API tools faq
paste
Advertisement
Guest User

JOURNAL

a guest
Jan 27th, 2022
244
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 172.25 KB | None | 0 0
raw download clone embed print report
  1. -- Logs begin at Sun 2022-01-23 13:31:51 CET, end at Thu 2022-01-27 17:25:45 CET. --
  2. Jan 27 07:41:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=91.240.118.13 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11046 PROTO=TCP SPT=52300 DPT=6365 WINDOW=1024 RES=0x00 SYN URGP=0
  3. Jan 27 07:42:01 host01 CRON[172827]: pam_unix(cron:session): session opened for user root by (uid=0)
  4. Jan 27 07:42:01 host01 CRON[172828]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  5. Jan 27 07:42:01 host01 CRON[172827]: pam_unix(cron:session): session closed for user root
  6. Jan 27 07:43:01 host01 CRON[172842]: pam_unix(cron:session): session opened for user root by (uid=0)
  7. Jan 27 07:43:01 host01 CRON[172843]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  8. Jan 27 07:43:01 host01 CRON[172842]: pam_unix(cron:session): session closed for user root
  9. Jan 27 07:43:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=64.62.197.15 DST=46.4.101.201 LEN=35 TOS=0x00 PREC=0x00 TTL=52 ID=32623 DF PROTO=UDP SPT=25591 DPT=177 LEN=15
  10. Jan 27 07:43:06 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=31961 PROTO=TCP SPT=53701 DPT=3727 WINDOW=1024 RES=0x00 SYN URGP=0
  11. Jan 27 07:43:19 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=91.240.118.15 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=2190 PROTO=TCP SPT=52323 DPT=6468 WINDOW=1024 RES=0x00 SYN URGP=0
  12. Jan 27 07:43:24 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=40591 PROTO=TCP SPT=48062 DPT=3120 WINDOW=1024 RES=0x00 SYN URGP=0
  13. Jan 27 07:43:48 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=81.12.92.223 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=113 ID=17137 DF PROTO=TCP SPT=51926 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0
  14. Jan 27 07:43:50 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=47800 PROTO=TCP SPT=41823 DPT=798 WINDOW=1024 RES=0x00 SYN URGP=0
  15. Jan 27 07:43:53 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=193.46.255.35 DST=46.4.101.201 LEN=440 TOS=0x00 PREC=0x00 TTL=55 ID=2089 DF PROTO=UDP SPT=5118 DPT=5060 LEN=420
  16. Jan 27 07:44:01 host01 CRON[172855]: pam_unix(cron:session): session opened for user root by (uid=0)
  17. Jan 27 07:44:01 host01 CRON[172856]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  18. Jan 27 07:44:01 host01 CRON[172855]: pam_unix(cron:session): session closed for user root
  19. Jan 27 07:44:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11185 PROTO=TCP SPT=41823 DPT=290 WINDOW=1024 RES=0x00 SYN URGP=0
  20. Jan 27 07:44:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=10260 PROTO=TCP SPT=53701 DPT=5610 WINDOW=1024 RES=0x00 SYN URGP=0
  21. Jan 27 07:44:40 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=23813 PROTO=TCP SPT=41820 DPT=6743 WINDOW=1024 RES=0x00 SYN URGP=0
  22. Jan 27 07:45:00 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=55816 PROTO=TCP SPT=53701 DPT=5707 WINDOW=1024 RES=0x00 SYN URGP=0
  23. Jan 27 07:45:01 host01 CRON[172866]: pam_unix(cron:session): session opened for user root by (uid=0)
  24. Jan 27 07:45:01 host01 CRON[172867]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  25. Jan 27 07:45:02 host01 CRON[172866]: pam_unix(cron:session): session closed for user root
  26. Jan 27 07:45:26 host01 sshd[172886]: Unable to negotiate with 115.236.81.66 port 50890: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
  27. Jan 27 07:45:39 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=170.106.115.39 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=54 ID=35303 DF PROTO=TCP SPT=36327 DPT=6789 WINDOW=65535 RES=0x00 SYN URGP=0
  28. Jan 27 07:45:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.81 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=31905 PROTO=TCP SPT=40038 DPT=12411 WINDOW=1024 RES=0x00 SYN URGP=0
  29. Jan 27 07:46:01 host01 CRON[172893]: pam_unix(cron:session): session opened for user root by (uid=0)
  30. Jan 27 07:46:01 host01 CRON[172894]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  31. Jan 27 07:46:01 host01 CRON[172893]: pam_unix(cron:session): session closed for user root
  32. Jan 27 07:46:06 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.142.125.87 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=41 ID=60487 PROTO=TCP SPT=23776 DPT=12549 WINDOW=1024 RES=0x00 SYN URGP=0
  33. Jan 27 07:46:33 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=61496 PROTO=TCP SPT=53701 DPT=5477 WINDOW=1024 RES=0x00 SYN URGP=0
  34. Jan 27 07:46:48 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.248.168.176 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=36710 DPT=2211 WINDOW=65535 RES=0x00 SYN URGP=0
  35. Jan 27 07:47:01 host01 CRON[172905]: pam_unix(cron:session): session opened for user root by (uid=0)
  36. Jan 27 07:47:01 host01 CRON[172906]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  37. Jan 27 07:47:01 host01 CRON[172905]: pam_unix(cron:session): session closed for user root
  38. Jan 27 07:47:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=29930 PROTO=TCP SPT=48062 DPT=23443 WINDOW=1024 RES=0x00 SYN URGP=0
  39. Jan 27 07:47:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.125.65.126 DST=46.4.101.201 LEN=29 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=UDP SPT=36644 DPT=61951 LEN=9
  40. Jan 27 07:47:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=203.110.221.10 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=289 DF PROTO=TCP SPT=59316 DPT=42982 WINDOW=0 RES=0x00 SYN URGP=0
  41. Jan 27 07:48:01 host01 CRON[172922]: pam_unix(cron:session): session opened for user root by (uid=0)
  42. Jan 27 07:48:01 host01 CRON[172923]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  43. Jan 27 07:48:02 host01 CRON[172922]: pam_unix(cron:session): session closed for user root
  44. Jan 27 07:48:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=44076 PROTO=TCP SPT=53701 DPT=4630 WINDOW=1024 RES=0x00 SYN URGP=0
  45. Jan 27 07:48:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=159.203.101.222 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=55906 PROTO=TCP SPT=45890 DPT=9342 WINDOW=1024 RES=0x00 SYN URGP=0
  46. Jan 27 07:48:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=205.209.147.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=40628 PROTO=TCP SPT=45891 DPT=59055 WINDOW=1024 RES=0x00 SYN URGP=0
  47. Jan 27 07:48:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=51914 PROTO=TCP SPT=53701 DPT=5757 WINDOW=1024 RES=0x00 SYN URGP=0
  48. Jan 27 07:49:01 host01 CRON[172935]: pam_unix(cron:session): session opened for user root by (uid=0)
  49. Jan 27 07:49:01 host01 CRON[172936]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  50. Jan 27 07:49:01 host01 CRON[172935]: pam_unix(cron:session): session closed for user root
  51. Jan 27 07:49:49 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.120 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=55195 PROTO=TCP SPT=47907 DPT=11400 WINDOW=1024 RES=0x00 SYN URGP=0
  52. Jan 27 07:50:01 host01 CRON[172945]: pam_unix(cron:session): session opened for user root by (uid=0)
  53. Jan 27 07:50:01 host01 CRON[172946]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  54. Jan 27 07:50:01 host01 CRON[172945]: pam_unix(cron:session): session closed for user root
  55. Jan 27 07:50:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.138.19 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=44 ID=10243 PROTO=TCP SPT=55257 DPT=1311 WINDOW=1024 RES=0x00 SYN URGP=0
  56. Jan 27 07:51:01 host01 CRON[172967]: pam_unix(cron:session): session opened for user root by (uid=0)
  57. Jan 27 07:51:01 host01 CRON[172968]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  58. Jan 27 07:51:01 host01 CRON[172967]: pam_unix(cron:session): session closed for user root
  59. Jan 27 07:51:16 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.143.203.3 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=45928 PROTO=TCP SPT=47520 DPT=25774 WINDOW=1024 RES=0x00 SYN URGP=0
  60. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=54243 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  61. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=54243 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  62. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=53691 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  63. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=53691 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  64. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=53691 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  65. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=53691 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  66. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=53691 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  67. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=53691 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  68. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=53691 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  69. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.35.30.241 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=53691 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  70. Jan 27 07:51:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.143.203.3 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=46751 PROTO=TCP SPT=47520 DPT=2051 WINDOW=1024 RES=0x00 SYN URGP=0
  71. Jan 27 07:52:01 host01 CRON[172990]: pam_unix(cron:session): session opened for user root by (uid=0)
  72. Jan 27 07:52:01 host01 CRON[172991]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  73. Jan 27 07:52:02 host01 CRON[172990]: pam_unix(cron:session): session closed for user root
  74. Jan 27 07:52:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=10598 PROTO=TCP SPT=41820 DPT=4323 WINDOW=1024 RES=0x00 SYN URGP=0
  75. Jan 27 07:52:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=40151 PROTO=TCP SPT=41823 DPT=17039 WINDOW=1024 RES=0x00 SYN URGP=0
  76. Jan 27 07:52:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=72.53.49.95 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=0 DF PROTO=TCP SPT=40900 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  77. Jan 27 07:52:32 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.142.125.29 DST=46.4.101.201 LEN=71 TOS=0x00 PREC=0x00 TTL=41 ID=59229 PROTO=UDP SPT=7958 DPT=161 LEN=51
  78. Jan 27 07:52:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=1754 PROTO=TCP SPT=53701 DPT=3355 WINDOW=1024 RES=0x00 SYN URGP=0
  79. Jan 27 07:52:46 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=72.53.49.95 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=0 DF PROTO=TCP SPT=40908 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  80. Jan 27 07:52:46 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=72.53.49.95 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=0 DF PROTO=TCP SPT=40908 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  81. Jan 27 07:52:47 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=146.88.240.4 DST=46.4.101.201 LEN=53 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=38669 DPT=27021 LEN=33
  82. Jan 27 07:52:53 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=119.3.159.9 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=49374 DF PROTO=TCP SPT=58506 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  83. Jan 27 07:52:55 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=7669 PROTO=TCP SPT=53701 DPT=1666 WINDOW=1024 RES=0x00 SYN URGP=0
  84. Jan 27 07:52:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=39670 PROTO=TCP SPT=41820 DPT=14190 WINDOW=1024 RES=0x00 SYN URGP=0
  85. Jan 27 07:53:01 host01 CRON[173006]: pam_unix(cron:session): session opened for user root by (uid=0)
  86. Jan 27 07:53:01 host01 CRON[173007]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  87. Jan 27 07:53:01 host01 CRON[173006]: pam_unix(cron:session): session closed for user root
  88. Jan 27 07:53:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=72.53.49.95 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=0 DF PROTO=TCP SPT=40926 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  89. Jan 27 07:53:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=91.240.118.17 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=11656 PROTO=TCP SPT=52342 DPT=6652 WINDOW=1024 RES=0x00 SYN URGP=0
  90. Jan 27 07:53:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.138.16 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=44 ID=44064 PROTO=TCP SPT=50192 DPT=222 WINDOW=1024 RES=0x00 SYN URGP=0
  91. Jan 27 07:54:01 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=30136 PROTO=TCP SPT=54952 DPT=30201 WINDOW=1024 RES=0x00 SYN URGP=0
  92. Jan 27 07:54:01 host01 CRON[173023]: pam_unix(cron:session): session opened for user root by (uid=0)
  93. Jan 27 07:54:01 host01 CRON[173024]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  94. Jan 27 07:54:01 host01 CRON[173023]: pam_unix(cron:session): session closed for user root
  95. Jan 27 07:54:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=72.53.49.95 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=0 DF PROTO=TCP SPT=40944 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  96. Jan 27 07:54:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=72.53.49.95 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=0 DF PROTO=TCP SPT=40944 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  97. Jan 27 07:54:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=72.53.49.95 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=0 DF PROTO=TCP SPT=40944 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  98. Jan 27 07:54:29 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=111.92.116.20 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=56275 DPT=8443 WINDOW=0 RES=0x00 RST URGP=0
  99. Jan 27 07:54:51 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=20.106.133.83 DST=46.4.101.201 LEN=52 TOS=0x02 PREC=0x00 TTL=111 ID=16087 DF PROTO=TCP SPT=51589 DPT=24001 WINDOW=8192 RES=0x00 SYN URGP=0
  100. Jan 27 07:54:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=20.106.133.83 DST=46.4.101.201 LEN=52 TOS=0x02 PREC=0x00 TTL=111 ID=16088 DF PROTO=TCP SPT=53428 DPT=24001 WINDOW=8192 RES=0x00 SYN URGP=0
  101. Jan 27 07:55:01 host01 CRON[173034]: pam_unix(cron:session): session opened for user root by (uid=0)
  102. Jan 27 07:55:01 host01 CRON[173035]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  103. Jan 27 07:55:02 host01 CRON[173034]: pam_unix(cron:session): session closed for user root
  104. Jan 27 07:55:15 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=206.189.222.9 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=51270 PROTO=TCP SPT=46247 DPT=3370 WINDOW=1024 RES=0x00 SYN URGP=0
  105. Jan 27 07:55:44 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=20.106.133.83 DST=46.4.101.201 LEN=52 TOS=0x02 PREC=0x00 TTL=111 ID=16089 DF PROTO=TCP SPT=50730 DPT=25001 WINDOW=8192 RES=0x00 SYN URGP=0
  106. Jan 27 07:55:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=20.106.133.83 DST=46.4.101.201 LEN=52 TOS=0x02 PREC=0x00 TTL=111 ID=16090 DF PROTO=TCP SPT=52510 DPT=25001 WINDOW=8192 RES=0x00 SYN URGP=0
  107. Jan 27 07:55:53 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=115.236.81.66 DST=46.4.101.201 LEN=700 TOS=0x00 PREC=0x00 TTL=49 ID=30520 DF PROTO=TCP SPT=56522 DPT=22 WINDOW=58 RES=0x00 ACK PSH URGP=0
  108. Jan 27 07:55:57 host01 sshd[173056]: Unable to negotiate with 115.236.81.66 port 56522: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
