Quite why the blog isn't displaying on IE/Avant properly escapes me, but that's another matter.
I've found this one again in
.. and from todays log (attacker: 126.96.36.199 - webbox442.server-home.org);
... and ....
Attacker: 188.8.131.52 (k10751109.custservers.inetgate.net)
Attacker: 184.108.40.206 (ap2000.de)
The RFI at the following has been reported to their host and owner;
... and contains;
As documented previously, thanks to the help of the ISC, this exploit attempt seems to indicate that they're trying to determine which servers spit out "echo cr4nk rocks", which then indicates the server is vulnerable to attack.
Servers IP: 220.127.116.11
Update: Added attacks from todays server logs
Update 2: Added formatting for code div's to stop 'em going too long