104.245.145.8 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: Amanah Tech Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	(From andre.foos@googlemail.com) Do you want to promote your business on 1000's of Advertising sites monthly? Pay one flat rate and get virtually unlimited traffic to your site forever! For more information just visit: http://www.postyouradsontonsofsites.xyz	2019-12-22 04:34:48
attack	(From abney.devon@hotmail.com) Do you want to post your ad on 1000's of Advertising sites every month? One tiny investment every month will get you virtually unlimited traffic to your site forever!Get more info by visiting: http://lotsofadsposted4u.myvnc.com	2019-08-09 21:02:11
attackbotsspam	(From kozlowski.glory23@outlook.com) Integrated Shipping software for: UPS,FedEx,USPS & LTL carriers. Runs "INSIDE" your accounting software: Sage 50,100,200, MS Dynamics, SAP, Amazon Prim, QuickBooks, AccountMate, ALERE, TRI-TECH and more! Reply to susan7965joh@gmail.com for details and pricing.	2019-08-08 06:11:27
attack	(From harpster.janie@outlook.com) Do you want to post your ad on 1000's of Advertising sites monthly? Pay one low monthly fee and get virtually unlimited traffic to your site forever!To find out more check out our site here: http://post1000sofads.webhop.me	2019-07-20 19:05:32

Comments on same subnet:

IP	Type	Details	Datetime
104.245.145.21	attackspambots		2020-08-14 22:58:21
104.245.145.24	attack		2020-08-14 22:58:07
104.245.145.36	attackbots		2020-08-14 22:57:34
104.245.145.41	attackspam	(From christen.crowe@gmail.com) No cost advertising for your website here: http://www.free-ad-submission.xyz	2020-05-24 16:11:03
104.245.145.40	attackbots	(From jina.piscitelli@gmail.com) Greetings, I was just taking a look at your website and filled out your contact form. The feedback page on your site sends you these messages via email which is why you're reading my message at this moment right? That's the most important achievement with any type of online ad, getting people to actually READ your message and this is exactly what you're doing now! If you have an advertisement you would like to blast out to thousands of websites via their contact forms in the U.S. or anywhere in the world send me a quick note now, I can even focus on your required niches and my pricing is very reasonable. Shoot me an email here: Phungcorsi@gmail.com	2020-05-24 15:24:33
104.245.145.7	attack	Automatic report - Banned IP Access	2020-05-24 07:26:20
104.245.145.58	attackbots	Contact form spam	2020-05-23 22:24:16
104.245.145.125	attackspam	Malicious Traffic/Form Submission	2020-05-20 01:19:18
104.245.145.122	attackspam	(From pitcher.theresa@gmail.com) Interested in the latest fitness , wellness, nutrition trends? Check out my blog here: https://bit.ly/www-fitnessismystatussymbol-com And my Instagram page @ziptofitness	2020-05-19 23:52:38
104.245.145.21	attackspambots	(From nussbaum.velma@gmail.com) Groundbreaking new way to advertise your website for Nothing! See here: http://bit.ly/submityourfreeads	2020-05-16 14:55:55
104.245.145.37	attack	(From herlitz.samira@gmail.com) Stem cell therapy has proven itself to be one of the most effective treatments for COPD (Chronic Obstructive Pulmonary Disorder). IMC is the leader in stem cell therapies in Mexico. For more information on how we can treat COPD please visit: https://bit.ly/copd-integramedicalcenter	2020-05-14 16:37:14
104.245.145.38	attack	Malicious Traffic/Form Submission	2020-05-11 14:29:54
104.245.145.39	attackbots	Spammer	2020-04-11 05:49:45
104.245.145.5	attack	(From marx.stacy@gmail.com) Greetings, I was just visiting your website and filled out your "contact us" form. The contact page on your site sends you messages like this to your email account which is why you are reading my message at this moment right? That's the most important achievement with any type of advertising, making people actually READ your advertisement and that's exactly what I just accomplished with you! If you have an advertisement you would like to blast out to tons of websites via their contact forms in the US or to any country worldwide send me a quick note now, I can even focus on specific niches and my charges are very affordable. Reply here: trinitybeumer@gmail.com	2020-04-08 18:18:02
104.245.145.124	attack	(From samantha.barden@yahoo.com) Are You interested in an advertising service that charges less than $50 every month and sends hundreds of people who are ready to buy directly to your website? Check out: http://www.trafficmasters.xyz	2020-04-06 15:06:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.245.145.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33625
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.245.145.8.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 20 19:05:25 CST 2019
;; MSG SIZE  rcvd: 117

