78.42.135.144 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
78.42.135.172	attack	(sshd) Failed SSH login from 78.42.135.172 (DE/Germany/HSI-KBW-078-042-135-172.hsi3.kabel-badenwuerttemberg.de): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 10 03:12:56 optimus sshd[23317]: Failed password for root from 78.42.135.172 port 51528 ssh2 Oct 10 03:26:44 optimus sshd[28533]: Failed password for mail from 78.42.135.172 port 55242 ssh2 Oct 10 03:34:36 optimus sshd[31500]: Invalid user guest from 78.42.135.172 Oct 10 03:34:39 optimus sshd[31500]: Failed password for invalid user guest from 78.42.135.172 port 60072 ssh2 Oct 10 03:42:07 optimus sshd[1486]: Failed password for root from 78.42.135.172 port 36634 ssh2	2020-10-10 22:17:25
78.42.135.172	attackspambots	2020-10-10T03:34:21.225792shield sshd\[20043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hsi-kbw-078-042-135-172.hsi3.kabel-badenwuerttemberg.de user=root 2020-10-10T03:34:24.036877shield sshd\[20043\]: Failed password for root from 78.42.135.172 port 49150 ssh2 2020-10-10T03:41:28.841290shield sshd\[20912\]: Invalid user lisa from 78.42.135.172 port 55112 2020-10-10T03:41:28.850872shield sshd\[20912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hsi-kbw-078-042-135-172.hsi3.kabel-badenwuerttemberg.de 2020-10-10T03:41:30.616384shield sshd\[20912\]: Failed password for invalid user lisa from 78.42.135.172 port 55112 ssh2	2020-10-10 14:11:06
78.42.135.172	attackbotsspam	2020-09-30T19:46:59.147147shield sshd\[28903\]: Invalid user target from 78.42.135.172 port 41396 2020-09-30T19:46:59.156556shield sshd\[28903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hsi-kbw-078-042-135-172.hsi3.kabel-badenwuerttemberg.de 2020-09-30T19:47:01.685746shield sshd\[28903\]: Failed password for invalid user target from 78.42.135.172 port 41396 ssh2 2020-09-30T19:51:09.724462shield sshd\[29453\]: Invalid user admin from 78.42.135.172 port 49018 2020-09-30T19:51:09.736018shield sshd\[29453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hsi-kbw-078-042-135-172.hsi3.kabel-badenwuerttemberg.de	2020-10-01 04:03:16
78.42.135.172	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-30T09:14:17Z and 2020-09-30T09:28:36Z	2020-09-30 20:12:23
78.42.135.172	attackspam	$f2bV_matches	2020-09-30 12:39:26
78.42.135.172	attackbotsspam	Sep 20 13:43:57 vps647732 sshd[15497]: Failed password for root from 78.42.135.172 port 44710 ssh2 ...	2020-09-20 21:08:45
78.42.135.172	attackbots	Unauthorized SSH login attempts	2020-09-20 13:03:12
78.42.135.172	attackbotsspam	2020-09-19T19:10:23.446504randservbullet-proofcloud-66.localdomain sshd[27023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hsi-kbw-078-042-135-172.hsi3.kabel-badenwuerttemberg.de user=root 2020-09-19T19:10:26.131653randservbullet-proofcloud-66.localdomain sshd[27023]: Failed password for root from 78.42.135.172 port 37958 ssh2 2020-09-19T19:24:26.080846randservbullet-proofcloud-66.localdomain sshd[27206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hsi-kbw-078-042-135-172.hsi3.kabel-badenwuerttemberg.de user=root 2020-09-19T19:24:28.162855randservbullet-proofcloud-66.localdomain sshd[27206]: Failed password for root from 78.42.135.172 port 51400 ssh2 ...	2020-09-20 05:04:19
78.42.135.89	attack	Aug 22 15:20:45 serwer sshd\[8655\]: Invalid user hadoop from 78.42.135.89 port 54346 Aug 22 15:20:45 serwer sshd\[8655\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.42.135.89 Aug 22 15:20:46 serwer sshd\[8655\]: Failed password for invalid user hadoop from 78.42.135.89 port 54346 ssh2 ...	2020-08-24 19:29:53
78.42.135.89	attackbotsspam	2020-08-18T14:26:59.366957v22018076590370373 sshd[14546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.42.135.89 2020-08-18T14:26:59.360854v22018076590370373 sshd[14546]: Invalid user hc from 78.42.135.89 port 49918 2020-08-18T14:27:01.373339v22018076590370373 sshd[14546]: Failed password for invalid user hc from 78.42.135.89 port 49918 ssh2 2020-08-18T14:34:06.460405v22018076590370373 sshd[9441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.42.135.89 user=root 2020-08-18T14:34:08.421333v22018076590370373 sshd[9441]: Failed password for root from 78.42.135.89 port 60478 ssh2 ...	2020-08-18 22:28:05
78.42.135.89	attack	2020-08-06T23:46:15.039509amanda2.illicoweb.com sshd\[16646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hsi-kbw-078-042-135-089.hsi3.kabel-badenwuerttemberg.de user=root 2020-08-06T23:46:17.118526amanda2.illicoweb.com sshd\[16646\]: Failed password for root from 78.42.135.89 port 53894 ssh2 2020-08-06T23:50:51.338645amanda2.illicoweb.com sshd\[17245\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hsi-kbw-078-042-135-089.hsi3.kabel-badenwuerttemberg.de user=root 2020-08-06T23:50:53.974727amanda2.illicoweb.com sshd\[17245\]: Failed password for root from 78.42.135.89 port 37396 ssh2 2020-08-06T23:55:33.476033amanda2.illicoweb.com sshd\[18136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hsi-kbw-078-042-135-089.hsi3.kabel-badenwuerttemberg.de user=root ...	2020-08-07 06:05:56
78.42.135.89	attackspambots	$f2bV_matches	2020-07-17 04:41:37
78.42.135.89	attack	SSH brute force	2020-07-15 09:27:34
78.42.135.89	attackspambots	$f2bV_matches	2020-07-10 07:58:09
78.42.135.89	attackbots	sshd: Failed password for .... from 78.42.135.89 port 41422 ssh2 (5 attempts)	2020-06-12 17:18:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 78.42.135.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37464
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;78.42.135.144.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 03:31:22 CST 2022
;; MSG SIZE  rcvd: 106

