173.249.12.14 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
173.249.12.113	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-01 17:23:27
173.249.12.113	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-28 18:12:07
173.249.12.216	attackspam	GET /installer.php GET /installer-backup.php GET /replace.php GET /unzip.php GET /unzipper.php GET /urlreplace.php	2019-12-26 23:53:31
173.249.12.216	attack	GET /searchreplacedb2.php	2019-12-15 01:35:48
173.249.12.143	attackbotsspam	Oct 1 04:37:59 vpxxxxxxx22308 sshd[6282]: Invalid user butter from 173.249.12.143 Oct 1 04:37:59 vpxxxxxxx22308 sshd[6282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.249.12.143 Oct 1 04:38:01 vpxxxxxxx22308 sshd[6282]: Failed password for invalid user butter from 173.249.12.143 port 47364 ssh2 Oct 1 04:38:26 vpxxxxxxx22308 sshd[6310]: Invalid user butter from 173.249.12.143 Oct 1 04:38:26 vpxxxxxxx22308 sshd[6310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.249.12.143 Oct 1 04:38:26 vpxxxxxxx22308 sshd[6312]: Invalid user butter from 173.249.12.143 Oct 1 04:38:26 vpxxxxxxx22308 sshd[6312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.249.12.143 Oct 1 04:38:28 vpxxxxxxx22308 sshd[6310]: Failed password for invalid user butter from 173.249.12.143 port 51450 ssh2 Oct 1 04:38:28 vpxxxxxxx22308 sshd[6312]: Failed password f........ ------------------------------	2019-10-02 23:11:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 173.249.12.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19339
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;173.249.12.14.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 03:49:14 CST 2022
;; MSG SIZE  rcvd: 106

Host info

14.12.249.173.in-addr.arpa domain name pointer vmi168110.contaboserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.12.249.173.in-addr.arpa	name = vmi168110.contaboserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
93.174.93.218	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 1080 proto: TCP cat: Misc Attack	2020-02-27 01:20:11
114.156.17.200	attack	scans 22 times in preceeding hours on the ports (in chronological order) 1025 1099 1234 1434 1471 1494 1512 1515 1646 1649 1718 1720 1741 1789 2603 2809 3001 5009 5600 8001 8080 9001	2020-02-27 00:55:34
185.175.93.3	attack	ET DROP Dshield Block Listed Source group 1 - port: 6564 proto: TCP cat: Misc Attack	2020-02-27 01:11:17
92.63.194.115	attackbots	02/26/2020-12:10:06.006304 92.63.194.115 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-02-27 01:22:03
128.199.81.66	attackbots	Port 12041 scan denied	2020-02-27 00:55:00
144.217.34.147	attackspam	Port 45406 scan denied	2020-02-27 00:53:31
222.186.173.183	attack	Feb 26 14:34:53 vps46666688 sshd[31683]: Failed password for root from 222.186.173.183 port 61208 ssh2 Feb 26 14:35:07 vps46666688 sshd[31683]: error: maximum authentication attempts exceeded for root from 222.186.173.183 port 61208 ssh2 [preauth] ...	2020-02-27 01:36:19
83.97.20.37	attackbots	Feb 26 17:51:04 debian-2gb-nbg1-2 kernel: \[4995060.233112\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.97.20.37 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=46755 DPT=456 WINDOW=65535 RES=0x00 SYN URGP=0	2020-02-27 01:27:06
45.143.220.7	attackspambots	Port 4967 scan denied	2020-02-27 01:33:32
185.175.93.104	attack	TCP Port Scanning	2020-02-27 01:08:25
89.248.168.217	attackbots	Port 514 scan denied	2020-02-27 01:23:34
89.248.160.150	attackspambots	89.248.160.150 was recorded 24 times by 13 hosts attempting to connect to the following ports: 40767,40772,40773. Incident counter (4h, 24h, all-time): 24, 146, 5515	2020-02-27 01:26:07
185.175.93.78	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 38366 proto: TCP cat: Misc Attack	2020-02-27 01:09:44
194.26.29.107	attackbots	scans 32 times in preceeding hours on the ports (in chronological order) 35106 35233 35043 35291 35321 35090 35097 35296 35212 35029 35305 35329 35001 35117 35309 35115 35085 35159 35353 35054 35272 35197 35237 35339 35142 35062 35490 35497 35472 35256 35458 35316 resulting in total of 236 scans from 194.26.29.0/24 block.	2020-02-27 01:05:43
51.91.212.80	attackspambots	02/26/2020-18:23:05.772922 51.91.212.80 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 53	2020-02-27 01:32:17

Recently Reported IPs

173.247.219.139	173.242.31.104	173.249.147.136	173.249.2.240
173.249.38.25	173.249.54.92	173.254.18.108	173.249.157.200
173.254.28.201	173.249.25.218	173.249.50.67	173.255.192.42
173.254.66.193	173.255.225.167	173.254.29.206	173.255.199.237
173.255.233.147	173.255.242.13	173.45.77.18	173.82.167.183