城市(city): Kazan
省份(region): Tatarstan
国家(country): Russia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '92.255.200.0 - 92.255.207.255'
% Abuse contact for '92.255.200.0 - 92.255.207.255' is 'abuse@domru.ru'
inetnum: 92.255.200.0 - 92.255.207.255
netname: ERTH-KAZAN-PPPOE-2-NET
descr: CJSC "Company "ER-Telecom" Kazan'
descr: Kazan', Russia
descr: PPPoE Individual customers
country: RU
admin-c: NOC97-RIPE
org: ORG-CHKB2-RIPE
tech-c: NOC97-RIPE
status: ASSIGNED PA
mnt-by: RAID-MNT
created: 2008-07-24T05:49:52Z
last-modified: 2011-01-19T19:02:13Z
source: RIPE # Filtered
remarks: INFRA-AW
organisation: ORG-CHKB2-RIPE
org-name: JSC "ER-Telecom Holding" Kazan' Branch
org-type: OTHER
descr: TM DOM.RU, Kazan' ISP
address: Gvardeyskaya, 54
address: Kazan', Russia, 420087
phone: +7 (843) 211-00-44
fax-no: +7 (843) 211-00-44
admin-c: NOC97-RIPE
tech-c: NOC97-RIPE
abuse-c: RAID1-RIPE
mnt-ref: RAID-MNT
mnt-by: RAID-MNT
created: 2011-01-13T10:56:24Z
last-modified: 2019-11-11T11:56:26Z
source: RIPE # Filtered
role: Network Operation Center CJSC ER-Telecom Company Kazan' branch
address: Russian Federation, Tatarstan
address: 420097, Kazan, Zinina st, 7
admin-c: FKK11-RIPE
admin-c: AMS103-RIPE
tech-c: FKK11-RIPE
tech-c: AMS103-RIPE
nic-hdl: NOC97-RIPE
created: 2007-01-29T14:10:34Z
last-modified: 2015-05-19T10:22:01Z
source: RIPE # Filtered
mnt-by: MNT-ERTHOLDING
% Information related to '92.255.200.0/24AS41668'
route: 92.255.200.0/24
origin: AS41668
org: ORG-CHKB2-RIPE
descr: CJSC "ER-Telecom Holding" Kazan' branch
descr: Kazan', Russia
mnt-by: RAID-MNT
created: 2013-04-25T09:32:40Z
last-modified: 2013-04-25T09:32:40Z
source: RIPE
organisation: ORG-CHKB2-RIPE
org-name: JSC "ER-Telecom Holding" Kazan' Branch
org-type: OTHER
descr: TM DOM.RU, Kazan' ISP
address: Gvardeyskaya, 54
address: Kazan', Russia, 420087
phone: +7 (843) 211-00-44
fax-no: +7 (843) 211-00-44
admin-c: NOC97-RIPE
tech-c: NOC97-RIPE
abuse-c: RAID1-RIPE
mnt-ref: RAID-MNT
mnt-by: RAID-MNT
created: 2011-01-13T10:56:24Z
last-modified: 2019-11-11T11:56:26Z
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.122.1 (BUSA); <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.255.200.62
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63682
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;92.255.200.62. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026052700 1800 900 604800 86400
;; Query time: 5 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 27 20:29:26 CST 2026
;; MSG SIZE rcvd: 10662.200.255.92.in-addr.arpa domain name pointer 92x255x200x62.static-business.kzn.ertelecom.ru.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
62.200.255.92.in-addr.arpa name = 92x255x200x62.static-business.kzn.ertelecom.ru.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 191.81.35.26 | attack | port scan and connect, tcp 22 (ssh) |
2020-08-04 18:48:10 |
| 34.87.83.116 | attackbots | Fail2Ban Ban Triggered (2) |
2020-08-04 18:41:38 |
| 189.203.163.167 | attack | techno.ws 189.203.163.167 [04/Aug/2020:11:27:00 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4245 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" techno.ws 189.203.163.167 [04/Aug/2020:11:27:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4245 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" |
2020-08-04 18:53:07 |
| 104.198.16.231 | attackbots | Aug 4 12:30:36 vps647732 sshd[12587]: Failed password for root from 104.198.16.231 port 33790 ssh2 ... |
2020-08-04 18:45:27 |
| 106.12.55.170 | attack | Aug 4 16:59:54 webhost01 sshd[31562]: Failed password for root from 106.12.55.170 port 47118 ssh2 ... |
2020-08-04 19:13:28 |
| 66.249.66.80 | attackspam | Automatic report - Banned IP Access |
2020-08-04 18:54:52 |
| 213.194.99.235 | attackbotsspam | Lines containing failures of 213.194.99.235 Aug 3 01:00:42 nemesis sshd[12103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.194.99.235 user=r.r Aug 3 01:00:44 nemesis sshd[12103]: Failed password for r.r from 213.194.99.235 port 36373 ssh2 Aug 3 01:00:45 nemesis sshd[12103]: Received disconnect from 213.194.99.235 port 36373:11: Bye Bye [preauth] Aug 3 01:00:45 nemesis sshd[12103]: Disconnected from authenticating user r.r 213.194.99.235 port 36373 [preauth] Aug 3 01:05:55 nemesis sshd[13920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.194.99.235 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=213.194.99.235 |
2020-08-04 19:09:05 |
| 49.234.219.76 | attack | Aug 4 13:52:34 hosting sshd[23642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.219.76 user=root Aug 4 13:52:36 hosting sshd[23642]: Failed password for root from 49.234.219.76 port 49078 ssh2 ... |
2020-08-04 18:59:09 |
| 106.13.201.158 | attack | " " |
2020-08-04 18:53:51 |
| 159.203.177.191 | attackspambots | Aug 4 12:17:05 eventyay sshd[17640]: Failed password for root from 159.203.177.191 port 47890 ssh2 Aug 4 12:20:59 eventyay sshd[17805]: Failed password for root from 159.203.177.191 port 57036 ssh2 ... |
2020-08-04 19:00:01 |
| 49.232.17.14 | attackbotsspam | SSH invalid-user multiple login attempts |
2020-08-04 19:16:51 |
| 223.83.216.125 | attackbotsspam | Aug 4 00:27:55 php1 sshd\[28928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.83.216.125 user=root Aug 4 00:27:57 php1 sshd\[28928\]: Failed password for root from 223.83.216.125 port 4616 ssh2 Aug 4 00:32:38 php1 sshd\[29335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.83.216.125 user=root Aug 4 00:32:39 php1 sshd\[29335\]: Failed password for root from 223.83.216.125 port 60806 ssh2 Aug 4 00:37:19 php1 sshd\[29678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.83.216.125 user=root |
2020-08-04 18:44:31 |
| 87.251.74.19 | attackbotsspam | Aug 4 11:51:24 debian-2gb-nbg1-2 kernel: \[18793150.444871\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.19 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=51076 PROTO=TCP SPT=49585 DPT=18750 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-08-04 18:54:36 |
| 104.211.215.114 | attack | TCP port : 23 |
2020-08-04 18:55:54 |
| 125.163.98.216 | attack | 20/8/4@05:27:17: FAIL: Alarm-Network address from=125.163.98.216 ... |
2020-08-04 18:42:23 |