  109. Jan 27 07:55:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.169 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=14455 PROTO=TCP SPT=48059 DPT=2524 WINDOW=1024 RES=0x00 SYN URGP=0
  110. Jan 27 07:56:01 host01 CRON[173062]: pam_unix(cron:session): session opened for user root by (uid=0)
  111. Jan 27 07:56:01 host01 CRON[173063]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  112. Jan 27 07:56:01 host01 CRON[173062]: pam_unix(cron:session): session closed for user root
  113. Jan 27 07:56:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.143.200.50 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=30567 PROTO=TCP SPT=52936 DPT=30098 WINDOW=1024 RES=0x00 SYN URGP=0
  114. Jan 27 07:56:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=193.107.216.228 DST=46.4.101.201 LEN=440 TOS=0x00 PREC=0x00 TTL=57 ID=61326 DF PROTO=UDP SPT=5128 DPT=5060 LEN=420
  115. Jan 27 07:56:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=207.244.249.31 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=23597 PROTO=TCP SPT=45065 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0
  116. Jan 27 07:57:01 host01 CRON[173085]: pam_unix(cron:session): session opened for user root by (uid=0)
  117. Jan 27 07:57:01 host01 CRON[173086]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  118. Jan 27 07:57:01 host01 CRON[173085]: pam_unix(cron:session): session closed for user root
  119. Jan 27 07:57:37 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=13462 PROTO=TCP SPT=41823 DPT=15283 WINDOW=1024 RES=0x00 SYN URGP=0
  120. Jan 27 07:57:47 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.169 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=63617 PROTO=TCP SPT=48059 DPT=33102 WINDOW=1024 RES=0x00 SYN URGP=0
  121. Jan 27 07:58:01 host01 CRON[173100]: pam_unix(cron:session): session opened for user root by (uid=0)
  122. Jan 27 07:58:01 host01 CRON[173101]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  123. Jan 27 07:58:01 host01 CRON[173100]: pam_unix(cron:session): session closed for user root
  124. Jan 27 07:58:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.248.168.220 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=55997 DPT=11 WINDOW=65535 RES=0x00 SYN URGP=0
  125. Jan 27 07:59:01 host01 CRON[173113]: pam_unix(cron:session): session opened for user root by (uid=0)
  126. Jan 27 07:59:01 host01 CRON[173114]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  127. Jan 27 07:59:01 host01 CRON[173113]: pam_unix(cron:session): session closed for user root
  128. Jan 27 07:59:15 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=8463 PROTO=TCP SPT=54986 DPT=63103 WINDOW=1024 RES=0x00 SYN URGP=0
  129. Jan 27 07:59:20 host01 sshd[173123]: Unable to negotiate with 115.236.81.66 port 59772: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
  130. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.203.56.20 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=20220 DF PROTO=TCP SPT=51946 DPT=443 WINDOW=19 RES=0x00 ACK FIN URGP=0
  131. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.203.56.20 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=47607 DF PROTO=TCP SPT=44248 DPT=443 WINDOW=12 RES=0x00 ACK FIN URGP=0
  132. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.203.56.20 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=17138 DF PROTO=TCP SPT=50376 DPT=443 WINDOW=19 RES=0x00 ACK FIN URGP=0
  133. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=66.168.54.66 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=0 DF PROTO=TCP SPT=35522 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  134. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.203.56.20 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=17139 DF PROTO=TCP SPT=50376 DPT=443 WINDOW=19 RES=0x00 ACK FIN URGP=0
  135. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.203.56.20 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=64496 DF PROTO=TCP SPT=39172 DPT=443 WINDOW=19 RES=0x00 ACK FIN URGP=0
  136. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.203.56.20 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=20221 DF PROTO=TCP SPT=51946 DPT=443 WINDOW=19 RES=0x00 ACK FIN URGP=0
  137. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.203.56.20 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=47608 DF PROTO=TCP SPT=44248 DPT=443 WINDOW=12 RES=0x00 ACK FIN URGP=0
  138. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.203.56.20 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=54186 DF PROTO=TCP SPT=46172 DPT=443 WINDOW=19 RES=0x00 ACK FIN URGP=0
  139. Jan 27 07:59:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.203.56.20 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=37404 DF PROTO=TCP SPT=59298 DPT=443 WINDOW=15 RES=0x00 ACK FIN URGP=0
  140. Jan 27 07:59:55 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.74 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=61405 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  141. Jan 27 08:00:01 host01 CRON[173268]: pam_unix(cron:session): session opened for user root by (uid=0)
  142. Jan 27 08:00:01 host01 CRON[173269]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  143. Jan 27 08:00:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.74 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=49 ID=0 DF PROTO=TCP SPT=46065 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  144. Jan 27 08:00:36 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=154.3.40.101 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=50 ID=64425 DF PROTO=TCP SPT=42316 DPT=443 WINDOW=1575 RES=0x00 ACK FIN URGP=0
  145. Jan 27 08:00:48 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=183.136.225.9 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=112 ID=51044 PROTO=TCP SPT=28851 DPT=8003 WINDOW=29200 RES=0x00 SYN URGP=0
  146. Jan 27 08:00:55 host01 CRON[173268]: pam_unix(cron:session): session closed for user root
  147. Jan 27 08:01:01 host01 CRON[173379]: pam_unix(cron:session): session opened for user root by (uid=0)
  148. Jan 27 08:01:01 host01 CRON[173380]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  149. Jan 27 08:01:01 host01 CRON[173379]: pam_unix(cron:session): session closed for user root
  150. Jan 27 08:01:06 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=115.29.149.145 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=29409 DF PROTO=TCP SPT=38404 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  151. Jan 27 08:01:15 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=159.65.71.10 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=52912 PROTO=TCP SPT=46672 DPT=2590 WINDOW=1024 RES=0x00 SYN URGP=0
  152. Jan 27 08:01:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=13892 PROTO=TCP SPT=53701 DPT=2442 WINDOW=1024 RES=0x00 SYN URGP=0
  153. Jan 27 08:01:30 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19048 PROTO=TCP SPT=53701 DPT=5626 WINDOW=1024 RES=0x00 SYN URGP=0
  154. Jan 27 08:01:35 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=184.75.223.195 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=49 ID=7477 DF PROTO=TCP SPT=52885 DPT=443 WINDOW=1575 RES=0x00 ACK RST URGP=0
  155. Jan 27 08:01:36 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.230.126.149 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=41063 DF PROTO=TCP SPT=60020 DPT=443 WINDOW=251 RES=0x00 ACK RST URGP=0
  156. Jan 27 08:02:01 host01 CRON[173398]: pam_unix(cron:session): session opened for user root by (uid=0)
  157. Jan 27 08:02:01 host01 CRON[173399]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  158. Jan 27 08:02:01 host01 CRON[173398]: pam_unix(cron:session): session closed for user root
  159. Jan 27 08:02:01 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=91.240.118.11 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=33899 PROTO=TCP SPT=52274 DPT=6209 WINDOW=1024 RES=0x00 SYN URGP=0
  160. Jan 27 08:02:04 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=39525 PROTO=TCP SPT=41823 DPT=10926 WINDOW=1024 RES=0x00 SYN URGP=0
  161. Jan 27 08:02:19 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=40621 PROTO=TCP SPT=54986 DPT=3164 WINDOW=1024 RES=0x00 SYN URGP=0
  162. Jan 27 08:02:30 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=43.131.91.178 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=43277 DF PROTO=TCP SPT=44301 DPT=14330 WINDOW=65535 RES=0x00 SYN URGP=0
  163. Jan 27 08:02:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=37930 PROTO=TCP SPT=41823 DPT=14074 WINDOW=1024 RES=0x00 SYN URGP=0
  164. Jan 27 08:03:01 host01 CRON[173485]: pam_unix(cron:session): session opened for user root by (uid=0)
  165. Jan 27 08:03:01 host01 CRON[173486]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  166. Jan 27 08:03:02 host01 CRON[173485]: pam_unix(cron:session): session closed for user root
  167. Jan 27 08:03:09 host01 supervisord[548]: 2022-01-27 08:03:09,592 INFO exited: artisan-queue_03 (exit status 0; expected)
  168. Jan 27 08:03:10 host01 supervisord[548]: 2022-01-27 08:03:10,595 INFO spawned: 'artisan-queue_03' with pid 173535
  169. Jan 27 08:03:10 host01 supervisord[548]: 2022-01-27 08:03:10,763 INFO success: artisan-queue_03 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  170. Jan 27 08:03:11 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=43.132.204.41 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=54321 PROTO=TCP SPT=52433 DPT=3521 WINDOW=65535 RES=0x00 SYN URGP=0
  171. Jan 27 08:03:22 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.143.200.50 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=53924 PROTO=TCP SPT=52936 DPT=12490 WINDOW=1024 RES=0x00 SYN URGP=0
  172. Jan 27 08:03:22 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=53446 PROTO=TCP SPT=53701 DPT=2929 WINDOW=1024 RES=0x00 SYN URGP=0
  173. Jan 27 08:03:24 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=49059 PROTO=TCP SPT=53701 DPT=2121 WINDOW=1024 RES=0x00 SYN URGP=0
  174. Jan 27 08:03:28 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=31689 PROTO=TCP SPT=53701 DPT=2654 WINDOW=1024 RES=0x00 SYN URGP=0
  175. Jan 27 08:03:37 host01 supervisord[548]: 2022-01-27 08:03:37,251 INFO exited: artisan-queue_01 (exit status 0; expected)
  176. Jan 27 08:03:37 host01 supervisord[548]: 2022-01-27 08:03:37,254 INFO spawned: 'artisan-queue_01' with pid 173545
  177. Jan 27 08:03:37 host01 supervisord[548]: 2022-01-27 08:03:37,255 INFO success: artisan-queue_01 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  178. Jan 27 08:03:46 host01 supervisord[548]: 2022-01-27 08:03:46,671 INFO exited: artisan-queue_04 (exit status 0; expected)
  179. Jan 27 08:03:46 host01 supervisord[548]: 2022-01-27 08:03:46,673 INFO spawned: 'artisan-queue_04' with pid 173554
  180. Jan 27 08:03:46 host01 supervisord[548]: 2022-01-27 08:03:46,683 INFO success: artisan-queue_04 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  181. Jan 27 08:04:01 host01 CRON[173564]: pam_unix(cron:session): session opened for user root by (uid=0)
  182. Jan 27 08:04:01 host01 CRON[173565]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  183. Jan 27 08:04:01 host01 CRON[173564]: pam_unix(cron:session): session closed for user root
  184. Jan 27 08:04:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=3356 PROTO=TCP SPT=53701 DPT=1567 WINDOW=1024 RES=0x00 SYN URGP=0
  185. Jan 27 08:04:11 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=107.189.12.184 DST=46.4.101.201 LEN=76 TOS=0x00 PREC=0x00 TTL=249 ID=54321 PROTO=UDP SPT=35465 DPT=123 LEN=56
  186. Jan 27 08:04:29 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.191.34.108 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=8404 PROTO=TCP SPT=54887 DPT=26562 WINDOW=1024 RES=0x00 SYN URGP=0
  187. Jan 27 08:05:01 host01 CRON[173600]: pam_unix(cron:session): session opened for user root by (uid=0)
  188. Jan 27 08:05:01 host01 CRON[173601]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  189. Jan 27 08:05:01 host01 CRON[173600]: pam_unix(cron:session): session closed for user root
  190. Jan 27 08:05:07 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=8131 PROTO=TCP SPT=41820 DPT=8019 WINDOW=1024 RES=0x00 SYN URGP=0
  191. Jan 27 08:06:01 host01 CRON[173623]: pam_unix(cron:session): session opened for user root by (uid=0)
  192. Jan 27 08:06:01 host01 CRON[173624]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  193. Jan 27 08:06:01 host01 CRON[173623]: pam_unix(cron:session): session closed for user root
  194. Jan 27 08:06:07 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=12783 PROTO=TCP SPT=53701 DPT=3580 WINDOW=1024 RES=0x00 SYN URGP=0
  195. Jan 27 08:06:24 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=179.43.183.98 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=29256 PROTO=TCP SPT=45887 DPT=5479 WINDOW=1024 RES=0x00 SYN URGP=0
  196. Jan 27 08:06:37 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=46.148.21.66 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=23095 PROTO=TCP SPT=60000 DPT=59522 WINDOW=1024 RES=0x00 SYN URGP=0
  197. Jan 27 08:06:40 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11024 PROTO=TCP SPT=48062 DPT=11345 WINDOW=1024 RES=0x00 SYN URGP=0
  198. Jan 27 08:06:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.142.125.18 DST=46.4.101.201 LEN=73 TOS=0x00 PREC=0x00 TTL=41 ID=64290 PROTO=UDP SPT=53250 DPT=53 LEN=53
  199. Jan 27 08:06:43 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=192.99.175.189 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=50269 DF PROTO=TCP SPT=48575 DPT=5601 WINDOW=5840 RES=0x00 SYN URGP=0
  200. Jan 27 08:07:01 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=2.57.121.26 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=55662 PROTO=TCP SPT=43362 DPT=50802 WINDOW=1024 RES=0x00 SYN URGP=0
  201. Jan 27 08:07:01 host01 CRON[173746]: pam_unix(cron:session): session opened for user root by (uid=0)
  202. Jan 27 08:07:01 host01 CRON[173747]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  203. Jan 27 08:07:02 host01 CRON[173746]: pam_unix(cron:session): session closed for user root
  204. Jan 27 08:07:29 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.146.27 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=43 ID=62123 PROTO=TCP SPT=36111 DPT=26490 WINDOW=1024 RES=0x00 SYN URGP=0
  205. Jan 27 08:07:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.191.34.207 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=33938 PROTO=TCP SPT=52342 DPT=39314 WINDOW=1024 RES=0x00 SYN URGP=0
  206. Jan 27 08:08:01 host01 CRON[173768]: pam_unix(cron:session): session opened for user root by (uid=0)
  207. Jan 27 08:08:01 host01 CRON[173769]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  208. Jan 27 08:08:01 host01 CRON[173768]: pam_unix(cron:session): session closed for user root
  209. Jan 27 08:08:02 host01 sshd[173777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.134.26.143  user=root
  210. Jan 27 08:08:04 host01 sshd[173777]: Failed password for root from 45.134.26.143 port 4065 ssh2
  211. Jan 27 08:08:06 host01 sshd[173777]: Received disconnect from 45.134.26.143 port 4065:11: Client disconnecting normally [preauth]
  212. Jan 27 08:08:06 host01 sshd[173777]: Disconnected from authenticating user root 45.134.26.143 port 4065 [preauth]
  213. Jan 27 08:08:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=61.139.104.194 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=334 PROTO=TCP SPT=52432 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0
  214. Jan 27 08:08:36 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=91.240.118.17 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=57329 PROTO=TCP SPT=52342 DPT=6701 WINDOW=1024 RES=0x00 SYN URGP=0
