95.242.178.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Telecom Italia S.p.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Automatic report - Banned IP Access	2020-06-20 23:51:51
attackspam	Automatic report - Port Scan Attack	2020-05-07 01:24:43

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 95.242.178.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48240
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;95.242.178.12.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050601 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 07 01:24:40 CST 2020
;; MSG SIZE  rcvd: 117

Host info

12.178.242.95.in-addr.arpa domain name pointer host12-178-static.242-95-b.business.telecomitalia.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.178.242.95.in-addr.arpa	name = host12-178-static.242-95-b.business.telecomitalia.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.13.200.154	attackbots	Jul 30 12:12:35 abendstille sshd\[3187\]: Invalid user jingyang from 112.13.200.154 Jul 30 12:12:35 abendstille sshd\[3187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.13.200.154 Jul 30 12:12:38 abendstille sshd\[3187\]: Failed password for invalid user jingyang from 112.13.200.154 port 3795 ssh2 Jul 30 12:13:45 abendstille sshd\[4398\]: Invalid user yuetianchi from 112.13.200.154 Jul 30 12:13:45 abendstille sshd\[4398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.13.200.154 ...	2020-07-30 18:26:17
54.38.159.106	attackbots	(smtpauth) Failed SMTP AUTH login from 54.38.159.106 (DE/Germany/vps-d3fc4ca1.vps.ovh.net): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-30 13:31:22 login authenticator failed for vps-d3fc4ca1.vps.ovh.net (USER) [54.38.159.106]: 535 Incorrect authentication data (set_id=contact@sepasajir.com)	2020-07-30 18:18:31
87.251.74.184	attackspambots	[H1.VM4] Blocked by UFW	2020-07-30 18:25:26
129.144.162.23	attack	REQUESTED PAGE: /	2020-07-30 18:31:40
218.92.0.165	attackspam	2020-07-30T12:37:48.066851vps751288.ovh.net sshd\[25369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root 2020-07-30T12:37:50.646443vps751288.ovh.net sshd\[25369\]: Failed password for root from 218.92.0.165 port 50967 ssh2 2020-07-30T12:37:55.823248vps751288.ovh.net sshd\[25369\]: Failed password for root from 218.92.0.165 port 50967 ssh2 2020-07-30T12:37:59.746952vps751288.ovh.net sshd\[25369\]: Failed password for root from 218.92.0.165 port 50967 ssh2 2020-07-30T12:38:03.554533vps751288.ovh.net sshd\[25369\]: Failed password for root from 218.92.0.165 port 50967 ssh2	2020-07-30 18:38:45
51.161.45.174	attackspam	Jul 30 12:23:55 mout sshd[23759]: Invalid user xicsgp from 51.161.45.174 port 48092 Jul 30 12:23:57 mout sshd[23759]: Failed password for invalid user xicsgp from 51.161.45.174 port 48092 ssh2 Jul 30 12:23:59 mout sshd[23759]: Disconnected from invalid user xicsgp 51.161.45.174 port 48092 [preauth]	2020-07-30 18:24:35
103.151.122.57	attackbots	2020-07-30T07:46:40.495458www postfix/smtpd[25547]: warning: unknown[103.151.122.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-07-30T07:46:48.282859www postfix/smtpd[25547]: warning: unknown[103.151.122.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-07-30T07:47:00.054379www postfix/smtpd[25547]: warning: unknown[103.151.122.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-30 18:14:47
118.25.74.248	attackbotsspam	Brute force attempt	2020-07-30 18:37:26
49.88.112.60	attackbotsspam	SSH Brute Force	2020-07-30 18:43:37
51.83.70.93	attackbotsspam	<6 unauthorized SSH connections	2020-07-30 18:50:49
159.65.86.239	attack	Jul 30 09:41:34 rocket sshd[31376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.86.239 Jul 30 09:41:36 rocket sshd[31376]: Failed password for invalid user Bio306Stu from 159.65.86.239 port 55186 ssh2 ...	2020-07-30 18:30:08
192.144.188.169	attackbots	2020-07-30T10:08:06.716639shield sshd\[18736\]: Invalid user truyennt8 from 192.144.188.169 port 36282 2020-07-30T10:08:06.724719shield sshd\[18736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.188.169 2020-07-30T10:08:08.336828shield sshd\[18736\]: Failed password for invalid user truyennt8 from 192.144.188.169 port 36282 ssh2 2020-07-30T10:13:23.647956shield sshd\[20622\]: Invalid user wgm from 192.144.188.169 port 57896 2020-07-30T10:13:23.657584shield sshd\[20622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.188.169	2020-07-30 18:27:07
93.99.210.83	attack	(smtpauth) Failed SMTP AUTH login from 93.99.210.83 (CZ/Czechia/ip-93-99-210-83.net.privatnet.cz): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-30 10:36:44 plain authenticator failed for ([93.99.210.83]) [93.99.210.83]: 535 Incorrect authentication data (set_id=a.hoseiny@safanicu.com)	2020-07-30 18:17:14
94.246.169.40	attackspambots	Jul 30 05:06:21 mail.srvfarm.net postfix/smtps/smtpd[3699994]: warning: unknown[94.246.169.40]: SASL PLAIN authentication failed: Jul 30 05:06:21 mail.srvfarm.net postfix/smtps/smtpd[3699994]: lost connection after AUTH from unknown[94.246.169.40] Jul 30 05:14:12 mail.srvfarm.net postfix/smtps/smtpd[3699995]: warning: unknown[94.246.169.40]: SASL PLAIN authentication failed: Jul 30 05:14:12 mail.srvfarm.net postfix/smtps/smtpd[3699995]: lost connection after AUTH from unknown[94.246.169.40] Jul 30 05:14:17 mail.srvfarm.net postfix/smtpd[3700156]: warning: unknown[94.246.169.40]: SASL PLAIN authentication failed:	2020-07-30 18:16:58
104.248.114.67	attackbots	2020-07-30T03:55:38.834200server.mjenks.net sshd[101376]: Invalid user ylx from 104.248.114.67 port 38008 2020-07-30T03:55:38.839909server.mjenks.net sshd[101376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.67 2020-07-30T03:55:38.834200server.mjenks.net sshd[101376]: Invalid user ylx from 104.248.114.67 port 38008 2020-07-30T03:55:40.877944server.mjenks.net sshd[101376]: Failed password for invalid user ylx from 104.248.114.67 port 38008 ssh2 2020-07-30T03:59:24.528508server.mjenks.net sshd[101798]: Invalid user helpdesk from 104.248.114.67 port 50742 ...	2020-07-30 18:48:59

Recently Reported IPs

195.54.160.212	133.14.209.132	185.158.155.48	185.158.154.76
185.143.223.252	198.135.169.139	1.93.144.120	172.65.239.120
162.251.236.2	160.108.131.197	162.254.193.6	113.88.166.14
197.136.132.95	5.101.151.82	222.186.151.246	172.105.52.86
125.134.217.62	171.137.244.64	147.180.7.163	112.135.197.209