82.141.16.198 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
82.141.160.66	attackspambots	Sep 2 16:12:00 mail.srvfarm.net postfix/smtpd[1805931]: warning: unknown[82.141.160.66]: SASL PLAIN authentication failed: Sep 2 16:12:00 mail.srvfarm.net postfix/smtpd[1805931]: lost connection after AUTH from unknown[82.141.160.66] Sep 2 16:18:53 mail.srvfarm.net postfix/smtpd[1808122]: warning: unknown[82.141.160.66]: SASL PLAIN authentication failed: Sep 2 16:18:53 mail.srvfarm.net postfix/smtpd[1808122]: lost connection after AUTH from unknown[82.141.160.66] Sep 2 16:19:16 mail.srvfarm.net postfix/smtpd[1808109]: warning: unknown[82.141.160.66]: SASL PLAIN authentication failed:	2020-09-09 18:56:54
82.141.160.66	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 82.141.160.66 (HU/Hungary/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-08 21:38:12 plain authenticator failed for ([82.141.160.66]) [82.141.160.66]: 535 Incorrect authentication data (set_id=icd)	2020-09-09 05:07:58
82.141.161.227	attackspambots	Aug 30 13:50:18 mail.srvfarm.net postfix/smtpd[3748496]: warning: unknown[82.141.161.227]: SASL PLAIN authentication failed: Aug 30 13:50:18 mail.srvfarm.net postfix/smtpd[3748496]: lost connection after AUTH from unknown[82.141.161.227] Aug 30 13:55:47 mail.srvfarm.net postfix/smtps/smtpd[3751855]: warning: unknown[82.141.161.227]: SASL PLAIN authentication failed: Aug 30 13:55:47 mail.srvfarm.net postfix/smtps/smtpd[3751855]: lost connection after AUTH from unknown[82.141.161.227] Aug 30 13:56:45 mail.srvfarm.net postfix/smtpd[3756796]: warning: unknown[82.141.161.227]: SASL PLAIN authentication failed: Aug 30 13:56:45 mail.srvfarm.net postfix/smtpd[3756796]: lost connection after AUTH from unknown[82.141.161.227]	2020-09-08 23:03:33
82.141.161.227	attackbots	(smtpauth) Failed SMTP AUTH login from 82.141.161.227 (HU/Hungary/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-07 21:22:06 plain authenticator failed for ([82.141.161.227]) [82.141.161.227]: 535 Incorrect authentication data (set_id=info@mobarakehpipe.com)	2020-09-08 07:18:13
82.141.160.96	attack	Brute force attempt	2020-09-01 17:22:26
82.141.161.74	attackspam	Aug 27 04:14:20 mail.srvfarm.net postfix/smtps/smtpd[1314661]: warning: unknown[82.141.161.74]: SASL PLAIN authentication failed: Aug 27 04:14:20 mail.srvfarm.net postfix/smtps/smtpd[1314661]: lost connection after AUTH from unknown[82.141.161.74] Aug 27 04:16:24 mail.srvfarm.net postfix/smtps/smtpd[1331222]: warning: unknown[82.141.161.74]: SASL PLAIN authentication failed: Aug 27 04:16:24 mail.srvfarm.net postfix/smtps/smtpd[1331222]: lost connection after AUTH from unknown[82.141.161.74] Aug 27 04:22:41 mail.srvfarm.net postfix/smtps/smtpd[1316070]: warning: unknown[82.141.161.74]: SASL PLAIN authentication failed:	2020-08-28 09:44:21
82.141.160.162	attack	Aug 15 00:46:49 mail.srvfarm.net postfix/smtps/smtpd[910045]: warning: unknown[82.141.160.162]: SASL PLAIN authentication failed: Aug 15 00:46:49 mail.srvfarm.net postfix/smtps/smtpd[910045]: lost connection after AUTH from unknown[82.141.160.162] Aug 15 00:50:47 mail.srvfarm.net postfix/smtps/smtpd[910733]: warning: unknown[82.141.160.162]: SASL PLAIN authentication failed: Aug 15 00:50:47 mail.srvfarm.net postfix/smtps/smtpd[910733]: lost connection after AUTH from unknown[82.141.160.162] Aug 15 00:53:21 mail.srvfarm.net postfix/smtpd[910648]: warning: unknown[82.141.160.162]: SASL PLAIN authentication failed:	2020-08-15 16:18:23
82.141.160.134	attackbots	Aug 15 01:08:31 mail.srvfarm.net postfix/smtpd[928329]: warning: unknown[82.141.160.134]: SASL PLAIN authentication failed: Aug 15 01:08:31 mail.srvfarm.net postfix/smtpd[928329]: lost connection after AUTH from unknown[82.141.160.134] Aug 15 01:10:28 mail.srvfarm.net postfix/smtps/smtpd[913607]: warning: unknown[82.141.160.134]: SASL PLAIN authentication failed: Aug 15 01:10:28 mail.srvfarm.net postfix/smtps/smtpd[913607]: lost connection after AUTH from unknown[82.141.160.134] Aug 15 01:15:27 mail.srvfarm.net postfix/smtps/smtpd[927776]: warning: unknown[82.141.160.134]: SASL PLAIN authentication failed:	2020-08-15 16:00:25