  215. Jan 27 08:09:00 host01 systemd[1]: Starting Clean php session files...
  216. Jan 27 08:09:00 host01 systemd[1]: phpsessionclean.service: Succeeded.
  217. Jan 27 08:09:00 host01 systemd[1]: Finished Clean php session files.
  218. Jan 27 08:09:01 host01 CRON[173865]: pam_unix(cron:session): session opened for user root by (uid=0)
  219. Jan 27 08:09:01 host01 CRON[173866]: pam_unix(cron:session): session opened for user root by (uid=0)
  220. Jan 27 08:09:01 host01 CRON[173868]: (root) CMD (  [ -x /usr/lib/php/sessionclean ] && if [ ! -d /run/systemd/system ]; then /usr/lib/php/sessionclean; fi)
  221. Jan 27 08:09:01 host01 CRON[173867]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  222. Jan 27 08:09:01 host01 CRON[173865]: pam_unix(cron:session): session closed for user root
  223. Jan 27 08:09:01 host01 CRON[173866]: pam_unix(cron:session): session closed for user root
  224. Jan 27 08:09:01 host01 sshd[173876]: Unable to negotiate with 122.194.229.62 port 34436: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
  225. Jan 27 08:09:04 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.125.65.126 DST=46.4.101.201 LEN=29 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=UDP SPT=45383 DPT=62053 LEN=9
  226. Jan 27 08:09:15 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=78.128.113.250 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=1896 PROTO=TCP SPT=50648 DPT=12300 WINDOW=1024 RES=0x00 SYN URGP=0
  227. Jan 27 08:09:19 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=94.139.27.41 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=0 DF PROTO=TCP SPT=20027 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  228. Jan 27 08:09:37 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=66.168.54.66 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=0 DF PROTO=TCP SPT=58112 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  229. Jan 27 08:09:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.193.30.23 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=59 ID=17769 DF PROTO=TCP SPT=59708 DPT=23 WINDOW=64240 RES=0x00 SYN URGP=0
  230. Jan 27 08:10:00 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.193.30.23 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=59 ID=17770 DF PROTO=TCP SPT=59708 DPT=23 WINDOW=64240 RES=0x00 SYN URGP=0
  231. Jan 27 08:10:01 host01 CRON[173998]: pam_unix(cron:session): session opened for user root by (uid=0)
  232. Jan 27 08:10:01 host01 CRON[173999]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  233. Jan 27 08:10:02 host01 CRON[173998]: pam_unix(cron:session): session closed for user root
  234. Jan 27 08:10:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.193.30.23 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=59 ID=17771 DF PROTO=TCP SPT=59708 DPT=23 WINDOW=64240 RES=0x00 SYN URGP=0
  235. Jan 27 08:10:31 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.193.30.23 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=59 ID=17774 DF PROTO=TCP SPT=59708 DPT=23 WINDOW=64240 RES=0x00 SYN URGP=0
  236. Jan 27 08:10:37 host01 sshd[174018]: Unable to negotiate with 115.236.81.66 port 2095: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
  237. Jan 27 08:10:54 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=159.203.103.97 DST=46.4.101.201 LEN=56 TOS=0x00 PREC=0x00 TTL=54 ID=55602 DF PROTO=UDP SPT=30301 DPT=1434 LEN=36
  238. Jan 27 08:10:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.138.69 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=44 ID=47205 PROTO=TCP SPT=22410 DPT=9026 WINDOW=1024 RES=0x00 SYN URGP=0
  239. Jan 27 08:11:01 host01 CRON[174025]: pam_unix(cron:session): session opened for user root by (uid=0)
  240. Jan 27 08:11:01 host01 CRON[174026]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  241. Jan 27 08:11:01 host01 CRON[174025]: pam_unix(cron:session): session closed for user root
  242. Jan 27 08:11:44 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.120 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=6882 PROTO=TCP SPT=47907 DPT=3030 WINDOW=1024 RES=0x00 SYN URGP=0
  243. Jan 27 08:11:51 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=37480 PROTO=TCP SPT=41820 DPT=18011 WINDOW=1024 RES=0x00 SYN URGP=0
  244. Jan 27 08:12:01 host01 CRON[174049]: pam_unix(cron:session): session opened for user root by (uid=0)
  245. Jan 27 08:12:01 host01 CRON[174050]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  246. Jan 27 08:12:01 host01 CRON[174049]: pam_unix(cron:session): session closed for user root
  247. Jan 27 08:12:14 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=222.137.137.86 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=33966 DF PROTO=TCP SPT=47859 DPT=8080 WINDOW=28880 RES=0x00 SYN URGP=0
  248. Jan 27 08:12:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=164.92.211.7 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=16666 PROTO=TCP SPT=47532 DPT=10022 WINDOW=1024 RES=0x00 SYN URGP=0
  249. Jan 27 08:12:43 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=78.128.113.250 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=36322 PROTO=TCP SPT=50648 DPT=189 WINDOW=1024 RES=0x00 SYN URGP=0
  250. Jan 27 08:13:01 host01 CRON[174064]: pam_unix(cron:session): session opened for user root by (uid=0)
  251. Jan 27 08:13:01 host01 CRON[174065]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  252. Jan 27 08:13:01 host01 CRON[174064]: pam_unix(cron:session): session closed for user root
  253. Jan 27 08:13:07 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.146.26 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=43 ID=60666 PROTO=TCP SPT=24404 DPT=44760 WINDOW=1024 RES=0x00 SYN URGP=0
  254. Jan 27 08:13:30 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=23.95.197.198 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=59184 PROTO=TCP SPT=54479 DPT=3388 WINDOW=1024 RES=0x00 SYN URGP=0
  255. Jan 27 08:13:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=23.95.197.198 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=2552 PROTO=TCP SPT=54479 DPT=3329 WINDOW=1024 RES=0x00 SYN URGP=0
  256. Jan 27 08:13:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.142.125.162 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=41 ID=4658 PROTO=TCP SPT=54882 DPT=15038 WINDOW=1024 RES=0x00 SYN URGP=0
  257. Jan 27 08:14:01 host01 CRON[174181]: pam_unix(cron:session): session opened for user root by (uid=0)
  258. Jan 27 08:14:01 host01 CRON[174182]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  259. Jan 27 08:14:01 host01 CRON[174181]: pam_unix(cron:session): session closed for user root
  260. Jan 27 08:14:30 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=58.123.147.249 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=48 ID=40743 PROTO=TCP SPT=2327 DPT=23 WINDOW=59512 RES=0x00 SYN URGP=0
  261. Jan 27 08:15:01 host01 CRON[174194]: pam_unix(cron:session): session opened for user root by (uid=0)
  262. Jan 27 08:15:01 host01 CRON[174195]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  263. Jan 27 08:15:02 host01 CRON[174194]: pam_unix(cron:session): session closed for user root
  264. Jan 27 08:15:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.110 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19661 PROTO=TCP SPT=41824 DPT=46086 WINDOW=1024 RES=0x00 SYN URGP=0
  265. Jan 27 08:15:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=51 PROTO=TCP SPT=41820 DPT=55125 WINDOW=1024 RES=0x00 SYN URGP=0
  266. Jan 27 08:15:24 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=40902 PROTO=TCP SPT=54986 DPT=6872 WINDOW=1024 RES=0x00 SYN URGP=0
  267. Jan 27 08:15:44 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19693 PROTO=TCP SPT=41823 DPT=21381 WINDOW=1024 RES=0x00 SYN URGP=0
  268. Jan 27 08:16:01 host01 CRON[174213]: pam_unix(cron:session): session opened for user root by (uid=0)
  269. Jan 27 08:16:01 host01 CRON[174214]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  270. Jan 27 08:16:01 host01 CRON[174213]: pam_unix(cron:session): session closed for user root
  271. Jan 27 08:16:15 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=74.82.47.22 DST=46.4.101.201 LEN=74 TOS=0x00 PREC=0x00 TTL=52 ID=52182 DF PROTO=UDP SPT=28770 DPT=5353 LEN=54
  272. Jan 27 08:16:33 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=92.63.196.61 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=45796 PROTO=TCP SPT=44213 DPT=5818 WINDOW=1024 RES=0x00 SYN URGP=0
  273. Jan 27 08:16:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=115.214.104.166 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=13179 DF PROTO=TCP SPT=49168 DPT=0 WINDOW=29200 RES=0x00 SYN URGP=0
  274. Jan 27 08:17:01 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=2694 PROTO=TCP SPT=53701 DPT=3477 WINDOW=1024 RES=0x00 SYN URGP=0
  275. Jan 27 08:17:01 host01 CRON[174228]: pam_unix(cron:session): session opened for user root by (uid=0)
  276. Jan 27 08:17:01 host01 CRON[174229]: pam_unix(cron:session): session opened for user root by (uid=0)
  277. Jan 27 08:17:01 host01 CRON[174230]: (root) CMD (   cd / && run-parts --report /etc/cron.hourly)
  278. Jan 27 08:17:01 host01 CRON[174231]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  279. Jan 27 08:17:01 host01 CRON[174228]: pam_unix(cron:session): session closed for user root
  280. Jan 27 08:17:02 host01 CRON[174229]: pam_unix(cron:session): session closed for user root
  281. Jan 27 08:17:25 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=12337 PROTO=TCP SPT=53701 DPT=5730 WINDOW=1024 RES=0x00 SYN URGP=0
  282. Jan 27 08:17:44 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=23.95.197.198 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=61644 PROTO=TCP SPT=54479 DPT=3385 WINDOW=1024 RES=0x00 SYN URGP=0
  283. Jan 27 08:18:02 host01 CRON[174257]: pam_unix(cron:session): session opened for user root by (uid=0)
  284. Jan 27 08:18:02 host01 CRON[174258]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  285. Jan 27 08:18:02 host01 CRON[174257]: pam_unix(cron:session): session closed for user root
  286. Jan 27 08:18:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=17332 PROTO=TCP SPT=48062 DPT=5679 WINDOW=1024 RES=0x00 SYN URGP=0
  287. Jan 27 08:18:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.18 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=39186 PROTO=TCP SPT=57868 DPT=22222 WINDOW=1024 RES=0x00 SYN URGP=0
  288. Jan 27 08:18:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.143.200.50 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=57187 PROTO=TCP SPT=52936 DPT=53125 WINDOW=1024 RES=0x00 SYN URGP=0
  289. Jan 27 08:18:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=33417 PROTO=TCP SPT=53701 DPT=5885 WINDOW=1024 RES=0x00 SYN URGP=0
  290. Jan 27 08:19:01 host01 CRON[174382]: pam_unix(cron:session): session opened for user root by (uid=0)
  291. Jan 27 08:19:01 host01 CRON[174383]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  292. Jan 27 08:19:01 host01 CRON[174382]: pam_unix(cron:session): session closed for user root
  293. Jan 27 08:19:27 host01 sshd[174394]: Connection closed by 178.27.114.143 port 37588 [preauth]
  294. Jan 27 08:19:27 host01 sshd[174396]: Connection closed by 178.27.114.143 port 37590 [preauth]
  295. Jan 27 08:19:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=31.44.185.119 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=37220 PROTO=TCP SPT=64287 DPT=9000 WINDOW=1024 RES=0x00 SYN URGP=0
  296. Jan 27 08:19:50 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=91.240.118.13 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=29451 PROTO=TCP SPT=52300 DPT=6320 WINDOW=1024 RES=0x00 SYN URGP=0
  297. Jan 27 08:20:01 host01 CRON[174400]: pam_unix(cron:session): session opened for user root by (uid=0)
  298. Jan 27 08:20:01 host01 CRON[174401]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  299. Jan 27 08:20:01 host01 CRON[174400]: pam_unix(cron:session): session closed for user root
  300. Jan 27 08:20:28 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=75.72.124.166 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=21864 PROTO=TCP SPT=36582 DPT=37215 WINDOW=12533 RES=0x00 SYN URGP=0
  301. Jan 27 08:20:39 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=193.57.40.49 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=9383 PROTO=TCP SPT=50712 DPT=3042 WINDOW=1024 RES=0x00 SYN URGP=0
  302. Jan 27 08:20:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.110 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=16068 PROTO=TCP SPT=41824 DPT=47756 WINDOW=1024 RES=0x00 SYN URGP=0
  303. Jan 27 08:20:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=23979 PROTO=TCP SPT=53701 DPT=3456 WINDOW=1024 RES=0x00 SYN URGP=0
  304. Jan 27 08:21:01 host01 CRON[174419]: pam_unix(cron:session): session opened for user root by (uid=0)
  305. Jan 27 08:21:01 host01 CRON[174420]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  306. Jan 27 08:21:02 host01 CRON[174419]: pam_unix(cron:session): session closed for user root
  307. Jan 27 08:21:25 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=2.56.57.228 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=39729 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0
  308. Jan 27 08:21:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=82.157.34.99 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=54441 DF PROTO=TCP SPT=38564 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  309. Jan 27 08:22:01 host01 CRON[174432]: pam_unix(cron:session): session opened for user root by (uid=0)
  310. Jan 27 08:22:01 host01 CRON[174433]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  311. Jan 27 08:22:01 host01 CRON[174432]: pam_unix(cron:session): session closed for user root
  312. Jan 27 08:22:19 host01 supervisord[548]: 2022-01-27 08:22:19,780 INFO exited: artisan-queue_00 (exit status 0; expected)
  313. Jan 27 08:22:19 host01 supervisord[548]: 2022-01-27 08:22:19,783 INFO spawned: 'artisan-queue_00' with pid 174444
  314. Jan 27 08:22:19 host01 supervisord[548]: 2022-01-27 08:22:19,784 INFO success: artisan-queue_00 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  315. Jan 27 08:22:36 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=14286 PROTO=TCP SPT=53701 DPT=4141 WINDOW=1024 RES=0x00 SYN URGP=0
  316. Jan 27 08:22:39 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=42.194.209.188 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=51538 PROTO=TCP SPT=45014 DPT=2376 WINDOW=1024 RES=0x00 SYN URGP=0
  317. Jan 27 08:22:43 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=129.211.84.138 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=52636 DF PROTO=TCP SPT=48080 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  318. Jan 27 08:23:01 host01 CRON[174458]: pam_unix(cron:session): session opened for user root by (uid=0)
  319. Jan 27 08:23:01 host01 CRON[174459]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  320. Jan 27 08:23:01 host01 CRON[174458]: pam_unix(cron:session): session closed for user root
  321. Jan 27 08:23:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=65061 PROTO=TCP SPT=41823 DPT=13046 WINDOW=1024 RES=0x00 SYN URGP=0
  322. Jan 27 08:23:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.191.34.207 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=12823 PROTO=TCP SPT=52342 DPT=39348 WINDOW=1024 RES=0x00 SYN URGP=0
  323. Jan 27 08:23:47 host01 sshd[174475]: Unable to negotiate with 112.85.42.53 port 37624: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
  324. Jan 27 08:24:01 host01 CRON[174477]: pam_unix(cron:session): session opened for user root by (uid=0)
  325. Jan 27 08:24:01 host01 CRON[174478]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  326. Jan 27 08:24:01 host01 CRON[174477]: pam_unix(cron:session): session closed for user root
  327. Jan 27 08:24:12 host01 supervisord[548]: 2022-01-27 08:24:12,224 INFO exited: artisan-queue_05 (exit status 0; expected)
  328. Jan 27 08:24:12 host01 supervisord[548]: 2022-01-27 08:24:12,226 INFO spawned: 'artisan-queue_05' with pid 174487
  329. Jan 27 08:24:12 host01 supervisord[548]: 2022-01-27 08:24:12,227 INFO success: artisan-queue_05 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  330. Jan 27 08:24:16 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=101.132.43.47 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=31194 DF PROTO=TCP SPT=60450 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  331. Jan 27 08:24:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=37.152.185.57 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=10108 DF PROTO=TCP SPT=60668 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0
  332. Jan 27 08:24:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=206.189.222.9 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=65463 PROTO=TCP SPT=48144 DPT=8310 WINDOW=1024 RES=0x00 SYN URGP=0
  333. Jan 27 08:24:51 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=47.243.243.61 DST=46.4.101.201 LEN=101 TOS=0x00 PREC=0x00 TTL=51 ID=61562 DF PROTO=UDP SPT=62631 DPT=8080 LEN=81
  334. Jan 27 08:24:52 host01 sshd[174602]: Unable to negotiate with 115.236.81.66 port 8061: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
  335. Jan 27 08:24:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=14956 PROTO=TCP SPT=54952 DPT=48419 WINDOW=1024 RES=0x00 SYN URGP=0
  336. Jan 27 08:25:01 host01 CRON[174606]: pam_unix(cron:session): session opened for user root by (uid=0)
  337. Jan 27 08:25:01 host01 CRON[174607]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  338. Jan 27 08:25:02 host01 CRON[174606]: pam_unix(cron:session): session closed for user root
  339. Jan 27 08:25:11 host01 supervisord[548]: 2022-01-27 08:25:11,520 INFO exited: artisan-queue_02 (exit status 0; expected)
  340. Jan 27 08:25:11 host01 supervisord[548]: 2022-01-27 08:25:11,522 INFO spawned: 'artisan-queue_02' with pid 174625
  341. Jan 27 08:25:11 host01 supervisord[548]: 2022-01-27 08:25:11,523 INFO success: artisan-queue_02 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  342. Jan 27 08:26:01 host01 CRON[174644]: pam_unix(cron:session): session opened for user root by (uid=0)
  343. Jan 27 08:26:01 host01 CRON[174645]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  344. Jan 27 08:26:01 host01 CRON[174644]: pam_unix(cron:session): session closed for user root
  345. Jan 27 08:26:23 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=146.88.240.4 DST=46.4.101.201 LEN=167 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=5060 DPT=5060 LEN=147
  346. Jan 27 08:26:29 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=193.57.40.49 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=39293 PROTO=TCP SPT=50712 DPT=7125 WINDOW=1024 RES=0x00 SYN URGP=0
  347. Jan 27 08:26:40 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.110 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=240 PROTO=TCP SPT=41824 DPT=41939 WINDOW=1024 RES=0x00 SYN URGP=0
  348. Jan 27 08:26:50 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=77.99.176.107 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=38157 PROTO=TCP SPT=49162 DPT=37215 WINDOW=11130 RES=0x00 SYN URGP=0
