城市(city): unknown
省份(region): unknown
国家(country): Canada
运营商(isp): Amanah Tech Inc.
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbotsspam | (From vail.gregg@gmail.com) Hello! If you're reading this then you just proved that contact form advertising works! We can send your promotional message to people via their contact us form on their website. The advantage of this kind of advertising is that messages sent through feedback forms are automatically whitelisted. This dramatically improves the likelihood that your message will be opened. Never any PPC costs! Pay one flat rate and reach millions of people. To get more info send a message to: william4212sau@gmail.com |
2019-10-29 15:10:53 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.245.145.21 | attackspambots | 2020-08-14 22:58:21 | |
| 104.245.145.24 | attack | 2020-08-14 22:58:07 | |
| 104.245.145.36 | attackbots | 2020-08-14 22:57:34 | |
| 104.245.145.41 | attackspam | (From christen.crowe@gmail.com) No cost advertising for your website here: http://www.free-ad-submission.xyz |
2020-05-24 16:11:03 |
| 104.245.145.40 | attackbots | (From jina.piscitelli@gmail.com) Greetings, I was just taking a look at your website and filled out your contact form. The feedback page on your site sends you these messages via email which is why you're reading my message at this moment right? That's the most important achievement with any type of online ad, getting people to actually READ your message and this is exactly what you're doing now! If you have an advertisement you would like to blast out to thousands of websites via their contact forms in the U.S. or anywhere in the world send me a quick note now, I can even focus on your required niches and my pricing is very reasonable. Shoot me an email here: Phungcorsi@gmail.com |
2020-05-24 15:24:33 |
| 104.245.145.7 | attack | Automatic report - Banned IP Access |
2020-05-24 07:26:20 |
| 104.245.145.58 | attackbots | Contact form spam |
2020-05-23 22:24:16 |
| 104.245.145.125 | attackspam | Malicious Traffic/Form Submission |
2020-05-20 01:19:18 |
| 104.245.145.122 | attackspam | (From pitcher.theresa@gmail.com) Interested in the latest fitness , wellness, nutrition trends? Check out my blog here: https://bit.ly/www-fitnessismystatussymbol-com And my Instagram page @ziptofitness |
2020-05-19 23:52:38 |
| 104.245.145.21 | attackspambots | (From nussbaum.velma@gmail.com) Groundbreaking new way to advertise your website for Nothing! See here: http://bit.ly/submityourfreeads |
2020-05-16 14:55:55 |
| 104.245.145.37 | attack | (From herlitz.samira@gmail.com) Stem cell therapy has proven itself to be one of the most effective treatments for COPD (Chronic Obstructive Pulmonary Disorder). IMC is the leader in stem cell therapies in Mexico. For more information on how we can treat COPD please visit: https://bit.ly/copd-integramedicalcenter |
2020-05-14 16:37:14 |
| 104.245.145.38 | attack | Malicious Traffic/Form Submission |
2020-05-11 14:29:54 |
| 104.245.145.39 | attackbots | Spammer |
2020-04-11 05:49:45 |
| 104.245.145.5 | attack | (From marx.stacy@gmail.com) Greetings, I was just visiting your website and filled out your "contact us" form. The contact page on your site sends you messages like this to your email account which is why you are reading my message at this moment right? That's the most important achievement with any type of advertising, making people actually READ your advertisement and that's exactly what I just accomplished with you! If you have an advertisement you would like to blast out to tons of websites via their contact forms in the US or to any country worldwide send me a quick note now, I can even focus on specific niches and my charges are very affordable. Reply here: trinitybeumer@gmail.com |
2020-04-08 18:18:02 |
| 104.245.145.124 | attack | (From samantha.barden@yahoo.com) Are You interested in an advertising service that charges less than $50 every month and sends hundreds of people who are ready to buy directly to your website? Check out: http://www.trafficmasters.xyz |
2020-04-06 15:06:05 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.245.145.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61728
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.245.145.4. IN A
;; AUTHORITY SECTION:
. 292 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019101402 1800 900 604800 86400
;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 15 13:09:53 CST 2019
;; MSG SIZE rcvd: 117
4.145.245.104.in-addr.arpa domain name pointer r-4-145-245-104.consumer-pool.prcdn.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
4.145.245.104.in-addr.arpa name = r-4-145-245-104.consumer-pool.prcdn.net.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 203.195.211.173 | attackbotsspam | (sshd) Failed SSH login from 203.195.211.173 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 28 18:33:48 amsweb01 sshd[22005]: Invalid user administracion from 203.195.211.173 port 36626 Aug 28 18:33:50 amsweb01 sshd[22005]: Failed password for invalid user administracion from 203.195.211.173 port 36626 ssh2 Aug 28 18:43:00 amsweb01 sshd[23547]: Invalid user gk from 203.195.211.173 port 58632 Aug 28 18:43:02 amsweb01 sshd[23547]: Failed password for invalid user gk from 203.195.211.173 port 58632 ssh2 Aug 28 18:46:48 amsweb01 sshd[24100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.211.173 user=root |
