IP Address Inspector

ATTENTION

This IP has not seen any suspicious activity within the last 3 months. This IP is most likely clean and trustworthy now. (This record will remain public for historical purposes, however.)

74.53.249.34

The Project Honey Pot system has detected behavior from the IP address consistent with that of a spam harvester. Below we've reported some other data associated with this IP. This interrelated data helps map spammers' networks and aids in law enforcement efforts. If you know something about this IP, please leave a comment.

Geographic Location	United States

Harvester First Seen	approximately 1 year, 2 months, 1 week ago
Harvester Last Seen	within 11 months, 3 weeks
Harvester Sightings	1,175 visit(s) to 462 honey pot(s)
Harvester Results	14122.292 messages per visit 16,593,693 message(s) resulting from harvests - First: approximately 1 year, 2 months, 1 week ago - Last: approximately 1 week ago 8,242 harvested address(es) have seen message(s) - First: approximately 1 year, 2 months, 1 week ago - Last: Wed, 12 Dec 2007 23:11:14 -0500
Time From Harvest To First Spam	Fastest: 1 hour, 28 mins, 38 secs Slowest: 1 month, 3 weeks, 3 days, 33 mins, 58 secs Average: 5 days, 15 hours, 32 mins, 47 secs Std Dev: 6 days, 12 hours, 56 mins, 17 secs

Associated Mail Servers
123.52.26.230 \| S
87.19.127.214 \| S
122.169.176.108 \| S
61.109.115.214 \| S
91.144.133.211 \| S
201.253.20.92 \| S
59.98.140.119 \| SD
58.61.238.78 \| S
90.188.210.225 \| SD
123.24.209.174
123.23.183.201 \| S
121.7.246.158 \| S
222.208.231.103 \| S
212.220.86.13 \| S
59.95.29.228 \| S
92.4.79.89 \| SD
84.28.232.33 \| S
88.247.214.246 \| SD
59.3.84.71 \| SD
72.94.133.137 \| S
124.132.86.221 \| S
79.185.193.201 \| S
213.132.91.83 \| S
222.172.244.135 \| S
78.183.63.10 \| S
88.214.161.89 \| SD
78.183.24.121 \| S
87.126.233.7 \| S
78.113.39.8 \| S
222.107.200.170 \| SD
222.82.160.134 \| S
86.4.190.130 \| SD
118.71.176.62
89.218.25.114 \| S
84.122.75.54 \| S
121.139.166.210 \| SD
121.246.61.220 \| SC
78.101.196.232 \| S
77.31.46.185 \| S
125.162.61.24 \| S
71.184.116.50 \| SD
82.54.209.125 \| S
62.43.59.42 \| SD
212.59.24.183 \| SD
123.176.35.244 \| S
122.164.117.124 \| S
125.247.138.6 \| SD
78.114.147.198 \| SD
60.21.3.69
196.217.42.251 \| S
87.123.255.247 \| S
125.160.85.165 \| S
92.9.58.251 \| S
82.81.30.140 \| S
85.138.86.184 \| SD
151.21.57.49
88.205.176.9 \| S
124.67.63.167
81.111.146.76 \| SD
122.138.182.245 \| S
61.102.139.30 \| S
70.103.89.170 \| S
79.219.185.102 \| S
125.46.4.117 \| S
82.40.221.137 \| SD
58.60.76.38 \| S
124.197.148.216 \| S
83.78.71.183
87.162.222.82 \| S
87.13.133.223 \| S
218.37.4.110 \| S
86.97.11.243 \| S
193.239.254.115 \| S
79.163.192.29 \| S
81.149.113.207 \| S

IPs In The Neighborhood
74.53.249.130
74.53.249.146
74.53.249.178 \| H
74.53.250.2 \| S

2 comment(s) - Comment on this IP | Collapse All

P.Hauser commented...