  349. Jan 27 08:26:56 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=8474 PROTO=TCP SPT=53701 DPT=2212 WINDOW=1024 RES=0x00 SYN URGP=0
  350. Jan 27 08:26:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=8.218.197.170 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=51786 DF PROTO=UDP SPT=1434 DPT=8081 LEN=40
  351. Jan 27 08:27:01 host01 CRON[174690]: pam_unix(cron:session): session opened for user root by (uid=0)
  352. Jan 27 08:27:01 host01 CRON[174691]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  353. Jan 27 08:27:01 host01 CRON[174690]: pam_unix(cron:session): session closed for user root
  354. Jan 27 08:27:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.146.29 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=43 ID=40525 PROTO=TCP SPT=22713 DPT=11370 WINDOW=1024 RES=0x00 SYN URGP=0
  355. Jan 27 08:27:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=12402 PROTO=TCP SPT=41823 DPT=19794 WINDOW=1024 RES=0x00 SYN URGP=0
  356. Jan 27 08:28:01 host01 CRON[174710]: pam_unix(cron:session): session opened for user root by (uid=0)
  357. Jan 27 08:28:01 host01 CRON[174711]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  358. Jan 27 08:28:01 host01 CRON[174710]: pam_unix(cron:session): session closed for user root
  359. Jan 27 08:28:23 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=23.95.197.198 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=48415 PROTO=TCP SPT=54479 DPT=3326 WINDOW=1024 RES=0x00 SYN URGP=0
  360. Jan 27 08:28:24 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=32531 PROTO=TCP SPT=41823 DPT=13607 WINDOW=1024 RES=0x00 SYN URGP=0
  361. Jan 27 08:29:01 host01 CRON[174733]: pam_unix(cron:session): session opened for user root by (uid=0)
  362. Jan 27 08:29:01 host01 CRON[174734]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  363. Jan 27 08:29:02 host01 CRON[174733]: pam_unix(cron:session): session closed for user root
  364. Jan 27 08:29:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=151.115.49.208 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=TCP SPT=53298 DPT=2049 WINDOW=65535 RES=0x00 SYN URGP=0
  365. Jan 27 08:29:29 host01 sshd[174745]: Connection closed by 62.225.132.142 port 65384 [preauth]
  366. Jan 27 08:29:30 host01 sshd[174747]: Connection closed by 62.225.132.142 port 21178 [preauth]
  367. Jan 27 08:29:30 host01 sshd[174749]: Connection closed by 62.225.132.142 port 14699 [preauth]
  368. Jan 27 08:29:30 host01 sshd[174751]: Connection closed by 62.225.132.142 port 43201 [preauth]
  369. Jan 27 08:29:30 host01 sshd[174753]: Connection closed by 62.225.132.142 port 13267 [preauth]
  370. Jan 27 08:29:30 host01 sshd[174755]: Connection closed by 62.225.132.142 port 46445 [preauth]
  371. Jan 27 08:29:30 host01 sshd[174757]: Connection closed by 62.225.132.142 port 39801 [preauth]
  372. Jan 27 08:29:30 host01 sshd[174759]: Connection closed by 62.225.132.142 port 56652 [preauth]
  373. Jan 27 08:29:47 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.110 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=55452 PROTO=TCP SPT=41824 DPT=45746 WINDOW=1024 RES=0x00 SYN URGP=0
  374. Jan 27 08:29:49 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.142.239.16 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=118 ID=31599 PROTO=TCP SPT=26200 DPT=5604 WINDOW=41556 RES=0x00 SYN URGP=0
  375. Jan 27 08:29:54 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=9368 PROTO=TCP SPT=54952 DPT=1930 WINDOW=1024 RES=0x00 SYN URGP=0
  376. Jan 27 08:30:01 host01 CRON[174765]: pam_unix(cron:session): session opened for user root by (uid=0)
  377. Jan 27 08:30:01 host01 CRON[174766]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  378. Jan 27 08:30:01 host01 CRON[174765]: pam_unix(cron:session): session closed for user root
  379. Jan 27 08:30:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=141.98.10.95 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=54321 PROTO=TCP SPT=43901 DPT=3128 WINDOW=65535 RES=0x00 SYN URGP=0
  380. Jan 27 08:30:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=144.172.118.37 DST=46.4.101.201 LEN=29 TOS=0x00 PREC=0x00 TTL=237 ID=54321 PROTO=UDP SPT=58456 DPT=40947 LEN=9
  381. Jan 27 08:30:46 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19911 PROTO=TCP SPT=53701 DPT=2677 WINDOW=1024 RES=0x00 SYN URGP=0
  382. Jan 27 08:30:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=62.197.136.63 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=40259 DPT=23 WINDOW=65535 RES=0x00 SYN URGP=0
  383. Jan 27 08:31:01 host01 CRON[174826]: pam_unix(cron:session): session opened for user root by (uid=0)
  384. Jan 27 08:31:01 host01 CRON[174827]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  385. Jan 27 08:31:01 host01 CRON[174826]: pam_unix(cron:session): session closed for user root
  386. Jan 27 08:31:30 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19784 PROTO=TCP SPT=54986 DPT=25010 WINDOW=1024 RES=0x00 SYN URGP=0
  387. Jan 27 08:31:39 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.142.125.77 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=41 ID=29565 PROTO=TCP SPT=61337 DPT=5123 WINDOW=1024 RES=0x00 SYN URGP=0
  388. Jan 27 08:32:01 host01 CRON[174842]: pam_unix(cron:session): session opened for user root by (uid=0)
  389. Jan 27 08:32:01 host01 CRON[174843]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  390. Jan 27 08:32:02 host01 CRON[174842]: pam_unix(cron:session): session closed for user root
  391. Jan 27 08:32:28 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.199.92 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=12890 DF PROTO=TCP SPT=35288 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  392. Jan 27 08:32:28 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.199.92 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=24108 DF PROTO=TCP SPT=35294 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  393. Jan 27 08:32:44 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.199.92 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=12894 DF PROTO=TCP SPT=35288 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  394. Jan 27 08:33:00 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.199.92 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=18856 DF PROTO=TCP SPT=35314 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  395. Jan 27 08:33:01 host01 CRON[174854]: pam_unix(cron:session): session opened for user root by (uid=0)
  396. Jan 27 08:33:01 host01 CRON[174855]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  397. Jan 27 08:33:01 host01 CRON[174854]: pam_unix(cron:session): session closed for user root
  398. Jan 27 08:33:19 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=52369 PROTO=TCP SPT=53701 DPT=3770 WINDOW=1024 RES=0x00 SYN URGP=0
  399. Jan 27 08:33:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=2.57.121.32 DST=46.4.101.201 LEN=437 TOS=0x00 PREC=0x00 TTL=55 ID=46526 DF PROTO=UDP SPT=5508 DPT=5060 LEN=417
  400. Jan 27 08:34:01 host01 CRON[174868]: pam_unix(cron:session): session opened for user root by (uid=0)
  401. Jan 27 08:34:01 host01 CRON[174869]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  402. Jan 27 08:34:01 host01 CRON[174868]: pam_unix(cron:session): session closed for user root
  403. Jan 27 08:34:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=219.153.65.209 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=44094 DF PROTO=TCP SPT=19091 DPT=6379 WINDOW=14600 RES=0x00 SYN URGP=0
  404. Jan 27 08:34:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=50799 PROTO=TCP SPT=53701 DPT=1511 WINDOW=1024 RES=0x00 SYN URGP=0
  405. Jan 27 08:34:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=119.91.96.149 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=30168 DF PROTO=TCP SPT=37726 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  406. Jan 27 08:34:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=91.240.118.11 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=17785 PROTO=TCP SPT=52274 DPT=6192 WINDOW=1024 RES=0x00 SYN URGP=0
  407. Jan 27 08:35:01 host01 CRON[174882]: pam_unix(cron:session): session opened for user root by (uid=0)
  408. Jan 27 08:35:01 host01 CRON[174883]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  409. Jan 27 08:35:02 host01 CRON[174882]: pam_unix(cron:session): session closed for user root
  410. Jan 27 08:35:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.146.31 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=43 ID=56031 PROTO=TCP SPT=38219 DPT=11522 WINDOW=1024 RES=0x00 SYN URGP=0
  411. Jan 27 08:35:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=53158 PROTO=TCP SPT=53701 DPT=3767 WINDOW=1024 RES=0x00 SYN URGP=0
  412. Jan 27 08:36:00 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=221.182.149.42 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=240 ID=61423 PROTO=TCP SPT=56829 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0
  413. Jan 27 08:36:01 host01 CRON[174902]: pam_unix(cron:session): session opened for user root by (uid=0)
  414. Jan 27 08:36:01 host01 CRON[174903]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  415. Jan 27 08:36:01 host01 CRON[174902]: pam_unix(cron:session): session closed for user root
  416. Jan 27 08:36:22 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.195 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=54813 PROTO=TCP SPT=47855 DPT=3504 WINDOW=1024 RES=0x00 SYN URGP=0
  417. Jan 27 08:37:01 host01 CRON[174914]: pam_unix(cron:session): session opened for user root by (uid=0)
  418. Jan 27 08:37:01 host01 CRON[174915]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  419. Jan 27 08:37:01 host01 CRON[174914]: pam_unix(cron:session): session closed for user root
  420. Jan 27 08:37:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=39.108.158.161 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=51 DF PROTO=TCP SPT=58906 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  421. Jan 27 08:37:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=39.108.158.161 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=52 DF PROTO=TCP SPT=58906 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  422. Jan 27 08:37:28 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=26552 PROTO=TCP SPT=54986 DPT=7884 WINDOW=1024 RES=0x00 SYN URGP=0
  423. Jan 27 08:37:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.138.82 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=44 ID=47570 PROTO=TCP SPT=33217 DPT=12491 WINDOW=1024 RES=0x00 SYN URGP=0
  424. Jan 27 08:38:01 host01 CRON[174929]: pam_unix(cron:session): session opened for user root by (uid=0)
  425. Jan 27 08:38:01 host01 CRON[174930]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  426. Jan 27 08:38:01 host01 CRON[174929]: pam_unix(cron:session): session closed for user root
  427. Jan 27 08:38:02 host01 sshd[174927]: error: kex_exchange_identification: read: Connection reset by peer
  428. Jan 27 08:38:50 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.71.236.236 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=17574 PROTO=TCP SPT=49052 DPT=31222 WINDOW=1024 RES=0x00 SYN URGP=0
  429. Jan 27 08:38:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=164.52.24.178 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=37138 DPT=9600 WINDOW=65535 RES=0x00 SYN URGP=0
  430. Jan 27 08:39:01 host01 CRON[174954]: pam_unix(cron:session): session opened for user root by (uid=0)
  431. Jan 27 08:39:01 host01 CRON[174955]: pam_unix(cron:session): session opened for user root by (uid=0)
  432. Jan 27 08:39:01 host01 CRON[174956]: (root) CMD (  [ -x /usr/lib/php/sessionclean ] && if [ ! -d /run/systemd/system ]; then /usr/lib/php/sessionclean; fi)
  433. Jan 27 08:39:01 host01 CRON[174957]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  434. Jan 27 08:39:01 host01 CRON[174954]: pam_unix(cron:session): session closed for user root
  435. Jan 27 08:39:01 host01 CRON[174955]: pam_unix(cron:session): session closed for user root
  436. Jan 27 08:39:03 host01 systemd[1]: Starting Clean php session files...
  437. Jan 27 08:39:03 host01 systemd[1]: phpsessionclean.service: Succeeded.
  438. Jan 27 08:39:03 host01 systemd[1]: Finished Clean php session files.
  439. Jan 27 08:39:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=14.42.199.92 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=43082 PROTO=TCP SPT=8959 DPT=37215 WINDOW=52853 RES=0x00 SYN URGP=0
  440. Jan 27 08:39:33 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=60568 PROTO=TCP SPT=54952 DPT=4774 WINDOW=1024 RES=0x00 SYN URGP=0
  441. Jan 27 08:39:37 host01 sshd[175036]: error: kex_exchange_identification: read: Connection reset by peer
  442. Jan 27 08:39:48 host01 sshd[175039]: Connection reset by authenticating user root 45.88.137.100 port 36000 [preauth]
  443. Jan 27 08:39:48 host01 sshd[175038]: Connection reset by authenticating user root 45.88.137.100 port 36010 [preauth]
  444. Jan 27 08:39:49 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=180.76.185.144 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=36436 DF PROTO=TCP SPT=57770 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  445. Jan 27 08:40:01 host01 CRON[175046]: pam_unix(cron:session): session opened for user root by (uid=0)
  446. Jan 27 08:40:01 host01 CRON[175047]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  447. Jan 27 08:40:02 host01 CRON[175046]: pam_unix(cron:session): session closed for user root
  448. Jan 27 08:40:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.31 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=7615 PROTO=TCP SPT=45069 DPT=995 WINDOW=1024 RES=0x00 SYN URGP=0
  449. Jan 27 08:40:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.120 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=23977 PROTO=TCP SPT=47907 DPT=5260 WINDOW=1024 RES=0x00 SYN URGP=0
  450. Jan 27 08:40:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.191.34.207 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=53176 PROTO=TCP SPT=52342 DPT=39313 WINDOW=1024 RES=0x00 SYN URGP=0
  451. Jan 27 08:41:01 host01 CRON[175072]: pam_unix(cron:session): session opened for user root by (uid=0)
  452. Jan 27 08:41:01 host01 CRON[175073]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  453. Jan 27 08:41:01 host01 CRON[175072]: pam_unix(cron:session): session closed for user root
  454. Jan 27 08:41:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=119.1.169.252 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=19461 DF PROTO=TCP SPT=60396 DPT=10008 WINDOW=0 RES=0x00 SYN URGP=0
  455. Jan 27 08:41:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=45872 PROTO=TCP SPT=53701 DPT=4760 WINDOW=1024 RES=0x00 SYN URGP=0
  456. Jan 27 08:41:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=139.162.190.203 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=26743 PROTO=TCP SPT=10477 DPT=49165 WINDOW=1024 RES=0x00 SYN URGP=0
  457. Jan 27 08:41:44 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=56538 PROTO=TCP SPT=41820 DPT=65124 WINDOW=1024 RES=0x00 SYN URGP=0
  458. Jan 27 08:41:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=47.104.148.178 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=37492 DF PROTO=TCP SPT=40640 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  459. Jan 27 08:42:01 host01 CRON[175086]: pam_unix(cron:session): session opened for user root by (uid=0)
  460. Jan 27 08:42:01 host01 CRON[175087]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  461. Jan 27 08:42:01 host01 CRON[175086]: pam_unix(cron:session): session closed for user root
  462. Jan 27 08:42:22 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=27.124.5.105 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=37960 DPT=8088 WINDOW=1024 RES=0x00 SYN URGP=0
  463. Jan 27 08:42:47 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.193.30.91 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=34221 DPT=23 WINDOW=65535 RES=0x00 SYN URGP=0
  464. Jan 27 08:42:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34836 PROTO=TCP SPT=41823 DPT=6141 WINDOW=1024 RES=0x00 SYN URGP=0
  465. Jan 27 08:43:01 host01 CRON[175103]: pam_unix(cron:session): session opened for user root by (uid=0)
  466. Jan 27 08:43:01 host01 CRON[175104]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  467. Jan 27 08:43:01 host01 CRON[175103]: pam_unix(cron:session): session closed for user root
  468. Jan 27 08:43:07 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43860 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  469. Jan 27 08:43:33 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=49531 PROTO=TCP SPT=53701 DPT=4650 WINDOW=1024 RES=0x00 SYN URGP=0
  470. Jan 27 08:43:56 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=9982 PROTO=TCP SPT=53701 DPT=3535 WINDOW=1024 RES=0x00 SYN URGP=0
  471. Jan 27 08:44:01 host01 CRON[175115]: pam_unix(cron:session): session opened for user root by (uid=0)
  472. Jan 27 08:44:01 host01 CRON[175116]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  473. Jan 27 08:44:02 host01 CRON[175115]: pam_unix(cron:session): session closed for user root
  474. Jan 27 08:44:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=140.210.143.239 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=35530 DF PROTO=TCP SPT=49670 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0
  475. Jan 27 08:44:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=140.210.143.239 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=41 ID=32012 PROTO=TCP SPT=49670 DPT=6379 WINDOW=0 RES=0x00 ACK RST URGP=0
  476. Jan 27 08:44:31 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=5.253.206.222 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=61973 DF PROTO=TCP SPT=35846 DPT=0 WINDOW=1460 RES=0x00 SYN URGP=0
  477. Jan 27 08:44:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=5.253.206.222 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=61976 DF PROTO=TCP SPT=35846 DPT=0 WINDOW=1460 RES=0x00 SYN URGP=0
  478. Jan 27 08:44:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=115.236.81.66 DST=46.4.101.201 LEN=700 TOS=0x00 PREC=0x00 TTL=49 ID=40526 DF PROTO=TCP SPT=14465 DPT=22 WINDOW=58 RES=0x00 ACK PSH URGP=0
  479. Jan 27 08:45:01 host01 CRON[175135]: pam_unix(cron:session): session opened for user root by (uid=0)
  480. Jan 27 08:45:01 host01 CRON[175136]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  481. Jan 27 08:45:01 host01 CRON[175135]: pam_unix(cron:session): session closed for user root
  482. Jan 27 08:45:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=5.253.206.222 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=61978 DF PROTO=TCP SPT=35846 DPT=0 WINDOW=1460 RES=0x00 SYN URGP=0
  483. Jan 27 08:45:19 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=223.71.167.166 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=115 ID=12962 PROTO=TCP SPT=42781 DPT=9333 WINDOW=29200 RES=0x00 SYN URGP=0
  484. Jan 27 08:45:48 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=200.25.48.149 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=48797 DPT=403 WINDOW=65535 RES=0x00 SYN URGP=0
  485. Jan 27 08:46:01 host01 CRON[175159]: pam_unix(cron:session): session opened for user root by (uid=0)
