GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   These IP's are Password Hunting NOW... Block them here. (https://gfy.com/showthread.php?t=470625)

SplitInfinity 05-22-2005 09:55 AM
These IP's are Password Hunting NOW... Block them here.
 
Ok, so I have been looking around at various sites here at SplitInfinity
looking to make a global brute forcer block list... this weekend, I have
detected all of the following IP's are curently engaged in major brute force attacks against adult sites and others...

If you are on Linux/CentOS/Fedora/RedHat etc.... you can just copy and
paste this to a file called stopbrutes.sh, then chmod it chmod +x stopbrutes.sh and execute it like this: ./stopbrutes.sh

That will keep them mostly away from you. ;-)
These guys have alot of ip's at their disposal,
so I would not be suprised if I end up posting more.

If you have your own method of blocking ip's, I have listed them individually below this...

SplitInfinity 05-22-2005 09:56 AM
These ip's should be blocked as entire class C ranges, as the attackers are rotating through IP space on them...


12.101.152.130
12.14.248.201
12.216.18.78
12.216.61.127
12.217.53.101
12.218.166.51
12.29.39.195
12.30.16.50
12.38.194.66
12.217.227.94
128.112.225.247
129.33.12.41
129.44.176.140
130.157.105.67
140.127.194.162
140.95.204.35
141.153.243.200
143.248.139.169
148.208.221.12
148.244.150.52
148.244.150.52
149.121.12.4
158.130.6.254
163.16.30.50
163.22.41.5
163.28.33.228
165.228.131.11
168.11.49.5
170.145.102.22
170.211.184.1
172.159.232.122
172.181.180.134
172.183.71.113
172.203.167.204
193.140.129.194
193.140.140.70
193.170.123.19
193.170.207.5
193.171.32.4
193.170.207.5
193.179.29.162
193.197.168.75
193.188.105.22
194.109.237.202
194.225.138.10
194.27.158.2
194.63.196.89
194.95.77.26
195.136.7.204
195.184.105.98
195.184.37.21
195.245.185.18
195.29.64.55
195.55.164.8
195.92.168.178
195.92.67.76
195.92.67.78
195.92.67.67
196.29.192.6
196.3.88.50
196.40.62.126
198.209.172.95
199.181.178.37
200.107.34.233
200.161.251.1
200.178.216.80
200.180.220.82
200.185.235.72
200.201.179.50
200.241.140.130
200.35.81.254
201.130.101.137
201.138.31.233
201.8.231.4
201.9.24.254
201.9.19.77
202.128.69.58
202.154.157.202
202.175.183.140
202.175.183.140
202.5.198.130
202.52.54.165
202.58.240.19
202.89.166.39
203.113.132.36
203.116.214.2
203.116.214.2
203.144.216.211
203.146.227.227
203.169.250.29
203.199.92.158
203.200.160.50
203.210.226.60
203.74.111.25
203.90.127.147
204.59.5.199
204.87.63.254
206.49.180.140
207.248.240.118
209.152.70.5
208.177.247.170
209.152.70.5
209.161.218.85
209.233.5.163
210.0.209.47
210.145.99.18
210.193.7.126
210.22.155.236
210.22.159.83
210.232.26.52
210.240.77.6
210.82.40.243
211.114.68.60
211.126.213.36
211.146.6.11
211.170.58.116
211.43.104.137
211.76.98.134
211.8.99.233
211.98.24.6
212.0.128.2
212.135.162.82
212.172.64.218
212.195.124.144
212.199.249.206
212.6.108.141
212.68.230.95
212.84.151.52
213.113.224.42
213.130.142.98
213.139.47.84
213.142.170.105
213.162.50.228
213.168.105.241
213.196.246.38
213.201.178.130
213.23.200.9
216.112.208.132
216.126.141.40
216.154.206.80
216.30.246.83
216.37.138.189
216.38.142.250
216.65.218.5
216.78.15.80

