City: unknown
Region: unknown
Country: Russian Federation
Internet Service Provider: OJSC Ufanet
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attack | Unauthorized connection attempt detected from IP address 81.30.208.254 to port 80 [T] |
2020-06-24 01:54:58 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 81.30.208.171 | attackspambots | Unauthorized connection attempt from IP address 81.30.208.171 on Port 445(SMB) |
2020-09-22 17:57:18 |
| 81.30.208.114 | attackspam | Attempted connection to port 971. |
2020-08-30 16:58:32 |
| 81.30.208.114 | attack | Port Scan ... |
2020-08-30 01:51:28 |
| 81.30.208.114 | attackbotsspam | Jul 19 09:47:39 debian-2gb-nbg1-2 kernel: \[17403405.165014\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=81.30.208.114 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=57979 PROTO=TCP SPT=24747 DPT=23 WINDOW=13299 RES=0x00 SYN URGP=0 |
2020-07-19 22:41:06 |
| 81.30.208.24 | attackspam | Mar 11 21:48:33 silence02 sshd[31751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.24 Mar 11 21:48:35 silence02 sshd[31751]: Failed password for invalid user omn from 81.30.208.24 port 55840 ssh2 Mar 11 21:53:06 silence02 sshd[31946]: Failed password for root from 81.30.208.24 port 47090 ssh2 |
2020-03-12 07:36:52 |
| 81.30.208.24 | attackspambots | 2020-03-06T11:16:19.891759abusebot-7.cloudsearch.cf sshd[7095]: Invalid user amandabackup from 81.30.208.24 port 46582 2020-03-06T11:16:19.895775abusebot-7.cloudsearch.cf sshd[7095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.24.static.ufanet.ru 2020-03-06T11:16:19.891759abusebot-7.cloudsearch.cf sshd[7095]: Invalid user amandabackup from 81.30.208.24 port 46582 2020-03-06T11:16:21.658187abusebot-7.cloudsearch.cf sshd[7095]: Failed password for invalid user amandabackup from 81.30.208.24 port 46582 ssh2 2020-03-06T11:20:43.895700abusebot-7.cloudsearch.cf sshd[7319]: Invalid user oracle from 81.30.208.24 port 35352 2020-03-06T11:20:43.900256abusebot-7.cloudsearch.cf sshd[7319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.24.static.ufanet.ru 2020-03-06T11:20:43.895700abusebot-7.cloudsearch.cf sshd[7319]: Invalid user oracle from 81.30.208.24 port 35352 2020-03-06T11:20:45.899361ab ... |
2020-03-06 20:36:34 |
| 81.30.208.30 | attack | spam |
2020-03-01 19:22:26 |
| 81.30.208.24 | attackbotsspam | Feb 25 22:07:16 server sshd\[18039\]: Invalid user openvpn from 81.30.208.24 Feb 25 22:07:16 server sshd\[18039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.24.static.ufanet.ru Feb 25 22:07:18 server sshd\[18039\]: Failed password for invalid user openvpn from 81.30.208.24 port 41624 ssh2 Feb 25 22:10:10 server sshd\[18702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.24.static.ufanet.ru user=root Feb 25 22:10:12 server sshd\[18702\]: Failed password for root from 81.30.208.24 port 34916 ssh2 ... |
2020-02-26 03:14:10 |
| 81.30.208.24 | attackspambots | Feb 14 00:17:11 ns382633 sshd\[30422\]: Invalid user char from 81.30.208.24 port 56698 Feb 14 00:17:11 ns382633 sshd\[30422\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.24 Feb 14 00:17:14 ns382633 sshd\[30422\]: Failed password for invalid user char from 81.30.208.24 port 56698 ssh2 Feb 14 00:25:08 ns382633 sshd\[31727\]: Invalid user char from 81.30.208.24 port 38418 Feb 14 00:25:08 ns382633 sshd\[31727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.24 |
2020-02-14 09:05:01 |
| 81.30.208.30 | attack | Autoban 81.30.208.30 AUTH/CONNECT |
2020-02-14 06:43:47 |
| 81.30.208.107 | attackbots | Unauthorized connection attempt from IP address 81.30.208.107 on Port 445(SMB) |
2020-01-18 01:23:09 |
| 81.30.208.114 | attackspambots | Unauthorized connection attempt detected from IP address 81.30.208.114 to port 80 |
2019-12-31 20:40:07 |
| 81.30.208.30 | attackspam | email spam |
2019-12-19 19:04:16 |
| 81.30.208.30 | attack | email spam |
2019-12-17 17:31:11 |
| 81.30.208.114 | attackbots | Oct 25 00:35:31 MK-Soft-VM4 sshd[29505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.114 Oct 25 00:35:33 MK-Soft-VM4 sshd[29505]: Failed password for invalid user eo from 81.30.208.114 port 56973 ssh2 ... |
2019-10-25 07:31:44 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.30.208.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50084
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.30.208.254. IN A
;; AUTHORITY SECTION:
. 440 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020062301 1800 900 604800 86400
;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 24 01:54:52 CST 2020
