IP Address Inspector

ATTENTION

This IP has not seen any suspicious activity within the last 3 months. This IP is most likely clean and trustworthy now. (This record will remain public for historical purposes, however.)

200.42.174.109

The Project Honey Pot system has detected behavior from the IP address consistent with that of a mail server and dictionary attacker. Below we've reported some other data associated with this IP. This interrelated data helps map spammers' networks and aids in law enforcement efforts. If you know something about this IP, please leave a comment.

Geographic Location	Chile (Region Metropolitana)
Spider First Seen	approximately 13 years, 3 months, 4 weeks ago
Spider Last Seen	within 13 years, 3 months, 4 weeks
Spider Sightings	2 visit(s)
User-Agents	seen with 1 user-agent(s)

First Received From	approximately 16 years, 5 months, 3 weeks ago
Last Received From	within 13 years, 3 months, 5 weeks
Number Received	4,734 email(s) sent from this IP

Dictionary Attacks	333 email(s) sent from this IP
First Received From	approximately 15 years, 11 months, 2 weeks ago
Last Received From	within 13 years, 8 months, 1 week

Associated Harvesters
74.54.60.194 \| H
84.43.156.200 \| H
217.236.86.67 \| H
24.74.145.85 \| HS
68.103.28.151 \| H
213.64.255.98 \| H
80.80.172.67 \| HS
71.56.224.179 \| HC
91.105.24.198 \| H
81.196.201.127 \| HS
209.200.225.155 \| H
85.101.163.234 \| HS
68.78.77.106 \| H
74.62.16.48 \| H
82.135.85.216 \| H
87.237.112.63 \| HSD
91.105.39.193 \| H
24.61.174.45 \| HS
74.222.207.107 \| HSDC
24.154.74.116 \| H
69.144.93.12 \| HC
87.218.40.129 \| H
90.29.234.221 \| H
88.229.210.162 \| HS
24.188.17.101 \| HC
62.193.27.250 \| H
4.180.216.88 \| H
90.7.246.138 \| H
83.86.144.173 \| HC
65.31.144.179 \| HS
91.21.101.237 \| H
85.97.67.30 \| HS
69.152.203.140 \| H
88.232.114.169 \| HS
85.98.17.36 \| HSD
90.8.70.55 \| H
85.167.144.135 \| HS
202.45.173.243 \| H
125.60.243.91 \| HC
81.10.40.229 \| HS
74.102.125.96 \| H
196.205.180.77 \| HS
83.39.66.198 \| H
222.149.243.3 \| H
193.226.19.84 \| H
89.98.19.154 \| HS
69.64.73.123 \| H
125.26.34.253 \| H
142.162.50.210 \| H
66.135.50.142 \| H
66.148.67.105 \| H
213.77.117.7 \| HS
201.255.102.137 \| HS
218.5.76.68 \| H
69.41.171.48 \| H
71.83.51.29 \| HS
71.239.235.70 \| HSC
190.75.122.69 \| H
89.136.21.173 \| H
71.147.16.51 \| H
62.194.13.19 \| H
76.233.113.141 \| H
66.84.230.189 \| HSDC
189.152.69.96 \| H
69.112.13.145 \| HC
66.148.67.102 \| HS
81.169.224.211 \| H
151.44.173.61 \| H
81.233.180.142 \| H
69.41.163.53 \| H
205.209.134.60 \| H
142.162.41.119 \| H
60.39.215.88 \| H
81.218.175.64 \| H
65.19.154.84 \| H

IPs In The Neighborhood
200.42.173.146 \| S
200.42.173.148 \| S
200.42.173.187 \| S
200.42.173.238
200.42.173.247
200.42.173.248 \| SD
200.42.174.10 \| SD
200.42.174.18 \| SD
200.42.174.98 \| S
200.42.174.100 \| S
200.42.174.101 \| D
200.42.174.106 \| S
200.42.174.107
200.42.174.108 \| S
200.42.174.178 \| S
200.42.174.190 \| S
200.42.174.194
200.42.174.195
200.42.174.210
200.42.174.218 \| S
200.42.174.242 \| S
200.42.174.244 \| SD
200.42.174.246 \| SD
200.42.174.250 \| SD
200.42.174.251 \| S
200.42.175.11 \| SD
200.42.175.50 \| S
200.42.175.51 \| S

200.42.174.109's User Agent Strings

Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/4.0; GTB6.6; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; OfficeLiveConnector.1.3; OfficeLivePatch.0.0; Tablet PC 2.0)