  486. Jan 27 08:46:01 host01 CRON[175160]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  487. Jan 27 08:46:01 host01 CRON[175159]: pam_unix(cron:session): session closed for user root
  488. Jan 27 08:46:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=41706 PROTO=TCP SPT=48062 DPT=7399 WINDOW=1024 RES=0x00 SYN URGP=0
  489. Jan 27 08:46:35 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.80 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=20640 PROTO=TCP SPT=32937 DPT=11182 WINDOW=1024 RES=0x00 SYN URGP=0
  490. Jan 27 08:46:56 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=143.92.58.78 DST=46.4.101.201 LEN=108 TOS=0x00 PREC=0x00 TTL=54 ID=46221 DF PROTO=UDP SPT=5353 DPT=1027 LEN=88
  491. Jan 27 08:47:01 host01 CRON[175171]: pam_unix(cron:session): session opened for user root by (uid=0)
  492. Jan 27 08:47:01 host01 CRON[175172]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  493. Jan 27 08:47:02 host01 CRON[175171]: pam_unix(cron:session): session closed for user root
  494. Jan 27 08:47:04 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=37.201.214.147 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=26650 DF PROTO=TCP SPT=15798 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  495. Jan 27 08:47:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=37.201.214.147 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=26654 DF PROTO=TCP SPT=29452 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  496. Jan 27 08:48:01 host01 CRON[175188]: pam_unix(cron:session): session opened for user root by (uid=0)
  497. Jan 27 08:48:01 host01 CRON[175189]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  498. Jan 27 08:48:01 host01 CRON[175188]: pam_unix(cron:session): session closed for user root
  499. Jan 27 08:48:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=37.201.214.147 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=26656 DF PROTO=TCP SPT=29448 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  500. Jan 27 08:48:16 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=56109 PROTO=TCP SPT=54986 DPT=57482 WINDOW=1024 RES=0x00 SYN URGP=0
  501. Jan 27 08:48:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.138.74 DST=46.4.101.201 LEN=35 TOS=0x00 PREC=0x00 TTL=44 ID=65466 PROTO=UDP SPT=8960 DPT=177 LEN=15
  502. Jan 27 08:48:49 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=116.24.91.253 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=14713 DF PROTO=TCP SPT=63960 DPT=4899 WINDOW=8192 RES=0x00 SYN URGP=0
  503. Jan 27 08:48:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=31740 PROTO=TCP SPT=53701 DPT=1011 WINDOW=1024 RES=0x00 SYN URGP=0
  504. Jan 27 08:49:01 host01 CRON[175203]: pam_unix(cron:session): session opened for user root by (uid=0)
  505. Jan 27 08:49:01 host01 CRON[175204]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  506. Jan 27 08:49:01 host01 CRON[175203]: pam_unix(cron:session): session closed for user root
  507. Jan 27 08:49:14 host01 sshd[175213]: Invalid user psdinhtml from 185.220.101.152 port 21450
  508. Jan 27 08:49:14 host01 sshd[175213]: pam_unix(sshd:auth): check pass; user unknown
  509. Jan 27 08:49:14 host01 sshd[175213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.152
  510. Jan 27 08:49:16 host01 sshd[175213]: Failed password for invalid user psdinhtml from 185.220.101.152 port 21450 ssh2
  511. Jan 27 08:49:16 host01 sshd[175213]: Connection closed by invalid user psdinhtml 185.220.101.152 port 21450 [preauth]
  512. Jan 27 08:49:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60618 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  513. Jan 27 08:49:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60618 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  514. Jan 27 08:49:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60618 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  515. Jan 27 08:49:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60626 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  516. Jan 27 08:49:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60626 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  517. Jan 27 08:49:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=81.17.24.204 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=55 ID=26863 DF PROTO=TCP SPT=57144 DPT=443 WINDOW=2711 RES=0x00 ACK FIN URGP=0
  518. Jan 27 08:49:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=64.62.197.215 DST=46.4.101.201 LEN=80 TOS=0x00 PREC=0x00 TTL=52 ID=41982 DF PROTO=UDP SPT=22565 DPT=389 LEN=60
  519. Jan 27 08:49:37 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60632 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  520. Jan 27 08:49:37 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60634 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  521. Jan 27 08:49:37 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60652 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  522. Jan 27 08:49:37 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60648 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  523. Jan 27 08:49:37 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60624 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  524. Jan 27 08:49:46 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=51244 PROTO=TCP SPT=54986 DPT=47302 WINDOW=1024 RES=0x00 SYN URGP=0
  525. Jan 27 08:50:01 host01 CRON[175220]: pam_unix(cron:session): session opened for user root by (uid=0)
  526. Jan 27 08:50:01 host01 CRON[175221]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  527. Jan 27 08:50:01 host01 CRON[175220]: pam_unix(cron:session): session closed for user root
  528. Jan 27 08:50:03 host01 sshd[175237]: Unable to negotiate with 115.236.81.66 port 17383: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
  529. Jan 27 08:50:06 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=51.255.109.173 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=42684 DF PROTO=TCP SPT=14917 DPT=22222 WINDOW=5840 RES=0x00 SYN URGP=0
  530. Jan 27 08:50:11 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60636 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  531. Jan 27 08:50:27 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=223.210.19.66 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=46 ID=16688 DF PROTO=TCP SPT=27930 DPT=24621 WINDOW=0 RES=0x00 SYN URGP=0
  532. Jan 27 08:51:00 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=7106 PROTO=TCP SPT=41820 DPT=7035 WINDOW=1024 RES=0x00 SYN URGP=0
  533. Jan 27 08:51:01 host01 CRON[175282]: pam_unix(cron:session): session opened for user root by (uid=0)
  534. Jan 27 08:51:01 host01 CRON[175283]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  535. Jan 27 08:51:02 host01 CRON[175282]: pam_unix(cron:session): session closed for user root
  536. Jan 27 08:51:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60664 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  537. Jan 27 08:51:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60674 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  538. Jan 27 08:51:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=195.35.227.201 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=TCP SPT=60670 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  539. Jan 27 08:51:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.248.168.112 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=38028 DPT=3109 WINDOW=65535 RES=0x00 SYN URGP=0
  540. Jan 27 08:51:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=20041 PROTO=TCP SPT=48062 DPT=33927 WINDOW=1024 RES=0x00 SYN URGP=0
  541. Jan 27 08:51:30 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=172.83.47.142 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=48914 DF PROTO=TCP SPT=33802 DPT=443 WINDOW=1392 RES=0x00 ACK RST URGP=0
  542. Jan 27 08:51:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=168.138.70.188 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=11118 DF PROTO=TCP SPT=35773 DPT=443 WINDOW=1392 RES=0x00 ACK RST URGP=0
  543. Jan 27 08:51:53 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=122.169.54.239 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=121 ID=30429 DF PROTO=TCP SPT=62000 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0
  544. Jan 27 08:52:01 host01 CRON[175294]: pam_unix(cron:session): session opened for user root by (uid=0)
  545. Jan 27 08:52:01 host01 CRON[175295]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  546. Jan 27 08:52:01 host01 CRON[175294]: pam_unix(cron:session): session closed for user root
  547. Jan 27 08:52:01 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.99.112.27 DST=46.4.101.201 LEN=433 TOS=0x00 PREC=0x00 TTL=54 ID=3162 DF PROTO=UDP SPT=5062 DPT=5060 LEN=413
  548. Jan 27 08:52:31 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.191.34.108 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43703 PROTO=TCP SPT=54887 DPT=25354 WINDOW=1024 RES=0x00 SYN URGP=0
  549. Jan 27 08:52:40 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=61.177.172.76 DST=46.4.101.201 LEN=67 TOS=0x00 PREC=0x00 TTL=51 ID=56109 DF PROTO=TCP SPT=47370 DPT=22 WINDOW=229 RES=0x00 ACK PSH URGP=0
  550. Jan 27 08:52:40 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=61.177.172.76 DST=46.4.101.201 LEN=724 TOS=0x00 PREC=0x00 TTL=51 ID=56111 DF PROTO=TCP SPT=47370 DPT=22 WINDOW=229 RES=0x00 ACK PSH URGP=0
  551. Jan 27 08:52:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=47.96.161.209 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=46647 DF PROTO=TCP SPT=39862 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  552. Jan 27 08:52:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=63840 PROTO=TCP SPT=54986 DPT=43404 WINDOW=1024 RES=0x00 SYN URGP=0
  553. Jan 27 08:53:01 host01 CRON[175305]: pam_unix(cron:session): session opened for user root by (uid=0)
  554. Jan 27 08:53:01 host01 CRON[175306]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  555. Jan 27 08:53:01 host01 CRON[175305]: pam_unix(cron:session): session closed for user root
  556. Jan 27 08:53:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=73.22.99.214 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=3548 DF PROTO=TCP SPT=48330 DPT=443 WINDOW=1471 RES=0x00 ACK RST URGP=0
  557. Jan 27 08:53:22 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=24.21.61.15 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=117 ID=52738 DF PROTO=TCP SPT=1497 DPT=443 WINDOW=0 RES=0x00 ACK RST URGP=0
  558. Jan 27 08:53:33 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=12728 PROTO=TCP SPT=53701 DPT=5515 WINDOW=1024 RES=0x00 SYN URGP=0
  559. Jan 27 08:53:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=182.225.21.207 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=48567 PROTO=TCP SPT=47491 DPT=23 WINDOW=40355 RES=0x00 SYN URGP=0
  560. Jan 27 08:54:01 host01 CRON[175325]: pam_unix(cron:session): session opened for user root by (uid=0)
  561. Jan 27 08:54:01 host01 CRON[175326]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  562. Jan 27 08:54:01 host01 CRON[175325]: pam_unix(cron:session): session closed for user root
  563. Jan 27 08:55:01 host01 CRON[175343]: pam_unix(cron:session): session opened for user root by (uid=0)
  564. Jan 27 08:55:01 host01 CRON[175344]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  565. Jan 27 08:55:02 host01 CRON[175343]: pam_unix(cron:session): session closed for user root
  566. Jan 27 08:55:06 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=159.75.120.118 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=49825 DF PROTO=TCP SPT=42552 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  567. Jan 27 08:55:46 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.138.16 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=44 ID=29952 PROTO=TCP SPT=50109 DPT=502 WINDOW=1024 RES=0x00 SYN URGP=0
  568. Jan 27 08:55:47 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.146.165.16 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=15773 PROTO=TCP SPT=55850 DPT=33896 WINDOW=1024 RES=0x00 SYN URGP=0
  569. Jan 27 08:55:50 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.216.140.6 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=39280 DPT=8889 WINDOW=65535 RES=0x00 SYN URGP=0
  570. Jan 27 08:55:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=141.98.10.81 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=TCP SPT=33313 DPT=111 WINDOW=65535 RES=0x00 SYN URGP=0
  571. Jan 27 08:56:01 host01 CRON[175376]: pam_unix(cron:session): session opened for user root by (uid=0)
  572. Jan 27 08:56:01 host01 CRON[175377]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  573. Jan 27 08:56:01 host01 CRON[175376]: pam_unix(cron:session): session closed for user root
  574. Jan 27 08:56:14 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=20183 PROTO=TCP SPT=53701 DPT=3911 WINDOW=1024 RES=0x00 SYN URGP=0
  575. Jan 27 08:56:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=180.222.65.192 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=43 ID=28956 DF PROTO=TCP SPT=44452 DPT=443 WINDOW=1492 RES=0x00 ACK FIN URGP=0
  576. Jan 27 08:56:27 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=85.203.20.111 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=58 ID=51689 DF PROTO=TCP SPT=1147 DPT=443 WINDOW=251 RES=0x00 ACK FIN URGP=0
  577. Jan 27 08:56:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=85.203.20.111 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=58 ID=51690 DF PROTO=TCP SPT=1147 DPT=443 WINDOW=251 RES=0x00 ACK FIN URGP=0
  578. Jan 27 08:56:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=170.245.249.46 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=5946 PROTO=TCP SPT=35016 DPT=37215 WINDOW=61631 RES=0x00 SYN URGP=0
  579. Jan 27 08:56:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=111.59.74.23 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=51284 DF PROTO=TCP SPT=34935 DPT=5207 WINDOW=0 RES=0x00 SYN URGP=0
  580. Jan 27 08:56:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=46.232.211.220 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=54 ID=6288 DF PROTO=TCP SPT=29012 DPT=443 WINDOW=2896 RES=0x00 ACK RST URGP=0
  581. Jan 27 08:56:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=116.62.213.103 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=40261 DF PROTO=TCP SPT=35644 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  582. Jan 27 08:57:01 host01 CRON[175397]: pam_unix(cron:session): session opened for user root by (uid=0)
  583. Jan 27 08:57:01 host01 CRON[175398]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  584. Jan 27 08:57:01 host01 CRON[175397]: pam_unix(cron:session): session closed for user root
  585. Jan 27 08:57:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.142.125.163 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=41 ID=5251 PROTO=TCP SPT=56500 DPT=39872 WINDOW=1024 RES=0x00 SYN URGP=0
  586. Jan 27 08:57:33 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.27 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=7147 PROTO=TCP SPT=23204 DPT=502 WINDOW=1024 RES=0x00 SYN URGP=0
  587. Jan 27 08:57:48 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=20.127.122.57 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=25714 PROTO=TCP SPT=45152 DPT=55142 WINDOW=1024 RES=0x00 SYN URGP=0
  588. Jan 27 08:58:01 host01 CRON[175424]: pam_unix(cron:session): session opened for user root by (uid=0)
  589. Jan 27 08:58:01 host01 CRON[175425]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  590. Jan 27 08:58:01 host01 CRON[175424]: pam_unix(cron:session): session closed for user root
  591. Jan 27 08:58:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=41902 PROTO=TCP SPT=53701 DPT=5212 WINDOW=1024 RES=0x00 SYN URGP=0
  592. Jan 27 08:58:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=4323 PROTO=TCP SPT=54952 DPT=5049 WINDOW=1024 RES=0x00 SYN URGP=0
  593. Jan 27 08:58:51 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=46.10.132.221 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=57 ID=4571 DF PROTO=TCP SPT=37822 DPT=443 WINDOW=2871 RES=0x00 ACK FIN URGP=0
  594. Jan 27 08:58:53 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=13008 PROTO=TCP SPT=53701 DPT=3757 WINDOW=1024 RES=0x00 SYN URGP=0
  595. Jan 27 08:58:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=103.72.176.57 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=118 ID=59756 DF PROTO=TCP SPT=51055 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  596. Jan 27 08:59:01 host01 CRON[175440]: pam_unix(cron:session): session opened for user root by (uid=0)
  597. Jan 27 08:59:01 host01 CRON[175441]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  598. Jan 27 08:59:02 host01 CRON[175440]: pam_unix(cron:session): session closed for user root
  599. Jan 27 08:59:19 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.110 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=59885 PROTO=TCP SPT=41824 DPT=47098 WINDOW=1024 RES=0x00 SYN URGP=0
  600. Jan 27 08:59:48 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.142.125.69 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=41 ID=48949 PROTO=TCP SPT=46960 DPT=5135 WINDOW=1024 RES=0x00 SYN URGP=0
  601. Jan 27 08:59:55 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=217.138.222.84 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=55 ID=4212 DF PROTO=TCP SPT=47606 DPT=443 WINDOW=1575 RES=0x00 ACK RST URGP=0
  602. Jan 27 09:00:01 host01 CRON[175474]: pam_unix(cron:session): session opened for user root by (uid=0)
  603. Jan 27 09:00:01 host01 CRON[175475]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  604. Jan 27 09:00:19 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=98.128.173.118 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=31108 DF PROTO=TCP SPT=46298 DPT=443 WINDOW=1472 RES=0x00 ACK RST URGP=0
  605. Jan 27 09:00:35 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=43.129.33.99 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=27989 DF PROTO=TCP SPT=29013 DPT=12497 WINDOW=65535 RES=0x00 SYN URGP=0
  606. Jan 27 09:00:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=95.111.235.212 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=36850 DPT=60001 WINDOW=65535 RES=0x00 SYN URGP=0
  607. Jan 27 09:00:50 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=184.75.223.195 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=49 ID=45557 DF PROTO=TCP SPT=32809 DPT=443 WINDOW=1575 RES=0x00 ACK RST URGP=0
  608. Jan 27 09:00:52 host01 CRON[175474]: pam_unix(cron:session): session closed for user root
  609. Jan 27 09:00:53 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.142.125.95 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=41 ID=23903 PROTO=TCP SPT=49717 DPT=9455 WINDOW=1024 RES=0x00 SYN URGP=0
  610. Jan 27 09:01:01 host01 CRON[175587]: pam_unix(cron:session): session opened for user root by (uid=0)
  611. Jan 27 09:01:01 host01 CRON[175588]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  612. Jan 27 09:01:02 host01 CRON[175587]: pam_unix(cron:session): session closed for user root
  613. Jan 27 09:01:12 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.143.200.50 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=42156 PROTO=TCP SPT=52936 DPT=49523 WINDOW=1024 RES=0x00 SYN URGP=0
