41.138.55.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Niger

Internet Service Provider: Societe Nigerienne des Telecommunications

Hostname: unknown

Organization: SONITEL

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-10-04T15:45:41.401241shield sshd\[24885\]: Invalid user Scorpion@123 from 41.138.55.94 port 54554 2019-10-04T15:45:41.405840shield sshd\[24885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.55.94 2019-10-04T15:45:42.778931shield sshd\[24885\]: Failed password for invalid user Scorpion@123 from 41.138.55.94 port 54554 ssh2 2019-10-04T15:51:17.171334shield sshd\[26253\]: Invalid user Lucas1@3 from 41.138.55.94 port 41153 2019-10-04T15:51:17.176011shield sshd\[26253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.55.94	2019-10-05 03:55:52
attackbotsspam	Sep 17 09:10:11 localhost sshd\[7792\]: Invalid user postgres from 41.138.55.94 port 46133 Sep 17 09:10:11 localhost sshd\[7792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.55.94 Sep 17 09:10:14 localhost sshd\[7792\]: Failed password for invalid user postgres from 41.138.55.94 port 46133 ssh2 Sep 17 09:15:43 localhost sshd\[7957\]: Invalid user deploy from 41.138.55.94 port 32848 Sep 17 09:15:43 localhost sshd\[7957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.55.94 ...	2019-09-17 17:45:21
attackspambots	Jul 15 08:54:25 vps647732 sshd[8699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.55.94 Jul 15 08:54:28 vps647732 sshd[8699]: Failed password for invalid user one from 41.138.55.94 port 34543 ssh2 ...	2019-07-15 15:09:03
attackspambots	Jul 15 03:26:50 vps647732 sshd[30219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.55.94 Jul 15 03:26:52 vps647732 sshd[30219]: Failed password for invalid user vbox from 41.138.55.94 port 36755 ssh2 ...	2019-07-15 09:44:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.138.55.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2828
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.138.55.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040402 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 08:26:46 +08 2019
;; MSG SIZE  rcvd: 116