SplitInfinity 05-22-2005 09:56 AM
/sbin/iptables -A INPUT -j REJECT -s 205.188.116.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 205.188.117.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 205.188.118.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 67.180.155.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.5.18.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 64.12.116.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 64.12.117.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 70.246.195.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 24.80.168.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.52.186.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.52.162.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 24.136.20.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.93.237.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 152.163.100.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 205.208.226.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.54.150.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.54.182.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.93.21.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.245.216.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 201.252.134.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 212.179.194.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 24.203.140.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.101.152.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.14.248.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.216.18.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.216.61.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.217.53.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.218.166.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.29.39.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.30.16.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.38.194.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 12.217.227.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 128.112.225.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 129.33.12.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 129.44.176.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 130.157.105.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 140.127.194.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 140.95.204.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 141.153.243.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 143.248.139.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 148.208.221.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 148.244.150.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 148.244.150.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 149.121.12.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 158.130.6.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 163.16.30.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 163.22.41.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 163.28.33.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 165.228.131.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 168.11.49.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 170.145.102.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 170.211.184.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 172.159.232.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 172.181.180.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 172.183.71.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 172.203.167.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 193.140.129.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 193.140.140.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 193.170.123.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 193.170.207.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 193.171.32.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 193.170.207.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 193.179.29.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 193.197.168.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 193.188.105.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 194.109.237.0/24 -d 0/0 -p all

SplitInfinity 05-22-2005 09:57 AM
/sbin/iptables -A INPUT -j REJECT -s 194.225.138.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 194.27.158.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 194.63.196.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 194.95.77.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.136.7.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.184.105.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.184.37.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.245.185.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.29.64.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.55.164.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.92.168.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.92.67.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.92.67.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.92.67.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 196.29.192.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 196.3.88.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 196.40.62.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 198.209.172.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 199.181.178.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.107.34.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.161.251.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.178.216.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.180.220.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.185.235.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.201.179.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.241.140.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 200.35.81.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 201.130.101.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 201.138.31.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 201.8.231.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 201.9.24.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 201.9.19.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 202.128.69.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 202.154.157.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 202.175.183.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 202.175.183.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 202.5.198.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 202.52.54.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 202.58.240.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 202.89.166.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.113.132.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.116.214.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.116.214.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.144.216.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.146.227.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.169.250.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.199.92.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.200.160.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.210.226.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.74.111.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.90.127.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 204.59.5.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 204.87.63.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 206.49.180.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 207.248.240.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 209.152.70.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 208.177.247.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 209.152.70.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 209.161.218.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 209.233.5.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 210.0.209.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 210.145.99.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 210.193.7.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 210.22.155.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 210.22.159.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 210.232.26.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 210.240.77.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 210.82.40.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 211.114.68.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 211.126.213.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 211.146.6.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 211.170.58.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 211.43.104.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 211.76.98.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 211.8.99.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 211.98.24.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 212.0.128.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 212.135.162.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 212.172.64.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 212.195.124.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 212.199.249.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 212.6.108.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 212.68.230.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 212.84.151.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.113.224.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.130.142.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.139.47.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.142.170.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.162.50.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.168.105.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.196.246.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.201.178.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.23.200.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 216.112.208.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 216.126.141.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 216.154.206.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 216.30.246.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 216.37.138.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 216.38.142.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 216.65.218.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 216.78.15.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 172.143.246.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 207.161.42.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.199.79.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 24.65.57.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 67.111.137.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 70.24.149.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 71.10.73.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 83.226.9.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 84.154.246.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 84.167.128.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 84.190.88.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 85.74.56.0/24 -d 0/0 -p all

ProjectNaked 05-22-2005 10:08 AM
nice work :thumbsup

Shooting_Manic 05-22-2005 10:10 AM
Damn!


Nice find!

