City: San Antonio
Region: Texas
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.144.30.170 | attackbots | (From whitlow.retha@gmail.com) This Google doc exposes how this scamdemic is part of a bigger plan to crush your business and keep it closed or semi-operational (with heavy rescritions) while big corporations remain open without consequences. This Covid lie has ruined many peoples lives and businesses and is all done on purpose to bring about the One World Order. It goes much deeper than this but the purpose of this doc is to expose the evil and wickedness that works in the background to ruin peoples lives. So feel free to share this message with friends and family. No need to reply to the email i provided above as its not registered. But this information will tell you everything you need to know. https://docs.google.com/document/d/14MuVe_anmrcDQl4sZhDqzhQy0Pbhrx9A/edit. In case the document is taken down, here is a backup source https://fakecovidscam.com |
2020-07-24 23:10:58 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.144.3.236
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20295
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.144.3.236. IN A
;; AUTHORITY SECTION:
. 552 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022051902 1800 900 604800 86400
;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 20 10:57:53 CST 2022
;; MSG SIZE rcvd: 106Host 236.3.144.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 236.3.144.104.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 197.251.253.123 | attack | IP blocked |
2019-12-28 03:30:34 |
| 107.6.171.134 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-28 03:11:23 |
| 46.101.164.47 | attack | Dec 27 00:15:23 server sshd\[19792\]: Invalid user audette from 46.101.164.47 Dec 27 00:15:23 server sshd\[19792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.164.47 Dec 27 00:15:25 server sshd\[19792\]: Failed password for invalid user audette from 46.101.164.47 port 51844 ssh2 Dec 27 17:48:18 server sshd\[14382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.164.47 user=root Dec 27 17:48:20 server sshd\[14382\]: Failed password for root from 46.101.164.47 port 43296 ssh2 ... |
2019-12-28 03:21:08 |
| 131.100.219.65 | attack | 1577458117 - 12/27/2019 15:48:37 Host: 131.100.219.65/131.100.219.65 Port: 8080 TCP Blocked |
2019-12-28 03:07:51 |
| 114.92.8.112 | attackspambots | SIP/5060 Probe, BF, Hack - |
2019-12-28 03:46:45 |
| 91.139.133.59 | attack | Automatic report - Port Scan Attack |
2019-12-28 03:16:04 |
| 51.15.23.2 | attackbots | Trying ports that it shouldn't be. |
2019-12-28 03:26:00 |
| 145.255.0.40 | attackbots | Unauthorized connection attempt detected from IP address 145.255.0.40 to port 445 |
2019-12-28 03:17:05 |
| 189.195.154.130 | attackspam | 1433/tcp 445/tcp... [2019-10-31/12-27]5pkt,2pt.(tcp) |
2019-12-28 03:09:42 |
| 182.48.84.6 | attack | Dec 27 16:31:29 herz-der-gamer sshd[29942]: Invalid user dehart from 182.48.84.6 port 36380 Dec 27 16:31:29 herz-der-gamer sshd[29942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.48.84.6 Dec 27 16:31:29 herz-der-gamer sshd[29942]: Invalid user dehart from 182.48.84.6 port 36380 Dec 27 16:31:30 herz-der-gamer sshd[29942]: Failed password for invalid user dehart from 182.48.84.6 port 36380 ssh2 ... |
2019-12-28 03:13:46 |
| 222.186.180.41 | attackbotsspam | 2019-12-27T19:31:25.029596+00:00 suse sshd[3505]: User root from 222.186.180.41 not allowed because not listed in AllowUsers 2019-12-27T19:31:27.639029+00:00 suse sshd[3505]: error: PAM: Authentication failure for illegal user root from 222.186.180.41 2019-12-27T19:31:25.029596+00:00 suse sshd[3505]: User root from 222.186.180.41 not allowed because not listed in AllowUsers 2019-12-27T19:31:27.639029+00:00 suse sshd[3505]: error: PAM: Authentication failure for illegal user root from 222.186.180.41 2019-12-27T19:31:25.029596+00:00 suse sshd[3505]: User root from 222.186.180.41 not allowed because not listed in AllowUsers 2019-12-27T19:31:27.639029+00:00 suse sshd[3505]: error: PAM: Authentication failure for illegal user root from 222.186.180.41 2019-12-27T19:31:27.641284+00:00 suse sshd[3505]: Failed keyboard-interactive/pam for invalid user root from 222.186.180.41 port 42084 ssh2 ... |
2019-12-28 03:39:20 |
| 185.156.73.57 | attackspambots | Dec 27 19:57:22 debian-2gb-nbg1-2 kernel: \[1125764.696630\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.57 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=37446 PROTO=TCP SPT=40934 DPT=4000 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-28 03:07:17 |
| 107.6.169.253 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-28 03:19:38 |
| 202.46.129.204 | attackspam | 202.46.129.204 - - \[27/Dec/2019:18:24:26 +0100\] "POST /wp-login.php HTTP/1.0" 200 7427 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 202.46.129.204 - - \[27/Dec/2019:18:24:28 +0100\] "POST /wp-login.php HTTP/1.0" 200 7242 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 202.46.129.204 - - \[27/Dec/2019:18:24:30 +0100\] "POST /wp-login.php HTTP/1.0" 200 7239 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-12-28 03:26:48 |
| 121.229.13.181 | attack | Dec 27 14:48:02 sigma sshd\[18213\]: Invalid user rab from 121.229.13.181Dec 27 14:48:04 sigma sshd\[18213\]: Failed password for invalid user rab from 121.229.13.181 port 44192 ssh2 ... |
2019-12-28 03:33:27 |