By Stew Webb Federal Whistle blower
March 27, 2018
18-USC-4 Official Notice To President Trump
President Trump Stop NSA NAZI Espionage
http://www.stewwebb.com/2018/03/27/president-trump-stop-nsa-nazi-espionage/
President Trump Stop Cyber Terrorism against Stew Webb Whistle blower
The Computer Fraud and Abuse Act (CFAA) [18 U.S.C. Section 1030] makes it illegal for anyone to distribute computer code or place it in the stream of commerce if they intend to cause either damage or economic loss. The CFAA focuses on a code’s damage to computer systems and the attendant economic losses, and it provides criminal penalties for either knowingly or recklessly releasing a computer virus into computers used in interstate commerce.
Someone convicted under the CFAA could face a prison sentence as long as 20 years and a fine of up to $250,000.
I will be posting the entire report proving over 6 million felonies over three years against my email account, my internet service providers and my website stewwebb.com under The Computer Fraud and Abuse Act (CFAA) [18 U.S.C. Section 1030] and Violations of my 1st Amendment Right to freedom of speech and Violations under RICO The Racketeering Influence and Corruption Organization Act plus attempted murders since 2009 because of filings in US District Court in Kansas City for Injunctive Relief from attempted murder using Blackwater Helicopter to lazer and kill this whistle blower then three car crashes from October 2010 – November 2011 which I have not been paid and which the car crashes has disabled this Whistle blower and I am being cheated out of one half of the social security minimum that I am entitled to under US law.
Related
Below are at least 12 or more links to Israel, US DOD, British Intel, Larry Mizel, George HW Bush, Kansas City FBI, Missouri Fusing Center and many others in the US Shadow Government also now being called the Deep State. The Shadow Government is the top of the deep state also known as the Illuminati also known and the Council of 13 also known as the 12 Disciples of Satan, George HW Bush, Larry Mizel, Henry Kissinger, William Grace, Answar Ben Shari, Pope Benidick, David Rockefeller, Patrick WU aka Patrick WY, Meyer Rothchild, Paul Warberg, and I am missing 2 of the 12.
Evidence for Prosecution
cyber attacker
United States Plymouth, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1521958757.81
3/25/2018 1:19:22 AM (15 minutes ago)
IP: 71.102.102.88 Hostname: pool-71-102-102-88.sctnpa.east.verizon.net
Browser: Chrome version 0.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.186 Safari/537.36
Type: Human
United States Plymouth, United States visited http://www.stewwebb.com/
3/25/2018 1:19:16 AM (15 minutes ago)
IP: 71.102.102.88 Hostname: pool-71-102-102-88.sctnpa.east.verizon.net
Browser: Chrome version 0.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.186 Safari/537.36
verizonbusiness.com
@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Palm Beach Gardens, United States left http://www.stewwebb.com/2018/03/11/radio-stew-webb-and-tom-heneghan-march-10-2018/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1521977560.61
3/25/2018 6:32:42 AM (4 hours 18 mins ago)
IP: 73.244.9.70 Hostname: c-73-244-9-70.hsd1.fl.comcast.net
Browser: IE version 11.0 running on Win8.1
Mozilla/5.0 (Windows NT 6.3; WOW64; Trident/7.0; Touch; rv:11.0) like Gecko
cable.comcast.com
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
United States United States left http://www.stewwebb.com/tag/video/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522006183.19
3/25/2018 2:29:48 PM (2 minutes ago)
IP: 107.77.165.9 Hostname: mobile-107-77-165-9.mobile.att.net
Browser: Chrome version 0.0 running on Android
Mozilla/5.0 (Linux; Android 4.4.4; XT1032 Build/KXB21.14-L1.61) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.114 Mobile Safari/537.36
@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Fort Lauderdale, United States was blocked by firewall at http://www.stewwebb.com/wp-organizer.php
3/26/2018 12:59:17 AM (10 hours 42 mins ago)
IP: 204.10.105.9 Hostname: 204.10.105.9
Human/Bot: Bot
Browser: Chrome version 50.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.75 Safari/537.36
NetRange: 204.10.104.0 – 204.10.111.255
[2048 addresses in this network]
CIDR: 204.10.104.0/21 (204.10.104.0 – 204.10.111.255)
[2048 addresses in this network]
NetName: ACCELERATEBIZ-1-21
NetHandle: NET-204-10-104-0-1
Parent: NET204 (NET-204-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: AccelerateBiz Inc. (ACCEL-8)
RegDate: 2004-12-15
Updated: 2012-03-20
Ref: https://whois.arin.net/rest/net/NET-204-10-104-0-1
OrgName: AccelerateBiz Inc.
OrgId: ACCEL-8
Address: 800 W Cypress Creek Rd
Address: Suite 528
City: Fort Lauderdale
StateProv: FL
PostalCode: 33309
Country: US
RegDate: 2004-08-27
Updated: 2017-01-28
Ref: https://whois.arin.net/rest/org/ACCEL-8
OrgAbuseHandle: ABUSE1442-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +1-305-675-6725
OrgAbuseEmail: abuse@acceleratebiz.com
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE1442-ARIN
OrgTechHandle: TECHN892-ARIN
OrgTechName: Technical Support
OrgTechPhone: +1-305-675-6725
OrgTechEmail: support@acceleratebiz.com
OrgTechRef: https://whois.arin.net/rest/poc/TECHN892-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Scottsdale, United States was blocked for Manual block by administrator at http://www.stewwebb.com/wp-json/wp/v2/users/
3/26/2018 6:34:29 AM (5 hours 15 mins ago)
IP: 132.148.137.76 Hostname: ip-132-148-137-76.ip.secureserver.net
Human/Bot: Bot
Browser: Firefox version 50.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:50.0) Gecko/20100101 Firefox/50.0
NetRange: 132.148.0.0 – 132.148.255.255
[65536 addresses in this network]
CIDR: 132.148.0.0/16 (132.148.0.0 – 132.149.255.255)
[131072 addresses in this network]
NetName: GO-DADDY-COM-LLC
NetHandle: NET-132-148-0-0-1
Parent: NET132 (NET-132-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: GoDaddy.com, LLC (GODAD)
RegDate: 2015-10-21
Updated: 2015-10-26
Ref: https://whois.arin.net/rest/net/NET-132-148-0-0-1
OrgName: GoDaddy.com, LLC
OrgId: GODAD
Address: 14455 N Hayden Road
Address: Suite 226
City: Scottsdale
StateProv: AZ
PostalCode: 85260
Country: US
RegDate: 2007-06-01
Updated: 2014-09-10
Comment: Please send abuse complaints to abuse@godaddy.com
Ref: https://whois.arin.net/rest/org/GODAD
OrgAbuseHandle: ABUSE51-ARIN
OrgAbuseName: Abuse Department
OrgAbusePhone: +1-480-624-2505
OrgAbuseEmail: abuse@godaddy.com
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE51-ARIN
OrgNOCHandle: NOC124-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-480-505-8809
OrgNOCEmail: noc@godaddy.com
OrgNOCRef: https://whois.arin.net/rest/poc/NOC124-ARIN
OrgTechHandle: NOC124-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-480-505-8809
OrgTechEmail: noc@godaddy.com
OrgTechRef: https://whois.arin.net/rest/poc/NOC124-ARIN
132.148.137.76
P address 132.148.137.76
Location Scottsdale, Arizona, United States (US) flag
Registry arin
Network information
IP address 132.148.137.76
Reverse DNS (PTR record) ip-132-148-137-76.ip.secureserver.net
DNS server (NS record) cns1.secureserver.net (208.109.255.100)
cns2.secureserver.net (216.69.185.100)
ASN number 26496
ASN name (ISP) GoDaddy.com, LLC
IP-range/subnet 132.148.128.0/19
132.148.128.0 – 132.148.159.255
Domains around 132.148.137.76
IP address #domains
132.148.137.3 1
132.148.137.4 52
132.148.137.5 7
132.148.137.6 1
132.148.137.8 4
132.148.137.9 8
132.148.137.11 1
132.148.137.12 15
132.148.137.13 2
132.148.137.14 3
132.148.137.15 1
132.148.137.16 1
132.148.137.19 2
132.148.137.22 1
132.148.137.23 7
132.148.137.24 1
132.148.137.25 1
132.148.137.26 1
132.148.137.27 2
132.148.137.28 1
132.148.137.29 1
132.148.137.31 1
132.148.137.32 1
132.148.137.34 1
132.148.137.35 1
132.148.137.36 2
132.148.137.37 1
132.148.137.38 2
132.148.137.39 1
132.148.137.40 24
132.148.137.42 4
132.148.137.43 1
132.148.137.48 4
132.148.137.49 1
132.148.137.50 4
132.148.137.52 1
132.148.137.54 1
132.148.137.56 2
132.148.137.59 2
132.148.137.60 4
132.148.137.61 24
132.148.137.64 2
132.148.137.65 5
132.148.137.66 7
132.148.137.67 1
132.148.137.68 2
132.148.137.69 66
132.148.137.71 1
132.148.137.73 6
132.148.137.76 2
132.148.137.79 2
132.148.137.81 1
132.148.137.85 1
132.148.137.86 1
132.148.137.90 1
132.148.137.91 3
132.148.137.94 1
132.148.137.96 4
132.148.137.98 5
132.148.137.99 1
132.148.137.102 1
132.148.137.103 1
132.148.137.104 1
132.148.137.105 1
132.148.137.106 1
132.148.137.108 1
132.148.137.109 1
132.148.137.112 3
132.148.137.113 1
132.148.137.115 1
132.148.137.117 2
132.148.137.118 3
132.148.137.119 5
132.148.137.121 1
132.148.137.122 1
132.148.137.124 1
132.148.137.129 1
132.148.137.130 1
132.148.137.131 1
132.148.137.132 17
132.148.137.133 1
132.148.137.134 1
132.148.137.135 1
132.148.137.136 2
132.148.137.142 33
132.148.137.144 4
132.148.137.145 3
132.148.137.147 2
132.148.137.148 1
132.148.137.150 4
132.148.137.151 14
132.148.137.153 58
132.148.137.155 3
132.148.137.157 2
132.148.137.159 1
132.148.137.160 2
132.148.137.161 5
132.148.137.167 2
132.148.137.173 1
132.148.137.175 2
Domains on 132.148.137.76
Domain Tools
dfwnewhomes.com
DNS server (NS records) ns68.domaincontrol.com (208.109.255.44)
ns67.domaincontrol.com (216.69.185.44)
Mail server (MX records) smtp.secureserver.net (72.167.238.29)
mailstore1.secureserver.net (72.167.238.32)
IP address (IPv4) 132.148.137.76
IP address (IPv6)
ASN number 26496
ASN name (ISP) GoDaddy.com, LLC
IP-range/subnet 132.148.128.0/19
132.148.128.0 – 132.148.159.255
Domain Name: DFWNEWHOMES.COM
Registrar URL: http://www.godaddy.com
Registrant Name: Whois Agent
Registrant Organization: Whois Privacy Protection Service, Inc.
Name Server: NS67.DOMAINCONTROL.COM
Name Server: NS68.DOMAINCONTROL.COM
DNSSEC: unsigned
qonnect.in
OrgName: GoDaddy.com, LLC
OrgId: GODAD
Address: 14455 N Hayden Road
Address: Suite 226
City: Scottsdale
StateProv: AZ
PostalCode: 85260
Country: US
RegDate: 2007-06-01
Updated: 2014-09-10
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker olatha, kansas
Olathe, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522012184.88
3/26/2018 11:13:44 AM (45 minutes ago)
IP: 73.185.228.112 Hostname: c-73-185-228-112.hsd1.ks.comcast.net
Browser: Safari version 0.0 running on iOS
Mozilla/5.0 (iPhone; CPU iPhone OS 11_2_6 like Mac OS X) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0 Mobile/15D100 Safari/604.1
NetRange: 73.0.0.0 – 73.255.255.255
[16777216 addresses in this network]
CIDR: 73.0.0.0/8 (73.0.0.0 – 73.255.255.255)
[16777216 addresses in this network]
NetName: CABLE-1
NetHandle: NET-73-0-0-0-1
Parent: NET73 (NET-73-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS7922
Organization: Comcast Cable Communications, LLC (CCCS)
RegDate: 2005-04-19
Updated: 2016-08-31
Ref: https://whois.arin.net/rest/net/NET-73-0-0-0-1
OrgName: Comcast Cable Communications, LLC
OrgId: CCCS
Address: 1800 Bishops Gate Blvd
City: Mt Laurel
StateProv: NJ
PostalCode: 08054
Country: US
RegDate: 2001-09-17
Updated: 2017-01-28
Ref: https://whois.arin.net/rest/org/CCCS
OrgAbuseHandle: NAPO-ARIN
OrgAbuseName: Network Abuse and Policy Observance
OrgAbusePhone: +1-888-565-4329
OrgAbuseEmail: abuse@comcast.net
OrgAbuseRef: https://whois.arin.net/rest/poc/NAPO-ARIN
OrgTechHandle: IC161-ARIN
OrgTechName: Comcast Cable Communications Inc
OrgTechPhone: +1-856-317-7200
OrgTechEmail: CNIPEO-Ip-registration@cable.comcast.com
OrgTechRef: https://whois.arin.net/rest/poc/IC161-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Mitchell, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522064606.62
3/26/2018 6:43:36 AM (5 hours 34 mins ago)
IP: 172.78.225.94 Hostname: 172.78.225.94
Browser: Safari version 8.0 running on iOS
Mozilla/5.0 (iPad; CPU OS 8_1_1 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12B435 Safari/600.1.4
Sorry, but no data for that IP or domain was found.