SplitInfinity 05-22-2005 10:38 AM
I will be posting more over the next day or so as I update the list.
Im using that to protect all of our customers servers against those idiots password hunting.

opflix 05-22-2005 10:52 AM
thanks.... needed this

Juicy D. Links 05-22-2005 10:55 AM
yo those are my ip's why you block? I want free porn so i can masturbate :-(

SplitInfinity 05-22-2005 11:01 AM
Juicy, it HAD to be done man. We got tired of you slipping in our back door! LOL

SplitInfinity 05-22-2005 11:16 AM
Updated additional IPs to block:

194.117.134.72
195.210.65.24
203.115.71.10
211.75.91.2
213.103.229.181
195.238.140.45
24.103.187.139
24.171.132.45
24.253.246.182
59.187.233.135
59.92.143.175
61.221.192.219
62.127.121.23
61.219.36.134
62.245.231.130
63.239.116.254
65.171.1.12
65.188.197.242
65.188.227.24
66.214.5.210
67.166.55.109
82.112.196.50
82.194.62.22


/sbin/iptables -A INPUT -j REJECT -s 194.117.134.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.210.65.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 203.115.71.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 211.75.91.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 213.103.229.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 195.238.140.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 24.103.187.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 24.171.132.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 24.253.246.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 59.187.233.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 59.92.143.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 61.221.192.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 62.127.121.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 61.219.36.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 62.245.231.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 63.239.116.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 65.171.1.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 65.188.197.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 65.188.227.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 66.214.5.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 67.166.55.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 82.112.196.0/24 -d 0/0 -p all
/sbin/iptables -A INPUT -j REJECT -s 82.194.62.0/24 -d 0/0 -p all

Hinc 05-22-2005 11:30 AM
Hmmm you blocked all my visitors ....which is sad really :)

pr0 05-22-2005 01:23 PM
Here block all these too

84.241.6.3:80
84.50.73.110:80
84.16.228.179:8080
82.190.181.197:8080
82.112.196.50:8080
81.4.168.122:80
81.36.68.201:80
82.89.49.35:8080
82.67.10.175:80
81.144.146.194:8080
82.205.221.7:80
81.36.49.108:80
80.53.93.34:6588
81.57.250.213:6588
80.38.183.201:80
80.38.15.101:80
81.4.168.138:80
82.161.48.17:8080
80.46.33.2:8000
80.26.113.195:80
80.59.91.33:80
80.32.139.107:80
80.26.116.218:80
80.25.156.238:80
80.245.39.46:80
80.237.140.233:6588
80.24.166.51:80
69.142.157.228:80
80.100.1.133:3128
68.121.214.236:444
80.33.255.220:80
68.167.57.14:80
68.106.49.246:8080
67.99.5.145:80
68.37.115.208:3382
80.177.102.242:80
66.208.233.86:444
66.208.203.98:444
66.133.86.10:80
66.114.116.22:80
80.25.150.39:80
66.12.239.138:444
65.43.75.57:444
67.180.239.246:80
64.235.204.179:8080
64.142.100.75:444
64.139.2.232:444
63.89.11.236:80
63.218.109.130:8080
65.241.12.142:80
63.78.104.66:3128
62.93.97.90:80
62.121.71.181:80
61.25.68.235:8080
64.60.241.186:444
62.245.231.130:80
61.219.48.218:80
61.218.108.91:3128
221.195.72.51:3128
67.153.93.162:80
219.94.45.37:8080
219.72.233.97:8080
219.21.44.119:8080
24.123.210.70:80
221.186.138.132:80
219.166.112.114:80
219.52.160.180:8080
218.28.135.196:8080
24.17.78.177:3382
218.214.170.193:80
218.21.91.198:3128
218.139.174.75:8080
219.110.61.61:8080
218.97.253.217:80
218.76.51.3:8080
219.163.53.83:444
218.26.249.106:3128
217.27.162.57:80
218.34.32.21:80
217.125.21.161:80
216.30.246.83:8080
217.91.114.188:80
217.153.31.56:80
216.37.138.189:80
221.15.5.4:8080
217.180.28.210:80
213.217.40.165:8080
216.154.206.80:80
217.125.102.198:80
213.139.47.84:8080

