JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 41.67.140.18

41.67.140.18 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 0%: ?

ISP	BP VP1 Residence Lekki
Usage Type	Fixed Line ISP
ASN	AS30998
Hostname(s)	netcomafrica.com
Domain Name	netcomafrica.com
Country	🇳🇬 Nigeria
City	Lekki, Lagos

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 41.67.140.18

Whois 41.67.140.18

IP Abuse Reports for 41.67.140.18:

This IP address has been reported a total of 24 times from 16 distinct sources. 41.67.140.18 was first reported on April 4th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 maximonline.co.za	2024-11-01 08:21:13 (1 year ago)	Brute Force IMAP AUTH Attack	Brute-Force
🇺🇸 TPI-Abuse	2024-10-27 18:51:24 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 41.67.140.18 (netcomafrica.com): 1 in the last ... show more (mod_security) mod_security (id:210730) triggered by 41.67.140.18 (netcomafrica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 27 14:51:18.399467 2024] [security2:error] [pid 17614:tid 17614] [client 41.67.140.18:59169] [client 41.67.140.18] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|thevillageartcenter.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "thevillageartcenter.com"] [uri "/mailto:[email protected]"] [unique_id "Zx6LpqR6DUyTe93kopP6NQAAAAk"], referer: http://thevillageartcenter.com/contact.html show less	Brute-Force Bad Web Bot Web App Attack
🇧🇬 MazenHost	2024-10-26 06:12:44 (1 year ago)	1729923172 - 10/26/2024 08:12:52 Host: 41.67.140.18/41.67.140.18 Port: 143 TCP Blocked ...	Port Scan
🇺🇸 etu brutus	2024-10-21 15:35:05 (1 year ago)	41.67.140.18 has been banned for [spam] ...	Hacking Brute-Force
Anonymous	2024-10-19 17:55:27 (1 year ago)	Ports: 143,993; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
🇺🇸 sumnone	2024-10-18 01:25:44 (1 year ago)	Port probing on unauthorized port 993	Port Scan Hacking Exploited Host
Anonymous	2024-10-16 12:51:17 (1 year ago)	dovecot	Brute-Force Web App Attack
🇺🇸 TTWebhosting	2024-10-15 06:51:27 (1 year ago)	(imapd) Failed IMAP login from 41.67.140.18 (NG/Nigeria/Lagos/Lagos/netcomafrica.com): 1 in the last ... show more (imapd) Failed IMAP login from 41.67.140.18 (NG/Nigeria/Lagos/Lagos/netcomafrica.com): 1 in the last 3600 secs show less	Port Scan Hacking Brute-Force
Anonymous	2024-08-07 03:41:00 (1 year ago)	Ports: 25,2525,465,587,2525; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
🇨🇿 lp	2024-06-19 16:52:40 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 41.67.140.18 2024-06-19T17:10:39+02:0 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 41.67.140.18 2024-06-19T17:10:39+02:00 vpn Access-Reject 'supportforonline' station: 41.67.140.18 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2024-06-11 04:53:40 (2 years ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 41.67.140.18 2024-06-11T05:53:04+02:0 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 41.67.140.18 2024-06-11T05:53:04+02:00 vpn Access-Reject 'marketing' station: 41.67.140.18 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇪🇸 10dencehispahard SL	2024-06-03 21:00:53 (2 years ago)	Unauthorized login attempts [ spamlogs]	Brute-Force
🇩🇪 NxtGenIT	2024-06-01 17:52:17 (2 years ago)	41.67.140.18 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attemp ... show more 41.67.140.18 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attempt show less	Brute-Force
🇺🇸 TPI-Abuse	2024-05-28 07:30:37 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 41.67.140.18 (netcomafrica.com): 1 in the last ... show more (mod_security) mod_security (id:210492) triggered by 41.67.140.18 (netcomafrica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 28 03:27:48.640874 2024] [security2:error] [pid 6698] [client 41.67.140.18:54964] [client 41.67.140.18] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thenursingsite.com"] [uri "/wp-config.php~1"] [unique_id "ZlWHdMWNJot-ZNuSzWA-YgAAAE4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-05-27 00:31:01 (2 years ago)	Ports: *; Direction: 0; Trigger: LF_DISTSMTP	Brute-Force SSH

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.169.212.206

🇭🇰 152.32.212.149

🇰🇷 125.137.115.145

🇮🇹 209.227.244.120

🇮🇳 202.88.209.51

🇨🇦 198.50.202.93

🇷🇺 188.32.104.175

🇧🇷 177.215.134.250

🇮🇱 130.185.96.113

🇹🇭 118.27.146.111

🇩🇪 89.245.182.176

🇺🇸 66.132.224.15

🇺🇸 66.132.186.135

🇳🇱 45.148.10.147

🇺🇸 38.59.242.211

🇨🇳 14.103.114.172

🇳🇱 193.176.31.204

🇨🇳 180.76.52.82

🇳🇱 176.65.139.233

🇨🇳 118.196.103.20