City: Chicago
Region: Illinois
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 164.155.0.0 - 164.155.255.255
CIDR: 164.155.0.0/16
NetName: AFRINIC-164-155-0-0
NetHandle: NET-164-155-0-0-1
Parent: NET164 (NET-164-0-0-0-0)
NetType: Transferred to AfriNIC
OriginAS:
Organization: African Network Information Center (AFRINIC)
RegDate: 2005-02-21
Updated: 2005-02-21
Comment: This IP address range is under AFRINIC responsibility.
Comment: Please see http://www.afrinic.net/ for further details,
Comment: or check the WHOIS server located at whois.afrinic.net.
Ref: https://rdap.arin.net/registry/ip/164.155.0.0
ResourceLink: http://afrinic.net/en/services/whois-query
ResourceLink: whois.afrinic.net
OrgName: African Network Information Center
OrgId: AFRINIC
Address: Level 11ABC
Address: Raffles Tower
Address: Lot 19, Cybercity
City: Ebene
StateProv:
PostalCode:
Country: MU
RegDate: 2004-05-17
Updated: 2015-05-04
Comment: AfriNIC - http://www.afrinic.net
Comment: The African & Indian Ocean Internet Registry
Ref: https://rdap.arin.net/registry/entity/AFRINIC
ReferralServer: whois://whois.afrinic.net
ResourceLink: http://afrinic.net/en/services/whois-query
OrgTechHandle: GENER11-ARIN
OrgTechName: Generic POC
OrgTechPhone: +230 4666616
OrgTechEmail: abusepoc@afrinic.net
OrgTechRef: https://rdap.arin.net/registry/entity/GENER11-ARIN
OrgAbuseHandle: GENER11-ARIN
OrgAbuseName: Generic POC
OrgAbusePhone: +230 4666616
OrgAbuseEmail: abusepoc@afrinic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/GENER11-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.afrinic.net.
% This is the AfriNIC Whois server.
% The AFRINIC whois database is subject to the following terms of Use. See https://afrinic.net/whois/terms
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '164.155.0.0 - 164.155.255.255'
% No abuse contact registered for 164.155.0.0 - 164.155.255.255
inetnum: 164.155.0.0 - 164.155.255.255
netname: SENTRACHEM
descr: Sentrachem Limited
descr: PO BOX 781811
descr: Sandton, 2146
country: ZA
org: ORG-SL72-AFRINIC
admin-c: ALH1-AFRINIC
tech-c: ALH1-AFRINIC
status: ASSIGNED PI
remarks: ============REMARK===================
remarks: The custodianship of this IP prefix is presently
remarks: deemed to be in dispute. Consequently,
remarks: no change request pertaining to this particular
remarks: prefix will be entertained by AFRINIC until the
remarks: issue is finally resolved between the disputants
remarks: themselves or by a competent authority.
remarks: Further, whilst the current holder of the said prefix
remarks: continues to hold same, AFRINIC shall bear no
remarks: responsibility whatsoever in relation thereto and
remarks: disputants are encouraged to resolve the said
remarks: dispute expeditiously.
remarks: ============REMARK====================
mnt-by: AFRINIC-HM-MNT
mnt-lower: AFRINIC-LH-MNT
source: AFRINIC # Filtered
parent: 0.0.0.0 - 255.255.255.255
organisation: ORG-SL72-AFRINIC
org-name: Sentrachem Limited
org-type: EU-PI
country: ZA
address: PO BOX 781811
address: Sandton, 2146
address: Johannesburg
phone: tel:+230-403-5100
admin-c: ALH1-AFRINIC
tech-c: ALH1-AFRINIC
mnt-ref: AFRINIC-HM-MNT
mnt-ref: AFRINIC-LH-MNT
mnt-by: AFRINIC-HM-MNT
source: AFRINIC # Filtered
role: AFRINIC LH HOSTMASTERS
address: 11th Floor, Standard Chartered Tower
address: 19, Cybercity
address: Ebène, Mauritius
admin-c: JC17-AFRINIC
tech-c: JC17-AFRINIC
tech-c: NMB1-AFRINIC
nic-hdl: ALH1-AFRINIC
mnt-by: AFRINIC-LH-MNT
source: AFRINIC # Filtered; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.155.74.36
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29514
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;164.155.74.36. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026062600 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 26 15:07:12 CST 2026
;; MSG SIZE rcvd: 106b'Host 36.74.155.164.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 164.155.74.36.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.80.70.155 | attackbotsspam | Unauthorized connection attempt from IP address 103.80.70.155 on Port 445(SMB) |
2019-11-24 06:48:47 |
| 46.229.214.220 | attackspam | 11112/tcp 3379/tcp [2019-11-23]2pkt |
2019-11-24 06:53:34 |