IP address 172.78.225.94
Location Butlerville, Indiana, United States
@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Canyon Country, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522064610.01
3/26/2018 6:43:32 AM (5 hours 34 mins ago)
IP: 76.95.152.193 Hostname: cpe-76-95-152-193.socal.res.rr.com
Browser: Chrome version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36
NetRange: 76.80.0.0 – 76.95.255.255
[1048576 addresses in this network]
CIDR: 76.80.0.0/12 (76.80.0.0 – 76.95.255.255)
[1048576 addresses in this network]
NetName: RRWE
NetHandle: NET-76-80-0-0-1
Parent: NET76 (NET-76-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Time Warner Cable Internet LLC (RRWE)
RegDate: 2006-12-22
Updated: 2007-12-18
Ref: https://whois.arin.net/rest/net/NET-76-80-0-0-1
OrgName: Time Warner Cable Internet LLC
OrgId: RRWE
Address: 6399 S Fiddlers Green Circle
City: Greenwood Village
StateProv: CO
PostalCode: 80111
Country: US
RegDate: 2000-10-04
Updated: 2018-03-07
Comment: Allocations for this OrgID serve Road Runner residential customers out of the Honolulu, HI, Kansas City, KS, Orange, CA and San Diego, CA RDCs.
Ref: https://whois.arin.net/rest/org/RRWE
OrgTechHandle: IPADD1-ARIN
OrgTechName: IPAddressing
OrgTechPhone: +1-720-699-4582
OrgTechEmail: ipaddressing@chartercom.com
OrgTechRef: https://whois.arin.net/rest/poc/IPADD1-ARIN
OrgAbuseHandle: ABUSE10-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-703-345-3416
OrgAbuseEmail: abuse@rr.com
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE10-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Lake Havasu City, United States left http://www.stewwebb.com/2018/03/23/ses-and-serco-the-big-secret-of-the-deep-state/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522044134.26
3/26/2018 1:02:16 AM (11 hours 25 mins ago)
IP: 47.216.40.139 Hostname: 47-216-40-139.lkhvcmtk02.res.dyn.suddenlink.net
Browser: Chrome version 0.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36
NetRange: 47.208.0.0 – 47.223.255.255
[1048576 addresses in this network]
CIDR: 47.208.0.0/12 (47.208.0.0 – 47.223.255.255)
[1048576 addresses in this network]
NetName: SUDDE
NetHandle: NET-47-208-0-0-1
Parent: NET47 (NET-47-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Suddenlink Communications (SUDDE)
RegDate: 2015-09-08
Updated: 2015-09-08
Ref: https://whois.arin.net/rest/net/NET-47-208-0-0-1
OrgName: Suddenlink Communications
OrgId: SUDDE
Address: 311 NNW Loop 323
City: Tyler
StateProv: TX
PostalCode: 75701
Country: US
RegDate: 2006-05-25
Updated: 2018-02-14
Ref: https://whois.arin.net/rest/org/SUDDE
ReferralServer: rwhois://rwhois.suddenlink.net:4321
OrgNOCHandle: NOCSU37-ARIN
OrgNOCName: NOC Suddenlink
OrgNOCPhone: +1-866-232-5455
OrgNOCEmail: noc@suddenlink.com
OrgNOCRef: https://whois.arin.net/rest/poc/NOCSU37-ARIN
OrgTechHandle: AUIO-ARIN
OrgTechName: Altice USA Internet Operations
OrgTechPhone: +1-516-803-2300
OrgTechEmail: hostmaster@cv.net
OrgTechRef: https://whois.arin.net/rest/poc/AUIO-ARIN
OrgAbuseHandle: ABUSE6997-ARIN
OrgAbuseName: Abuse Suddenlink
OrgAbusePhone: +1-903-266-4800
OrgAbuseEmail: hostmaster@cv.net
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE6997-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
San Diego, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522095760.82
3/26/2018 3:22:44 PM (14 minutes ago)
IP: 66.75.249.174
Browser: Safari version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0.3 Safari/604.5.6
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Atlanta, United States left http://www.stewwebb.com/stew-webb-radio-archives/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522111331.4
3/26/2018 7:42:14 PM (26 minutes ago)
IP: 172.94.81.11 Hostname: 172.94.81.11
Browser: Firefox version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:59.0) Gecko/20100101 Firefox/59.0
NetRange: 172.94.81.0 – 172.94.81.255
[256 addresses in this network]
CIDR: 172.94.81.0/24 (172.94.81.0 – 172.94.81.255)
[256 addresses in this network]
NetName: INTERNET-SHIELD-16-MICFO-US
NetHandle: NET-172-94-81-0-1
Parent: INTERNET-SHIELD-16 (NET-172-94-0-0-1)
NetType: Reassigned
OriginAS: AS53889
Organization: MICFO-US (MICFO-11)
RegDate: 2017-07-19
Updated: 2017-07-19
Ref: https://whois.arin.net/rest/net/NET-172-94-81-0-1
OrgName: MICFO-US
OrgId: MICFO-11
Address: 56 Marietta Street,
Address: Atlanta, GA 30339
City: Atlanta
StateProv: GA
PostalCode: 30339
Country: US
RegDate: 2017-07-19
Updated: 2017-07-19
Ref: https://whois.arin.net/rest/org/MICFO-11
OrgAbuseHandle: GADIT3-ARIN
OrgAbuseName: Gadit, Uzair
OrgAbusePhone: +1-217-651-4225
OrgAbuseEmail: admin@pointtoserver.com
OrgAbuseRef: https://whois.arin.net/rest/poc/GADIT3-ARIN
OrgTechHandle: GADIT3-ARIN
OrgTechName: Gadit, Uzair
OrgTechPhone: +1-217-651-4225
OrgTechEmail: admin@pointtoserver.com
OrgTechRef: https://whois.arin.net/rest/poc/GADIT3-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Trenton, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/2018/03/26/ten-cyber-terrorist-implanting-malicious-codes-against-stew-webb-whist…
3/27/2018 10:33:02 AM (2 hours 11 mins ago)
IP: 173.72.113.186 Hostname: pool-173-72-113-186.cmdnnj.fios.verizon.net
Browser: Edge version 16.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 Edge/16.16299
Type: Human
United States Trenton, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522164768.68
3/27/2018 10:32:51 AM (2 hours 11 mins ago)
IP: 173.72.113.186 Hostname: pool-173-72-113-186.cmdnnj.fios.verizon.net
Browser: Edge version 16.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 Edge/16.16299
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Pottstown, United States arrived from https://feedreader.com/observe/stewwebb.com/+view?from=5873225 and tried to access non-existent page http://www.stewwebb.com/+view?from=5873225
3/27/2018 10:17:36 AM (2 hours 27 mins ago)
IP: 98.114.100.42 Hostname: pool-98-114-100-42.phlapa.fios.verizon.net
Human/Bot: Human
Browser: Chrome version 0.0 running on Android
Mozilla/5.0 (Linux; Android 4.4.4; XT1080 Build/SU6-7.7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.109 Mobile Safari/537.36
@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Suwanee, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522116556.13
3/26/2018 9:09:19 PM (15 hours 48 mins ago)
IP: 104.57.142.176 Hostname: 104-57-142-176.lightspeed.tukrga.sbcglobal.net
Browser: Firefox version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:59.0) Gecko/20100101 Firefox/59.0
Suwanee, United States visited http://www.stewwebb.com/
3/27/2018 6:39:29 AM (6 hours 9 mins ago)
IP: 104.57.142.176 Hostname: 104-57-142-176.lightspeed.tukrga.sbcglobal.net
Browser: Firefox version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:59.0) Gecko/20100101 Firefox/59.0
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Fagnieres, France arrived from http://members.iimetro.com.au/~hubbca/links.htm and tried to access non-existent page http://www.stewwebb.com/file_list.htm
3/27/2018 1:19:32 PM (13 minutes ago)
IP: 90.34.101.218
Human/Bot: Human
Browser: Chrome version 0.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36
France Fagnieres, France left http://www.stewwebb.com/file_list.htm and visited http://www.stewwebb.com/
3/27/2018 1:19:43 PM (11 minutes ago)
IP: 90.34.101.218
Browser: Chrome version 0.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36
% Information related to ‘90.34.101.0 – 90.34.101.255’
[256 addresses in this network]
% Abuse contact for ‘90.34.101.0 – 90.34.101.255’ is ‘gestionip.ft@orange.com’
[256 addresses in this network]
inetnum: 90.34.101.0 – 90.34.101.255
[256 addresses in this network]
netname: IP2000-ADSL-BAS
descr: BSREI553 Reims Bloc 1
country: FR
admin-c: WITR1-RIPE
tech-c: WITR1-RIPE
status: ASSIGNED PA
remarks: for hacking, spamming or security problems send mail to
remarks: abuse@orange.fr
mnt-by: FT-BRX
created: 2011-10-18T12:22:50Z
last-modified: 2011-10-18T12:22:50Z
source: RIPE
role: Wanadoo France Technical Role
address: FRANCE TELECOM/SCR
address: 48 rue Camille Desmoulins
address: 92791 ISSY LES MOULINEAUX CEDEX 9
address: FR
phone: +33 1 58 88 50 00
abuse-mailbox: abuse@orange.fr
admin-c: BRX1-RIPE
tech-c: BRX1-RIPE
nic-hdl: WITR1-RIPE
mnt-by: FT-BRX
created: 2001-12-04T17:57:08Z
last-modified: 2013-07-16T14:09:50Z
source: RIPE # Filtered
% Information related to ‘90.34.0.0/16AS3215′ (90.34.0.0 – 90.35.255.255)
[131072 addresses in this network]
route: 90.34.0.0/16 (90.34.0.0 – 90.35.255.255)
[131072 addresses in this network]
descr: France Telecom IP2000-ADSL-BAS
origin: AS3215
mnt-by: FT-BRX
created: 2012-12-11T10:07:44Z
last-modified: 2012-12-11T10:07:44Z
source: RIPE
http://members.iimetro.com.au/~hubbca/links.htm
Are you looking for IPv4 address 203.0.178.70?