pr0 05-22-2005 01:23 PM
And these

213.98.174.116:80
213.201.178.131:80
212.172.64.220:80
217.125.36.76:80
213.162.50.228:80
211.98.24.6:8080
211.231.187.4:80
213.98.147.33:80
212.0.128.2:80
211.138.91.30:8080
211.138.91.21:8080
212.0.128.15:80
210.82.185.41:3128
211.126.213.36:8080
210.17.252.52:3128
212.199.177.63:80
210.240.77.6:80
210.105.204.13:80
210.193.7.126:8080
210.17.170.14:3128
207.248.240.119:80
210.61.82.71:80
210.212.204.242:80
207.248.240.118:80
212.100.208.203:8080
206.72.21.225:80
204.153.192.1:80
203.199.92.158:80
203.90.127.147:80
203.169.250.29:80
203.144.216.211:80
202.92.84.142:80
202.47.233.234:80
203.146.227.227:80
202.175.60.214:80
202.133.218.46:3128
201.6.188.20:6588
203.96.25.7:80
195.55.164.8:80
202.103.208.17:3128
203.172.143.210:8080
194.129.118.249:8080
203.116.214.2:80
202.5.198.130:80
193.140.129.194:8080
168.143.113.13:80
163.30.203.246:8080
148.244.150.58:80
148.244.150.57:80
202.128.84.65:80
200.193.34.145:80
196.201.165.72:3128
148.244.150.52:80
133.96.34.31:444
192.165.223.227:80
69.213.29.133:3128
166.114.30.40:8080
202.175.60.218:80
200.242.249.70:80
195.234.171.50:7032
12.29.39.196:80
218.188.13.210:80
193.140.129.194:80
67.182.158.147:2301
210.163.44.195:80
62.7.244.105:80
24.19.180.44:2301
80.227.56.46:8080
194.204.223.17:8000
210.163.44.195:8080
210.245.164.201:444
194.30.228.12:80
219.187.196.210:8080
213.255.224.143:3128
203.146.86.72:80
68.62.227.135:2301
219.25.20.151:8080
139.164.159.14:80
148.223.216.173:80
212.123.204.115:80
24.248.80.34:8000
212.234.28.89:80
212.0.128.240:80
82.154.249.248:8080
213.201.178.132:80
193.170.210.9:80
195.115.187.141:80
210.141.111.34:444
213.86.212.230:80
202.83.174.42:80
81.56.141.13:80
203.146.86.72:8080
219.117.195.49:444
212.115.12.1:80
202.224.24.121:8080
210.196.191.78:444
168.172.128.94:80
68.96.3.213:8880
211.78.176.252:8080
80.53.110.172:80
128.200.165.20:2301
216.60.21.4:80
68.153.138.82:3128
217.219.47.116:3128
212.234.28.91:80
199.181.178.37:8080
203.154.67.164:8080
83.16.60.46:80
200.55.200.79:80
196.201.66.250:8080
24.11.51.160:3382
213.42.171.24:3128
166.114.30.40:80
65.165.84.11:80
202.84.100.45:3128
80.53.82.58:80
168.11.49.5:8080
80.53.250.110:3128
193.140.140.76:8080
61.144.222.49:443
71.2.75.174:2301
80.26.37.180:80
168.143.113.12:80
80.38.212.134:80
212.0.132.122:8080
64.214.203.80:80
68.32.224.7:2301
80.26.68.227:80
82.161.48.17:80
203.162.29.180:8080
12.107.81.180:444
24.97.174.130:80
202.59.200.197:2301
200.107.34.233:80
80.24.210.73:80
202.110.36.15:8080
65.171.1.12:8080
210.73.73.108:80
217.126.2.122:80
202.79.220.50:3124
219.149.233.179:8080
80.32.218.175:80
61.150.115.245:8080
69.160.100.230:2301
62.0.13.2:80
195.229.220.133:8080
194.95.77.26:80
80.38.3.248:80
62.103.24.140:80
216.189.194.231:444
195.115.187.140:80
129.33.12.41:80
140.112.107.80:3124
129.33.12.42:80
140.112.107.80:3128
