95.91.162.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Vodafone Kabel Deutschland GmbH

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jan 20 07:12:21 legacy sshd[13063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.91.162.45 Jan 20 07:12:24 legacy sshd[13063]: Failed password for invalid user xing from 95.91.162.45 port 60630 ssh2 Jan 20 07:21:52 legacy sshd[13259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.91.162.45 ...	2020-01-20 14:25:15

Type

Details

Datetime

attack

Jan 20 07:12:21 legacy sshd[13063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.91.162.45
Jan 20 07:12:24 legacy sshd[13063]: Failed password for invalid user xing from 95.91.162.45 port 60630 ssh2
Jan 20 07:21:52 legacy sshd[13259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.91.162.45
...

2020-01-20 14:25:15

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 95.91.162.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27388
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;95.91.162.45.			IN	A

;; AUTHORITY SECTION:
.			578	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012000 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 20 14:25:12 CST 2020
;; MSG SIZE  rcvd: 116

Host info

45.162.91.95.in-addr.arpa domain name pointer ip5f5ba22d.dynamic.kabel-deutschland.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.162.91.95.in-addr.arpa	name = ip5f5ba22d.dynamic.kabel-deutschland.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.229.156.243	attackspambots	2020-08-12T10:48:34.855850billing sshd[15388]: Failed password for root from 111.229.156.243 port 60672 ssh2 2020-08-12T10:52:45.391117billing sshd[24873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.156.243 user=root 2020-08-12T10:52:47.388899billing sshd[24873]: Failed password for root from 111.229.156.243 port 46558 ssh2 ...	2020-08-12 14:10:34
138.122.98.149	attackbots	Aug 12 05:26:48 mail.srvfarm.net postfix/smtps/smtpd[2853976]: warning: unknown[138.122.98.149]: SASL PLAIN authentication failed: Aug 12 05:26:49 mail.srvfarm.net postfix/smtps/smtpd[2853976]: lost connection after AUTH from unknown[138.122.98.149] Aug 12 05:27:12 mail.srvfarm.net postfix/smtpd[2866059]: warning: unknown[138.122.98.149]: SASL PLAIN authentication failed: Aug 12 05:27:12 mail.srvfarm.net postfix/smtpd[2866059]: lost connection after AUTH from unknown[138.122.98.149] Aug 12 05:29:40 mail.srvfarm.net postfix/smtps/smtpd[2866827]: warning: unknown[138.122.98.149]: SASL PLAIN authentication failed:	2020-08-12 14:28:42
106.225.155.224	attackbots	Aug 12 07:48:01 cosmoit sshd[8455]: Failed password for root from 106.225.155.224 port 35054 ssh2	2020-08-12 13:56:38
111.14.221.8	attack	Aug 12 00:42:03 mail sshd\[33279\]: Invalid user pi from 111.14.221.8 ...	2020-08-12 14:02:23
52.147.11.240	attack	Aug 12 05:32:29 mail.srvfarm.net postfix/smtps/smtpd[2866826]: warning: unknown[52.147.11.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:34:49 mail.srvfarm.net postfix/smtps/smtpd[2866825]: warning: unknown[52.147.11.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:37:09 mail.srvfarm.net postfix/smtps/smtpd[2866827]: warning: unknown[52.147.11.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:39:30 mail.srvfarm.net postfix/smtps/smtpd[2866647]: warning: unknown[52.147.11.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:41:52 mail.srvfarm.net postfix/smtps/smtpd[2871652]: warning: unknown[52.147.11.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-12 14:31:54
148.72.207.250	attack	Automatically reported by fail2ban report script (mx1)	2020-08-12 13:52:08
106.55.9.175	attackspam	Aug 12 06:23:45 rocket sshd[5983]: Failed password for root from 106.55.9.175 port 56928 ssh2 Aug 12 06:29:10 rocket sshd[6714]: Failed password for root from 106.55.9.175 port 58756 ssh2 ...	2020-08-12 14:12:36
