41.21.149.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Vodacom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	445/tcp [2020-10-04]1pkt	2020-10-06 06:40:07
attack	445/tcp [2020-10-04]1pkt	2020-10-05 22:47:45
attackbotsspam	445/tcp [2020-10-04]1pkt	2020-10-05 14:42:42

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.21.149.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51917
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.21.149.4.			IN	A

;; AUTHORITY SECTION:
.			517	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100500 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 05 14:42:36 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 4.149.21.41.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.149.21.41.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.70.96.195	attackspam	$f2bV_matches	2019-10-22 12:29:59
77.106.40.220	attackbotsspam	Chat Spam	2019-10-22 12:15:25
49.88.112.68	attackspambots	Oct 22 07:30:52 sauna sshd[129010]: Failed password for root from 49.88.112.68 port 28491 ssh2 ...	2019-10-22 12:52:57
190.112.244.170	attackspambots	UTC: 2019-10-21 port: 23/tcp	2019-10-22 12:31:13
51.68.70.175	attackbots	Oct 21 18:23:37 kapalua sshd\[17611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.ip-51-68-70.eu user=root Oct 21 18:23:39 kapalua sshd\[17611\]: Failed password for root from 51.68.70.175 port 60216 ssh2 Oct 21 18:27:32 kapalua sshd\[17951\]: Invalid user singha from 51.68.70.175 Oct 21 18:27:32 kapalua sshd\[17951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.ip-51-68-70.eu Oct 21 18:27:34 kapalua sshd\[17951\]: Failed password for invalid user singha from 51.68.70.175 port 42558 ssh2	2019-10-22 12:58:47
103.95.12.132	attack	Oct 22 05:58:11 MK-Soft-Root1 sshd[11376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.95.12.132 Oct 22 05:58:13 MK-Soft-Root1 sshd[11376]: Failed password for invalid user Motdepasse1q from 103.95.12.132 port 36756 ssh2 ...	2019-10-22 12:15:55
45.142.195.151	attack	2019-10-22T04:57:29.855989beta postfix/smtpd[8710]: warning: unknown[45.142.195.151]: SASL LOGIN authentication failed: authentication failure 2019-10-22T04:57:31.896331beta postfix/smtpd[8713]: warning: unknown[45.142.195.151]: SASL LOGIN authentication failed: authentication failure 2019-10-22T04:57:48.656231beta postfix/smtpd[8710]: warning: unknown[45.142.195.151]: SASL LOGIN authentication failed: authentication failure ...	2019-10-22 12:36:18
124.158.160.34	attack	Unauthorised access (Oct 22) SRC=124.158.160.34 LEN=52 TOS=0x10 PREC=0x40 TTL=110 ID=20718 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Oct 14) SRC=124.158.160.34 LEN=52 PREC=0x20 TTL=107 ID=7200 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-22 12:49:40
91.121.103.175	attack	Oct 22 07:09:52 server sshd\[10060\]: User root from 91.121.103.175 not allowed because listed in DenyUsers Oct 22 07:09:52 server sshd\[10060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.103.175 user=root Oct 22 07:09:53 server sshd\[10060\]: Failed password for invalid user root from 91.121.103.175 port 51042 ssh2 Oct 22 07:15:47 server sshd\[25127\]: Invalid user oracledbtest from 91.121.103.175 port 57466 Oct 22 07:15:47 server sshd\[25127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.103.175	2019-10-22 12:16:13
157.230.91.45	attackbots	Oct 21 18:40:19 php1 sshd\[10123\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.91.45 user=root Oct 21 18:40:20 php1 sshd\[10123\]: Failed password for root from 157.230.91.45 port 44259 ssh2 Oct 21 18:43:58 php1 sshd\[10456\]: Invalid user gmodserv3 from 157.230.91.45 Oct 21 18:43:58 php1 sshd\[10456\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.91.45 Oct 21 18:44:00 php1 sshd\[10456\]: Failed password for invalid user gmodserv3 from 157.230.91.45 port 35418 ssh2	2019-10-22 12:49:24
183.99.242.252	attackspambots	Brute force attempt	2019-10-22 12:33:22
92.118.38.37	attackbotsspam	Oct 22 06:42:59 andromeda postfix/smtpd\[55998\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: authentication failure Oct 22 06:43:12 andromeda postfix/smtpd\[50176\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: authentication failure Oct 22 06:43:31 andromeda postfix/smtpd\[47478\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: authentication failure Oct 22 06:43:35 andromeda postfix/smtpd\[55998\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: authentication failure Oct 22 06:43:47 andromeda postfix/smtpd\[50176\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: authentication failure	2019-10-22 12:44:01
178.128.213.126	attackbots	2019-10-21T23:34:43.8737231495-001 sshd\[46292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.126 user=root 2019-10-21T23:34:45.8498321495-001 sshd\[46292\]: Failed password for root from 178.128.213.126 port 44996 ssh2 2019-10-21T23:43:58.5485961495-001 sshd\[46708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.126 user=root 2019-10-21T23:44:01.3822991495-001 sshd\[46708\]: Failed password for root from 178.128.213.126 port 54154 ssh2 2019-10-21T23:48:15.4101401495-001 sshd\[46864\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.126 user=root 2019-10-21T23:48:17.8576341495-001 sshd\[46864\]: Failed password for root from 178.128.213.126 port 36836 ssh2 ...	2019-10-22 12:17:47
106.13.52.234	attack	Oct 22 07:29:23 microserver sshd[15101]: Invalid user victor from 106.13.52.234 port 39828 Oct 22 07:29:23 microserver sshd[15101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 Oct 22 07:29:25 microserver sshd[15101]: Failed password for invalid user victor from 106.13.52.234 port 39828 ssh2 Oct 22 07:38:08 microserver sshd[16401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 user=root Oct 22 07:38:11 microserver sshd[16401]: Failed password for root from 106.13.52.234 port 55408 ssh2 Oct 22 07:50:03 microserver sshd[17984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 user=root Oct 22 07:50:06 microserver sshd[17984]: Failed password for root from 106.13.52.234 port 50444 ssh2 Oct 22 07:53:55 microserver sshd[18593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 user=root Oct 22 07:	2019-10-22 12:33:37
35.190.219.201	attackbotsspam	Unauthorised access (Oct 22) SRC=35.190.219.201 LEN=40 TTL=241 ID=54321 TCP DPT=21 WINDOW=65535 SYN	2019-10-22 12:59:10

Recently Reported IPs

15.200.247.25	20.80.37.87	34.178.88.195	244.119.170.205
91.93.1.204	185.152.83.254	91.215.70.198	45.142.120.33
220.158.162.143	163.238.239.2	2.197.42.113	166.131.235.94
18.211.58.180	149.29.143.54	94.104.56.219	97.121.97.53
45.55.253.19	68.80.80.202	89.238.208.230	3.142.208.200