66.75.178.55:8080
193.170.123.19:8080
202.79.220.50:3128
202.83.175.98:8080
218.94.61.136:80
200.201.179.50:8080
221.116.134.22:8080
12.178.95.126:81
219.157.155.249:3128
61.0.62.4:8080
64.69.126.242:80
200.69.121.134:8080
24.239.248.21:80
193.170.123.17:8080
81.202.87.36:6588
67.191.59.181:3382
195.228.228.120:3128
80.35.16.54:80
165.248.104.111:80
202.3.241.84:8080
66.193.160.33:80
81.56.240.106:80
140.112.107.82:3128
80.32.151.115:80
202.79.220.49:3127
128.151.65.101:3128
219.163.61.66:444
165.228.244.158:80
130.136.254.22:3128
143.248.139.169:3124
202.79.220.51:3128
134.2.205.227:3127
128.223.6.112:3127
129.242.19.197:3128
138.251.214.18:3128
199.77.128.193:3128
128.223.6.113:3128
128.31.1.17:3128
61.208.132.2:80
202.79.220.51:3124
147.46.240.165:3128
66.133.86.13:80
130.192.86.29:3128
128.232.103.203:3128
194.129.118.249:80
128.232.103.201:3128
200.196.101.98:80
12.156.112.20:9001
203.162.44.93:8080
210.238.249.12:80
128.223.6.111:3127
12.163.136.1:80
129.240.67.16:3128
193.10.64.35:3127
200.141.76.229:8080
129.137.253.253:3127
202.82.11.92:8080
164.67.194.226:3128
129.10.120.112:3124
147.83.118.126:3128
202.79.220.51:3127
129.97.75.240:3128
203.66.139.142:3129
147.46.240.166:3124
128.151.65.101:3127
134.2.205.227:3124
200.141.76.229:80
200.226.137.10:8080
200.141.76.230:80
130.208.18.30:3128
128.8.126.12:3124
198.163.152.230:3128
200.141.76.230:8080
200.226.137.10:80
12.38.218.1:80
147.83.118.125:3124
143.248.139.168:3124
202.79.220.49:3128
129.170.214.192:3127
211.138.91.21:80
200.132.0.70:3128
202.79.220.49:3124
210.107.249.32:3124
132.72.23.10:3128
140.112.107.82:3124
217.219.151.11:80
129.137.253.253:3128
128.31.1.13:3128
62.56.208.136:80
213.217.40.165:80
203.154.188.226:8080
24.232.160.195:2301
147.46.240.166:3128
200.129.0.162:3128
202.79.220.50:3127
130.208.18.30:3127
212.5.194.40:3128
130.136.254.22:3124
212.0.132.7:80
132.72.23.11:3124
193.10.64.36:3128
132.72.23.11:3128
194.80.38.243:3127
147.83.118.124:3128
139.91.70.61:3128
80.237.140.233:80
200.13.22.25:80
12.43.192.132:444
203.155.106.90:80
128.31.1.14:3128
61.24.112.80:8080
218.146.46.245:40050
201.245.130.110:444
203.86.24.247:8080
85.136.14.218:2301
24.107.73.216:3382
218.229.247.189:8080
12.216.61.127:2301
137.122.196.25:2301
201.245.175.175:8081
80.237.140.233:3128
68.20.44.177:444
24.232.176.233:6588
137.229.10.109:2301
202.132.1.25:8000
212.156.221.188:80
218.104.85.101:81
68.60.131.20:3382
12.218.166.51:2301
69.110.237.116:3128
68.52.153.95:2301
12.217.53.101:2301
198.183.172.232:2301
80.237.140.233:8000
164.58.182.2:8000
202.134.178.34:3128
64.86.208.212:80
200.96.154.9:6588
61.208.132.2:8080
142.169.231.186:80
220.162.198.229:3128
66.208.237.150:444
84.40.137.18:80
12.217.71.239:2301
203.94.67.118:80
61.240.130.34:8080
201.245.172.11:8002
80.237.140.233:8008
213.176.112.6:8080
80.53.202.134:80
