179.50.239.69

Received a text from http://62.182.84.179/ saying they have sent me $500. Yeah, right. I can tell it's a scammer!.

Looked at my router log: [DoS attack: Smurf] (1) attack packets in last 20 sec from ip [3.233.82.255], Friday, Feb 26,2021 09:49:14 I put it into your system and got this screen with information, thank you and I hope you can do something with it. NetRange: 3.128.0.0 - 3.255.255.255 CIDR: 3.128.0.0/9 NetName: AT-88-Z NetHandle: NET-3-128-0-0-1 Parent: NET3 (NET-3-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Amazon Technologies Inc. (AT-88-Z) RegDate: 2018-06-25 Updated: 2018-09-13 Ref: https://rdap.arin.net/registry/ip/3.128.0.0 OrgName: Amazon Technologies Inc. OrgId: AT-88-Z Address: 410 Terry Ave N. City: Seattle StateProv: WA PostalCode: 98109 Country: US RegDate: 2011-12-08 Updated: 2020-03-31 Comment: All abuse reports MUST include: Comment: * src IP Comment: * dest IP (your IP) Comment: * dest port Comment: * Accurate date/timestamp and timezone of activity Comment: * Intensity/frequency (short log extracts) Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time. Ref: https://rdap.arin.net/registry/entity/AT-88-Z OrgRoutingHandle: IPROU3-ARIN OrgRoutingName: IP Routing OrgRoutingPhone: +1-206-266-4064 OrgRoutingEmail: aws-routing-poc@amazon.com OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN OrgAbuseHandle: AEA8-ARIN OrgAbuseName: Amazon EC2 Abuse OrgAbusePhone: +1-206-266-4064 OrgAbuseEmail: abuse@amazonaws.com OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN OrgNOCHandle: AANO1-ARIN OrgNOCName: Amazon AWS Network Operations OrgNOCPhone: +1-206-266-4064 OrgNOCEmail: amzn-noc-contact@amazon.com OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN OrgRoutingHandle: ADR29-ARIN OrgRoutingName: AWS Dogfish Routing OrgRoutingPhone: +1-206-266-4064 OrgRoutingEmail: aws-dogfish-routing-poc@amazon.com OrgRoutingRef: https://rdap.arin.net/registry/entity/ADR29-ARIN OrgTechHandle: ANO24-ARIN OrgTechName: Amazon EC2 Network Operations OrgTechPhone: +1-206-266-4064 OrgTechEmail: amzn-noc-contact@amazon.com OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN NetRange: 3.224.0.0 - 3.239.255.255 CIDR: 3.224.0.0/12 NetName: AMAZON-IAD NetHandle: NET-3-224-0-0-1 Parent: AT-88-Z (NET-3-128-0-0-1) NetType: Reallocated OriginAS: AS16509, AS14618 Organization: Amazon Data Services NoVa (ADSN-1) RegDate: 2018-12-18 Updated: 2018-12-18 Ref: https://rdap.arin.net/registry/ip/3.224.0.0 OrgName: Amazon Data Services NoVa OrgId: ADSN-1 Address: 13200 Woodland Park Road City: Herndon StateProv: VA PostalCode: 20171 Country: US RegDate: 2018-04-25 Updated: 2019-08-02 Ref: https://rdap.arin.net/registry/entity/ADSN-1 OrgNOCHandle: AANO1-ARIN OrgNOCName: Amazon AWS Network Operations OrgNOCPhone: +1-206-266-4064 OrgNOCEmail: amzn-noc-contact@amazon.com OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN OrgAbuseHandle: AEA8-ARIN OrgAbuseName: Amazon EC2 Abuse OrgAbusePhone: +1-206-266-4064 OrgAbuseEmail: abuse@amazonaws.com OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN OrgTechHandle: ANO24-ARIN OrgTechName: Amazon EC2 Network Operations OrgTechPhone: +1-206-266-4064 OrgTechEmail: amzn-noc-contact@amazon.com OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN

This IP tried to access my bank account.

