2.132.82.68 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.132.82.82	attackbotsspam	2019-03-01 15:02:04 H=\(2.132.82.82.megaline.telecom.kz\) \[2.132.82.82\]:3601 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-01 15:02:57 H=\(2.132.82.82.megaline.telecom.kz\) \[2.132.82.82\]:3601 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-01 15:03:46 H=\(2.132.82.82.megaline.telecom.kz\) \[2.132.82.82\]:3837 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-30 02:12:55

Type

Details

Datetime

2.132.82.82

attackbotsspam

2019-03-01 15:02:04 H=\(2.132.82.82.megaline.telecom.kz\) \[2.132.82.82\]:3601 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-03-01 15:02:57 H=\(2.132.82.82.megaline.telecom.kz\) \[2.132.82.82\]:3601 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-03-01 15:03:46 H=\(2.132.82.82.megaline.telecom.kz\) \[2.132.82.82\]:3837 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
...

2020-01-30 02:12:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.132.82.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9648
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.132.82.68.			IN	A

;; AUTHORITY SECTION:
.			214	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 00:03:56 CST 2022
;; MSG SIZE  rcvd: 104

Host info

68.82.132.2.in-addr.arpa domain name pointer 2.132.82.68.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
68.82.132.2.in-addr.arpa	name = 2.132.82.68.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.80.1.100	attack	201.80.1.100 - - [18/Oct/2019:15:47:27 -0400] "GET /?page=products&action=../../../../../etc/passwd%00&manufacturerID=61&productID=4701-RIM&linkID=16812 HTTP/1.1" 200 17462 "https://exitdevice.com/?page=products&action=../../../../../etc/passwd%00&manufacturerID=61&productID=4701-RIM&linkID=16812" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-19 07:47:30
5.196.29.194	attackbots	2019-10-19T05:49:34.674175 sshd[31968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.29.194 user=root 2019-10-19T05:49:36.656516 sshd[31968]: Failed password for root from 5.196.29.194 port 51390 ssh2 2019-10-19T05:54:15.325161 sshd[32023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.29.194 user=root 2019-10-19T05:54:17.884501 sshd[32023]: Failed password for root from 5.196.29.194 port 36000 ssh2 2019-10-19T05:58:57.181784 sshd[32051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.29.194 user=root 2019-10-19T05:58:59.455007 sshd[32051]: Failed password for root from 5.196.29.194 port 48527 ssh2 ...	2019-10-19 12:01:05
66.70.206.215	attack	2019-10-19T04:04:27.805593abusebot-3.cloudsearch.cf sshd\[11626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip215.ip-66-70-206.net user=root	2019-10-19 12:09:57
222.186.175.220	attackspambots	Triggered by Fail2Ban at Ares web server	2019-10-19 12:09:34
148.235.57.184	attackspambots	Oct 19 01:24:25 h2177944 sshd\[4661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.235.57.184 user=root Oct 19 01:24:27 h2177944 sshd\[4661\]: Failed password for root from 148.235.57.184 port 47470 ssh2 Oct 19 01:31:21 h2177944 sshd\[5107\]: Invalid user tb from 148.235.57.184 port 35872 Oct 19 01:31:21 h2177944 sshd\[5107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.235.57.184 ...	2019-10-19 07:42:19
80.82.64.73	attack	Oct 19 05:54:05 mail kernel: [1170487.205042] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=80.82.64.73 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=33012 PROTO=TCP SPT=54202 DPT=42929 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 19 05:54:15 mail kernel: [1170496.580104] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=80.82.64.73 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=9883 PROTO=TCP SPT=54202 DPT=42380 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 19 05:55:10 mail kernel: [1170552.413123] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=80.82.64.73 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=51709 PROTO=TCP SPT=54202 DPT=42527 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 19 05:55:14 mail kernel: [1170555.595227] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=80.82.64.73 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=16262 PROTO=TCP SPT=54202 DPT=42421 WINDOW=1024 RES=0x00 SYN URGP=0 O	2019-10-19 12:05:01
