City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.95.97.247 | attack | (From jessika.bean@yahoo.com) This Google doc exposes how this scamdemic is part of a bigger plan to crush your business and keep it closed or semi-operational (with heavy rescritions) while big corporations remain open without consequences. This Covid lie has ruined many peoples lives and businesses and is all done on purpose to bring about the One World Order. It goes much deeper than this but the purpose of this doc is to expose the evil and wickedness that works in the background to ruin peoples lives. So feel free to share this message with friends and family. No need to reply to the email i provided above as its not registered. But this information will tell you everything you need to know. https://docs.google.com/document/d/14MuVe_anmrcDQl4sZhDqzhQy0Pbhrx9A/edit. In case the document is taken down, here is a backup source https://fakecovidscam.com |
2020-07-23 23:26:58 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.95.97.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4739
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;45.95.97.239. IN A
;; AUTHORITY SECTION:
. 472 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022100602 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 06:04:39 CST 2022
;; MSG SIZE rcvd: 105Host 239.97.95.45.in-addr.arpa not found: 2(SERVFAIL)
server can't find 45.95.97.239.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 222.186.30.218 | attackbots | Aug 15 12:25:41 game-panel sshd[2634]: Failed password for root from 222.186.30.218 port 10684 ssh2 Aug 15 12:25:44 game-panel sshd[2634]: Failed password for root from 222.186.30.218 port 10684 ssh2 Aug 15 12:25:46 game-panel sshd[2634]: Failed password for root from 222.186.30.218 port 10684 ssh2 |
2020-08-15 20:39:30 |
| 103.224.242.136 | attackspam | frenzy |
2020-08-15 20:56:22 |
| 92.118.160.21 | attackspambots | " " |
2020-08-15 20:58:18 |
| 95.71.124.178 | attackspambots | Automatic report - Banned IP Access |
2020-08-15 20:20:10 |
| 91.134.167.236 | attack | Aug 15 06:49:11 serwer sshd\[28366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.167.236 user=root Aug 15 06:49:14 serwer sshd\[28366\]: Failed password for root from 91.134.167.236 port 37921 ssh2 Aug 15 06:52:45 serwer sshd\[30869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.167.236 user=root ... |
2020-08-15 20:33:58 |
| 85.209.0.100 | attackspambots | nginx/honey/a4a6f |
2020-08-15 20:50:06 |
| 101.231.166.39 | attackbotsspam | Aug 15 05:48:14 serwer sshd\[16073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.166.39 user=root Aug 15 05:48:15 serwer sshd\[16073\]: Failed password for root from 101.231.166.39 port 2061 ssh2 Aug 15 05:50:18 serwer sshd\[17657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.166.39 user=root ... |
2020-08-15 20:23:12 |
| 80.157.192.53 | attackbots | Aug 9 15:06:25 h1946882 sshd[30039]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D80.1= 57.192.53 user=3Dr.r Aug 9 15:06:27 h1946882 sshd[30039]: Failed password for r.r from 80.= 157.192.53 port 43910 ssh2 Aug 9 15:06:27 h1946882 sshd[30039]: Received disconnect from 80.157.1= 92.53: 11: Bye Bye [preauth] Aug 9 15:13:28 h1946882 sshd[30258]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D80.1= 57.192.53 user=3Dr.r Aug 9 15:13:29 h1946882 sshd[30258]: Failed password for r.r from 80.= 157.192.53 port 55984 ssh2 Aug 9 15:13:29 h1946882 sshd[30258]: Received disconnect from 80.157.1= 92.53: 11: Bye Bye [preauth] Aug 9 15:17:52 h1946882 sshd[30359]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D80.1= 57.192.53 user=3Dr.r Aug 9 15:17:54 h1946882 sshd[30359]: Failed password for r.r from 80.= 157.19........ ------------------------------- |
