I had helped out for WinsAnon for a week, while he was out for surgery. I had actually started doing this the day prior, for my parents, and am continuing to do it for them. Some here had indicated they liked my output, so I will continue to reflect it, here.

God bless! Let me know if I can be of further assistance.

Previous post, December 13th: https://voat.co/v/QRV/4159119 (4-digit palindrome)

Heh, my “site” is under attack. Someone figured out that the WordPress deployment (which I haven’t even begun to configure!) was done to “/blog” and tried logging in as admin, 12 times. From the IP address 52.246.168.148 -- which lives in Japan and is owned by Microsoft.

What are honeypots for.

Hi, Microsoft! Gonna own you. And no, not by hacking technology. By hacking the legal system, legally! EO 13848, a palindrome then a “lucky 13”! (Digits read from the right, per https://pepethefrogfaith.wordpress.com/ .) You are messing with the wrong team.

https://www.whitehouse.gov/presidential-actions/executive-order-imposing-certain-sanctions-event-foreign-interference-united-states-election/

IP address geolocation evidence: https://files.catbox.moe/e4c10v.png

Or, giving you the benefit of the doubt: maybe you’re not malicious, and are instead just so incompetent that you didn’t secure your servers, and are allowing a third-party attacker to attack my site using your property. Well, you have ownership and therefore responsibility for the “traps” that you set on your property. Configuring a computer to be able to taken over and attack my site? That’s negligence on your part. Good luck in court, if it comes to that.

Protip: just because I gave someone the email address [email protected] doesn’t mean that I was stupid enough to create the “admin” account for WordPress with the name, “admin”. It’s “nimda”, because, think mirror, and of course that’s misdirection as well. So try some other strings for the username and not merely change the password.

Also the email address "admin@" doesn't exist, either, but will accept email and route it to the default account which I creatively named.

I like a fair fight. God bless you, attacker. You help shore up defenses. And everything is logged and will be revealed. This includes the logs on your own machine, attacker. And the ones in your head (heh, in your eye, to make it Scriptural). I walked through the valley of technology, and learned a few tricks.

1. https://weather.com/storms/winter/video/winter-storm-flynn-hammers-south-central-us That’s just hilarious that they named this storm, Flynn. Also, F is the sixth letter. And a song inspired by this anon’s comment https://voat.co/v/QRV/4158892/26791909 (“You'll not see nothing like the Might Flynn!!”) -- “Come all without; come all within!” https://www.youtube.com/watch?v=K13hH0pJx5s (“Others are writing notes” topkek!)

2. https://voat.co/v/QRV/4158441 Awesome story about visiting a Walmart without a mask. Like a rebel, loved the part about being like the Lone Ranger but ironically, without a mask! :)

3. https://wearethene.ws/notable/179882 Joe Kim just moved from Solar Winds to Citrix Systems. The image at that URL is from LinkedIn, and shows his full name as Joseph Kim. I downloaded the 500+ MB .csv file containing the 2 million names, and searched through it. There are zero “Joseph Kim” but there are 11, “Joe Kim”. Perhaps he’s one of them. Or perhaps it's like "John Smith."

4. SolarWinds Dig:

   https://wearethene.ws/notable/179883 Related to the above item; a SolarWinds Director sold $45 million in stock options last week. I’m not currently familiar with SolarWinds, but looks connected to Dominion from the image at the above URL. It also links to a GatewayPundit story (thanks Jim Hoft for all you do!), at https://www.thegatewaypundit.com/2020/12/revealed-solarwinds-director-sold-45-7-million-stock-options-last-week-cisa-announcement-sunday/

   So let’s dig a little: it’s “IT Service Management without the friction” according to their web site. I know that Intel CPUs have that Management Engine which is a modified version of Minix running under the hood that the user doesn’t have access to. Intel touts this as helping companies manage their computing resources. So this looks connected. Founded in 1999, and got funding from Bain Capital which Mitt Romney is/was connected to. Also the “Bane” character from the Batman movie where they “judged the rich” and either murdered them or banished them onto the ice (“murdered slower”). So thanks for that Batman graffiti yesterday, anon; you helped write this! :)

   Founded by a former Walmart executive -- so, that’s an interesting link, especially with the story in #2 above. Their initial products, Trace Route and Ping Sweep, sound exactly like Steve Gibson products! Let’s see what he’s doing: still alive, https://en.wikipedia.org/wiki/Steve_Gibson_(computer_programmer) His projects page is long, I remember using his “ShieldsUP!” service decades ago, neat! https://www.grc.com/stevegibson.htm#projects “NanoProbe” was his rewrite of the TCP protocol suite, so he knows protocols. Reading through is a blast from the past! “LeakTest 1.0” mentions ZoneAlarm, which I remember using (both of). Anyway, loved Steve’s work and grateful to see he’s still at it.

   Lots more details in Wikipedia’s “History” section, https://en.wikipedia.org/wiki/SolarWinds#History which might trigger bells in researchers -- went public, then private, then public again, and says who was involved, etc. A later (2017) product was TraceView, which sounds similar to Steve Gibson’s creations as well.

   Aha! https://en.wikipedia.org/wiki/SolarWinds#2020_supply_chain_attack This looks important! From the article, “On December 13, 2020, the Washington Post reported that multiple government agencies were breached through SolarWinds's Orion software, "according to three people familiar with the matter..."” Note that this was just yesterday! Also, the important part of getting that funding appears to be to have been -- to gain the ability to worm their way into government contracts!

5. https://www.youtube.com/watch?v=Hju17fXIriQ Video posted back in August, by Lori Ladd who I’m not familiar with; titled “Is Trump A Lightworker” (pretty sure they answer’s yes). 32 minutes; she mentions “put on your ‘ascension goggles’” which I thought was neat, reminding me of “They Live” and the sunglasses that allow you to see the truth. Also (at 21m40s), “why is he the only President who has ever spoken about sex trafficking?”

6. An offhand comment I made earlier; someone asked, if the “101 lite” version of “Parasite Pill” described viral activity accurately, why do people seem to “catch colds” from each other at winter time?

   My response was: perhaps it’s like yawning: https://voat.co/v/QRV/4159007/26794164

   I think there might be something to that. Appreciate feedback.