169.139.218.29:8080
67.161.103.164:444
12.101.152.131:80
203.115.162.227:3128
200.226.137.9:8080
200.226.137.13:80
69.11.157.46:444
200.226.137.11:8080
148.223.216.167:80
198.163.152.229:3124
200.54.170.163:80
134.2.205.228:3124
129.240.228.138:3124
210.107.249.32:3128
130.208.18.30:3124
129.10.120.111:3124
128.223.6.113:3124
67.114.175.242:8000
61.222.216.46:3128
129.10.120.112:3128
64.109.242.65:80
129.170.214.192:3128
152.2.130.67:3128
129.170.214.192:3124
61.177.252.90:8000
128.31.1.14:3124
134.2.205.228:3127
147.46.240.165:3124
200.39.103.224:80
128.8.126.12:3127
128.31.1.12:3128
128.197.13.31:3128
200.226.137.11:80
12.223.123.55:80
164.67.194.225:3127
128.223.6.113:3127
218.87.160.147:3128
209.89.80.73:2301
82.212.40.60:80
82.116.147.1:8080
80.35.245.59:80
80.35.160.31:80
80.33.75.177:80
80.26.58.29:80
80.24.86.247:80
67.99.4.162:80
66.92.57.3:444
66.208.223.146:444
58.0.131.80:8080
220.227.97.29:6588
218.94.76.250:3128
218.188.23.162:8080
218.130.90.113:8080
217.218.233.73:80
213.97.196.205:80
212.170.2.241:80
212.155.169.124:80
210.22.159.84:80
203.113.132.36:80
200.74.12.154:6588
198.79.101.18:3128
193.171.32.4:8080
140.95.203.86:80
82.187.111.132:80
80.191.218.68:80
81.115.31.219:80
210.172.95.138:444
61.127.244.146:444
216.20.117.82:8000
163.20.121.66:80
81.0.78.144:80
80.191.218.68:8080
211.0.55.19:8080
24.64.202.99:6649
66.208.240.70:444
203.81.157.184:8080
140.96.178.113:8080
210.142.187.34:444
209.74.45.71:444
81.80.26.105:8080
64.139.69.228:444
61.23.231.36:8080
217.10.253.239:3128
24.232.250.192:3128
210.146.232.46:80
24.234.114.66:8000
196.203.64.2:8080
195.245.185.18:80
211.162.30.114:8080
211.138.109.34:3128
219.239.110.9:80
218.244.225.180:80
195.184.37.21:80
65.173.174.252:80
200.161.197.232:6588
218.15.61.100:3128
81.56.187.95:80
220.120.92.169:8080
68.110.234.253:8080
202.110.200.74:8080
193.171.32.4:80
200.160.70.234:6588
200.67.149.183:80
207.190.168.3:80
194.133.122.218:8080
196.201.87.61:6588
67.182.249.110:3382
61.131.56.186:3128
201.12.24.253:3128
148.208.221.13:80
202.110.112.44:3128
128.232.103.202:3124
208.216.119.19:3128
164.67.194.226:3127
139.184.48.55:3128
164.67.194.226:3124
128.101.191.244:3128
129.242.19.197:3124
130.208.18.29:3128
129.242.19.196:3128
129.97.75.238:3124
129.170.214.191:3127
130.161.40.153:3127
147.83.118.109:3128
132.187.230.1:3127
128.232.103.202:3128
129.97.75.238:3128
202.30.9.75:2301
200.19.159.35:3128
64.165.27.107:444
219.144.196.202:8080
219.93.1.210:8080
218.26.211.18:8080
209.150.92.205:2301
61.134.38.230:3128
218.87.14.252:3128
128.101.191.244:3124
129.132.57.2:3127
128.151.65.101:3124
192.16.134.137:8080
130.208.18.29:3124
128.31.1.17:3124
128.31.1.16:3124
128.31.1.16:3128
132.187.230.1:3124
147.83.118.125:3128
129.10.120.111:3128
130.37.198.243:3128
129.170.214.191:3128
66.208.202.9:8002
81.22.95.139:6588
128.8.126.12:3128

