41.149.112.154

Basic Info

City: Pretoria

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.149.112.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43945
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.149.112.154.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 25 05:20:03 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 154.112.149.41.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 154.112.149.41.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.254.220.61	attackbotsspam	$f2bV_matches	2020-08-24 03:11:40
185.188.238.55	attackbotsspam	DATE:2020-08-23 14:17:24, IP:185.188.238.55, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-08-24 03:23:56
194.15.36.91	attackbots	TCP (SYN) 194.15.36.91:25859 -> port 23, len 40	2020-08-24 03:46:45
192.99.57.32	attackbotsspam	Aug 23 19:52:18 vps647732 sshd[26048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.57.32 Aug 23 19:52:20 vps647732 sshd[26048]: Failed password for invalid user postgres from 192.99.57.32 port 48664 ssh2 ...	2020-08-24 03:16:39
185.209.161.225	attackspam	(smtpauth) Failed SMTP AUTH login from 185.209.161.225 (US/United States/customer.clientshostname.com): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-23 16:46:56 login authenticator failed for (buf71) [185.209.161.225]: 535 Incorrect authentication data (set_id=test@vertix.co)	2020-08-24 03:48:18
178.128.215.16	attackspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-24 03:11:58
54.38.33.178	attackspambots	Total attacks: 2	2020-08-24 03:23:26
5.88.132.235	attack	Aug 23 14:11:15 roki-contabo sshd\[8988\]: Invalid user gch from 5.88.132.235 Aug 23 14:11:15 roki-contabo sshd\[8988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.88.132.235 Aug 23 14:11:17 roki-contabo sshd\[8988\]: Failed password for invalid user gch from 5.88.132.235 port 63970 ssh2 Aug 23 14:17:58 roki-contabo sshd\[9085\]: Invalid user msilva from 5.88.132.235 Aug 23 14:17:58 roki-contabo sshd\[9085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.88.132.235 ...	2020-08-24 03:13:45
49.205.139.199	attackspambots	Aug 22 00:00:30 rudra sshd[205364]: Address 49.205.139.199 maps to broadband.actcorp.in, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Aug 22 00:00:30 rudra sshd[205364]: Invalid user autologin from 49.205.139.199 Aug 22 00:00:30 rudra sshd[205364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.205.139.199 Aug 22 00:00:32 rudra sshd[205364]: Failed password for invalid user autologin from 49.205.139.199 port 43048 ssh2 Aug 22 00:00:32 rudra sshd[205364]: Received disconnect from 49.205.139.199: 11: Bye Bye [preauth] Aug 22 00:08:24 rudra sshd[211014]: Address 49.205.139.199 maps to broadband.actcorp.in, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Aug 22 00:08:24 rudra sshd[211014]: Invalid user thiago from 49.205.139.199 Aug 22 00:08:24 rudra sshd[211014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.205.139.199 Aug 22 00:08:26........ -------------------------------	2020-08-24 03:30:36
170.233.46.210	attackspam	DATE:2020-08-23 14:18:00, IP:170.233.46.210, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-08-24 03:12:55
111.93.58.18	attack	2020-08-23T21:27:41.499934snf-827550 sshd[22338]: Invalid user ts3 from 111.93.58.18 port 45864 2020-08-23T21:27:44.000560snf-827550 sshd[22338]: Failed password for invalid user ts3 from 111.93.58.18 port 45864 ssh2 2020-08-23T21:32:21.136684snf-827550 sshd[22445]: Invalid user computer from 111.93.58.18 port 57482 ...	2020-08-24 03:31:17
59.124.90.113	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-24 03:28:43
177.104.68.193	attackbots	Unauthorized connection attempt from IP address 177.104.68.193 on Port 25(SMTP)	2020-08-24 03:39:17
106.12.36.3	attackbotsspam	Aug 23 16:42:08 124388 sshd[11681]: Invalid user arlindo from 106.12.36.3 port 37690 Aug 23 16:42:08 124388 sshd[11681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.36.3 Aug 23 16:42:08 124388 sshd[11681]: Invalid user arlindo from 106.12.36.3 port 37690 Aug 23 16:42:10 124388 sshd[11681]: Failed password for invalid user arlindo from 106.12.36.3 port 37690 ssh2 Aug 23 16:45:55 124388 sshd[11829]: Invalid user mysql from 106.12.36.3 port 52956	2020-08-24 03:14:37
111.231.63.42	attackspam	Aug 23 14:16:00 rancher-0 sshd[1232544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.63.42 user=root Aug 23 14:16:02 rancher-0 sshd[1232544]: Failed password for root from 111.231.63.42 port 52310 ssh2 ...	2020-08-24 03:36:48

Recently Reported IPs

195.180.235.203	154.246.0.192	144.102.169.31	24.52.245.59
32.11.37.230	219.104.204.106	115.238.116.115	49.0.143.222
195.56.55.185	107.228.125.73	157.182.125.104	215.215.210.144
186.32.12.179	51.124.98.124	123.89.166.166	216.243.212.177
155.2.16.143	195.149.144.158	148.228.71.53	160.7.33.44