P address 203.0.178.70
Location Australia (AU
IP address 203.0.178.70
Reverse DNS (PTR record) not available
DNS server (NS record) ns2.iinet.net.au (203.59.24.3)
ns1.iinet.net.au (203.14.168.3)
ASN number 4739
ASN name (ISP) Internode Pty Ltd
IP-range/subnet 203.0.178.0/24
203.0.178.0 – 203.0.178.255
Domains around 203.0.178.70
IP address #domains
203.0.178.29 1
203.0.178.36 2
203.0.178.40 1
203.0.178.48 19
203.0.178.83 1
203.0.178.91 1285
203.0.178.92 37
203.0.178.93 16
203.0.178.114 1
203.0.178.178 1
203.0.178.186 3
203.0.178.191 2
203.0.178.192 1
inetnum: 203.0.178.0 – 203.0.178.255
netname: IINET-TECH-AU
descr: iiNet Limited
descr: Level 6, Durack Centre
descr: 263 Adelaide Terrace
descr: Perth WA 6000
country: AU
org: ORG-IL1-AP
admin-c: NO20-AP
tech-c: NO20-AP
mnt-by: APNIC-HM
status: ALLOCATED PORTABLE
mnt-irt: IRT-IINET-AU
organisation: ORG-IL1-AP
org-name: iiNet Limited
country: AU
address: 502 Hay St
@@@@@@@@@
??????????
iinet.net.au
This domain is hosted by iiNet Limited (AS4802). The first DNS server is ns1.iinet.net.au. The current IPv4 address is 203.173.50.151. The mail server with the highest priority is asav.iinet.net.au.
v=spf1 redirect=spf.iinet.net.au
Domain IPv4 address Ranking Alexa Pagerank
iinet.asia -1
iinet.at 80.80.244.192 -1
iinet.biz 203.173.50.132
iinet.cn
iinet.co 69.172.201.153
iinet.co.jp 220.109.217.178
iinet.co.nz 203.173.50.132
iinet.com 64.255.238.206 5
iinet.com.au 203.173.50.151 6
iinet.com.mx 200.78.212.57
iinet.de 89.31.143.1
iinet.eu 88.99.116.178 0
iinet.in 162.144.44.158
iinet.info 203.173.50.132
iinet.ir
iinet.jp 173.254.209.7
iinet.mobi 203.0.178.29 4
iinet.mx
iinet.name 203.173.50.132 -1
iinet.ne.jp 119.245.141.21 3
iinet.net 203.173.50.151 6
iinet.net.au 203.173.50.151 17,298 6
iinet.org 144.194.18.31 -1
iinet.rs 66.96.147.137 -1
iinet.ru 31.31.205.163 0
iinet.sa 192.185.168.181
iinet.se 45.32.232.250
iinet.shop
iinet.support 203.26.24.82
iinet.top
iinet.tv 203.0.178.91
iinet.work
iinet.xn--vuq861b 45.120.243.27
iinet.xxx 199.253.28.249 -1
iinet-au.com
iinet-au.info 162.255.119.117
iinet-au.net
iinet-sale.com 27.124.118.252
iinet-service.de 80.80.244.192
iinet1.com 208.91.197.27
iinet1.org 208.91.197.27
iinet2.com 208.91.197.26
iinet2.org 208.91.197.26 0
iinet3.com 208.91.197.26
iinet3.org 208.91.197.26
iineta-matome.com 133.130.64.112
iineta.net 219.94.162.168 0
iineta123.info 160.16.215.15
iineta123.net 160.16.215.15
iinetalk.com 104.197.104.56
IPv4 routes
Startip Endip Description Country #domains #spamhosts
14.2.0.0 14.2.255.255 iiNet Limited AU 33 0
46.17.120.0 46.17.127.255 IINET Backa Palanka RS 20 0
58.6.0.0 58.6.127.255 iiNet Limited AU 198 0
58.6.128.0 58.6.255.255 iiNet Limited AU 73 0
58.7.0.0 58.7.255.255 iiNet Limited AU 65 0
59.167.0.0 59.167.127.255 iiNet Limited AU 723 1
59.167.128.0 59.167.255.255 iiNet Limited AU 1,160 0
106.68.0.0 106.69.255.255 iiNet Limited AU 71 4
114.30.96.0 114.30.127.255 iiNet Limited AU 0 0
114.198.0.0 114.198.63.255 iiNet Limited AU 11 0
114.198.64.0 114.198.127.255 iiNet Limited AU 14 0
115.166.0.0 115.166.63.255 iiNet Limited AU 12 0
115.178.28.0 115.178.31.255 iiNet Limited AU 10 0
118.208.0.0 118.208.255.255 iiNet Limited AU 54 3
118.209.0.0 118.209.255.255 iiNet Limited AU 73 1
118.210.0.0 118.210.255.255 iiNet Limited AU 39 0
118.211.0.0 118.211.255.255 iiNet Limited AU 64 0
121.44.0.0 121.44.255.255 iiNet Limited AU 74 0
121.45.0.0 121.45.255.255 iiNet Limited AU 74 2
121.127.192.0 121.127.223.255 iiNet Limited AU 179 0
122.49.128.0 122.49.191.255 iiNet Limited AU 2 0
122.99.64.0 122.99.95.255 iiNet Limited AU 513 0
124.148.0.0 124.149.255.255 iiNet Limited AU 217 2
124.150.0.0 124.150.127.255 iiNet Limited AU 172 0
124.168.0.0 124.168.255.255 iiNet Limited AU 53 0
124.169.0.0 124.169.255.255 iiNet Limited AU 59 2
124.170.0.0 124.171.255.255 iiNet Limited AU 182 3
125.209.128.0 125.209.191.255 iiNet Limited AU 12 0
180.200.128.0 180.200.191.255 iiNet Limited AU 42 0
180.200.192.0 180.200.223.255 iiNet Limited AU 0 0
180.222.0.0 180.222.31.255 iiNet Limited AU 16 0
180.235.192.0 180.235.223.255 iiNet Limited AU 7 0
182.239.128.0 182.239.255.255 iiNet Limited AU 34 0
192.83.231.0 192.83.231.255 iiNet Limited AU 0 0
202.0.154.0 202.0.154.255 iiNet Limited AU 0 0
202.6.128.0 202.6.143.255 iiNet Limited AU 795 0
202.6.144.0 202.6.159.255 iiNet Limited AU 74 0
202.45.96.0 202.45.127.255 iiNet Limited AU 3,578 0
202.55.144.0 202.55.159.255 iiNet Limited AU 249 0
202.59.96.0 202.59.111.255 iiNet Limited AU 8,488 0
202.72.128.0 202.72.159.255 iiNet Limited AU 311 0
202.72.160.0 202.72.191.255 iiNet Limited AU 3,670 0
202.129.64.0 202.129.79.255 iiNet Limited AU 7 0
202.129.80.0 202.129.95.255 iiNet Limited AU 72 0
202.129.96.0 202.129.99.255 iiNet Limited AU 1 0
202.129.100.0 202.129.103.255 iiNet Limited AU 1 0
202.129.104.0 202.129.111.255 iiNet Limited AU 0 0
202.129.112.0 202.129.127.255 iiNet Limited AU 25 0
202.136.96.0 202.136.111.255 iiNet Limited AU 44 0
202.159.128.0 202.159.191.255 iiNet Limited AU 14 0
IPv6 routes
Startip Endip Description Country #domains #spamhosts
2001:4478:: 2001:4478:ffff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 12 0
2001:4479:: 2001:4479:ffff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 5 0
2001:447a:: 2001:447b:ffff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:44b8:: 2001:44b8:ffff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 185 0
2402:a400:: 2402:a400:ffff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2402:b800:: 2402:b800:ffff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 1 0
2402:b801:: 2402:b801:ffff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 6 0
2404:b800:: 2404:b800:ffff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:4478:1300:: 2001:4478:13ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 12 0
2001:4478:1310:1000:: 2001:4478:1310:1fff:ffff:ffff:ffff:ffff iiNet Limited AU 12 0
2001:4478:1312:: 2001:4478:1312:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:4478:1500:: 2001:4478:15ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:4478:1800:: 2001:4478:18ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:4478:1900:: 2001:4478:19ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:4478:2200:: 2001:4478:22ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:4478:2500:: 2001:4478:25ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:4478:5800:: 2001:4478:59ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:4478:ff01:: 2001:4478:ff01:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:44b8:60:2300:: 2001:44b8:60:23ff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:44b8:30e9:: 2001:44b8:30e9:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2001:44b8:30ea:: 2001:44b8:30ea:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2402:b801:100:: 2402:b801:1ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2402:b801:200:: 2402:b801:2ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2402:b801:300:: 2402:b801:3ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2402:b801:1000:: 2402:b801:1fff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2402:b801:2000:: 2402:b801:2fff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 6 0
2402:b801:2800:: 2402:b801:28ff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 2 0
2402:b801:2a00:: 2402:b801:2aff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2402:b801:2c00:: 2402:b801:2cff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2402:b801:3000:: 2402:b801:3fff:ffff:ffff:ffff:ffff:ffff iiNet Limited AU 0 0
2a00:d18:: 2a00:d18:ffff:ffff:ffff:ffff:ffff:ffff Net By Net Holding LLC RU 2 0
2a00:16d0:: 2a00:16d0:ffff:ffff:ffff:ffff:ffff:ffff Net By Net Holding LLC RU 0 0
2a03:d240:: 2a03:d240:ffff:ffff:ffff:ffff:ffff:ffff Net-Surf.net Ltd. BG 0 0
2001:518:: 2001:518:ffff:ffff:ffff:ffff:ffff:ffff Net Access Corporation US 6 0
2001:5a8:: 2001:5a8:ffff:ffff:ffff:ffff:ffff:ffff SONIC.NET, INC. US 14 0
2001:678:d4:: 2001:678:d4:ffff:ffff:ffff:ffff:ffff Medi@net S.r.l. IT 0 0
2001:678:170:: 2001:678:170:ffff:ffff:ffff:ffff:ffff Air NET Marcin Gola PL 0 0
2001:678:178:: 2001:678:178:ffff:ffff:ffff:ffff:ffff PROGRESS NET Sp. z o.o. PL 0 0
2001:678:190:: 2001:678:190:ffff:ffff:ffff:ffff:ffff Forest Net LTD RU 0 0
2001:678:320:: 2001:678:320:ffff:ffff:ffff:ffff:ffff Tipsport.net a.s. CZ 0 0
2001:678:38c:: 2001:678:38c:ffff:ffff:ffff:ffff:ffff Rawi-Net Sp. z o.o PL 0 0
2001:678:3c8:: 2001:678:3c8:ffff:ffff:ffff:ffff:ffff ARX-NET SA GR 5 0
2001:678:3e8:: 2001:678:3e8:ffff:ffff:ffff:ffff:ffff Janex-Net Marek Jasinski PL 2 0
2001:678:604:: 2001:678:604:ffff:ffff:ffff:ffff:ffff PC “Astra-net” UA 0 0
2001:678:608:: 2001:678:608:ffff:ffff:ffff:ffff:ffff QUICK-NET Mariusz Miska PL 0 0
2001:67c:84:: 2001:67c:84:ffff:ffff:ffff:ffff:ffff MAN net Ltd. CZ 0 0
2001:67c:e8:: 2001:67c:e8:ffff:ffff:ffff:ffff:ffff Multi-Net plus Ltd CZ 0 0
2001:67c:11c:: 2001:67c:11c:ffff:ffff:ffff:ffff:ffff MT-NEt G.Wojcik J.Kusnierz s.c. PL 3 0
2001:67c:400:: 2001:67c:400:ffff:ffff:ffff:ffff:ffff SPC Net Soluciones de Negocio Electronico S.L. ES 0 0
2001:67c:53c:: 2001:67c:53c:ffff:ffff:ffff:ffff:ffff RECRO-NET d.o.o. HR 0 0
Providers
ASN Provider Country #prefixes IPv4 #prefixes IPv6 #domains #spamhosts
4802 iiNet Limited AU 193 6 18,968 2
9556 iiNet Limited AU 11 1 1,244 0
12714 Net By Net Holding LLC RU 193 2 4,157 98
20911 Net-Surf.net Ltd. BG 28 0 71 2
51939 Net By Net Holding LLC RU 1 0 0 0
267 Nether.Net US 1 0 0 0
606 schat.net US 3 0 49 0
819 LARG*net CA 21 1 165 0
1618 Daytona Net Works, Inc. US 2 0 246 2
1886 BT NET d.o.o. za trgovinu i usluge HR 6 8 8 0
1902 Deutsche Telekom Pan-Net s.r.o. SK 4 0 0 0
2527 So-net Entertainment Corporation JP 50 2 4,532 12
3254 Lucky Net Ltd UA 4 0 2,214 2
3263 Erfan Net Fars Internet and Support Services Company PJSC IR 1 0 0 0
3595 Global Net Access, LLC US 37 3 86,134 11
3931 Logical Net Corporation US 6 0 743 0
3976 I.Net Technologies Inc. KR 1 0 0 0
4685 Asahi Net JP 33 2 8,790 18
4776 A-Net Co., Ltd. TH 35 1 143 0
4781 PAGIC.net , INC. TW 8 0 3 0
4788 TM Net, Internet Service Provider MY 396 13 33,677 100
5405 CSO.net Internet Services GmbH AT 1 1 3,980 0
5541 SC AD NET MARKET MEDIA SRL RO 23 3 603 0
6364 Atlantic.net, Inc. US 47 5 18,981 1
6381 BellSouth.net Inc. US 7 0 0 0
6382 BellSouth.net Inc. US 5 0 0 0
6383 BellSouth.net Inc. US 5 0 0 0
6384 BellSouth.net Inc. US 7 0 0 0
6385 BellSouth.net Inc. US 6 0 0 0
6386 BellSouth.net Inc. US 12 0 4 0
6389 BellSouth.net Inc. US 1,775 0 10,986 7
6624 Gower.Net US 3 0 27 0
6735 sdt.net AG DE 6 1 299 0
6831 Net & Com s.r.l. IT 2 1 656 0
6911 Pro-Net Internet Services Limited GB 4 0 155 0
7106 Com Net, Inc. US 9 1 950 1
7146 Georgia Business Net, Inc US 2 0 43 0
7175 aussie.net Pty Limited AU 2 4 0 0
7350 MetComm.Net, LLC US 1 0 37 0
7403 Colba Net Inc. CA 9 0 277 0
7600 Escape.net AU 56 4 517 0
7641 China Broadcasting TV Net CN 7 0 53 0
7806 Binary Net, LLC US 13 0 1,276 0
7850 iHighway.net, Inc. US 28 1 36 0
7891 Bellsouth.Net US 1 0 0 0
8001 Net Access Corporation US 39 4 15,088 1
8057 Vision Net, Inc. US 47 1 303 1
8061 Bellsouth.Net US 13 0 0 0
8063 Bellsouth.Net US 4 0 0 0
8345 Irkutsk Business Net RU 9 0 293 7
DNS server (NS records) ns1.iinet.net.au (203.14.168.3)
ns3.iinet.net.au (203.14.169.3)
ns2.iinet.net.au (203.59.24.3)
Mail server (MX records) asav.iinet.net.au (203.59.218.120)
IP address (IPv4) 203.173.50.151
IP address (IPv6) 2001:4478:1310:1fff:203:173:50:151
ASN number 4802
ASN name (ISP) iiNet Limited
IP-range/subnet 203.173.50.0/24
203.173.50.0 – 203.173.50.255
Domain Name: iinet.net.au
Last Modified: 20-May-2016 00:51:35 UTC
Status: clientDeleteProhibited
Registrar Name: Connect West
Registrant: iiNet Limited
Registrant ID: ACN 068 628 937
Eligibility Type: Company
Registrant Contact ID: CW-C009153
Registrant Contact Name: iiNet Hostmaster
203.0.178.91 1285
Are you looking for domain iimetro.com.au?
