User mttmzz joined AbuseIPDB in May 2023 and has reported 12 IP addresses.
Standing (weight) is good.
INACTIVE USER
| IP | Date | Comment | Categories |
|---|---|---|---|
| 🇪🇸 45.200.149.47 |
Stealc Command and Control server
|
Hacking | |
| 🇭🇺 82.115.209.90 |
FormBook distribution
|
Phishing | |
| 🇧🇪 88.209.206.41 |
Delivetr LokiBot malware via phishing campaign
|
Phishing | |
| 🇮🇪 104.47.51.138 |
OWA Phishing
|
Phishing | |
| 🇺🇸 74.208.4.194 |
Fake OWA auth page
|
Phishing | |
| 🇺🇸 74.208.4.196 |
Fake OWA auth page
|
Phishing | |
| 🇮🇩 103.195.90.205 |
Phishing with subject:"A New Contract Document Has Been Shared For Your review via wetransfer"
|
Phishing | |
| 🇳🇱 178.128.242.134 |
XmRig C2. Infected clients try to connect to it throught port 3333.
|
Hacking | |
| 🇨🇳 123.10.226.85 |
Probing GPON Home Routers Remote Code Execution Vulnerability on port 80
|
Web App Attack | |
| 🇨🇳 49.89.3.237 |
Probing for Netgear DGN Device Remote Command Execution Vulnerability
|
Web App Attack | |
| 🇨🇳 42.239.229.53 |
Probing for Netgear DGN Device Remote Command Execution Vulnerability
|
Web App Attack |