Host info

144.135.42.78.in-addr.arpa domain name pointer ip-078-042-135-144.um17.pools.vodafone-ip.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
144.135.42.78.in-addr.arpa	name = ip-078-042-135-144.um17.pools.vodafone-ip.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
223.112.102.250	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 00:31:11
122.195.200.14	attackspambots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.14 user=root Failed password for root from 122.195.200.14 port 26460 ssh2 Failed password for root from 122.195.200.14 port 26460 ssh2 Failed password for root from 122.195.200.14 port 26460 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.14 user=root	2019-07-02 00:54:28
223.73.111.16	attackbots	$f2bV_matches	2019-07-01 23:47:49
5.188.62.5	attackspam	Jun 30 21:18:40 Http-D proftpd[1559]: 2019-06-30 21:18:40,773 Http-D proftpd[18783] 192.168.178.86 (5.188.62.5[5.188.62.5]): USER dcctrade: no such user found from 5.188.62.5 [5.188.62.5] to 192.168.178.86:21 Jul 1 02:00:35 Http-D proftpd[1559]: 2019-07-01 02:00:35,491 Http-D proftpd[31193] 192.168.178.86 (5.188.62.5[5.188.62.5]): USER b-kits: no such user found from 5.188.62.5 [5.188.62.5] to 192.168.178.86:21 Jul 1 15:39:05 Http-D proftpd[1559]: 2019-07-01 15:39:05,649 Http-D proftpd[3374] 192.168.178.86 (5.188.62.5[5.188.62.5]): USER b-kits: no such user found from 5.188.62.5 [5.188.62.5] to 192.168.178.86:21	2019-07-02 00:09:19
117.213.249.174	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2019-07-02 00:12:14
123.23.204.102	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-02 00:53:58
140.143.72.21	attackspam	Jul 1 09:57:55 plusreed sshd[17328]: Invalid user edu from 140.143.72.21 ...	2019-07-02 00:19:43
223.97.207.209	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 00:38:54
221.147.42.140	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 00:02:13
82.45.67.77	attackbots	Jul 1 16:38:50 srv-4 sshd\[26939\]: Invalid user stpi from 82.45.67.77 Jul 1 16:38:50 srv-4 sshd\[26939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.45.67.77 Jul 1 16:38:52 srv-4 sshd\[26939\]: Failed password for invalid user stpi from 82.45.67.77 port 55902 ssh2 ...	2019-07-02 00:16:52
101.132.164.89	attack	Unauthorised access (Jul 1) SRC=101.132.164.89 LEN=40 TTL=45 ID=19957 TCP DPT=8080 WINDOW=4973 SYN Unauthorised access (Jul 1) SRC=101.132.164.89 LEN=40 TTL=45 ID=18797 TCP DPT=8080 WINDOW=31494 SYN Unauthorised access (Jun 30) SRC=101.132.164.89 LEN=40 TTL=45 ID=9089 TCP DPT=8080 WINDOW=22003 SYN Unauthorised access (Jun 30) SRC=101.132.164.89 LEN=40 TTL=45 ID=62235 TCP DPT=8080 WINDOW=31494 SYN	2019-07-02 00:16:23
138.68.111.27	attackbotsspam	Jul 1 15:38:35 cp sshd[18556]: Failed password for lp from 138.68.111.27 port 37846 ssh2 Jul 1 15:38:35 cp sshd[18556]: Failed password for lp from 138.68.111.27 port 37846 ssh2	2019-07-02 00:30:24
37.187.79.55	attackspambots	Jul 1 16:37:13 hosting sshd[32276]: Invalid user ts from 37.187.79.55 port 60149 Jul 1 16:37:13 hosting sshd[32276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=tde.terre-des-elements.net Jul 1 16:37:13 hosting sshd[32276]: Invalid user ts from 37.187.79.55 port 60149 Jul 1 16:37:15 hosting sshd[32276]: Failed password for invalid user ts from 37.187.79.55 port 60149 ssh2 Jul 1 16:38:45 hosting sshd[32348]: Invalid user jhesrhel from 37.187.79.55 port 40942 ...	2019-07-02 00:23:44
177.83.242.134	attack	SMTP Fraud Orders	2019-07-02 00:19:16
191.88.136.207	attackspambots	Trying to deliver email spam, but blocked by RBL	2019-07-02 00:02:44

Recently Reported IPs

187.177.183.201	49.156.47.162	177.249.170.55	186.33.92.98
120.69.39.161	95.67.211.253	58.243.85.43	134.73.36.210
222.136.83.229	119.177.233.139	5.235.189.150	121.54.32.99
49.234.158.16	83.78.171.104	172.107.237.43	118.173.99.243
192.241.212.140	175.111.129.154	119.63.138.249	76.81.242.246