This domain is hosted by iiNet Limited (AS4802). The first DNS server is ns1.iinet.net.au. The current IPv4 address is 203.173.50.132. The mail server with the highest priority is as-av.iinet.net.au.
DNS server (NS records) ns1.iinet.net.au (203.14.168.3)
ns2.iinet.net.au (203.59.24.3)
ns3.iinet.net.au (203.14.169.3)
Mail server (MX records) as-av.iinet.net.au (203.0.178.180)
IP address (IPv4) 203.173.50.132
IP address (IPv6)
ASN number 4802
ASN name (ISP) iiNet Limited
IP-range/subnet 203.173.50.0/24
203.173.50.0 – 203.173.50.255
Domain Name: iimetro.com.au
Last Modified: 07-Aug-2016 22:56:44 UTC
Status: ok
Registrar Name: Connect West
Registrant: CONNECT WEST PTY LTD
Registrant ID: ABN 40073156779
Eligibility Type: Company
Registrant Contact ID: CW-C009153
Registrant Contact Name: iiNet Hostmaster
Domain IPv4 address Ranking Alexa Pagerank
iimetro.com.au 203.173.50.132 -1
iimetro.net.au 203.173.50.132
IPv4 routes
Startip Endip Description Country #domains #spamhosts
193.177.180.0 193.177.181.255 HTM Personenvervoer N.V. NL 0 0
203.6.128.0 203.6.129.255 Wilson HTM Ltd AU 0 0
46.51.224.0 46.51.255.255 The activity you have detected originates from a dynamic hosting environment. For fastest response, please submit abuse reports at http://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse For more information regarding EC2 see: http://ec2.amazonaws.com/ All reports MUST include: * src IP * dest IP (your IP) * dest port * Accurate date/timestamp and timezone of activity * Intensity/frequency (short log extracts) * Your contact details (phone and email) Without these we will be unable to i IE 1,213 0
46.137.192.0 46.137.223.255 The activity you have detected originates from a dynamic hosting environment. For fastest response, please submit abuse reports at http://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse For more information regarding EC2 see: http://ec2.amazonaws.com/ All reports MUST include: * src IP * dest IP (your IP) * dest port * Accurate date/timestamp and timezone of activity * Intensity/frequency (short log extracts) * Your contact details (phone and email) Without these we will be unable to i IE 1,054 0
46.137.224.0 46.137.255.255 The activity you have detected originates from a dynamic hosting environment. For fastest response, please submit abuse reports at http://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse For more information regarding EC2 see: http://ec2.amazonaws.com/ All reports MUST include: * src IP * dest IP (your IP) * dest port * Accurate date/timestamp and timezone of activity * Intensity/frequency (short log extracts) * Your contact details (phone and email) Without these we will be unable to i IE 1,570 0
185.37.96.0 185.37.99.255 QNREN Members’ Peering LAN QA 2 0
192.171.14.0 192.171.15.255 Indiana Members Credit Union US 0 0
199.59.176.0 199.59.179.255 THE MEMBERS GROUP US 0 0
203.210.82.0 203.210.82.255 Members Equity Bank, Melbourne Australia AU 1 0
8.38.162.0 8.38.162.255 Members 1st Federal Credit Union US 0 0
8.38.163.0 8.38.163.255 Members 1st Federal Credit Union US 1 0
41.93.40.0 41.93.47.255 Assigned to Members TZ 3 1
185.95.218.0 185.95.218.255 CommunityRack.org Members CH 64 0
192.171.14.0 192.171.14.255 Indiana Members Credit Union US 0 0
192.171.15.0 192.171.15.255 Indiana Members Credit Union US 0 0
193.80.191.0 193.80.191.255 SPOe members AT 2 0
199.59.176.0 199.59.176.255 THE MEMBERS GROUP US 0 0
199.59.177.0 199.59.177.255 THE MEMBERS GROUP US 0 0
199.59.179.0 199.59.179.255 THE MEMBERS GROUP US 0 0
37.157.248.0 37.157.255.255 gameserver by http://www.gamed.de DE 653 0
46.150.160.0 46.150.191.255 Web Page: http://www.opticom.net RU 9 0
62.122.192.0 62.122.199.255 Web Page: http://www.opticom.net RU 10 0
91.216.185.0 91.216.185.255 http://www.networkimage.cz/ CZ 0 0
185.12.152.0 185.12.155.255 1C LLC, http://www.1c.ru RU 15 0
185.21.24.0 185.21.27.255 EL.COM. S.R.L. – dodonet network – http://www.dodonet.it IT 1 0
185.33.116.0 185.33.119.255 http://www.csv-networks.nl NL 4,200 0
185.166.4.0 185.166.7.255 http.net Internet GmbH DE 0 0
185.187.40.0 185.187.43.255 EL.COM. S.R.L. – dodonet network – http://www.dodonet.it IT 0 0
193.108.172.0 193.108.173.255 http://www.vmunix.org/ DE 5 0
193.169.234.0 193.169.235.255 openstat project http://openstat.com/ RU 0 0
194.50.75.0 194.50.75.255 http://pop.pl PL 0 0
194.110.69.0 194.110.69.255 http://www.geeknode.org/ FR 14 0
195.216.236.0 195.216.236.255 trouble: Information: http://www.inbox.lv LV 10 0
195.244.26.0 195.244.27.255 http://pop.pl PL 4 0
203.55.130.0 203.55.130.255 http://internetcity AU 0 0
213.160.64.0 213.160.95.255 http.net Internet GmbH DE 23,640 0
217.197.112.0 217.197.127.255 http://www.estt.ru RU 667 0
31.172.136.0 31.172.137.255 Home net project, http://domonet.ua/ UA 12 0
31.172.136.0 31.172.136.255 Home net project, http://domonet.ua/ UA 0 0
31.172.137.0 31.172.137.255 Home net project, http://domonet.ua/ UA 12 0
31.172.141.0 31.172.141.255 Home net project, http://domonet.ua/ UA 7 0
31.172.143.0 31.172.143.255 Unlimited project, http://unlimited.ua/ UA 5 0
46.150.180.0 46.150.183.255 Web Page: http://www.opticom.net RU 0 0
62.122.192.0 62.122.195.255 Web Page: http://www.opticom.net RU 3 0
62.122.197.0 62.122.197.255 Web Page: http://www.opticom.net RU 5 0
85.25.89.0 85.25.89.255 http://www.epharmexx.de DE 126 0
91.242.81.0 91.242.81.255 registered through http://www.itns.md/ip.html MD 0 0
92.61.60.0 92.61.63.255 http://www.makenewmedia.com AT 69 0
93.186.194.0 93.186.194.255 Gameservers by http://gamed.es DE 0 0
103.25.62.0 103.25.62.255 http://compevo.com HK 0 0
IPv6 routes
Startip Endip Description Country #domains #spamhosts
2001:df0:80:: 2001:df0:80:ffff:ffff:ffff:ffff:ffff Members Equity Bank, Melbourne Australia AU 0 0
2001:7f8:1d:: 2001:7f8:1d:ffff:ffff:ffff:ffff:ffff http://www.trex.fi/ FI 0 0
2620:126:1000:: 2620:126:100f:ffff:ffff:ffff:ffff:ffff Links Technology Solutions, Inc. US 0 0
2a00:17d8:: 2a00:17df:ffff:ffff:ffff:ffff:ffff:ffff http.net Internet GmbH DE 935 0
2a00:54e0:: 2a00:54e0:ffff:ffff:ffff:ffff:ffff:ffff EL.COM. S.R.L. – dodonet network – http://www.dodonet.it IT 0 0
2a00:9960:: 2a00:9960:ffff:ffff:ffff:ffff:ffff:ffff HIGH SPEED PROFESSIONAL LINKS, SARL LB 0 0
2a00:f8c0:: 2a00:f8c0:ffff:ffff:ffff:ffff:ffff:ffff Newsnet AG backbone routers and links LI 1 0
2a05:50c0:: 2a05:50c7:ffff:ffff:ffff:ffff:ffff:ffff Golden Sky Links Company For Internet & Communication Ltd IQ 0 0
2a00:4b80:: 2a00:4b80::ffff:ffff:ffff:ffff:ffff OPEN CABLE LINKS ES 2 0
2a05:dfc7:5:: 2a05:dfc7:5:ffff:ffff:ffff:ffff:ffff FuslVZ OpenNIC Anycast DNS Resolver (IPv6-1) – http://dnsrec.meo.ws/ GB 2 0
2a05:dfc7:5353:: 2a05:dfc7:5353:ffff:ffff:ffff:ffff:ffff FuslVZ OpenNIC Anycast DNS Resolver (IPv6-5) – http://dnsrec.meo.ws/ GB 0 0
Providers
ASN Provider Country #prefixes IPv4 #prefixes IPv6 #domains #spamhosts
12574 http.net Internet GmbH DE 1 1 23,640 0
58544 http://www.tvdirect.tv TH 2 0 4 0
17940 CYBER LINKS Co.,Ltd. JP 3 1 278 0
22179 Links Technology Solutions, Inc. US 1 0 0 0
29623 HIGH SPEED PROFESSIONAL LINKS, SARL LB 4 0 0 0
57727 QUICK-LINKS IL 7 0 0 0
201145 Golden Sky Links Company For Internet & Communication Ltd IQ 3 0 0 0
205166 Mobile Links Europe AB SE 1 0 2 0
394768 Links Technology Solutions, Inc. US 2 1 19 0
2554 for assignment to JPNIC members JP 50 0 35,806 6
2907 for assignment to JPNIC members JP 566 4 977 1
3488 for assignment to JPNIC members JP 8 0 2 0
20003 Members 1st Federal Credit Union US 2 0 1 0
24229 for assignment to JPNIC members JP 4 1 51 0
33277 THE MEMBERS GROUP US 4 0 11 0
45616 Members Equity Bank Ltd AU 1 0 1 0
@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=35
3/27/2018 11:31:51 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=34
3/27/2018 11:31:49 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=33
3/27/2018 11:31:48 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=32
3/27/2018 11:31:47 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=31
3/27/2018 11:31:47 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=30
3/27/2018 11:31:46 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=29
3/27/2018 11:31:43 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=28
3/27/2018 11:31:36 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=27
3/27/2018 11:31:28 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=26
3/27/2018 11:31:26 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=25
3/27/2018 11:31:24 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=24
3/27/2018 11:31:18 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=23
3/27/2018 11:31:16 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=22
3/27/2018 11:31:13 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=21
3/27/2018 11:31:12 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=20
3/27/2018 11:31:08 AM (2 hours 23 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=19
3/27/2018 11:31:06 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=18
3/27/2018 11:31:03 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=17
3/27/2018 11:31:02 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=16
3/27/2018 11:30:57 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=15
3/27/2018 11:30:56 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=14
3/27/2018 11:30:56 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=13
3/27/2018 11:30:54 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=12
3/27/2018 11:30:52 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=11
3/27/2018 11:30:47 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=10
3/27/2018 11:30:45 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=9
3/27/2018 11:30:43 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=8
3/27/2018 11:30:41 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=7
3/27/2018 11:30:39 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Type: Blocked
United States Cliffside, United States was blocked by firewall at http://www.stewwebb.com/?author=6
3/27/2018 11:30:37 AM (2 hours 24 mins ago)
IP: 24.181.242.250 Hostname: 24-181-242-250.static.snfr.nc.charter.com
Human/Bot: Bot
Browser: Firefox version 52.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
San Angelo, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522190578.6
3/27/2018 5:43:00 PM (5 minutes ago)
IP: 216.228.76.143 Hostname: 216.228.76.143
Browser: Firefox version 47.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:47.0) Gecko/20100101 Firefox/47.0
