City: unknown
Region: unknown
Country: Canada
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 107.152.202.66 | attack | (From zachery.whisler46@outlook.com) This Google doc exposes how this scamdemic is part of a bigger plan to crush your business and keep it closed or semi-operational (with heavy rescritions) while big corporations remain open without consequences. This Covid lie has ruined many peoples lives and businesses and is all done on purpose to bring about the One World Order. It goes much deeper than this but the purpose of this doc is to expose the evil and wickedness that works in the background to ruin peoples lives. So feel free to share this message with friends and family. No need to reply to the email i provided above as its not registered. But this information will tell you everything you need to know. https://docs.google.com/document/d/1dAy4vPZrdUXvaCsT0J0dHpQcBiCqXElS8hyOwgN2pr8/edit |
2020-08-14 13:08:21 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.152.202.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33225
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;107.152.202.216. IN A
;; AUTHORITY SECTION:
. 451 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400
;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 14:50:19 CST 2022
;; MSG SIZE rcvd: 108216.202.152.107.in-addr.arpa domain name pointer mx1.excellentcontrol.com.es.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
216.202.152.107.in-addr.arpa name = mx1.excellentcontrol.com.es.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 116.203.88.37 | attackbots | 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-08-12 08:24:24 |
| 91.106.193.72 | attack | Automatic report - Banned IP Access |
2019-08-12 08:52:29 |
| 36.224.43.253 | attackspam | port scan and connect, tcp 23 (telnet) |
2019-08-12 08:52:09 |
| 121.182.166.81 | attackspam | Aug 11 21:28:50 ns41 sshd[14680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.81 |
2019-08-12 08:35:34 |
| 174.123.157.10 | attackbotsspam | SMB Server BruteForce Attack |
2019-08-12 08:40:31 |
| 171.25.193.77 | attackbots | Aug 2 23:32:25 microserver sshd[8773]: Invalid user support from 171.25.193.77 port 61963 Aug 2 23:32:25 microserver sshd[8773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.25.193.77 Aug 2 23:32:27 microserver sshd[8773]: Failed password for invalid user support from 171.25.193.77 port 61963 ssh2 Aug 2 23:32:31 microserver sshd[8783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.25.193.77 user=root Aug 2 23:32:33 microserver sshd[8783]: Failed password for root from 171.25.193.77 port 64993 ssh2 Aug 4 22:58:50 microserver sshd[25914]: Invalid user fwupgrade from 171.25.193.77 port 64078 Aug 4 22:58:50 microserver sshd[25914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.25.193.77 Aug 4 22:58:52 microserver sshd[25914]: Failed password for invalid user fwupgrade from 171.25.193.77 port 64078 ssh2 Aug 4 22:58:56 microserver sshd[25924]: pam_unix(sshd:auth): auth |
2019-08-12 08:46:52 |
| 115.207.6.178 | attackbotsspam | Port Scan: TCP/21 |
2019-08-12 08:16:39 |
| 219.78.63.184 | attackbots | 5555/tcp [2019-08-11]1pkt |
2019-08-12 08:54:48 |
| 5.76.58.187 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-11 20:22:02,091 INFO [amun_request_handler] PortScan Detected on Port: 445 (5.76.58.187) |
2019-08-12 08:42:39 |
| 165.16.37.165 | attack | 8080/tcp [2019-08-11]1pkt |
2019-08-12 08:54:26 |
| 85.202.194.105 | attackspam | 601.276,14-04/03 [bc17/m40] concatform PostRequest-Spammer scoring: maputo01_x2b |
2019-08-12 08:14:02 |
| 218.92.0.174 | attackspam | Reported by AbuseIPDB proxy server. |
2019-08-12 08:16:03 |
| 59.188.250.56 | attackbotsspam | Aug 12 02:52:53 dedicated sshd[25737]: Invalid user ibiza from 59.188.250.56 port 40978 |
2019-08-12 08:53:11 |
| 71.6.233.40 | attackbotsspam | 40443/tcp 4443/tcp 5984/tcp... [2019-07-12/08-11]4pkt,4pt.(tcp) |
2019-08-12 08:49:48 |
| 157.55.39.161 | attackspambots | Automatic report - Banned IP Access |
2019-08-12 08:20:26 |