Blacklist 1.00 with PeerGuardian's blacklist.

[Lord_Zero]

This version is for informational purposes only and it doesn't block any users. It registers a command !blacklist which will show users from hub that are in PeerGuardian's blacklist and why.
Banning automatically "blacklisted" users from this database is not recommended because it has many wrong ranges in it (Fastweb, some ISPs, universities, etc.).
On request, a new version will have the option to block blacklisted IPs automatically.

Code:

[11:53] <[-TE-]-Lord_Zero> [command] !blacklist
[11:53] *** The following users were found in selected blacklist:

skylimit 193.198.16.211 Spammer
gabata 195.230.4.230 Internet service provider, Software design

[Lord_Zero]

Version 2.00 of Blacklist plugin can also ban users in firewall, and before doing that it will show in opchat the full $MyINFO of banned user to help developers find patters to automatically ban them using other criteria than an IP or IP range.
This version has 2 blacklists (PeerGuardian's blacklist and Public Proxy blacklist), but only one of them can be used at a time.
Install instructions and some usefull settings can be found in readme.txt.
Download links: http://nemesis.te-home.net/HeXHub/Plugins/Blacklist20.zip and http://downloads.sourceforge.net/hexhub/Blacklist20.zip.

[Lord_Zero]

Due to some recent events more hub owners started using blacklist or PeerGuardian. The Blacklist plugin can load only one blacklist at once so here is the big blacklist that has PeerGuardian, Public Proxies and Tor Exit Nodes as requested.

Code:

[01:11] <•HexHub.it•> The user HubertuS (80.54.90.1) was found in blacklist as "E-IMG INTERNET MULTIMEDIA GROUP IZABELA SOBOCKO". Full MyINFO: $MyINFO $ALL HubertuS <++ V:0.674,M:P,H:19/0/1,S:2>$ $Satellite
$$31382537504$|.
[01:13] <•HexHub.it•> The user sdc_Diuzd (147.236.33.144) was found in blacklist as "Israel Local Authorities Data Processing Center Ltd". Full MyINFO: $MyINFO $ALL sdc_Diuzd SababaDC.com<++ V:0.698,M:A,H:12/0/0,S:3>$ $0.005
$$11767322329$|.
[01:13] <•HexHub.it•> The user slade01 (82.100.10.200) was found in blacklist as "Spammer". Full MyINFO: $MyINFO $ALL slade01 passiv<StrgDC++ V:2.05,M:P,H:29/0/0,S:29>$ $0.005
$$39577990748$|.
[01:13] <•HexHub.it•> The user Crt (193.111.144.162) was found in blacklist as "Spammer". Full MyINFO: $MyINFO $ALL Crt <StrgDC++ V:2.03,M:P,H:32/0/1,S:3>$ $Wireless
$crt@wp.pl$12947113613$|.
[01:14] <•HexHub.it•> The user dada_2 (212.179.108.50) was found in blacklist as "GAMES-BEZEQINT". Full MyINFO: $MyINFO $ALL dada_2 Global Warming<++ V:0.674,M:P,H:52/0/0,S:5>$ $Cable
$dotn@thx$68741353802$|.

Code:

[2008-05-06 01:11] <•HexHub.it•> is kicking HubertuS because: Blacklisted: E-IMG INTERNET MULTIMEDIA GROUP IZABELA SOBOCKO _ban0_
[2008-05-06 01:13] <•HexHub.it•> is kicking sdc_Diuzd because: Blacklisted: Israel Local Authorities Data Processing Center Ltd _ban0_
[2008-05-06 01:13] <•HexHub.it•> is kicking slade01 because: Blacklisted: Spammer _ban0_
[2008-05-06 01:13] <•HexHub.it•> is kicking Crt because: Blacklisted: Spammer _ban0_
[2008-05-06 01:15] <•HexHub.it•> is kicking dada_2 because: Blacklisted: GAMES-BEZEQINT _ban0_
[2008-05-06 01:15] <•HexHub.it•> is kicking 2223322 because: Blacklisted: Kuwait Ministry of Communations _ban0_
[2008-05-06 01:15] <•HexHub.it•> is kicking sdc_Dich because: Blacklisted: KIBBUTZ-MISHMAR-HANEGEV-LAN _ban0_
[2008-05-06 01:15] <•HexHub.it•> is kicking halic because: Blacklisted: Hardware-Software _ban0_
[2008-05-06 01:16] <•HexHub.it•> is kicking diorian2 because: Blacklisted: Verestar _ban0_
[2008-05-06 01:16] <•HexHub.it•> is kicking Laerpaajaaa because: Blacklisted:  Electricity Company of Mantsala _ban0_
[2008-05-06 01:16] <•HexHub.it•> is kicking Dexters[LV] because: Blacklisted: Verestar _ban0_
[2008-05-06 01:17] <•HexHub.it•> is kicking Giralapalla because: Blacklisted: PROVIDER _ban0_
[2008-05-06 01:17] <•HexHub.it•> is kicking silvesterssssssss because: Blacklisted: p2p abusers _ban0_
[2008-05-06 01:17] <•HexHub.it•> is kicking g1g1 because: Blacklisted: Hytec Information Security, Security Service Provi _ban0_
[2008-05-06 01:17] <•HexHub.it•> is kicking hnt[cz] because: Blacklisted: ASPI Publishing s.r.o _ban0_
[2008-05-06 01:17] <•HexHub.it•> is kicking gregoevana3 because: Blacklisted: org.onr.com _ban0_
[2008-05-06 01:18] <•HexHub.it•> is kicking Kolumbus11 because: Blacklisted: Military Academy _ban0_
[2008-05-06 01:18] <•HexHub.it•> is kicking [HUN]hunt3r because: Blacklisted: hungarian radio pecs _ban0_
[2008-05-06 01:18] <•HexHub.it•> is kicking miller333[psv] because: Blacklisted: Vodafone Interactive _ban0_
[2008-05-06 01:19] <•HexHub.it•> is kicking Birdie because: Blacklisted: G2 Satellite Solutions Corporation _ban0_

