84.42.13.57 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): OJSC Rostelecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	[portscan] tcp/3389 [MS RDP] *(RWIN=1024)(02101252)	2020-02-10 20:32:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 84.42.13.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60871
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;84.42.13.57.			IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021000 1800 900 604800 86400

;; Query time: 698 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 20:32:42 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

57.13.42.84.in-addr.arpa domain name pointer rtr-tip.nelidovo.tvcom.ru.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
57.13.42.84.in-addr.arpa	name = rtr-tip.nelidovo.tvcom.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.209.140.92	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/103.209.140.92/ IN - 1H : (95) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IN NAME ASN : ASN138730 IP : 103.209.140.92 CIDR : 103.209.140.0/24 PREFIX COUNT : 20 UNIQUE IP COUNT : 5120 WYKRYTE ATAKI Z ASN138730 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-01 05:46:34 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-01 19:15:51
45.248.146.22	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.248.146.22/ BD - 1H : (45) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BD NAME ASN : ASN134813 IP : 45.248.146.22 CIDR : 45.248.146.0/24 PREFIX COUNT : 4 UNIQUE IP COUNT : 1024 WYKRYTE ATAKI Z ASN134813 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-01 05:46:34 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-01 19:17:30
187.1.57.210	attack	2019-10-01T10:43:01.834195abusebot-7.cloudsearch.cf sshd\[28514\]: Invalid user 3edc from 187.1.57.210 port 60744	2019-10-01 18:51:41
46.101.1.198	attack	2019-10-01T07:41:10.842997abusebot-7.cloudsearch.cf sshd\[27408\]: Invalid user nagios from 46.101.1.198 port 50877	2019-10-01 19:11:57
88.186.192.115	attack	Automatic report - Port Scan Attack	2019-10-01 19:08:12
116.239.252.57	attack	Sep 30 23:20:43 eola postfix/smtpd[23215]: connect from unknown[116.239.252.57] Sep 30 23:20:43 eola postfix/smtpd[23216]: connect from unknown[116.239.252.57] Sep 30 23:20:43 eola postfix/smtpd[23215]: lost connection after AUTH from unknown[116.239.252.57] Sep 30 23:20:43 eola postfix/smtpd[23215]: disconnect from unknown[116.239.252.57] ehlo=1 auth=0/1 commands=1/2 Sep 30 23:20:43 eola postfix/smtpd[23216]: lost connection after AUTH from unknown[116.239.252.57] Sep 30 23:20:43 eola postfix/smtpd[23216]: disconnect from unknown[116.239.252.57] ehlo=1 auth=0/1 commands=1/2 Sep 30 23:20:44 eola postfix/smtpd[23215]: connect from unknown[116.239.252.57] Sep 30 23:20:44 eola postfix/smtpd[23216]: connect from unknown[116.239.252.57] Sep 30 23:20:44 eola postfix/smtpd[23215]: lost connection after AUTH from unknown[116.239.252.57] Sep 30 23:20:44 eola postfix/smtpd[23215]: disconnect from unknown[116.239.252.57] ehlo=1 auth=0/1 commands=1/2 Sep 30 23:20:44 eola postfix/sm........ -------------------------------	2019-10-01 19:05:34
58.250.161.97	attack	Automatic report - Banned IP Access	2019-10-01 18:44:13
154.120.226.102	attackspam	Oct 1 08:13:25 mail sshd\[19041\]: Invalid user ubuntu from 154.120.226.102 port 45402 Oct 1 08:13:25 mail sshd\[19041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.226.102 Oct 1 08:13:27 mail sshd\[19041\]: Failed password for invalid user ubuntu from 154.120.226.102 port 45402 ssh2 Oct 1 08:19:32 mail sshd\[19727\]: Invalid user ubnt from 154.120.226.102 port 57804 Oct 1 08:19:32 mail sshd\[19727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.226.102	2019-10-01 18:43:58
132.232.59.136	attack	Oct 1 12:08:11 ArkNodeAT sshd\[1951\]: Invalid user ts2 from 132.232.59.136 Oct 1 12:08:11 ArkNodeAT sshd\[1951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.59.136 Oct 1 12:08:13 ArkNodeAT sshd\[1951\]: Failed password for invalid user ts2 from 132.232.59.136 port 54940 ssh2	2019-10-01 19:01:32
144.217.166.59	attackbotsspam	Oct 1 10:56:42 rotator sshd\[11821\]: Failed password for root from 144.217.166.59 port 60868 ssh2Oct 1 10:56:45 rotator sshd\[11821\]: Failed password for root from 144.217.166.59 port 60868 ssh2Oct 1 10:56:48 rotator sshd\[11821\]: Failed password for root from 144.217.166.59 port 60868 ssh2Oct 1 10:56:51 rotator sshd\[11821\]: Failed password for root from 144.217.166.59 port 60868 ssh2Oct 1 10:56:54 rotator sshd\[11821\]: Failed password for root from 144.217.166.59 port 60868 ssh2Oct 1 10:56:56 rotator sshd\[11821\]: Failed password for root from 144.217.166.59 port 60868 ssh2 ...	2019-10-01 19:09:06
49.88.112.55	attackbots	Oct 1 12:23:58 nextcloud sshd\[17629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.55 user=root Oct 1 12:24:00 nextcloud sshd\[17629\]: Failed password for root from 49.88.112.55 port 48126 ssh2 Oct 1 12:24:03 nextcloud sshd\[17629\]: Failed password for root from 49.88.112.55 port 48126 ssh2 ...	2019-10-01 19:13:36
78.188.223.254	attackbots	Automatic report - Port Scan Attack	2019-10-01 19:07:35
92.118.38.52	attackbots	Oct 1 09:04:46 heicom postfix/smtpd\[14553\]: warning: unknown\[92.118.38.52\]: SASL LOGIN authentication failed: authentication failure Oct 1 09:07:58 heicom postfix/smtpd\[14739\]: warning: unknown\[92.118.38.52\]: SASL LOGIN authentication failed: authentication failure Oct 1 09:10:57 heicom postfix/smtpd\[15009\]: warning: unknown\[92.118.38.52\]: SASL LOGIN authentication failed: authentication failure Oct 1 09:14:11 heicom postfix/smtpd\[15183\]: warning: unknown\[92.118.38.52\]: SASL LOGIN authentication failed: authentication failure Oct 1 09:17:13 heicom postfix/smtpd\[15513\]: warning: unknown\[92.118.38.52\]: SASL LOGIN authentication failed: authentication failure ...	2019-10-01 18:45:52
46.105.94.103	attackspambots	Oct 1 12:36:05 SilenceServices sshd[17511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.94.103 Oct 1 12:36:07 SilenceServices sshd[17511]: Failed password for invalid user amir from 46.105.94.103 port 58232 ssh2 Oct 1 12:42:25 SilenceServices sshd[19337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.94.103	2019-10-01 19:10:36
209.17.97.18	attack	Connection by 209.17.97.18 on port: 9000 got caught by honeypot at 10/1/2019 2:53:40 AM	2019-10-01 18:39:50

最近上报的IP列表

80.157.194.45	117.0.189.221	222.252.20.68	182.253.61.19
180.248.1.220	66.96.237.142	189.89.29.69	177.32.58.68
116.33.149.100	112.134.226.75	116.227.34.159	246.98.65.27
51.174.147.41	84.4.141.159	59.109.77.126	190.235.169.17
77.73.45.201	181.87.131.145	113.176.145.3	36.85.222.101