Hacker

hacker

Hello Webmasters of Society RIPE.net, and SIGNAL SPAM, LA POSTE, and EUROPOL ( in hidden copies ), Again these same emails of bank Phishing in March 2021, since year 2007 ( all Datafiles with HTML codes storaged ) ! Today Monday 01 March 2021 after 02h40 AM ( always by nights or early mornings, or week-ends, or before or after opening of Offices and Administrations in FRANCE, I have just receive again this same email of Bank phishing in name of French CPAM ( Ameli.fr ) from email stolen : zaqswq@lopelimaenakze.com and from IP address from the PC or Smartphone of theses crazy hackers : 135.125.114.224 in USA. Received : from lopelimaenakze.com (ip224.ip-135-125-114.eu [135.125.114.224]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mlpnf0107.laposte.net (SMTP Server) with ESMTPS id 4Dpjc81tW8z1qqhn for <ele.lemoine@laposte.net>; Mon, 1 Mar 2021 02:39:36 +0100 (CET) Received : by lopelimaenakze.com (Postfix, from userid 10000) id 06E5C48A1B34; Mon, 1 Mar 2021 01:39:35 +0000 (UTC) To : ele.lemoine@laposte.net IP Lookup Details: IP Information - 135.125.114.224 Host name: ip224.ip-135-125-114.eu Country: United States Country Code: US Region: NJ City: Basking Ridge Latitude: 40.6761 Longitude: -74.573 using address IP and emails from Society lopelimaenakze.com Herebelow ( after French Version ) this complete email with all references HTML : VERSION FRANÇAISE : RECEPTION nouvel email d’escroquerie usurpant la CPAM, et AMELI.fr en France avec adresse email émettrice bidon : Bonjour Webmasters de SIGNAL SPAM, de AMELI.fr, de la CPAM, et LA POSTE.net, Et ces escroqueries continuent encore début Mars 2021, et ceci depuis au moins +14 années (emails tous archivés complets avec tous leurs codes HTML depuis 2007 ) ! CE Lundi 01 Mars 2021 après 02h39 ( très souvent soit les nuits, ou tôt les matinées, les week-ends, ou avant les ouvertures ou après le fermetures des Bureaux et Administrations en France )( méthodes d’escrocs et de faux culs ) j'ai reçu sur ma boite email ( ele.lemoine@laposte.net ) ce nouvel email ci-dessous d’escroquerie usurpant la CPAM et venant cette fois-ci de l'adresse email d’escroquerie: zaqswq@lopelimaenakze.com L’adresse IP utilisée par le PC ou le smartphone de ces hackers fous est : 135.125.114.224 aux USA. Received : from lopelimaenakze.com (ip224.ip-135-125-114.eu [135.125.114.224]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mlpnf0107.laposte.net (SMTP Server) with ESMTPS id 4Dpjc81tW8z1qqhn for <ele.lemoine@laposte.net>; Mon, 1 Mar 2021 02:39:36 +0100 (CET) Received : by lopelimaenakze.com (Postfix, from userid 10000) id 06E5C48A1B34; Mon, 1 Mar 2021 01:39:35 +0000 (UTC) To : ele.lemoine@laposte.net IP Lookup Details: IP Information - 135.125.114.224 Host name: ip224.ip-135-125-114.eu Country: United States Country Code: US Region: NJ City: Basking Ridge Latitude: 40.6761 Longitude: -74.573 utilisant aussi les emails de la Société lopelimaenakze.com C'est clairement une tentative d’escroquerie usurpant la CPAM et AMELI.fr ! Ci-dessous cet email d’escroquerie avec ces en-têtes complets : [C_P_A_M] : Rémunération • Aujourd'hui, à 02:39 (il y a 6 heures) • • • De : Votre.Service • A : ele.lemoine@laposte.net • Bonjour Après la dernière vérification de votre dossier