host
    217.146.69.16 Zone Media OU Zone Media OU EE
    /…/&sa=U&ved=0…
  • xScan from Search-Bot and CDN. Achtung! (Scan Attempts: System & Plugins)
    IP Address Host
    66.249.65.133 Googlebot Googlebot US
    /wp-content/plugins/anti-spam/js/anti-spam-4.3.js
    /wp-content/plugins/wordpress-popular-posts/public/js/tracking.js
  • Remotely Anywhere BruteForce
    IP Address Host
    148.229.1.28 Universidad Autonoma De Chihuahua Universidad Autonoma De Chihuahua MX
    209.141.61.11 FranTech Solutions FranTech Solutions US
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    95.10.181.93 Turk Telekom Turk Telekom TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    217.182.70.191 OVH SAS OVH SAS FR
    /logs/wpa.php
    /modules/mod_banners
    /images/jdownloads/screenshots/wpa.php.j
    /media/system/css
    78.111.49.166 SOL SOL AZ
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    178.239.176.23 ENTER S.r.l. ENTER S.r.l. IT
    /admin
    /wp-content/plugins/formcraft/file-upload/server/php
    /wp-admin/admin-ajax.php
    121.205.250.37 China Telecom fujian China Telecom fujian CN
    /plus/mytag_js.php
    /plus/e7xue.php
    77.234.46.222 AVAST Software s.r.o. AVAST Software s.r.o. US
    /wp-content/plugins/showbiz/js/settings.js
    /wp-content/plugins/simple-ads-manager/js/ajaxupload.js
    /wp-content/plugins/Tevolution/js/ajaxupload.js    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.

BlackList IP Digest: 2018.05.02

Digest

Черный Список IP адресов: WordPress +0, RDP +2, Remotely Anywhere +4, FTP +0, xScan +6, Reg-Bot +0, DDoS +0

197.241.22.232, 71.166.56.82, 107.173.160.87, 52.66.171.77, 61.177.125.102, 80.211.185.164, 31.181.4.104, 34.210.72.223, 41.111.13.136, 54.187.213.44, 95.10.30.199, 94.73.146.33

Восстановление сайтов WordPress после взлома.

  • Remotely Anywhere BruteForce
    IP Address Host
    52.66.171.77 Amazon.com Amazon.com IN
    61.177.125.102 China Telecom China Telecom jiangsu CN
    107.173.160.87 ColoCrossing ColoCrossing US
    80.211.185.164 Aruba S.p.A. Aruba S.p.A. IT
  • RDP BruteForce
    IP Address Host
    197.241.22.232 Djibouti Telecom S.A. Djibouti Telecom S.A. DJ
    71.166.56.82 Verizon Fios Verizon Fios US
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    54.187.213.44 Amazon.com Amazon.com US
    /forum/register.php
    /administrator
    /admin
    /user/login
    95.10.30.199 Turk Telekom Turk Telekom TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    94.73.146.33 Cizgi Telekomunikasyon Anonim Sirketi Cizgi Telekomunikasyon Anonim Sirketi TR
    /js/mage/cookies.js
    31.181.4.104 Rostelecom Rostelecom RU
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/XAttacker.php
    /wp-content/plugins/downloads-manager/upload/XAttacker.php
    /wp-content/plugins/formcraft/file-upload/server/php
    /wp-content/uploads/_input_3_css.php.jd
    /wp-content/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/Avada/framework/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    /wp-content/themes/striking_r/framework/plugins/revslider/temp/update_extract/revslider/XAttacker.php
    34.210.72.223 Amazon.com Amazon.com US
    /wp-content/plugins/simple-ads-manager/js/slider/tmpl.js
    /wp-content/plugins/wp-mobile-detector/cache/db.php
    /wp-content/plugins/formcraft/file-upload/server/upload.php
    /wp-content/plugins/revslider/temp/update_extract/revslider/db.php
    /wp-content/plugins/wp-symposium/server/index.php
    /wp-content/plugins/wp-symposium/server/ACZwHsYZgzGdwL.php
    /wp-content/upgrade/theme-compat/popup-pomo.php
    /images/stories/c00d.php
    /images/xxu.php
    /x.php
    /functions.php
    /images/1ndex.php
    /tmp.php
    41.111.13.136 Telecom Algeria Telecom Algeria DZ
    /admin
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/v5.php
    /wp-content/plugins/downloads-manager/upload/v5.php
    /wp-content/plugins/formcraft/file-upload/server/php    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.

BlackList IP Digest: 2018.05.01

Digest

Черный Список IP адресов: WordPress +0, RDP +1, Remotely Anywhere +3, FTP +0, xScan +8, Reg-Bot +0, DDoS +1

123.249.45.69, 18.204.250.45, 185.200.117.38, 51.15.230.163, 119.59.102.83, 167.114.143.93, 176.144.213.132, 185.7.214.19, 35.196.102.136, 45.32.73.190, 195.154.173.101, 66.249.75.27

Восстановление сайтов WordPress после взлома.

