IP detection here: http://cymon.io/157.250.79.189
We have detection here: http://urlquery.net/report.php?id=1424956253135
Are they cleansing: “The web server software is running but no content has been added, yet.”
Server vuln.: http://www.cvedetails.com/vulnerability-list/vendor_id-23/cvssscoremin-4/cvssscoremax-4.99/Debian.html
PHP leak: http://www.leakedin.com/2015/02/02/potential-leak-of-data-phpmyadmin-sql-dump-1662/

polonus