IP Address Inspector

ATTENTION
  • This IP has not seen any suspicious activity within the last 3 months. This IP is most likely clean and trustworthy now. (This record will remain public for historical purposes, however.)

70.87.196.242 Email Address Harvester

The Project Honey Pot system has detected behavior from the IP address consistent with that of a spam harvester. Below we've reported some other data associated with this IP. This interrelated data helps map spammers' networks and aids in law enforcement efforts. If you know something about this IP, please leave a comment.

Lookup IP In: Domain Tools | SpamHaus | Spamcop | SenderBase | Google Groups | Google

Geographic Location United States United States (Texas)

Harvester First Seen approximately 10 years, 9 months, 2 weeks ago
Harvester Last Seen within 10 years, 7 months, 4 weeks
Harvester Sightings 181 visit(s) to 158 honey pot(s)
Harvester Results 56132.519 messages per visit
10,159,986 message(s) resulting from harvests
- First: approximately 10 years, 9 months, 1 week ago
- Last: approximately 1 week ago
621 email address(es) harvested
- First: approximately 10 years, 9 months, 2 weeks ago
- Last: Fri, 20 Apr 2007 10:45:38 -0700
Time From Harvest
To First Spam
Fastest: 10 hours, 25 mins, 38 secs
Slowest: 1 week, 5 days, 22 hours, 45 mins, 9 secs
Average: 2 days, 13 hours, 18 mins, 28 secs
Std Dev: 1 day, 15 hours, 55 mins, 20 secs