;; MSG SIZE rcvd: 117254.208.30.81.in-addr.arpa domain name pointer ufamic.iic.ru.Server: 100.100.2.138
Address: 100.100.2.138#53
Non-authoritative answer:
254.208.30.81.in-addr.arpa name = ufamic.iic.ru.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 182.156.84.130 | attack | (sshd) Failed SSH login from 182.156.84.130 (IN/India/static-130.84.156.182-tataidc.co.in): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 27 19:01:22 andromeda sshd[29062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.156.84.130 user=root Apr 27 19:01:23 andromeda sshd[29062]: Failed password for root from 182.156.84.130 port 56962 ssh2 Apr 27 19:11:18 andromeda sshd[29537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.156.84.130 user=root |
2020-04-28 04:05:10 |
| 78.128.113.75 | attackspambots | Apr 27 21:58:15 nlmail01.srvfarm.net postfix/smtpd[363847]: lost connection after CONNECT from unknown[78.128.113.75] Apr 27 21:58:15 nlmail01.srvfarm.net postfix/smtpd[363355]: lost connection after CONNECT from unknown[78.128.113.75] Apr 27 21:58:19 nlmail01.srvfarm.net postfix/smtpd[363849]: lost connection after CONNECT from unknown[78.128.113.75] Apr 27 21:58:21 nlmail01.srvfarm.net postfix/smtpd[363847]: warning: unknown[78.128.113.75]: SASL PLAIN authentication failed: Apr 27 21:58:21 nlmail01.srvfarm.net postfix/smtpd[363847]: lost connection after AUTH from unknown[78.128.113.75] |
2020-04-28 04:11:46 |
| 190.47.136.120 | attackbots | Apr 27 22:05:38 PorscheCustomer sshd[16622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.47.136.120 Apr 27 22:05:40 PorscheCustomer sshd[16622]: Failed password for invalid user bp from 190.47.136.120 port 50246 ssh2 Apr 27 22:13:06 PorscheCustomer sshd[16884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.47.136.120 ... |
2020-04-28 04:17:27 |
| 122.51.215.154 | attack | Apr 27 17:50:27 gw1 sshd[16709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.215.154 Apr 27 17:50:29 gw1 sshd[16709]: Failed password for invalid user joshua from 122.51.215.154 port 56510 ssh2 ... |
2020-04-28 04:02:50 |
| 220.130.10.13 | attack | SSH Brute Force |
2020-04-28 03:59:56 |
| 157.55.39.42 | attack | Automatic report - Banned IP Access |
2020-04-28 04:05:33 |
| 80.82.78.192 | attackbotsspam | 04/27/2020-11:50:08.891874 80.82.78.192 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-04-28 04:09:51 |
| 51.254.37.192 | attack | 2020-04-27T15:49:12.0853361495-001 sshd[20679]: Failed password for invalid user myuser1 from 51.254.37.192 port 45950 ssh2 2020-04-27T15:52:53.0394521495-001 sshd[20813]: Invalid user mer from 51.254.37.192 port 57200 2020-04-27T15:52:53.0430031495-001 sshd[20813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.gogoski.fr 2020-04-27T15:52:53.0394521495-001 sshd[20813]: Invalid user mer from 51.254.37.192 port 57200 2020-04-27T15:52:55.2589331495-001 sshd[20813]: Failed password for invalid user mer from 51.254.37.192 port 57200 ssh2 2020-04-27T15:56:25.9194381495-001 sshd[21005]: Invalid user csgo from 51.254.37.192 port 40216 ... |
2020-04-28 04:22:43 |
| 139.199.18.194 | attack | 5x Failed Password |
2020-04-28 03:51:50 |
| 222.122.60.110 | attack | Invalid user kelly from 222.122.60.110 port 54684 |
2020-04-28 03:44:25 |
| 206.189.171.204 | attack | Apr 27 11:03:35 ws22vmsma01 sshd[190548]: Failed password for root from 206.189.171.204 port 48140 ssh2 Apr 27 11:10:51 ws22vmsma01 sshd[207447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.171.204 ... |
2020-04-28 04:10:17 |
| 51.255.35.58 | attack | 2020-04-27T15:06:35.0996411495-001 sshd[18565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-51-255-35.eu user=root 2020-04-27T15:06:36.9452001495-001 sshd[18565]: Failed password for root from 51.255.35.58 port 60613 ssh2 2020-04-27T15:10:24.3312441495-001 sshd[18762]: Invalid user romain from 51.255.35.58 port 37690 2020-04-27T15:10:24.3356751495-001 sshd[18762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-51-255-35.eu 2020-04-27T15:10:24.3312441495-001 sshd[18762]: Invalid user romain from 51.255.35.58 port 37690 2020-04-27T15:10:26.7309661495-001 sshd[18762]: Failed password for invalid user romain from 51.255.35.58 port 37690 ssh2 ... |
2020-04-28 03:56:38 |
| 165.22.211.74 | attackbotsspam | $f2bV_matches |
2020-04-28 03:50:30 |
| 185.58.226.235 | attack | $f2bV_matches |
2020-04-28 04:09:23 |
| 80.211.249.123 | attackbots | 2020-04-27T12:56:30.899002linuxbox-skyline sshd[207406]: Invalid user polaris from 80.211.249.123 port 33118 ... |
2020-04-28 04:02:26 |