159.146.42.195

Basic Info

City: Istanbul

Region: Istanbul

Country: Turkey

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
159.146.42.94	attackbotsspam	port scan and connect, tcp 80 (http)	2019-09-21 20:24:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.146.42.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54779
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.146.42.195.			IN	A

;; AUTHORITY SECTION:
.			370	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022072201 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 23 05:09:48 CST 2022
;; MSG SIZE  rcvd: 107

Host info

195.42.146.159.in-addr.arpa domain name pointer 195.42.146.159.srv.turk.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
195.42.146.159.in-addr.arpa	name = 195.42.146.159.srv.turk.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.17.27.134	attack	Russian criminal botnet.	2019-08-31 04:42:55
183.150.237.241	attackbots	Attempt to log in with non-existing username "admin" /wp-login.php	2019-08-31 04:55:24
27.109.203.228	attackbots	port scan and connect, tcp 23 (telnet)	2019-08-31 04:26:38
60.179.126.70	attack	Unauthorised access (Aug 30) SRC=60.179.126.70 LEN=40 TTL=48 ID=45758 TCP DPT=8080 WINDOW=31206 SYN Unauthorised access (Aug 30) SRC=60.179.126.70 LEN=40 TTL=48 ID=41340 TCP DPT=8080 WINDOW=34338 SYN Unauthorised access (Aug 28) SRC=60.179.126.70 LEN=40 TTL=48 ID=33489 TCP DPT=8080 WINDOW=31206 SYN Unauthorised access (Aug 28) SRC=60.179.126.70 LEN=40 TTL=49 ID=64082 TCP DPT=8080 WINDOW=19002 SYN Unauthorised access (Aug 28) SRC=60.179.126.70 LEN=40 TTL=48 ID=31179 TCP DPT=8080 WINDOW=18162 SYN	2019-08-31 04:25:49
222.89.100.46	attackbotsspam	Aug 30 18:23:45 localhost postfix/smtpd\[16460\]: warning: unknown\[222.89.100.46\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 18:23:54 localhost postfix/smtpd\[16247\]: warning: unknown\[222.89.100.46\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 18:24:08 localhost postfix/smtpd\[16460\]: warning: unknown\[222.89.100.46\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 18:24:24 localhost postfix/smtpd\[16460\]: warning: unknown\[222.89.100.46\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 18:24:35 localhost postfix/smtpd\[16460\]: warning: unknown\[222.89.100.46\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-31 04:53:44
77.204.76.91	attackspambots	Aug 30 16:09:14 * sshd[4902]: Failed password for invalid user vagrant from 77.204.76.91 port 44202 ssh2 Aug 30 16:18:05 * sshd[5032]: Failed password for invalid user sontra from 77.204.76.91 port 58352 ssh2 Aug 30 16:21:54 * sshd[5119]: Failed password for invalid user suo from 77.204.76.91 port 51867 ssh2 Aug 30 16:25:32 * sshd[5214]: Failed password for invalid user ito from 77.204.76.91 port 45376 ssh2 Aug 30 16:29:18 * sshd[5269]: Failed password for invalid user ping from 77.204.76.91 port 38881 ssh2 Aug 30 16:33:04 * sshd[5316]: Failed password for invalid user applmgr from 77.204.76.91 port 60614 ssh2 Aug 30 16:36:50 * sshd[5368]: Failed password for invalid user lk from 77.204.76.91 port 54137 ssh2 Aug 30 16:40:38 * sshd[5497]: Failed password for invalid user ronjones from 77.204.76.91 port 47651 ssh2 Aug 30 16:44:19 * sshd[5587]: Failed password for invalid user share from 77.204.76.91 port 41155 ssh2 Aug 30 16:48:13 * sshd[5652]: Failed password for invalid user kadrir from 77	2019-08-31 04:48:57
211.144.114.26	attackbotsspam	Aug 30 06:16:27 tdfoods sshd\[17950\]: Invalid user steamcmd from 211.144.114.26 Aug 30 06:16:27 tdfoods sshd\[17950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.144.114.26 Aug 30 06:16:29 tdfoods sshd\[17950\]: Failed password for invalid user steamcmd from 211.144.114.26 port 39972 ssh2 Aug 30 06:24:39 tdfoods sshd\[18588\]: Invalid user test from 211.144.114.26 Aug 30 06:24:39 tdfoods sshd\[18588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.144.114.26	2019-08-31 04:51:45
89.38.149.112	attack	\[2019-08-30 12:24:20\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '89.38.149.112:64809' - Wrong password \[2019-08-30 12:24:20\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-30T12:24:20.494-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="702",SessionID="0x7f7b30be0af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/89.38.149.112/64809",Challenge="715d6611",ReceivedChallenge="715d6611",ReceivedHash="f3b48b49d7984a5a654cd4c3cc836ce2" \[2019-08-30 12:24:29\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '89.38.149.112:51287' - Wrong password \[2019-08-30 12:24:29\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-30T12:24:29.293-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="800",SessionID="0x7f7b301c17c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/89.38.149.112	2019-08-31 04:58:45
188.192.233.228	attackbots	Tried sshing with brute force.	2019-08-31 04:38:38
200.3.17.184	attackspambots	failed_logins	2019-08-31 04:40:29
178.128.201.224	attackspam	$f2bV_matches	2019-08-31 04:35:49
140.237.12.107	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-31 04:34:16
103.35.64.222	attack	Aug 30 20:35:05 hcbbdb sshd\[2542\]: Invalid user flower from 103.35.64.222 Aug 30 20:35:05 hcbbdb sshd\[2542\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.64.222 Aug 30 20:35:08 hcbbdb sshd\[2542\]: Failed password for invalid user flower from 103.35.64.222 port 35228 ssh2 Aug 30 20:40:01 hcbbdb sshd\[3079\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.64.222 user=root Aug 30 20:40:03 hcbbdb sshd\[3079\]: Failed password for root from 103.35.64.222 port 34970 ssh2	2019-08-31 04:42:01
54.37.157.229	attackspam	$f2bV_matches	2019-08-31 04:39:31
104.248.187.152	attackbotsspam	Aug 30 20:59:11 mail sshd\[32290\]: Failed password for invalid user tuan from 104.248.187.152 port 52492 ssh2 Aug 30 21:03:22 mail sshd\[850\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.187.152 user=root Aug 30 21:03:23 mail sshd\[850\]: Failed password for root from 104.248.187.152 port 42398 ssh2 Aug 30 21:07:40 mail sshd\[1437\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.187.152 user=root Aug 30 21:07:42 mail sshd\[1437\]: Failed password for root from 104.248.187.152 port 60544 ssh2	2019-08-31 04:55:44

Recently Reported IPs

159.146.249.236	159.146.220.218	159.147.141.82	159.145.90.26
159.146.7.223	159.146.159.69	159.147.42.73	159.145.30.34
159.145.254.208	159.145.139.255	159.145.71.18	159.147.232.176
159.145.246.157	159.145.248.13	159.145.164.66	159.145.147.138
159.146.18.24	159.145.245.156	159.147.234.254	159.146.4.215