Skip to content

Instantly share code, notes, and snippets.

@joshtronic

joshtronic/gist:3b3acc1f91a32d90a666

Created July 16, 2015 22:18
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save joshtronic/3b3acc1f91a32d90a666 to your computer and use it in GitHub Desktop.
Save joshtronic/3b3acc1f91a32d90a666 to your computer and use it in GitHub Desktop.
Download ZIP
systems involved in wordpress pingback ddos attack on 2015-07-15
Raw
gistfile1.txt
pkts bytes target prot opt in out source destination
2535 152K DROP all -- any any ec2-54-245-111-118.us-west-2.compute.amazonaws.com anywhere
11246 675K DROP all -- any any 200.ip-92-222-164.eu anywhere
810K 49M DROP all -- any any 191.ip-92-222-220.eu anywhere
109K 6553K DROP all -- any any 205.185.117.237 anywhere
113K 6759K DROP all -- any any 167.88.116.167 anywhere
1419K 85M DROP all -- any any ns201578.ip-91-121-132.eu anywhere
1580K 95M DROP all -- any any 5.79.16.34 anywhere
11332 589K DROP all -- any any southwind.fr anywhere
35540 2132K DROP all -- any any ec2-176-34-126-157.eu-west-1.compute.amazonaws.com anywhere
3192 192K DROP all -- any any ec2-174-129-20-86.compute-1.amazonaws.com anywhere
102K 6125K DROP all -- any any ec2-54-213-150-237.us-west-2.compute.amazonaws.com anywhere
92061 5524K DROP all -- any any ec2-54-247-114-49.eu-west-1.compute.amazonaws.com anywhere
43481 2609K DROP all -- any any ec2-54-247-83-26.eu-west-1.compute.amazonaws.com anywhere
324K 19M DROP all -- any any ec2-174-129-192-209.compute-1.amazonaws.com anywhere
113K 6796K DROP all -- any any 207.250.73.59 anywhere
90613 5437K DROP all -- any any ec2-54-72-43-120.eu-west-1.compute.amazonaws.com anywhere
108K 6461K DROP all -- any any ec2-54-187-106-157.us-west-2.compute.amazonaws.com anywhere
147K 8821K DROP all -- any any h2238746.stratoserver.net anywhere
44901 2694K DROP all -- any any ec2-46-51-129-71.eu-west-1.compute.amazonaws.com anywhere
97094 5826K DROP all -- any any ec2-174-129-217-85.compute-1.amazonaws.com anywhere
533K 32M DROP all -- any any ec2-50-112-245-227.us-west-2.compute.amazonaws.com anywhere
515K 31M DROP all -- any any ec2-54-186-53-129.us-west-2.compute.amazonaws.com anywhere
208K 12M DROP all -- any any ec2-174-129-9-4.compute-1.amazonaws.com anywhere
334K 20M DROP all -- any any ec2-54-247-102-157.eu-west-1.compute.amazonaws.com anywhere
348K 20M DROP all -- any any mail.navitrade.ru anywhere
765K 46M DROP all -- any any host-24-222-109-50.klis.com anywhere
44006 2640K DROP all -- any any www.cpjmarket.com anywhere
685K 41M DROP all -- any any ec2-54-200-155-18.us-west-2.compute.amazonaws.com anywhere
203K 12M DROP all -- any any ec2-79-125-112-158.eu-west-1.compute.amazonaws.com anywhere
195K 12M DROP all -- any any ec2-50-19-202-76.compute-1.amazonaws.com anywhere
465K 28M DROP all -- any any 190.254.4.11 anywhere
608K 36M DROP all -- any any ec2-50-112-105-187.us-west-2.compute.amazonaws.com anywhere
475K 28M DROP all -- any any ec2-54-72-34-86.eu-west-1.compute.amazonaws.com anywhere
87864 4543K DROP all -- any any 137.117.67.16 anywhere
570K 34M DROP all -- any any ec2-54-194-113-40.eu-west-1.compute.amazonaws.com anywhere
704K 42M DROP all -- any any 69.51.81-178.cutcom.net anywhere
1278K 77M DROP all -- any any evo-mc6.isprime.com anywhere
