42.231.162.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Henan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Feb 2 05:56:58 grey postfix/smtpd\[22281\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.14\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.14\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[42.231.162.14\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-02 14:23:22

类型

评论内容

时间

attackspambots

Feb  2 05:56:58 grey postfix/smtpd\[22281\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.14\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.14\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[42.231.162.14\]\; from=\ to=\ proto=ESMTP helo=\
...

2020-02-02 14:23:22

相同子网IP讨论:

IP	类型	评论内容	时间
42.231.162.216	attack	Feb 25 08:25:45 grey postfix/smtpd\[13777\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.216\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.216\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.162.216\; from=\ to=\ proto=SMTP helo=\ ...	2020-02-25 17:00:37
42.231.162.217	attackspambots	Feb 22 17:46:06 exim[22632]: [1\57] 1j5Xuk-0005t2-Fn H=(gmail.com) [42.231.162.217] F= rejected after DATA: This message scored 15.2 spam points.	2020-02-23 04:06:56
42.231.162.228	attackspam	Brute force attempt	2020-02-20 23:21:06
42.231.162.219	attackspambots	Feb 17 19:27:26 exim[2643]: [1\39] 1j3l78-0000gd-Du H=(gmail.com) [42.231.162.219] F= rejected after DATA: This message scored 104.8 spam points.	2020-02-18 05:53:31
42.231.162.224	attackspam	Jan 20 05:58:06 grey postfix/smtpd\[15217\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.224\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.224\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.162.224\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-20 14:15:55
42.231.162.217	attackspam	Jan 16 14:04:47 grey postfix/smtpd\[28896\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.217\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.217\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.162.217\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-16 21:44:40
42.231.162.228	attackspam	Jan 10 22:11:54 grey postfix/smtpd\[30284\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.228\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.228\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.162.228\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-11 05:12:30
42.231.162.216	attack	Spamassassin_42.231.162.216	2019-11-11 09:02:24
42.231.162.190	attack	f2b trigger Multiple SASL failures	2019-09-29 04:17:15
42.231.162.208	attack	"SMTPD" 6184 83083 "2019-09-24 x@x "SMTPD" 6184 83083 "2019-09-24 14:30:54.432" "42.231.162.208" "SENT: 550 Delivery is not allowed to this address." IP Address: 42.231.162.208 Email x@x No MX record resolves to this server for domain: schoenenreus.nl ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.231.162.208	2019-09-24 20:59:43
42.231.162.205	attackbots	SASL Brute Force	2019-09-23 04:24:23
42.231.162.203	attackbotsspam	MagicSpam Rule: block_rbl_lists (b.barracudacentral.org); Spammer IP: 42.231.162.203	2019-08-31 13:19:47
42.231.162.202	attackbotsspam	originated or passed SPAM,UCE	2019-08-05 08:12:04
42.231.162.191	attackspam	Brute force attempt	2019-07-30 08:52:07
42.231.162.205	attackspambots	SASL Brute Force	2019-07-25 11:38:39

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.231.162.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7735
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.231.162.14.			IN	A

;; AUTHORITY SECTION:
.			145	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020200 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 02 14:23:17 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

