95.0.141.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Turkey

Internet Service Provider: Lefke Avrupa Universitesi KKTC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 95.0.141.142 to port 23	2020-05-31 22:55:26
attackbots	Unauthorized connection attempt detected from IP address 95.0.141.142 to port 80	2020-05-30 03:49:01

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 95.0.141.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39957
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;95.0.141.142.			IN	A

;; AUTHORITY SECTION:
.			545	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052901 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 30 03:48:58 CST 2020
;; MSG SIZE  rcvd: 116

Host info

142.141.0.95.in-addr.arpa domain name pointer 95.0.141.142.static.ttnet.com.tr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.141.0.95.in-addr.arpa	name = 95.0.141.142.static.ttnet.com.tr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.191.184	attackbotsspam	Lines containing failures of 134.209.191.184 Oct 7 22:00:40 shared02 sshd[5189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.191.184 user=r.r Oct 7 22:00:42 shared02 sshd[5189]: Failed password for r.r from 134.209.191.184 port 35696 ssh2 Oct 7 22:00:42 shared02 sshd[5189]: Received disconnect from 134.209.191.184 port 35696:11: Bye Bye [preauth] Oct 7 22:00:42 shared02 sshd[5189]: Disconnected from authenticating user r.r 134.209.191.184 port 35696 [preauth] Oct 7 22:09:46 shared02 sshd[7862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.191.184 user=r.r Oct 7 22:09:48 shared02 sshd[7862]: Failed password for r.r from 134.209.191.184 port 48704 ssh2 Oct 7 22:09:48 shared02 sshd[7862]: Received disconnect from 134.209.191.184 port 48704:11: Bye Bye [preauth] Oct 7 22:09:48 shared02 sshd[7862]: Disconnected from authenticating user r.r 134.209.191.184 port 4870........ ------------------------------	2020-10-10 16:26:14
209.141.43.35	attack	Port scan: Attack repeated for 24 hours	2020-10-10 15:50:43
125.127.217.16	attackbotsspam	Unauthorized connection attempt detected from IP address 125.127.217.16 to port 445 [T]	2020-10-10 16:09:33
185.220.102.252	attackbots	Fail2Ban	2020-10-10 15:56:53
148.101.124.111	attack	Oct 8 23:57:56 v11 sshd[3616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.101.124.111 user=r.r Oct 8 23:57:58 v11 sshd[3616]: Failed password for r.r from 148.101.124.111 port 42584 ssh2 Oct 8 23:57:58 v11 sshd[3616]: Received disconnect from 148.101.124.111 port 42584:11: Bye Bye [preauth] Oct 8 23:57:58 v11 sshd[3616]: Disconnected from 148.101.124.111 port 42584 [preauth] Oct 9 00:03:07 v11 sshd[4107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.101.124.111 user=r.r Oct 9 00:03:09 v11 sshd[4107]: Failed password for r.r from 148.101.124.111 port 48633 ssh2 Oct 9 00:03:09 v11 sshd[4107]: Received disconnect from 148.101.124.111 port 48633:11: Bye Bye [preauth] Oct 9 00:03:09 v11 sshd[4107]: Disconnected from 148.101.124.111 port 48633 [preauth] Oct 9 00:07:27 v11 sshd[4560]: Invalid user admin from 148.101.124.111 port 48614 Oct 9 00:07:27 v11 sshd[4560]: pam_u........ -------------------------------	2020-10-10 15:49:28
188.190.221.161	attackspambots	Icarus honeypot on github	2020-10-10 16:01:47
185.234.216.66	attack	Oct 10 08:18:59 mail postfix/smtpd\[22963\]: warning: unknown\[185.234.216.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 10 08:56:52 mail postfix/smtpd\[24270\]: warning: unknown\[185.234.216.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 10 09:35:17 mail postfix/smtpd\[25379\]: warning: unknown\[185.234.216.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 10 10:12:24 mail postfix/smtpd\[26745\]: warning: unknown\[185.234.216.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-10-10 16:19:59
84.236.2.17	attackbots	SSH login attempts.	2020-10-10 15:56:17
82.62.153.15	attack	Oct 10 03:52:30 localhost sshd[114558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-82-62-153-15.business.telecomitalia.it user=root Oct 10 03:52:32 localhost sshd[114558]: Failed password for root from 82.62.153.15 port 61754 ssh2 Oct 10 03:56:39 localhost sshd[115043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-82-62-153-15.business.telecomitalia.it user=root Oct 10 03:56:41 localhost sshd[115043]: Failed password for root from 82.62.153.15 port 60345 ssh2 Oct 10 04:00:41 localhost sshd[115532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-82-62-153-15.business.telecomitalia.it user=root Oct 10 04:00:43 localhost sshd[115532]: Failed password for root from 82.62.153.15 port 65467 ssh2 ...	2020-10-10 15:58:06