d’assurancelmaladie, nous avons déterminé que vous recevrez uniremboursementlde 495.57pEuros. C’est simple et rapide : 1. Connectez-vous à votre espacelpersonnel en Cliquant ici 2. Confirmer vos coordonnées Grâce à votre compte vous pouvez à tout moment et en toute sécurité : • Échanger votre caisse. • Commander une carte européenne d’assurancelmaladie (CEAM). • Télécharger votre attestation de droits ou d’indemnités journalières. Merci de votre confiance Votre caisse d’assurancelmaladie ********************** CODE HTML ci-dessous ********************************* Return-Path : <zaqswq@lopelimaenakze.com> Received : from mlpnf0107.laposte.net (mlpnf0107.sys.meshcore.net [10.94.128.86]) by mlpnb0108 with LMTPA; Mon, 01 Mar 2021 02:39:36 +0100 X-Cyrus-Session-Id : cyrus-18927-1614562776-1-7987190287716893149 X-Sieve : CMU Sieve 3.0 X-mail-filterd : {"version":"1.2.2","queueID":"4Dpjc82Y4nz1qqhy","contextId":"ca1873f2-b806-479d-af86-8d1636b7a04a"} X-ppbforward : {"queueID":"4Dpjc82Y4nz1qqhy","server":"mlpnf0107"} Received : from outgoing-mail.laposte.net (localhost.localdomain [127.0.0.1]) by mlpnf0107.laposte.net (SMTP Server) with ESMTP id 4Dpjc82Y4nz1qqhy for <lpn000000000000000018870443@back01-mail02-04.lpn.svc.meshcore.net>; Mon, 1 Mar 2021 02:39:36 +0100 (CET) X-mail-filterd : {"version":"1.2.2","queueID":"4Dpjc81tW8z1qqhn","contextId":"49976f00-99c4-4230-8e41-8f358d17141b"} X-lpn-mailing : LEGIT X-lpn-spamrating : 40 X-lpn-spamlevel : not-spam Authentication-Results : laposte.net; spf=pass smtp.mailfrom=zaqswq@lopelimaenakze.com smtp.helo=lopelimaenakze.com; dkim=none; dmarc=pass reason="SPF is aligned, DKIM is not aligned" X-lpn-spamcause : OK, (0)(0000)gggruggvucftvghtrhhoucdtuddrgeduledrleejgdefkecutefuodetggdotefrodftvfcurfhrohhfihhlvgemucfntefrqffuvffgpdggtfgfnhhsuhgsshgtrhhisggvnecuuegrihhlohhuthemuceftddtnecunecujfgurhepvffufffhrhfkofggtgfgsehhkeertdehtdejnecuhfhrohhmpedfgghothhrvgdrufgvrhhvihgtvgdfuceonhgvfihslhgvthhtvghrsehlohhpvghlihhmrggvnhgrkhiivgdrtghomheqnecuggftrfgrthhtvghrnhepteeludejteevleetieevuedujeektedvleejkeettdeliefhtddtkeeuhfffueevnecuffhomhgrihhnpehlohhpvghlihhmrggvnhgrkhiivgdrtghomhenucfkphepudefhedruddvhedruddugedrvddvgeenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhephhgvlhhopehlohhpvghlihhmrggvnhgrkhiivgdrtghomhdpihhnvghtpedufeehrdduvdehrdduudegrddvvdegpdhmrghilhhfrhhomhepiigrqhhsfihqsehlohhpvghlihhmrggvnhgrkhiivgdrtghomhdprhgtphhtthhopegvlhgvrdhlvghmohhinhgvsehlrghpohhsthgvrdhnvght Received : from lopelimaenakze.com (ip224.ip-135-125-114.eu [135.125.114.224]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mlpnf0107.laposte.net (SMTP Server) with ESMTPS id 4Dpjc81tW8z1qqhn for <ele.lemoine@laposte.net>; Mon, 1 Mar 2021 02:39:36 +0100 (CET) Received : by lopelimaenakze.com (Postfix, from userid 10000) id 06E5C48A1B34; Mon, 1 Mar 2021 01:39:35 +0000 (UTC) To : ele.lemoine@laposte.net Subject : [C_P_A_M] : Rémunération Date : Mon, 1 Mar 2021 01:39:35 +0000 From : "Votre.Service" <newsletter@lopelimaenakze.com> Reply-To : newsletter@lopelimaenakze.com Message-ID : <8R9t7JSQVc1rQUjxtntemtGFEf8C32lpCpYWXQA6M@lopelimaenakze.com> X-Mailer : PHPMailer 6.2.0 (https://github.com/PHPMailer/PHPMailer) MIME-Version : 1.0 Content-Type : text/html; charset=UTF-8 Content-Transfer-Encoding : 8bit