687K 41M DROP all -- any any 162.221.179.212 anywhere
701K 42M DROP all -- any any 173.192.13.43-static.reverse.softlayer.com anywhere
843K 51M DROP all -- any any ec2-174-129-39-223.compute-1.amazonaws.com anywhere
592K 36M DROP all -- any any 11-67-73-109.rackcentre.redstation.net.uk anywhere
411K 25M DROP all -- any any 202.47.64.27 anywhere
329K 20M DROP all -- any any ec2-54-247-82-175.eu-west-1.compute.amazonaws.com anywhere
382K 23M DROP all -- any any viskyshop.asia anywhere
972K 58M DROP all -- any any 2764096.pubip.peer1.net anywhere
1190K 71M DROP all -- any any 62-210-73-57.rev.poneytelecom.eu anywhere
665K 40M DROP all -- any any 173.239.151.198 anywhere
1252K 75M DROP all -- any any 137.117.36.238 anywhere
681K 41M DROP all -- any any ec2-54-183-111-143.us-west-1.compute.amazonaws.com anywhere
1234K 74M DROP all -- any any 206.246.217.208 anywhere
197K 12M DROP all -- any any host.tatarulez.org anywhere
1013K 61M DROP all -- any any mail1.flexcel.com anywhere
277K 17M DROP all -- any any ec2-107-20-136-153.compute-1.amazonaws.com anywhere
329K 20M DROP all -- any any 67-207-134-75.slicehost.net anywhere
1609K 84M DROP all -- any any 62-210-136-42.rev.poneytelecom.eu anywhere
141K 8433K DROP all -- any any ec2-54-75-239-82.eu-west-1.compute.amazonaws.com anywhere
113K 6778K DROP all -- any any 62-210-82-77.rev.poneytelecom.eu anywhere
687K 41M DROP all -- any any ec2-54-200-144-181.us-west-2.compute.amazonaws.com anywhere
685K 41M DROP all -- any any ec2-54-214-4-246.us-west-2.compute.amazonaws.com anywhere
378K 23M DROP all -- any any ec2-54-244-121-5.us-west-2.compute.amazonaws.com anywhere
401K 24M DROP all -- any any 74.84.218.189 anywhere
887K 53M DROP all -- any any ec2-54-68-208-101.us-west-2.compute.amazonaws.com anywhere
113K 5714K DROP all -- any any ec2-176-34-246-157.eu-west-1.compute.amazonaws.com anywhere
1977K 119M DROP all -- any any ec2-176-34-202-158.eu-west-1.compute.amazonaws.com anywhere
188K 11M DROP all -- any any catern.com anywhere
498K 30M DROP all -- any any ec2-54-251-52-223.ap-southeast-1.compute.amazonaws.com anywhere
2372K 142M DROP all -- any any ec2-54-72-19-21.eu-west-1.compute.amazonaws.com anywhere
954K 57M DROP all -- any any ec2-54-72-102-12.eu-west-1.compute.amazonaws.com anywhere
48341 2900K DROP all -- any any ec2-54-236-237-125.compute-1.amazonaws.com anywhere
543K 33M DROP all -- any any ip-133.thages.se anywhere
121K 6132K DROP all -- any any 65.52.4.233 anywhere
702K 42M DROP all -- any any ec2-54-191-83-42.us-west-2.compute.amazonaws.com anywhere
1068K 64M DROP all -- any any 209.35.60.150 anywhere
253K 15M DROP all -- any any met.metamorphicmedia.com anywhere
936K 56M DROP all -- any any 64.237.5.187 anywhere
453K 27M DROP all -- any any www.mvht.in anywhere
748K 45M DROP all -- any any U101.LoyalistC.ON.CA anywhere
722K 43M DROP all -- any any eonteam.com anywhere
758K 45M DROP all -- any any 23.253.69.82 anywhere
533K 32M DROP all -- any any 226.13.22.157.zocalo.net anywhere
364K 19M DROP all -- any any 166.78.12.208 anywhere
1030K 62M DROP all -- any any li216-7.members.linode.com anywhere
528K 32M DROP all -- any any host-200-6-123-175.iia.cl anywhere
897K 54M DROP all -- any any 195-154-168-36.rev.poneytelecom.eu anywhere