| 184.164.15.249 | attackbotsspam | Nov 23 23:41:03 mxgate1 postfix/postscreen[27649]: CONNECT from [184.164.15.249]:64212 to [176.31.12.44]:25 Nov 23 23:41:03 mxgate1 postfix/dnsblog[27650]: addr 184.164.15.249 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 23 23:41:03 mxgate1 postfix/dnsblog[27881]: addr 184.164.15.249 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 23 23:41:03 mxgate1 postfix/dnsblog[27653]: addr 184.164.15.249 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 23 23:41:03 mxgate1 postfix/dnsblog[27651]: addr 184.164.15.249 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 23 23:41:05 mxgate1 postfix/dnsblog[27652]: addr 184.164.15.249 listed by domain bl.spamcop.net as 127.0.0.2 Nov 23 23:41:09 mxgate1 postfix/postscreen[27649]: DNSBL rank 6 for [184.164.15.249]:64212 Nov x@x Nov 23 23:41:11 mxgate1 postfix/postscreen[27649]: HANGUP after 2.5 from [184.164.15.249]:64212 in tests after SMTP handshake Nov 23 23:41:11 mxgate1 postfix/postscreen[27649]: DISCONNECT [184.164........ ------------------------------- |
2019-11-24 07:24:45 |
| 89.144.47.4 | attack | 191124 0:34:30 \[Warning\] Access denied for user 'root'@'89.144.47.4' \(using password: YES\) 191124 0:43:17 \[Warning\] Access denied for user 'root'@'89.144.47.4' \(using password: YES\) 191124 0:43:27 \[Warning\] Access denied for user 'root'@'89.144.47.4' \(using password: YES\) ... |
2019-11-24 06:57:34 |
| 132.248.88.74 | attackbotsspam | Nov 23 12:58:02 wbs sshd\[24221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.248.88.74 user=uucp Nov 23 12:58:04 wbs sshd\[24221\]: Failed password for uucp from 132.248.88.74 port 59985 ssh2 Nov 23 13:02:25 wbs sshd\[24604\]: Invalid user eiriksson from 132.248.88.74 Nov 23 13:02:25 wbs sshd\[24604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.248.88.74 Nov 23 13:02:27 wbs sshd\[24604\]: Failed password for invalid user eiriksson from 132.248.88.74 port 50354 ssh2 |
2019-11-24 07:19:15 |
| 118.25.27.67 | attackbots | 2019-11-23T22:38:48.410305shield sshd\[10599\]: Invalid user jboss from 118.25.27.67 port 54972 2019-11-23T22:38:48.413420shield sshd\[10599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.27.67 2019-11-23T22:38:50.372652shield sshd\[10599\]: Failed password for invalid user jboss from 118.25.27.67 port 54972 ssh2 2019-11-23T22:45:58.162303shield sshd\[12359\]: Invalid user white from 118.25.27.67 port 35014 2019-11-23T22:45:58.166634shield sshd\[12359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.27.67 |
2019-11-24 06:51:33 |
| 27.157.129.13 | attackspam | badbot |
2019-11-24 06:45:41 |
| 177.204.77.231 | attackspambots | port scan and connect, tcp 23 (telnet) |
2019-11-24 07:18:39 |
| 41.146.232.111 | attack | Lines containing failures of 41.146.232.111 Nov 23 23:25:54 omfg postfix/smtpd[26974]: connect from 8ta-146-232-111.telkomadsl.co.za[41.146.232.111] Nov x@x Nov 23 23:26:05 omfg postfix/smtpd[26974]: lost connection after DATA from 8ta-146-232-111.telkomadsl.co.za[41.146.232.111] Nov 23 23:26:05 omfg postfix/smtpd[26974]: disconnect from 8ta-146-232-111.telkomadsl.co.za[41.146.232.111] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=41.146.232.111 |
2019-11-24 07:13:35 |
| 187.210.226.214 | attack | Nov 23 12:38:49 web1 sshd\[27041\]: Invalid user admin0000 from 187.210.226.214 Nov 23 12:38:49 web1 sshd\[27041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.210.226.214 Nov 23 12:38:51 web1 sshd\[27041\]: Failed password for invalid user admin0000 from 187.210.226.214 port 41544 ssh2 Nov 23 12:45:55 web1 sshd\[27749\]: Invalid user ibntas from 187.210.226.214 Nov 23 12:45:55 web1 sshd\[27749\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.210.226.214 |
2019-11-24 06:52:25 |
| 27.75.141.153 | attack | port scan/probe/communication attempt; port 23 |
2019-11-24 07:04:21 |
| 172.110.30.125 | attack | Nov 23 23:39:26 tux-35-217 sshd\[20312\]: Invalid user prolow from 172.110.30.125 port 51836 Nov 23 23:39:26 tux-35-217 sshd\[20312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.110.30.125 Nov 23 23:39:28 tux-35-217 sshd\[20312\]: Failed password for invalid user prolow from 172.110.30.125 port 51836 ssh2 Nov 23 23:45:32 tux-35-217 sshd\[20333\]: Invalid user hageseth from 172.110.30.125 port 59992 Nov 23 23:45:32 tux-35-217 sshd\[20333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.110.30.125 ... |
2019-11-24 07:21:07 |
| 184.13.240.142 | attackspam | 2019-11-23T22:45:36.653477abusebot-4.cloudsearch.cf sshd\[11354\]: Invalid user periasamy from 184.13.240.142 port 49862 |
2019-11-24 07:14:57 |
| 192.161.90.125 | attack | Unauthorized connection attempt from IP address 192.161.90.125 on Port 445(SMB) |
2019-11-24 07:07:33 |
| 118.140.73.70 | attack | Unauthorized connection attempt from IP address 118.140.73.70 on Port 445(SMB) |
2019-11-24 07:02:12 |