14.162.231.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.162.231.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
72.93.236.125	attackspam	Probing for vulnerable services	2020-09-11 22:38:34
134.209.148.107	attackspambots	TCP (SYN) 134.209.148.107:44843 -> port 24561, len 44	2020-09-11 23:00:06
189.90.183.67	attackbots	Sep 11 07:05:45 root sshd[29756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.90.183.67 user=root Sep 11 07:05:47 root sshd[29756]: Failed password for root from 189.90.183.67 port 53524 ssh2 ...	2020-09-11 22:46:28
222.186.42.7	attackbotsspam	SSH bruteforce	2020-09-11 22:54:16
123.207.11.65	attackspambots	Sep 11 09:32:28 root sshd[12366]: Failed password for root from 123.207.11.65 port 59622 ssh2 ...	2020-09-11 22:50:03
58.120.53.125	attackbotsspam	Sep 10 18:56:38 mail sshd[11675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.120.53.125	2020-09-11 22:34:18
185.220.101.210	attack	185.220.101.210 - - \[10/Sep/2020:18:56:46 +0200\] "GET /index.php\?id=-4892%22%2F%2A\&id=%2A%2FOR%2F%2A\&id=%2A%2F6879%3D%28SELECT%2F%2A\&id=%2A%2F%28CASE%2F%2A\&id=%2A%2FWHEN%2F%2A\&id=%2A%2F%286879%3D6812%29%2F%2A\&id=%2A%2FTHEN%2F%2A\&id=%2A%2F6879%2F%2A\&id=%2A%2FELSE%2F%2A\&id=%2A%2F%28SELECT%2F%2A\&id=%2A%2F6812%2F%2A\&id=%2A%2FUNION%2F%2A\&id=%2A%2FSELECT%2F%2A\&id=%2A%2F2723%29%2F%2A\&id=%2A%2FEND%29%29--%2F%2A\&id=%2A%2FtXej HTTP/1.1" 200 12305 "http://www.firma-lsf.eu:80/index.php" "Googlebot \(compatible Googlebot/2.1 http://www.google.com/bot.html\)" ...	2020-09-11 22:20:18
47.107.45.148	attackbotsspam	2020-09-10T16:56:00.777314www1-sb.mstrade.org sshd[27054]: Failed password for invalid user postgresql from 47.107.45.148 port 51276 ssh2 2020-09-10T16:56:42.007467www1-sb.mstrade.org sshd[27093]: Invalid user print from 47.107.45.148 port 55480 2020-09-10T16:56:42.012194www1-sb.mstrade.org sshd[27093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.107.45.148 2020-09-10T16:56:42.007467www1-sb.mstrade.org sshd[27093]: Invalid user print from 47.107.45.148 port 55480 2020-09-10T16:56:43.943267www1-sb.mstrade.org sshd[27093]: Failed password for invalid user print from 47.107.45.148 port 55480 ssh2 ...	2020-09-11 22:26:12
5.29.145.86	attack	Sep 10 20:43:29 m3061 sshd[5139]: Invalid user cablecom from 5.29.145.86 Sep 10 20:43:29 m3061 sshd[5139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.29.145.86 Sep 10 20:43:31 m3061 sshd[5139]: Failed password for invalid user cablecom from 5.29.145.86 port 45208 ssh2 Sep 10 20:43:31 m3061 sshd[5139]: Connection closed by 5.29.145.86 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.29.145.86	2020-09-11 22:34:34
41.193.122.237	attack	IP attempted unauthorised action	2020-09-11 22:22:50
97.74.237.196	attackbots	sshd: Failed password for .... from 97.74.237.196 port 38810 ssh2 (4 attempts)	2020-09-11 22:59:22
220.72.41.77	attackbotsspam	Sep 10 18:56:40 mail sshd[11665]: Failed password for root from 220.72.41.77 port 56112 ssh2	2020-09-11 22:32:17
192.35.168.233	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-11 22:24:38
150.109.57.43	attackspam	Sep 11 14:13:55 ns3033917 sshd[32575]: Failed password for root from 150.109.57.43 port 36658 ssh2 Sep 11 14:17:33 ns3033917 sshd[32611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.57.43 user=root Sep 11 14:17:35 ns3033917 sshd[32611]: Failed password for root from 150.109.57.43 port 39086 ssh2 ...	2020-09-11 22:37:08
36.235.71.115	attack	Listed on dnsbl-sorbs plus abuseat-org and zen-spamhaus / proto=6 . srcport=59676 . dstport=23 . (785)	2020-09-11 22:44:34

最近上报的IP列表

223.134.124.83	61.197.136.145	119.4.98.101	180.87.135.189
179.186.198.89	160.22.116.78	23.33.38.226	154.238.17.64
31.189.162.144	73.235.240.22	20.62.51.4	121.212.90.230
157.22.123.194	216.61.108.17	185.186.143.55	31.45.247.251
104.115.78.192	109.234.139.222	106.239.223.29	183.80.56.213