  • DDoS (Hack & Destroy WWW-Server)
    IP Address Host
    119.59.102.83 MetraByte MetraByte TH
    /…/&sa=U&ved=0…
  • xScan from Search-Bot and CDN. Achtung! (Scan Attempts: System & Plugins)
    IP Address Host
    66.249.75.27 Googlebot Googlebot US
    /wp-content/plugins/wordpress-popular-posts/public/js/tracking.js
    /wp-content/plugins/anti-spam/js/anti-spam-4.3.js
  • Remotely Anywhere BruteForce
    IP Address Host
    51.15.230.163 ONLINE SAS ONLINE SAS FR
    18.204.250.45 Amazon.com Amazon.com US
    185.200.117.38 UK Web.Solutions Direct Ltd M247 LTD Singapore Infrastructure SG
  • RDP BruteForce
    IP Address Host
    123.249.45.69 Wonten Network China Telecom CN
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    119.59.102.83 MetraByte MetraByte TH
    /wp-content/themes/delicate/timthumb.php
    /statistics/themes/wp-content/themes/delicate/timthumb.php
    195.154.173.101 ONLINE S.A.S. Iliad-Entreprises FR
    /wp-content/plugins/simple-ads-manager/js/slider/tmpl.js
    /wp-content/plugins/wp-mobile-detector/cache/db.php
    /wp-content/plugins/formcraft/file-upload/server/upload.php
    /wp-content/plugins/revslider/temp/update_extract/revslider/db.php
    /wp-content/plugins/wp-symposium/server/index.php
    /wp-content/plugins/wp-symposium/server/NIBdybVPmvxntm.php
    176.144.213.132 Bouygues Telecom Bouygues Telecom FR
    /plupload/2x.php
    /cache/version.php
    /media/system/css
    /tmp/plupload
    45.32.73.190 Choopa, LLC Choopa, LLC US
    /admin
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/v5.php
    /wp-content/plugins/downloads-manager/upload/v5.php
    /wp-content/plugins/formcraft/file-upload/server/php
    167.114.143.93 OVH Hosting OVH Hosting CA
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    185.7.214.19 Qual.it S.a.s. Qual.it S.a.s. FR
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/XAttacker.php
    /wp-content/plugins/downloads-manager/upload/XAttacker.php
    /wp-content/plugins/formcraft/file-upload/server/php
    /wp-content/uploads/_input_3_css.php.jd
    35.196.102.136 Google Cloud Google Cloud US
    /wp-content/plugins/simple-ads-manager/js/slider/tmpl.js
    /wp-content/plugins/wp-mobile-detector/cache/db.php
    /wp-content/plugins/formcraft/file-upload/server/upload.php
    /wp-content/plugins/revslider/temp/update_extract/revslider/db.php
    /wp-content/plugins/wp-symposium/server/index.php    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.

BlackList IP Digest: 2018.04.30

Digest

Черный Список IP адресов: WordPress +0, RDP +0, Remotely Anywhere +4, FTP +0, xScan +6, Reg-Bot +0, DDoS +0

119.10.82.219, 167.99.85.7, 185.43.137.12, 222.124.18.155, 178.80.13.60, 37.26.23.180, 78.111.49.148, 88.232.81.84, 37.115.185.236, 37.115.203.249

Восстановление сайтов WordPress после взлома.

  • Remotely Anywhere BruteForce
    IP Address Host
    185.43.137.12 Urzad Miasta Bielsko Biala Urzad Miasta Bielsko Biala PL
    222.124.18.155 PT. Telekomunikasi Indonesia PT Telkom Indonesia ID
    119.10.82.219 XinNet Technology Corp. China Unicom Beijing CN
    167.99.85.7 Digital Ocean Digital Ocean GB
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    88.232.81.84 Turk Telekom Turk Telekom TR
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    37.115.185.236 Kyivstar PJSC Kyivstar GSM UA
    /blog/xmlrpc.php
    37.115.203.249 Kyivstar PJSC Kyivstar GSM UA
    /bitrix/admin
    /admin.php
    /user
    178.80.13.60 Mobily Mobily SA
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/neon.php
    /wp-content/plugins/downloads-manager/upload/neon.php
    /wp-content/plugins/formcraft/file-upload/server/php
    /wp-content/uploads/_input_3_css.php.jd
    37.26.23.180 Uninet Uninet AZ
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    78.111.49.148 SOL SOL AZ
    /administrator
    /admin.php
    /bitrix/admin
    /admin
    /user    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.

BlackList IP Digest: 2018.04.29

Digest

Черный Список IP адресов: WordPress +0, RDP +2, Remotely Anywhere +3, FTP +0, xScan +2, Reg-Bot +0, DDoS +0

31.13.176.209, 185.222.201.20, 103.207.39.166, 104.244.72.82, 207.148.125.97, 183.128.42.131, 194.135.171.209

Восстановление сайтов WordPress после взлома.

