82.149.162.78 - IPInfo

Basic Info

City: Lengerich

Region: North Rhine-Westphalia

Country: Germany

Internet Service Provider: Osnatel Subnet for Single Static IP

Hostname: unknown

Organization: EWE-Tel GmbH

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	ssh failed login	2020-01-25 03:33:22
attackbotsspam	Jan 8 04:27:00 eddieflores sshd\[12789\]: Invalid user fyt from 82.149.162.78 Jan 8 04:27:00 eddieflores sshd\[12789\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail2.bergschneider.de Jan 8 04:27:03 eddieflores sshd\[12789\]: Failed password for invalid user fyt from 82.149.162.78 port 53414 ssh2 Jan 8 04:31:25 eddieflores sshd\[13145\]: Invalid user tested from 82.149.162.78 Jan 8 04:31:25 eddieflores sshd\[13145\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail2.bergschneider.de	2020-01-08 22:31:51
attackbots	Nov 1 21:13:55 v22018076622670303 sshd\[14720\]: Invalid user cadasa from 82.149.162.78 port 41768 Nov 1 21:13:55 v22018076622670303 sshd\[14720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Nov 1 21:13:57 v22018076622670303 sshd\[14720\]: Failed password for invalid user cadasa from 82.149.162.78 port 41768 ssh2 ...	2019-11-02 06:24:24
attack	Oct 26 20:32:02 XXX sshd[36435]: Invalid user ofsaa from 82.149.162.78 port 54854	2019-10-27 03:22:37
attackspam	Oct 18 08:20:34 XXX sshd[39790]: Invalid user ofsaa from 82.149.162.78 port 55000	2019-10-18 16:01:04
attackbotsspam	Invalid user anne from 82.149.162.78 port 33524	2019-10-11 22:51:46
attackspambots	Invalid user anne from 82.149.162.78 port 33524	2019-10-10 20:52:05
attack	Oct 2 23:27:38 mail sshd[19393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Oct 2 23:27:40 mail sshd[19393]: Failed password for invalid user perry from 82.149.162.78 port 35162 ssh2 ...	2019-10-03 07:02:45
attackspam	Sep 14 00:17:31 www sshd\[11981\]: Invalid user rust from 82.149.162.78 Sep 14 00:17:31 www sshd\[11981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Sep 14 00:17:33 www sshd\[11981\]: Failed password for invalid user rust from 82.149.162.78 port 49550 ssh2 ...	2019-09-14 08:50:52
attack	Sep 12 14:00:29 Ubuntu-1404-trusty-64-minimal sshd\[20895\]: Invalid user musikbot from 82.149.162.78 Sep 12 14:00:29 Ubuntu-1404-trusty-64-minimal sshd\[20895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Sep 12 14:00:31 Ubuntu-1404-trusty-64-minimal sshd\[20895\]: Failed password for invalid user musikbot from 82.149.162.78 port 38812 ssh2 Sep 12 14:35:06 Ubuntu-1404-trusty-64-minimal sshd\[21540\]: Invalid user kelvin from 82.149.162.78 Sep 12 14:35:06 Ubuntu-1404-trusty-64-minimal sshd\[21540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78	2019-09-12 20:39:09
attackspam	Sep 12 02:13:39 XXX sshd[41523]: Invalid user ofsaa from 82.149.162.78 port 45690	2019-09-12 09:10:08
attack	Aug 26 15:31:12 v22018076622670303 sshd\[17219\]: Invalid user anamaria from 82.149.162.78 port 41672 Aug 26 15:31:12 v22018076622670303 sshd\[17219\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Aug 26 15:31:14 v22018076622670303 sshd\[17219\]: Failed password for invalid user anamaria from 82.149.162.78 port 41672 ssh2 ...	2019-08-27 06:04:22
attackspambots	Aug 21 17:13:44 XXX sshd[37174]: Invalid user ofsaa from 82.149.162.78 port 60088	2019-08-22 03:53:20
attackbotsspam	$f2bV_matches	2019-07-30 04:48:33
attackspambots	Invalid user farah from 82.149.162.78 port 56128	2019-07-28 04:21:48

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 82.149.162.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44576
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;82.149.162.78.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 13 10:20:49 +08 2019
;; MSG SIZE  rcvd: 117