  614. Jan 27 09:01:21 host01 sshd[175600]: error: kex_exchange_identification: Connection closed by remote host
  615. Jan 27 09:01:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=76.19.13.5 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=14869 DF PROTO=TCP SPT=39968 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  616. Jan 27 09:01:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=76.19.13.5 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=61045 DF PROTO=TCP SPT=39970 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  617. Jan 27 09:01:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=184.105.247.238 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=TCP SPT=40768 DPT=6443 WINDOW=65535 RES=0x00 SYN URGP=0
  618. Jan 27 09:01:54 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=115.236.81.66 DST=46.4.101.201 LEN=700 TOS=0x00 PREC=0x00 TTL=49 ID=52203 DF PROTO=TCP SPT=20815 DPT=22 WINDOW=58 RES=0x00 ACK PSH URGP=0
  619. Jan 27 09:02:01 host01 CRON[175604]: pam_unix(cron:session): session opened for user root by (uid=0)
  620. Jan 27 09:02:01 host01 CRON[175605]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  621. Jan 27 09:02:01 host01 CRON[175604]: pam_unix(cron:session): session closed for user root
  622. Jan 27 09:02:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=172.98.80.36 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=0 DF PROTO=TCP SPT=58372 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  623. Jan 27 09:02:24 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.89.200.204 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=5624 DF PROTO=TCP SPT=51744 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  624. Jan 27 09:02:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=76.19.13.5 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=20777 DF PROTO=TCP SPT=40026 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  625. Jan 27 09:02:43 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=37301 PROTO=TCP SPT=54952 DPT=5370 WINDOW=1024 RES=0x00 SYN URGP=0
  626. Jan 27 09:03:01 host01 CRON[175620]: pam_unix(cron:session): session opened for user root by (uid=0)
  627. Jan 27 09:03:01 host01 CRON[175621]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  628. Jan 27 09:03:01 host01 CRON[175620]: pam_unix(cron:session): session closed for user root
  629. Jan 27 09:03:04 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=170.106.115.15 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=53809 DF PROTO=TCP SPT=54833 DPT=6601 WINDOW=65535 RES=0x00 SYN URGP=0
  630. Jan 27 09:03:13 host01 supervisord[548]: 2022-01-27 09:03:13,585 INFO exited: artisan-queue_03 (exit status 0; expected)
  631. Jan 27 09:03:13 host01 supervisord[548]: 2022-01-27 09:03:13,587 INFO spawned: 'artisan-queue_03' with pid 175629
  632. Jan 27 09:03:13 host01 supervisord[548]: 2022-01-27 09:03:13,588 INFO success: artisan-queue_03 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  633. Jan 27 09:03:24 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=193.57.40.49 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=63843 PROTO=TCP SPT=50712 DPT=8320 WINDOW=1024 RES=0x00 SYN URGP=0
  634. Jan 27 09:03:38 host01 supervisord[548]: 2022-01-27 09:03:38,872 INFO exited: artisan-queue_01 (exit status 0; expected)
  635. Jan 27 09:03:38 host01 supervisord[548]: 2022-01-27 09:03:38,879 INFO spawned: 'artisan-queue_01' with pid 175637
  636. Jan 27 09:03:38 host01 supervisord[548]: 2022-01-27 09:03:38,880 INFO success: artisan-queue_01 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  637. Jan 27 09:03:48 host01 supervisord[548]: 2022-01-27 09:03:48,416 INFO exited: artisan-queue_04 (exit status 0; expected)
  638. Jan 27 09:03:48 host01 supervisord[548]: 2022-01-27 09:03:48,419 INFO spawned: 'artisan-queue_04' with pid 175644
  639. Jan 27 09:03:48 host01 supervisord[548]: 2022-01-27 09:03:48,420 INFO success: artisan-queue_04 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  640. Jan 27 09:03:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=10225 PROTO=TCP SPT=48062 DPT=55110 WINDOW=1024 RES=0x00 SYN URGP=0
  641. Jan 27 09:04:01 host01 CRON[175651]: pam_unix(cron:session): session opened for user root by (uid=0)
  642. Jan 27 09:04:01 host01 CRON[175652]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  643. Jan 27 09:04:01 host01 CRON[175651]: pam_unix(cron:session): session closed for user root
  644. Jan 27 09:04:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=36318 PROTO=TCP SPT=53701 DPT=4510 WINDOW=1024 RES=0x00 SYN URGP=0
  645. Jan 27 09:04:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.199.92 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=43807 DF PROTO=TCP SPT=37436 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  646. Jan 27 09:04:49 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=13.209.213.56 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=49449 DF PROTO=TCP SPT=47422 DPT=6379 WINDOW=62727 RES=0x00 SYN URGP=0
  647. Jan 27 09:04:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=106.75.167.250 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=239 ID=36609 PROTO=TCP SPT=58914 DPT=1023 WINDOW=1024 RES=0x00 SYN URGP=0
  648. Jan 27 09:05:01 host01 CRON[175663]: pam_unix(cron:session): session opened for user root by (uid=0)
  649. Jan 27 09:05:01 host01 CRON[175664]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  650. Jan 27 09:05:02 host01 CRON[175663]: pam_unix(cron:session): session closed for user root
  651. Jan 27 09:05:22 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.199.92 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=43813 DF PROTO=TCP SPT=37436 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  652. Jan 27 09:05:54 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=39.106.250.110 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=31187 DF PROTO=TCP SPT=48434 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  653. Jan 27 09:06:01 host01 CRON[175687]: pam_unix(cron:session): session opened for user root by (uid=0)
  654. Jan 27 09:06:01 host01 CRON[175688]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  655. Jan 27 09:06:01 host01 CRON[175687]: pam_unix(cron:session): session closed for user root
  656. Jan 27 09:06:16 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.138.68 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=44 ID=39508 PROTO=TCP SPT=4527 DPT=2091 WINDOW=1024 RES=0x00 SYN URGP=0
  657. Jan 27 09:06:31 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.145.17 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=43 ID=1617 PROTO=TCP SPT=36016 DPT=64110 WINDOW=1024 RES=0x00 SYN URGP=0
  658. Jan 27 09:07:01 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=107.155.48.112 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=6893 DF PROTO=TCP SPT=39360 DPT=88 WINDOW=29200 RES=0x00 SYN URGP=0
  659. Jan 27 09:07:01 host01 CRON[175725]: pam_unix(cron:session): session opened for user root by (uid=0)
  660. Jan 27 09:07:01 host01 CRON[175726]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  661. Jan 27 09:07:01 host01 CRON[175725]: pam_unix(cron:session): session closed for user root
  662. Jan 27 09:07:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=6482 PROTO=TCP SPT=54952 DPT=33966 WINDOW=1024 RES=0x00 SYN URGP=0
  663. Jan 27 09:07:16 host01 sshd[175754]: Unable to negotiate with 61.177.172.175 port 41800: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
  664. Jan 27 09:07:32 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=216.244.84.187 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=36094 PROTO=TCP SPT=54416 DPT=9834 WINDOW=1024 RES=0x00 SYN URGP=0
  665. Jan 27 09:08:01 host01 CRON[175778]: pam_unix(cron:session): session opened for user root by (uid=0)
  666. Jan 27 09:08:01 host01 CRON[175779]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  667. Jan 27 09:08:01 host01 CRON[175778]: pam_unix(cron:session): session closed for user root
  668. Jan 27 09:08:28 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=78.128.113.250 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=7116 PROTO=TCP SPT=50648 DPT=7590 WINDOW=1024 RES=0x00 SYN URGP=0
  669. Jan 27 09:08:55 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.110 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19150 PROTO=TCP SPT=41824 DPT=43268 WINDOW=1024 RES=0x00 SYN URGP=0
  670. Jan 27 09:09:01 host01 CRON[175795]: pam_unix(cron:session): session opened for user root by (uid=0)
  671. Jan 27 09:09:01 host01 CRON[175796]: pam_unix(cron:session): session opened for user root by (uid=0)
  672. Jan 27 09:09:01 host01 CRON[175798]: (root) CMD (  [ -x /usr/lib/php/sessionclean ] && if [ ! -d /run/systemd/system ]; then /usr/lib/php/sessionclean; fi)
  673. Jan 27 09:09:01 host01 CRON[175797]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  674. Jan 27 09:09:01 host01 CRON[175795]: pam_unix(cron:session): session closed for user root
  675. Jan 27 09:09:02 host01 CRON[175796]: pam_unix(cron:session): session closed for user root
  676. Jan 27 09:09:03 host01 systemd[1]: Starting Clean php session files...
  677. Jan 27 09:09:03 host01 systemd[1]: phpsessionclean.service: Succeeded.
  678. Jan 27 09:09:03 host01 systemd[1]: Finished Clean php session files.
  679. Jan 27 09:09:23 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=51.89.36.201 DST=46.4.101.201 LEN=42 TOS=0x00 PREC=0x00 TTL=53 ID=35325 DF PROTO=UDP SPT=1434 DPT=8081 LEN=22
  680. Jan 27 09:09:25 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=51.15.231.196 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=54603 PROTO=TCP SPT=47338 DPT=50050 WINDOW=1024 RES=0x00 SYN URGP=0
  681. Jan 27 09:09:34 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.120 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=60585 PROTO=TCP SPT=47907 DPT=33933 WINDOW=1024 RES=0x00 SYN URGP=0
  682. Jan 27 09:09:43 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=53201 PROTO=TCP SPT=54986 DPT=12387 WINDOW=1024 RES=0x00 SYN URGP=0
  683. Jan 27 09:09:46 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=47634 PROTO=TCP SPT=48062 DPT=42835 WINDOW=1024 RES=0x00 SYN URGP=0
  684. Jan 27 09:09:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.37 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=5177 PROTO=TCP SPT=48107 DPT=10007 WINDOW=1024 RES=0x00 SYN URGP=0
  685. Jan 27 09:10:00 host01 sshd[175873]: error: kex_exchange_identification: Connection closed by remote host
  686. Jan 27 09:10:01 host01 CRON[175874]: pam_unix(cron:session): session opened for user root by (uid=0)
  687. Jan 27 09:10:01 host01 CRON[175875]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  688. Jan 27 09:10:01 host01 CRON[175874]: pam_unix(cron:session): session closed for user root
  689. Jan 27 09:10:03 host01 sshd[175891]: error: kex_exchange_identification: Connection closed by remote host
  690. Jan 27 09:10:17 host01 sshd[175893]: Connection reset by 47.242.49.236 port 37178 [preauth]
  691. Jan 27 09:10:17 host01 sshd[175895]: Connection reset by 47.242.49.236 port 38610 [preauth]
  692. Jan 27 09:10:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=36816 PROTO=TCP SPT=54952 DPT=45258 WINDOW=1024 RES=0x00 SYN URGP=0
  693. Jan 27 09:10:53 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=47495 PROTO=TCP SPT=54952 DPT=33945 WINDOW=1024 RES=0x00 SYN URGP=0
  694. Jan 27 09:10:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=53416 PROTO=TCP SPT=54986 DPT=14242 WINDOW=1024 RES=0x00 SYN URGP=0
  695. Jan 27 09:11:01 host01 CRON[175929]: pam_unix(cron:session): session opened for user root by (uid=0)
  696. Jan 27 09:11:01 host01 CRON[175930]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  697. Jan 27 09:11:01 host01 CRON[175929]: pam_unix(cron:session): session closed for user root
  698. Jan 27 09:11:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=150.136.239.194 DST=46.4.101.201 LEN=103 TOS=0x00 PREC=0x00 TTL=54 ID=64249 DF PROTO=UDP SPT=11211 DPT=5353 LEN=83
  699. Jan 27 09:12:01 host01 CRON[175950]: pam_unix(cron:session): session opened for user root by (uid=0)
  700. Jan 27 09:12:01 host01 CRON[175951]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  701. Jan 27 09:12:02 host01 CRON[175950]: pam_unix(cron:session): session closed for user root
  702. Jan 27 09:12:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=65.49.20.69 DST=46.4.101.201 LEN=113 TOS=0x00 PREC=0x00 TTL=52 ID=6903 DF PROTO=UDP SPT=56756 DPT=161 LEN=93
  703. Jan 27 09:12:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=146.56.175.64 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=28781 DF PROTO=TCP SPT=58310 DPT=6379 WINDOW=62720 RES=0x00 SYN URGP=0
  704. Jan 27 09:12:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=36899 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  705. Jan 27 09:12:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=36899 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  706. Jan 27 09:12:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=36899 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  707. Jan 27 09:12:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.94.138.24 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=44 ID=15848 PROTO=TCP SPT=53300 DPT=50805 WINDOW=1024 RES=0x00 SYN URGP=0
  708. Jan 27 09:13:00 host01 sshd[175990]: Invalid user akiwifi from 45.134.26.143 port 16891
  709. Jan 27 09:13:00 host01 sshd[175990]: pam_unix(sshd:auth): check pass; user unknown
  710. Jan 27 09:13:00 host01 sshd[175990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.134.26.143
  711. Jan 27 09:13:01 host01 CRON[175992]: pam_unix(cron:session): session opened for user root by (uid=0)
  712. Jan 27 09:13:01 host01 CRON[175993]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  713. Jan 27 09:13:01 host01 CRON[175992]: pam_unix(cron:session): session closed for user root
  714. Jan 27 09:13:02 host01 sshd[175990]: Failed password for invalid user akiwifi from 45.134.26.143 port 16891 ssh2
  715. Jan 27 09:13:02 host01 sshd[175990]: Received disconnect from 45.134.26.143 port 16891:11: Client disconnecting normally [preauth]
  716. Jan 27 09:13:02 host01 sshd[175990]: Disconnected from invalid user akiwifi 45.134.26.143 port 16891 [preauth]
  717. Jan 27 09:13:32 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=39.105.110.103 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=53904 DF PROTO=TCP SPT=59750 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  718. Jan 27 09:13:40 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=159.75.89.60 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=44185 DF PROTO=TCP SPT=55044 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  719. Jan 27 09:13:47 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=146.88.240.4 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=56230 DPT=3389 LEN=24
  720. Jan 27 09:14:01 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=103.203.57.23 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=TCP SPT=59746 DPT=9999 WINDOW=65535 RES=0x00 SYN URGP=0
  721. Jan 27 09:14:01 host01 CRON[176006]: pam_unix(cron:session): session opened for user root by (uid=0)
  722. Jan 27 09:14:01 host01 CRON[176007]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  723. Jan 27 09:14:01 host01 CRON[176006]: pam_unix(cron:session): session closed for user root
  724. Jan 27 09:14:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=211.228.157.21 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=58484 PROTO=TCP SPT=30012 DPT=37215 WINDOW=30651 RES=0x00 SYN URGP=0
  725. Jan 27 09:14:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=93.164.137.17 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=57 ID=33773 DF PROTO=TCP SPT=43970 DPT=443 WINDOW=2863 RES=0x00 ACK RST URGP=0
  726. Jan 27 09:14:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=74.121.151.234 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF PROTO=TCP SPT=48010 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  727. Jan 27 09:14:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=74.121.151.234 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF PROTO=TCP SPT=48010 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  728. Jan 27 09:14:31 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=180.149.126.61 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=54321 PROTO=TCP SPT=17062 DPT=8626 WINDOW=65535 RES=0x00 SYN URGP=0
  729. Jan 27 09:14:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=38116 PROTO=TCP SPT=53701 DPT=4536 WINDOW=1024 RES=0x00 SYN URGP=0
  730. Jan 27 09:14:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.41.76.163 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=1939 DF PROTO=TCP SPT=59043 DPT=443 WINDOW=123 RES=0x00 ACK URGP=0
  731. Jan 27 09:14:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.41.76.163 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=0 DF PROTO=TCP SPT=59043 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  732. Jan 27 09:14:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.41.76.163 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=1941 DF PROTO=TCP SPT=59043 DPT=443 WINDOW=123 RES=0x00 ACK URGP=0
  733. Jan 27 09:15:00 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.41.76.163 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=0 DF PROTO=TCP SPT=59043 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  734. Jan 27 09:15:00 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.41.76.163 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=1943 DF PROTO=TCP SPT=59043 DPT=443 WINDOW=123 RES=0x00 ACK URGP=0
  735. Jan 27 09:15:01 host01 CRON[176021]: pam_unix(cron:session): session opened for user root by (uid=0)
  736. Jan 27 09:15:01 host01 CRON[176022]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  737. Jan 27 09:15:02 host01 CRON[176021]: pam_unix(cron:session): session closed for user root
  738. Jan 27 09:15:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.41.76.163 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=1944 DF PROTO=TCP SPT=59043 DPT=443 WINDOW=123 RES=0x00 ACK URGP=0
  739. Jan 27 09:15:05 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=116.86.236.61 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=3513 PROTO=TCP SPT=41827 DPT=37215 WINDOW=25007 RES=0x00 SYN URGP=0
  740. Jan 27 09:15:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=178.176.175.138 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=110 ID=19987 DF PROTO=TCP SPT=60150 DPT=465 WINDOW=65535 RES=0x00 SYN URGP=0
  741. Jan 27 09:15:40 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.142.125.71 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=41 ID=31975 PROTO=TCP SPT=50486 DPT=2550 WINDOW=1024 RES=0x00 SYN URGP=0