pr0 05-22-2005 01:24 PM
I got about 6,000,000 more, want me to list em?

:1orglaugh :1orglaugh :1orglaugh

fireorange 05-22-2005 01:28 PM
Why not automatically block all TCP connections from source port 8080 or 3128 or HTTP connections with HTTP_X_FORWARDED_FOR in the header EXCEPT AOL connections?

fireorange 05-22-2005 01:29 PM
Though that might create too many problems, especially for shitty ISPs that utilize transparent proxy caches.

pxxx 05-22-2005 01:31 PM
Good work, way to step it up Split.

SquireMD 05-22-2005 01:31 PM
you sure this isn't some new way to get splitjoel? something tells me one of those IPs is his...

Hinc 05-22-2005 01:48 PM
Btw - are you sure this is the best way, might actually block some custumers as well?

SplitInfinity 05-22-2005 02:23 PM
No, this isnt blocking any customers at all.... it is specifically blocking IP ranges dedicated to network customers out there in the world who are using them for
password data-mining. In those cases, the entire class C is delegated to the
password harvesting server doing the attacks.

SplitInfinity 05-22-2005 02:23 PM
And Joels IP, well I could just shut that off at the router. :-)

But I need him to work, so I wont play jokes with him on that level. :-)

tedwinters 05-22-2005 02:26 PM
So basically you're listing proxies for us? :)

SplitInfinity 05-22-2005 02:27 PM
Actually, you can see their method of attack... they stand out like a sort thumb.
Take this file which is a recent sample I did just about an hour ago...


http://www.splitinfinity.com/brutes.txt

Scan through that.... can you identify the brute forcers? :-) Easy.

Look for sections that look like this:

204.186.159.229 anthonym
204.186.159.229 army100
204.186.159.229 bluepoint
204.186.159.229 cuco
204.186.159.229 EDOG12
204.186.159.229 fibbsjc
204.186.159.229 forxxxhq
204.186.159.229 gdromey
204.186.159.229 joe412
204.186.159.229 judges
204.186.159.229 laura
204.186.159.229 n6tb6x
204.186.159.229 pikedirk
204.186.159.229 tammygranville


Or better equipped brute forcers do it like this:



207.200.116.12 grimlok
207.200.116.12 grimlok
207.200.116.12 grimlok
207.200.116.12 grimlok
207.200.116.130 grimlok
207.200.116.131 grimlok
207.200.116.131 grimlok
207.200.116.131 grimlok
207.200.116.131 grimlok
207.200.116.131 grimlok
207.200.116.132 grimlok
207.200.116.132 grimlok
207.200.116.132 grimlok
207.200.116.132 grimlok
207.200.116.132 grimlok
207.200.116.132 grimlok
207.200.116.132 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.133 grimlok
207.200.116.135 grimlok
207.200.116.135 grimlok
207.200.116.137 -
207.200.116.137 grimlok
207.200.116.137 grimlok
207.200.116.137 grimlok
207.200.116.137 grimlok
207.200.116.137 grimlok
207.200.116.138 grimlok
207.200.116.138 grimlok
207.200.116.139 grimlok
207.200.116.139 grimlok
207.200.116.13 grimlok
207.200.116.13 grimlok
207.200.116.13 grimlok
207.200.116.195 grimlok
207.200.116.195 grimlok
207.200.116.196 grimlok
207.200.116.197 grimlok
207.200.116.198 grimlok
207.200.116.198 grimlok
207.200.116.200 grimlok

Note the rolling ip's?

D-Money 05-22-2005 02:50 PM
Good lookin' out cuz...


All times are GMT -7. The time now is 06:24 AM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123