84.39.247.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: OJSC Ufanet

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	2020-02-13T19:33:24.811Z CLOSE host=84.39.247.142 port=52400 fd=4 time=20.006 bytes=28 ...	2020-03-13 00:36:33

Comments on same subnet:

IP	Type	Details	Datetime
84.39.247.125	attackbots	1599757154 - 09/10/2020 18:59:14 Host: 84.39.247.125/84.39.247.125 Port: 445 TCP Blocked	2020-09-11 20:14:05
84.39.247.125	attackspam	1599757154 - 09/10/2020 18:59:14 Host: 84.39.247.125/84.39.247.125 Port: 445 TCP Blocked	2020-09-11 12:20:09
84.39.247.125	attackbots	1599757154 - 09/10/2020 18:59:14 Host: 84.39.247.125/84.39.247.125 Port: 445 TCP Blocked	2020-09-11 04:40:48
84.39.247.228	attackbotsspam	1590148382 - 05/22/2020 13:53:02 Host: 84.39.247.228/84.39.247.228 Port: 445 TCP Blocked	2020-05-22 23:21:23
84.39.247.184	attackspambots	Fail2Ban Ban Triggered	2020-04-05 10:41:00
84.39.247.71	attack	Port probing on unauthorized port 445	2020-03-01 20:29:24
84.39.247.197	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 16-02-2020 13:50:32.	2020-02-16 22:30:14
84.39.247.159	attack	1581341772 - 02/10/2020 14:36:12 Host: 84.39.247.159/84.39.247.159 Port: 445 TCP Blocked	2020-02-11 05:44:05
84.39.247.209	attack	1577147766 - 12/24/2019 01:36:06 Host: 84.39.247.209/84.39.247.209 Port: 445 TCP Blocked	2019-12-24 09:17:13
84.39.247.184	attack	Fail2Ban Ban Triggered	2019-12-21 22:42:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 84.39.247.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25978
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;84.39.247.142.			IN	A

;; AUTHORITY SECTION:
.			314	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031200 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 13 00:36:24 CST 2020
;; MSG SIZE  rcvd: 117