82.141.161.57	attackbotsspam	Aug 15 01:44:29 mail.srvfarm.net postfix/smtpd[947515]: warning: unknown[82.141.161.57]: SASL PLAIN authentication failed: Aug 15 01:44:29 mail.srvfarm.net postfix/smtpd[947515]: lost connection after AUTH from unknown[82.141.161.57] Aug 15 01:49:23 mail.srvfarm.net postfix/smtpd[947315]: warning: unknown[82.141.161.57]: SASL PLAIN authentication failed: Aug 15 01:49:23 mail.srvfarm.net postfix/smtpd[947315]: lost connection after AUTH from unknown[82.141.161.57] Aug 15 01:54:08 mail.srvfarm.net postfix/smtps/smtpd[945250]: warning: unknown[82.141.161.57]: SASL PLAIN authentication failed:	2020-08-15 13:55:07
82.141.161.57	attackspam	(smtpauth) Failed SMTP AUTH login from 82.141.161.57 (HU/Hungary/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-14 16:54:34 plain authenticator failed for ([82.141.161.57]) [82.141.161.57]: 535 Incorrect authentication data (set_id=executive@safanicu.com)	2020-08-15 00:23:38
82.141.160.66	attackbots	Aug 11 05:12:01 mail.srvfarm.net postfix/smtps/smtpd[2147253]: warning: unknown[82.141.160.66]: SASL PLAIN authentication failed: Aug 11 05:12:01 mail.srvfarm.net postfix/smtps/smtpd[2147253]: lost connection after AUTH from unknown[82.141.160.66] Aug 11 05:14:42 mail.srvfarm.net postfix/smtps/smtpd[2162586]: warning: unknown[82.141.160.66]: SASL PLAIN authentication failed: Aug 11 05:14:42 mail.srvfarm.net postfix/smtps/smtpd[2162586]: lost connection after AUTH from unknown[82.141.160.66] Aug 11 05:20:54 mail.srvfarm.net postfix/smtpd[2164020]: warning: unknown[82.141.160.66]: SASL PLAIN authentication failed:	2020-08-11 15:40:52
82.141.161.206	attack	Aug 11 05:34:12 mail.srvfarm.net postfix/smtpd[2161878]: warning: unknown[82.141.161.206]: SASL PLAIN authentication failed: Aug 11 05:34:12 mail.srvfarm.net postfix/smtpd[2161878]: lost connection after AUTH from unknown[82.141.161.206] Aug 11 05:36:35 mail.srvfarm.net postfix/smtpd[2161229]: warning: unknown[82.141.161.206]: SASL PLAIN authentication failed: Aug 11 05:36:35 mail.srvfarm.net postfix/smtpd[2161229]: lost connection after AUTH from unknown[82.141.161.206] Aug 11 05:42:36 mail.srvfarm.net postfix/smtps/smtpd[2165063]: warning: unknown[82.141.161.206]: SASL PLAIN authentication failed:	2020-08-11 15:22:00
82.141.160.138	attack	Brute force attempt	2020-08-10 15:51:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 82.141.16.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21810
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;82.141.16.198.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021200 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 14:34:53 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 198.16.141.82.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.16.141.82.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.124.131.214	attackspam	Jul 31 18:58:02 host sshd[16585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.131.214 user=root Jul 31 18:58:04 host sshd[16585]: Failed password for root from 106.124.131.214 port 48912 ssh2 ...	2020-08-01 01:02:53
183.215.125.210	attackbots	2020-07-31 11:32:53,156 fail2ban.actions [937]: NOTICE [sshd] Ban 183.215.125.210 2020-07-31 12:11:06,828 fail2ban.actions [937]: NOTICE [sshd] Ban 183.215.125.210 2020-07-31 12:47:33,173 fail2ban.actions [937]: NOTICE [sshd] Ban 183.215.125.210 2020-07-31 13:27:07,822 fail2ban.actions [937]: NOTICE [sshd] Ban 183.215.125.210 2020-07-31 14:04:44,669 fail2ban.actions [937]: NOTICE [sshd] Ban 183.215.125.210 ...	2020-08-01 01:18:07