2020-08-29 02:44:34 |
| 125.108.171.180 | attackbots | [Fri Aug 28 19:03:43.917361 2020] [:error] [pid 23509:tid 139692145563392] [client 125.108.171.180:49383] [client 125.108.171.180] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "X0jyn1Hp-E@9Eo2JfVBiQQAAAqM"]
... |
2020-08-29 02:21:34 |
| 220.130.10.13 | attack | Aug 28 20:17:56 meumeu sshd[527652]: Invalid user nominatim from 220.130.10.13 port 33172 Aug 28 20:17:56 meumeu sshd[527652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.10.13 Aug 28 20:17:56 meumeu sshd[527652]: Invalid user nominatim from 220.130.10.13 port 33172 Aug 28 20:17:58 meumeu sshd[527652]: Failed password for invalid user nominatim from 220.130.10.13 port 33172 ssh2 Aug 28 20:21:26 meumeu sshd[527845]: Invalid user daf from 220.130.10.13 port 34912 Aug 28 20:21:26 meumeu sshd[527845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.10.13 Aug 28 20:21:26 meumeu sshd[527845]: Invalid user daf from 220.130.10.13 port 34912 Aug 28 20:21:27 meumeu sshd[527845]: Failed password for invalid user daf from 220.130.10.13 port 34912 ssh2 Aug 28 20:24:48 meumeu sshd[528014]: Invalid user aneta from 220.130.10.13 port 36652 ... |
2020-08-29 02:39:08 |
| 157.230.47.241 | attack | Aug 28 14:53:44 ift sshd\[57950\]: Invalid user zhou from 157.230.47.241Aug 28 14:53:46 ift sshd\[57950\]: Failed password for invalid user zhou from 157.230.47.241 port 50814 ssh2Aug 28 14:58:33 ift sshd\[58538\]: Invalid user contest from 157.230.47.241Aug 28 14:58:35 ift sshd\[58538\]: Failed password for invalid user contest from 157.230.47.241 port 58830 ssh2Aug 28 15:03:22 ift sshd\[59908\]: Invalid user postgres from 157.230.47.241 ... |
2020-08-29 02:35:01 |
| 119.2.17.138 | attackspambots | Time: Fri Aug 28 14:21:58 2020 +0000 IP: 119.2.17.138 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 28 14:03:40 hosting sshd[14549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.2.17.138 user=root Aug 28 14:03:42 hosting sshd[14549]: Failed password for root from 119.2.17.138 port 33906 ssh2 Aug 28 14:19:18 hosting sshd[16784]: Invalid user anirudh from 119.2.17.138 port 50992 Aug 28 14:19:21 hosting sshd[16784]: Failed password for invalid user anirudh from 119.2.17.138 port 50992 ssh2 Aug 28 14:21:55 hosting sshd[17119]: Invalid user teamspeak3 from 119.2.17.138 port 49450 |
2020-08-29 02:35:20 |
| 64.213.148.44 | attackbots | 2020-08-28T15:39:42.984160upcloud.m0sh1x2.com sshd[23027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.213.148.44 user=root 2020-08-28T15:39:45.211221upcloud.m0sh1x2.com sshd[23027]: Failed password for root from 64.213.148.44 port 59872 ssh2 |
2020-08-29 02:20:58 |
| 185.235.40.165 | attackbots | Aug 28 14:46:11 plex-server sshd[122448]: Invalid user date from 185.235.40.165 port 41800 Aug 28 14:46:11 plex-server sshd[122448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.235.40.165 Aug 28 14:46:11 plex-server sshd[122448]: Invalid user date from 185.235.40.165 port 41800 Aug 28 14:46:13 plex-server sshd[122448]: Failed password for invalid user date from 185.235.40.165 port 41800 ssh2 Aug 28 14:49:54 plex-server sshd[123495]: Invalid user admin from 185.235.40.165 port 48288 ... |
2020-08-29 02:10:43 |
| 113.193.25.98 | attackspambots | prod8 ... |
2020-08-29 02:09:02 |
| 139.155.82.119 | attackbotsspam | Aug 28 11:47:12 ny01 sshd[22401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Aug 28 11:47:14 ny01 sshd[22401]: Failed password for invalid user wz from 139.155.82.119 port 46152 ssh2 Aug 28 11:49:02 ny01 sshd[22692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 |
2020-08-29 02:43:59 |
| 97.74.237.196 | attackbots | SSH Brute-Force Attack |
2020-08-29 02:25:48 |
| 111.30.114.22 | attackbots | Invalid user viktor from 111.30.114.22 port 58818 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.30.114.22 Invalid user viktor from 111.30.114.22 port 58818 Failed password for invalid user viktor from 111.30.114.22 port 58818 ssh2 Invalid user server from 111.30.114.22 port 56338 |
2020-08-29 02:18:09 |
| 184.22.179.214 | attack | 1598616214 - 08/28/2020 14:03:34 Host: 184.22.179.214/184.22.179.214 Port: 445 TCP Blocked |
2020-08-29 02:29:16 |
| 165.22.239.44 | attackbots | Invalid user gerrit from 165.22.239.44 port 52510 |
2020-08-29 02:24:40 |
| 159.89.188.167 | attackspam | Aug 28 17:25:26 jumpserver sshd[70227]: Invalid user brendan from 159.89.188.167 port 47144 Aug 28 17:25:28 jumpserver sshd[70227]: Failed password for invalid user brendan from 159.89.188.167 port 47144 ssh2 Aug 28 17:29:34 jumpserver sshd[70271]: Invalid user kernel from 159.89.188.167 port 53738 ... |
2020-08-29 02:29:51 |
| 77.103.207.152 | attack | Aug 28 14:28:27 XXXXXX sshd[22930]: Invalid user hynexus from 77.103.207.152 port 35440 |
2020-08-29 02:31:32 |