  • Remotely Anywhere BruteForce
    IP Address Host
    103.207.39.166 Vietnam Posts And Telecommunications Group Vietnam Posts and Telecommunications(VNPT) VN
    207.148.125.97 Choopa, LLC Choopa, LLC SG
    104.244.72.82 FranTech Solutions FranTech Solutions LU
  • RDP BruteForce
    IP Address Host
    31.13.176.209 Closed Joint Stock Company Kuzbassenergosviaz Closed Joint Stock Company Kuzbassenergosviaz RU
  • RDP DDoS BruteForce
    IP Address Host
    185.222.201.20 Global Data Networks LLC Global Data Networks LLC UA
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    194.135.171.209 Baktelekom Baktelekom AZ
    /administrator
    /admin.php
    /bitrix/admin
    /admin/login.php
    /admin
    /user
    183.128.42.131 China Telecom Zhejiang China Telecom Hangzhou CN
    /plus/90sec.php
    /plus/moon.php
    /plus/spider.php
    /plus/e7xue.php
    /plus/mycak.php
    /plus/mybak.php
    /plus/x.php
    /plus/service.php    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.

BlackList IP Digest: 2018.04.27

Digest

Черный Список IP адресов: WordPress +0, RDP +1, Remotely Anywhere +4, FTP +0, xScan +6, Reg-Bot +0, DDoS +1

31.134.34.138, 173.212.220.42, 174.138.5.127, 181.56.255.220, 217.195.185.45, 5.189.203.72, 112.132.215.90, 202.129.206.238, 41.102.47.192, 41.105.215.155, 66.249.64.13

Восстановление сайтов WordPress после взлома.

  • DDoS (Hack & Destroy WWW-Server)
    IP Address Host
    202.129.206.238 Nipa Technology Co. Nipa Technology Co. TH
    /images/jdownloads/screenshots/.libs.up.php.j
    /images/jdownloads/screenshots/.libs.up.php.i
    /images/jdownloads/screenshots
    /cache
    /media/system/js
  • xScan from Search-Bot and CDN. Achtung! (Scan Attempts: System & Plugins)
    IP Address Host
    66.249.64.13 Googlebot Googlebot US
    /wp-content/plugins/anti-spam/js/anti-spam-4.3.js
    /wp-content/plugins/wordpress-popular-posts/public/js/tracking.js
    /wp-content/plugins/wp-postratings/postratings-js.js
    /wp-content/plugins/anti-spam/js/anti-spam-4.2.js
  • Remotely Anywhere BruteForce
    IP Address Host
    217.195.185.45 fuzion A/S fuzion A/S DK
    174.138.5.127 Digital Ocean Digital Ocean NL
    173.212.220.42 Contabo GmbH Contabo GmbH DE
    181.56.255.220 Telmex Colombia S.A. Telmex Colombia S.A. CO
  • RDP BruteForce
    IP Address Host
    31.134.34.138 IRONNET Ltd. IRONNET Ltd. RU
  • xScan (Scan Attempts: System & Plugins)
    IP Address Host
    41.105.215.155 Telecom Algeria Telecom Algeria DZ
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/XAttacker.php
    /wp-content/plugins/downloads-manager/upload/XAttacker.php
    /wp-content/plugins/formcraft/file-upload/server/php
    /wp-content/uploads/_input_3_css.php.jd
    5.189.203.72 Petersburg Internet Network ltd. Depo40 SG
    /wp-content/languages/themes/upcache.php
    /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/static/cache.php
    /wp-content/languages/themes/timturl.php
    /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/static/timcache.php
    /wp-content/plugins/nextgen-gallery/nextgen-gallery/products/photocrati_nextgen/modules/static/timcache.php
    112.132.215.90 China Unicom Liaoning Anhui Unicom IP CN
    /admin/_content/_About/AspCms_AboutEdit.asp
    /plus/moon.php
    /api.php
    /shopadmin
    202.129.206.238 Nipa Technology Co. Nipa Technology Co. TH
    /images/jdownloads/screenshots/.libs.up.php.j
    /images/jdownloads/screenshots/.libs.up.php.i
    /images/jdownloads/screenshots/.libs.up.php4.i
    /cache/304.php
    41.102.47.192 Telecom Algeria Telecom Algeria DZ
    /wp-content/plugins/revslider/temp/update_extract/RxR__gvdzk.php
    /wp-content/plugins/showbiz/temp/update_extract/RxR__gvdzk.php
    /wp-content/plugins/reflex-gallery/admin/scripts/FileUploader/php.php
    /wp-content/plugins/Tevolution/tmplconnector/monetize/templatic-custom_fields/single-upload.php
    /wp-content/themes/Directory/images/RxR__gvdzk.php
    /wp-content/plugins/cherry-plugin/admin/import-export/upload.php
    /wp-content/plugins/cherry-plugin/admin/import-export/RxR__gvdzk.php    		 
* Записи отсортированы по времени обнаружения.
накопительный файл IP адресов по каждой категории можно бесплатно скачать на странице Download Blacklist.
** Чтобы, автоматически получать регулярный BruteForce IP Digest на свой email - просто зарегистрируйте подписку.