Host info

Host 94.55.138.41.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 94.55.138.41.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.50.38.246	attackspam	2019-11-02T13:08:37.025270shield sshd\[2251\]: Invalid user uniform from 117.50.38.246 port 52736 2019-11-02T13:08:37.029491shield sshd\[2251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.38.246 2019-11-02T13:08:39.225769shield sshd\[2251\]: Failed password for invalid user uniform from 117.50.38.246 port 52736 ssh2 2019-11-02T13:14:02.213754shield sshd\[3166\]: Invalid user assa from 117.50.38.246 port 59440 2019-11-02T13:14:02.218193shield sshd\[3166\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.38.246	2019-11-02 21:26:54
193.124.65.34	attack	SMB Server BruteForce Attack	2019-11-02 21:41:08
23.99.81.127	attack	Nov 2 14:00:31 vmanager6029 sshd\[27501\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.99.81.127 user=root Nov 2 14:00:33 vmanager6029 sshd\[27501\]: Failed password for root from 23.99.81.127 port 22464 ssh2 Nov 2 14:05:23 vmanager6029 sshd\[27675\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.99.81.127 user=root	2019-11-02 21:25:56
107.189.11.50	attack	107.189.11.50 was recorded 5 times by 3 hosts attempting to connect to the following ports: 53413,5501. Incident counter (4h, 24h, all-time): 5, 9, 9	2019-11-02 21:56:25
172.93.205.52	attackbots	Lines containing failures of 172.93.205.52 Oct 31 11:08:42 shared04 postfix/smtpd[1206]: connect from kurt.hh-prinz-mario.com[172.93.205.52] Oct 31 11:08:43 shared04 policyd-spf[1574]: prepend Received-SPF: Permerror (mailfrom) identhostnamey=mailfrom; client-ip=172.93.205.52; helo=kurt.hh-prinz-mario.com; envelope-from=x@x Oct 31 11:08:43 shared04 postfix/smtpd[1206]: 967592E00254: client=kurt.hh-prinz-mario.com[172.93.205.52] Oct 31 11:08:44 shared04 postfix/smtpd[1206]: disconnect from kurt.hh-prinz-mario.com[172.93.205.52] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quhostname=1 commands=7 Oct x@x Nov 1 04:47:35 shared04 postfix/smtpd[31744]: connect from kurt.hh-prinz-mario.com[172.93.205.52] Nov 1 04:47:36 shared04 policyd-spf[473]: prepend Received-SPF: Permerror (mailfrom) identhostnamey=mailfrom; client-ip=172.93.205.52; helo=kurt.hh-prinz-mario.com; envelope-from=x@x Nov x@x Nov 1 04:47:36 shared04 postfix/smtpd[31744]: disconnect from kurt.hh-prinz-mario.com[172........ ------------------------------	2019-11-02 21:25:38
222.186.180.147	attackspam	Nov 2 14:33:21 h2177944 sshd\[28340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Nov 2 14:33:23 h2177944 sshd\[28340\]: Failed password for root from 222.186.180.147 port 51554 ssh2 Nov 2 14:33:29 h2177944 sshd\[28340\]: Failed password for root from 222.186.180.147 port 51554 ssh2 Nov 2 14:33:33 h2177944 sshd\[28340\]: Failed password for root from 222.186.180.147 port 51554 ssh2 ...	2019-11-02 21:37:58
51.38.126.92	attackspambots	2019-11-02T13:08:14.584328shield sshd\[2234\]: Invalid user 12345678 from 51.38.126.92 port 44284 2019-11-02T13:08:14.589032shield sshd\[2234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.ip-51-38-126.eu 2019-11-02T13:08:16.637181shield sshd\[2234\]: Failed password for invalid user 12345678 from 51.38.126.92 port 44284 ssh2 2019-11-02T13:12:07.108065shield sshd\[2860\]: Invalid user Iceberg2017 from 51.38.126.92 port 53750 2019-11-02T13:12:07.112623shield sshd\[2860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.ip-51-38-126.eu	2019-11-02 21:42:42
145.239.89.243	attackbots	Nov 2 01:53:28 sachi sshd\[10928\]: Invalid user Op3r@t0r from 145.239.89.243 Nov 2 01:53:28 sachi sshd\[10928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=243.ip-145-239-89.eu Nov 2 01:53:30 sachi sshd\[10928\]: Failed password for invalid user Op3r@t0r from 145.239.89.243 port 46726 ssh2 Nov 2 01:57:18 sachi sshd\[11235\]: Invalid user 123! from 145.239.89.243 Nov 2 01:57:18 sachi sshd\[11235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=243.ip-145-239-89.eu	2019-11-02 21:54:10
217.66.201.114	attackbots	Nov 2 14:15:10 rotator sshd\[19634\]: Invalid user from 217.66.201.114Nov 2 14:15:11 rotator sshd\[19634\]: Failed password for invalid user from 217.66.201.114 port 59538 ssh2Nov 2 14:18:58 rotator sshd\[20207\]: Invalid user natalie from 217.66.201.114Nov 2 14:18:59 rotator sshd\[20207\]: Failed password for invalid user natalie from 217.66.201.114 port 35796 ssh2Nov 2 14:22:59 rotator sshd\[20978\]: Invalid user loveanson520 from 217.66.201.114Nov 2 14:23:01 rotator sshd\[20978\]: Failed password for invalid user loveanson520 from 217.66.201.114 port 40252 ssh2 ...	2019-11-02 21:27:13
51.68.192.106	attack	2019-11-02T13:30:40.839043abusebot-3.cloudsearch.cf sshd\[13776\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip106.ip-51-68-192.eu user=root	2019-11-02 21:44:39
5.190.173.202	attackspam	Connection by 5.190.173.202 on port: 23 got caught by honeypot at 11/2/2019 11:57:50 AM	2019-11-02 21:34:47
62.177.251.35	attackbotsspam	Microsoft-Windows-Security-Auditing	2019-11-02 21:36:55
213.230.118.162	attackspambots	Nov 2 12:50:36 mxgate1 postfix/postscreen[2377]: CONNECT from [213.230.118.162]:1588 to [176.31.12.44]:25 Nov 2 12:50:36 mxgate1 postfix/dnsblog[2639]: addr 213.230.118.162 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 2 12:50:36 mxgate1 postfix/dnsblog[2639]: addr 213.230.118.162 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 2 12:50:36 mxgate1 postfix/dnsblog[2641]: addr 213.230.118.162 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 2 12:50:36 mxgate1 postfix/dnsblog[2640]: addr 213.230.118.162 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 2 12:50:36 mxgate1 postfix/postscreen[2377]: PREGREET 24 after 0.15 from [213.230.118.162]:1588: EHLO [213.230.118.162] Nov 2 12:50:36 mxgate1 postfix/postscreen[2377]: DNSBL rank 4 for [213.230.118.162]:1588 Nov x@x Nov 2 12:50:37 mxgate1 postfix/postscreen[2377]: HANGUP after 0.49 from [213.230.118.162]:1588 in tests after SMTP handshake Nov 2 12:50:37 mxgate1 postfix/postscreen[2377]: DISCONNECT ........ -------------------------------	2019-11-02 21:52:19
222.186.180.8	attackbots	Nov 2 14:38:10 MK-Soft-VM5 sshd[24656]: Failed password for root from 222.186.180.8 port 19478 ssh2 Nov 2 14:38:15 MK-Soft-VM5 sshd[24656]: Failed password for root from 222.186.180.8 port 19478 ssh2 ...	2019-11-02 21:38:24
50.199.94.84	attackspambots	Nov 2 18:19:53 gw1 sshd[29925]: Failed password for root from 50.199.94.84 port 45138 ssh2 ...	2019-11-02 22:01:52

Recently Reported IPs

89.115.223.212	107.170.202.134	205.134.228.74	139.219.191.125
68.183.174.0	200.49.39.210	46.105.101.178	107.170.239.176
52.80.67.130	122.166.216.148	104.152.52.25	45.56.77.48
85.24.197.205	77.222.152.172	198.108.66.56	119.28.50.163
104.209.194.112	91.221.189.85	1.53.195.12	5.45.101.36