41.164.180.122

Basic Info

City: Cape Town

Region: Western Cape

Country: South Africa

Internet Service Provider: Liquid Telecommunications South Africa (Pty) Ltd

Hostname: unknown

Organization: Neotel Pty Ltd

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Trying to deliver email spam, but blocked by RBL	2019-07-02 11:04:31

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.164.180.122
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61033
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.164.180.122.			IN	A

;; AUTHORITY SECTION:
.			2719	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033102 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 01 11:56:38 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 122.180.164.41.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 122.180.164.41.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
107.170.244.110	attack	Feb 22 01:45:19 lnxmysql61 sshd[4800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.244.110 Feb 22 01:45:21 lnxmysql61 sshd[4800]: Failed password for invalid user moodle from 107.170.244.110 port 40652 ssh2 Feb 22 01:53:12 lnxmysql61 sshd[5479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.244.110	2020-02-22 09:21:46
103.18.132.169	attack	Feb 22 05:55:01 h2177944 kernel: \[5545137.532347\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.18.132.169 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=56708 DF PROTO=TCP SPT=50206 DPT=441 WINDOW=14180 RES=0x00 SYN URGP=0 Feb 22 05:55:01 h2177944 kernel: \[5545137.532363\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.18.132.169 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=56708 DF PROTO=TCP SPT=50206 DPT=441 WINDOW=14180 RES=0x00 SYN URGP=0 Feb 22 05:55:02 h2177944 kernel: \[5545138.526785\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.18.132.169 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=56709 DF PROTO=TCP SPT=50206 DPT=441 WINDOW=14180 RES=0x00 SYN URGP=0 Feb 22 05:55:02 h2177944 kernel: \[5545138.526798\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.18.132.169 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=56709 DF PROTO=TCP SPT=50206 DPT=441 WINDOW=14180 RES=0x00 SYN URGP=0 Feb 22 05:55:04 h2177944 kernel: \[5545140.524311\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.18.132.169 DST	2020-02-22 13:11:56
77.107.8.80	attackbots	Honeypot attack, port: 5555, PTR: static-80-8-107-77.bredbandsson.se.	2020-02-22 09:35:39
146.88.240.4	attackspambots	scan z	2020-02-22 13:04:27
182.59.206.198	attackspambots	Honeypot attack, port: 445, PTR: static-mum-182.59.206.198.mtnl.net.in.	2020-02-22 09:21:25
222.186.31.83	attack	Feb 22 06:13:13 MK-Soft-VM5 sshd[31338]: Failed password for root from 222.186.31.83 port 38472 ssh2 Feb 22 06:13:17 MK-Soft-VM5 sshd[31338]: Failed password for root from 222.186.31.83 port 38472 ssh2 ...	2020-02-22 13:17:00
186.104.198.97	attack	Fail2Ban - SSH Bruteforce Attempt	2020-02-22 09:39:01
95.243.136.198	attackspam	Feb 22 05:57:42 h2779839 sshd[21635]: Invalid user www from 95.243.136.198 port 60442 Feb 22 05:57:42 h2779839 sshd[21635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.243.136.198 Feb 22 05:57:42 h2779839 sshd[21635]: Invalid user www from 95.243.136.198 port 60442 Feb 22 05:57:44 h2779839 sshd[21635]: Failed password for invalid user www from 95.243.136.198 port 60442 ssh2 Feb 22 06:01:36 h2779839 sshd[21677]: Invalid user sammy from 95.243.136.198 port 49885 Feb 22 06:01:36 h2779839 sshd[21677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.243.136.198 Feb 22 06:01:36 h2779839 sshd[21677]: Invalid user sammy from 95.243.136.198 port 49885 Feb 22 06:01:38 h2779839 sshd[21677]: Failed password for invalid user sammy from 95.243.136.198 port 49885 ssh2 Feb 22 06:04:25 h2779839 sshd[21733]: Invalid user nodeserver from 95.243.136.198 port 59538 ...	2020-02-22 13:13:22
200.86.244.128	attack	Feb 22 02:05:22 plex sshd[22074]: Invalid user odoo from 200.86.244.128 port 60320	2020-02-22 09:30:36
122.224.6.214	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-22 09:31:07
182.52.31.7	attack	Feb 22 00:50:06 163-172-32-151 sshd[16225]: Invalid user gitlab-prometheus from 182.52.31.7 port 36312 ...	2020-02-22 09:36:49
109.189.111.136	attackbots	Honeypot attack, port: 5555, PTR: ti0186q160-0388.bb.online.no.	2020-02-22 09:37:12
124.153.221.43	attackbots	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-22 09:24:31
124.161.16.185	attack	Feb 22 06:35:22 gw1 sshd[8238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.161.16.185 Feb 22 06:35:23 gw1 sshd[8238]: Failed password for invalid user tmp from 124.161.16.185 port 20513 ssh2 ...	2020-02-22 09:41:31
165.227.217.105	attack	Scanning for wp-config.php (54 times)	2020-02-22 13:06:31

Recently Reported IPs

85.15.42.26	219.74.87.23	164.160.32.58	111.255.234.86
192.3.93.6	119.183.96.232	185.176.27.254	103.16.131.157
201.248.67.238	122.55.90.45	192.241.130.61	110.143.184.178
223.240.238.151	211.148.135.196	104.248.112.131	195.223.54.18
192.144.206.207	192.40.90.13	95.38.213.38	92.49.100.203