41.139.206.95 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kenya

Internet Service Provider: For Converged Services Western Region

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 5 21:58:19 sigma sshd\[23700\]: Invalid user admin from 41.139.206.95Mar 5 21:58:21 sigma sshd\[23700\]: Failed password for invalid user admin from 41.139.206.95 port 39415 ssh2 ...	2020-03-06 07:31:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.139.206.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41720
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.139.206.95.			IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030502 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 06 07:31:11 CST 2020
;; MSG SIZE  rcvd: 117

Host info

95.206.139.41.in-addr.arpa domain name pointer 41-139-206-95.safaricombusiness.co.ke.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
95.206.139.41.in-addr.arpa	name = 41-139-206-95.safaricombusiness.co.ke.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.103.135	attackbotsspam	Sep 6 04:44:00 XXX sshd[53827]: Invalid user node from 157.230.103.135 port 34670	2019-09-06 19:57:43
85.105.145.208	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-06 02:15:27,818 INFO [amun_request_handler] PortScan Detected on Port: 445 (85.105.145.208)	2019-09-06 19:42:54
193.104.226.66	attackbotsspam	[portscan] Port scan	2019-09-06 19:40:45
112.97.61.151	attackbotsspam	Fail2Ban - FTP Abuse Attempt	2019-09-06 19:39:48
79.1.212.37	attack	Sep 6 08:03:11 localhost sshd\[5873\]: Invalid user ts3 from 79.1.212.37 port 53603 Sep 6 08:03:11 localhost sshd\[5873\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.1.212.37 Sep 6 08:03:12 localhost sshd\[5873\]: Failed password for invalid user ts3 from 79.1.212.37 port 53603 ssh2	2019-09-06 20:15:22
77.243.181.54	attackspam	Honeypot attack, port: 81, PTR: PTR record not found	2019-09-06 20:11:22
103.9.159.154	attackspambots	2019-09-06T03:49:32Z - RDP login failed multiple times. (103.9.159.154)	2019-09-06 19:52:43
167.99.251.192	attackspambots	/wp-login.php	2019-09-06 20:13:13
134.209.233.74	attackspambots	Sep 6 10:03:22 vps01 sshd[12801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.233.74 Sep 6 10:03:24 vps01 sshd[12801]: Failed password for invalid user rstudio@123 from 134.209.233.74 port 57868 ssh2	2019-09-06 19:41:17
177.133.160.45	attack	Automatic report - Port Scan Attack	2019-09-06 19:51:34
187.19.49.73	attack	Sep 6 13:20:58 lnxweb61 sshd[3272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.19.49.73	2019-09-06 20:06:10
118.25.99.101	attackspam	2019-09-06T11:28:27.904188abusebot-7.cloudsearch.cf sshd\[13836\]: Invalid user teamspeak3 from 118.25.99.101 port 43810	2019-09-06 20:02:28
23.95.106.81	attackbots	Sep 6 11:40:10 hcbbdb sshd\[5741\]: Invalid user labuser from 23.95.106.81 Sep 6 11:40:10 hcbbdb sshd\[5741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.95.106.81 Sep 6 11:40:12 hcbbdb sshd\[5741\]: Failed password for invalid user labuser from 23.95.106.81 port 49830 ssh2 Sep 6 11:46:56 hcbbdb sshd\[6451\]: Invalid user test from 23.95.106.81 Sep 6 11:46:56 hcbbdb sshd\[6451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.95.106.81	2019-09-06 19:49:14
119.146.145.104	attack	Sep 6 14:04:49 dedicated sshd[30542]: Invalid user test123 from 119.146.145.104 port 4720	2019-09-06 20:10:39
220.180.239.104	attackspam	Sep 6 01:38:39 kapalua sshd\[6247\]: Invalid user minecraft from 220.180.239.104 Sep 6 01:38:39 kapalua sshd\[6247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.180.239.104 Sep 6 01:38:41 kapalua sshd\[6247\]: Failed password for invalid user minecraft from 220.180.239.104 port 60326 ssh2 Sep 6 01:43:10 kapalua sshd\[6787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.180.239.104 user=root Sep 6 01:43:12 kapalua sshd\[6787\]: Failed password for root from 220.180.239.104 port 22842 ssh2	2019-09-06 19:44:51

Recently Reported IPs

175.202.162.120	75.31.216.116	129.226.73.26	239.176.51.199
177.77.178.30	133.14.130.249	125.57.117.189	183.44.208.212
153.124.218.26	225.249.234.130	252.85.19.214	114.93.91.196
130.188.89.100	147.102.66.163	241.253.166.27	227.109.252.197
186.88.131.137	57.113.10.174	24.181.105.43	46.88.3.11