51.68.123.192	attackbotsspam	Oct 19 05:54:49 SilenceServices sshd[29678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.192 Oct 19 05:54:50 SilenceServices sshd[29678]: Failed password for invalid user oradev from 51.68.123.192 port 39374 ssh2 Oct 19 05:58:28 SilenceServices sshd[30618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.192	2019-10-19 12:16:55
185.129.62.62	attackspambots	Oct 18 23:33:45 rotator sshd\[20045\]: Failed password for root from 185.129.62.62 port 48199 ssh2Oct 18 23:33:47 rotator sshd\[20045\]: Failed password for root from 185.129.62.62 port 48199 ssh2Oct 18 23:33:50 rotator sshd\[20045\]: Failed password for root from 185.129.62.62 port 48199 ssh2Oct 18 23:33:52 rotator sshd\[20045\]: Failed password for root from 185.129.62.62 port 48199 ssh2Oct 18 23:33:55 rotator sshd\[20045\]: Failed password for root from 185.129.62.62 port 48199 ssh2Oct 18 23:33:57 rotator sshd\[20045\]: Failed password for root from 185.129.62.62 port 48199 ssh2 ...	2019-10-19 07:50:07
147.135.156.89	attackspam	Oct 18 17:53:59 php1 sshd\[28380\]: Invalid user client from 147.135.156.89 Oct 18 17:53:59 php1 sshd\[28380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip89.ip-147-135-156.eu Oct 18 17:54:01 php1 sshd\[28380\]: Failed password for invalid user client from 147.135.156.89 port 34752 ssh2 Oct 18 17:58:51 php1 sshd\[28925\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip89.ip-147-135-156.eu user=sync Oct 18 17:58:54 php1 sshd\[28925\]: Failed password for sync from 147.135.156.89 port 53800 ssh2	2019-10-19 12:04:40
59.14.18.60	attackspam	firewall-block, port(s): 9001/tcp	2019-10-19 07:47:13
103.21.148.51	attack	Automatic report - Banned IP Access	2019-10-19 07:39:32
183.111.227.5	attackspambots	Oct 19 06:58:54 www sshd\[207440\]: Invalid user test123123 from 183.111.227.5 Oct 19 06:58:54 www sshd\[207440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.111.227.5 Oct 19 06:58:57 www sshd\[207440\]: Failed password for invalid user test123123 from 183.111.227.5 port 33834 ssh2 ...	2019-10-19 12:01:52
110.164.72.34	attackbotsspam	2019-10-18T23:05:33.544286scmdmz1 sshd\[27263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.164.72.34 user=root 2019-10-18T23:05:35.323817scmdmz1 sshd\[27263\]: Failed password for root from 110.164.72.34 port 57465 ssh2 2019-10-18T23:10:11.071578scmdmz1 sshd\[27635\]: Invalid user nathaniel from 110.164.72.34 port 49102 ...	2019-10-19 07:41:36
36.66.216.82	attackspam	T: f2b postfix aggressive 3x	2019-10-19 07:53:58
178.62.60.233	attack	Oct 18 19:39:58 xtremcommunity sshd\[660011\]: Invalid user W@!Q from 178.62.60.233 port 36546 Oct 18 19:39:58 xtremcommunity sshd\[660011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.60.233 Oct 18 19:40:00 xtremcommunity sshd\[660011\]: Failed password for invalid user W@!Q from 178.62.60.233 port 36546 ssh2 Oct 18 19:43:43 xtremcommunity sshd\[660082\]: Invalid user Pas$word from 178.62.60.233 port 47614 Oct 18 19:43:43 xtremcommunity sshd\[660082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.60.233 ...	2019-10-19 07:54:58

Recently Reported IPs

95.7.126.157	37.0.10.218	111.203.206.18	95.78.53.78
121.166.137.149	182.247.50.170	189.213.50.229	103.156.1.52
78.188.99.68	223.204.242.119	49.89.120.245	42.228.231.122
98.0.159.122	178.169.7.55	190.186.245.3	172.69.81.17
5.34.206.46	170.0.87.200	121.199.1.7	67.149.194.252