City: unknown
Region: unknown
Country: United States of America
Internet Service Provider: QuadraNet Enterprises LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspam | 3,39-06/06 [bc04/m132] PostRequest-Spammer scoring: zurich |
2020-06-07 01:25:41 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.129.3.254 | attackspambots | (From eric@talkwithwebvisitor.com) My name’s Eric and I just came across your website - nassauchiropracticphysicaltherapy.com - in the search results. Here’s what that means to me… Your SEO’s working. You’re getting eyeballs – mine at least. Your content’s pretty good, wouldn’t change a thing. BUT… Eyeballs don’t pay the bills. CUSTOMERS do. And studies show that 7 out of 10 visitors to a site like nassauchiropracticphysicaltherapy.com will drop by, take a gander, and then head for the hills without doing anything else. It’s like they never were even there. You can fix this. You can make it super-simple for them to raise their hand, say, “okay, let’s talk” without requiring them to even pull their cell phone from their pocket… thanks to Talk With Web Visitor. Talk With Web Visitor is a software widget that sits on your site, ready and waiting to capture any visitor’s Name, Email address and Phone Number. It lets you know immediately – so you can talk to that lead immediate |
2020-09-30 00:23:51 |
| 104.129.31.27 | attackspambots | POODLE attack imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=104.129.31.27, lip=[snip], TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<[snip]> |
2020-06-12 13:09:54 |
| 104.129.3.144 | attackspam | (From eric@talkwithcustomer.com) Hello pomeroychiropractic.com, People ask, “why does TalkWithCustomer work so well?” It’s simple. TalkWithCustomer enables you to connect with a prospective customer at EXACTLY the Perfect Time. - NOT one week, two weeks, three weeks after they’ve checked out your website pomeroychiropractic.com. - NOT with a form letter style email that looks like it was written by a bot. - NOT with a robocall that could come at any time out of the blue. TalkWithCustomer connects you to that person within seconds of THEM asking to hear from YOU. They kick off the conversation. They take that first step. They ask to hear from you regarding what you have to offer and how it can make their life better. And it happens almost immediately. In real time. While they’re still looking over your website pomeroychiropractic.com, trying to make up their mind whether you are right for them. When you connect with them at that very moment it’s the ultimate in Perfect Timing – |
2019-07-24 01:40:47 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.129.3.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17748
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.129.3.3. IN A
;; AUTHORITY SECTION:
. 153 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020060600 1800 900 604800 86400
;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 07 01:25:32 CST 2020
;; MSG SIZE rcvd: 1153.3.129.104.in-addr.arpa domain name pointer 104.129.3.3.static.quadranet.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
3.3.129.104.in-addr.arpa name = 104.129.3.3.static.quadranet.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.12.7.100 | attackbotsspam | Jun 23 19:36:14 tdfoods sshd\[9465\]: Invalid user neal from 106.12.7.100 Jun 23 19:36:14 tdfoods sshd\[9465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.7.100 Jun 23 19:36:16 tdfoods sshd\[9465\]: Failed password for invalid user neal from 106.12.7.100 port 48290 ssh2 Jun 23 19:39:18 tdfoods sshd\[9807\]: Invalid user lol from 106.12.7.100 Jun 23 19:39:18 tdfoods sshd\[9807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.7.100 |
2020-06-24 17:35:47 |
| 79.11.152.147 | attackspambots | Jun 24 08:51:36 uapps sshd[13805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-79-11-152-147.business.telecomhostnamealia.hostname Jun 24 08:51:37 uapps sshd[13805]: Failed password for invalid user admin from 79.11.152.147 port 53559 ssh2 Jun 24 08:51:37 uapps sshd[13805]: Received disconnect from 79.11.152.147: 11: Bye Bye [preauth] Jun 24 08:51:38 uapps sshd[13807]: User r.r from host-79-11-152-147.business.telecomhostnamealia.hostname not allowed because not listed in AllowUsers Jun 24 08:51:38 uapps sshd[13807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-79-11-152-147.business.telecomhostnamealia.hostname user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=79.11.152.147 |
2020-06-24 17:36:23 |
| 35.171.244.209 | attack | Jun 24 07:11:17 gestao sshd[30829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.171.244.209 Jun 24 07:11:19 gestao sshd[30829]: Failed password for invalid user wendi from 35.171.244.209 port 52428 ssh2 Jun 24 07:15:09 gestao sshd[30915]: Failed password for root from 35.171.244.209 port 54274 ssh2 ... |
2020-06-24 17:31:14 |
| 47.104.9.7 | attackbots | 47.104.9.7 - - [24/Jun/2020:04:51:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.104.9.7 - - [24/Jun/2020:04:51:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2159 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.104.9.7 - - [24/Jun/2020:04:51:42 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-06-24 17:37:48 |
| 185.176.27.26 | attackspambots | Jun 24 11:08:23 debian-2gb-nbg1-2 kernel: \[15248369.840511\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.26 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=38888 PROTO=TCP SPT=44342 DPT=28390 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-06-24 17:16:37 |
| 123.146.23.149 | attack | China Dos attacker. Kah no can |
2020-06-24 17:11:52 |
| 132.148.141.147 | attack | 132.148.141.147 - - [24/Jun/2020:09:26:17 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.141.147 - - [24/Jun/2020:09:26:18 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.141.147 - - [24/Jun/2020:09:26:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-06-24 17:30:27 |
| 173.232.33.145 | spam | Aggressive email spammer on subnet 173.232.33.* |
2020-06-24 17:39:08 |
| 36.78.198.136 | attackspambots | Unauthorised access (Jun 24) SRC=36.78.198.136 LEN=52 TTL=117 ID=32142 DF TCP DPT=445 WINDOW=8192 SYN |
2020-06-24 17:09:31 |
| 198.98.61.68 | attack | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: research.newyork.university.swa.re. |
2020-06-24 17:38:20 |
| 173.232.33.141 | spam | Aggressive email spammer on subnet 173.232.33.* |
2020-06-24 17:39:02 |
| 185.100.87.206 | attackbotsspam | 2020-06-24 02:30:16.318646-0500 localhost sshd[22620]: Failed password for root from 185.100.87.206 port 46773 ssh2 |
2020-06-24 17:24:34 |
| 106.13.233.150 | attackbots | $f2bV_matches |
2020-06-24 17:12:58 |
| 101.96.113.50 | attackbots | Jun 23 19:34:10 tdfoods sshd\[9266\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.113.50 user=root Jun 23 19:34:12 tdfoods sshd\[9266\]: Failed password for root from 101.96.113.50 port 39904 ssh2 Jun 23 19:36:38 tdfoods sshd\[9475\]: Invalid user spark from 101.96.113.50 Jun 23 19:36:38 tdfoods sshd\[9475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.113.50 Jun 23 19:36:40 tdfoods sshd\[9475\]: Failed password for invalid user spark from 101.96.113.50 port 46328 ssh2 |
2020-06-24 17:18:32 |
| 81.90.190.135 | attack | Jun 23 23:07:06 dignus sshd[3517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.90.190.135 Jun 23 23:07:08 dignus sshd[3517]: Failed password for invalid user julius from 81.90.190.135 port 47232 ssh2 Jun 23 23:10:40 dignus sshd[3915]: Invalid user yly from 81.90.190.135 port 48124 Jun 23 23:10:40 dignus sshd[3915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.90.190.135 Jun 23 23:10:42 dignus sshd[3915]: Failed password for invalid user yly from 81.90.190.135 port 48124 ssh2 ... |
2020-06-24 17:25:24 |