This IP address has been reported a total of
368
times from
165 distinct
sources.
149.200.253.112 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
Apr 5 02:29:49 vmi439163 sshd[1276631]: Connection closed by 149.200.253.112 port 29898
Apr 5 02:3 ...
show moreApr 5 02:29:49 vmi439163 sshd[1276631]: Connection closed by 149.200.253.112 port 29898
Apr 5 02:30:06 vmi439163 sshd[1276655]: Unable to negotiate with 149.200.253.112 port 29564: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
Apr 5 02:30:24 vmi439163 sshd[1276721]: Unable to negotiate with 149.200.253.112 port 30738: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
Apr 5 02:30:24 vmi439163 sshd[1276723]: Unable to negotiate with 149.200.253.112 port 30760: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
Apr 5 02:30:24 vmi439163 sshd[1276725]: Unable to negotiate with 149.200.253.112 port 30782: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,
...
show less
2023-03-31T14:38:36.923445+08:00 koumakan.internal.soopy.moe sshd[75219]: Connection closed by 149.2 ...
show more2023-03-31T14:38:36.923445+08:00 koumakan.internal.soopy.moe sshd[75219]: Connection closed by 149.200.253.112 port 38944
2023-03-31T14:38:37.724996+08:00 koumakan.internal.soopy.moe sshd[75221]: Unable to negotiate with 149.200.253.112 port 39191: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
2023-03-31T14:38:38.879175+08:00 koumakan.internal.soopy.moe sshd[75241]: Unable to negotiate with 149.200.253.112 port 39585: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
...
show less
Mar 30 10:28:56 dgserver sshd[7346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eui ...
show moreMar 30 10:28:56 dgserver sshd[7346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.200.253.112 user=mail
Mar 30 10:28:58 dgserver sshd[7346]: Failed password for mail from 149.200.253.112 port 17372 ssh2
Mar 30 10:28:56 dgserver sshd[7348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.200.253.112 user=mail
Mar 30 10:28:58 dgserver sshd[7348]: Failed password for mail from 149.200.253.112 port 17378 ssh2
...
show less
Mar 30 11:59:02 minden010 sshd[1430]: Failed password for mail from 149.200.253.112 port 48327 ssh2
...
show moreMar 30 11:59:02 minden010 sshd[1430]: Failed password for mail from 149.200.253.112 port 48327 ssh2
Mar 30 11:59:02 minden010 sshd[1430]: error: Received disconnect from 149.200.253.112 port 48327:3: com.jcraft.jsch.JSchException: Auth fail [preauth]
Mar 30 11:59:04 minden010 sshd[1470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.200.253.112
...
show less
Report 249917 with IP 1289298 for SSH brute-force attack by source 1292141 via ssh-honeypot/0.2.0+ht ...
show moreReport 249917 with IP 1289298 for SSH brute-force attack by source 1292141 via ssh-honeypot/0.2.0+http
show less
Brute-Force
SSH
Showing 1 to
15
of 368 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