Type: Human
United States San Angelo, United States arrived from http://www.informamerica.net/assassination_murder/Obama_Opponents_Murdered.htm and visited http://www.stewwebb.com/
3/27/2018 5:42:57 PM (5 minutes ago)
IP: 216.228.76.143 Hostname: 216.228.76.143
Browser: Firefox version 47.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:47.0) Gecko/20100101 Firefox/47.0
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Uberlândia, Brazil was blocked access via country blocking at http://www.stewwebb.com/modules/columnadverts/config.xml
3/27/2018 5:41:19 PM (8 minutes ago)
IP: 187.32.93.225
Human/Bot: Bot
Browser: IE version 7.0 running on Win32
Mozilla/5.0 (compatible; MSIE 7.0; Windows 98; Trident/3.1)
inetnum: 187.32.0.0/16 (187.32.0.0 – 187.33.255.255)
[131072 addresses in this network]
aut-num: AS16735
abuse-c: CST87
owner: ALGAR TELECOM S/A
ownerid: 71.208.516/0001-74responsible: Cristiana Heluy de Castro
owner-c: ALTSA49
tech-c: CNI15
inetrev: 187.32.92.0/22 (187.32.92.0 – 187.32.95.255)
[1024 addresses in this network]
nserver: nspar.ctbc.com.br
nsstat: 20180327 AA
nslastaa: 20180327
nserver: nssar.ctbc.com.br
nsstat: 20180327 AA
nslastaa: 20180327
created: 20081218
changed: 20130307
nic-hdl-br: ALTSA49
person: ALGAR TELECOM S/A
created: 20140820
changed: 20170411
nic-hdl-br: CNI15
person: CTBC – Núcleo de Aministração de IPs
created: 20060417
changed: 20141103
nic-hdl-br: CST87
person: Computer Security Incident Response Team
created: 20051208
changed: 20141114
@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Hampton, United States visited http://www.stewwebb.com/wp-content/plugins/showbiz/css/post_settings.css
3/27/2018 5:40:40 PM (11 minutes ago)
IP: 67.235.96.52
Browser: IE version 9.0 running on Win32
Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 5.1; Trident/4.0)
NetRange: 67.232.0.0 – 67.239.255.255
[524288 addresses in this network]
CIDR: 67.232.0.0/13 (67.232.0.0 – 67.239.255.255)
[524288 addresses in this network]
NetName: CENTURYLINK-LEGACY-EMBARQ-BKL-4
NetHandle: NET-67-232-0-0-1
Parent: NET67 (NET-67-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Embarq Corporation (EMBAR)
RegDate: 2008-01-14
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-67-232-0-0-1
OrgName: Embarq Corporation
OrgId: EMBAR
Address: 500 N New York Ave
City: Winter Park
StateProv: FL
PostalCode: 32789
Country: US
RegDate: 2006-07-06
Updated: 2018-03-13
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Comment:
Comment: For abuse issues, please email abuse@centurylinkservices.net
Comment:
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Law Enforcement Support page https://www.centurylink.com/static/Pages/AboutUs/Legal/LawEnforcement/
Ref: https://whois.arin.net/rest/org/EMBAR
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@centurylinkservices.net
OrgAbuseRef: https://whois.arin.net/rest/poc/CAD54-ARIN
OrgTechHandle: QIA-ARIN
OrgTechName: Centurylink IP Admin
OrgTechPhone: +1-877-886-6515
OrgTechEmail: ipadmin@centurylink.com
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Columbia City, United States visited http://www.stewwebb.com/wp-content/plugins/php-event-calendar/js/file-uploader/app.js
3/27/2018 5:36:10 PM (19 minutes ago)
IP: 67.237.31.217
Browser: Safari version 0.0 running on Win8
Mozilla/5.0 (Windows; U; Windows NT 6.2) AppleWebKit/531.21.4 (KHTML, like Gecko) Version/4.0.1 Safari/531.21.4
NetRange: 67.232.0.0 – 67.239.255.255
[524288 addresses in this network]
CIDR: 67.232.0.0/13 (67.232.0.0 – 67.239.255.255)
[524288 addresses in this network]
NetName: CENTURYLINK-LEGACY-EMBARQ-BKL-4
NetHandle: NET-67-232-0-0-1
Parent: NET67 (NET-67-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Embarq Corporation (EMBAR)
RegDate: 2008-01-14
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-67-232-0-0-1
OrgName: Embarq Corporation
OrgId: EMBAR
Address: 500 N New York Ave
City: Winter Park
StateProv: FL
PostalCode: 32789
Country: US
RegDate: 2006-07-06
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Rome, Italy was blocked access via country blocking at http://www.stewwebb.com/modules/fieldvmegamenu/config.xml
3/27/2018 5:27:48 PM (28 minutes ago)
IP: 93.58.124.32
Human/Bot: Bot
Browser: Firefox version 37.0 running on Linux
Mozilla/5.0 (X11; Linux i686; rv:5.0) Gecko/20140505 Firefox/37.0
% Information related to ‘93.58.124.0 – 93.58.124.255’
[256 addresses in this network]
% Abuse contact for ‘93.58.124.0 – 93.58.124.255’ is ‘abuse@fastweb.it’
[256 addresses in this network]
inetnum: 93.58.124.0 – 93.58.124.255
[256 addresses in this network]
netname: FASTWEB-L3-PAT_NAT
descr: PAT/NAT IP addresses POP 2305 for
descr: Static allocation to Residential/SoHo customer with L3 devices
country: IT
admin-c: IRS2-RIPE
tech-c: IRS2-RIPE
status: ASSIGNED PA
mnt-by: FASTWEB-MNT
remarks: In case of improper use originating from our network,
remarks: please mail customer or abuse@fastweb.it
remarks: INFRA-AW
created: 2010-05-13T06:05:34Z
last-modified: 2010-05-13T06:05:34Z
source: RIPE
person: ip registration service
address: Via Caracciolo, 51
address: 20155 Milano MI
address: Italy
phone: +39 02 45451
fax-no: +39 02 45451
nic-hdl: IRS2-RIPE
mnt-by: FASTWEB-MNT
remarks:
remarks: In case of improper use originating from our network,
remarks: please mail customer or abuse@fastweb.it
remarks:
created: 2001-12-18T12:06:41Z
last-modified: 2008-02-29T14:09:58Z
source: RIPE # Filtered
% Information related to ‘93.56.0.0/14AS12874’ (93.56.0.0 – 93.63.255.255)
[524288 addresses in this network]
route: 93.56.0.0/14 (93.56.0.0 – 93.63.255.255)
[524288 addresses in this network]
descr: Fastweb Networks block
origin: AS12874
mnt-by: FASTWEB-MNT
created: 2009-06-24T20:25:56Z
last-modified: 2009-06-24T20:25:56Z
source: RIPE
@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Iran visited http://www.stewwebb.com/modules/fieldvmegamenu/config.xml
3/27/2018 5:26:53 PM (31 minutes ago)
IP: 2.180.30.169
Browser: Firefox version 37.0 running on Linux
Mozilla/5.0 (X11; Linux i686; rv:5.0) Gecko/20140505 Firefox/37.0
% Information related to ‘2.180.16.0 – 2.180.63.255’
[12288 addresses in this network]
% Abuse contact for ‘2.180.16.0 – 2.180.63.255’ is ‘abuse@ito.gov.ir’
[12288 addresses in this network]
inetnum: 2.180.16.0 – 2.180.63.255
[12288 addresses in this network]
netname: tckhr-DSL
descr: Telecommunication Company of Khorasan Razavi for ADSL users
country: IR
admin-c: JS10218-RIPE
tech-c: JS10218-RIPE
status: ASSIGNED PA
mnt-by: AS12880-MNT
created: 2011-09-20T09:32:06Z
last-modified: 2011-09-20T09:32:06Z
source: RIPE
person: Jamil Sabaghi
address: Khomeini ST Mashhad Iran
phone: +98 511 604 44 40
nic-hdl: JS10218-RIPE
mnt-by: AS12880-MNT
created: 2011-09-20T09:32:06Z
last-modified: 2011-09-20T09:32:06Z
source: RIPE # Filtered
% Information related to ‘2.180.16.0/20as12880’ (2.180.16.0 – 2.180.31.255)
[4096 addresses in this network]
route: 2.180.16.0/20 (2.180.16.0 – 2.180.31.255)
[4096 addresses in this network]
descr: mashhad
origin: as12880
mnt-by: as12880-MNT
mnt-routes: mohsenrahimimaintainer
created: 2012-09-02T12:03:15Z
last-modified: 2012-12-18T12:34:46Z
source: RIPE
% Information related to ‘2.180.16.0/20as48159’ (2.180.16.0 – 2.180.31.255)
[4096 addresses in this network]
route: 2.180.16.0/20 (2.180.16.0 – 2.180.31.255)
[4096 addresses in this network]
descr: Telecommunication Infrastructure Company
descr: Mashhad
origin: as48159
mnt-by: mohsenrahimimaintainer
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Lehigh Acres, United States visited http://www.stewwebb.com/components/com_foxcontact/js/jtext.js
3/27/2018 5:25:38 PM (33 minutes ago)
IP: 71.208.193.237 Hostname: 71-208-193-237.ftmy.qwest.net
Browser: Firefox version 37.0 running on MacOSX
Mozilla/5.0 (Macintosh; PPC Mac OS X 10_7_6 rv:5.0) Gecko/20111129 Firefox/37.0
NetRange: 71.208.0.0 – 71.223.255.255
[1048576 addresses in this network]
CIDR: 71.208.0.0/12 (71.208.0.0 – 71.223.255.255)
[1048576 addresses in this network]
NetName: CENTURYLINK-LEGACY-QWEST-INET-118
NetHandle: NET-71-208-0-0-1
Parent: NET71 (NET-71-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Qwest Communications Company, LLC (QCC-18)
RegDate: 2005-05-06
Updated: 2018-02-21
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-71-208-0-0-1
OrgName: Qwest Communications Company, LLC
OrgId: QCC-18
Address: 100 CENTURYLINK DR
City: Monroe
StateProv: LA
PostalCode: 71203
Country: US
RegDate: 2005-05-09
Updated: 2017-01-28
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Comment:
Comment: For abuse issues, please email abuse@centurylinkservices.net
Comment:
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Law Enforcement Support page https://www.centurylink.com/static/Pages/AboutUs/Legal/LawEnforcement/
Ref: https://whois.arin.net/rest/org/QCC-18
OrgTechHandle: QIA-ARIN
OrgTechName: Centurylink IP Admin
OrgTechPhone: +1-877-886-6515
OrgTechEmail: ipadmin@centurylink.com
OrgTechRef: https://whois.arin.net/rest/poc/QIA-ARIN
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@centurylinkservices.net
OrgAbuseRef: https://whois.arin.net/rest/poc/CAD54-ARIN
RAbuseHandle: QIA2-ARIN
RAbuseName: Qwest Abuse
RAbusePhone: +1-877-886-6515
RAbuseEmail: abuse@qwest.net
RAbuseRef: https://whois.arin.net/rest/poc/QIA2-ARIN
RTechHandle: QIA-ARIN
RTechName: Centurylink IP Admin
RTechPhone: +1-877-886-6515
RTechEmail: ipadmin@centurylink.com
RTechRef: https://whois.arin.net/rest/poc/QIA-ARIN
RNOCHandle: QIN-ARIN
RNOCName: Qwest IP NOC
RNOCPhone: +1-877-886-6515
RNOCEmail: support@qwestip.net
RNOCRef: https://whois.arin.net/rest/poc/QIN-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Kalispell, United States visited http://www.stewwebb.com/wp-content/plugins/accesspress-anonymous-post-pro/js/admin-extra.js
3/27/2018 5:21:51 PM (41 minutes ago)
IP: 72.160.48.244 Hostname: 72-160-48-244.dyn.centurytel.net
Browser: undefined
Opera/9.12 (Windows NT 6.2; en-US) Presto/2.9.331 Version/11.00
NetRange: 72.160.0.0 – 72.161.255.255
[131072 addresses in this network]
CIDR: 72.160.0.0/15 (72.160.0.0 – 72.163.255.255)
[262144 addresses in this network]
NetName: CENTURYLINK-LEGACY-CENTURYTEL-NETBLOCK10
NetHandle: NET-72-160-0-0-1
Parent: NET72 (NET-72-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: CenturyTel Internet Holdings, Inc. (CIH-12)
RegDate: 2005-09-23
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-72-160-0-0-1
OrgName: CenturyTel Internet Holdings, Inc.