695K 42M DROP all -- any any 50.22.84.5-static.reverse.softlayer.com anywhere
504K 30M DROP all -- any any 154-11-31-64.static.reverse.lstn.net anywhere
154K 8024K DROP all -- any any 81.27.38.153 anywhere
505K 30M DROP all -- any any 195-154-232-153.rev.poneytelecom.eu anywhere
1754K 105M DROP all -- any any 194.58.88.3 anywhere
1037K 62M DROP all -- any any 8.117.255.173.bc.googleusercontent.com anywhere
695K 42M DROP all -- any any linterweb-7.crihan.fr anywhere
1622K 97M DROP all -- any any 31-131-57-165.up.lublin.pl anywhere
949K 57M DROP all -- any any 178.32.0.209 anywhere
598K 36M DROP all -- any any ec2-174-129-32-23.compute-1.amazonaws.com anywhere
707K 42M DROP all -- any any mail.registereverywhere.com anywhere
319K 17M DROP all -- any any 166.78.248.127 anywhere
832K 50M DROP all -- any any 93.157.130.211 anywhere
530K 32M DROP all -- any any 64-76-23-62.static.impsat.net.ar anywhere
790K 41M DROP all -- any any centos612168.aspadmin.net anywhere
331K 17M DROP all -- any any host-14-33-115-66.ciberlynx.net anywhere
700K 42M DROP all -- any any ec2-54-245-114-67.us-west-2.compute.amazonaws.com anywhere
805K 48M DROP all -- any any test2.noxsolutions.com anywhere
373K 22M DROP all -- any any ec2-54-228-100-167.eu-west-1.compute.amazonaws.com anywhere
782K 47M DROP all -- any any 108-171-180-141.static.cloud-ips.com anywhere
818K 49M DROP all -- any any new-wemacventures.com anywhere
663K 40M DROP all -- any any ec2-54-186-225-255.us-west-2.compute.amazonaws.com anywhere
702K 42M DROP all -- any any ec2-54-200-83-123.us-west-2.compute.amazonaws.com anywhere
746K 45M DROP all -- any any ec2-54-183-34-56.us-west-1.compute.amazonaws.com anywhere
752K 38M DROP all -- any any 38.126.146.140 anywhere
827K 50M DROP all -- any any ckedatacentre.com anywhere
854K 51M DROP all -- any any host4.timempresas.us anywhere
628K 38M DROP all -- any any static-host-66-18-62-89.epbinternet.com anywhere
662K 40M DROP all -- any any dreamworldtechnology.com anywhere
2382K 143M DROP all -- any any www.wiselab.fi anywhere
747K 45M DROP all -- any any ec2-54-193-103-80.us-west-1.compute.amazonaws.com anywhere
1014K 61M DROP all -- any any 71-81-19-10.static.gwnt.ga.charter.com anywhere
2274K 136M DROP all -- any any 81.144.193.27 anywhere
1964K 118M DROP all -- any any port-202.energyservices.delme.newnet.co.uk anywhere
1300K 78M DROP all -- any any ec2-54-195-245-81.eu-west-1.compute.amazonaws.com anywhere
2782K 167M DROP all -- any any 62-210-131-233.rev.poneytelecom.eu anywhere
732K 44M DROP all -- any any ec2-54-215-136-208.us-west-1.compute.amazonaws.com anywhere
682K 41M DROP all -- any any ec2-54-187-110-150.us-west-2.compute.amazonaws.com anywhere
806K 48M DROP all -- any any jamespatterson.com anywhere
1292K 83M DROP all -- any any Endeavour-server.stanford.edu anywhere
2363K 142M DROP all -- any any ec2-54-228-218-152.eu-west-1.compute.amazonaws.com anywhere
701K 42M DROP all -- any any ec2-54-68-12-39.us-west-2.compute.amazonaws.com anywhere
2402K 144M DROP all -- any any ec2-54-75-228-89.eu-west-1.compute.amazonaws.com anywhere
@joshtronic
Copy link
Author

http://joshtronic.com/2015/07/16/how-to-stop-wordpress-pingback-ddos-attacks/

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment