197.45.34.90 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 197.45.34.90 to port 445	2020-05-13 01:54:42

Comments on same subnet:

IP	Type	Details	Datetime
197.45.34.195	attackspambots	Honeypot attack, port: 445, PTR: host-197.45.34.195.tedata.net.	2020-04-15 22:34:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.45.34.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2554
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.45.34.90.			IN	A

;; AUTHORITY SECTION:
.			446	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051201 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 13 01:54:36 CST 2020
;; MSG SIZE  rcvd: 116

Host info

90.34.45.197.in-addr.arpa domain name pointer host-197.45.34.90.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.34.45.197.in-addr.arpa	name = host-197.45.34.90.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
67.43.15.7	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08311230)	2019-08-31 18:16:49
51.77.245.181	attack	Invalid user customs from 51.77.245.181 port 38476	2019-08-31 17:24:41
193.70.90.59	attackbots	Aug 31 07:04:52 [munged] sshd[16422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.90.59	2019-08-31 17:25:09
62.220.216.250	attack	Unauthorized connection attempt from IP address 62.220.216.250 on Port 445(SMB)	2019-08-31 17:29:07
185.215.54.174	attackbots	Unauthorized connection attempt from IP address 185.215.54.174 on Port 445(SMB)	2019-08-31 17:34:26
31.23.227.127	attackbotsspam	Unauthorized connection attempt from IP address 31.23.227.127 on Port 445(SMB)	2019-08-31 17:50:33
89.248.169.12	attackbots	08/31/2019-05:09:19.769847 89.248.169.12 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 100	2019-08-31 17:44:15
164.132.42.32	attackbotsspam	Aug 31 11:21:13 SilenceServices sshd[17978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.42.32 Aug 31 11:21:15 SilenceServices sshd[17978]: Failed password for invalid user md from 164.132.42.32 port 32910 ssh2 Aug 31 11:25:19 SilenceServices sshd[19578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.42.32	2019-08-31 17:27:00
162.247.73.192	attackspam	Aug 31 11:18:48 rotator sshd\[20000\]: Failed password for root from 162.247.73.192 port 40762 ssh2Aug 31 11:18:50 rotator sshd\[20000\]: Failed password for root from 162.247.73.192 port 40762 ssh2Aug 31 11:18:53 rotator sshd\[20000\]: Failed password for root from 162.247.73.192 port 40762 ssh2Aug 31 11:18:56 rotator sshd\[20000\]: Failed password for root from 162.247.73.192 port 40762 ssh2Aug 31 11:18:59 rotator sshd\[20000\]: Failed password for root from 162.247.73.192 port 40762 ssh2Aug 31 11:19:01 rotator sshd\[20000\]: Failed password for root from 162.247.73.192 port 40762 ssh2 ...	2019-08-31 18:12:07
5.1.88.50	attack	SSH Brute-Force attacks	2019-08-31 18:04:45
62.234.206.12	attack	Aug 30 23:48:00 web9 sshd\[7332\]: Invalid user ftpuser from 62.234.206.12 Aug 30 23:48:00 web9 sshd\[7332\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.206.12 Aug 30 23:48:02 web9 sshd\[7332\]: Failed password for invalid user ftpuser from 62.234.206.12 port 54124 ssh2 Aug 30 23:54:02 web9 sshd\[8405\]: Invalid user jefferson from 62.234.206.12 Aug 30 23:54:02 web9 sshd\[8405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.206.12	2019-08-31 18:02:26
162.247.74.201	attack	Aug 31 10:22:45 rotator sshd\[10613\]: Failed password for root from 162.247.74.201 port 56300 ssh2Aug 31 10:22:49 rotator sshd\[10613\]: Failed password for root from 162.247.74.201 port 56300 ssh2Aug 31 10:22:51 rotator sshd\[10613\]: Failed password for root from 162.247.74.201 port 56300 ssh2Aug 31 10:22:54 rotator sshd\[10613\]: Failed password for root from 162.247.74.201 port 56300 ssh2Aug 31 10:22:57 rotator sshd\[10613\]: Failed password for root from 162.247.74.201 port 56300 ssh2Aug 31 10:23:00 rotator sshd\[10613\]: Failed password for root from 162.247.74.201 port 56300 ssh2 ...	2019-08-31 17:16:50
187.189.62.96	attack	Unauthorized connection attempt from IP address 187.189.62.96 on Port 445(SMB)	2019-08-31 17:22:57
31.223.133.172	attackspambots	DDOS	2019-08-31 17:55:46
200.94.105.34	attackspambots	firewall-block, port(s): 445/tcp	2019-08-31 17:17:42

Recently Reported IPs

179.159.32.229	139.77.70.130	179.127.166.50	131.1.203.176
177.222.131.120	204.58.45.199	177.207.158.26	173.77.7.243
162.158.187.118	162.158.187.116	161.0.156.185	152.249.96.36
143.202.191.216	121.185.201.97	121.174.195.146	119.205.107.105
112.186.233.241	100.12.73.6	211.53.238.221	35.27.155.185