197.44.52.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 197.44.52.72 on Port 445(SMB)	2019-08-01 11:35:26

Comments on same subnet:

IP	Type	Details	Datetime
197.44.52.200	attack	Brute force attempt	2020-03-10 17:12:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.44.52.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55849
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.44.52.72.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 01 11:35:20 CST 2019
;; MSG SIZE  rcvd: 116

Host info

72.52.44.197.in-addr.arpa domain name pointer host-197.44.52.72-static.tedata.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
72.52.44.197.in-addr.arpa	name = host-197.44.52.72-static.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
24.137.147.95	attack	Automatic report - Banned IP Access	2020-09-04 05:50:53
41.60.14.91	attackbots	Sep 3 18:49:23 mellenthin postfix/smtpd[21047]: NOQUEUE: reject: RCPT from unknown[41.60.14.91]: 554 5.7.1 Service unavailable; Client host [41.60.14.91] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/41.60.14.91; from= to= proto=ESMTP helo=<41.60.14.91.liquidtelecom.net>	2020-09-04 06:04:55
212.60.66.145	attack	Attempts against non-existent wp-login	2020-09-04 06:23:56
77.121.81.204	attackspam	Sep 3 22:45:36 server sshd[15977]: Failed password for root from 77.121.81.204 port 62003 ssh2 Sep 3 22:49:13 server sshd[20961]: Failed password for invalid user dines from 77.121.81.204 port 46703 ssh2 Sep 3 22:52:53 server sshd[25697]: Failed password for invalid user wxl from 77.121.81.204 port 30305 ssh2	2020-09-04 05:55:29
117.241.201.123	attackspambots	Lines containing failures of 117.241.201.123 Sep 2 10:09:27 omfg postfix/smtpd[20612]: connect from unknown[117.241.201.123] Sep x@x Sep 2 10:09:28 omfg postfix/smtpd[20612]: lost connection after DATA from unknown[117.241.201.123] Sep 2 10:09:28 omfg postfix/smtpd[20612]: disconnect from unknown[117.241.201.123] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.241.201.123	2020-09-04 06:10:24
46.101.154.142	attackbots	SSH Invalid Login	2020-09-04 05:50:02
222.186.31.83	attackspam	Sep 3 23:54:30 PorscheCustomer sshd[925]: Failed password for root from 222.186.31.83 port 57788 ssh2 Sep 3 23:55:01 PorscheCustomer sshd[958]: Failed password for root from 222.186.31.83 port 58782 ssh2 Sep 3 23:55:03 PorscheCustomer sshd[958]: Failed password for root from 222.186.31.83 port 58782 ssh2 ...	2020-09-04 05:58:28
178.34.190.34	attackbotsspam	SSH Invalid Login	2020-09-04 06:15:16
85.70.201.97	attackbotsspam	Sep 3 18:49:21 mellenthin postfix/smtpd[21052]: NOQUEUE: reject: RCPT from 97.201.broadband3.iol.cz[85.70.201.97]: 554 5.7.1 Service unavailable; Client host [85.70.201.97] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/85.70.201.97; from= to= proto=ESMTP helo=<97.201.broadband3.iol.cz>	2020-09-04 06:06:01
45.142.120.137	attack	Sep 3 14:39:14 pixelmemory postfix/smtpd[3448666]: warning: unknown[45.142.120.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 14:39:52 pixelmemory postfix/smtpd[3448666]: warning: unknown[45.142.120.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 14:40:29 pixelmemory postfix/smtpd[3448666]: warning: unknown[45.142.120.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 14:41:03 pixelmemory postfix/smtpd[3448666]: warning: unknown[45.142.120.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 14:41:44 pixelmemory postfix/smtpd[3447772]: warning: unknown[45.142.120.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-04 05:50:23
81.68.123.65	attackbotsspam	Invalid user user3 from 81.68.123.65 port 39564	2020-09-04 06:23:09
104.206.128.74	attack	TCP (SYN) 104.206.128.74:51576 -> port 21, len 44	2020-09-04 05:47:21
161.52.178.130	attackspambots	20/9/3@13:16:20: FAIL: Alarm-Network address from=161.52.178.130 ...	2020-09-04 05:43:53
188.225.179.86	attack	Dovecot Invalid User Login Attempt.	2020-09-04 05:52:13
203.99.62.158	attack	SSH Brute Force	2020-09-04 06:03:29

Recently Reported IPs

40.113.140.144	125.167.82.102	14.248.80.11	115.79.214.213
124.158.12.204	171.238.6.185	201.211.137.112	96.31.228.162
112.133.229.79	10.156.235.49	106.42.216.156	114.7.120.30
177.55.153.7	45.114.37.139	179.42.255.128	167.71.53.204
106.12.195.224	144.217.5.73	42.115.214.120	14.189.9.110