41.146.136.229

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Telkom SA Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port probing on unauthorized port 22	2020-08-19 18:57:44

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.146.136.229
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55294
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.146.136.229.			IN	A

;; AUTHORITY SECTION:
.			480	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081900 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 19 18:57:38 CST 2020
;; MSG SIZE  rcvd: 118

Host info

229.136.146.41.in-addr.arpa domain name pointer 8ta-146-136-229.telkomadsl.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
229.136.146.41.in-addr.arpa	name = 8ta-146-136-229.telkomadsl.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.82.145.214	attack	2020-05-05T13:08:07.961480abusebot-2.cloudsearch.cf sshd[12143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.145.214 user=root 2020-05-05T13:08:10.185785abusebot-2.cloudsearch.cf sshd[12143]: Failed password for root from 183.82.145.214 port 35210 ssh2 2020-05-05T13:12:40.758119abusebot-2.cloudsearch.cf sshd[12153]: Invalid user ubuntu from 183.82.145.214 port 42542 2020-05-05T13:12:40.765440abusebot-2.cloudsearch.cf sshd[12153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.145.214 2020-05-05T13:12:40.758119abusebot-2.cloudsearch.cf sshd[12153]: Invalid user ubuntu from 183.82.145.214 port 42542 2020-05-05T13:12:43.135235abusebot-2.cloudsearch.cf sshd[12153]: Failed password for invalid user ubuntu from 183.82.145.214 port 42542 ssh2 2020-05-05T13:15:27.241573abusebot-2.cloudsearch.cf sshd[12243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1 ...	2020-05-05 21:58:42
176.37.60.16	attackbots	2020-05-05T06:45:17.192677ns386461 sshd\[14058\]: Invalid user elasticsearch from 176.37.60.16 port 47110 2020-05-05T06:45:17.197576ns386461 sshd\[14058\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-176-37-60-16.la.net.ua 2020-05-05T06:45:18.938529ns386461 sshd\[14058\]: Failed password for invalid user elasticsearch from 176.37.60.16 port 47110 ssh2 2020-05-05T15:21:55.669315ns386461 sshd\[30108\]: Invalid user elk from 176.37.60.16 port 45405 2020-05-05T15:21:55.673760ns386461 sshd\[30108\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-176-37-60-16.la.net.ua ...	2020-05-05 22:05:07
123.16.213.13	attackspambots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-05-05 21:42:44
198.108.67.44	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-05 21:51:54
64.225.114.140	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-05 22:10:34
198.108.67.20	attack	" "	2020-05-05 21:46:25
93.170.116.48	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-05 21:51:04
203.110.215.167	attackbotsspam	May 5 15:39:43 h2779839 sshd[19035]: Invalid user http from 203.110.215.167 port 58279 May 5 15:39:43 h2779839 sshd[19035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.215.167 May 5 15:39:43 h2779839 sshd[19035]: Invalid user http from 203.110.215.167 port 58279 May 5 15:39:45 h2779839 sshd[19035]: Failed password for invalid user http from 203.110.215.167 port 58279 ssh2 May 5 15:43:34 h2779839 sshd[19155]: Invalid user superstar from 203.110.215.167 port 52624 May 5 15:43:34 h2779839 sshd[19155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.215.167 May 5 15:43:34 h2779839 sshd[19155]: Invalid user superstar from 203.110.215.167 port 52624 May 5 15:43:36 h2779839 sshd[19155]: Failed password for invalid user superstar from 203.110.215.167 port 52624 ssh2 May 5 15:47:40 h2779839 sshd[19266]: Invalid user bertolotti from 203.110.215.167 port 46974 ...	2020-05-05 22:07:07
198.108.66.232	attackspambots	firewall-block, port(s): 9838/tcp	2020-05-05 21:32:25
77.42.100.213	attackbots	Automatic report - Port Scan Attack	2020-05-05 22:08:07
223.204.251.200	attackspam	Honeypot attack, port: 445, PTR: mx-ll-223.204.251-200.dynamic.3bb.co.th.	2020-05-05 21:57:56
150.136.57.188	attackbotsspam	May 5 15:52:56 vmd17057 sshd[27735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.57.188 May 5 15:52:57 vmd17057 sshd[27735]: Failed password for invalid user jenkins from 150.136.57.188 port 38152 ssh2 ...	2020-05-05 21:54:41
80.76.244.151	attackbotsspam	$f2bV_matches	2020-05-05 21:43:11
62.152.14.234	attackspam	Honeypot attack, port: 5555, PTR: cpe-555970.ip.primehome.com.	2020-05-05 22:12:13
39.152.161.65	attackspambots	2020-05-0511:15:571jVtgC-0003Re-8j\<=info@whatsup2013.chH=$localhost$[221.229.121.226]:44918P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3090id=2541683b301bcec2e5a01645b1767c7043f5086e@whatsup2013.chT="Youaresocharming"forhzhyness1@gmail.comnivaxxx26@gmail.com2020-05-0511:17:041jVthG-0003Wu-7M\<=info@whatsup2013.chH=$localhost$[212.113.234.114]:39343P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3160id=0286306368436961fdf84ee205f1dbc7af6c54@whatsup2013.chT="Youignitemyheart."forrondelogeorge9@gmail.comscottyboy118@gmail.com2020-05-0511:16:301jVtgj-0003V3-FB\<=info@whatsup2013.chH=$localhost$[113.172.53.153]:52483P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3071id=288533606b406a62fefb4de106f2d8c48f7633@whatsup2013.chT="Youareaslovelyasasunlight"formarcko0122@gmail.comusmcl1218@gmail.com2020-05-0511:16:051jVtgK-0003Se-MM\<=info@whatsup2013.chH=$localhost$[197.248.	2020-05-05 22:04:52

Recently Reported IPs

202.40.20.29	254.65.35.180	178.98.139.221	49.67.28.187
188.57.163.62	34.112.48.149	94.217.106.44	141.24.48.80
142.69.140.238	98.84.100.199	202.62.47.166	40.85.123.203
49.68.255.161	45.187.113.121	218.212.92.90	193.46.199.245
13.76.253.107	222.95.133.41	35.225.119.72	201.138.137.74