41.94.22.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Mozambique

Internet Service Provider: Empresa Nacional dos Parques de Ciancia E Tecnologia de Maluana

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	TCP (SYN) 41.94.22.6:63578 -> port 1433, len 52	2020-09-06 03:33:53
attack	Attempted connection to port 445.	2020-09-05 19:11:06

Comments on same subnet:

IP	Type	Details	Datetime
41.94.22.207	attackspam	IP 41.94.22.207 attacked honeypot on port: 1433 at 8/27/2020 6:00:13 AM	2020-08-28 00:46:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.94.22.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42596
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.94.22.6.			IN	A

;; AUTHORITY SECTION:
.			523	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090500 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 05 19:10:48 CST 2020
;; MSG SIZE  rcvd: 114

Host info

Host 6.22.94.41.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.22.94.41.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
27.194.113.202	attackbotsspam	IP 27.194.113.202 attacked honeypot on port: 23 at 10/12/2020 7:09:09 PM	2020-10-14 02:33:40
188.165.211.206	attackspambots	"PHP Injection Attack: High-Risk PHP Function Name Found - Matched Data: shell_exec found within ARGS:callback: shell_exec"	2020-10-14 02:13:20
92.118.161.5	attackspam	92.118.161.5 - - [13/Oct/2020:18:10:54 +0200] "GET / HTTP/1.1" 200 612 "-" "NetSystemsResearch studies the availability of various services across the internet. Our website is netsystemsresearch.com"	2020-10-14 02:37:42
167.172.46.87	attack	Oct 13 19:54:31 OPSO sshd\[18563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.46.87 user=root Oct 13 19:54:33 OPSO sshd\[18563\]: Failed password for root from 167.172.46.87 port 46052 ssh2 Oct 13 19:57:50 OPSO sshd\[19737\]: Invalid user youhong from 167.172.46.87 port 50296 Oct 13 19:57:50 OPSO sshd\[19737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.46.87 Oct 13 19:57:52 OPSO sshd\[19737\]: Failed password for invalid user youhong from 167.172.46.87 port 50296 ssh2	2020-10-14 02:08:09
183.17.229.11	attack	1602552964 - 10/13/2020 03:36:04 Host: 183.17.229.11/183.17.229.11 Port: 445 TCP Blocked	2020-10-14 02:34:12
117.31.76.119	attackspambots	Oct 13 00:06:49 srv01 postfix/smtpd\[23095\]: warning: unknown\[117.31.76.119\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 00:20:34 srv01 postfix/smtpd\[16625\]: warning: unknown\[117.31.76.119\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 00:20:45 srv01 postfix/smtpd\[16625\]: warning: unknown\[117.31.76.119\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 00:21:01 srv01 postfix/smtpd\[16625\]: warning: unknown\[117.31.76.119\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 00:21:19 srv01 postfix/smtpd\[16625\]: warning: unknown\[117.31.76.119\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-14 02:23:33
81.22.46.203	attackspam	SS5,Magento Bruteforce Login Attack POST /index.php/admin/	2020-10-14 02:07:10
66.96.236.92	attack	Unauthorized connection attempt from IP address 66.96.236.92 on Port 445(SMB)	2020-10-14 02:22:39
89.42.77.169	attackspambots	Unauthorized connection attempt from IP address 89.42.77.169 on Port 445(SMB)	2020-10-14 02:21:09
186.216.209.101	attack	[Tue Oct 13 15:08:45 2020] IN=enp34s0 OUT= MAC=SERVERMAC SRC=186.216.209.101 DST=MYSERVERIP LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=4613 DF PROTO=TCP SPT=23903 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 Ports: 445	2020-10-14 02:12:27
196.30.113.194	attackspambots	Unauthorized connection attempt from IP address 196.30.113.194 on Port 445(SMB)	2020-10-14 02:23:08
200.93.109.124	attack	Unauthorized connection attempt from IP address 200.93.109.124 on Port 445(SMB)	2020-10-14 01:54:16
194.8.155.133	attackbotsspam	Unauthorized connection attempt from IP address 194.8.155.133 on Port 445(SMB)	2020-10-14 02:01:11
156.213.227.242	attackspambots	Unauthorized connection attempt from IP address 156.213.227.242 on Port 445(SMB)	2020-10-14 02:28:23
121.229.20.121	attack	2020-10-12T03:45:05.210273hostname sshd[43615]: Failed password for invalid user margaret from 121.229.20.121 port 58127 ssh2 ...	2020-10-14 02:03:15

Recently Reported IPs

129.146.113.119	119.115.29.89	132.157.66.89	248.101.237.1
114.97.230.118	55.14.229.163	0.83.0.208	106.12.142.137
38.248.158.26	125.63.100.239	49.6.64.188	117.5.140.181
16.76.52.85	242.177.40.76	164.237.196.184	123.241.231.245
176.54.254.140	175.138.96.59	161.82.173.2	129.15.70.122