ENGLISH Version : Hello Webmasters of Support Phishing, Signal SPAM, BANQUE POPULAIRE, La Poste.net, et INTERPOL ( in hidden copy ), Again these same emails of Phishing in March 2021, since +14 years ( 2007 ! Today Monday 01 March 2021 after 06h29 AM ( always early mornings, by nights, and before opening of Offices and Administrations in FRANCE, I have just receive this new email of Bank phishing in name of French Bank BANQUE POPULAIRE herebelow, from wrong ( stolen ) email address : Service-Client@labanquepopulaire.com IP addresses from the PC or Smartphone of theses crazy hackers are : 192.254.71.211 et 51.103.52.199 Received : from 192-254-71-211.plesk.page (unknown [192.254.71.211]) by mlpnf0117.laposte.net (SMTP Server) with ESMTP id 4Dppjg1VdWzDq5s for <ele.lemoine@laposte.net>; Mon, 1 Mar 2021 06:29:43 +0100 (CET) Received : from vpsstudent (unknown [51.103.52.199]) by 192-254-71-211.plesk.page (Postfix) with ESMTPSA id 6911C979580 for <ele.lemoine@laposte.net>; Wed, 24 Feb 2021 05:14:17 +0000 (UTC) IP Lookup Details: IP Information - 51.103.52.199 Host name: 51.103.52.199 Country: United Kingdom Country Code: GB Region: City: Latitude: 51.4964 Longitude: -0.1224 Herebelow ( after French Version ) this complete email with all references HTML : VERSION FRANÇAISE : Titre : Réception nouvel email usurpant la BANQUE POPULAIRE sur les boites emails à LA POSTE.net et titré : Bonjour Webmasters de SIGNAL SPAM, La Poste.net, Banque Populaire, Et ces escroqueries continuent encore et toujours début Mars 2021, et ceci depuis au moins + 14 années ( au moins 2007 ! Emails tous archivés, avec leurs codes HTML ) ! Ce Lundi 01 Mars 2021 après 06h29 ( souvent les nuits, ou tôt les matinées, les week-ends, ou avant les Ouvertures ou juste après les fermetures des Bureaux et Administrations en France )( méthodes d’escrocs ) j'ai reçu sur ma boite email ( ele.lemoine@laposte.net ) ce nouvel email ci-dessous d’escroquerie Bancaire avec même faux contenu BANQUE POPULAIRE et venant cette fois-ci de l'adresse email usurpée : Service-Client@labanquepopulaire.com Les 2 adresses IP utilisées par le PC ou smartphone de ces hackers fous sont : 192.254.71.211 et 51.103.52.199 Received : from 192-254-71-211.plesk.page (unknown [192.254.71.211]) by mlpnf0117.laposte.net (SMTP Server) with ESMTP id 4Dppjg1VdWzDq5s for <ele.lemoine@laposte.net>; Mon, 1 Mar 2021 06:29:43 +0100 (CET) Received : from vpsstudent (unknown [51.103.52.199]) by 192-254-71-211.plesk.page (Postfix) with ESMTPSA id 6911C979580 for <ele.lemoine@laposte.net>; Wed, 24 Feb 2021 05:14:17 +0000 (UTC) IP Lookup Details: IP Information - 51.103.52.199 Host name: 51.103.52.199 Country: United Kingdom Country Code: GB Region: City: Latitude: 51.4964 Longitude: -0.1224 C'est visiblement et clairement une tentative d’escroquerie ( bourré de fautes ) je n’ai rien à la BANQUE POPULAIRE ! Ci-dessous cet email de phishing avec ces en-têtes complets : ***************************** Mettre à jour régulièrement votre Sécur’Pass • Aujourd'hui, à 06:29 (il y a 3 heures) • • • De : Secur-Pass • A : ele.lemoine@laposte.net • ***************** MESSAGE AUTOMATIQUE*************** Cher(e) client(e) : Votre conseiller vous a adressé un nouveau message concernant le renforcement de la sécurité de vos opérations sensibles Sécur’Pass, une solution simple et sécurisée pour réaliser des paiements par carte bancaire sur internet ou vos opérations sensibles de banque à distance. Dans le cas contraire, vous n'aurez plus le droit d'utiliser votre carte sur internet. N° de Dossier : DT28-2187626-SP2716782 Quelles sont les démarches à suivre : *Télécharger le Questionnaire (CI-JOINT) et accéder à votre Guide d'authentification. Nous vous remercions de votre confiance. Banque Populaire Cette adresse e-mail ne peut recevoir aucune réponse. Pour en