41.41.104.69 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:41.	2020-03-18 23:04:47

Comments on same subnet:

IP	Type	Details	Datetime
41.41.104.64	attackbotsspam	Attempted connection to port 445.	2020-07-23 05:02:22
41.41.104.105	attackbots	Unauthorized connection attempt from IP address 41.41.104.105 on Port 445(SMB)	2020-04-01 19:42:06
41.41.104.150	attackspam	unauthorized connection attempt	2020-02-04 17:05:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.41.104.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39624
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.41.104.69.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031800 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 23:04:39 CST 2020
;; MSG SIZE  rcvd: 116

Host info

69.104.41.41.in-addr.arpa domain name pointer host-41.41.104.69.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
69.104.41.41.in-addr.arpa	name = host-41.41.104.69.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
175.107.198.23	attack	$f2bV_matches	2020-06-12 14:51:52
77.241.80.84	attackbotsspam	TCP (SYN) 77.241.80.84:61000 -> port 22, len 40	2020-06-12 14:56:31
106.52.148.196	attackbotsspam	Jun 12 00:11:58 Host-KLAX-C sshd[12002]: User root from 106.52.148.196 not allowed because not listed in AllowUsers ...	2020-06-12 14:54:39
111.198.54.173	attackspam	20 attempts against mh-ssh on cloud	2020-06-12 14:48:53
122.116.33.54	attackbots	Jun 12 13:55:24 web1 sshd[15205]: Invalid user admin from 122.116.33.54 port 57440 Jun 12 13:55:24 web1 sshd[15205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.116.33.54 Jun 12 13:55:24 web1 sshd[15205]: Invalid user admin from 122.116.33.54 port 57440 Jun 12 13:55:27 web1 sshd[15205]: Failed password for invalid user admin from 122.116.33.54 port 57440 ssh2 Jun 12 13:55:28 web1 sshd[15225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.116.33.54 user=root Jun 12 13:55:30 web1 sshd[15225]: Failed password for root from 122.116.33.54 port 57505 ssh2 Jun 12 13:55:31 web1 sshd[15238]: Invalid user admin from 122.116.33.54 port 57577 Jun 12 13:55:32 web1 sshd[15238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.116.33.54 Jun 12 13:55:31 web1 sshd[15238]: Invalid user admin from 122.116.33.54 port 57577 Jun 12 13:55:34 web1 sshd[15238]: Failed passwo ...	2020-06-12 15:03:12
159.65.163.234	attackbotsspam	Port scan denied	2020-06-12 15:25:49
14.143.107.226	attackbotsspam	Jun 12 09:08:27 abendstille sshd\[4006\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.107.226 user=root Jun 12 09:08:29 abendstille sshd\[4006\]: Failed password for root from 14.143.107.226 port 38425 ssh2 Jun 12 09:12:12 abendstille sshd\[7562\]: Invalid user sharing from 14.143.107.226 Jun 12 09:12:12 abendstille sshd\[7562\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.107.226 Jun 12 09:12:14 abendstille sshd\[7562\]: Failed password for invalid user sharing from 14.143.107.226 port 6614 ssh2 ...	2020-06-12 15:22:34
106.12.86.193	attackspam	2020-06-12T08:26:05.675687galaxy.wi.uni-potsdam.de sshd[31869]: Invalid user ec2-user from 106.12.86.193 port 39028 2020-06-12T08:26:05.680810galaxy.wi.uni-potsdam.de sshd[31869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.86.193 2020-06-12T08:26:05.675687galaxy.wi.uni-potsdam.de sshd[31869]: Invalid user ec2-user from 106.12.86.193 port 39028 2020-06-12T08:26:07.550871galaxy.wi.uni-potsdam.de sshd[31869]: Failed password for invalid user ec2-user from 106.12.86.193 port 39028 ssh2 2020-06-12T08:27:23.833311galaxy.wi.uni-potsdam.de sshd[32023]: Invalid user lgq from 106.12.86.193 port 53716 2020-06-12T08:27:23.838563galaxy.wi.uni-potsdam.de sshd[32023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.86.193 2020-06-12T08:27:23.833311galaxy.wi.uni-potsdam.de sshd[32023]: Invalid user lgq from 106.12.86.193 port 53716 2020-06-12T08:27:25.417648galaxy.wi.uni-potsdam.de sshd[32023]: Failed pa ...	2020-06-12 14:55:00
174.138.64.163	attackspambots	Invalid user kaiwei from 174.138.64.163 port 48696	2020-06-12 15:20:44
64.227.58.213	attackspambots	Jun 12 05:55:19 cdc sshd[2443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.58.213 Jun 12 05:55:21 cdc sshd[2443]: Failed password for invalid user shenjiakun from 64.227.58.213 port 43630 ssh2	2020-06-12 15:15:57
179.191.237.172	attackspam	Invalid user yj from 179.191.237.172 port 55187	2020-06-12 15:12:56
152.136.34.209	attackspam	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-12 14:59:49
191.184.32.206	attackspambots	$f2bV_matches	2020-06-12 15:16:26
52.211.98.205	attackspam	C1,DEF GET /2020/wp-login.php	2020-06-12 14:55:16
51.195.162.144	attackbots	Can I know this ip on any contacts and the port it affects, please help me	2020-06-12 15:12:06

Recently Reported IPs

178.46.74.138	178.46.104.239	177.135.23.203	176.220.230.7
170.239.233.88	168.121.102.106	168.68.124.54	219.72.114.14
77.32.50.249	157.102.235.145	212.174.57.49	164.77.131.165
125.27.180.42	122.121.96.148	14.185.8.65	14.177.111.67
124.123.119.164	89.207.110.243	176.217.205.188	124.123.116.255