195.142.106.19

Basic Info

City: unknown

Region: unknown

Country: Turkey

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
195.142.106.150	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/195.142.106.150/ TR - 1H : (232) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TR NAME ASN : ASN199484 IP : 195.142.106.150 CIDR : 195.142.106.0/24 PREFIX COUNT : 61 UNIQUE IP COUNT : 25856 WYKRYTE ATAKI Z ASN199484 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-02 05:48:49 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-02 17:00:34

Type

Details

Datetime

195.142.106.150

attackspam

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/195.142.106.150/ 
 TR - 1H : (232)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TR 
 NAME ASN : ASN199484 
 
 IP : 195.142.106.150 
 
 CIDR : 195.142.106.0/24 
 
 PREFIX COUNT : 61 
 
 UNIQUE IP COUNT : 25856 
 
 
 WYKRYTE ATAKI Z ASN199484 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 1 
 
 DateTime : 2019-10-02 05:48:49 
 
 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN  - data recovery

2019-10-02 17:00:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.142.106.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41914
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;195.142.106.19.			IN	A

;; AUTHORITY SECTION:
.			485	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 22:23:56 CST 2022
;; MSG SIZE  rcvd: 107

Host info

19.106.142.195.in-addr.arpa domain name pointer 195-142-106-19.rdns.saglayici.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
19.106.142.195.in-addr.arpa	name = 195-142-106-19.rdns.saglayici.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.128.113.67	attack	Jul 7 15:51:17 mail postfix/smtpd\[27506\]: warning: unknown\[78.128.113.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 7 15:51:24 mail postfix/smtpd\[25932\]: warning: unknown\[78.128.113.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 7 15:51:46 mail postfix/smtpd\[27506\]: warning: unknown\[78.128.113.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-07 21:55:38
162.243.147.190	attack	Portscan or hack attempt detected by psad/fwsnort	2019-07-07 22:16:07
103.35.64.73	attackspam	Jul 7 15:43:46 lnxded64 sshd[13576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.64.73 Jul 7 15:43:48 lnxded64 sshd[13576]: Failed password for invalid user client from 103.35.64.73 port 47336 ssh2 Jul 7 15:47:35 lnxded64 sshd[14520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.64.73	2019-07-07 22:06:03
182.50.135.64	attackbots	fail2ban honeypot	2019-07-07 21:59:36
167.99.180.229	attack	Jul 7 15:43:20 lnxded64 sshd[13483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.180.229 Jul 7 15:43:22 lnxded64 sshd[13483]: Failed password for invalid user client from 167.99.180.229 port 36992 ssh2 Jul 7 15:47:16 lnxded64 sshd[14492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.180.229	2019-07-07 22:12:20
68.163.100.254	attackspam	Jul 2 23:46:46 vzmaster sshd[27526]: Invalid user yin from 68.163.100.254 Jul 2 23:46:46 vzmaster sshd[27526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-68-163-100-254.bstnma.fios.verizon.net Jul 2 23:46:48 vzmaster sshd[27526]: Failed password for invalid user yin from 68.163.100.254 port 40606 ssh2 Jul 2 23:50:38 vzmaster sshd[31152]: Invalid user reponse from 68.163.100.254 Jul 2 23:50:38 vzmaster sshd[31152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-68-163-100-254.bstnma.fios.verizon.net Jul 2 23:50:40 vzmaster sshd[31152]: Failed password for invalid user reponse from 68.163.100.254 port 36752 ssh2 Jul 2 23:52:41 vzmaster sshd[571]: Invalid user hadoop from 68.163.100.254 Jul 2 23:52:41 vzmaster sshd[571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-68-163-100-254.bstnma.fios.verizon.net ........ ----------------------------------------------	2019-07-07 22:02:51
177.23.75.190	attack	SMTP-sasl brute force ...	2019-07-07 21:26:52
77.247.108.131	attack	Jul 7 10:39:11 mail kernel: [1295069.532489] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=77.247.108.131 DST=77.73.69.240 LEN=442 TOS=0x08 PREC=0x20 TTL=55 ID=36584 DF PROTO=UDP SPT=5449 DPT=3090 LEN=422 Jul 7 10:39:11 mail kernel: [1295069.532549] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=77.247.108.131 DST=77.73.69.240 LEN=444 TOS=0x08 PREC=0x20 TTL=55 ID=36585 DF PROTO=UDP SPT=5449 DPT=3100 LEN=424 Jul 7 10:39:11 mail kernel: [1295069.532564] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=77.247.108.131 DST=77.73.69.240 LEN=441 TOS=0x08 PREC=0x20 TTL=55 ID=36586 DF PROTO=UDP SPT=5449 DPT=3110 LEN=421 Jul 7 10:39:11 mail kernel: [1295069.532583] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=77.247.108.131 DST=77.73.69.240 LEN=443 TOS=0x08 PREC=0x20 TTL=55 ID=36587 DF PROTO=UDP SPT=5449 DPT=3120 LEN=423 Jul 7 10:39:11 mail kernel: [1295069.532682] [UFW BLOCK] IN=eth0 OUT= MAC=00:16	2019-07-07 21:49:02
88.88.193.230	attackspambots	Jul 7 15:47:47 [host] sshd[6243]: Invalid user user3 from 88.88.193.230 Jul 7 15:47:47 [host] sshd[6243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.88.193.230 Jul 7 15:47:49 [host] sshd[6243]: Failed password for invalid user user3 from 88.88.193.230 port 52167 ssh2	2019-07-07 21:59:02
37.126.124.145	attack	Autoban 37.126.124.145 AUTH/CONNECT	2019-07-07 21:58:15
110.74.163.90	attack	Jul 7 05:33:03 heissa sshd\[31583\]: Invalid user fctrserver from 110.74.163.90 port 46088 Jul 7 05:33:03 heissa sshd\[31583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.74.163.90 Jul 7 05:33:05 heissa sshd\[31583\]: Failed password for invalid user fctrserver from 110.74.163.90 port 46088 ssh2 Jul 7 05:37:58 heissa sshd\[32039\]: Invalid user target from 110.74.163.90 port 39336 Jul 7 05:37:58 heissa sshd\[32039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.74.163.90	2019-07-07 21:36:57
58.144.150.233	attack	Automated report - ssh fail2ban: Jul 7 15:43:59 authentication failure Jul 7 15:44:01 wrong password, user=andries, port=46714, ssh2	2019-07-07 21:56:39
107.150.71.194	attackbots	Registration form abuse	2019-07-07 21:57:20
37.202.66.185	attackspambots	[portscan] tcp/23 [TELNET] [scan/connect: 3 time(s)] *(RWIN=60871)(07070954)	2019-07-07 21:49:46
139.59.56.63	attackbotsspam	diesunddas.net 139.59.56.63 \[07/Jul/2019:05:37:59 +0200\] "POST /wp-login.php HTTP/1.1" 200 8411 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" diesunddas.net 139.59.56.63 \[07/Jul/2019:05:38:02 +0200\] "POST /wp-login.php HTTP/1.1" 200 8411 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-07 21:36:07

Recently Reported IPs

195.141.7.75	195.142.0.110	195.141.66.190	195.142.109.125
195.142.105.70	195.142.106.191	195.142.106.235	195.142.107.26
195.142.111.2	195.142.111.62	195.142.133.156	195.142.133.229
195.142.118.25	195.142.170.151	195.142.133.69	195.142.246.55
195.142.114.163	195.142.135.35	195.142.3.29	195.144.105.11