Host info

8.145.245.104.in-addr.arpa domain name pointer r-8-145-245-104.consumer-pool.prcdn.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
8.145.245.104.in-addr.arpa	name = r-8-145-245-104.consumer-pool.prcdn.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
149.202.204.104	attackspambots	Automatic report generated by Wazuh	2019-10-04 21:36:10
74.82.47.50	attackspambots	6379/tcp 548/tcp 4786/tcp... [2019-08-03/10-03]39pkt,19pt.(tcp),1pt.(udp)	2019-10-04 21:06:31
141.98.80.71	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2019-10-04 21:09:23
49.88.112.80	attackbotsspam	Oct 4 15:10:25 dcd-gentoo sshd[5099]: User root from 49.88.112.80 not allowed because none of user's groups are listed in AllowGroups Oct 4 15:10:29 dcd-gentoo sshd[5099]: error: PAM: Authentication failure for illegal user root from 49.88.112.80 Oct 4 15:10:25 dcd-gentoo sshd[5099]: User root from 49.88.112.80 not allowed because none of user's groups are listed in AllowGroups Oct 4 15:10:29 dcd-gentoo sshd[5099]: error: PAM: Authentication failure for illegal user root from 49.88.112.80 Oct 4 15:10:25 dcd-gentoo sshd[5099]: User root from 49.88.112.80 not allowed because none of user's groups are listed in AllowGroups Oct 4 15:10:29 dcd-gentoo sshd[5099]: error: PAM: Authentication failure for illegal user root from 49.88.112.80 Oct 4 15:10:29 dcd-gentoo sshd[5099]: Failed keyboard-interactive/pam for invalid user root from 49.88.112.80 port 13621 ssh2 ...	2019-10-04 21:10:53
222.186.175.8	attack	Automated report - ssh fail2ban: Oct 4 15:06:11 wrong password, user=root, port=31102, ssh2 Oct 4 15:06:18 wrong password, user=root, port=31102, ssh2 Oct 4 15:06:23 wrong password, user=root, port=31102, ssh2 Oct 4 15:06:29 wrong password, user=root, port=31102, ssh2	2019-10-04 21:07:57
92.118.160.49	attackbotsspam	3389/tcp 5984/tcp 5351/udp... [2019-08-03/10-04]114pkt,59pt.(tcp),7pt.(udp)	2019-10-04 21:50:32
178.73.215.171	attack	firewall-block, port(s): 107/tcp	2019-10-04 21:11:19
159.89.169.109	attackspambots	Oct 4 14:24:38 v22019058497090703 sshd[30172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.109 Oct 4 14:24:40 v22019058497090703 sshd[30172]: Failed password for invalid user P4ssword2017 from 159.89.169.109 port 49594 ssh2 Oct 4 14:28:36 v22019058497090703 sshd[30440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.109 ...	2019-10-04 21:04:24
88.214.26.17	attack	191004 7:37:38 \[Warning\] Access denied for user 'test'@'88.214.26.17' $using password: YES$ 191004 7:58:26 \[Warning\] Access denied for user 'test'@'88.214.26.17' $using password: YES$ 191004 8:19:05 \[Warning\] Access denied for user 'test'@'88.214.26.17' $using password: YES$ ...	2019-10-04 21:35:30
49.88.112.78	attack	Triggered by Fail2Ban at Vostok web server	2019-10-04 21:42:36
218.1.18.78	attackspam	2019-10-04T15:29:34.541950 sshd[17539]: Invalid user Lille1@3 from 218.1.18.78 port 13288 2019-10-04T15:29:34.551598 sshd[17539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.1.18.78 2019-10-04T15:29:34.541950 sshd[17539]: Invalid user Lille1@3 from 218.1.18.78 port 13288 2019-10-04T15:29:36.407617 sshd[17539]: Failed password for invalid user Lille1@3 from 218.1.18.78 port 13288 ssh2 2019-10-04T15:35:29.601742 sshd[17653]: Invalid user Heslo! from 218.1.18.78 port 31604 ...	2019-10-04 21:40:39
153.3.232.177	attackspambots	Oct 4 20:34:05 webhost01 sshd[4855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.3.232.177 Oct 4 20:34:06 webhost01 sshd[4855]: Failed password for invalid user Terminer2016 from 153.3.232.177 port 34338 ssh2 ...	2019-10-04 21:39:34
184.105.247.247	attack	8080/tcp 389/tcp 5555/tcp... [2019-08-04/10-03]125pkt,24pt.(tcp),1pt.(udp)	2019-10-04 21:15:55
200.199.6.204	attackbots	Oct 4 15:27:12 server sshd\[9592\]: Invalid user Isaac@321 from 200.199.6.204 port 60830 Oct 4 15:27:12 server sshd\[9592\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.199.6.204 Oct 4 15:27:14 server sshd\[9592\]: Failed password for invalid user Isaac@321 from 200.199.6.204 port 60830 ssh2 Oct 4 15:32:31 server sshd\[5904\]: Invalid user 123Circus from 200.199.6.204 port 53919 Oct 4 15:32:31 server sshd\[5904\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.199.6.204	2019-10-04 21:10:08
122.195.200.148	attackspambots	Oct 4 09:09:30 debian sshd\[993\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.148 user=root Oct 4 09:09:31 debian sshd\[993\]: Failed password for root from 122.195.200.148 port 19690 ssh2 Oct 4 09:09:34 debian sshd\[993\]: Failed password for root from 122.195.200.148 port 19690 ssh2 ...	2019-10-04 21:11:49

Recently Reported IPs

185.143.221.56	43.79.151.159	33.16.48.71	254.36.141.76
92.255.226.228	20.59.118.139	200.33.94.231	189.89.214.135
189.89.216.246	143.0.140.217	95.17.252.123	186.87.99.211
154.35.132.120	103.97.125.49	195.154.251.44	203.150.147.135
31.128.141.138	165.227.194.6	167.229.55.90	2607:5300:203:439c::110