savoir plus, Cette notification vous a été envoyée par e-mail afin de vous informer de modifications importantes apportées à votre compte bancaire © 2014 Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ********************** Codes HTML ci-dessous ****************** Return-Path : <Service-Client@labanquepopulaire.com> Received : from mlpnf0117.laposte.net (mlpnf0117.sys.meshcore.net [10.94.128.96]) by mlpnb0108 with LMTPA; Mon, 01 Mar 2021 06:29:44 +0100 X-Cyrus-Session-Id : cyrus-457143-1614576584-2-5121835735301690379 X-Sieve : CMU Sieve 3.0 X-mail-filterd : {"version":"1.2.2","queueID":"4Dppjh0kZTzDq5v","contextId":"79b7b9fb-a64b-4988-85cb-dbcad255f700"} X-ppbforward : {"queueID":"4Dppjh0kZTzDq5v","server":"mlpnf0117"} Received : from outgoing-mail.laposte.net (localhost.localdomain [127.0.0.1]) by mlpnf0117.laposte.net (SMTP Server) with ESMTP id 4Dppjh0kZTzDq5v for <lpn000000000000000018870443@back01-mail02-04.lpn.svc.meshcore.net>; Mon, 1 Mar 2021 06:29:44 +0100 (CET) X-mail-filterd : {"version":"1.2.2","queueID":"4Dppjg1VdWzDq5s","contextId":"a7f9558b-0196-4eb6-881d-df496643542d"} X-lpn-mailing : LEGIT X-lpn-spamrating : 45 X-lpn-spamlevel : not-spam Authentication-Results : laposte.net; iprev=fail reason="does not match [192.254.71.211]" policy.iprev=192.254.71.211; spf=none smtp.mailfrom=Service-Client@labanquepopulaire.com smtp.helo=192-254-71-211.plesk.page; dkim=none; dmarc=none reason="No policy found" X-lpn-spamcause : OK, (0)(0000)gggruggvucftvghtrhhoucdtuddrgeduledrleejgdekhecutefuodetggdotefrodftvfcurfhrohhfihhlvgemucfntefrqffuvffgpdggtfgfnhhsuhgsshgtrhhisggvnecuuegrihhlohhuthemuceftddtnecunecujfgurhepggfhvfffufgtsehmtddtredttdejnecuhfhrohhmpedfufgvtghurhdqrfgrshhsfdcuoefuvghrvhhitggvqdevlhhivghntheslhgrsggrnhhquhgvphhophhulhgrihhrvgdrtghomheqnecuggftrfgrthhtvghrnhepueefffdvudevtdfhteduhffgheeghfekleejgeeffffgleduueffteeuffduledunecukfhppeduledvrddvheegrdejuddrvdduuddphedurddutdefrdehvddrudelleenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhephhgvlhhopeduledvqddvheegqdejuddqvdduuddrphhlvghskhdrphgrghgvpdhinhgvthepudelvddrvdehgedrjedurddvuddupdhmrghilhhfrhhomhepufgvrhhvihgtvgdqvehlihgvnhhtsehlrggsrghnqhhuvghpohhpuhhlrghirhgvrdgtohhmpdhrtghpthhtohepvghlvgdrlhgvmhhoihhnvgeslhgrphhoshhtvgdrnhgvth Received : from 192-254-71-211.plesk.page (unknown [192.254.71.211]) by mlpnf0117.laposte.net (SMTP Server) with ESMTP id 4Dppjg1VdWzDq5s for <ele.lemoine@laposte.net>; Mon, 1 Mar 2021 06:29:43 +0100 (CET) Received : from vpsstudent (unknown [51.103.52.199]) by 192-254-71-211.plesk.page (Postfix) with ESMTPSA id 6911C979580 for <ele.lemoine@laposte.net>; Wed, 24 Feb 2021 05:14:17 +0000 (UTC) MIME-Version : 1.0 From : "Secur-Pass" <Service-Client@labanquepopulaire.com> To : ele.lemoine@laposte.net Date : 24 Feb 2021 05:15:39 +0000 Subject : Mettre à jour régulièrement votre Sécur’Pass Content-Type : multipart/mixed; boundary=--boundary_40928_1a70c7fa-c491-44f4-ac05-6067ab3fb5e2 X-PPP-Message-ID : <20210224051417.24380.20425@host10.utecho.com> X-PPP-Vhost : pureplast.com.pk Message-Id : <4Dppjh0kZTzDq5v@mlpnf0117.laposte.net>

hacker ip or hack server laging ping enemy game

213.171.212.108 keeps making attacks on above webserver.

I live in Davenport, IA USA not Great Britain or UK

to support migration project

From 185.232.52.55 there are for weeks now lots of tries to enter our Fritz!Box with different usernames.

NECESITO CAMBIAR LA CONTRASEÑA YA QUE NO RECUERDO LA CONTRASEÑA QUE TENIA

OK

Drugs

5.59.180.0/23 THAT RANGE OF IP WAS FROM GREEK ISP COMPANY WIFIBER IKE WITH REG NUMBER EL801131454

http://54.234.106.211/ repeated hack attempts from this IP on 21/02/21

Savvy user here who has kept login password safe... This IP was logged into my Facebook.

What about this service

What about this service

176.214.128.121

SPAM

SPAM

SPAM