| 67.213.74.78 |
attackspam |
firewall-block, port(s): 2375/tcp |
2020-10-03 22:08:23 |
| 83.97.20.31 |
attackbots |
21/tcp 7547/tcp 3389/tcp...
[2020-08-05/10-03]1697pkt,18pt.(tcp) |
2020-10-03 22:02:44 |
| 179.197.71.132 |
attack |
1601671289 - 10/02/2020 22:41:29 Host: 179.197.71.132/179.197.71.132 Port: 445 TCP Blocked |
2020-10-03 20:55:27 |
| 146.185.215.204 |
attackbotsspam |
Oct 2 22:29:59 tux postfix/smtpd[10847]: warning: hostname bilaterale1.perkjcep.example.com does not resolve to address 146.185.215.204: Name or service not known
Oct 2 22:29:59 tux postfix/smtpd[10847]: connect from unknown[146.185.215.204]
Oct x@x
Oct 2 22:29:59 tux postfix/smtpd[10847]: disconnect from unknown[146.185.215.204]
........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=146.185.215.204 |
2020-10-03 21:01:17 |
| 189.240.117.236 |
attackbots |
Oct 3 14:24:54 icinga sshd[40529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.117.236
Oct 3 14:24:56 icinga sshd[40529]: Failed password for invalid user scaner from 189.240.117.236 port 54796 ssh2
Oct 3 14:36:26 icinga sshd[58302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.117.236
... |
2020-10-03 21:57:24 |
| 213.32.92.57 |
attackspambots |
Invalid user dm from 213.32.92.57 port 42958 |
2020-10-03 22:05:33 |
| 150.107.149.11 |
attack |
scans 2 times in preceeding hours on the ports (in chronological order) 7102 7102 |
2020-10-03 22:08:00 |
| 1.255.48.197 |
attack |
(From annabelle@merchantpay.top) I have a quick question about working with your business. Like most business owners you just want to survive through to 2021. In order for that to happen you need to save every dollar possible right? This is an honest question, would you continue with the high credit card processing fees if there was another way? New laws are on your side. Test this newly released card processing model this October - just send a phone number and we'll call.
$24.99/mo Flat Fee Credit Card Processing (Unlimited)
1) As a small business owner accepting credit/debit, recently passed State Laws are on your side. - Were you aware?
New state regulations now in effect, the law was successfully passed in 46 states - effective since August 2019.
Since that date you shouldn't be paying above 0.75% Credit Card Processing Fees.
2) You're legally able to demand this new option.
Bottom Line: Your processor isn't telling you everything. Why are they hiding the lower fee options?
We repre |
2020-10-03 20:52:07 |
| 74.120.14.78 |
attackbotsspam |
TCP (SYN) 74.120.14.78:19134 -> port 9441, len 44 |
2020-10-03 22:04:48 |
| 46.217.139.137 |
attackbotsspam |
srvr3: (mod_security) mod_security (id:920350) triggered by 46.217.139.137 (MK/-/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/02 22:39:57 [error] 70998#0: *410 [client 46.217.139.137] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160167119767.124272"] [ref "o0,14v21,14"], client: 46.217.139.137, [redacted] request: "GET / HTTP/1.1" [redacted] |
2020-10-03 22:13:43 |
| 114.129.168.188 |
attackspam |
[MK-VM5] Blocked by UFW |
2020-10-03 21:11:24 |
| 185.176.220.179 |
attackspambots |
RU spamvertising, health fraud - From: GlucaFIX
UBE 185.176.220.179 (EHLO gopxk.imkeeperr.com) 2 Cloud Ltd.
Spam link redfloppy.com = 185.246.116.174 Vpsville LLC – phishing redirect:
a) aptrk13.com = 35.204.93.160 Google
b) www.ep20trk.com = 34.120.202.146 Google
c) www.glucafix.us = 104.27.187.98, 104.27.186.98, 172.67.201.182 Cloudflare
d) glucafix.us = ditto
Images -
- http://redfloppy.com/web/imgs/mi1tb6fg.png = dailybetterhealth.com = 104.27.138.27, 104.27.139.27, 172.67.218.161 Cloudflare
- http://redfloppy.com/web/imgs/24sc48jt.png = unsub; no entity/address |
2020-10-03 21:57:58 |
| 51.132.243.207 |
attackspam |
Email rejected due to spam filtering |
2020-10-03 22:05:07 |
| 74.120.14.21 |
attackbotsspam |
[N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-10-03 22:10:54 |
| 128.199.95.60 |
attackspambots |
Invalid user psql from 128.199.95.60 port 53828 |
2020-10-03 22:09:55 |