85.105.97.45 - IPInfo

Basic Info

City: Ankara

Region: Ankara

Country: Turkey

Internet Service Provider: Turk Telekomunikasyon Anonim Sirketi

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Invalid user admin from 85.105.97.45 port 40172	2019-10-20 03:13:35

Comments on same subnet:

IP	Type	Details	Datetime
85.105.97.254	attackbots	Unauthorized connection attempt detected from IP address 85.105.97.254 to port 4567 [J]	2020-01-06 16:15:47
85.105.97.107	attackspambots	Automatic report - Port Scan Attack	2019-09-16 21:29:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.105.97.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11051
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.105.97.45.			IN	A

;; AUTHORITY SECTION:
.			545	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101901 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 20 03:13:32 CST 2019
;; MSG SIZE  rcvd: 116

Host info

45.97.105.85.in-addr.arpa domain name pointer 85.105.97.45.static.ttnet.com.tr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.97.105.85.in-addr.arpa	name = 85.105.97.45.static.ttnet.com.tr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.30.83.81	attackspam	firewall-block, port(s): 23/tcp	2019-09-10 20:35:26
222.186.42.15	attack	09/10/2019-08:22:38.647535 222.186.42.15 Protocol: 6 ET SCAN Potential SSH Scan	2019-09-10 20:28:41
213.47.155.107	attackspambots	Jun 30 21:15:08 mercury smtpd[1186]: 46f2155b989ea795 smtp event=failed-command address=213.47.155.107 host=213-47-155-107.static.upcbusiness.at command="RCPT to:" result="550 Invalid recipient" ...	2019-09-10 19:58:44
212.237.55.144	attackspambots	Aug 1 03:02:42 mercury smtpd[1187]: 17a8bc5b53792f89 smtp event=failed-command address=212.237.55.144 host=host144-55-237-212.serverdedicati.aruba.it command="RCPT to:" result="550 Invalid recipient" ...	2019-09-10 20:03:40
112.85.42.229	attack	F2B jail: sshd. Time: 2019-09-10 14:18:52, Reported by: VKReport	2019-09-10 20:21:56
123.148.146.99	attackbots	[Wed Aug 28 01:43:01.258881 2019] [access_compat:error] [pid 20847] [client 123.148.146.99:64872] AH01797: client denied by server configuration: /var/www/html/josh/wp-login.php ...	2019-09-10 20:19:34
113.17.17.42	attackbotsspam	2019-05-27T17:32:01.283Z CLOSE host=113.17.17.42 port=41863 fd=4 time=10792.553 bytes=19453 ...	2019-09-10 20:16:01
171.22.254.109	attackbotsspam	May 7 16:10:59 mercury wordpress(www.learnargentinianspanish.com)[25907]: XML-RPC authentication failure for josh from 171.22.254.109 ...	2019-09-10 20:20:09
196.219.64.251	attackbots	Jun 12 06:56:20 mercury auth[9348]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=josh@learnargentinianspanish.com rhost=196.219.64.251 ...	2019-09-10 20:33:14
159.253.25.197	attackspam	Sep 8 03:03:24 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:0d:8f:41:08:00 SRC=159.253.25.197 DST=109.74.200.221 LEN=36 TOS=0x00 PREC=0x00 TTL=52 ID=0 DF PROTO=UDP SPT=54387 DPT=123 LEN=16 ...	2019-09-10 20:12:32
103.80.117.214	attackspam	Sep 10 02:22:54 wbs sshd\[22860\]: Invalid user admin from 103.80.117.214 Sep 10 02:22:54 wbs sshd\[22860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.80.117.214 Sep 10 02:22:56 wbs sshd\[22860\]: Failed password for invalid user admin from 103.80.117.214 port 37968 ssh2 Sep 10 02:29:32 wbs sshd\[23506\]: Invalid user csserver from 103.80.117.214 Sep 10 02:29:32 wbs sshd\[23506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.80.117.214	2019-09-10 20:30:19
157.52.188.66	attack	Apr 30 07:56:19 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:5a:1a:41:08:00 SRC=157.52.188.66 DST=109.74.200.221 LEN=36 TOS=0x08 PREC=0x20 TTL=50 ID=0 DF PROTO=UDP SPT=55112 DPT=123 LEN=16 ...	2019-09-10 20:43:12
218.98.40.151	attackspambots	Sep 10 06:41:02 aat-srv002 sshd[8737]: Failed password for root from 218.98.40.151 port 24159 ssh2 Sep 10 06:41:13 aat-srv002 sshd[8739]: Failed password for root from 218.98.40.151 port 36123 ssh2 Sep 10 06:41:21 aat-srv002 sshd[8742]: Failed password for root from 218.98.40.151 port 47797 ssh2 ...	2019-09-10 19:58:24
160.238.74.205	attackbots	Sep 10 13:29:20 lnxmail61 postfix/smtps/smtpd[5418]: warning: unknown[160.238.74.205]: SASL PLAIN authentication failed: Sep 10 13:29:26 lnxmail61 postfix/smtps/smtpd[5418]: warning: unknown[160.238.74.205]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 10 13:30:06 lnxmail61 postfix/submission/smtpd[5406]: warning: unknown[160.238.74.205]: SASL PLAIN authentication failed: Sep 10 13:30:12 lnxmail61 postfix/submission/smtpd[5406]: warning: unknown[160.238.74.205]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 10 13:30:12 lnxmail61 postfix/submission/smtpd[5406]: lost connection after AUTH from unknown[160.238.74.205]	2019-09-10 20:37:42
113.160.132.11	attack	2019-07-29T11:47:24.718Z CLOSE host=113.160.132.11 port=49382 fd=5 time=180.149 bytes=269 ...	2019-09-10 20:44:12

Recently Reported IPs

45.38.193.91	81.215.193.112	45.76.33.134	79.51.63.164
126.19.95.74	183.13.19.104	75.106.109.57	158.71.85.79
115.220.100.42	116.6.22.193	61.115.145.240	83.19.64.251
195.90.83.141	128.102.23.103	73.61.216.14	60.254.89.97
2.49.102.7	181.168.179.69	92.249.180.32	86.156.208.1