City: unknown
Region: unknown
Country: Russian Federation
Internet Service Provider: OOO Network of Data-Centers Selectel
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackbots | Lines containing failures of 82.148.30.217 Mar 11 19:40:30 shared01 sshd[4143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.148.30.217 user=r.r Mar 11 19:40:31 shared01 sshd[4143]: Failed password for r.r from 82.148.30.217 port 38884 ssh2 Mar 11 19:40:31 shared01 sshd[4143]: Received disconnect from 82.148.30.217 port 38884:11: Bye Bye [preauth] Mar 11 19:40:31 shared01 sshd[4143]: Disconnected from authenticating user r.r 82.148.30.217 port 38884 [preauth] Mar 11 19:52:26 shared01 sshd[8173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.148.30.217 user=r.r Mar 11 19:52:28 shared01 sshd[8173]: Failed password for r.r from 82.148.30.217 port 40884 ssh2 Mar 11 19:52:28 shared01 sshd[8173]: Received disconnect from 82.148.30.217 port 40884:11: Bye Bye [preauth] Mar 11 19:52:28 shared01 sshd[8173]: Disconnected from authenticating user r.r 82.148.30.217 port 40884 [preauth] Mar 11........ ------------------------------ |
2020-03-12 20:21:23 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 82.148.30.158 | attackbotsspam | reported through recidive - multiple failed attempts(SSH) |
2020-08-30 22:50:03 |
| 82.148.30.195 | attackbots | SPAMS to brazil |
2020-07-14 08:21:48 |
| 82.148.30.5 | attackbotsspam | Lines containing failures of 82.148.30.5 May 15 14:08:11 omfg postfix/smtpd[4150]: connect from unknown[82.148.30.5] May x@x May 15 14:08:21 omfg postfix/smtpd[4150]: disconnect from unknown[82.148.30.5] ehlo=1 mail=1 rcpt=0/1 data=0/1 eclipset=1 quhostname=1 commands=4/6 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=82.148.30.5 |
2020-05-16 01:50:46 |
| 82.148.30.20 | attackbots | Lines containing failures of 82.148.30.20 May 12 21:50:29 shared06 sshd[15511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.148.30.20 user=r.r May 12 21:50:32 shared06 sshd[15511]: Failed password for r.r from 82.148.30.20 port 54502 ssh2 May 12 21:50:32 shared06 sshd[15511]: Received disconnect from 82.148.30.20 port 54502:11: Bye Bye [preauth] May 12 21:50:32 shared06 sshd[15511]: Disconnected from authenticating user r.r 82.148.30.20 port 54502 [preauth] May 12 22:01:29 shared06 sshd[18762]: Invalid user scanner from 82.148.30.20 port 35014 May 12 22:01:29 shared06 sshd[18762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.148.30.20 May 12 22:01:31 shared06 sshd[18762]: Failed password for invalid user scanner from 82.148.30.20 port 35014 ssh2 May 12 22:01:31 shared06 sshd[18762]: Received disconnect from 82.148.30.20 port 35014:11: Bye Bye [preauth] May 12 22:01:31 shared06 s........ ------------------------------ |
2020-05-13 07:09:23 |
| 82.148.30.174 | attackspambots | Apr 18 23:39:27 vps647732 sshd[28477]: Failed password for root from 82.148.30.174 port 48558 ssh2 ... |
2020-04-19 06:39:26 |
| 82.148.30.249 | attackbotsspam | Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-04-11 07:26:53 |
| 82.148.30.16 | attack | Invalid user sammy from 82.148.30.16 port 49088 |
2020-03-22 02:46:22 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 82.148.30.217
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28756
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;82.148.30.217. IN A
;; AUTHORITY SECTION:
. 219 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020031200 1800 900 604800 86400
;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 20:21:16 CST 2020
;; MSG SIZE rcvd: 117Host 217.30.148.82.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 217.30.148.82.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 122.152.204.42 | attack | Invalid user xzr from 122.152.204.42 port 51646 |
2020-05-22 06:42:10 |
| 27.154.242.142 | attack | May 21 21:33:50 : SSH login attempts with invalid user |
2020-05-22 06:47:59 |
| 51.77.137.230 | attackbots | Invalid user syz from 51.77.137.230 port 45578 |
2020-05-22 06:37:28 |
| 187.41.101.193 | attack | May 21 21:35:57 ajax sshd[879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.41.101.193 May 21 21:35:59 ajax sshd[879]: Failed password for invalid user xpo from 187.41.101.193 port 43633 ssh2 |
2020-05-22 06:39:52 |
| 74.141.132.233 | attackbotsspam | Invalid user xof from 74.141.132.233 port 44906 |
2020-05-22 06:53:36 |
| 106.13.213.118 | attackbots | k+ssh-bruteforce |
2020-05-22 06:30:44 |
| 40.121.136.231 | attackbots | Invalid user kpf from 40.121.136.231 port 32770 |
2020-05-22 07:03:40 |
| 144.217.34.148 | attackspam | Honeypot hit. |
2020-05-22 06:56:17 |
| 222.186.42.137 | attack | May 21 18:52:54 plusreed sshd[13260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root May 21 18:52:56 plusreed sshd[13260]: Failed password for root from 222.186.42.137 port 25168 ssh2 ... |
2020-05-22 06:54:43 |
| 61.84.196.50 | attackbotsspam | SSH Invalid Login |
2020-05-22 06:56:59 |
| 103.253.42.35 | attackspambots | firewall-block, port(s): 80/tcp, 443/tcp |
2020-05-22 06:32:27 |
| 34.90.135.218 | attackspam | 34.90.135.218 - - [21/May/2020:22:54:06 +0200] "GET /wp-login.php HTTP/1.1" 200 5865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.90.135.218 - - [21/May/2020:22:54:08 +0200] "POST /wp-login.php HTTP/1.1" 200 6116 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.90.135.218 - - [21/May/2020:22:54:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-05-22 06:32:47 |
| 106.54.48.29 | attackbotsspam | May 21 23:31:05 home sshd[12158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.48.29 May 21 23:31:08 home sshd[12158]: Failed password for invalid user jbl from 106.54.48.29 port 34486 ssh2 May 21 23:35:05 home sshd[12777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.48.29 ... |
2020-05-22 06:38:54 |
| 122.55.190.12 | attackspam | May 22 00:17:00 vps sshd[539807]: Failed password for invalid user otz from 122.55.190.12 port 57942 ssh2 May 22 00:21:40 vps sshd[561429]: Invalid user vaf from 122.55.190.12 port 41899 May 22 00:21:40 vps sshd[561429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.55.190.12 May 22 00:21:42 vps sshd[561429]: Failed password for invalid user vaf from 122.55.190.12 port 41899 ssh2 May 22 00:24:02 vps sshd[570714]: Invalid user ruz from 122.55.190.12 port 48107 ... |
2020-05-22 06:45:48 |
| 164.132.103.245 | attack | Invalid user vux from 164.132.103.245 port 37418 |
2020-05-22 07:04:59 |