OrgId: CIH-12
Address: 100 CenturyTel Drive
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2003-11-05
Updated: 2018-03-13
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Comment:
Comment: For abuse issues, please email abuse@centurylinkservices.net
Comment:
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Law Enforcement Support page https://www.centurylink.com/static/Pages/AboutUs/Legal/LawEnforcement/
Ref: https://whois.arin.net/rest/org/CIH-12
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@centurylinkservices.net
OrgAbuseRef: https://whois.arin.net/rest/poc/CAD54-ARIN
OrgTechHandle: QIA-ARIN
OrgTechName: Centurylink IP Admin
OrgTechPhone: +1-877-886-6515
OrgTechEmail: ipadmin@centurylink.com
OrgTechRef: https://whois.arin.net/rest/poc/QIA-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Enterprise, United States visited http://www.stewwebb.com/components/com_sexycontactform/assets/js/index.html
3/27/2018 5:20:40 PM (43 minutes ago)
IP: 75.121.78.79 Hostname: 75-121-78-79.dyn.centurytel.net
Browser: IE version 9.0 running on Win32
Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 5.2; Trident/5.1)
NetRange: 75.120.0.0 – 75.121.255.255
[131072 addresses in this network]
CIDR: 75.120.0.0/15 (75.120.0.0 – 75.123.255.255)
[262144 addresses in this network]
NetName: CENTURYLINK-LEGACY-CENTURYTEL-NETBLOCK11
NetHandle: NET-75-120-0-0-1
Parent: NET75 (NET-75-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: CenturyTel Internet Holdings, Inc. (CIH-12)
RegDate: 2006-10-05
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-75-120-0-0-1
OrgName: CenturyTel Internet Holdings, Inc.
OrgId: CIH-12
Address: 100 CenturyTel Drive
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2003-11-05
Updated: 2018-03-13
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Catawba, United States visited http://www.stewwebb.com/modules/attributewizardpro/config.xml
3/27/2018 5:18:42 PM (46 minutes ago)
IP: 67.237.81.120 Hostname: nc-67-237-81-120.dyn.embarqhsd.net
Browser: Firefox version 36.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_6_7 rv:3.0) Gecko/20100912 Firefox/36.0
NetRange: 67.232.0.0 – 67.239.255.255
[524288 addresses in this network]
CIDR: 67.232.0.0/13 (67.232.0.0 – 67.239.255.255)
[524288 addresses in this network]
NetName: CENTURYLINK-LEGACY-EMBARQ-BKL-4
NetHandle: NET-67-232-0-0-1
Parent: NET67 (NET-67-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Embarq Corporation (EMBAR)
RegDate: 2008-01-14
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-67-232-0-0-1
OrgName: Embarq Corporation
OrgId: EMBAR
Address: 500 N New York Ave
City: Winter Park
StateProv: FL
PostalCode: 32789
Country: US
RegDate: 2006-07-06
Updated: 2018-03-13
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Comment:
Comment: For abuse issues, please email abuse@centurylinkservices.net
Comment:
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Law Enforcement Support page https://www.centurylink.com/static/Pages/AboutUs/Legal/LawEnforcement/
Ref: https://whois.arin.net/rest/org/EMBAR
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@centurylinkservices.net
OrgAbuseRef: https://whois.arin.net/rest/poc/CAD54-ARIN
OrgTechHandle: QIA-ARIN
OrgTechName: Centurylink IP Admin
OrgTechPhone: +1-877-886-6515
OrgTechEmail: ipadmin@centurylink.com
OrgTechRef: https://whois.arin.net/rest/poc/QIA-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Athens, Greece visited http://www.stewwebb.com/modules/attributewizardpro/config.xml
3/27/2018 5:18:24 PM (47 minutes ago)
IP: 62.217.98.150 Hostname: elidek-1.eier.access-link.grnet.gr
Browser: Firefox version 36.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_6_7 rv:3.0) Gecko/20100912 Firefox/36.0
% Information related to ‘62.217.96.0 – 62.217.111.255’
[4096 addresses in this network]
% Abuse contact for ‘62.217.96.0 – 62.217.111.255’ is ‘abuse@grnet.gr’
[4096 addresses in this network]
inetnum: 62.217.96.0 – 62.217.111.255
[4096 addresses in this network]
netname: GRNET
descr: GRNET4 Core
descr: Greek Research and Technology Network S.A
descr: 56 Messogion Av.
descr: 11527 Athens
country: GR
org: ORG-GRaT1-RIPE
admin-c: GN1931-RIPE
tech-c: GN1931-RIPE
abuse-c: GN1931-RIPE
remarks: INFRA-AW
status: ASSIGNED PA
mnt-by: GRNET-NOC
mnt-domains: MNT-GRNET-DNS
created: 2012-04-03T08:11:34Z
last-modified: 2018-01-12T08:53:06Z
source: RIPE
organisation: ORG-GRaT1-RIPE
org-name: Greek Research and Technology Network S.A
org-type: LIR
address: 7 Kifisias Av.
address: 11523
address: Athens
address: GREECE
phone: +302107474274
fax-no: +302107474490
admin-c: PT1566-RIPE
admin-c: GN1931-RIPE
admin-c: AP3196-RIPE
admin-c: AL3706-RIPE
admin-c: YM1289-RIPE
tech-c: GN1931-RIPE
abuse-c: GN1931-RIPE
mnt-ref: RIPE-NCC-HM-MNT
mnt-ref: GRNET-NOC
mnt-by: RIPE-NCC-HM-MNT
mnt-by: GRNET-NOC
created: 2004-04-17T11:24:56Z
last-modified: 2017-10-30T14:40:07Z
source: RIPE # Filtered
role: GRNET NOC
org: ORG-GRaT1-RIPE
address: Greek Research and Technology Network (GRNET) S.A.
address: Messogeion 56
address: Athens 11527, GREECE
phone: +30 210 7474274
fax-no: +30 210 7474490
remarks: ————————————–
remarks: For complains about abuse, spam etc:
abuse-mailbox: abuse@grnet.gr
remarks: ————————————–
admin-c: PT1566-RIPE
tech-c: YM412-RIPE
tech-c: AP3196-RIPE
tech-c: AL3706-RIPE
mnt-by: GRNET-NOC
nic-hdl: GN1931-RIPE
created: 2007-06-12T14:21:14Z
last-modified: 2014-01-27T08:08:29Z
source: RIPE # Filtered
% Information related to ‘62.217.96.0/19AS5408’ (62.217.96.0 – 62.217.127.255)
[8192 addresses in this network]
route: 62.217.96.0/19 (62.217.96.0 – 62.217.127.255)
[8192 addresses in this network]
descr: GRNET
origin: AS5408
mnt-by: GRNET-NOC
created: 2012-02-09T11:48:00Z
last-modified: 2012-02-09T11:48:00Z
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Cyberjaya, Malaysia visited http://www.stewwebb.com/wp-content/plugins/website-contact-form-with-file-upload/js/nm-global.js
3/27/2018 5:14:57 PM (52 minutes ago)
IP: 61.6.27.30 Hostname: broadband.time.net.my
Browser: Chrome version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_6_1) AppleWebKit/5330 (KHTML, like Gecko) Chrome/38.0.885.0 Mobile Safari/5330
% Information related to ‘61.6.0.0 – 61.6.191.255’
[49152 addresses in this network]
% Abuse contact for ‘61.6.0.0 – 61.6.191.255’ is ‘abuse@time.com.my’
[49152 addresses in this network]
inetnum: 61.6.0.0 – 61.6.191.255
[49152 addresses in this network]
netname: TTDOTCOM-MY
descr: TT DOTCOM SDN BHD
descr: LOT 14, JALAN U1/26
descr: SEKSYEN U1
descr: HICOM GLENMARIE INDUSTRIAL PARK
descr: SHAH ALAM, SELANGOR 40150
country: MY
org: ORG-TDSB1-AP
admin-c: TDSB3-AP
tech-c: TDSB3-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-TTDOTCOM-MY
mnt-irt: IRT-TTDOTCOM-MY
status: ALLOCATED PORTABLE
last-modified: 2017-08-30T07:18:47Z
source: APNIC
irt: IRT-TTDOTCOM-MY
address: LOT 14, JALAN U1/26, SEKSYEN U1, HICOM GLENMARIE INDUSTRIAL PARK, SHAH ALAM SELANGOR 40150
e-mail: abuse@time.com.my
abuse-mailbox: abuse@time.com.my
admin-c: TDSB3-AP
tech-c: TDSB3-AP
auth: # Filtered
mnt-by: MAINT-TTDOTCOM-MY
last-modified: 2016-01-25T03:32:51Z
source: APNIC
organisation: ORG-TDSB1-AP
org-name: TT DOTCOM SDN BHD
country: MY
address: LOT 14, JALAN U1/26
address: SEKSYEN U1
address: HICOM GLENMARIE INDUSTRIAL PARK
phone: +60-3-5032-6000
fax-no: +60-3-5032-6353
e-mail: abuse@time.com.my
mnt-ref: APNIC-HM
mnt-by: APNIC-HM
last-modified: 2017-10-11T01:29:52Z
source: APNIC
role: TT DOTCOM SDN BHD administrator
address: LOT 14, JALAN U1/26, SEKSYEN U1, HICOM GLENMARIE INDUSTRIAL PARK, SHAH ALAM SELANGOR 40150
country: MY
phone: +60-3-5032-6000
fax-no: +60-3-5032-6000
e-mail: abuse@time.com.my
admin-c: TDSB3-AP
tech-c: TDSB3-AP
nic-hdl: TDSB3-AP
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Lebanon, United States visited http://www.stewwebb.com/wp-content/plugins/website-contact-form-with-file-upload/js/nm-global.js
3/27/2018 5:14:34 PM (53 minutes ago)
IP: 207.118.43.43 Hostname: 207-118-43-43.dyn.centurytel.net
Browser: Chrome version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_6_1) AppleWebKit/5330 (KHTML, like Gecko) Chrome/38.0.885.0 Mobile Safari/5330
NetRange: 207.118.0.0 – 207.119.255.255
[131072 addresses in this network]
CIDR: 207.118.0.0/15 (207.118.0.0 – 207.119.255.255)
[131072 addresses in this network]
NetName: CENTURYLINK-LEGACY-CENTURYTEL-NETBLOCK9
NetHandle: NET-207-118-0-0-1
Parent: NET207 (NET-207-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: CenturyTel Internet Holdings, Inc. (CIH-12)
RegDate: 2004-06-18
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-207-118-0-0-1
OrgName: CenturyTel Internet Holdings, Inc.
