95.59.13.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: Kazakhtelecom

Hostname: unknown

Organization: JSC Kazakhtelecom

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
95.59.137.130	attackspambots	Unauthorized connection attempt detected from IP address 95.59.137.130 to port 445	2020-04-16 04:08:06
95.59.133.105	attackspambots	Email spam message	2020-03-16 21:33:55
95.59.132.50	attackspam	Unauthorized connection attempt from IP address 95.59.132.50 on Port 445(SMB)	2019-10-26 02:26:38
95.59.137.133	attackbots	19/8/26@09:28:19: FAIL: Alarm-Intrusion address from=95.59.137.133 ...	2019-08-27 07:25:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 95.59.13.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5322
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;95.59.13.142.			IN	A

;; AUTHORITY SECTION:
.			2441	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062901 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 30 03:02:28 CST 2019
;; MSG SIZE  rcvd: 116

Host info

142.13.59.95.in-addr.arpa domain name pointer 95.59.13.142.megaline.telecom.kz.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.13.59.95.in-addr.arpa	name = 95.59.13.142.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.206.17.3	attackbotsspam	Jun 18 09:27:43 vmi345603 sshd[14573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.17.3 Jun 18 09:27:45 vmi345603 sshd[14573]: Failed password for invalid user hws from 123.206.17.3 port 48114 ssh2 ...	2020-06-18 16:53:44
46.38.145.250	attackspambots	Rude login attack (376 tries in 1d)	2020-06-18 16:48:33
187.95.176.1	attack	Jun 18 05:27:47 mail.srvfarm.net postfix/smtps/smtpd[1338900]: warning: 187-95-176-1.vianet.net.br[187.95.176.1]: SASL PLAIN authentication failed: Jun 18 05:27:47 mail.srvfarm.net postfix/smtps/smtpd[1338900]: lost connection after AUTH from 187-95-176-1.vianet.net.br[187.95.176.1] Jun 18 05:30:44 mail.srvfarm.net postfix/smtps/smtpd[1342821]: warning: 187-95-176-1.vianet.net.br[187.95.176.1]: SASL PLAIN authentication failed: Jun 18 05:30:44 mail.srvfarm.net postfix/smtps/smtpd[1342821]: lost connection after AUTH from 187-95-176-1.vianet.net.br[187.95.176.1] Jun 18 05:30:59 mail.srvfarm.net postfix/smtps/smtpd[1342821]: warning: 187-95-176-1.vianet.net.br[187.95.176.1]: SASL PLAIN authentication failed:	2020-06-18 16:32:40
97.90.110.160	attackspam	Port Scan detected from 97.90.110.160 (US/United States/Oregon/Grants Pass/097-090-110-160.biz.spectrum.com). 4 hits in the last 75 seconds	2020-06-18 16:50:55
92.55.194.41	attackbots	Jun 18 05:29:29 mail.srvfarm.net postfix/smtps/smtpd[1342632]: warning: unknown[92.55.194.41]: SASL PLAIN authentication failed: Jun 18 05:29:29 mail.srvfarm.net postfix/smtps/smtpd[1342632]: lost connection after AUTH from unknown[92.55.194.41] Jun 18 05:33:23 mail.srvfarm.net postfix/smtps/smtpd[1343119]: warning: unknown[92.55.194.41]: SASL PLAIN authentication failed: Jun 18 05:33:23 mail.srvfarm.net postfix/smtps/smtpd[1343119]: lost connection after AUTH from unknown[92.55.194.41] Jun 18 05:34:47 mail.srvfarm.net postfix/smtps/smtpd[1343122]: warning: unknown[92.55.194.41]: SASL PLAIN authentication failed:	2020-06-18 16:36:40
217.112.142.60	attackbots	Jun 18 05:12:02 mail.srvfarm.net postfix/smtpd[1339036]: NOQUEUE: reject: RCPT from unknown[217.112.142.60]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 18 05:12:47 mail.srvfarm.net postfix/smtpd[1337038]: NOQUEUE: reject: RCPT from sown.wokoro.com[217.112.142.60]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 18 05:17:39 mail.srvfarm.net postfix/smtpd[1338957]: NOQUEUE: reject: RCPT from unknown[217.112.142.60]: 554 5.7.1 Service unavailable; Client host [217.112.142.60] blocked using zen.spamhaus.org; from= to= proto=ESMTP helo= Jun 18 05:18:38 mail.srvfarm.net postfix/smtpd[1339651]: NOQUEUE: reject: RCPT from unknown[217.112.142.60]: 450 4.1.8	2020-06-18 16:29:16
63.81.93.134	attackbots	Jun 18 05:06:43 mail.srvfarm.net postfix/smtpd[1339035]: NOQUEUE: reject: RCPT from damage.ketabaneh.com[63.81.93.134]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 18 05:08:42 mail.srvfarm.net postfix/smtpd[1337050]: NOQUEUE: reject: RCPT from unknown[63.81.93.134]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 18 05:12:49 mail.srvfarm.net postfix/smtpd[1337375]: NOQUEUE: reject: RCPT from damage.ketabaneh.com[63.81.93.134]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 18 05:13:53 mail.srvfarm.net postfix/smtpd[1339033]: NOQUEUE: reject: RCP	2020-06-18 16:46:56