Host info

78.162.149.82.in-addr.arpa domain name pointer mail2.bergschneider.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
78.162.149.82.in-addr.arpa	name = mail2.bergschneider.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.251.37.197	attackspambots	Invalid user swatka from 58.251.37.197 port 25637	2020-03-26 22:43:09
49.235.91.59	attack	Mar 26 15:10:56 host01 sshd[24315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.91.59 Mar 26 15:10:58 host01 sshd[24315]: Failed password for invalid user robbie from 49.235.91.59 port 47886 ssh2 Mar 26 15:15:24 host01 sshd[25032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.91.59 ...	2020-03-26 22:28:33
121.15.2.178	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-03-26 23:22:37
106.12.216.15	attackbotsspam	fail2ban	2020-03-26 22:38:22
198.199.101.113	attackbotsspam	Mar 26 15:26:47 lukav-desktop sshd\[18604\]: Invalid user tester from 198.199.101.113 Mar 26 15:26:47 lukav-desktop sshd\[18604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.101.113 Mar 26 15:26:49 lukav-desktop sshd\[18604\]: Failed password for invalid user tester from 198.199.101.113 port 33340 ssh2 Mar 26 15:29:58 lukav-desktop sshd\[18638\]: Invalid user webadm from 198.199.101.113 Mar 26 15:29:58 lukav-desktop sshd\[18638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.101.113	2020-03-26 22:49:16
156.96.46.201	attack	Automatic report - Banned IP Access	2020-03-26 23:17:25
178.128.93.138	attackspam	" "	2020-03-26 22:59:54
185.176.222.41	attackbots	Mar 26 15:16:05 debian-2gb-nbg1-2 kernel: \[7491240.924192\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.222.41 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=55386 PROTO=TCP SPT=57414 DPT=3390 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-26 22:32:54
185.53.88.43	attack	Mar 26 15:30:14 debian-2gb-nbg1-2 kernel: \[7492089.591931\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.53.88.43 DST=195.201.40.59 LEN=441 TOS=0x00 PREC=0x00 TTL=54 ID=21345 DF PROTO=UDP SPT=5062 DPT=5060 LEN=421	2020-03-26 22:32:10
80.82.78.100	attackspambots	80.82.78.100 was recorded 11 times by 8 hosts attempting to connect to the following ports: 41092,41022,40831. Incident counter (4h, 24h, all-time): 11, 18, 22473	2020-03-26 23:08:35
129.204.46.170	attack	Invalid user marc from 129.204.46.170 port 57030	2020-03-26 23:05:02
177.141.243.205	attackbots	Mar 25 21:31:17 vh1 sshd[26608]: reveeclipse mapping checking getaddrinfo for b18df3cd.virtua.com.br [177.141.243.205] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 25 21:31:17 vh1 sshd[26608]: Invalid user comand from 177.141.243.205 Mar 25 21:31:17 vh1 sshd[26608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.141.243.205 Mar 25 21:31:19 vh1 sshd[26608]: Failed password for invalid user comand from 177.141.243.205 port 58970 ssh2 Mar 25 21:31:19 vh1 sshd[26609]: Received disconnect from 177.141.243.205: 11: Bye Bye Mar 25 21:42:18 vh1 sshd[27032]: reveeclipse mapping checking getaddrinfo for b18df3cd.virtua.com.br [177.141.243.205] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 25 21:42:18 vh1 sshd[27032]: Invalid user www from 177.141.243.205 Mar 25 21:42:18 vh1 sshd[27032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.141.243.205 Mar 25 21:42:19 vh1 sshd[27032]: Failed password for inv........ -------------------------------	2020-03-26 22:44:42
103.48.193.7	attackbotsspam	Mar 26 14:56:32 markkoudstaal sshd[5548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.48.193.7 Mar 26 14:56:34 markkoudstaal sshd[5548]: Failed password for invalid user web from 103.48.193.7 port 43798 ssh2 Mar 26 15:00:38 markkoudstaal sshd[6032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.48.193.7	2020-03-26 23:02:42
45.77.255.87	attackbots	Automatic report - XMLRPC Attack	2020-03-26 22:41:56
179.216.182.116	attackbots	Invalid user siva from 179.216.182.116 port 54377	2020-03-26 23:09:31

Recently Reported IPs

88.24.211.122	170.238.242.99	115.75.189.99	103.82.101.44
119.152.243.146	40.107.78.99	220.121.97.43	94.23.0.13
188.131.204.27	167.99.3.40	191.6.194.81	100.37.253.46
122.168.126.93	109.192.70.239	99.84.185.120	206.189.149.97
190.211.2.241	80.211.69.250	177.19.154.205	167.99.103.163