82.149.162.78 - IPInfo

Basic Info

City: Lengerich

Region: North Rhine-Westphalia

Country: Germany

Internet Service Provider: Osnatel Subnet for Single Static IP

Hostname: unknown

Organization: EWE-Tel GmbH

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	ssh failed login	2020-01-25 03:33:22
attackbotsspam	Jan 8 04:27:00 eddieflores sshd\[12789\]: Invalid user fyt from 82.149.162.78 Jan 8 04:27:00 eddieflores sshd\[12789\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail2.bergschneider.de Jan 8 04:27:03 eddieflores sshd\[12789\]: Failed password for invalid user fyt from 82.149.162.78 port 53414 ssh2 Jan 8 04:31:25 eddieflores sshd\[13145\]: Invalid user tested from 82.149.162.78 Jan 8 04:31:25 eddieflores sshd\[13145\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail2.bergschneider.de	2020-01-08 22:31:51
attackbots	Nov 1 21:13:55 v22018076622670303 sshd\[14720\]: Invalid user cadasa from 82.149.162.78 port 41768 Nov 1 21:13:55 v22018076622670303 sshd\[14720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Nov 1 21:13:57 v22018076622670303 sshd\[14720\]: Failed password for invalid user cadasa from 82.149.162.78 port 41768 ssh2 ...	2019-11-02 06:24:24
attack	Oct 26 20:32:02 XXX sshd[36435]: Invalid user ofsaa from 82.149.162.78 port 54854	2019-10-27 03:22:37
attackspam	Oct 18 08:20:34 XXX sshd[39790]: Invalid user ofsaa from 82.149.162.78 port 55000	2019-10-18 16:01:04
attackbotsspam	Invalid user anne from 82.149.162.78 port 33524	2019-10-11 22:51:46
attackspambots	Invalid user anne from 82.149.162.78 port 33524	2019-10-10 20:52:05
attack	Oct 2 23:27:38 mail sshd[19393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Oct 2 23:27:40 mail sshd[19393]: Failed password for invalid user perry from 82.149.162.78 port 35162 ssh2 ...	2019-10-03 07:02:45
attackspam	Sep 14 00:17:31 www sshd\[11981\]: Invalid user rust from 82.149.162.78 Sep 14 00:17:31 www sshd\[11981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Sep 14 00:17:33 www sshd\[11981\]: Failed password for invalid user rust from 82.149.162.78 port 49550 ssh2 ...	2019-09-14 08:50:52
attack	Sep 12 14:00:29 Ubuntu-1404-trusty-64-minimal sshd\[20895\]: Invalid user musikbot from 82.149.162.78 Sep 12 14:00:29 Ubuntu-1404-trusty-64-minimal sshd\[20895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Sep 12 14:00:31 Ubuntu-1404-trusty-64-minimal sshd\[20895\]: Failed password for invalid user musikbot from 82.149.162.78 port 38812 ssh2 Sep 12 14:35:06 Ubuntu-1404-trusty-64-minimal sshd\[21540\]: Invalid user kelvin from 82.149.162.78 Sep 12 14:35:06 Ubuntu-1404-trusty-64-minimal sshd\[21540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78	2019-09-12 20:39:09
attackspam	Sep 12 02:13:39 XXX sshd[41523]: Invalid user ofsaa from 82.149.162.78 port 45690	2019-09-12 09:10:08
attack	Aug 26 15:31:12 v22018076622670303 sshd\[17219\]: Invalid user anamaria from 82.149.162.78 port 41672 Aug 26 15:31:12 v22018076622670303 sshd\[17219\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.149.162.78 Aug 26 15:31:14 v22018076622670303 sshd\[17219\]: Failed password for invalid user anamaria from 82.149.162.78 port 41672 ssh2 ...	2019-08-27 06:04:22
attackspambots	Aug 21 17:13:44 XXX sshd[37174]: Invalid user ofsaa from 82.149.162.78 port 60088	2019-08-22 03:53:20
attackbotsspam	$f2bV_matches	2019-07-30 04:48:33
attackspambots	Invalid user farah from 82.149.162.78 port 56128	2019-07-28 04:21:48

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 82.149.162.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44576
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;82.149.162.78.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 13 10:20:49 +08 2019
;; MSG SIZE  rcvd: 117

