City: unknown
Region: unknown
Country: Canada
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 107.152.192.145 | attackspambots | (From whitlow.retha@gmail.com) This Google doc exposes how this scamdemic is part of a bigger plan to crush your business and keep it closed or semi-operational (with heavy rescritions) while big corporations remain open without consequences. This Covid lie has ruined many peoples lives and businesses and is all done on purpose to bring about the One World Order. It goes much deeper than this but the purpose of this doc is to expose the evil and wickedness that works in the background to ruin peoples lives. So feel free to share this message with friends and family. No need to reply to the email i provided above as its not registered. But this information will tell you everything you need to know. https://docs.google.com/document/d/14MuVe_anmrcDQl4sZhDqzhQy0Pbhrx9A/edit. In case the document is taken down, here is a backup source https://fakecovidscam.com |
2020-07-24 23:07:28 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.152.192.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51285
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;107.152.192.212. IN A
;; AUTHORITY SECTION:
. 586 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400
;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 14:49:44 CST 2022
;; MSG SIZE rcvd: 108212.192.152.107.in-addr.arpa domain name pointer eab486f.westemberg.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
212.192.152.107.in-addr.arpa name = eab486f.westemberg.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.148.10.171 | attackspam | DATE:2020-02-02 16:06:54, IP:45.148.10.171, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2020-02-03 04:53:13 |
| 193.124.179.224 | attack | Jun 3 10:32:37 ms-srv sshd[15680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.124.179.224 Jun 3 10:32:39 ms-srv sshd[15680]: Failed password for invalid user temp from 193.124.179.224 port 44830 ssh2 |
2020-02-03 05:03:03 |
| 193.150.109.152 | attackspambots | Sep 12 10:07:46 ms-srv sshd[23907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.150.109.152 Sep 12 10:07:48 ms-srv sshd[23907]: Failed password for invalid user ftpuser2 from 193.150.109.152 port 6171 ssh2 |
2020-02-03 04:56:42 |
| 193.112.82.195 | attack | Dec 15 04:54:51 ms-srv sshd[63877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.82.195 Dec 15 04:54:53 ms-srv sshd[63877]: Failed password for invalid user admin1 from 193.112.82.195 port 52299 ssh2 |
2020-02-03 05:14:16 |
| 193.112.80.232 | attackbots | Jan 29 23:35:35 ms-srv sshd[6707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.80.232 Jan 29 23:35:38 ms-srv sshd[6707]: Failed password for invalid user www from 193.112.80.232 port 50975 ssh2 |
2020-02-03 05:16:42 |
| 139.59.44.173 | attackspambots | Unauthorized connection attempt detected from IP address 139.59.44.173 to port 2220 [J] |
2020-02-03 05:15:20 |
| 193.112.90.146 | attackspam | Feb 2 22:04:23 lnxmysql61 sshd[9361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.90.146 |
2020-02-03 05:09:21 |
| 193.188.67.41 | attack | Jan 30 08:24:16 ms-srv sshd[28869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.67.41 Jan 30 08:24:18 ms-srv sshd[28869]: Failed password for invalid user teamspeak3 from 193.188.67.41 port 33692 ssh2 |
2020-02-03 04:40:47 |
| 171.22.76.85 | attack | This IP is one of many that have been hacking my devices. They have attached some indexing software to my playstore account and on my devices. I am consistantly being watched and redirected on the internet. They intercept any kind of communication going both in and out of my devices. |
2020-02-03 04:57:13 |
| 194.51.211.89 | attackbotsspam | Honeypot attack, port: 445, PTR: PTR record not found |
2020-02-03 05:04:24 |
| 51.38.238.205 | attackbots | Unauthorized connection attempt detected from IP address 51.38.238.205 to port 2220 [J] |
2020-02-03 04:59:40 |
| 106.54.253.110 | attack | Feb 2 21:15:28 ks10 sshd[2098168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.110 Feb 2 21:15:30 ks10 sshd[2098168]: Failed password for invalid user sayeeda from 106.54.253.110 port 56860 ssh2 ... |
2020-02-03 04:48:11 |
| 164.132.209.242 | attack | Unauthorized connection attempt detected from IP address 164.132.209.242 to port 2220 [J] |
2020-02-03 04:55:14 |
| 42.4.251.20 | attack | DATE:2020-02-02 16:06:54, IP:42.4.251.20, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2020-02-03 04:53:27 |
| 113.181.121.232 | attack | Unauthorized connection attempt detected from IP address 113.181.121.232 to port 445 |
2020-02-03 05:01:58 |