The following IP addresses so far were identified as originating from LiteFinder.net effective to the current date:

60.190.240.73 - HANGZHOU-AIDISI-LTD China
67.19.114.226 w103.networkharmony.com NETBLK-THEPLANET-BLK-11 USA - Texas
67.19.250.26 1a.fa.1343.static.theplanet.com NETBLK-THEPLANET-BLK-11 USA - Texas
70.84.212.114 72.d4.5446.static.theplanet.com NETBLK-THEPLANET-BLK-13 USA - Texas
70.85.113.242 f2.71.5546.static.theplanet.com NETBLK-THEPLANET-BLK-13 USA - Texas
74.53.249.34 22.f9.354a.static.theplanet.com NETBLK-THEPLANET-BLK-14 USA - Texas
74.86.14.10 atsconnect.net SOFTLAYER-4-4 USA - Texas
74.86.209.74 templatestill.com SOFTLAYER-4-4 USA - Texas
74.86.249.98 westhoste.net SOFTLAYER-4-4 USA - Texas
75.125.18.178 ev1s-75-125-18-178.ev1servers.net EVRY-BLK-17
75.125.47.162 ev1s-75-125-47-162.ev1servers.net EVRY-BLK-17
208.101.44.3 mybluewine.net SOFTLAYER-4-2 USA - Texas
216.40.222.50 ev1s-216-40-222-50.ev1servers.net EVRY-BLK-6 USA - Texas
216.40.222.66 ev1s-216-40-222-66.ev1servers.net EVRY-BLK-6 USA - Texas
216.40.222.98 ev1s-216-40-222-98.ev1servers.net EVRY-BLK-6 USA - Texas

LiteFinder.net-IPs might be subject to change, so eventually check back here individually.
December 06 2007 03:01 PM

K.Brott commented...

This IP [74.53.249.34] hit a non-displaying CGI trap-generator multiple times on several virtual websites between 2007-10-08 19:42:46 GMT-0700 and 007-10-08 22:44:01 GMT-0700.

The CGI trap-generator issued unique email addresses in the web-content that were buried in the html source and not displayed by any rendering method.

Since generation - 27 attempts from 24 unique IP's have been made to deliver email to the generated addresses, and all but one of the attempts have been from dynamic IP's all over the world.

Mail delivery attempts to the generated addresses were from:
123.sub-70-197-230.myvzw.com [70.197.230.123]
166-82-24-122.quickclick.ctc.net [166.82.24.122]
175-1.202-68.tampabay.res.rr.com [68.202.1.175]
183.201.223.87.dynamic.jazztel.es [87.223.201.183]
201-92-71-143.dsl.telesp.net.br [201.92.71.143]
20179151247.user.veloxzone.com.br [201.79.151.247]
213-63-57-243.dsl.net.artelecom.pt [213.63.57.243]
224.66.kostroma.ptl.ru [88.86.66.224]
79-73-213-26.dynamic.dsl.as9105.com [79.73.213.26]
82-47-210-159.cable.ubr09.brad.blueyonder.co.uk [82.47.210.159]
BSN-61-120-61.dial-up.dsl.siol.net [86.61.120.61]
CPE-69-76-139-97.kc.res.rr.com [69.76.139.97]
CPE00022ab6538f-CM0090834c2c33.cpe.net.cable.rogers.com [205.251.186.63]
HSI-KBW-085-216-045-251.hsi.kabelbw.de [85.216.45.251]
Ks-Kalinka.66.quantum.ru [88.86.66.224]
[206.51.150.66]
[41.221.16.42]
agypools1.nationwide.com [155.188.254.1]
c-65-96-225-88.hsd1.ma.comcast.net [65.96.225.88]
c951ab04.virtua.com.br [201.81.171.4]
dsl88-229-64447.ttnet.net.tr [88.229.251.191]
host-41.233.159.251.tedata.net [41.233.159.251]
host-88-87-241-244.net-tv.hu [88.87.241.244]
nat7.mnc.pl [193.151.114.17]
November 21 2007 03:54 PM

Page generated on: December 05 2008 06:53:34 AM

Advertisements displayed on this page are not necessarily endorsed by Project Honey Pot