  742. Jan 27 09:15:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.76 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=9643 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  743. Jan 27 09:15:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.76 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=9643 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  744. Jan 27 09:15:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.76 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=9643 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  745. Jan 27 09:15:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.76 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=9643 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  746. Jan 27 09:15:52 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.76 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=9643 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  747. Jan 27 09:16:02 host01 CRON[176043]: pam_unix(cron:session): session opened for user root by (uid=0)
  748. Jan 27 09:16:02 host01 CRON[176044]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  749. Jan 27 09:16:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.193.30.225 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=59 ID=36043 DF PROTO=TCP SPT=54400 DPT=23 WINDOW=64240 RES=0x00 SYN URGP=0
  750. Jan 27 09:16:02 host01 CRON[176043]: pam_unix(cron:session): session closed for user root
  751. Jan 27 09:16:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.193.30.225 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=59 ID=36044 DF PROTO=TCP SPT=54400 DPT=23 WINDOW=64240 RES=0x00 SYN URGP=0
  752. Jan 27 09:16:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=36667 PROTO=TCP SPT=53701 DPT=4890 WINDOW=1024 RES=0x00 SYN URGP=0
  753. Jan 27 09:17:01 host01 CRON[176059]: pam_unix(cron:session): session opened for user root by (uid=0)
  754. Jan 27 09:17:01 host01 CRON[176060]: pam_unix(cron:session): session opened for user root by (uid=0)
  755. Jan 27 09:17:01 host01 CRON[176062]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  756. Jan 27 09:17:01 host01 CRON[176061]: (root) CMD (   cd / && run-parts --report /etc/cron.hourly)
  757. Jan 27 09:17:01 host01 CRON[176059]: pam_unix(cron:session): session closed for user root
  758. Jan 27 09:17:01 host01 CRON[176060]: pam_unix(cron:session): session closed for user root
  759. Jan 27 09:17:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=92.63.197.86 DST=46.4.101.201 LEN=40 TOS=0x02 PREC=0x00 TTL=123 ID=256 PROTO=TCP SPT=13883 DPT=8080 WINDOW=16384 RES=0x00 SYN URGP=0
  760. Jan 27 09:17:15 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=154.3.40.101 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=49 ID=10943 DF PROTO=TCP SPT=35014 DPT=443 WINDOW=1575 RES=0x00 ACK FIN URGP=0
  761. Jan 27 09:17:56 host01 sshd[176080]: Unable to negotiate with 115.236.81.66 port 27013: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
  762. Jan 27 09:17:56 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=47.97.217.200 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=46740 DF PROTO=TCP SPT=44176 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0
  763. Jan 27 09:17:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.65.134.166 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=38478 PROTO=TCP SPT=36785 DPT=465 WINDOW=1024 RES=0x00 SYN URGP=0
  764. Jan 27 09:18:01 host01 CRON[176082]: pam_unix(cron:session): session opened for user root by (uid=0)
  765. Jan 27 09:18:01 host01 CRON[176083]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  766. Jan 27 09:18:01 host01 CRON[176082]: pam_unix(cron:session): session closed for user root
  767. Jan 27 09:18:11 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.95.147.254 DST=46.4.101.201 LEN=441 TOS=0x00 PREC=0x00 TTL=57 ID=32811 DF PROTO=UDP SPT=5195 DPT=5060 LEN=421
  768. Jan 27 09:18:31 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=48358 PROTO=TCP SPT=53701 DPT=1654 WINDOW=1024 RES=0x00 SYN URGP=0
  769. Jan 27 09:18:50 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=98.128.173.118 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=53645 DF PROTO=TCP SPT=50234 DPT=443 WINDOW=2871 RES=0x00 ACK RST URGP=0
  770. Jan 27 09:19:01 host01 CRON[176101]: pam_unix(cron:session): session opened for user root by (uid=0)
  771. Jan 27 09:19:01 host01 CRON[176102]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  772. Jan 27 09:19:01 host01 CRON[176101]: pam_unix(cron:session): session closed for user root
  773. Jan 27 09:19:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=64.62.197.233 DST=46.4.101.201 LEN=42 TOS=0x00 PREC=0x00 TTL=53 ID=60672 DF PROTO=UDP SPT=59910 DPT=11211 LEN=22
  774. Jan 27 09:19:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=40397 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  775. Jan 27 09:19:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=40397 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  776. Jan 27 09:19:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=40397 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  777. Jan 27 09:19:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=40397 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  778. Jan 27 09:19:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=52323 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  779. Jan 27 09:19:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=52323 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  780. Jan 27 09:19:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=52323 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  781. Jan 27 09:19:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=52323 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  782. Jan 27 09:19:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=78.128.113.250 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19981 PROTO=TCP SPT=50648 DPT=4285 WINDOW=1024 RES=0x00 SYN URGP=0
  783. Jan 27 09:19:18 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.110 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=64479 PROTO=TCP SPT=41824 DPT=46571 WINDOW=1024 RES=0x00 SYN URGP=0
  784. Jan 27 09:19:24 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=174.7.155.49 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=114 ID=47239 DF PROTO=TCP SPT=59616 DPT=443 WINDOW=0 RES=0x00 ACK RST URGP=0
  785. Jan 27 09:19:25 host01 sshd[176116]: Connection closed by 178.27.114.143 port 37604 [preauth]
  786. Jan 27 09:19:25 host01 sshd[176118]: Connection closed by 178.27.114.143 port 37606 [preauth]
  787. Jan 27 09:19:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.37 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=15814 PROTO=TCP SPT=48107 DPT=4044 WINDOW=1024 RES=0x00 SYN URGP=0
  788. Jan 27 09:20:01 host01 CRON[176123]: pam_unix(cron:session): session opened for user root by (uid=0)
  789. Jan 27 09:20:01 host01 CRON[176124]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  790. Jan 27 09:20:02 host01 CRON[176123]: pam_unix(cron:session): session closed for user root
  791. Jan 27 09:20:07 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=45461 PROTO=TCP SPT=53701 DPT=3737 WINDOW=1024 RES=0x00 SYN URGP=0
  792. Jan 27 09:20:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=39.107.120.166 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=34668 DF PROTO=TCP SPT=41386 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  793. Jan 27 09:20:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=39.106.96.115 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=38749 PROTO=TCP SPT=51155 DPT=2375 WINDOW=1024 RES=0x00 SYN URGP=0
  794. Jan 27 09:21:01 host01 CRON[176143]: pam_unix(cron:session): session opened for user root by (uid=0)
  795. Jan 27 09:21:01 host01 CRON[176144]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  796. Jan 27 09:21:01 host01 CRON[176143]: pam_unix(cron:session): session closed for user root
  797. Jan 27 09:21:08 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=65347 PROTO=TCP SPT=53701 DPT=2399 WINDOW=1024 RES=0x00 SYN URGP=0
  798. Jan 27 09:21:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.199.63.88 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=18582 DF PROTO=TCP SPT=55946 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  799. Jan 27 09:21:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43677 PROTO=TCP SPT=53701 DPT=5898 WINDOW=1024 RES=0x00 SYN URGP=0
  800. Jan 27 09:22:01 host01 CRON[176154]: pam_unix(cron:session): session opened for user root by (uid=0)
  801. Jan 27 09:22:01 host01 CRON[176155]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  802. Jan 27 09:22:01 host01 CRON[176154]: pam_unix(cron:session): session closed for user root
  803. Jan 27 09:22:09 host01 kernel: perf: interrupt took too long (4979 > 4912), lowering kernel.perf_event_max_sample_rate to 40000
  804. Jan 27 09:22:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=134.209.144.63 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=36199 PROTO=TCP SPT=51546 DPT=948 WINDOW=1024 RES=0x00 SYN URGP=0
  805. Jan 27 09:22:22 host01 supervisord[548]: 2022-01-27 09:22:22,039 INFO exited: artisan-queue_00 (exit status 0; expected)
  806. Jan 27 09:22:22 host01 supervisord[548]: 2022-01-27 09:22:22,041 INFO spawned: 'artisan-queue_00' with pid 176167
  807. Jan 27 09:22:22 host01 supervisord[548]: 2022-01-27 09:22:22,042 INFO success: artisan-queue_00 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  808. Jan 27 09:22:32 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=138.199.32.99 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=TCP SPT=56445 DPT=143 WINDOW=65535 RES=0x00 SYN URGP=0
  809. Jan 27 09:22:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.134.144.51 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=64959 PROTO=TCP SPT=51705 DPT=5061 WINDOW=1024 RES=0x00 SYN URGP=0
  810. Jan 27 09:23:01 host01 CRON[176226]: pam_unix(cron:session): session opened for user root by (uid=0)
  811. Jan 27 09:23:01 host01 CRON[176227]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  812. Jan 27 09:23:01 host01 CRON[176226]: pam_unix(cron:session): session closed for user root
  813. Jan 27 09:23:19 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=49.232.82.107 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=61927 DF PROTO=TCP SPT=42404 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  814. Jan 27 09:23:22 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.218.149.123 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=60478 DF PROTO=TCP SPT=53974 DPT=82 WINDOW=14600 RES=0x00 SYN URGP=0
  815. Jan 27 09:23:39 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.191.34.108 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=45795 PROTO=TCP SPT=54887 DPT=36970 WINDOW=1024 RES=0x00 SYN URGP=0
  816. Jan 27 09:24:01 host01 CRON[176242]: pam_unix(cron:session): session opened for user root by (uid=0)
  817. Jan 27 09:24:01 host01 CRON[176243]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  818. Jan 27 09:24:02 host01 CRON[176242]: pam_unix(cron:session): session closed for user root
  819. Jan 27 09:24:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=146.88.240.4 DST=46.4.101.201 LEN=49 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=53679 DPT=32410 LEN=29
  820. Jan 27 09:24:14 host01 supervisord[548]: 2022-01-27 09:24:14,196 INFO exited: artisan-queue_05 (exit status 0; expected)
  821. Jan 27 09:24:14 host01 supervisord[548]: 2022-01-27 09:24:14,197 INFO spawned: 'artisan-queue_05' with pid 176253
  822. Jan 27 09:24:14 host01 supervisord[548]: 2022-01-27 09:24:14,198 INFO success: artisan-queue_05 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  823. Jan 27 09:24:22 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=1.117.181.64 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=19513 DF PROTO=TCP SPT=41152 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  824. Jan 27 09:24:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=14.97.118.150 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=20213 DF PROTO=TCP SPT=53779 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0
  825. Jan 27 09:25:01 host01 CRON[176313]: pam_unix(cron:session): session opened for user root by (uid=0)
  826. Jan 27 09:25:01 host01 CRON[176314]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  827. Jan 27 09:25:01 host01 CRON[176313]: pam_unix(cron:session): session closed for user root
  828. Jan 27 09:25:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=5.254.56.242 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=58 ID=0 PROTO=TCP SPT=17600 DPT=6984 WINDOW=0 RES=0x00 SYN URGP=0
  829. Jan 27 09:25:13 host01 supervisord[548]: 2022-01-27 09:25:13,183 INFO exited: artisan-queue_02 (exit status 0; expected)
  830. Jan 27 09:25:13 host01 supervisord[548]: 2022-01-27 09:25:13,186 INFO spawned: 'artisan-queue_02' with pid 176332
  831. Jan 27 09:25:13 host01 supervisord[548]: 2022-01-27 09:25:13,200 INFO success: artisan-queue_02 entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
  832. Jan 27 09:25:36 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.66 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=13378 PROTO=TCP SPT=26572 DPT=1967 WINDOW=1024 RES=0x00 SYN URGP=0
  833. Jan 27 09:25:53 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=65227 PROTO=TCP SPT=41820 DPT=65521 WINDOW=1024 RES=0x00 SYN URGP=0
  834. Jan 27 09:26:01 host01 CRON[176348]: pam_unix(cron:session): session opened for user root by (uid=0)
  835. Jan 27 09:26:01 host01 CRON[176349]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  836. Jan 27 09:26:01 host01 CRON[176348]: pam_unix(cron:session): session closed for user root
  837. Jan 27 09:26:06 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=59252 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK URGP=0
  838. Jan 27 09:26:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=22055 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK URGP=0
  839. Jan 27 09:26:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=123.56.14.58 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=28246 PROTO=TCP SPT=51697 DPT=2375 WINDOW=1024 RES=0x00 SYN URGP=0
  840. Jan 27 09:26:16 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=10008 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK URGP=0
  841. Jan 27 09:26:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.206.59 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=58 ID=61414 DF PROTO=TCP SPT=45190 DPT=443 WINDOW=1594 RES=0x00 ACK FIN URGP=0
  842. Jan 27 09:26:28 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=30904 PROTO=TCP SPT=53701 DPT=4525 WINDOW=1024 RES=0x00 SYN URGP=0
  843. Jan 27 09:26:41 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=24.21.61.15 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=117 ID=52998 DF PROTO=TCP SPT=2405 DPT=443 WINDOW=0 RES=0x00 ACK RST URGP=0
  844. Jan 27 09:26:56 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=517 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK FIN URGP=0
  845. Jan 27 09:26:56 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=12061 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK FIN URGP=0
  846. Jan 27 09:26:56 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=20314 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK FIN URGP=0
  847. Jan 27 09:26:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=26342 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK FIN URGP=0
  848. Jan 27 09:26:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=53540 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK FIN URGP=0
  849. Jan 27 09:26:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=8610 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK FIN URGP=0
  850. Jan 27 09:26:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=49275 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK FIN URGP=0
  851. Jan 27 09:27:01 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=89.248.168.51 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=54744 DPT=2121 WINDOW=65535 RES=0x00 SYN URGP=0
  852. Jan 27 09:27:01 host01 CRON[176364]: pam_unix(cron:session): session opened for user root by (uid=0)
  853. Jan 27 09:27:01 host01 CRON[176365]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  854. Jan 27 09:27:02 host01 CRON[176364]: pam_unix(cron:session): session closed for user root
  855. Jan 27 09:27:06 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.64.161.207 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=53 ID=46186 PROTO=TCP SPT=7620 DPT=443 WINDOW=768 RES=0x00 ACK FIN URGP=0
  856. Jan 27 09:27:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=60.6.218.251 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=28588 DF PROTO=TCP SPT=56748 DPT=17417 WINDOW=0 RES=0x00 SYN URGP=0
  857. Jan 27 09:27:23 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.199.92 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=36294 DF PROTO=TCP SPT=38594 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  858. Jan 27 09:27:39 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.199.92 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=36298 DF PROTO=TCP SPT=38594 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  859. Jan 27 09:28:01 host01 CRON[176390]: pam_unix(cron:session): session opened for user root by (uid=0)
  860. Jan 27 09:28:01 host01 CRON[176391]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  861. Jan 27 09:28:01 host01 CRON[176390]: pam_unix(cron:session): session closed for user root
  862. Jan 27 09:28:01 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=184.105.139.72 DST=46.4.101.201 LEN=51 TOS=0x00 PREC=0x00 TTL=53 ID=9040 DF PROTO=UDP SPT=54941 DPT=623 LEN=31
  863. Jan 27 09:28:27 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=181.214.199.92 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=36300 DF PROTO=TCP SPT=38594 DPT=0 WINDOW=64240 RES=0x00 SYN URGP=0
  864. Jan 27 09:28:38 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.142.236.38 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=118 ID=10888 PROTO=TCP SPT=26200 DPT=8765 WINDOW=15652 RES=0x00 SYN URGP=0
  865. Jan 27 09:29:00 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=221.225.35.218 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=7553 DF PROTO=TCP SPT=40327 DPT=62486 WINDOW=0 RES=0x00 SYN URGP=0
  866. Jan 27 09:29:01 host01 CRON[176441]: pam_unix(cron:session): session opened for user root by (uid=0)
  867. Jan 27 09:29:01 host01 CRON[176442]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  868. Jan 27 09:29:01 host01 CRON[176441]: pam_unix(cron:session): session closed for user root
  869. Jan 27 09:29:33 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.169 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=36307 PROTO=TCP SPT=48059 DPT=4123 WINDOW=1024 RES=0x00 SYN URGP=0
  870. Jan 27 09:29:40 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=198.199.66.47 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=8885 PROTO=TCP SPT=60000 DPT=24122 WINDOW=1024 RES=0x00 SYN URGP=0
  871. Jan 27 09:30:01 host01 CRON[176460]: pam_unix(cron:session): session opened for user root by (uid=0)
  872. Jan 27 09:30:01 host01 CRON[176461]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  873. Jan 27 09:30:02 host01 CRON[176460]: pam_unix(cron:session): session closed for user root