Host info

142.247.39.84.in-addr.arpa domain name pointer 84.39.247.142.dynamic.kzn.ufanet.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.247.39.84.in-addr.arpa	name = 84.39.247.142.dynamic.kzn.ufanet.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.238.116.152	attack	104.238.116.152 - - [30/Jul/2020:16:19:37 +0100] "POST /wp-login.php HTTP/1.1" 200 1960 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.238.116.152 - - [30/Jul/2020:16:19:39 +0100] "POST /wp-login.php HTTP/1.1" 200 1937 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.238.116.152 - - [30/Jul/2020:16:19:40 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-31 03:40:14
192.35.168.35	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-07-31 03:16:35
114.67.80.134	attackbots	Jul 30 18:56:31 rotator sshd\[741\]: Invalid user daiyun from 114.67.80.134Jul 30 18:56:33 rotator sshd\[741\]: Failed password for invalid user daiyun from 114.67.80.134 port 56416 ssh2Jul 30 18:59:14 rotator sshd\[757\]: Invalid user shkim from 114.67.80.134Jul 30 18:59:16 rotator sshd\[757\]: Failed password for invalid user shkim from 114.67.80.134 port 44210 ssh2Jul 30 19:01:55 rotator sshd\[1538\]: Invalid user monitoramento from 114.67.80.134Jul 30 19:01:57 rotator sshd\[1538\]: Failed password for invalid user monitoramento from 114.67.80.134 port 60236 ssh2 ...	2020-07-31 03:45:22
192.226.250.178	attackbotsspam	2020-07-30T01:03:57.373424hostname sshd[108033]: Failed password for invalid user lishuhan from 192.226.250.178 port 38834 ssh2 ...	2020-07-31 03:34:46
151.236.89.18	attack	ICMP MH Probe, Scan /Distributed -	2020-07-31 03:41:29
45.134.179.57	attackbots	Jul 30 16:51:03 debian-2gb-nbg1-2 kernel: \[18379153.759914\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.134.179.57 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=45975 PROTO=TCP SPT=49374 DPT=1487 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-31 03:13:12
106.13.201.158	attackspam	Jul 30 14:24:05 firewall sshd[18083]: Invalid user xpp from 106.13.201.158 Jul 30 14:24:07 firewall sshd[18083]: Failed password for invalid user xpp from 106.13.201.158 port 35498 ssh2 Jul 30 14:28:00 firewall sshd[18251]: Invalid user zhl from 106.13.201.158 ...	2020-07-31 03:49:03
212.83.132.45	attackbots	[2020-07-30 15:10:01] NOTICE[1248] chan_sip.c: Registration from '"897"' failed for '212.83.132.45:6363' - Wrong password [2020-07-30 15:10:01] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-30T15:10:01.497-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="897",SessionID="0x7f272007c5b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132.45/6363",Challenge="77c239d4",ReceivedChallenge="77c239d4",ReceivedHash="b5989425374b2d9b2df814c8f7410314" [2020-07-30 15:13:08] NOTICE[1248] chan_sip.c: Registration from '"894"' failed for '212.83.132.45:6214' - Wrong password [2020-07-30 15:13:08] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-30T15:13:08.198-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="894",SessionID="0x7f272007c5b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132 ...	2020-07-31 03:25:41
2001:e68:508c:bfcb:1e5f:2bff:fe35:a638	attackspambots	hacking into my emails	2020-07-31 03:20:56
186.145.254.158	attack	Jul 30 13:18:46 ns382633 sshd\[645\]: Invalid user penggao from 186.145.254.158 port 52578 Jul 30 13:18:46 ns382633 sshd\[645\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.145.254.158 Jul 30 13:18:48 ns382633 sshd\[645\]: Failed password for invalid user penggao from 186.145.254.158 port 52578 ssh2 Jul 30 14:03:40 ns382633 sshd\[8787\]: Invalid user newuser from 186.145.254.158 port 42552 Jul 30 14:03:40 ns382633 sshd\[8787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.145.254.158	2020-07-31 03:19:35
167.114.237.46	attackspambots	2020-07-30T20:09:22.694527ns386461 sshd\[31772\]: Invalid user cinder from 167.114.237.46 port 50140 2020-07-30T20:09:22.699087ns386461 sshd\[31772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.237.46 2020-07-30T20:09:24.813556ns386461 sshd\[31772\]: Failed password for invalid user cinder from 167.114.237.46 port 50140 ssh2 2020-07-30T20:18:31.120983ns386461 sshd\[7565\]: Invalid user melina from 167.114.237.46 port 59207 2020-07-30T20:18:31.125467ns386461 sshd\[7565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.237.46 ...	2020-07-31 03:46:44
171.238.5.214	attack	Unauthorized connection attempt from IP address 171.238.5.214 on Port 445(SMB)	2020-07-31 03:27:34
198.27.66.37	attackbots	Jul 30 19:43:04 pve1 sshd[1292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.66.37 Jul 30 19:43:06 pve1 sshd[1292]: Failed password for invalid user haoxin from 198.27.66.37 port 37542 ssh2 ...	2020-07-31 03:40:45
178.46.212.65	attack	Jul 30 14:02:47 [host] kernel: [1777769.041331] [U Jul 30 14:02:47 [host] kernel: [1777769.065837] [U Jul 30 14:02:47 [host] kernel: [1777769.090808] [U Jul 30 14:03:24 [host] kernel: [1777806.039670] [U Jul 30 14:03:24 [host] kernel: [1777806.041533] [U Jul 30 14:03:24 [host] kernel: [1777806.057178] [U	2020-07-31 03:44:38
111.229.94.113	attackspambots	Jul 30 12:08:00 dignus sshd[1152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.94.113 Jul 30 12:08:02 dignus sshd[1152]: Failed password for invalid user tinglok from 111.229.94.113 port 59670 ssh2 Jul 30 12:12:01 dignus sshd[1871]: Invalid user rdx from 111.229.94.113 port 56224 Jul 30 12:12:01 dignus sshd[1871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.94.113 Jul 30 12:12:03 dignus sshd[1871]: Failed password for invalid user rdx from 111.229.94.113 port 56224 ssh2 ...	2020-07-31 03:24:30

Recently Reported IPs

84.174.233.238	89.212.227.72	83.54.110.0	83.26.83.146
114.234.30.33	106.75.240.180	83.26.100.77	81.35.1.69
42.115.220.164	83.239.117.246	23.236.13.167	120.70.100.215
225.89.136.215	83.128.32.5	83.110.4.215	118.37.11.12
83.110.242.192	82.66.233.168	83.61.104.190	82.252.129.36