197.45.34.90 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 197.45.34.90 to port 445	2020-05-13 01:54:42

Comments on same subnet:

IP	Type	Details	Datetime
197.45.34.195	attackspambots	Honeypot attack, port: 445, PTR: host-197.45.34.195.tedata.net.	2020-04-15 22:34:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.45.34.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2554
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.45.34.90.			IN	A

;; AUTHORITY SECTION:
.			446	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051201 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 13 01:54:36 CST 2020
;; MSG SIZE  rcvd: 116

Host info

90.34.45.197.in-addr.arpa domain name pointer host-197.45.34.90.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.34.45.197.in-addr.arpa	name = host-197.45.34.90.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.140.235.120	attack	firewall-block, port(s): 1433/tcp	2019-11-04 07:01:43
189.169.32.102	attackbots	Unauthorized connection attempt from IP address 189.169.32.102 on Port 445(SMB)	2019-11-04 06:59:24
180.250.205.114	attackbots	2019-11-03T22:21:12.867836hub.schaetter.us sshd\[5867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.205.114 user=root 2019-11-03T22:21:14.552628hub.schaetter.us sshd\[5867\]: Failed password for root from 180.250.205.114 port 43095 ssh2 2019-11-03T22:25:46.233603hub.schaetter.us sshd\[5907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.205.114 user=root 2019-11-03T22:25:48.866849hub.schaetter.us sshd\[5907\]: Failed password for root from 180.250.205.114 port 34230 ssh2 2019-11-03T22:30:21.949448hub.schaetter.us sshd\[5925\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.205.114 user=root ...	2019-11-04 07:08:40
27.254.137.144	attackspambots	Nov 3 22:43:38 hcbbdb sshd\[9376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 user=root Nov 3 22:43:40 hcbbdb sshd\[9376\]: Failed password for root from 27.254.137.144 port 57446 ssh2 Nov 3 22:47:58 hcbbdb sshd\[9835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 user=root Nov 3 22:48:00 hcbbdb sshd\[9835\]: Failed password for root from 27.254.137.144 port 43282 ssh2 Nov 3 22:52:17 hcbbdb sshd\[10282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 user=root	2019-11-04 06:56:29
222.186.175.167	attackspam	Nov 3 19:47:48 firewall sshd[21844]: Failed password for root from 222.186.175.167 port 8494 ssh2 Nov 3 19:47:52 firewall sshd[21844]: Failed password for root from 222.186.175.167 port 8494 ssh2 Nov 3 19:47:56 firewall sshd[21844]: Failed password for root from 222.186.175.167 port 8494 ssh2 ...	2019-11-04 07:10:40
51.15.55.90	attackspam	Nov 3 22:30:24 thevastnessof sshd[17505]: Failed password for root from 51.15.55.90 port 38272 ssh2 ...	2019-11-04 07:05:44
80.82.77.139	attackspambots	11/03/2019-17:40:25.132861 80.82.77.139 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-04 07:19:35
184.154.47.2	attackbotsspam	TCP Port Scanning	2019-11-04 06:51:41
148.70.3.199	attack	Nov 3 23:47:56 SilenceServices sshd[20937]: Failed password for root from 148.70.3.199 port 45422 ssh2 Nov 3 23:52:19 SilenceServices sshd[25372]: Failed password for root from 148.70.3.199 port 55304 ssh2	2019-11-04 07:06:24
188.166.108.161	attack	Nov 4 05:26:50 itv-usvr-02 sshd[13171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.108.161 user=root Nov 4 05:26:52 itv-usvr-02 sshd[13171]: Failed password for root from 188.166.108.161 port 45594 ssh2 Nov 4 05:30:19 itv-usvr-02 sshd[13212]: Invalid user postgres from 188.166.108.161 port 55952 Nov 4 05:30:19 itv-usvr-02 sshd[13212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.108.161 Nov 4 05:30:19 itv-usvr-02 sshd[13212]: Invalid user postgres from 188.166.108.161 port 55952 Nov 4 05:30:21 itv-usvr-02 sshd[13212]: Failed password for invalid user postgres from 188.166.108.161 port 55952 ssh2	2019-11-04 07:08:22
193.112.191.228	attack	2019-11-03T22:30:29.665907abusebot-5.cloudsearch.cf sshd\[8043\]: Invalid user grandpa from 193.112.191.228 port 37372	2019-11-04 06:59:09
31.145.150.194	attackbots	Unauthorized connection attempt from IP address 31.145.150.194 on Port 445(SMB)	2019-11-04 07:15:11
80.211.48.46	attackspam	Nov 4 01:04:27 server sshd\[31336\]: Invalid user Sylvania from 80.211.48.46 port 53188 Nov 4 01:04:27 server sshd\[31336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.48.46 Nov 4 01:04:29 server sshd\[31336\]: Failed password for invalid user Sylvania from 80.211.48.46 port 53188 ssh2 Nov 4 01:08:20 server sshd\[14789\]: Invalid user 1234 from 80.211.48.46 port 34882 Nov 4 01:08:20 server sshd\[14789\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.48.46	2019-11-04 07:24:42
46.61.68.154	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/46.61.68.154/ RU - 1H : (149) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN12389 IP : 46.61.68.154 CIDR : 46.61.64.0/19 PREFIX COUNT : 2741 UNIQUE IP COUNT : 8699648 ATTACKS DETECTED ASN12389 : 1H - 7 3H - 12 6H - 18 12H - 43 24H - 70 DateTime : 2019-11-03 23:30:20 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-04 07:09:49
61.84.240.87	attackbotsspam	firewall-block, port(s): 23/tcp	2019-11-04 07:21:01

Recently Reported IPs

179.159.32.229	139.77.70.130	179.127.166.50	131.1.203.176
177.222.131.120	204.58.45.199	177.207.158.26	173.77.7.243
162.158.187.118	162.158.187.116	161.0.156.185	152.249.96.36
143.202.191.216	121.185.201.97	121.174.195.146	119.205.107.105
112.186.233.241	100.12.73.6	211.53.238.221	35.27.155.185