202.52.226.106	attackbotsspam	Jun 18 05:28:07 mail.srvfarm.net postfix/smtpd[1341596]: warning: unknown[202.52.226.106]: SASL PLAIN authentication failed: Jun 18 05:28:07 mail.srvfarm.net postfix/smtpd[1341596]: lost connection after AUTH from unknown[202.52.226.106] Jun 18 05:31:31 mail.srvfarm.net postfix/smtps/smtpd[1342934]: warning: unknown[202.52.226.106]: SASL PLAIN authentication failed: Jun 18 05:31:32 mail.srvfarm.net postfix/smtps/smtpd[1342934]: lost connection after AUTH from unknown[202.52.226.106] Jun 18 05:32:44 mail.srvfarm.net postfix/smtps/smtpd[1340853]: warning: unknown[202.52.226.106]: SASL PLAIN authentication failed:	2020-06-18 16:30:21
130.162.64.72	attackspam	2020-06-18T08:27:15.261274shield sshd\[2616\]: Invalid user emilio from 130.162.64.72 port 40343 2020-06-18T08:27:15.266613shield sshd\[2616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-130-162-64-72.compute.oraclecloud.com 2020-06-18T08:27:16.811017shield sshd\[2616\]: Failed password for invalid user emilio from 130.162.64.72 port 40343 ssh2 2020-06-18T08:30:43.264076shield sshd\[3594\]: Invalid user azar from 130.162.64.72 port 11069 2020-06-18T08:30:43.267764shield sshd\[3594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-130-162-64-72.compute.oraclecloud.com	2020-06-18 16:52:49
189.91.5.22	attackbotsspam	Jun 18 05:01:53 mail.srvfarm.net postfix/smtps/smtpd[1338906]: warning: unknown[189.91.5.22]: SASL PLAIN authentication failed: Jun 18 05:01:54 mail.srvfarm.net postfix/smtps/smtpd[1338906]: lost connection after AUTH from unknown[189.91.5.22] Jun 18 05:05:57 mail.srvfarm.net postfix/smtps/smtpd[1338901]: warning: unknown[189.91.5.22]: SASL PLAIN authentication failed: Jun 18 05:05:58 mail.srvfarm.net postfix/smtps/smtpd[1338901]: lost connection after AUTH from unknown[189.91.5.22] Jun 18 05:06:21 mail.srvfarm.net postfix/smtpd[1339036]: warning: unknown[189.91.5.22]: SASL PLAIN authentication failed:	2020-06-18 16:43:06
36.111.144.55	attackspambots	SSH Bruteforce Attempt (failed auth)	2020-06-18 16:57:32
187.111.38.24	attackbotsspam	Jun 18 05:32:19 mail.srvfarm.net postfix/smtpd[1341305]: warning: unknown[187.111.38.24]: SASL PLAIN authentication failed: Jun 18 05:32:19 mail.srvfarm.net postfix/smtpd[1341305]: lost connection after AUTH from unknown[187.111.38.24] Jun 18 05:34:17 mail.srvfarm.net postfix/smtpd[1341596]: warning: unknown[187.111.38.24]: SASL PLAIN authentication failed: Jun 18 05:34:17 mail.srvfarm.net postfix/smtpd[1341596]: lost connection after AUTH from unknown[187.111.38.24] Jun 18 05:42:05 mail.srvfarm.net postfix/smtps/smtpd[1343085]: warning: unknown[187.111.38.24]: SASL PLAIN authentication failed:	2020-06-18 16:32:20
13.80.116.138	attackspambots	Jun 17 09:05:14 izar postfix/smtpd[18087]: connect from unknown[13.80.116.138] Jun 17 09:05:14 izar postfix/smtpd[18087]: warning: unknown[13.80.116.138]: SASL LOGIN authentication failed: authentication failure Jun 17 09:05:14 izar postfix/smtpd[18087]: disconnect from unknown[13.80.116.138] Jun 17 09:22:37 izar postfix/smtpd[20502]: connect from unknown[13.80.116.138] Jun 17 09:22:38 izar postfix/smtpd[20502]: warning: unknown[13.80.116.138]: SASL LOGIN authentication failed: authentication failure Jun 17 09:22:38 izar postfix/smtpd[20502]: disconnect from unknown[13.80.116.138] Jun 17 09:23:59 izar postfix/smtpd[20426]: connect from unknown[13.80.116.138] Jun 17 09:23:59 izar postfix/smtpd[20426]: warning: unknown[13.80.116.138]: SASL LOGIN authentication failed: authentication failure Jun 17 09:23:59 izar postfix/smtpd[20426]: disconnect from unknown[13.80.116.138] Jun 17 09:27:37 izar postfix/smtpd[20426]: connect from unknown[13.80.116.138] Jun 17 09:27:37 izar po........ -------------------------------	2020-06-18 16:50:25
106.12.160.103	attack	(sshd) Failed SSH login from 106.12.160.103 (CN/China/-): 5 in the last 3600 secs	2020-06-18 17:00:26
51.38.188.63	attackbots	Jun 18 09:25:39 ns382633 sshd\[23774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.188.63 user=root Jun 18 09:25:42 ns382633 sshd\[23774\]: Failed password for root from 51.38.188.63 port 55576 ssh2 Jun 18 09:30:29 ns382633 sshd\[24949\]: Invalid user work from 51.38.188.63 port 35916 Jun 18 09:30:29 ns382633 sshd\[24949\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.188.63 Jun 18 09:30:31 ns382633 sshd\[24949\]: Failed password for invalid user work from 51.38.188.63 port 35916 ssh2	2020-06-18 17:01:20

Recently Reported IPs

211.109.3.157	53.30.192.195	85.84.131.196	189.79.68.211
80.36.207.117	54.203.112.169	135.169.56.175	34.196.217.127
116.233.127.52	85.185.73.101	58.243.211.143	122.217.230.138
72.217.231.118	51.91.18.45	63.239.94.220	177.44.17.9
152.5.97.145	175.72.93.147	131.75.195.192	124.203.242.205