45.164.203.170	attackspam	Aug 12 05:44:09 mail.srvfarm.net postfix/smtpd[2870462]: warning: unknown[45.164.203.170]: SASL PLAIN authentication failed: Aug 12 05:44:09 mail.srvfarm.net postfix/smtpd[2870462]: lost connection after AUTH from unknown[45.164.203.170] Aug 12 05:49:06 mail.srvfarm.net postfix/smtpd[2870459]: warning: unknown[45.164.203.170]: SASL PLAIN authentication failed: Aug 12 05:49:07 mail.srvfarm.net postfix/smtpd[2870459]: lost connection after AUTH from unknown[45.164.203.170] Aug 12 05:51:16 mail.srvfarm.net postfix/smtps/smtpd[2871474]: warning: unknown[45.164.203.170]: SASL PLAIN authentication failed:	2020-08-12 14:33:17
191.53.223.116	attack	Aug 12 05:37:11 mail.srvfarm.net postfix/smtps/smtpd[2871474]: warning: unknown[191.53.223.116]: SASL PLAIN authentication failed: Aug 12 05:37:12 mail.srvfarm.net postfix/smtps/smtpd[2871474]: lost connection after AUTH from unknown[191.53.223.116] Aug 12 05:40:47 mail.srvfarm.net postfix/smtpd[2870456]: warning: unknown[191.53.223.116]: SASL PLAIN authentication failed: Aug 12 05:40:47 mail.srvfarm.net postfix/smtpd[2870456]: lost connection after AUTH from unknown[191.53.223.116] Aug 12 05:41:32 mail.srvfarm.net postfix/smtpd[2868697]: warning: unknown[191.53.223.116]: SASL PLAIN authentication failed:	2020-08-12 14:21:45
200.66.115.10	attackbots	Aug 12 05:04:57 mail.srvfarm.net postfix/smtpd[2849282]: warning: unknown[200.66.115.10]: SASL PLAIN authentication failed: Aug 12 05:04:57 mail.srvfarm.net postfix/smtpd[2849282]: lost connection after AUTH from unknown[200.66.115.10] Aug 12 05:06:04 mail.srvfarm.net postfix/smtps/smtpd[2853371]: warning: unknown[200.66.115.10]: SASL PLAIN authentication failed: Aug 12 05:06:05 mail.srvfarm.net postfix/smtps/smtpd[2853371]: lost connection after AUTH from unknown[200.66.115.10] Aug 12 05:10:40 mail.srvfarm.net postfix/smtpd[2849280]: warning: unknown[200.66.115.10]: SASL PLAIN authentication failed:	2020-08-12 14:36:15
212.70.149.19	attack	2020-08-12 08:14:15 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=ancha@no-server.de\) 2020-08-12 08:14:23 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=ancha@no-server.de\) 2020-08-12 08:14:29 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=ancha@no-server.de\) 2020-08-12 08:14:33 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=ancha@no-server.de\) 2020-08-12 08:14:37 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=anchat@no-server.de\) 2020-08-12 08:14:45 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=anchat@no-server.de\) 2020-08-12 08:14:53 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 I ...	2020-08-12 14:20:09
202.62.8.21	attackbotsspam	1597204391 - 08/12/2020 05:53:11 Host: 202.62.8.21/202.62.8.21 Port: 445 TCP Blocked ...	2020-08-12 13:51:52
31.170.51.152	attack	Aug 12 05:47:47 mail.srvfarm.net postfix/smtps/smtpd[2870983]: warning: unknown[31.170.51.152]: SASL PLAIN authentication failed: Aug 12 05:47:47 mail.srvfarm.net postfix/smtps/smtpd[2870983]: lost connection after AUTH from unknown[31.170.51.152] Aug 12 05:48:07 mail.srvfarm.net postfix/smtpd[2870460]: warning: unknown[31.170.51.152]: SASL PLAIN authentication failed: Aug 12 05:48:08 mail.srvfarm.net postfix/smtpd[2870460]: lost connection after AUTH from unknown[31.170.51.152] Aug 12 05:48:32 mail.srvfarm.net postfix/smtpd[2870461]: warning: unknown[31.170.51.152]: SASL PLAIN authentication failed:	2020-08-12 14:34:54
61.177.172.128	attackbots	Aug 12 07:49:46 ip40 sshd[31883]: Failed password for root from 61.177.172.128 port 20800 ssh2 Aug 12 07:49:50 ip40 sshd[31883]: Failed password for root from 61.177.172.128 port 20800 ssh2 ...	2020-08-12 13:53:14
123.207.144.186	attack	Aug 12 05:48:59 [host] sshd[3886]: pam_unix(sshd:a Aug 12 05:49:01 [host] sshd[3886]: Failed password Aug 12 05:52:37 [host] sshd[4032]: pam_unix(sshd:a	2020-08-12 14:29:02

Recently Reported IPs

98.195.217.61	45.136.108.111	167.249.44.118	101.51.223.125
94.67.104.229	140.249.20.167	159.203.188.165	106.12.46.181
99.83.30.219	110.78.23.133	36.71.114.181	49.255.173.110
195.228.45.176	84.17.50.214	183.213.26.26	180.242.72.238
177.91.80.15	101.87.106.224	180.244.232.33	124.127.185.178