Host info

78.162.149.82.in-addr.arpa domain name pointer mail2.bergschneider.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
78.162.149.82.in-addr.arpa	name = mail2.bergschneider.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.52.107	attackbots	Oct 13 15:44:08 dedicated sshd[16786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.107 user=root Oct 13 15:44:10 dedicated sshd[16786]: Failed password for root from 222.186.52.107 port 56682 ssh2	2019-10-13 21:53:00
207.180.236.150	attackbotsspam	Oct 13 14:46:46 eventyay sshd[3202]: Failed password for root from 207.180.236.150 port 49918 ssh2 Oct 13 14:50:43 eventyay sshd[3386]: Failed password for root from 207.180.236.150 port 60922 ssh2 ...	2019-10-13 21:59:23
173.249.58.228	attackbots	rdp brute-force attack	2019-10-13 22:08:46
50.79.140.161	attackbots	Oct 8 19:24:36 DNS-2 sshd[18791]: User r.r from 50.79.140.161 not allowed because not listed in AllowUsers Oct 8 19:24:36 DNS-2 sshd[18791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.79.140.161 user=r.r Oct 8 19:24:38 DNS-2 sshd[18791]: Failed password for invalid user r.r from 50.79.140.161 port 34506 ssh2 Oct 8 19:24:38 DNS-2 sshd[18791]: Received disconnect from 50.79.140.161 port 34506:11: Bye Bye [preauth] Oct 8 19:24:38 DNS-2 sshd[18791]: Disconnected from 50.79.140.161 port 34506 [preauth] Oct 8 19:31:51 DNS-2 sshd[19073]: User r.r from 50.79.140.161 not allowed because not listed in AllowUsers Oct 8 19:31:51 DNS-2 sshd[19073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.79.140.161 user=r.r Oct 8 19:31:54 DNS-2 sshd[19073]: Failed password for invalid user r.r from 50.79.140.161 port 36299 ssh2 Oct 8 19:31:54 DNS-2 sshd[19073]: Received disconnect from 50.79........ -------------------------------	2019-10-13 22:03:10
222.186.175.167	attackbotsspam	Oct 13 15:30:53 nextcloud sshd\[11951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root Oct 13 15:30:55 nextcloud sshd\[11951\]: Failed password for root from 222.186.175.167 port 18052 ssh2 Oct 13 15:31:00 nextcloud sshd\[11951\]: Failed password for root from 222.186.175.167 port 18052 ssh2 ...	2019-10-13 21:47:33
222.186.175.8	attack	Oct 13 20:58:06 itv-usvr-02 sshd[1384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.8 user=root Oct 13 20:58:08 itv-usvr-02 sshd[1384]: Failed password for root from 222.186.175.8 port 17302 ssh2	2019-10-13 22:11:58
165.22.86.38	attackspam	2019-10-13T13:59:13.362916abusebot-5.cloudsearch.cf sshd\[6959\]: Invalid user bjorn from 165.22.86.38 port 56944	2019-10-13 22:21:12
51.15.131.232	attackspam	Oct 13 09:57:32 firewall sshd[10512]: Invalid user 123Impact from 51.15.131.232 Oct 13 09:57:33 firewall sshd[10512]: Failed password for invalid user 123Impact from 51.15.131.232 port 41020 ssh2 Oct 13 10:01:30 firewall sshd[10753]: Invalid user P@ssword2019 from 51.15.131.232 ...	2019-10-13 21:51:14
134.175.154.22	attackspambots	Oct 13 04:18:10 kapalua sshd\[17762\]: Invalid user 123 from 134.175.154.22 Oct 13 04:18:10 kapalua sshd\[17762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.22 Oct 13 04:18:13 kapalua sshd\[17762\]: Failed password for invalid user 123 from 134.175.154.22 port 51824 ssh2 Oct 13 04:24:15 kapalua sshd\[18264\]: Invalid user Lucas@2017 from 134.175.154.22 Oct 13 04:24:15 kapalua sshd\[18264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.22	2019-10-13 22:29:43
58.244.110.123	attackbotsspam	Unauthorised access (Oct 13) SRC=58.244.110.123 LEN=40 TTL=49 ID=11764 TCP DPT=8080 WINDOW=2567 SYN	2019-10-13 21:52:25
158.69.113.76	attack	Automatic report - Banned IP Access	2019-10-13 22:32:25
167.71.244.67	attackbots	Oct 13 10:00:25 firewall sshd[10693]: Failed password for root from 167.71.244.67 port 40918 ssh2 Oct 13 10:04:29 firewall sshd[10943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.244.67 user=root Oct 13 10:04:31 firewall sshd[10943]: Failed password for root from 167.71.244.67 port 52494 ssh2 ...	2019-10-13 21:56:22
106.12.82.84	attackbots	2019-10-13T13:27:46.861990abusebot-7.cloudsearch.cf sshd\[17980\]: Invalid user Admin3@1 from 106.12.82.84 port 35864	2019-10-13 21:52:02
188.165.242.200	attackbotsspam	Oct 13 15:07:02 XXX sshd[24701]: Invalid user ofsaa from 188.165.242.200 port 57520	2019-10-13 22:25:11
2001:8f8:1329:ce8e:bcdc:ff8a:6f26:53f6	attackspambots	PHI,WP GET /wp-login.php GET /wp-login.php	2019-10-13 22:09:30

Recently Reported IPs

88.24.211.122	170.238.242.99	115.75.189.99	103.82.101.44
119.152.243.146	40.107.78.99	220.121.97.43	94.23.0.13
188.131.204.27	167.99.3.40	191.6.194.81	100.37.253.46
122.168.126.93	109.192.70.239	99.84.185.120	206.189.149.97
190.211.2.241	80.211.69.250	177.19.154.205	167.99.103.163