42.231.111.189

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Henan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Telnet/23 MH Probe, BF, Hack -	2019-11-14 00:46:13

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.231.111.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2790
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.231.111.189.			IN	A

;; AUTHORITY SECTION:
.			593	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111300 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 14 00:46:08 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

189.111.231.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
189.111.231.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
138.197.176.130	attack	Sep 13 22:42:59 php1 sshd\[5389\]: Invalid user rv from 138.197.176.130 Sep 13 22:42:59 php1 sshd\[5389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.176.130 Sep 13 22:43:01 php1 sshd\[5389\]: Failed password for invalid user rv from 138.197.176.130 port 56649 ssh2 Sep 13 22:48:18 php1 sshd\[6654\]: Invalid user iu from 138.197.176.130 Sep 13 22:48:18 php1 sshd\[6654\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.176.130	2019-09-14 21:12:14
144.217.83.201	attackbots	Sep 14 12:57:45 SilenceServices sshd[20561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.83.201 Sep 14 12:57:47 SilenceServices sshd[20561]: Failed password for invalid user deployer123456 from 144.217.83.201 port 38962 ssh2 Sep 14 13:01:40 SilenceServices sshd[21982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.83.201	2019-09-14 21:18:54
139.59.41.154	attackbotsspam	2019-09-14T14:07:47.233959lon01.zurich-datacenter.net sshd\[13051\]: Invalid user www from 139.59.41.154 port 56786 2019-09-14T14:07:47.241452lon01.zurich-datacenter.net sshd\[13051\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.41.154 2019-09-14T14:07:49.144174lon01.zurich-datacenter.net sshd\[13051\]: Failed password for invalid user www from 139.59.41.154 port 56786 ssh2 2019-09-14T14:12:20.190644lon01.zurich-datacenter.net sshd\[13132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.41.154 user=root 2019-09-14T14:12:22.238747lon01.zurich-datacenter.net sshd\[13132\]: Failed password for root from 139.59.41.154 port 53580 ssh2 ...	2019-09-14 21:49:01
200.169.223.98	attack	2019-09-14T11:32:14.285589abusebot-5.cloudsearch.cf sshd\[17221\]: Invalid user ts3server4 from 200.169.223.98 port 54286	2019-09-14 21:46:50
91.83.186.131	attackspam	" "	2019-09-14 22:07:08
125.212.203.113	attack	Sep 14 09:51:36 plusreed sshd[12834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.203.113 user=root Sep 14 09:51:38 plusreed sshd[12834]: Failed password for root from 125.212.203.113 port 47392 ssh2 ...	2019-09-14 22:04:14
151.54.176.37	attack	firewall-block, port(s): 23/tcp	2019-09-14 21:55:14
114.234.252.105	attackbotsspam	Sep 14 08:33:48 mxgate1 postfix/postscreen[20950]: CONNECT from [114.234.252.105]:2790 to [176.31.12.44]:25 Sep 14 08:33:48 mxgate1 postfix/dnsblog[21385]: addr 114.234.252.105 listed by domain cbl.abuseat.org as 127.0.0.2 Sep 14 08:33:48 mxgate1 postfix/dnsblog[21388]: addr 114.234.252.105 listed by domain zen.spamhaus.org as 127.0.0.4 Sep 14 08:33:48 mxgate1 postfix/dnsblog[21388]: addr 114.234.252.105 listed by domain zen.spamhaus.org as 127.0.0.3 Sep 14 08:33:48 mxgate1 postfix/dnsblog[21388]: addr 114.234.252.105 listed by domain zen.spamhaus.org as 127.0.0.11 Sep 14 08:33:48 mxgate1 postfix/dnsblog[21387]: addr 114.234.252.105 listed by domain b.barracudacentral.org as 127.0.0.2 Sep 14 08:33:54 mxgate1 postfix/postscreen[20950]: DNSBL rank 4 for [114.234.252.105]:2790 Sep x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.234.252.105	2019-09-14 21:34:09
128.199.79.37	attackspam	Sep 14 15:08:40 rpi sshd[29461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.79.37 Sep 14 15:08:42 rpi sshd[29461]: Failed password for invalid user osmc from 128.199.79.37 port 44396 ssh2	2019-09-14 21:12:54
51.79.73.206	attackbotsspam	Sep 14 01:16:00 php1 sshd\[25999\]: Invalid user jwy from 51.79.73.206 Sep 14 01:16:00 php1 sshd\[25999\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.ip-51-79-73.net Sep 14 01:16:02 php1 sshd\[25999\]: Failed password for invalid user jwy from 51.79.73.206 port 49294 ssh2 Sep 14 01:20:16 php1 sshd\[26529\]: Invalid user jk from 51.79.73.206 Sep 14 01:20:16 php1 sshd\[26529\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.ip-51-79-73.net	2019-09-14 21:42:53
192.163.201.173	attackspam	Automatic report - Banned IP Access	2019-09-14 21:50:22
138.204.146.185	attack	[portscan] tcp/23 [TELNET] *(RWIN=8989)(09141017)	2019-09-14 22:10:35
159.65.220.236	attack	Sep 14 12:15:50 [host] sshd[32080]: Invalid user megashop from 159.65.220.236 Sep 14 12:15:50 [host] sshd[32080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.220.236 Sep 14 12:15:52 [host] sshd[32080]: Failed password for invalid user megashop from 159.65.220.236 port 48562 ssh2	2019-09-14 22:06:06
165.22.99.94	attackbots	Sep 14 15:07:54 markkoudstaal sshd[4754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.99.94 Sep 14 15:07:56 markkoudstaal sshd[4754]: Failed password for invalid user divine from 165.22.99.94 port 42858 ssh2 Sep 14 15:15:25 markkoudstaal sshd[5570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.99.94	2019-09-14 21:21:14
115.113.196.2	attackbotsspam	Sep 14 12:19:53 dedicated sshd[26072]: Invalid user albi from 115.113.196.2 port 58586	2019-09-14 21:45:08

最近上报的IP列表

220.133.129.5	248.51.236.98	167.99.130.208	77.6.1.110
219.71.221.91	218.173.132.193	114.97.215.223	217.208.26.149
146.88.24.17	212.26.251.125	114.46.101.33	194.114.129.201
134.64.76.9	15.152.2.52	190.242.43.210	167.114.86.88
48.48.170.90	114.38.171.19	109.184.152.221	167.236.96.253