41.111.133.174	attackspam	Lines containing failures of 41.111.133.174 Oct 7 08:39:11 newdogma sshd[27874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.111.133.174 user=r.r Oct 7 08:39:13 newdogma sshd[27874]: Failed password for r.r from 41.111.133.174 port 46199 ssh2 Oct 7 08:39:15 newdogma sshd[27874]: Received disconnect from 41.111.133.174 port 46199:11: Bye Bye [preauth] Oct 7 08:39:15 newdogma sshd[27874]: Disconnected from authenticating user r.r 41.111.133.174 port 46199 [preauth] Oct 7 08:49:51 newdogma sshd[28308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.111.133.174 user=r.r Oct 7 08:49:53 newdogma sshd[28308]: Failed password for r.r from 41.111.133.174 port 22788 ssh2 Oct 7 08:49:54 newdogma sshd[28308]: Received disconnect from 41.111.133.174 port 22788:11: Bye Bye [preauth] Oct 7 08:49:54 newdogma sshd[28308]: Disconnected from authenticating user r.r 41.111.133.174 port 22788........ ------------------------------	2020-10-10 16:04:39
185.65.247.76	attackspam	(sshd) Failed SSH login from 185.65.247.76 (UA/Ukraine/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 9 20:13:31 server5 sshd[3780]: Invalid user tests from 185.65.247.76 Oct 9 20:13:33 server5 sshd[3780]: Failed password for invalid user tests from 185.65.247.76 port 46432 ssh2 Oct 9 20:24:29 server5 sshd[10095]: Invalid user admin from 185.65.247.76 Oct 9 20:24:31 server5 sshd[10095]: Failed password for invalid user admin from 185.65.247.76 port 49678 ssh2 Oct 9 20:27:36 server5 sshd[12019]: Invalid user oracle from 185.65.247.76	2020-10-10 16:18:07
81.229.13.173	attackspam	Oct 8 10:11:01 hidden sshd[6082]: Failed password for invalid user pi from 81.229.13.173 port 43470 ssh2 Oct 8 10:10:59 hidden sshd[6092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.229.13.173 user=root Oct 8 10:11:01 hidden sshd[6092]: Failed password for hidden from 81.229.13.173 port 43556 ssh2	2020-10-10 16:04:12
67.205.181.52	attack	Oct 7 13:32:11 svapp01 sshd[30162]: Address 67.205.181.52 maps to do1.nationalguard.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 7 13:32:11 svapp01 sshd[30162]: User r.r from 67.205.181.52 not allowed because not listed in AllowUsers Oct 7 13:32:11 svapp01 sshd[30162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.181.52 user=r.r Oct 7 13:32:13 svapp01 sshd[30162]: Failed password for invalid user r.r from 67.205.181.52 port 14782 ssh2 Oct 7 13:32:13 svapp01 sshd[30162]: Received disconnect from 67.205.181.52: 11: Bye Bye [preauth] Oct 7 13:44:23 svapp01 sshd[34275]: Address 67.205.181.52 maps to do1.nationalguard.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 7 13:44:23 svapp01 sshd[34275]: User r.r from 67.205.181.52 not allowed because not listed in AllowUsers Oct 7 13:44:23 svapp01 sshd[34275]: pam_unix(sshd:auth): authentication failure; log........ -------------------------------	2020-10-10 15:52:09
120.36.25.214	attackspambots	Oct 10 00:33:07 mavik sshd[20477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.36.25.214 user=root Oct 10 00:33:09 mavik sshd[20477]: Failed password for root from 120.36.25.214 port 21583 ssh2 Oct 10 00:35:59 mavik sshd[20585]: Invalid user radvd from 120.36.25.214 Oct 10 00:35:59 mavik sshd[20585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.36.25.214 Oct 10 00:36:01 mavik sshd[20585]: Failed password for invalid user radvd from 120.36.25.214 port 24570 ssh2 ...	2020-10-10 15:51:32
62.234.2.169	attackspambots	Oct 9 18:34:15 web1 sshd\[7509\]: Invalid user mail1 from 62.234.2.169 Oct 9 18:34:15 web1 sshd\[7509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.2.169 Oct 9 18:34:17 web1 sshd\[7509\]: Failed password for invalid user mail1 from 62.234.2.169 port 60392 ssh2 Oct 9 18:37:05 web1 sshd\[7776\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.2.169 user=root Oct 9 18:37:08 web1 sshd\[7776\]: Failed password for root from 62.234.2.169 port 37718 ssh2	2020-10-10 16:12:40

Recently Reported IPs

244.112.213.139	76.30.200.225	255.242.158.225	74.116.182.182
62.36.18.66	159.107.215.130	59.127.98.105	59.21.197.221
58.252.72.20	58.248.200.119	95.88.155.90	58.216.176.178
244.11.145.122	49.79.161.29	158.1.210.206	188.53.165.149
50.207.213.27	118.63.223.234	238.139.143.197	83.53.166.119