  874. Jan 27 09:30:02 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=173.68.167.6 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=14022 PROTO=TCP SPT=33694 DPT=23 WINDOW=24447 RES=0x00 SYN URGP=0
  875. Jan 27 09:30:27 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=184.105.139.97 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=45561 DPT=631 WINDOW=65535 RES=0x00 SYN URGP=0
  876. Jan 27 09:30:31 host01 sshd[176484]: Invalid user psd from 185.220.102.241 port 13884
  877. Jan 27 09:30:31 host01 sshd[176484]: pam_unix(sshd:auth): check pass; user unknown
  878. Jan 27 09:30:31 host01 sshd[176484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.102.241
  879. Jan 27 09:30:33 host01 sshd[176484]: Failed password for invalid user psd from 185.220.102.241 port 13884 ssh2
  880. Jan 27 09:30:34 host01 sshd[176484]: Connection closed by invalid user psd 185.220.102.241 port 13884 [preauth]
  881. Jan 27 09:30:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.61.187.144 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=246 ID=54321 PROTO=TCP SPT=44517 DPT=8080 WINDOW=65535 RES=0x00 SYN URGP=0
  882. Jan 27 09:31:01 host01 CRON[176492]: pam_unix(cron:session): session opened for user root by (uid=0)
  883. Jan 27 09:31:01 host01 CRON[176493]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  884. Jan 27 09:31:01 host01 CRON[176492]: pam_unix(cron:session): session closed for user root
  885. Jan 27 09:31:17 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=123.57.68.179 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=105 ID=256 PROTO=TCP SPT=6000 DPT=1433 WINDOW=16384 RES=0x00 SYN URGP=0
  886. Jan 27 09:31:23 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=54597 PROTO=TCP SPT=53701 DPT=3700 WINDOW=1024 RES=0x00 SYN URGP=0
  887. Jan 27 09:31:49 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=210.72.89.60 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=46413 PROTO=TCP SPT=52713 DPT=8000 WINDOW=1024 RES=0x00 SYN URGP=0
  888. Jan 27 09:32:01 host01 CRON[176511]: pam_unix(cron:session): session opened for user root by (uid=0)
  889. Jan 27 09:32:01 host01 CRON[176512]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  890. Jan 27 09:32:01 host01 CRON[176511]: pam_unix(cron:session): session closed for user root
  891. Jan 27 09:32:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=65072 PROTO=TCP SPT=53701 DPT=5600 WINDOW=1024 RES=0x00 SYN URGP=0
  892. Jan 27 09:32:27 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=9062 PROTO=TCP SPT=54986 DPT=668 WINDOW=1024 RES=0x00 SYN URGP=0
  893. Jan 27 09:32:43 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.137.22.170 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=56514 PROTO=TCP SPT=55396 DPT=37777 WINDOW=1024 RES=0x00 SYN URGP=0
  894. Jan 27 09:32:49 host01 sshd[176528]: error: kex_exchange_identification: Connection closed by remote host
  895. Jan 27 09:33:01 host01 CRON[176533]: pam_unix(cron:session): session opened for user root by (uid=0)
  896. Jan 27 09:33:01 host01 CRON[176534]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  897. Jan 27 09:33:01 host01 CRON[176533]: pam_unix(cron:session): session closed for user root
  898. Jan 27 09:33:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.34 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=36884 PROTO=TCP SPT=41823 DPT=64149 WINDOW=1024 RES=0x00 SYN URGP=0
  899. Jan 27 09:33:16 host01 sshd[176543]: Unable to negotiate with 195.133.18.24 port 44768: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
  900. Jan 27 09:33:30 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=49593 PROTO=TCP SPT=54952 DPT=59837 WINDOW=1024 RES=0x00 SYN URGP=0
  901. Jan 27 09:34:01 host01 CRON[176545]: pam_unix(cron:session): session opened for user root by (uid=0)
  902. Jan 27 09:34:01 host01 CRON[176546]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  903. Jan 27 09:34:01 host01 CRON[176545]: pam_unix(cron:session): session closed for user root
  904. Jan 27 09:34:02 host01 sshd[176531]: Unable to negotiate with 115.236.81.66 port 31019: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
  905. Jan 27 09:34:16 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=146.88.240.4 DST=46.4.101.201 LEN=49 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=45299 DPT=32414 LEN=29
  906. Jan 27 09:34:16 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=24272 PROTO=TCP SPT=53701 DPT=5818 WINDOW=1024 RES=0x00 SYN URGP=0
  907. Jan 27 09:34:23 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=3816 PROTO=TCP SPT=53701 DPT=1441 WINDOW=1024 RES=0x00 SYN URGP=0
  908. Jan 27 09:34:39 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=147.203.255.20 DST=46.4.101.201 LEN=127 TOS=0x00 PREC=0x00 TTL=235 ID=54321 PROTO=UDP SPT=49354 DPT=1900 LEN=107
  909. Jan 27 09:35:01 host01 CRON[176587]: pam_unix(cron:session): session opened for user root by (uid=0)
  910. Jan 27 09:35:01 host01 CRON[176588]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  911. Jan 27 09:35:02 host01 CRON[176587]: pam_unix(cron:session): session closed for user root
  912. Jan 27 09:35:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.76 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=3253 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  913. Jan 27 09:35:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.76 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=3253 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  914. Jan 27 09:35:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.76 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=3253 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  915. Jan 27 09:35:13 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.150.167.76 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=3253 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  916. Jan 27 09:35:16 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=71.37.23.179 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=55 ID=28091 PROTO=TCP SPT=7355 DPT=37215 WINDOW=10891 RES=0x00 SYN URGP=0
  917. Jan 27 09:35:28 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=23.95.197.198 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=51941 PROTO=TCP SPT=54479 DPT=33389 WINDOW=1024 RES=0x00 SYN URGP=0
  918. Jan 27 09:35:46 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=43811 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  919. Jan 27 09:35:55 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.110 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19193 PROTO=TCP SPT=41824 DPT=41295 WINDOW=1024 RES=0x00 SYN URGP=0
  920. Jan 27 09:36:01 host01 CRON[176609]: pam_unix(cron:session): session opened for user root by (uid=0)
  921. Jan 27 09:36:01 host01 CRON[176610]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  922. Jan 27 09:36:01 host01 CRON[176609]: pam_unix(cron:session): session closed for user root
  923. Jan 27 09:36:05 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=23.95.197.198 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=37870 PROTO=TCP SPT=54479 DPT=3361 WINDOW=1024 RES=0x00 SYN URGP=0
  924. Jan 27 09:36:37 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=178.239.21.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=44348 PROTO=TCP SPT=50830 DPT=5038 WINDOW=1024 RES=0x00 SYN URGP=0
  925. Jan 27 09:36:41 host01 sshd[176623]: Unable to negotiate with 122.194.229.59 port 21846: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
  926. Jan 27 09:36:46 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=194.26.29.169 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=16600 PROTO=TCP SPT=48059 DPT=1230 WINDOW=1024 RES=0x00 SYN URGP=0
  927. Jan 27 09:36:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=115.59.28.250 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=43874 DF PROTO=TCP SPT=44886 DPT=5555 WINDOW=29040 RES=0x00 SYN URGP=0
  928. Jan 27 09:37:01 host01 CRON[176630]: pam_unix(cron:session): session opened for user root by (uid=0)
  929. Jan 27 09:37:01 host01 CRON[176631]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  930. Jan 27 09:37:01 host01 CRON[176630]: pam_unix(cron:session): session closed for user root
  931. Jan 27 09:37:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43880 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  932. Jan 27 09:37:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43910 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  933. Jan 27 09:37:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43910 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  934. Jan 27 09:37:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43910 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  935. Jan 27 09:37:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43910 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  936. Jan 27 09:37:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43910 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  937. Jan 27 09:37:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43910 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  938. Jan 27 09:37:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43910 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  939. Jan 27 09:37:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43910 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  940. Jan 27 09:37:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=121.99.195.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=43910 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  941. Jan 27 09:37:39 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.78 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=13080 PROTO=TCP SPT=54952 DPT=11061 WINDOW=1024 RES=0x00 SYN URGP=0
  942. Jan 27 09:37:43 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=115.214.104.166 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=877 DF PROTO=TCP SPT=44164 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  943. Jan 27 09:37:51 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.160.119.11 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=114 ID=30292 DF PROTO=TCP SPT=43598 DPT=443 WINDOW=1023 RES=0x00 ACK FIN URGP=0
  944. Jan 27 09:37:53 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.61.187.144 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=246 ID=54321 PROTO=TCP SPT=51228 DPT=8081 WINDOW=65535 RES=0x00 SYN URGP=0
  945. Jan 27 09:37:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=45490 PROTO=TCP SPT=53701 DPT=3747 WINDOW=1024 RES=0x00 SYN URGP=0
  946. Jan 27 09:38:01 host01 CRON[176645]: pam_unix(cron:session): session opened for user root by (uid=0)
  947. Jan 27 09:38:01 host01 CRON[176646]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  948. Jan 27 09:38:01 host01 CRON[176645]: pam_unix(cron:session): session closed for user root
  949. Jan 27 09:38:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.130 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=62816 PROTO=TCP SPT=54986 DPT=4143 WINDOW=1024 RES=0x00 SYN URGP=0
  950. Jan 27 09:38:59 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=198.54.130.54 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=54 ID=57440 DF PROTO=TCP SPT=59364 DPT=443 WINDOW=2542 RES=0x00 ACK FIN URGP=0
  951. Jan 27 09:39:00 host01 systemd[1]: Starting Clean php session files...
  952. Jan 27 09:39:01 host01 systemd[1]: phpsessionclean.service: Succeeded.
  953. Jan 27 09:39:01 host01 systemd[1]: Finished Clean php session files.
  954. Jan 27 09:39:01 host01 CRON[176726]: pam_unix(cron:session): session opened for user root by (uid=0)
  955. Jan 27 09:39:01 host01 CRON[176727]: pam_unix(cron:session): session opened for user root by (uid=0)
  956. Jan 27 09:39:01 host01 CRON[176729]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  957. Jan 27 09:39:01 host01 CRON[176728]: (root) CMD (  [ -x /usr/lib/php/sessionclean ] && if [ ! -d /run/systemd/system ]; then /usr/lib/php/sessionclean; fi)
  958. Jan 27 09:39:01 host01 CRON[176726]: pam_unix(cron:session): session closed for user root
  959. Jan 27 09:39:02 host01 CRON[176727]: pam_unix(cron:session): session closed for user root
  960. Jan 27 09:39:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=55463 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  961. Jan 27 09:39:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=55463 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  962. Jan 27 09:39:09 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=212.102.63.156 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=TCP SPT=55463 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  963. Jan 27 09:39:40 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.110 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=29009 PROTO=TCP SPT=41824 DPT=65167 WINDOW=1024 RES=0x00 SYN URGP=0
  964. Jan 27 09:40:01 host01 CRON[176750]: pam_unix(cron:session): session opened for user root by (uid=0)
  965. Jan 27 09:40:01 host01 CRON[176751]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  966. Jan 27 09:40:01 host01 CRON[176750]: pam_unix(cron:session): session closed for user root
  967. Jan 27 09:40:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=104.193.110.16 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=21011 DF PROTO=TCP SPT=47209 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  968. Jan 27 09:40:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=104.193.110.16 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=21012 DF PROTO=TCP SPT=47209 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  969. Jan 27 09:40:10 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=162.216.47.5 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=36259 DF PROTO=TCP SPT=34986 DPT=443 WINDOW=1392 RES=0x00 ACK FIN URGP=0
  970. Jan 27 09:40:20 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=45.146.165.165 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=28303 PROTO=TCP SPT=52187 DPT=7001 WINDOW=1024 RES=0x00 SYN URGP=0
  971. Jan 27 09:40:29 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=123.156.229.214 DST=46.4.101.201 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=37470 DF PROTO=TCP SPT=33268 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
  972. Jan 27 09:40:35 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=49267 PROTO=TCP SPT=53701 DPT=3663 WINDOW=1024 RES=0x00 SYN URGP=0
  973. Jan 27 09:40:39 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=178.239.21.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=58444 PROTO=TCP SPT=50863 DPT=5038 WINDOW=1024 RES=0x00 SYN URGP=0
  974. Jan 27 09:40:45 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=91.240.118.13 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=32931 PROTO=TCP SPT=52300 DPT=6227 WINDOW=1024 RES=0x00 SYN URGP=0
  975. Jan 27 09:41:01 host01 CRON[176778]: pam_unix(cron:session): session opened for user root by (uid=0)
  976. Jan 27 09:41:01 host01 CRON[176779]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  977. Jan 27 09:41:01 host01 CRON[176778]: pam_unix(cron:session): session closed for user root
  978. Jan 27 09:41:04 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=185.156.73.122 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=41773 PROTO=TCP SPT=40827 DPT=8040 WINDOW=1024 RES=0x00 SYN URGP=0
  979. Jan 27 09:41:21 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=66.168.54.66 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=0 DF PROTO=TCP SPT=56126 DPT=443 WINDOW=0 RES=0x00 RST URGP=0
  980. Jan 27 09:41:22 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=81.17.24.204 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=55 ID=45981 DF PROTO=TCP SPT=58326 DPT=443 WINDOW=2711 RES=0x00 ACK FIN URGP=0
  981. Jan 27 09:41:36 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=42 PROTO=TCP SPT=48062 DPT=1820 WINDOW=1024 RES=0x00 SYN URGP=0
  982. Jan 27 09:41:56 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=138.199.32.98 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=TCP SPT=54879 DPT=79 WINDOW=65535 RES=0x00 SYN URGP=0
  983. Jan 27 09:41:58 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.87 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=15335 PROTO=TCP SPT=43071 DPT=50011 WINDOW=1024 RES=0x00 SYN URGP=0
  984. Jan 27 09:42:01 host01 CRON[176802]: pam_unix(cron:session): session opened for user root by (uid=0)
  985. Jan 27 09:42:01 host01 CRON[176803]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  986. Jan 27 09:42:02 host01 CRON[176802]: pam_unix(cron:session): session closed for user root
  987. Jan 27 09:42:05 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=178.176.174.133 DST=46.4.101.201 LEN=52 TOS=0x00 PREC=0x00 TTL=110 ID=1753 DF PROTO=TCP SPT=52757 DPT=465 WINDOW=65535 RES=0x00 SYN URGP=0
  988. Jan 27 09:42:24 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.86 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=9526 PROTO=TCP SPT=41820 DPT=45011 WINDOW=1024 RES=0x00 SYN URGP=0
  989. Jan 27 09:42:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.90 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=24189 PROTO=TCP SPT=53701 DPT=5737 WINDOW=1024 RES=0x00 SYN URGP=0
  990. Jan 27 09:43:01 host01 CRON[176824]: pam_unix(cron:session): session opened for user root by (uid=0)
  991. Jan 27 09:43:01 host01 CRON[176825]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  992. Jan 27 09:43:01 host01 CRON[176824]: pam_unix(cron:session): session closed for user root
  993. Jan 27 09:43:03 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=79.124.62.82 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43869 PROTO=TCP SPT=48062 DPT=10154 WINDOW=1024 RES=0x00 SYN URGP=0
  994. Jan 27 09:43:48 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.24 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=21272 PROTO=TCP SPT=47705 DPT=4567 WINDOW=1024 RES=0x00 SYN URGP=0
  995. Jan 27 09:44:01 host01 CRON[176838]: pam_unix(cron:session): session opened for user root by (uid=0)
  996. Jan 27 09:44:01 host01 CRON[176839]: (root) CMD (php /var/www/html/artisan schedule:run >> /dev/null 2>&1)
  997. Jan 27 09:44:01 host01 CRON[176838]: pam_unix(cron:session): session closed for user root
  998. Jan 27 09:44:26 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=179.43.183.98 DST=46.4.101.201 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19259 PROTO=TCP SPT=52460 DPT=104 WINDOW=1024 RES=0x00 SYN URGP=0
  999. Jan 27 09:44:42 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.19 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=10115 PROTO=TCP SPT=47823 DPT=5683 WINDOW=1024 RES=0x00 SYN URGP=0
  1000. Jan 27 09:44:43 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=167.248.133.75 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=39 ID=54395 PROTO=TCP SPT=57339 DPT=4543 WINDOW=1024 RES=0x00 SYN URGP=0
  1001. Jan 27 09:44:57 host01 kernel: [UFW BLOCK] IN=enp3s0 OUT= MAC=08:60:6e:69:7d:f1:00:31:46:0d:22:8e:08:00 SRC=183.136.226.3 DST=46.4.101.201 LEN=44 TOS=0x00 PREC=0x00 TTL=112 ID=57851 PROTO=TCP SPT=22090 DPT=8081 WINDOW=29200 RES=0x00 SYN URGP=0
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!