2020-08-15 20:48:30 |
| 113.161.144.254 | attackspambots | Lines containing failures of 113.161.144.254 Aug 11 07:04:59 nbi-636 sshd[19377]: User r.r from 113.161.144.254 not allowed because not listed in AllowUsers Aug 11 07:04:59 nbi-636 sshd[19377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.144.254 user=r.r Aug 11 07:05:00 nbi-636 sshd[19377]: Failed password for invalid user r.r from 113.161.144.254 port 53704 ssh2 Aug 11 07:05:01 nbi-636 sshd[19377]: Received disconnect from 113.161.144.254 port 53704:11: Bye Bye [preauth] Aug 11 07:05:01 nbi-636 sshd[19377]: Disconnected from invalid user r.r 113.161.144.254 port 53704 [preauth] Aug 11 07:08:10 nbi-636 sshd[20253]: User r.r from 113.161.144.254 not allowed because not listed in AllowUsers Aug 11 07:08:10 nbi-636 sshd[20253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.144.254 user=r.r Aug 11 07:08:12 nbi-636 sshd[20253]: Failed password for invalid user r.r from 113......... ------------------------------ |
2020-08-15 21:02:47 |
| 106.52.56.26 | attack | 2020-08-15T12:20:58.703882shield sshd\[18311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.56.26 user=root 2020-08-15T12:21:01.173473shield sshd\[18311\]: Failed password for root from 106.52.56.26 port 38958 ssh2 2020-08-15T12:23:35.151032shield sshd\[18487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.56.26 user=root 2020-08-15T12:23:37.503907shield sshd\[18487\]: Failed password for root from 106.52.56.26 port 36670 ssh2 2020-08-15T12:25:58.901783shield sshd\[18648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.56.26 user=root |
2020-08-15 20:28:50 |
| 58.57.15.29 | attackspambots | Aug 15 06:50:20 serwer sshd\[29204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.57.15.29 user=root Aug 15 06:50:22 serwer sshd\[29204\]: Failed password for root from 58.57.15.29 port 55539 ssh2 Aug 15 06:52:38 serwer sshd\[30763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.57.15.29 user=root ... |
2020-08-15 20:52:26 |
| 156.146.58.201 | attackspam | (From adam.miles@businesspromoted.in) brombergchiropractic.com is currently receiving 33.4 clicks from organic traffic. However, your competition is crushing it You can view detailed traffic analysis at https://www.spyfu.com/overview/domain?query=brombergchiropractic.com 33.4 clicks are certainly not enough. We can certainly do better! We need to do better. It is not that difficult. With in-depth keyword research and on-page optimization it is doable. We will reverse engineer competitor's link building strategies and get the links from similar sources. Its perfect time to plan your marketing strategy. You have created good website but your site will not rank in Google until content and images are optimized correctly. We need to optimize your website for search engines and make it search engine friendly. I have analyzed your site in-depth and you can view your website audit report at https://businesspromoted.websiteauditserver.com/brombergchiropractic.com Your website is the reflection o |
2020-08-15 20:34:55 |
| 173.252.95.112 | attackbotsspam | [Sat Aug 15 19:25:56.354856 2020] [:error] [pid 1165:tid 140592558245632] [client 173.252.95.112:49236] [client 173.252.95.112] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/image-loader-worker-v3.js"] [unique_id "XzfUVOniW-eKEEIJLUNKMQABwwA"] ... |
2020-08-15 20:32:24 |
| 124.236.22.12 | attackbotsspam | "Unauthorized connection attempt on SSHD detected" |
2020-08-15 20:33:29 |
| 106.12.201.95 | attackspambots | Aug 15 14:37:23 PorscheCustomer sshd[26180]: Failed password for root from 106.12.201.95 port 18043 ssh2 Aug 15 14:40:34 PorscheCustomer sshd[26279]: Failed password for root from 106.12.201.95 port 54671 ssh2 ... |
2020-08-15 21:02:05 |