156.215.245.47

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 156.215.245.47 on Port 445(SMB)	2020-01-14 23:54:16

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 156.215.245.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55989
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;156.215.245.47.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011400 1800 900 604800 86400

;; Query time: 405 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 14 23:54:12 CST 2020
;; MSG SIZE  rcvd: 118

Host info

47.245.215.156.in-addr.arpa domain name pointer host-156.215.47.245-static.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
47.245.215.156.in-addr.arpa	name = host-156.215.47.245-static.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
137.59.48.129	attackspam	SPF Fail sender not permitted to send mail for @0sg.net / Sent mail to target address hacked/leaked from abandonia in 2016	2019-12-16 15:46:21
51.15.118.15	attack	Dec 16 08:31:46 MK-Soft-Root2 sshd[5135]: Failed password for backup from 51.15.118.15 port 46192 ssh2 ...	2019-12-16 16:03:22
182.185.246.156	attackbots	Unauthorized connection attempt detected from IP address 182.185.246.156 to port 445	2019-12-16 15:55:00
40.92.3.38	attackbots	Dec 16 10:10:45 debian-2gb-vpn-nbg1-1 kernel: [858615.463704] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.3.38 DST=78.46.192.101 LEN=52 TOS=0x02 PREC=0x00 TTL=104 ID=24250 DF PROTO=TCP SPT=10755 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2019-12-16 15:51:09
111.198.72.83	attackbots	Fail2Ban - FTP Abuse Attempt	2019-12-16 15:32:27
80.82.70.106	attack	Dec 16 08:40:53 debian-2gb-nbg1-2 kernel: \[134839.239916\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.70.106 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=8145 PROTO=TCP SPT=56743 DPT=3042 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-16 15:56:12
142.93.1.100	attack	Dec 16 06:26:05 ws25vmsma01 sshd[223615]: Failed password for root from 142.93.1.100 port 52168 ssh2 ...	2019-12-16 15:49:36
106.53.72.119	attackspambots	Dec 16 07:28:01 vps34202 sshd[14735]: Invalid user rolstad from 106.53.72.119 Dec 16 07:28:01 vps34202 sshd[14735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.72.119 Dec 16 07:28:03 vps34202 sshd[14735]: Failed password for invalid user rolstad from 106.53.72.119 port 36236 ssh2 Dec 16 07:28:03 vps34202 sshd[14735]: Received disconnect from 106.53.72.119: 11: Bye Bye [preauth] Dec 16 07:38:13 vps34202 sshd[15033]: Invalid user fon from 106.53.72.119 Dec 16 07:38:13 vps34202 sshd[15033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.72.119 Dec 16 07:38:15 vps34202 sshd[15033]: Failed password for invalid user fon from 106.53.72.119 port 58184 ssh2 Dec 16 07:38:16 vps34202 sshd[15033]: Received disconnect from 106.53.72.119: 11: Bye Bye [preauth] Dec 16 07:45:31 vps34202 sshd[15230]: Invalid user lisa from 106.53.72.119 Dec 16 07:45:31 vps34202 sshd[15230]: pam_unix(sshd........ -------------------------------	2019-12-16 15:43:29
82.118.242.108	attack	82.118.242.108 was recorded 9 times by 7 hosts attempting to connect to the following ports: 27015. Incident counter (4h, 24h, all-time): 9, 46, 118	2019-12-16 15:38:59
117.54.13.216	attackbotsspam	Dec 16 07:33:19 pi sshd\[12924\]: Failed password for root from 117.54.13.216 port 55904 ssh2 Dec 16 07:42:10 pi sshd\[13398\]: Invalid user sp from 117.54.13.216 port 60050 Dec 16 07:42:10 pi sshd\[13398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.54.13.216 Dec 16 07:42:12 pi sshd\[13398\]: Failed password for invalid user sp from 117.54.13.216 port 60050 ssh2 Dec 16 07:51:01 pi sshd\[13822\]: Invalid user nfs from 117.54.13.216 port 35959 ...	2019-12-16 16:01:25
117.81.204.197	attackspambots	[portscan] Port scan	2019-12-16 15:44:51
222.186.190.2	attackbotsspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Failed password for root from 222.186.190.2 port 8696 ssh2 Failed password for root from 222.186.190.2 port 8696 ssh2 Failed password for root from 222.186.190.2 port 8696 ssh2 Failed password for root from 222.186.190.2 port 8696 ssh2	2019-12-16 15:40:49
80.211.169.93	attackbotsspam	Dec 16 08:58:44 localhost sshd\[29771\]: Invalid user moffet from 80.211.169.93 port 41712 Dec 16 08:58:44 localhost sshd\[29771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.169.93 Dec 16 08:58:46 localhost sshd\[29771\]: Failed password for invalid user moffet from 80.211.169.93 port 41712 ssh2	2019-12-16 16:04:52
106.13.93.199	attackbotsspam	Dec 16 08:30:42 nextcloud sshd\[28850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.93.199 user=root Dec 16 08:30:43 nextcloud sshd\[28850\]: Failed password for root from 106.13.93.199 port 55626 ssh2 Dec 16 08:38:26 nextcloud sshd\[8929\]: Invalid user admin from 106.13.93.199 Dec 16 08:38:26 nextcloud sshd\[8929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.93.199 ...	2019-12-16 15:53:32
194.152.206.93	attack	2019-12-16T07:11:13.747859shield sshd\[25709\]: Invalid user 4r5t6y from 194.152.206.93 port 48995 2019-12-16T07:11:13.752245shield sshd\[25709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.152.206.93 2019-12-16T07:11:15.194356shield sshd\[25709\]: Failed password for invalid user 4r5t6y from 194.152.206.93 port 48995 ssh2 2019-12-16T07:19:34.925406shield sshd\[28404\]: Invalid user operator2222 from 194.152.206.93 port 52779 2019-12-16T07:19:34.929687shield sshd\[28404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.152.206.93	2019-12-16 15:36:24

Recently Reported IPs

197.61.22.112	157.50.213.67	95.188.73.171	176.97.170.107
2.51.68.30	88.44.135.210	13.228.88.44	176.48.118.141
49.206.220.201	45.224.27.242	27.73.119.95	179.174.56.79
37.199.219.81	117.220.198.187	117.4.125.12	114.222.125.123
90.220.143.110	117.193.200.189	31.129.235.214	207.148.25.180