41.162.117.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Liquid Telecommunications South Africa (Pty) Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08041230)	2019-08-05 03:52:45

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.162.117.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14324
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.162.117.34.			IN	A

;; AUTHORITY SECTION:
.			2999	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042200 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 22 14:15:40 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 34.117.162.41.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 34.117.162.41.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.72.112.47	attack	Sep 28 11:05:37 bouncer sshd\[31604\]: Invalid user rack from 59.72.112.47 port 59156 Sep 28 11:05:37 bouncer sshd\[31604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.112.47 Sep 28 11:05:40 bouncer sshd\[31604\]: Failed password for invalid user rack from 59.72.112.47 port 59156 ssh2 ...	2019-09-28 17:44:55
157.230.109.166	attack	[Aegis] @ 2019-09-28 07:56:31 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-09-28 17:35:49
40.76.25.14	attackspam	scan r	2019-09-28 17:34:28
138.68.57.207	attack	wp-login.php	2019-09-28 17:59:46
62.168.92.206	attackspambots	Sep 28 05:09:36 xtremcommunity sshd\[20082\]: Invalid user ubnt from 62.168.92.206 port 59690 Sep 28 05:09:36 xtremcommunity sshd\[20082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.168.92.206 Sep 28 05:09:38 xtremcommunity sshd\[20082\]: Failed password for invalid user ubnt from 62.168.92.206 port 59690 ssh2 Sep 28 05:15:49 xtremcommunity sshd\[20229\]: Invalid user iraf from 62.168.92.206 port 44408 Sep 28 05:15:49 xtremcommunity sshd\[20229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.168.92.206 ...	2019-09-28 17:41:52
201.76.178.51	attackspambots	Sep 28 12:49:37 server sshd\[31398\]: Invalid user remoto from 201.76.178.51 port 47112 Sep 28 12:49:37 server sshd\[31398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.76.178.51 Sep 28 12:49:40 server sshd\[31398\]: Failed password for invalid user remoto from 201.76.178.51 port 47112 ssh2 Sep 28 12:53:48 server sshd\[28267\]: Invalid user cretu from 201.76.178.51 port 39683 Sep 28 12:53:48 server sshd\[28267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.76.178.51	2019-09-28 17:58:24
35.239.132.65	attackspam	Sep 28 05:44:21 ns sshd[14116]: Invalid user demo from 35.239.132.65 Sep 28 05:44:22 ns sshd[14116]: Failed password for invalid user demo from 35.239.132.65 port 53814 ssh2 Sep 28 05:48:09 ns sshd[14604]: Invalid user project from 35.239.132.65 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=35.239.132.65	2019-09-28 17:55:29
106.52.96.44	attackbotsspam	Sep 28 02:28:17 aat-srv002 sshd[4044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.96.44 Sep 28 02:28:20 aat-srv002 sshd[4044]: Failed password for invalid user 111111 from 106.52.96.44 port 34410 ssh2 Sep 28 02:32:29 aat-srv002 sshd[4174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.96.44 Sep 28 02:32:31 aat-srv002 sshd[4174]: Failed password for invalid user ytrewq from 106.52.96.44 port 47472 ssh2 ...	2019-09-28 17:36:41
212.0.149.87	attackspambots	445/tcp 445/tcp 445/tcp... [2019-07-28/09-28]32pkt,1pt.(tcp)	2019-09-28 17:43:39
188.166.31.205	attackspambots	Sep 28 11:41:16 MK-Soft-VM3 sshd[3880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.31.205 Sep 28 11:41:18 MK-Soft-VM3 sshd[3880]: Failed password for invalid user jordan from 188.166.31.205 port 55425 ssh2 ...	2019-09-28 17:46:31
103.19.117.151	attack	A spam used this IP for the URL in the message. This kind of spams used ns177.change-d.net and ns177-02 as the name servers for the domains of its email addresses and URLs (ex. iyye667.com).	2019-09-28 17:41:40
218.79.250.81	attackspam	Brute force attempt	2019-09-28 17:51:49
195.154.43.44	attackbots	445/tcp 445/tcp 445/tcp... [2019-08-13/09-28]6pkt,1pt.(tcp)	2019-09-28 17:31:52
192.144.142.72	attackbotsspam	2019-09-28T09:11:52.718582abusebot-5.cloudsearch.cf sshd\[23627\]: Invalid user indiana from 192.144.142.72 port 42978	2019-09-28 17:35:27
128.199.224.215	attack	Sep 28 09:33:40 game-panel sshd[20322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.224.215 Sep 28 09:33:42 game-panel sshd[20322]: Failed password for invalid user login from 128.199.224.215 port 50692 ssh2 Sep 28 09:38:39 game-panel sshd[20457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.224.215	2019-09-28 17:57:21

Recently Reported IPs

213.55.83.49	117.31.252.221	183.129.154.157	61.32.227.2
183.1.112.167	222.187.224.101	206.52.148.93	158.44.197.229
130.204.67.207	54.229.64.253	31.105.50.89	50.171.59.239
133.175.46.73	138.154.234.110	109.198.51.187	152.93.104.232
4.40.254.29	106.47.76.79	182.98.122.89	118.59.144.129