OrgId: CIH-12
Address: 100 CenturyTel Drive
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2003-11-05
Updated: 2018-03-13
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Comment:
Comment: For abuse issues, please email abuse@centurylinkservices.net
Comment:
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Law Enforcement Support page https://www.centurylink.com/static/Pages/AboutUs/Legal/LawEnforcement/
Ref: https://whois.arin.net/rest/org/CIH-12
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@centurylinkservices.net
OrgAbuseRef: https://whois.arin.net/rest/poc/CAD54-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Turkey visited http://www.stewwebb.com/wp-content/plugins/woocommerce-product-addon/js/nm-global.js
3/27/2018 5:12:03 PM (57 minutes ago)
IP: 95.0.32.8 Hostname: 95.0.32.8.static.ttnet.com.tr
Browser: Chrome version 0.0 running on Win32
Mozilla/5.0 (Windows NT 5.2) AppleWebKit/5342 (KHTML, like Gecko) Chrome/39.0.872.0 Mobile Safari/5342
% Information related to ‘95.0.32.0 – 95.0.32.255’
[256 addresses in this network]
% Abuse contact for ‘95.0.32.0 – 95.0.32.255’ is ‘abuse@ttnet.com.tr’
[256 addresses in this network]
inetnum: 95.0.32.0 – 95.0.32.255
[256 addresses in this network]
netname: ILMET_Elektronik_Ltd
descr: Marmara Bolgesi 27.Sk No 19 Lefkosa KKTC via Mersin 10, Turkey
country: TR
admin-c: MT8671-RIPE
tech-c: MT8671-RIPE
status: ASSIGNED PA
mnt-by: AS9121-MNT
created: 2010-04-01T06:20:16Z
last-modified: 2010-04-01T06:20:16Z
source: RIPE
person: Mete Tosun
remarks: ILMET_Elektronik_Ltd
address: Marmara Bolgesi 27.Sk No 19 Lefkosa KKTC via Mersin 10, Turkey
phone: +903922278477
nic-hdl: MT8671-RIPE
created: 2010-04-01T06:20:16Z
last-modified: 2016-04-06T19:10:11Z
mnt-by: RIPE-NCC-LOCKED-MNT
source: RIPE # Filtered
% Information related to ‘95.0.0.0/17AS9121’ (95.0.0.0 – 95.0.255.255)
[65536 addresses in this network]
route: 95.0.0.0/17 (95.0.0.0 – 95.0.255.255)
[65536 addresses in this network]
descr: TurkTelecom
origin: AS9121
mnt-by: AS9121-MNT
created: 2009-09-28T12:08:52Z
last-modified: 2009-09-28T12:08:52Z
source: RIPE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Grove City, United States visited http://www.stewwebb.com/wp-content/plugins/jssor-slider/assets/css/system-message.css
3/27/2018 5:07:10 PM (1 hour 5 mins ago)
IP: 174.105.72.183 Hostname: cpe-174-105-72-183.columbus.res.rr.com
Browser: undefined
Opera/8.32 (X11; Linux x86_64; sl-SI) Presto/2.11.349 Version/11.00
NetRange: 174.96.0.0 – 174.111.255.255
[1048576 addresses in this network]
CIDR: 174.96.0.0/12 (174.96.0.0 – 174.127.255.255)
[2097152 addresses in this network]
NetName: RRMA
NetHandle: NET-174-96-0-0-1
Parent: NET174 (NET-174-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Time Warner Cable Internet LLC (RRMA)
RegDate: 2009-02-26
Updated: 2009-12-08
Ref: https://whois.arin.net/rest/net/NET-174-96-0-0-1
OrgName: Time Warner Cable Internet LLC
OrgId: RRMA
Address: 6399 S Fiddlers Green Circle
City: Greenwood Village
StateProv: CO
PostalCode: 80111
Country: US
RegDate:
Updated: 2018-03-07
Comment: Allocations for this OrgID serve Road Runner residential customers out of the Columbus, OH, Herndon, VA and Raleigh, NC RDCs.
Ref: https://whois.arin.net/rest/org/RRMA
OrgTechHandle: IPADD1-ARIN
OrgTechName: IPAddressing
OrgTechPhone: +1-720-699-4582
OrgTechEmail: ipaddressing@chartercom.com
OrgTechRef: https://whois.arin.net/rest/poc/IPADD1-ARIN
OrgAbuseHandle: ABUSE10-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-703-345-3416
OrgAbuseEmail: abuse@rr.com
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE10-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Sparta, United States visited http://www.stewwebb.com/wp-content/plugins/jssor-slider/assets/css/system-message.css
3/27/2018 5:06:43 PM (1 hour 6 mins ago)
IP: 184.158.6.203 Hostname: 184-158-6-203.dyn.centurytel.net
Browser: undefined
Opera/8.32 (X11; Linux x86_64; sl-SI) Presto/2.11.349 Version/11.00
NetRange: 184.156.0.0 – 184.159.255.255
[262144 addresses in this network]
CIDR: 184.156.0.0/14 (184.156.0.0 – 184.159.255.255)
[262144 addresses in this network]
NetName: CENTURYLINK-LEGACY-CENTURYTEL-NETBLOCK16
NetHandle: NET-184-156-0-0-1
Parent: NET184 (NET-184-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS5668
Organization: CenturyTel Internet Holdings, Inc. (CIH-12)
RegDate: 2010-06-21
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-184-156-0-0-1
OrgName: CenturyTel Internet Holdings, Inc.
OrgId: CIH-12
Address: 100 CenturyTel Drive
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2003-11-05
Updated: 2018-03-13
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
United States Marshfield, United States visited http://www.stewwebb.com/wp-content/plugins/dzs-videogallery/admin/admin_global.js
3/27/2018 5:02:26 PM (1 hour 11 mins ago)
IP: 174.125.61.75 Hostname: 174-125-61-75.dyn.centurytel.net
Browser: Chrome version 0.0 running on Win8
Mozilla/5.0 (Windows NT 6.2) AppleWebKit/5321 (KHTML, like Gecko) Chrome/36.0.896.0 Mobile Safari/5321
NetRange: 174.124.0.0 – 174.125.255.255
[131072 addresses in this network]
CIDR: 174.124.0.0/15 (174.124.0.0 – 174.127.255.255)
[262144 addresses in this network]
NetName: CENTURYLINK-LEGACY-CENTURYTEL-NETBLOCK14
NetHandle: NET-174-124-0-0-1
Parent: NET174 (NET-174-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS5668
Organization: CenturyTel Internet Holdings, Inc. (CIH-12)
RegDate: 2009-04-07
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-174-124-0-0-1
OrgName: CenturyTel Internet Holdings, Inc.
OrgId: CIH-12
Address: 100 CenturyTel Drive
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2003-11-05
Updated: 2018-03-13
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Wake Forest, United States visited http://www.stewwebb.com/wp-content/plugins/font-uploader/fontFunctions/fu_script.js
3/27/2018 5:44:46 PM (32 minutes ago)
IP: 76.0.132.182 Hostname: nc-76-0-132-182.dhcp.embarqhsd.net
Browser: Chrome version 0.0 running on Win32
Mozilla/5.0 (Windows NT 4.0) AppleWebKit/5361 (KHTML, like Gecko) Chrome/39.0.805.0 Mobile Safari/5361
NetRange: 76.0.0.0 – 76.7.255.255
[524288 addresses in this network]
CIDR: 76.0.0.0/13 (76.0.0.0 – 76.15.255.255)
[1048576 addresses in this network]
NetName: CENTURYLINK-LEGACY-EMBARQ-BKL-10
NetHandle: NET-76-0-0-0-1
Parent: NET76 (NET-76-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Embarq Corporation (EMBAR)
RegDate: 2006-01-19
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-76-0-0-0-1
OrgName: Embarq Corporation
OrgId: EMBAR
Address: 500 N New York Ave
City: Winter Park
StateProv: FL
PostalCode: 32789
Country: US
RegDate: 2006-07-06
Updated: 2018-03-13
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Comment:
Comment: For abuse issues, please email abuse@centurylinkservices.net
Comment:
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Law Enforcement Support page https://www.centurylink.com/static/Pages/AboutUs/Legal/LawEnforcement/
Ref: https://whois.arin.net/rest/org/EMBAR
OrgTechHandle: QIA-ARIN
OrgTechName: Centurylink IP Admin
OrgTechPhone: +1-877-886-6515
OrgTechEmail: ipadmin@centurylink.com
OrgTechRef: https://whois.arin.net/rest/poc/QIA-ARIN
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@centurylinkservices.net
OrgAbuseRef: https://whois.arin.net/rest/poc/CAD54-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Gig Harbor, United States visited http://www.stewwebb.com/wp-content/plugins/advanced-ajax-page-loader/reload_code.js
3/27/2018 5:43:53 PM (34 minutes ago)
IP: 98.125.225.13 Hostname: 98-125-225-13.dyn.centurytel.net
Browser: undefined
Opera/9.62 (X11; Linux x86_64; en-US) Presto/2.10.288 Version/10.00
NetRange: 98.125.0.0 – 98.125.255.255
[65536 addresses in this network]
CIDR: 98.125.0.0/16 (98.125.0.0 – 98.125.255.255)
[65536 addresses in this network]
NetName: CENTURYLINK-LEGACY-CENTURYTEL-NETBLOCK12
NetHandle: NET-98-125-0-0-1
Parent: NET98 (NET-98-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS5668
Organization: CenturyTel Internet Holdings, Inc. (CIH-12)
RegDate: 2008-06-02
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-98-125-0-0-1
OrgName: CenturyTel Internet Holdings, Inc.
OrgId: CIH-12
Address: 100 CenturyTel Drive
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2003-11-05
Updated: 2018-03-13
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Comment:
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Washington, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522192566.9
3/27/2018 6:16:11 PM (4 minutes ago)
IP: 98.214.189.234 Hostname: c-98-214-189-234.hsd1.il.comcast.net
Browser: Chrome version 0.0 running on Win7
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36
NetRange: 98.192.0.0 – 98.255.255.255
[4194304 addresses in this network]
CIDR: 98.192.0.0/10 (98.192.0.0 – 98.255.255.255)
[4194304 addresses in this network]
NetName: JUMPSTART-5
NetHandle: NET-98-192-0-0-1
Parent: NET98 (NET-98-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS7922
Organization: Comcast Cable Communications, LLC (CCCS)
RegDate: 2007-04-20
Updated: 2016-08-31
Ref: https://whois.arin.net/rest/net/NET-98-192-0-0-1
OrgName: Comcast Cable Communications, LLC
OrgId: CCCS
Address: 1800 Bishops Gate Blvd
City: Mt Laurel
StateProv: NJ
PostalCode: 08054
Country: US
RegDate: 2001-09-17
Updated: 2017-01-28
Ref: https://whois.arin.net/rest/org/CCCS
OrgAbuseHandle: NAPO-ARIN
OrgAbuseName: Network Abuse and Policy Observance
OrgAbusePhone: +1-888-565-4329
OrgAbuseEmail: abuse@comcast.net
OrgAbuseRef: https://whois.arin.net/rest/poc/NAPO-ARIN
OrgTechHandle: IC161-ARIN
OrgTechName: Comcast Cable Communications Inc
OrgTechPhone: +1-856-317-7200
OrgTechEmail: CNIPEO-Ip-registration@cable.comcast.com
OrgTechRef: https://whois.arin.net/rest/poc/IC161-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker trackback
Vologda, Russia tried to access non-existent page http://www.stewwebb.com/category/911/trackback/
3/27/2018 6:25:04 PM (2 minutes ago)
IP: 95.53.245.204 Hostname: shpd-95-53-245-204.vologda.ru
Human/Bot: Bot
Browser: Chrome version 56.0 running on Win8.1
Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2899.123 Safari/537.36
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Goshen, United States visited http://www.stewwebb.com/wp-json/wp/v2/users
3/27/2018 6:36:52 PM (3 minutes ago)
IP: 24.142.150.166 Hostname: onlingguns.com
Browser: undefined
Mozilla/5.0 (Windows NT 5.1; rv:31.0) Gecko/20100101 Firefox/31.0
NetRange: 24.142.128.0 – 24.142.255.255
[32768 addresses in this network]
CIDR: 24.142.128.0/17 (24.142.128.0 – 24.142.255.255)
[32768 addresses in this network]
NetName: RCMS
NetHandle: NET-24-142-128-0-1
Parent: NET24 (NET-24-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS10796, AS7843, AS11426, AS7017, AS11060, AS12262, AS20231
Organization: Time Warner Cable Internet LLC (RCMS)
RegDate: 2011-03-23
Updated: 2011-03-23
Ref: https://whois.arin.net/rest/net/NET-24-142-128-0-1
OrgName: Time Warner Cable Internet LLC
OrgId: RCMS
Address: 6399 S Fiddlers Green Circle
City: Greenwood Village
StateProv: CO
PostalCode: 80111
Country: US
RegDate: 2001-09-25
Updated: 2018-03-07
Comment: Allocations for this OrgID serve Road Runner commercial customers out of the Columbus, OH, Herndon, VA and Raleigh, NC RDCs.