217.182.70.150	attackspambots	2020-07-31T08:58:46.3600501495-001 sshd[46545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.ip-217-182-70.eu user=root 2020-07-31T08:58:48.2911061495-001 sshd[46545]: Failed password for root from 217.182.70.150 port 53772 ssh2 2020-07-31T09:02:52.5077431495-001 sshd[46796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.ip-217-182-70.eu user=root 2020-07-31T09:02:54.6549281495-001 sshd[46796]: Failed password for root from 217.182.70.150 port 35930 ssh2 2020-07-31T09:07:04.3547411495-001 sshd[46997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.ip-217-182-70.eu user=root 2020-07-31T09:07:06.6514111495-001 sshd[46997]: Failed password for root from 217.182.70.150 port 46322 ssh2 ...	2020-08-01 01:07:32
49.232.168.32	attack	Jul 31 18:40:12 vps sshd[12530]: Failed password for root from 49.232.168.32 port 34700 ssh2 Jul 31 18:46:48 vps sshd[12805]: Failed password for root from 49.232.168.32 port 41644 ssh2 ...	2020-08-01 01:04:12
122.152.196.222	attackspam	Port Scan ...	2020-08-01 01:05:47
103.66.16.18	attackbots	2020-07-31T07:59:52.196677devel sshd[26866]: Failed password for root from 103.66.16.18 port 56122 ssh2 2020-07-31T08:04:31.198551devel sshd[27359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.66.16.18 user=root 2020-07-31T08:04:33.276914devel sshd[27359]: Failed password for root from 103.66.16.18 port 37936 ssh2	2020-08-01 01:24:11
50.230.96.7	attackbotsspam	Jul 31 15:25:57 Ubuntu-1404-trusty-64-minimal sshd\[14933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.230.96.7 user=root Jul 31 15:26:00 Ubuntu-1404-trusty-64-minimal sshd\[14933\]: Failed password for root from 50.230.96.7 port 35010 ssh2 Jul 31 15:35:07 Ubuntu-1404-trusty-64-minimal sshd\[2606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.230.96.7 user=root Jul 31 15:35:09 Ubuntu-1404-trusty-64-minimal sshd\[2606\]: Failed password for root from 50.230.96.7 port 52572 ssh2 Jul 31 15:39:06 Ubuntu-1404-trusty-64-minimal sshd\[9331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.230.96.7 user=root	2020-08-01 00:51:17
106.12.22.202	attackbotsspam	2020-07-31 14:04:48,199 fail2ban.actions: WARNING [ssh-ddos] Ban 106.12.22.202	2020-08-01 01:18:29
46.229.168.131	attackbots	Malicious Traffic/Form Submission	2020-08-01 01:19:46
142.93.35.169	attack	142.93.35.169 has been banned for [WebApp Attack] ...	2020-08-01 00:56:04
72.18.52.141	attack	(sshd) Failed SSH login from 72.18.52.141 (US/United States/-): 10 in the last 3600 secs	2020-08-01 00:49:57
165.227.86.199	attack	Jul 31 15:14:28 vmd17057 sshd[6677]: Failed password for root from 165.227.86.199 port 36534 ssh2 ...	2020-08-01 01:10:05
45.55.143.115	attackbotsspam	IP blocked	2020-08-01 01:04:30
134.122.96.20	attackbotsspam	Jul 31 13:42:27 firewall sshd[2617]: Failed password for root from 134.122.96.20 port 37564 ssh2 Jul 31 13:46:20 firewall sshd[2755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.96.20 user=root Jul 31 13:46:22 firewall sshd[2755]: Failed password for root from 134.122.96.20 port 48828 ssh2 ...	2020-08-01 00:54:32
91.199.223.110	attackbotsspam	Jul 31 18:07:02 our-server-hostname sshd[32603]: reveeclipse mapping checking getaddrinfo for 91-199-223-110.virtualsolution.net [91.199.223.110] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 31 18:07:03 our-server-hostname sshd[32603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.199.223.110 user=r.r Jul 31 18:07:04 our-server-hostname sshd[32603]: Failed password for r.r from 91.199.223.110 port 60254 ssh2 Jul 31 18:36:37 our-server-hostname sshd[6186]: reveeclipse mapping checking getaddrinfo for 91-199-223-110.virtualsolution.net [91.199.223.110] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 31 18:36:37 our-server-hostname sshd[6186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.199.223.110 user=r.r Jul 31 18:36:39 our-server-hostname sshd[6186]: Failed password for r.r from 91.199.223.110 port 58260 ssh2 Jul 31 18:41:46 our-server-hostname sshd[7231]: reveeclipse mapping checking geta........ -------------------------------	2020-08-01 01:12:24

Recently Reported IPs

174.76.227.96	35.198.71.61	39.77.230.30	190.144.95.225
8.244.175.201	160.248.145.79	172.45.30.106	192.203.155.3
180.139.141.57	233.136.121.180	204.145.194.103	155.168.200.180
231.201.221.201	216.140.209.143	58.17.208.47	9.144.89.228
45.80.196.11	193.116.243.216	153.220.206.198	6.7.67.80