41.162.69.42 - IPInfo

Basic Info

City: Durban

Region: KwaZulu-Natal

Country: South Africa

Internet Service Provider: Liquid Telecommunications South Africa (Pty) Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2020-06-05 15:24:21
attackspam	Port probing on unauthorized port 8080	2020-03-25 05:16:47

Comments on same subnet:

IP	Type	Details	Datetime
41.162.69.179	attackspam	Automatic report - Port Scan Attack	2019-08-25 18:54:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.162.69.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23000
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.162.69.42.			IN	A

;; AUTHORITY SECTION:
.			574	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032402 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 25 05:16:43 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 42.69.162.41.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.69.162.41.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.74.253.55	attackspambots	Unauthorized connection attempt from IP address 115.74.253.55 on Port 445(SMB)	2019-07-06 21:31:21
89.64.3.247	attackspambots	2019-07-03 20:01:10 H=89-64-3-247.dynamic.chello.pl [89.64.3.247]:61027 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=89.64.3.247) 2019-07-03 20:01:10 unexpected disconnection while reading SMTP command from 89-64-3-247.dynamic.chello.pl [89.64.3.247]:61027 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-07-03 20:08:33 H=89-64-3-247.dynamic.chello.pl [89.64.3.247]:7853 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=89.64.3.247) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=89.64.3.247	2019-07-06 21:23:50
191.53.249.184	attack	SMTP-sasl brute force ...	2019-07-06 21:06:08
157.230.30.23	attackbotsspam	Jul 6 11:07:32 vserver sshd\[2319\]: Invalid user erdi1 from 157.230.30.23Jul 6 11:07:35 vserver sshd\[2319\]: Failed password for invalid user erdi1 from 157.230.30.23 port 52508 ssh2Jul 6 11:10:49 vserver sshd\[2383\]: Invalid user ts from 157.230.30.23Jul 6 11:10:52 vserver sshd\[2383\]: Failed password for invalid user ts from 157.230.30.23 port 49194 ssh2 ...	2019-07-06 21:15:08
191.53.59.148	attackspambots	Brute force attempt	2019-07-06 21:43:54
117.216.169.23	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-06 21:15:40
212.129.128.249	attackbotsspam	Jul 6 15:31:08 tux-35-217 sshd\[10125\]: Invalid user spoj0 from 212.129.128.249 port 58544 Jul 6 15:31:08 tux-35-217 sshd\[10125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.128.249 Jul 6 15:31:10 tux-35-217 sshd\[10125\]: Failed password for invalid user spoj0 from 212.129.128.249 port 58544 ssh2 Jul 6 15:35:12 tux-35-217 sshd\[10138\]: Invalid user ts3 from 212.129.128.249 port 43102 Jul 6 15:35:12 tux-35-217 sshd\[10138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.128.249 ...	2019-07-06 21:47:31
193.106.29.106	attackspam	Portscan or hack attempt detected by psad/fwsnort	2019-07-06 21:38:59
149.202.214.11	attackbotsspam	Automated report - ssh fail2ban: Jul 6 06:03:36 authentication failure Jul 6 06:03:39 wrong password, user=murai1, port=60450, ssh2 Jul 6 06:05:40 authentication failure	2019-07-06 20:55:03
138.197.78.121	attackspam	Jul 6 13:17:06 ncomp sshd[32479]: Invalid user demo from 138.197.78.121 Jul 6 13:17:06 ncomp sshd[32479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.78.121 Jul 6 13:17:06 ncomp sshd[32479]: Invalid user demo from 138.197.78.121 Jul 6 13:17:07 ncomp sshd[32479]: Failed password for invalid user demo from 138.197.78.121 port 52066 ssh2	2019-07-06 21:12:40
177.137.124.40	attack	Jul 5 22:31:45 mailman postfix/smtpd[23194]: warning: unknown[177.137.124.40]: SASL PLAIN authentication failed: authentication failure	2019-07-06 21:10:30
188.166.72.240	attackspambots	2019-07-06T13:01:33.411008abusebot-3.cloudsearch.cf sshd\[10480\]: Invalid user nagios from 188.166.72.240 port 60884	2019-07-06 21:03:32
46.105.227.206	attackspambots	Fail2Ban Ban Triggered	2019-07-06 21:07:39
90.176.155.86	attackbots	NAME : NEXTEL-XDSL CIDR : 90.176.155.0/24 DDoS attack Czech Republic - block certain countries :) IP: 90.176.155.86 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-07-06 21:09:19
168.228.119.118	attackspam	Brute force attempt	2019-07-06 21:40:42

Recently Reported IPs

177.205.39.4	5.99.135.59	113.179.14.98	122.84.100.125
134.28.1.19	124.193.253.117	87.15.95.103	47.61.227.67
200.49.94.6	172.124.31.10	194.183.63.225	131.211.206.5
64.2.182.208	153.166.176.202	190.76.14.21	162.83.254.99
97.181.247.69	98.180.237.188	221.74.175.16	71.198.200.85