149.172.171.11

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Unitymedia BW GmbH

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	May 28 00:23:39 server sshd\[67275\]: Invalid user web99f1 from 149.172.171.11 May 28 00:23:39 server sshd\[67275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.172.171.11 May 28 00:23:41 server sshd\[67275\]: Failed password for invalid user web99f1 from 149.172.171.11 port 47794 ssh2 ...	2019-07-12 03:20:44

Type

Details

Datetime

attackspambots

May 28 00:23:39 server sshd\[67275\]: Invalid user web99f1 from 149.172.171.11
May 28 00:23:39 server sshd\[67275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.172.171.11
May 28 00:23:41 server sshd\[67275\]: Failed password for invalid user web99f1 from 149.172.171.11 port 47794 ssh2
...

2019-07-12 03:20:44

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.172.171.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36140
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.172.171.11.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052302 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 24 10:31:38 CST 2019
;; MSG SIZE  rcvd: 118

Host info

11.171.172.149.in-addr.arpa domain name pointer HSI-KBW-149-172-171-11.hsi13.kabel-badenwuerttemberg.de.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
11.171.172.149.in-addr.arpa	name = HSI-KBW-149-172-171-11.hsi13.kabel-badenwuerttemberg.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.241.244.177	attackbots	Jul 31 03:36:27 MK-Soft-VM3 sshd\[2458\]: Invalid user eve from 192.241.244.177 port 28926 Jul 31 03:36:27 MK-Soft-VM3 sshd\[2458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.244.177 Jul 31 03:36:29 MK-Soft-VM3 sshd\[2458\]: Failed password for invalid user eve from 192.241.244.177 port 28926 ssh2 ...	2019-07-31 13:44:21
58.249.123.38	attack	Automatic report - Banned IP Access	2019-07-31 14:06:16
103.245.34.173	attack	Unauthorized connection attempt from IP address 103.245.34.173 on Port 445(SMB)	2019-07-31 14:05:19
47.61.255.173	attackbotsspam	Automatic report - Port Scan Attack	2019-07-31 13:27:42
186.42.161.102	attackbotsspam	Unauthorized connection attempt from IP address 186.42.161.102 on Port 445(SMB)	2019-07-31 13:17:06
188.166.150.191	attackspam	blogonese.net 188.166.150.191 \[31/Jul/2019:00:32:06 +0200\] "POST /wp-login.php HTTP/1.1" 200 5771 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" blogonese.net 188.166.150.191 \[31/Jul/2019:00:32:08 +0200\] "POST /wp-login.php HTTP/1.1" 200 5731 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-31 14:16:48
183.82.3.248	attack	Jul 31 07:09:09 v22018076622670303 sshd\[16131\]: Invalid user dulce from 183.82.3.248 port 40368 Jul 31 07:09:09 v22018076622670303 sshd\[16131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.3.248 Jul 31 07:09:12 v22018076622670303 sshd\[16131\]: Failed password for invalid user dulce from 183.82.3.248 port 40368 ssh2 ...	2019-07-31 14:16:31
121.239.47.214	attackbotsspam	Jul 30 21:21:33 sinope sshd[32694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.239.47.214 user=r.r Jul 30 21:21:36 sinope sshd[32694]: Failed password for r.r from 121.239.47.214 port 37301 ssh2 Jul 30 21:21:36 sinope sshd[32694]: Received disconnect from 121.239.47.214: 11: Bye Bye [preauth] Jul 30 21:49:35 sinope sshd[3116]: Invalid user teamspeak from 121.239.47.214 Jul 30 21:49:35 sinope sshd[3116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.239.47.214 Jul 30 21:49:37 sinope sshd[3116]: Failed password for invalid user teamspeak from 121.239.47.214 port 33688 ssh2 Jul 30 21:49:37 sinope sshd[3116]: Received disconnect from 121.239.47.214: 11: Bye Bye [preauth] Jul 30 21:56:27 sinope sshd[3817]: Invalid user tiago from 121.239.47.214 Jul 30 21:56:27 sinope sshd[3817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.239.47.214........ -------------------------------	2019-07-31 13:38:04
41.218.199.235	attack	Jul 30 22:56:30 master sshd[12276]: Failed password for invalid user admin from 41.218.199.235 port 59633 ssh2	2019-07-31 13:21:46
95.255.30.43	attack	Unauthorized connection attempt from IP address 95.255.30.43 on Port 445(SMB)	2019-07-31 13:38:42
86.13.251.169	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2019-07-31 13:29:45
59.25.197.130	attackspam	SSH bruteforce	2019-07-31 13:54:42
201.182.223.59	attackspambots	Jul 31 07:00:12 vps647732 sshd[24641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.182.223.59 Jul 31 07:00:15 vps647732 sshd[24641]: Failed password for invalid user nexthink from 201.182.223.59 port 39732 ssh2 ...	2019-07-31 13:22:43
88.98.232.53	attackbotsspam	Jul 30 17:59:45 home sshd[8872]: Invalid user user from 88.98.232.53 port 44978 Jul 30 17:59:45 home sshd[8872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.98.232.53 Jul 30 17:59:45 home sshd[8872]: Invalid user user from 88.98.232.53 port 44978 Jul 30 17:59:47 home sshd[8872]: Failed password for invalid user user from 88.98.232.53 port 44978 ssh2 Jul 30 18:44:23 home sshd[8990]: Invalid user michela from 88.98.232.53 port 59202 Jul 30 18:44:23 home sshd[8990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.98.232.53 Jul 30 18:44:23 home sshd[8990]: Invalid user michela from 88.98.232.53 port 59202 Jul 30 18:44:25 home sshd[8990]: Failed password for invalid user michela from 88.98.232.53 port 59202 ssh2 Jul 30 19:08:03 home sshd[9039]: Invalid user webadm from 88.98.232.53 port 55638 Jul 30 19:08:03 home sshd[9039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.98.232.53 J	2019-07-31 14:03:06
105.19.51.20	attackbotsspam	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-31 14:02:29

Recently Reported IPs

220.234.155.8	85.117.234.34	140.129.86.108	14.185.38.193
222.252.53.211	243.61.26.163	192.178.197.58	170.112.50.228
189.89.93.255	145.255.60.154	175.234.96.81	30.200.100.180
71.3.61.68	93.92.81.58	123.194.41.37	70.208.227.116
169.16.255.192	178.62.245.140	182.254.234.53	91.67.105.22