Ref: https://whois.arin.net/rest/org/RCMS
OrgAbuseHandle: ABUSE10-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-703-345-3416
OrgAbuseEmail: abuse@rr.com
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE10-ARIN
OrgTechHandle: IPADD1-ARIN
OrgTechName: IPAddressing
OrgTechPhone: +1-720-699-4582
OrgTechEmail: ipaddressing@chartercom.com
OrgTechRef: https://whois.arin.net/rest/poc/IPADD1-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Blackwood, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522194779.89
3/27/2018 6:53:03 PM (10 minutes ago)
IP: 72.73.245.188 Hostname: pool-72-73-245-188.cmdnnj.east.verizon.net
Browser: Safari version 9.0 running on iOS
Mozilla/5.0 (iPad; CPU OS 9_3_5 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13G36 Safari/601.1
NetRange: 72.73.128.0 – 72.87.47.255
[897024 addresses in this network]
CIDR: 72.87.0.0/19, 72.84.0.0/15, 72.76.0.0/14, 72.73.128.0/17, 72.80.0.0/14, 72.87.32.0/20, 72.86.0.0/16, 72.74.0.0/15 (72.87.0.0 – 72.87.63.255)
[16384 addresses in this network]
NetName: VIS-72-64
NetHandle: NET-72-73-128-0-1
Parent: NET72 (NET-72-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: MCI Communications Services, Inc. d/b/a Verizon Business (MCICS)
RegDate: 2005-06-24
Updated: 2016-08-18
Ref: https://whois.arin.net/rest/net/NET-72-73-128-0-1
OrgName: MCI Communications Services, Inc. d/b/a Verizon Business
OrgId: MCICS
Address: 22001 Loudoun County Pkwy
City: Ashburn
StateProv: VA
PostalCode: 20147
Country: US
RegDate: 2006-05-30
Updated: 2018-01-17
Ref: https://whois.arin.net/rest/org/MCICS
OrgTechHandle: SWIPP9-ARIN
OrgTechName: SWIPPER
OrgTechPhone: +1-800-900-0241
OrgTechEmail: stephen.r.middleton@verizon.com
OrgTechRef: https://whois.arin.net/rest/poc/SWIPP9-ARIN
OrgTechHandle: SWIPP-ARIN
OrgTechName: swipper
OrgTechPhone: +1-800-900-0241
OrgTechEmail: swipper@verizonbusiness.com
OrgTechRef: https://whois.arin.net/rest/poc/SWIPP-ARIN
OrgAbuseHandle: ABUSE3-ARIN
OrgAbuseName: abuse
OrgAbusePhone: +1-800-900-0241
OrgAbuseEmail: abuse-mail@verizonbusiness.com
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE3-ARIN
RAbuseHandle: ABUSE5603-ARIN
RAbuseName: Abuse
RAbusePhone: +1-800-900-0241
RAbuseEmail: abuse@verizon.net
RAbuseRef: https://whois.arin.net/rest/poc/ABUSE5603-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Astor, United States visited http://www.stewwebb.com/
3/28/2018 12:37:20 PM (11 minutes ago)
IP: 71.55.161.15 Hostname: fl-71-55-161-15.dhcp.embarqhsd.net
Browser: Safari version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0.3 Safari/604.5.6
NetRange: 71.48.0.0 – 71.55.255.255
[524288 addresses in this network]
CIDR: 71.48.0.0/13 (71.48.0.0 – 71.63.255.255)
[1048576 addresses in this network]
NetName: CENTURYLINK-LEGACY-EMBARQ-BKL-8
NetHandle: NET-71-48-0-0-1
Parent: NET71 (NET-71-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Embarq Corporation (EMBAR)
RegDate: 2005-04-26
Updated: 2018-02-19
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-71-48-0-0-1
OrgName: Embarq Corporation
OrgId: EMBAR
Address: 500 N New York Ave
City: Winter Park
StateProv: FL
PostalCode: 32789
Country: US
RegDate: 2006-07-06
Updated: 2018-03-13
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Columbus, United States left http://www.stewwebb.com/category/jewish-mob/ and visited http://www.stewwebb.com/2013/08/15/who-is-americas-moriarity-the-illuminati-zionist-denver-connection/
3/28/2018 8:08:09 AM (4 hours 51 mins ago)
IP: 184.57.7.210 Hostname: cpe-184-57-7-210.columbus.res.rr.com
Browser: Safari version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0.3 Safari/604.5.6
Type: Human
United States Columbus, United States left http://www.stewwebb.com/2013/08/15/who-is-americas-moriarity-the-illuminati-zionist-denver-connectio… and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522242167.6
3/28/2018 8:02:49 AM (4 hours 56 mins ago)
IP: 184.57.7.210 Hostname: cpe-184-57-7-210.columbus.res.rr.com
Browser: Safari version 0.0 running on MacOSX
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0.3 Safari/604.5.6
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Pocatello, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522216200.55
3/28/2018 12:50:04 AM (12 hours 14 mins ago)
IP: 216.201.69.155 Hostname: 216.201.69.155
Browser: Chrome version 0.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.186 Safari/537.36
NetRange: 216.201.64.0 – 216.201.79.255
[4096 addresses in this network]
CIDR: 216.201.64.0/20 (216.201.64.0 – 216.201.95.255)
[8192 addresses in this network]
NetName: 216-201-64-0-20
NetHandle: NET-216-201-64-0-1
Parent: NET216 (NET-216-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: SpeedConnect, LLC (SL-119)
RegDate: 2008-02-08
Updated: 2017-12-11
Ref: https://whois.arin.net/rest/net/NET-216-201-64-0-1
OrgName: SpeedConnect, LLC
OrgId: SL-119
Address: 455 Main St
City: Frankenmuth
StateProv: MI
PostalCode: 48734
Country: US
RegDate: 2012-05-11
Updated: 2017-12-11
Ref: https://whois.arin.net/rest/org/SL-119
OrgNOCHandle: COLLI316-ARIN
OrgNOCName: Collison, Tyler
OrgNOCPhone: +1-989-798-3660
OrgNOCEmail: tyler.collison@speedconnect.net
OrgNOCRef: https://whois.arin.net/rest/poc/COLLI316-ARIN
OrgTechHandle: COLLI316-ARIN
OrgTechName: Collison, Tyler
OrgTechPhone: +1-989-798-3660
OrgTechEmail: tyler.collison@speedconnect.net
OrgTechRef: https://whois.arin.net/rest/poc/COLLI316-ARIN
OrgNOCHandle: VALEN4-ARIN
OrgNOCName: Valentine, Randy
OrgNOCPhone: +1-989-480-0155
OrgNOCEmail: randy.valentine@speedconnect.net
OrgNOCRef: https://whois.arin.net/rest/poc/VALEN4-ARIN
OrgAbuseHandle: VALEN4-ARIN
OrgAbuseName: Valentine, Randy
OrgAbusePhone: +1-989-480-0155
OrgAbuseEmail: randy.valentine@speedconnect.net
OrgAbuseRef: https://whois.arin.net/rest/poc/VALEN4-ARIN
OrgTechHandle: VALEN4-ARIN
OrgTechName: Valentine, Randy
OrgTechPhone: +1-989-480-0155
OrgTechEmail: randy.valentine@speedconnect.net
OrgTechRef: https://whois.arin.net/rest/poc/VALEN4-ARIN
OrgAbuseHandle: COLLI316-ARIN
OrgAbuseName: Collison, Tyler
OrgAbusePhone: +1-989-798-3660
OrgAbuseEmail: tyler.collison@speedconnect.net
OrgAbuseRef: https://whois.arin.net/rest/poc/COLLI316-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Streetman, United States left http://www.stewwebb.com/2018/03/27/sercos-resilient-clinton-secret/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522209777.27
3/27/2018 11:02:59 PM (14 hours 3 mins ago)
IP: 209.40.146.111 Hostname: 209.40.146.111
Browser: Chrome version 0.0 running on Win8.1
Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36
NetRange: 209.40.128.0 – 209.40.191.255
[16384 addresses in this network]
CIDR: 209.40.128.0/18 (209.40.128.0 – 209.40.255.255)
[32768 addresses in this network]
NetName: NETWORK-OPERATIONS
NetHandle: NET-209-40-128-0-1
Parent: NET209 (NET-209-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS6620
Organization: AMA Communications, LLC (AMACO-1)
RegDate: 1999-04-06
Updated: 2012-03-02
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
Ref: https://whois.arin.net/rest/net/NET-209-40-128-0-1
OrgName: AMA Communications, LLC
OrgId: AMACO-1
Address: 7201 I-40 W
Address: Suite 200
City: Amarillo
StateProv: TX
PostalCode: 79110
Country: US
RegDate: 2008-09-11
Updated: 2017-01-28
Ref: https://whois.arin.net/rest/org/AMACO-1
OrgTechHandle: NETWO2705-ARIN
OrgTechName: Network Operations
OrgTechPhone: +1-806-322-2222
OrgTechEmail: NetworkOperations@amatechtel.com
OrgTechRef: https://whois.arin.net/rest/poc/NETWO2705-ARIN
OrgAbuseHandle: NETWO2705-ARIN
OrgAbuseName: Network Operations
OrgAbusePhone: +1-806-322-2222
OrgAbuseEmail: NetworkOperations@amatechtel.com
OrgAbuseRef: https://whois.arin.net/rest/poc/NETWO2705-ARIN
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
United States Norwalk, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522206811.46
3/27/2018 10:13:33 PM (14 hours 55 mins ago)
IP: 75.141.100.90 Hostname: 75-141-100-90.dhcp.mtpk.ca.charter.com
Browser: Edge version 16.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 Edge/16.16299
charter.net
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
Blackwood, United States left http://www.stewwebb.com/ and visited http://www.stewwebb.com/?wordfence_syncAttackData=1522194779.89
3/27/2018 6:53:03 PM (18 hours 21 mins ago)
IP: 72.73.245.188 Hostname: pool-72-73-245-188.cmdnnj.east.verizon.net
Browser: Safari version 9.0 running on iOS
Mozilla/5.0 (iPad; CPU OS 9_3_5 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13G36 Safari/601.1
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
cyber attacker
United States Columbus, United States was blocked by firewall at http://www.stewwebb.com/xmlrpc.php
3/28/2018 12:19:15 PM (59 minutes ago)
IP: 18.217.77.67 Hostname: ec2-18-217-77-67.us-east-2.compute.amazonaws.com
Human/Bot: Bot
Browser: Chrome version 0.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36
Type: Blocked
United States Columbus, United States was blocked by firewall at http://www.stewwebb.com/xmlrpc.php
3/28/2018 12:19:15 PM (59 minutes ago)
IP: 18.217.77.67 Hostname: ec2-18-217-77-67.us-east-2.compute.amazonaws.com
Human/Bot: Bot
Browser: Chrome version 0.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36
Type: Blocked
United States Columbus, United States was blocked by firewall at http://www.stewwebb.com/wp-json/wp/v2/users/
3/28/2018 12:19:14 PM (59 minutes ago)
IP: 18.217.77.67 Hostname: ec2-18-217-77-67.us-east-2.compute.amazonaws.com
Human/Bot: Bot
Browser: Chrome version 0.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36
Type: Blocked
United States Columbus, United States was blocked by firewall at http://www.stewwebb.com/?author=1
3/28/2018 12:19:14 PM (59 minutes ago)
IP: 18.217.77.67 Hostname: ec2-18-217-77-67.us-east-2.compute.amazonaws.com
Human/Bot: Bot
Browser: Chrome version 0.0 running on Win10
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36
NetRange: 18.215.0.0 – 18.217.255.255
[196608 addresses in this network]
CIDR: 18.216.0.0/15, 18.215.0.0/16 (18.216.0.0 – 18.219.255.255)
[262144 addresses in this network]
NetName: AT-88-Z
NetHandle: NET-18-215-0-0-1
Parent: NET18 (NET-18-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS16509
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2017-04-18
Updated: 2017-12-27
Ref: https://whois.arin.net/rest/net/NET-18-215-0-0-1
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2017-01-28
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Your kind Contributions are very much appreciated thank you. – Stew Webb