JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 41.185.64.31

41.185.64.31 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 100%: ?

100%

ISP	1 GRID (PTY) LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36943
Hostname(s)	ove03-cvps01.hostserv.co.za
Domain Name	1-grid.com
Country	🇿🇦 South Africa
City	Cape Town, Western Cape

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 41.185.64.31

Whois 41.185.64.31

IP Abuse Reports for 41.185.64.31:

This IP address has been reported a total of 48 times from 38 distinct sources. 41.185.64.31 was first reported on June 13th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 RAP	2026-06-16 08:43:07 (1 hour ago)	2026-06-16 08:43:07 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇸🇰 EVISION	2026-06-16 08:15:50 (1 hour ago)	Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporti ... show more Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporting ID: u3ee1pprNhF3lWjO9Rdl7K5rhmSedrpo show less	Port Scan Hacking Brute-Force
🇧🇷 opastorello	2026-06-16 03:19:04 (6 hours ago)	Unsolicited inbound connection attempt / port scan detected by perimeter firewall. Automated report.	Port Scan
🇫🇷 sthoyer.de	2026-06-16 02:58:38 (7 hours ago)	Jun 16 04:58:36 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd: ... show more Jun 16 04:58:36 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=41.185.64.31 DST=173.212.223.67 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=18755 DF PROTO=TCP SPT=60732 DPT=2087 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 16 04:58:36 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=41.185.64.31 DST=173.212.223.67 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=39031 DF PROTO=TCP SPT=35654 DPT=8443 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 16 04:58:36 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=41.185.64.31 DST=173.212.223.67 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=47198 DF PROTO=TCP SPT=51074 DPT=8080 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 16 04:58:36 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=41.185.64.31 DST=173.212.223.67 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=11986 DF PROTO=TCP SPT=40668 DPT=2082 WINDOW=292 ... show less	Port Scan
🇺🇸 MPL	2026-06-16 02:02:26 (8 hours ago)	tcp port scan (8 or more attempts)	Port Scan
🇷🇸 Scan	2026-06-16 01:05:19 (9 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇦🇹 urnilxfgbez	2026-06-15 22:45:00 (11 hours ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 RAP	2026-06-15 19:03:41 (15 hours ago)	2026-06-15 19:03:41 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
Anonymous	2026-06-15 17:55:02 (16 hours ago)	Blocked by os-abuseipdb; 10 hits, proto=tcp, ports=2082,2083,2086,443,80,8080,8443	Port Scan Hacking
🇹🇷 Threat.live	2026-06-15 15:45:03 (18 hours ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 cwytech	2026-06-15 14:56:45 (19 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/web-asn-lockdown-high.	Bad Web Bot Web App Attack
🇵🇱 Wepted	2026-06-15 13:28:39 (20 hours ago)	Port scan detected by honeypot	Port Scan Hacking
🇫🇷 dynamix	2026-06-15 12:26:27 (21 hours ago)	Multiple WAF Violations	Web App Attack
🇺🇸 RAP	2026-06-15 12:16:51 (21 hours ago)	2026-06-15 12:16:51 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇩🇪 Lazentis	2026-06-15 11:56:40 (22 hours ago)	Unauthorized access attempt to port 8080 (tcp)	Brute-Force SSH

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 202.46.62.67

🇺🇸 147.185.132.207

🇨🇳 106.12.148.154

🇧🇩 103.179.201.43

🇺🇸 72.10.32.138

🇺🇸 64.62.156.192

🇬🇧 35.203.211.60

🇻🇳 14.225.173.146

🇺🇸 9.234.8.54

🇰🇷 211.253.37.225

🇫🇷 91.231.89.117

🇬🇧 89.37.172.133

🇷🇴 80.94.92.164

🇮🇳 64.227.169.26

🇧🇴 190.129.122.12

🇧🇷 190.115.84.25

🇵🇰 153.117.52.210

🇺🇸 152.32.207.179

🇲🇾 150.228.145.101

🇨🇳 106.12.170.135