City: unknown
Region: unknown
Country: Russian Federation
Internet Service Provider: OJSC Ufanet
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attackspambots | Chat Spam |
2019-11-01 15:46:23 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 145.255.27.194 | attackspambots | Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root |
2020-09-25 06:06:55 |
| 145.255.21.69 | attackspambots | Unauthorized connection attempt detected from IP address 145.255.21.69 to port 445 [T] |
2020-08-29 22:43:03 |
| 145.255.28.2 | attackbotsspam | Dovecot Invalid User Login Attempt. |
2020-08-22 13:08:36 |
| 145.255.28.2 | attackspam | spam |
2020-08-17 16:59:48 |
| 145.255.254.241 | attackspambots | Unauthorized connection attempt detected from IP address 145.255.254.241 to port 23 [T] |
2020-08-16 03:08:07 |
| 145.255.21.213 | attackspam | honeypot forum registration (user=Philliprisee; email=intercreditl@yandex.ru) |
2020-06-12 17:49:55 |
| 145.255.21.151 | attackbots | Port probing on unauthorized port 445 |
2020-06-04 03:38:39 |
| 145.255.25.247 | attackbots | " " |
2020-04-30 07:08:28 |
| 145.255.28.2 | attackbots | Brute force attack stopped by firewall |
2020-04-05 10:17:05 |
| 145.255.2.212 | attackbots | Unauthorized connection attempt detected from IP address 145.255.2.212 to port 23 [T] |
2020-03-24 20:43:47 |
| 145.255.2.243 | attackbotsspam | Jan 15 17:10:22 pi sshd[30514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.255.2.243 Jan 15 17:10:24 pi sshd[30514]: Failed password for invalid user system from 145.255.2.243 port 61823 ssh2 |
2020-03-14 01:19:45 |
| 145.255.26.115 | attackbotsspam | Honeypot attack, port: 81, PTR: 145.255.26.115.static.ufanet.ru. |
2020-03-11 21:48:14 |
| 145.255.239.178 | attackspam | [portscan] Port scan |
2020-03-04 14:10:11 |
| 145.255.28.122 | attackspambots | spam |
2020-03-01 19:45:44 |
| 145.255.28.2 | attackbots | spam |
2020-01-24 16:17:58 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.255.2.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28165
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.255.2.107. IN A
;; AUTHORITY SECTION:
. 544 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019110100 1800 900 604800 86400
;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 01 15:46:18 CST 2019
;; MSG SIZE rcvd: 117
107.2.255.145.in-addr.arpa domain name pointer 145.255.2.107.static.ufanet.ru.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
107.2.255.145.in-addr.arpa name = 145.255.2.107.static.ufanet.ru.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 93.136.53.77 | attackbots | Honeypot attack, port: 445, PTR: 93-136-53-77.adsl.net.t-com.hr. |
2020-01-04 18:23:59 |
| 200.53.21.120 | attackbots | Telnet/23 MH Probe, BF, Hack - |
2020-01-04 18:13:18 |
| 183.238.53.242 | attackspambots | 2020-01-04 dovecot_login authenticator failed for \(**REMOVED**\) \[183.238.53.242\]: 535 Incorrect authentication data \(set_id=nologin\) 2020-01-04 dovecot_login authenticator failed for \(**REMOVED**\) \[183.238.53.242\]: 535 Incorrect authentication data \(set_id=admin@**REMOVED**\) 2020-01-04 dovecot_login authenticator failed for \(**REMOVED**\) \[183.238.53.242\]: 535 Incorrect authentication data \(set_id=admin\) |
2020-01-04 17:45:47 |
| 218.92.0.171 | attackspam | Jan 4 09:51:01 ip-172-31-62-245 sshd\[11877\]: Failed password for root from 218.92.0.171 port 22367 ssh2\ Jan 4 09:51:05 ip-172-31-62-245 sshd\[11877\]: Failed password for root from 218.92.0.171 port 22367 ssh2\ Jan 4 09:51:23 ip-172-31-62-245 sshd\[11889\]: Failed password for root from 218.92.0.171 port 48793 ssh2\ Jan 4 09:51:27 ip-172-31-62-245 sshd\[11889\]: Failed password for root from 218.92.0.171 port 48793 ssh2\ Jan 4 09:51:30 ip-172-31-62-245 sshd\[11889\]: Failed password for root from 218.92.0.171 port 48793 ssh2\ |
2020-01-04 18:04:48 |
| 109.156.8.222 | attackbots | Honeypot attack, port: 5555, PTR: host109-156-8-222.range109-156.btcentralplus.com. |
2020-01-04 18:14:17 |
| 123.241.26.243 | attackbots | Honeypot attack, port: 81, PTR: 123-241-26-243.cctv.dynamic.tbcnet.net.tw. |
2020-01-04 17:48:41 |
| 118.99.179.164 | attackbots | Automatic report - Port Scan Attack |
2020-01-04 17:38:49 |
| 64.252.142.148 | attackspam | Automatic report generated by Wazuh |
2020-01-04 18:08:30 |
| 47.22.135.70 | attack | Jan 4 08:25:02 h2812830 sshd[19613]: Invalid user octro from 47.22.135.70 port 57027 Jan 4 08:25:02 h2812830 sshd[19613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ool-2f168746.static.optonline.net Jan 4 08:25:02 h2812830 sshd[19613]: Invalid user octro from 47.22.135.70 port 57027 Jan 4 08:25:04 h2812830 sshd[19613]: Failed password for invalid user octro from 47.22.135.70 port 57027 ssh2 Jan 4 08:29:40 h2812830 sshd[19808]: Invalid user bzl from 47.22.135.70 port 26941 ... |
2020-01-04 17:48:55 |
| 189.243.184.182 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 04-01-2020 07:15:10. |
2020-01-04 18:19:15 |
| 110.49.71.240 | attack | Invalid user www from 110.49.71.240 port 61410 |
2020-01-04 17:42:02 |
| 42.112.255.151 | attack | Unauthorized connection attempt detected from IP address 42.112.255.151 to port 23 |
2020-01-04 17:56:00 |
| 115.79.61.20 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-01-04 18:11:40 |
| 52.77.230.233 | attackbotsspam | Jan 2 18:55:06 newdogma sshd[19599]: Invalid user shuo from 52.77.230.233 port 48428 Jan 2 18:55:06 newdogma sshd[19599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.77.230.233 Jan 2 18:55:08 newdogma sshd[19599]: Failed password for invalid user shuo from 52.77.230.233 port 48428 ssh2 Jan 2 18:55:09 newdogma sshd[19599]: Received disconnect from 52.77.230.233 port 48428:11: Bye Bye [preauth] Jan 2 18:55:09 newdogma sshd[19599]: Disconnected from 52.77.230.233 port 48428 [preauth] Jan 2 19:13:13 newdogma sshd[20018]: Invalid user hb from 52.77.230.233 port 39012 Jan 2 19:13:13 newdogma sshd[20018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.77.230.233 Jan 2 19:13:15 newdogma sshd[20018]: Failed password for invalid user hb from 52.77.230.233 port 39012 ssh2 Jan 2 19:13:15 newdogma sshd[20018]: Received disconnect from 52.77.230.233 port 39012:11: Bye Bye [preauth] Jan........ ------------------------------- |
2020-01-04 17:50:16 |
| 71.189.47.10 | attack | SSH login attempts. |
2020-01-04 17:42:29 |