41.237.145.169

Basic Info

City: Cairo

Region: Cairo Governorate

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: TE-AS

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 23:29:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.237.145.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6967
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.237.145.169.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070800 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 08 23:29:00 CST 2019
;; MSG SIZE  rcvd: 118

Host info

169.145.237.41.in-addr.arpa domain name pointer host-41.237.145.169.tedata.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
169.145.237.41.in-addr.arpa	name = host-41.237.145.169.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.202.143	attackspam	Invalid user pruebas from 167.99.202.143 port 60046	2020-02-29 08:50:52
178.128.148.98	attackbotsspam	Feb 28 21:09:29 firewall sshd[15890]: Invalid user alan from 178.128.148.98 Feb 28 21:09:32 firewall sshd[15890]: Failed password for invalid user alan from 178.128.148.98 port 49204 ssh2 Feb 28 21:16:40 firewall sshd[16029]: Invalid user test2 from 178.128.148.98 ...	2020-02-29 08:46:35
180.76.138.132	attack	$f2bV_matches	2020-02-29 08:27:12
140.213.34.109	attack	1582926933 - 02/28/2020 22:55:33 Host: 140.213.34.109/140.213.34.109 Port: 445 TCP Blocked	2020-02-29 08:57:27
129.28.88.77	attack	Feb 29 01:08:12 dedicated sshd[21495]: Invalid user eric from 129.28.88.77 port 40306	2020-02-29 08:23:59
121.149.251.133	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 08:50:25
139.59.190.69	attackspam	Feb 28 23:47:14 master sshd[29726]: Failed password for invalid user hudson from 139.59.190.69 port 57151 ssh2	2020-02-29 08:32:08
209.59.143.230	attackspam	Feb 29 01:22:16 dev0-dcde-rnet sshd[19239]: Failed password for www-data from 209.59.143.230 port 33681 ssh2 Feb 29 01:36:19 dev0-dcde-rnet sshd[19330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.59.143.230 Feb 29 01:36:21 dev0-dcde-rnet sshd[19330]: Failed password for invalid user dan from 209.59.143.230 port 42053 ssh2	2020-02-29 08:42:00
117.149.21.145	attack	Feb 28 19:23:53 NPSTNNYC01T sshd[2764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.21.145 Feb 28 19:23:55 NPSTNNYC01T sshd[2764]: Failed password for invalid user radio from 117.149.21.145 port 3713 ssh2 Feb 28 19:28:49 NPSTNNYC01T sshd[3107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.21.145 ...	2020-02-29 08:32:33
222.186.30.209	attackspam	SSH bruteforce	2020-02-29 08:19:28
5.252.193.112	attack	IP Blocked by DimIDS. Persistent RDP Attack!	2020-02-29 08:33:57
139.99.89.72	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/139.99.89.72/ FR - 1H : (21) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : FR NAME ASN : ASN16276 IP : 139.99.89.72 CIDR : 139.99.0.0/17 PREFIX COUNT : 132 UNIQUE IP COUNT : 3052544 ATTACKS DETECTED ASN16276 : 1H - 2 3H - 4 6H - 4 12H - 5 24H - 23 DateTime : 2020-02-28 22:55:43 INFO : Potentially Bad Traffic Scan Detected and Blocked by ADMIN - data recovery	2020-02-29 08:48:44
124.113.219.145	attackspam	Feb 28 22:56:16 grey postfix/smtpd\[5605\]: NOQUEUE: reject: RCPT from unknown\[124.113.219.145\]: 554 5.7.1 Service unavailable\; Client host \[124.113.219.145\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[124.113.219.145\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-29 08:28:30
103.139.68.238	attackbotsspam	Invalid user oracle from 103.139.68.238 port 64677	2020-02-29 08:49:34
64.227.19.68	attackspam	Feb 28 13:22:15 XXX sshd[16266]: User r.r from 64.227.19.68 not allowed because none of user's groups are listed in AllowGroups Feb 28 13:22:15 XXX sshd[16266]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:16 XXX sshd[16268]: Invalid user admin from 64.227.19.68 Feb 28 13:22:16 XXX sshd[16268]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:17 XXX sshd[16270]: Invalid user ubnt from 64.227.19.68 Feb 28 13:22:17 XXX sshd[16270]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:18 XXX sshd[16272]: User r.r from 64.227.19.68 not allowed because none of user's groups are listed in AllowGroups Feb 28 13:22:18 XXX sshd[16272]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:18 XXX sshd[16274]: Invalid user support from 64.227.19.68 Feb 28 13:22:19 XXX sshd[16274]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:19 XXX sshd[16276]: User r.r from ........ -------------------------------	2020-02-29 08:18:04

Recently Reported IPs

101.109.96.136	105.153.80.247	71.145.241.243	207.51.125.96
165.138.249.173	80.18.111.50	58.187.144.84	223.241.5.242
201.53.98.23	205.77.142.246	217.170.197.89	97.217.204.216
191.80.125.150	218.234.198.102	106.114.255.113	116.65.93.82
76.207.174.194	188.65.89.252	35.77.229.22	79.126.7.80