JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 156.214.172.95

156.214.172.95 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 0%: ?

ISP	TE Data
Usage Type	Fixed Line ISP
ASN	AS8452
Domain Name	tedata.net
Country	🇪🇬 Egypt
City	Giza, Giza

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 156.214.172.95

Whois 156.214.172.95

IP Abuse Reports for 156.214.172.95:

This IP address has been reported a total of 28 times from 20 distinct sources. 156.214.172.95 was first reported on July 22nd 2023, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 gbzret4d	2026-03-22 01:52:41 (2 months ago)	Honeypot [uk-production01]: MSSQL traffic (on 1433) with username sa and empty password	Brute-Force
🇩🇪 _ArminS_	2026-03-21 22:31:34 (2 months ago)	SP-Scan 47447:445 detected 2026.03.21 23:31:34 blocked until 2026.05.10 17:34:21	Port Scan
🇩🇪 Mailguard-FRD	2026-03-21 09:28:26 (2 months ago)	1774085304 - 03/21/2026 10:28:24 Host: 156.214.172.95/156.214.172.95 Port: 445 TCP Blocked ...	Port Scan
🇹🇷 Detmach	2026-03-21 05:59:36 (2 months ago)	Security attack detected. Multiple failed attempts from 156.214.172.95. IP banned for 1440 minutes a ... show more Security attack detected. Multiple failed attempts from 156.214.172.95. IP banned for 1440 minutes at 21.03.2026 08:59:36. Failed attempts: 3 show less	Brute-Force
🇹🇷 Detmach	2026-03-21 04:45:15 (2 months ago)	Security attack detected. Multiple failed attempts from 156.214.172.95. IP banned for 1440 minutes a ... show more Security attack detected. Multiple failed attempts from 156.214.172.95. IP banned for 1440 minutes at 21.03.2026 07:44:44. Failed attempts: 3 show less	Brute-Force
🇫🇷 vtchost.com	2026-03-20 23:17:33 (2 months ago)	Probing unauthorized ports ...	Port Scan
🇺🇸 MPL	2026-03-20 15:53:50 (2 months ago)	tcp/1433	Port Scan
🇺🇸 MPL	2026-03-20 00:12:59 (2 months ago)	tcp/445 (4 or more attempts)	Port Scan
🇺🇸 MPL	2026-03-19 21:25:08 (2 months ago)	tcp/445 (2 or more attempts)	Port Scan
🇨🇿 Rx007	2026-03-19 10:27:00 (2 months ago)	CrowdSec report: a1ad/mikrotik-scan-scenario. Target: TCP port 445.	Port Scan
🇧🇾 StatsMe	2026-03-18 22:54:08 (2 months ago)	2026-03-18T19:33:51.369531+0300 ET SCAN Suspicious inbound to MSSQL port 1433	Port Scan
🇺🇸 MPL	2026-03-18 06:10:00 (2 months ago)	tcp/1433 (3 or more attempts)	Port Scan
🇺🇸 MPL	2026-03-18 04:30:03 (2 months ago)	tcp/1433	Port Scan
🇨🇦 Largnet SOC	2026-03-17 16:26:41 (2 months ago)	156.214.172.95 triggered Icarus honeypot on port 1433. Check us out on github.	Port Scan Hacking
🇫🇷 sthoyer.de	2026-03-16 09:57:30 (2 months ago)	Mar 16 10:57:28 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Mar 16 10:57:28 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=156.214.172.95 DST=173.212.223.67 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=60077 PROTO=TCP SPT=41905 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.40.215.162

🇻🇳 171.231.196.215

🇻🇳 103.130.213.223

🇻🇳 103.42.58.119

🇺🇸 34.55.66.180

🇺🇸 34.10.102.46

🇺🇸 18.188.37.4

🇩🇪 213.209.159.242

🇭🇰 199.45.154.120

🇺🇸 195.184.76.83

🇨🇳 180.153.236.156

🇳🇱 91.92.40.10

🇱🇹 81.30.98.62

🇳🇱 45.148.10.152

🇫🇮 35.228.117.178

🇭🇰 35.220.203.245

🇬🇧 35.203.211.230

🇨🇱 34.176.236.63

🇺🇸 34.125.116.44

🇺🇸 34.48.135.162