For those who don't run HeXHub i made a separate program that uses DDoSflt 1.09 and blacklists in PeerGuardian's format. The main difference between this program and PeerGuardian is that this program doesn't need to constantly monitor the firewall like PeerGuardian does. It just sends the banlists to DDoSflt and DDoSflt will do the filtering. More information here: http://nemesis.te-home.net/Projects/Blacklist.html.

Currently there are 2 available blacklists: PeerGuardian's blacklist and Public Proxies and Tor Exit Nodes. I also made a big blacklist from both blacklists to be used with the Blacklist plugin or with PeerGuardian (the format is compatible).

[Lord_Zero]

By default, the Blacklist plugin shows a full $MyINFO of a blacklisted user before setting the ban in firewall. Disabling this notification is not recommended.

Code:

[08:42] <•HexHub.it•> is kicking [Ro][SB][as]numsdsf because: Blacklisted: Serviciul de Telecomunicatii Speciale _ban0_

Code:

[10:17] *** Showing information on user [Ro][SB][as]numsdsf:


85.120.254.232, connected: 2008-05-06 07:40:05 for 1 seconds
89.122.187.2, connected: 2008-05-06 07:43:23 for 1 hours 12 minutes 34 seconds
[10:17] *** The following users were found at http://www.dchublist.com:

[Ro][SB][as]numsdsf - Address: pivosik.info:4111
[Ro][SB][as]numsdsf - Address: asn1.absolutenetwork.se:411
[Ro][SB][as]numsdsf - Address: shinto.total-anime.net:666
[Ro][SB][as]numsdsf - Address: slak.homeip.net:5750
[Ro][SB][as]numsdsf - Address: One-Love.FreeWay-Fun.net:4111
[Ro][SB][as]numsdsf - Address: 1.tankafett.nu:2006
[Ro][SB][as]numsdsf - Address: 1.MACDC.SE:850
[Ro][SB][as]numsdsf - Address: TwistedGate.THC-Net.org:421
[Ro][SB][as]numsdsf - Address: newiss-trynitynetwork.net:443
[Ro][SB][as]numsdsf - Address: union.newfireworld.net:808
[Ro][SB][as]numsdsf - Address: czarodziejski-hub.sytes.net:452
[Ro][SB][as]numsdsf - Address: dvd-hub.cz:411
[Ro][SB][as]numsdsf - Address: tarnowhub2.pl:7778
[Ro][SB][as]numsdsf - Address: dc2.abc-network.nu:4111
[Ro][SB][as]numsdsf - Address: synapse.dyn.hu:6206

Code:

[10:18] *** Gathering information for 85.120.254.232...
[10:18] ***
inetnum: 85.120.252.0 - 85.120.255.255
netname: SERVICIUL-TELECOMUNICATII-SPECIALE
descr: Serviciul de Telecomunicatii Speciale

Code:

[10:18] *** Gathering information for 89.122.187.2...
[10:18] ***
inetnum: 89.122.0.0 - 89.122.255.255
netname: ROMTELECOM
descr: Romtelecom Data Network

Same user can come back with a normal ISP. Showing full $MyINFO in opchat may help finding specific strings that can be added to forbid or to op clients.