85.42.57.221 - IPInfo

基本信息:

城市(city): Besana in Brianza

省份(region): Lombardy

国家(country): Italy

运营商(isp): Eldor Corporation SpA

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 85.42.57.221 to port 445	2019-12-16 04:22:25

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.42.57.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42200
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.42.57.221.			IN	A

;; AUTHORITY SECTION:
.			418	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121501 1800 900 604800 86400

;; Query time: 47 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 16 04:22:22 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

221.57.42.85.in-addr.arpa domain name pointer host221-57-static.42-85-b.business.telecomitalia.it.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
221.57.42.85.in-addr.arpa	name = host221-57-static.42-85-b.business.telecomitalia.it.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
105.21.33.2	attackspam	2019-11-03T14:37:58.208012abusebot-6.cloudsearch.cf sshd\[14107\]: Invalid user temp from 105.21.33.2 port 12182	2019-11-03 23:02:57
54.36.214.76	attack	2019-11-03T16:27:53.456151mail01 postfix/smtpd[16580]: warning: ip76.ip-54-36-214.eu[54.36.214.76]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-03T16:28:27.368162mail01 postfix/smtpd[16580]: warning: ip76.ip-54-36-214.eu[54.36.214.76]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-03T16:29:13.326925mail01 postfix/smtpd[12481]: warning: ip76.ip-54-36-214.eu[54.36.214.76]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-03T16:29:13.327254mail01 postfix/smtpd[12482]: warning: ip76.ip-54-36-214.eu[54.36.214.76]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-03 23:34:24
103.18.109.70	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-03 23:33:41
117.158.213.62	attack	Automatic report - Port Scan	2019-11-03 23:31:44
45.55.222.162	attackbots	Nov 3 15:04:50 web8 sshd\[7529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.222.162 user=root Nov 3 15:04:52 web8 sshd\[7529\]: Failed password for root from 45.55.222.162 port 39246 ssh2 Nov 3 15:08:53 web8 sshd\[9427\]: Invalid user admin from 45.55.222.162 Nov 3 15:08:53 web8 sshd\[9427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.222.162 Nov 3 15:08:55 web8 sshd\[9427\]: Failed password for invalid user admin from 45.55.222.162 port 50112 ssh2	2019-11-03 23:25:52
88.249.26.7	attackspambots	Automatic report - Port Scan Attack	2019-11-03 22:59:48
5.39.79.48	attackspambots	Nov 3 04:50:18 tdfoods sshd\[20679\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns339079.ip-5-39-79.eu user=root Nov 3 04:50:20 tdfoods sshd\[20679\]: Failed password for root from 5.39.79.48 port 51375 ssh2 Nov 3 04:54:13 tdfoods sshd\[21027\]: Invalid user tee from 5.39.79.48 Nov 3 04:54:13 tdfoods sshd\[21027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns339079.ip-5-39-79.eu Nov 3 04:54:15 tdfoods sshd\[21027\]: Failed password for invalid user tee from 5.39.79.48 port 42090 ssh2	2019-11-03 22:59:03
211.144.12.75	attackbotsspam	Nov 3 22:11:03 webhost01 sshd[6601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.144.12.75 Nov 3 22:11:05 webhost01 sshd[6601]: Failed password for invalid user sensivity from 211.144.12.75 port 32544 ssh2 ...	2019-11-03 23:17:32
38.143.223.252	attack	Nov 3 15:47:49 cvbnet sshd[26534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.143.223.252 Nov 3 15:47:51 cvbnet sshd[26534]: Failed password for invalid user test5 from 38.143.223.252 port 48633 ssh2 ...	2019-11-03 23:00:13
167.71.226.158	attackspambots	Nov 3 15:54:07 SilenceServices sshd[8032]: Failed password for root from 167.71.226.158 port 34920 ssh2 Nov 3 15:58:21 SilenceServices sshd[9231]: Failed password for root from 167.71.226.158 port 45364 ssh2	2019-11-03 23:23:04
188.166.233.216	attack	Wordpress bruteforce	2019-11-03 23:08:58
106.13.95.27	attackbotsspam	Nov 3 09:37:33 Tower sshd[1742]: Connection from 106.13.95.27 port 40124 on 192.168.10.220 port 22 Nov 3 09:37:39 Tower sshd[1742]: Failed password for root from 106.13.95.27 port 40124 ssh2 Nov 3 09:37:39 Tower sshd[1742]: Received disconnect from 106.13.95.27 port 40124:11: Bye Bye [preauth] Nov 3 09:37:39 Tower sshd[1742]: Disconnected from authenticating user root 106.13.95.27 port 40124 [preauth]	2019-11-03 23:09:30
41.33.31.239	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-03 23:00:32
41.204.191.53	attackspambots	Nov 3 16:55:08 server sshd\[22090\]: User root from 41.204.191.53 not allowed because listed in DenyUsers Nov 3 16:55:08 server sshd\[22090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.204.191.53 user=root Nov 3 16:55:11 server sshd\[22090\]: Failed password for invalid user root from 41.204.191.53 port 52268 ssh2 Nov 3 16:59:25 server sshd\[32316\]: Invalid user oracle from 41.204.191.53 port 33748 Nov 3 16:59:25 server sshd\[32316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.204.191.53	2019-11-03 23:09:57
164.132.100.28	attackspam	$f2bV_matches	2019-11-03 23:05:18

最近上报的IP列表

187.52.106.19	196.172.210.179	120.81.188.112	183.82.138.0
77.82.155.2	184.145.38.93	181.27.184.146	92.71.227.12
197.179.178.62	70.206.170.34	24.238.218.140	103.195.251.108
45.180.73.11	190.230.136.47	63.47.87.68	2.33.246.151
70.242.205.79	167.99.164.211	58.6.169.1	150.109.182.55