Example Messages Sent From 200.42.174.109

Subject: lorinda.r.glordano@rambo.thefamilygeek.org VIAGRA

Subject: doloris_colgin@fumble.forwardlateral.com VIAGRA \302\256

Subject: ckcostin1969@mxd.opensolaris.dk VIAGRA \302\256 Official

Subject: dina.wichterman@honey.wdvltalk-social.org.uk VIAGR

Subject: stephanemaccarter@donate.coloradoplains.net VIAGRA

Subject: tereasa_c_hornung@php.1sthelpline.com VIAGRA \256 Off

Subject: analisa_parrott@mail4.skyler.net VIAGRA \256 Official

Subject: hgbrauner@mail.overclockingforum.com VIAGRA \256 Offi

Subject: alenesummerlin@mail2.disch-gmbh.de VIAGRA \256 Offici

Subject: furfey3861@servers.theuncollective.com VIAGRA \256 Of

Subject: lolanapolitano@pochta.premedic.cbg.ru 75% OFF on P

Subject: louella_krupiak@mail4.premedic.bir.ru 40% OFF on P

Subject: louella_l_furr@mailmax.codecrafter.net 40% OFF on

Subject: terrance.rubens@mx21.0xffff.biz 36% OFF on Pfizer!

Subject: sharell_cupp@monkeytennis.groovymother.com 14% OFF

Subject: brucewredline@popmail.spmail.be 72% OFF on Pfizer!

Subject: avt417@mail1.premedic.com.ru VIAGRA \256 Official Sel

Subject: makeshiftraffaele@mailp.scabserver.com V|AGRA \256 Of

Subject: cursedenterprise@postman.duh.net V|AGRA \256 Official

Subject: shanti.woerner@mxd.metanet.dk V|AGRA \302\256 Official Se

Subject: scottathrope@mail1.webimize.com September 68% OFF.

Subject: tmcclarty3@smtp.ricki-z.de VIAGRA \256 Official -66%

Subject: gryan2000@smtp.derfueller.com VIAGRA \256 Official -6

Subject: dina.w.rountree@mail2.zice.ro VIAGRA \302\256 Official -6

Subject: surprisingtammie2@mx2.mlo.no VIAGRA \302\256 Official -10

Example User Names Used By 200.42.174.109

User-name: 43d6b862.3010900

User-name: 43d6bb0c.7060300

User-name: 43d6bb0e.7040808

User-name: 4587abdd.1080009

User-name: 4587ce41.6050802

User-name: 470c0428.3020203

User-name: 470c0603.3020203

User-name: 470c062f.3020203

User-name: 4715740a.4040304

User-name: aage-lantuomo

User-name: adrnfdjfafdj

User-name: adybug

User-name: ai

User-name: altken

User-name: amabelwxvxf

User-name: amndjjyfafdj

User-name: analsia-lackeyis

User-name: analsia-lamuurde

User-name: anondsjrfafdj

User-name: anvndojyfafdj

User-name: aonjdjjkfafdj

User-name: aonwdgjpfafdj

User-name: appnjddjofafdj

User-name: babena

User-name: baswell

User-name: bbgndjfeafdj

User-name: bbtndjfvafdj

User-name: beisch

User-name: betran

User-name: bonyai

1 comment(s) - Comment on this IP | Collapse All

R.Redd2 commented...

time of request: Sunday March 17, 2013 - 16:05:06 PM PDT
ip: 200.42.174.109
remote host: 200-42-174-109.static.tie.cl
user-agent string: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2)
Gecko/20100115 Firefox/3.6
requested url:
//index.php?option=com_php&file=../../../../../../../../../../../../../../../../../../../../../../../..//proc/self/environ%0000
referer: was empty
source port: 37858
destination port: 80

AND
the only email address in DNS (whois): sescobar@ISP.TIE.CL gets bounced as an unknown user. I just sent the report to abuse@ISP.TIE.CL and so far. it hasn't bounced.
March 17 2013 09:02 PM

Page generated on: May 04 2024 08:54:17 PM

Please note: being listed on these pages does not necessarily mean an IP address, domain name, or any other information is owned by a spammer. For example, it may have been hijacked from its true owner and used by a spammer.

Want to keep this IP address off your website? Start taking advantage of http:BL.

If you are the owner of this IP address, you can whitelist it by connecting to this page from the IP itself (or from an IP within /24). Alternatively, the IP will be auto excused after 90 days of no activity.

Advertisements displayed on this page are not necessarily endorsed by Project Honey Pot