41.19.85.140 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.19.85.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44182
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;41.19.85.140.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 17:39:42 CST 2025
;; MSG SIZE  rcvd: 105

Host info

140.85.19.41.in-addr.arpa domain name pointer vc-gp-n-41-19-85-140.umts.vodacom.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.85.19.41.in-addr.arpa	name = vc-gp-n-41-19-85-140.umts.vodacom.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.93.181.10	attackspam	Failed password for root from 103.93.181.10 port 50638 ssh2	2020-08-20 21:52:30
188.40.194.205	attackbotsspam	SpamScore above: 10.0	2020-08-20 22:08:18
95.181.152.224	attackbots	Aug 19 18:15:21 vzhost sshd[21524]: reveeclipse mapping checking getaddrinfo for atayilmaz1181.mskhost.pro [95.181.152.224] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 19 18:15:21 vzhost sshd[21524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.152.224 user=r.r Aug 19 18:15:23 vzhost sshd[21524]: Failed password for r.r from 95.181.152.224 port 42746 ssh2 Aug 19 18:15:23 vzhost sshd[21529]: reveeclipse mapping checking getaddrinfo for 59599.msk.host [95.181.152.224] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 19 18:15:23 vzhost sshd[21529]: Invalid user admin from 95.181.152.224 Aug 19 18:15:23 vzhost sshd[21529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.152.224 Aug 19 18:15:26 vzhost sshd[21529]: Failed password for invalid user admin from 95.181.152.224 port 44115 ssh2 Aug 19 18:15:26 vzhost sshd[21534]: reveeclipse mapping checking getaddrinfo for 59599.msk.host [95.181......... -------------------------------	2020-08-20 21:40:59
43.224.3.219	attackspam	C2,WP GET /wp-login.php	2020-08-20 22:03:06
179.43.143.147	attackspam	srvr1: (mod_security) mod_security (id:920350) triggered by 179.43.143.147 (CH/-/caspian.idfnv.net): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/20 12:07:21 [error] 408245#0: 711375 [client 179.43.143.147] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159792524195.366448"] [ref "o0,13v21,13"], client: 179.43.143.147, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-20 21:24:27
153.131.176.4	attackbots	Lines containing failures of 153.131.176.4 (max 1000) Aug 19 16:35:47 localhost sshd[28437]: Invalid user samba from 153.131.176.4 port 61947 Aug 19 16:35:47 localhost sshd[28437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.131.176.4 Aug 19 16:35:49 localhost sshd[28437]: Failed password for invalid user samba from 153.131.176.4 port 61947 ssh2 Aug 19 16:35:51 localhost sshd[28437]: Received disconnect from 153.131.176.4 port 61947:11: Bye Bye [preauth] Aug 19 16:35:51 localhost sshd[28437]: Disconnected from invalid user samba 153.131.176.4 port 61947 [preauth] Aug 19 16:46:32 localhost sshd[329]: Did not receive identification string from 153.131.176.4 port 56173 Aug 19 16:50:09 localhost sshd[1681]: Invalid user nagios from 153.131.176.4 port 61476 Aug 19 16:50:09 localhost sshd[1681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.131.176.4 Aug 19 16:50:11 localhost sshd[1........ ------------------------------	2020-08-20 21:36:43
213.33.226.118	attackbots	Aug 20 14:07:49 electroncash sshd[49890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.33.226.118 Aug 20 14:07:49 electroncash sshd[49890]: Invalid user b from 213.33.226.118 port 52396 Aug 20 14:07:51 electroncash sshd[49890]: Failed password for invalid user b from 213.33.226.118 port 52396 ssh2 Aug 20 14:09:07 electroncash sshd[50243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.33.226.118 user=root Aug 20 14:09:08 electroncash sshd[50243]: Failed password for root from 213.33.226.118 port 42830 ssh2 ...	2020-08-20 21:40:26
148.72.211.106	attack	tcp 6379	2020-08-20 22:04:02
118.24.202.34	attack	Aug 20 14:11:59 rocket sshd[22103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.202.34 Aug 20 14:12:02 rocket sshd[22103]: Failed password for invalid user crh from 118.24.202.34 port 37432 ssh2 ...	2020-08-20 21:25:37
103.253.146.142	attackspambots	SSH Brute Force	2020-08-20 22:05:25
170.210.214.50	attackbotsspam	20 attempts against mh-ssh on cloud	2020-08-20 21:49:40
175.6.137.38	attackspambots	Aug 20 06:34:14 dignus sshd[8591]: Failed password for invalid user patrol from 175.6.137.38 port 45862 ssh2 Aug 20 06:37:42 dignus sshd[9161]: Invalid user sdtdserver from 175.6.137.38 port 34834 Aug 20 06:37:42 dignus sshd[9161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.6.137.38 Aug 20 06:37:44 dignus sshd[9161]: Failed password for invalid user sdtdserver from 175.6.137.38 port 34834 ssh2 Aug 20 06:41:04 dignus sshd[9689]: Invalid user ann from 175.6.137.38 port 52040 ...	2020-08-20 22:08:46
159.89.115.74	attack	Aug 20 14:07:22 ncomp sshd[12635]: Invalid user simon from 159.89.115.74 Aug 20 14:07:22 ncomp sshd[12635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.74 Aug 20 14:07:22 ncomp sshd[12635]: Invalid user simon from 159.89.115.74 Aug 20 14:07:24 ncomp sshd[12635]: Failed password for invalid user simon from 159.89.115.74 port 33886 ssh2	2020-08-20 21:25:20
51.254.37.156	attack	Aug 20 16:01:42 abendstille sshd\[12798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.156 user=root Aug 20 16:01:44 abendstille sshd\[12798\]: Failed password for root from 51.254.37.156 port 33352 ssh2 Aug 20 16:05:30 abendstille sshd\[16205\]: Invalid user centos from 51.254.37.156 Aug 20 16:05:30 abendstille sshd\[16205\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.156 Aug 20 16:05:32 abendstille sshd\[16205\]: Failed password for invalid user centos from 51.254.37.156 port 41280 ssh2 ...	2020-08-20 22:09:07
152.136.114.118	attackbotsspam	Aug 20 15:54:18 hosting sshd[29535]: Invalid user nsc from 152.136.114.118 port 51414 ...	2020-08-20 22:03:46

Recently Reported IPs

76.205.155.230	137.128.157.224	195.227.0.149	142.94.9.44
250.175.132.227	179.36.24.48	91.112.153.6	40.84.209.43
33.182.87.101	184.59.81.181	115.187.158.10	164.17.252.82
107.147.109.206	92.243.64.109	204.88.149.135	219.184.47.74
236.116.35.163	224.4.239.78	34.249.190.100	67.44.172.144