164.160.12.40 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Zambia

Internet Service Provider: IPv4 Assigned to Vodafone LTE Network

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	web-1 [ssh_2] SSH Attack	2019-11-01 06:36:47
attackspam	Oct 29 06:25:08 server sshd\[15643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.160.12.40 user=root Oct 29 06:25:10 server sshd\[15643\]: Failed password for root from 164.160.12.40 port 38308 ssh2 Oct 29 06:54:10 server sshd\[22110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.160.12.40 user=root Oct 29 06:54:12 server sshd\[22110\]: Failed password for root from 164.160.12.40 port 44084 ssh2 Oct 29 06:58:44 server sshd\[23145\]: Invalid user peace from 164.160.12.40 ...	2019-10-29 12:16:37
attackbotsspam	SSHScan	2019-10-27 03:41:27
attack	Oct 24 23:16:00 SilenceServices sshd[14600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.160.12.40 Oct 24 23:16:02 SilenceServices sshd[14600]: Failed password for invalid user admin from 164.160.12.40 port 38583 ssh2 Oct 24 23:21:17 SilenceServices sshd[15974]: Failed password for root from 164.160.12.40 port 55494 ssh2	2019-10-25 05:21:30
attack	Oct 24 10:31:03 firewall sshd[4861]: Invalid user woepwq1985 from 164.160.12.40 Oct 24 10:31:05 firewall sshd[4861]: Failed password for invalid user woepwq1985 from 164.160.12.40 port 5136 ssh2 Oct 24 10:37:21 firewall sshd[4997]: Invalid user password from 164.160.12.40 ...	2019-10-24 21:45:15

Comments on same subnet:

IP	Type	Details	Datetime
164.160.125.173	attackspam	Automatic report - Port Scan Attack	2019-10-16 09:35:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.160.12.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59948
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.160.12.40.			IN	A

;; AUTHORITY SECTION:
.			379	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102400 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 21:45:03 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 40.12.160.164.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
** server can't find 40.12.160.164.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
194.5.207.142	attackbots	Mar 28 12:07:39 nandi sshd[32124]: Invalid user hui from 194.5.207.142 Mar 28 12:07:39 nandi sshd[32124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.5.207.142 Mar 28 12:07:41 nandi sshd[32124]: Failed password for invalid user hui from 194.5.207.142 port 35102 ssh2 Mar 28 12:07:41 nandi sshd[32124]: Received disconnect from 194.5.207.142: 11: Bye Bye [preauth] Mar 28 12:18:30 nandi sshd[5343]: Invalid user xpw from 194.5.207.142 Mar 28 12:18:30 nandi sshd[5343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.5.207.142 Mar 28 12:18:31 nandi sshd[5343]: Failed password for invalid user xpw from 194.5.207.142 port 57730 ssh2 Mar 28 12:18:31 nandi sshd[5343]: Received disconnect from 194.5.207.142: 11: Bye Bye [preauth] Mar 28 12:26:19 nandi sshd[9699]: Invalid user bny from 194.5.207.142 Mar 28 12:26:19 nandi sshd[9699]: pam_unix(sshd:auth): authentication failure; logname= uid=........ -------------------------------	2020-03-28 21:42:35
185.62.189.163	attackbotsspam	Mar 28 13:55:41 markkoudstaal sshd[2383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.62.189.163 Mar 28 13:55:43 markkoudstaal sshd[2383]: Failed password for invalid user upj from 185.62.189.163 port 55139 ssh2 Mar 28 13:59:39 markkoudstaal sshd[2926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.62.189.163	2020-03-28 22:33:05
112.145.106.40	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-03-28 22:20:07
1.10.141.248	attack	Mar 28 12:41:41 game-panel sshd[9754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.10.141.248 Mar 28 12:41:43 game-panel sshd[9754]: Failed password for invalid user lv from 1.10.141.248 port 52952 ssh2 Mar 28 12:44:46 game-panel sshd[9828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.10.141.248	2020-03-28 22:04:31
14.116.187.31	attackspam	Mar 28 03:12:19 web1 sshd\[7901\]: Invalid user pxp from 14.116.187.31 Mar 28 03:12:19 web1 sshd\[7901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.187.31 Mar 28 03:12:21 web1 sshd\[7901\]: Failed password for invalid user pxp from 14.116.187.31 port 36744 ssh2 Mar 28 03:16:16 web1 sshd\[8292\]: Invalid user oln from 14.116.187.31 Mar 28 03:16:16 web1 sshd\[8292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.187.31	2020-03-28 22:07:35
103.100.211.119	attackbots	Mar 28 13:58:25 h1745522 sshd[17049]: Invalid user ldq from 103.100.211.119 port 42708 Mar 28 13:58:25 h1745522 sshd[17049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.100.211.119 Mar 28 13:58:25 h1745522 sshd[17049]: Invalid user ldq from 103.100.211.119 port 42708 Mar 28 13:58:27 h1745522 sshd[17049]: Failed password for invalid user ldq from 103.100.211.119 port 42708 ssh2 Mar 28 14:02:31 h1745522 sshd[17244]: Invalid user postgres from 103.100.211.119 port 49375 Mar 28 14:02:31 h1745522 sshd[17244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.100.211.119 Mar 28 14:02:31 h1745522 sshd[17244]: Invalid user postgres from 103.100.211.119 port 49375 Mar 28 14:02:33 h1745522 sshd[17244]: Failed password for invalid user postgres from 103.100.211.119 port 49375 ssh2 Mar 28 14:06:40 h1745522 sshd[17438]: Invalid user cqm from 103.100.211.119 port 56046 ...	2020-03-28 22:08:47
82.177.39.21	attackbotsspam	Automatically reported by fail2ban report script (powermetal_old)	2020-03-28 22:09:18
185.85.239.195	attackbots	Wordpress attack	2020-03-28 21:46:44
203.252.139.180	attack	Invalid user flatron from 203.252.139.180 port 32824	2020-03-28 22:28:58
148.72.207.135	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-03-28 21:45:03
5.63.188.221	attackbots	Mar 28 14:12:09 plex sshd[27161]: Invalid user cuu from 5.63.188.221 port 40462	2020-03-28 21:58:29
76.164.234.122	attackspam	Mar 28 15:02:36 debian-2gb-nbg1-2 kernel: \[7663222.698553\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=76.164.234.122 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=56988 PROTO=TCP SPT=59036 DPT=3807 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-28 22:14:25
123.140.114.196	attackbots	SSH auth scanning - multiple failed logins	2020-03-28 22:27:41
162.155.152.138	attack	Telnetd brute force attack detected by fail2ban	2020-03-28 21:58:57
51.77.163.177	attack	2020-03-28T13:40:51.094871upcloud.m0sh1x2.com sshd[5483]: Invalid user nagios from 51.77.163.177 port 42336	2020-03-28 21:49:40

Recently Reported IPs

89.52.232.190	237.25.203.223	197.55.127.214	72.212.211.198
119.89.213.152	148.231.163.171	179.108.179.237	175.140.23.240
118.24.193.50	117.93.217.70	113.172.56.55	109.132.226.86
94.255.130.200	93.245.54.166	85.214.95.237	41.232.52.126
14.187.0.76	1.6.194.180	202.137.155.4	201.131.185.31