41.42.157.172 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 41.42.157.172 to port 23	2019-12-29 16:54:11

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.42.157.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14084
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.42.157.172.			IN	A

;; AUTHORITY SECTION:
.			516	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122900 1800 900 604800 86400

;; Query time: 386 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 29 16:54:08 CST 2019
;; MSG SIZE  rcvd: 117

Host info

172.157.42.41.in-addr.arpa domain name pointer host-41.42.157.172.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
172.157.42.41.in-addr.arpa	name = host-41.42.157.172.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.223	attack	Jul 30 02:10:51 eventyay sshd[16527]: Failed password for root from 218.92.0.223 port 58167 ssh2 Jul 30 02:10:54 eventyay sshd[16527]: Failed password for root from 218.92.0.223 port 58167 ssh2 Jul 30 02:10:58 eventyay sshd[16527]: Failed password for root from 218.92.0.223 port 58167 ssh2 Jul 30 02:11:01 eventyay sshd[16527]: Failed password for root from 218.92.0.223 port 58167 ssh2 ...	2020-07-30 08:21:04
118.27.11.168	attackspam	Scanned 3 times in the last 24 hours on port 22	2020-07-30 08:28:58
104.248.16.41	attack	Multiport scan 37 ports : 1098 1692 2786 2981 3422 4175 4957 6439 8868 9367 9568 9846 10666 13545 14029 14330 14655 15207 15422 15901 16130 17278 20034 20683 21605 24053 24811 25975 26932 26951 27055 28946 30143 30211 31796 32348 32385	2020-07-30 08:22:22
82.200.226.226	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-30 07:58:19
198.199.65.103	attackbots	TCP (SYN) 198.199.65.103:32767 -> port 8545, len 44	2020-07-30 08:17:00
186.16.163.3	attackbots	20 attempts against mh-ssh on echoip	2020-07-30 08:01:20
161.97.92.155	attackbots	TCP (SYN) 161.97.92.155:51133 -> port 5038, len 44	2020-07-30 08:07:12
185.232.30.130	attackspam	Jul 30 02:07:10 debian-2gb-nbg1-2 kernel: \[18326123.591085\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.232.30.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=234 PROTO=TCP SPT=43071 DPT=3393 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-30 08:10:01
191.255.11.58	attack	Invalid user fangdm from 191.255.11.58 port 33086	2020-07-30 08:07:00
218.92.0.219	attackspambots	Jul 30 00:10:54 scw-6657dc sshd[16099]: Failed password for root from 218.92.0.219 port 20796 ssh2 Jul 30 00:10:54 scw-6657dc sshd[16099]: Failed password for root from 218.92.0.219 port 20796 ssh2 Jul 30 00:10:56 scw-6657dc sshd[16099]: Failed password for root from 218.92.0.219 port 20796 ssh2 ...	2020-07-30 08:11:55
106.54.105.9	attack	Invalid user wusm from 106.54.105.9 port 45008	2020-07-30 08:03:50
117.51.159.1	attackbots	Jul 29 04:33:36 our-server-hostname sshd[22629]: Invalid user giorgia from 117.51.159.1 Jul 29 04:33:36 our-server-hostname sshd[22629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.159.1 Jul 29 04:33:38 our-server-hostname sshd[22629]: Failed password for invalid user giorgia from 117.51.159.1 port 45634 ssh2 Jul 29 04:48:31 our-server-hostname sshd[24527]: Invalid user fating from 117.51.159.1 Jul 29 04:48:31 our-server-hostname sshd[24527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.159.1 Jul 29 04:48:33 our-server-hostname sshd[24527]: Failed password for invalid user fating from 117.51.159.1 port 49452 ssh2 Jul 29 05:01:09 our-server-hostname sshd[26253]: Invalid user maker01 from 117.51.159.1 Jul 29 05:01:09 our-server-hostname sshd[26253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.159.1 Jul 29 05:01:10 our-s........ -------------------------------	2020-07-30 08:21:51
218.78.81.207	attack	B: Abusive ssh attack	2020-07-30 08:21:30
49.235.83.156	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-30 08:12:50
140.143.239.123	attack	[Wed Jul 29 15:17:48 2020] - Syn Flood From IP: 140.143.239.123 Port: 47342	2020-07-30 08:14:37

Recently Reported IPs

189.235.18.5	187.142.55.173	186.54.40.89	185.176.56.101
185.108.164.178	183.78.152.14	180.150.176.130	179.228.25.203
179.187.164.207	179.183.44.50	179.98.175.77	190.102.206.6
179.25.6.213	175.203.248.150	173.68.158.87	149.3.3.27
123.145.14.230	104.191.250.56	103.49.52.142	95.9.93.223