Associated Mail Servers
1.0.235.204 | SD Thailand
1.1.133.37 | S Thailand
1.1.181.76 | H Thailand
1.1.193.245 | SC Thailand
1.1.224.226  Thailand
1.2.157.38  Thailand
1.4.158.231  Thailand
1.4.192.166 | S Thailand
1.9.2.98 | SD Malaysia
1.9.4.34 | SD Malaysia
1.9.4.98 | SD Malaysia
1.9.5.66 | SD Malaysia
1.9.5.98 | SD Malaysia
1.9.5.226 | SD Malaysia
1.9.7.3 | HSD Malaysia
1.9.7.66 | SD Malaysia
1.9.8.226 | SD Malaysia
1.9.9.98 | SD Malaysia
1.9.14.67 | SD Malaysia
1.9.22.130 | SD Malaysia
1.9.26.62 | SD Malaysia
1.9.26.126 | SD Malaysia
1.9.33.9 | SDC Malaysia
1.9.46.243 | SD Malaysia
1.9.74.210 | SD Malaysia
1.9.79.136 | S Malaysia
1.9.82.178 | C Malaysia
1.9.124.14 | SD Malaysia
1.9.128.28 | SD Malaysia
1.9.150.11 | SD Malaysia
1.9.150.79 | SD Malaysia
1.9.172.21 | SD Malaysia
1.9.174.1 | SD Malaysia
1.9.188.9 | SD Malaysia
1.9.188.228 | SD Malaysia
1.9.189.57 | S Malaysia
1.9.201.98 | SD Malaysia
1.9.202.50 | SD Malaysia
1.10.201.15 | S Thailand
1.11.9.65 | S South Korea
1.11.20.170  South Korea
1.11.20.178 | S South Korea
1.11.20.192 | S South Korea
1.11.23.247 | SD South Korea
1.11.27.65 | S South Korea
1.11.29.156 | S South Korea
1.11.30.24  South Korea
1.11.35.85 | S South Korea
1.11.43.121 | S South Korea
1.11.50.60 | SD South Korea
1.11.50.174 | SD South Korea
1.11.51.170  South Korea
1.11.55.162 | SD South Korea
1.11.55.181 | SD South Korea
1.11.55.222 | SD South Korea
1.11.66.70 | SD South Korea
1.11.79.142 | S South Korea
1.11.80.15 | SD South Korea
1.11.80.74 | S South Korea
1.11.80.216  South Korea
1.11.87.22 | SD South Korea
1.11.101.138 | S South Korea
1.11.117.81 | S South Korea
1.11.125.69 | SD South Korea
1.11.128.87 | SD South Korea
1.11.145.30 | SD South Korea
1.11.153.77 | SD South Korea
1.11.153.87 | SD South Korea
1.11.159.33 | SD South Korea
1.11.183.87 | SD South Korea
1.11.183.132 | SD South Korea
1.11.214.211 | SD South Korea
1.11.214.223 | SD South Korea
1.11.221.150 | SD South Korea
1.11.225.2 | S South Korea
IPs In The Neighborhood
70.87.196.58 | S United States
70.87.197.45 United States
70.87.197.66 United States
70.87.196.242's User Agent Strings
Accoona-AI-Agent/1.1.2 (aicrawler at accoonabot dot com)
Links (0.99pre14; CYGWIN_NT-5.0 1.5.16(0.128/4/2) i686; 80x25)
Mozilla/2.0 (compatible; MSIE 3.01; Windows 98)
Mozilla/3.0 (compatible; NetPositive/2.2)
Mozilla/4.0 (compatible; grub-client-1.4.3; Crawl your own stuff with http://grub.org) Mozilla/4.0 (compatible; grub-client-2.3)
Mozilla/4.0 (compatible; MSIE 5.0; Windows 2000) Opera 6.03 [en]
Mozilla/4.0 (compatible; MSIE 6.0; America Online Browser 1.1; rev1.1; Windows NT 5.1;)
Mozilla/4.0 (compatible; MSIE 6.0; America Online Browser 1.1; rev1.2; Windows NT 5.1;)
Mozilla/4.0 (compatible; MSIE 6.0; America Online Browser 1.1; rev1.5; Windows NT 5.1;)
Mozilla/4.0 (compatible; MSIE 6.0; Nitro) Opera 8.50 [ja]
Mozilla/4.0 (compatible; MSIE 6.0; Symbian OS; Nokia 6630/4.03.38; 6937) Opera 8.50 [es]
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; RA_APAU)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 6.0)
Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en) AppleWebKit/418.9 (KHTML, like Gecko) Safari/419.3
Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en-US; rv:1.8.0.7) Gecko/20060909 Firefox/1.5.0.7
Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7.12) Gecko/20050915 Firefox/1.0.7
Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9.2) Gecko/20020508 Netscape6/6.1
Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3a) Gecko/20030105 Phoenix/0.5
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.8.0.1) Gecko/20060111 Firefox/1.5.0.1
Mozilla/5.0 (Windows; U; Windows NT 5.1; en; rv:1.8.1) Gecko/20061010 Firefox/2.0
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624 Netscape/7.1 (ax)
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6b) Gecko/20031215 Firebird/0.7+
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.10) Gecko/20050716 Firefox/1.0.6
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.1) Gecko/20061204 Firefox/2.0.0.1
Mozilla/5.0 (Windows; U; Windows NT 5.1; nl-NL; rv:1.7.5) Gecko/20041202 Firefox/1.0
Mozilla/5.0 (Windows; U; Windows NT 5.1; nl; rv:1.8) Gecko/20051107 Firefox/1.5
Mozilla/5.0 (Windows; U; Windows NT 5.1; ru; rv:1.8.1) Gecko/20061010 Firefox/2.0
Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.7.13) Gecko/20050610 K-Meleon/0.9
Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.8.0.4) Gecko/20060508 Firefox/1.5.0.4
P.Hauser commented...
Check also server-IP 64.57.171.115 for this harvester here!
August 03 2007 06:41 PM

P.Hauser commented...
SPAM harvester IP 70.87.196.242 came here with another UA. 5 seconds before this IP 208.65.60.105 hit our root, another listed harvester, as you might check here by IP lookup! Question would be, if both harvesters belong to the same spammer or if this is a coincidence (which I don't believe).

Here are both hits:

208.65.60.105 - - [29/Mar/2007:11:17:33 +0200] "GET / HTTP/1.1" 302 214 "-" "Mozilla/4.0 (compatible; MSIE 6.0; America Online Browser 1.1; rev1.1; Windows NT 5.1;)"
70.87.196.242 - - [29/Mar/2007:11:22:01 +0200] "GET / HTTP/1.1" 200 10044 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.2) Gecko/20060308 Firefox/1.5.0.2"

See also associated mailserver IP 195.162.41.248 for havester IP 70.87.196.242. I received SPAM from this associated mailserver now. Read the SPAM there at IP 195.162.41.248 ...
July 30 2007 09:09 PM

Page generated on: December 16 2017 12:26:27 PM
theresamunoz852@vbwebmail.com randylin362@gmail.com laracarson821@gmail.com marcgrossman262@vbwebmail.com
do not follow this link

Privacy Policy | Terms of Use | About Project Honey Pot | FAQ | Cloudflare Site Protection | Contact Us

Copyright © 2004–17, Unspam Technologies, Inc. All rights reserved.

Advertisements displayed on this page are not necessarily endorsed by Project Honey Pot

contact | wiki | email