City: unknown
Region: unknown
Country: Canada
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.144.30.170 | attackbots | (From whitlow.retha@gmail.com) This Google doc exposes how this scamdemic is part of a bigger plan to crush your business and keep it closed or semi-operational (with heavy rescritions) while big corporations remain open without consequences. This Covid lie has ruined many peoples lives and businesses and is all done on purpose to bring about the One World Order. It goes much deeper than this but the purpose of this doc is to expose the evil and wickedness that works in the background to ruin peoples lives. So feel free to share this message with friends and family. No need to reply to the email i provided above as its not registered. But this information will tell you everything you need to know. https://docs.google.com/document/d/14MuVe_anmrcDQl4sZhDqzhQy0Pbhrx9A/edit. In case the document is taken down, here is a backup source https://fakecovidscam.com |
2020-07-24 23:10:58 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.144.3.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31585
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.144.3.3. IN A
;; AUTHORITY SECTION:
. 418 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022801 1800 900 604800 86400
;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 01 03:09:08 CST 2022
;; MSG SIZE rcvd: 104Host 3.3.144.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 3.3.144.104.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.131.93.33 | attack | Jul 19 19:34:43 vpn01 sshd\[24177\]: Invalid user test from 104.131.93.33 Jul 19 19:34:43 vpn01 sshd\[24177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.93.33 Jul 19 19:34:45 vpn01 sshd\[24177\]: Failed password for invalid user test from 104.131.93.33 port 34954 ssh2 |
2019-07-20 02:11:32 |
| 59.175.144.11 | attackspam | 19.07.2019 17:58:17 Connection to port 8545 blocked by firewall |
2019-07-20 02:01:04 |
| 103.129.52.11 | attackspam | TCP port 445 (SMB) attempt blocked by firewall. [2019-07-19 18:43:46] |
2019-07-20 02:40:40 |
| 176.57.69.68 | attack | [portscan] Port scan |
2019-07-20 02:05:21 |
| 137.59.162.169 | attack | Jul 19 18:45:36 host sshd\[42777\]: Invalid user studenti from 137.59.162.169 port 33631 Jul 19 18:45:36 host sshd\[42777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.59.162.169 ... |
2019-07-20 02:19:16 |
| 80.245.118.184 | attack | [portscan] Port scan |
2019-07-20 02:38:31 |
| 197.253.14.6 | attackspam | fraudulent SSH attempt |
2019-07-20 02:37:11 |
| 51.38.40.12 | attack | Jul 19 18:44:53 andromeda postfix/smtpd\[15618\]: warning: ns3117215.ip-51-38-40.eu\[51.38.40.12\]: SASL LOGIN authentication failed: authentication failure Jul 19 18:44:53 andromeda postfix/smtpd\[15618\]: warning: ns3117215.ip-51-38-40.eu\[51.38.40.12\]: SASL LOGIN authentication failed: authentication failure Jul 19 18:44:54 andromeda postfix/smtpd\[15618\]: warning: ns3117215.ip-51-38-40.eu\[51.38.40.12\]: SASL LOGIN authentication failed: authentication failure Jul 19 18:44:54 andromeda postfix/smtpd\[15618\]: warning: ns3117215.ip-51-38-40.eu\[51.38.40.12\]: SASL LOGIN authentication failed: authentication failure Jul 19 18:44:54 andromeda postfix/smtpd\[15618\]: warning: ns3117215.ip-51-38-40.eu\[51.38.40.12\]: SASL LOGIN authentication failed: authentication failure |
2019-07-20 02:42:02 |
| 114.247.177.155 | attack | Jul 16 03:54:19 sanyalnet-cloud-vps4 sshd[16179]: Connection from 114.247.177.155 port 43974 on 64.137.160.124 port 22 Jul 16 03:54:21 sanyalnet-cloud-vps4 sshd[16179]: Invalid user mailing from 114.247.177.155 Jul 16 03:54:21 sanyalnet-cloud-vps4 sshd[16179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.247.177.155 Jul 16 03:54:23 sanyalnet-cloud-vps4 sshd[16179]: Failed password for invalid user mailing from 114.247.177.155 port 43974 ssh2 Jul 16 03:54:23 sanyalnet-cloud-vps4 sshd[16179]: Received disconnect from 114.247.177.155: 11: Bye Bye [preauth] Jul 16 04:01:44 sanyalnet-cloud-vps4 sshd[16235]: Connection from 114.247.177.155 port 56378 on 64.137.160.124 port 22 Jul 16 04:01:46 sanyalnet-cloud-vps4 sshd[16235]: Invalid user deployer from 114.247.177.155 Jul 16 04:01:46 sanyalnet-cloud-vps4 sshd[16235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.247.177.155 ........ -------------------------------------- |
2019-07-20 02:29:45 |
| 60.249.145.25 | attackbots | 445/tcp 445/tcp 445/tcp... [2019-05-27/07-19]12pkt,1pt.(tcp) |
2019-07-20 02:41:41 |
| 185.50.199.133 | attackbotsspam | Automatic report - Banned IP Access |
2019-07-20 02:35:43 |
| 180.241.46.9 | attackbotsspam | 445/tcp 445/tcp [2019-07-05/19]2pkt |
2019-07-20 02:39:16 |
| 185.232.34.254 | attackbotsspam | 445/tcp 445/tcp 445/tcp... [2019-05-19/07-19]21pkt,1pt.(tcp) |
2019-07-20 02:20:26 |
| 138.122.97.119 | attack | 445/tcp 445/tcp 445/tcp... [2019-05-22/07-19]17pkt,1pt.(tcp) |
2019-07-20 02:12:39 |
| 138.68.146.186 | attackspambots | Jul 19 17:49:01 work-partkepr sshd\[16854\]: Invalid user unna from 138.68.146.186 port 35330 Jul 19 17:49:01 work-partkepr sshd\[16854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.146.186 ... |
2019-07-20 02:21:25 |