42.231.163.193

基本信息:

城市(city): Zhengzhou

省份(region): Henan

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): CHINA UNICOM China169 Backbone

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.231.163.223	attack	Mar 6 23:06:00 grey postfix/smtpd\[18312\]: NOQUEUE: reject: RCPT from unknown\[42.231.163.223\]: 554 5.7.1 Service unavailable\; Client host \[42.231.163.223\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.163.223\; from=\ to=\ proto=SMTP helo=\ ...	2020-03-07 06:40:18
42.231.163.224	attackbots	Email rejected due to spam filtering	2020-03-02 03:13:26
42.231.163.211	attackbots	spam	2020-02-29 17:44:39
42.231.163.88	attackspam	Feb 27 05:58:49 grey postfix/smtpd\[3219\]: NOQUEUE: reject: RCPT from unknown\[42.231.163.88\]: 554 5.7.1 Service unavailable\; Client host \[42.231.163.88\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[42.231.163.88\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-27 13:38:47
42.231.163.134	attackspambots	Fake domain expiration notices spf=pass. smtp.mailfrom=info@shaxiamight.top	2020-02-15 16:52:55
42.231.163.120	attackbotsspam	Email rejected due to spam filtering	2020-02-11 18:37:41

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.231.163.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45871
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.231.163.193.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 24 21:01:06 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

193.163.231.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
193.163.231.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
177.154.77.185	attackspambots	Brute force attempt	2019-06-28 18:53:33
203.39.148.165	attack	Jun 28 10:49:33 tuxlinux sshd[50549]: Invalid user usuario from 203.39.148.165 port 60990 Jun 28 10:49:33 tuxlinux sshd[50549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.39.148.165 Jun 28 10:49:33 tuxlinux sshd[50549]: Invalid user usuario from 203.39.148.165 port 60990 Jun 28 10:49:33 tuxlinux sshd[50549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.39.148.165 Jun 28 10:49:33 tuxlinux sshd[50549]: Invalid user usuario from 203.39.148.165 port 60990 Jun 28 10:49:33 tuxlinux sshd[50549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.39.148.165 Jun 28 10:49:35 tuxlinux sshd[50549]: Failed password for invalid user usuario from 203.39.148.165 port 60990 ssh2 ...	2019-06-28 18:46:39
151.20.100.11	attackspam	$f2bV_matches	2019-06-28 18:51:37
165.227.2.127	attackspambots	Jun 28 10:37:26 server sshd[27182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.2.127 ...	2019-06-28 18:34:38
194.61.61.242	attack	[portscan] Port scan	2019-06-28 19:00:37
179.127.75.18	attackspam	libpam_shield report: forced login attempt	2019-06-28 19:15:44
13.65.28.14	attack	$f2bV_matches	2019-06-28 18:37:12
197.46.14.73	attack	Jun 25 22:39:53 srv02 sshd[17197]: reveeclipse mapping checking getaddrinfo for host-197.46.14.73.tedata.net [197.46.14.73] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 25 22:39:53 srv02 sshd[17197]: Invalid user dai from 197.46.14.73 Jun 25 22:39:53 srv02 sshd[17197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.46.14.73 Jun 25 22:39:55 srv02 sshd[17197]: Failed password for invalid user dai from 197.46.14.73 port 23073 ssh2 Jun 25 22:41:39 srv02 sshd[17225]: reveeclipse mapping checking getaddrinfo for host-197.46.14.73.tedata.net [197.46.14.73] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 25 22:41:39 srv02 sshd[17225]: User mysql from 197.46.14.73 not allowed because not listed in AllowUsers Jun 25 22:41:39 srv02 sshd[17225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.46.14.73 user=mysql Jun 25 22:41:40 srv02 sshd[17225]: Failed password for invalid user mysql from 197.46.14.73 po........ -------------------------------	2019-06-28 18:50:22
121.204.143.153	attackspambots	Jun 28 01:32:47 xtremcommunity sshd\[6812\]: Invalid user test from 121.204.143.153 port 39893 Jun 28 01:32:47 xtremcommunity sshd\[6812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.143.153 Jun 28 01:32:49 xtremcommunity sshd\[6812\]: Failed password for invalid user test from 121.204.143.153 port 39893 ssh2 Jun 28 01:41:31 xtremcommunity sshd\[6951\]: Invalid user bsd0 from 121.204.143.153 port 14294 Jun 28 01:41:31 xtremcommunity sshd\[6951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.143.153 ...	2019-06-28 18:52:35
46.101.216.16	attackbotsspam	$f2bV_matches	2019-06-28 18:38:37
113.87.46.67	attackspam	Jun 28 07:07:37 xm3 sshd[11887]: Failed password for invalid user admin from 113.87.46.67 port 48623 ssh2 Jun 28 07:07:37 xm3 sshd[11887]: Received disconnect from 113.87.46.67: 11: Bye Bye [preauth] Jun 28 07:20:22 xm3 sshd[8772]: Failed password for invalid user jennyfer from 113.87.46.67 port 47030 ssh2 Jun 28 07:20:22 xm3 sshd[8772]: Received disconnect from 113.87.46.67: 11: Bye Bye [preauth] Jun 28 07:21:39 xm3 sshd[9554]: Failed password for invalid user oracle from 113.87.46.67 port 48014 ssh2 Jun 28 07:21:39 xm3 sshd[9554]: Received disconnect from 113.87.46.67: 11: Bye Bye [preauth] Jun 28 07:22:58 xm3 sshd[11998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.87.46.67 user=r.r Jun 28 07:23:00 xm3 sshd[11998]: Failed password for r.r from 113.87.46.67 port 49222 ssh2 Jun 28 07:23:00 xm3 sshd[11998]: Received disconnect from 113.87.46.67: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.htm	2019-06-28 19:03:34
198.245.61.114	attackspam	Jun 28 07:09:35 s1 wordpress$www.dance-corner.de$\[6529\]: Authentication attempt for unknown user fehst from 198.245.61.114 ...	2019-06-28 18:31:52
124.156.185.149	attack	$f2bV_matches	2019-06-28 18:52:05
54.240.11.40	attackbotsspam	fraudulent spam DHL Express Package No: 5228421773 Delivery Issue ... 54.240.11.40 was found in our database! This IP was reported 5 times. Confidence of Abuse is 0%: ? 0% ISP Amazon Web Services Inc. Usage Type Data Center/Web Hosting/Transit Hostname(s) a11-40.smtp-out.amazonses.com Domain Name amazon.com Country United States City Ashburn, Virginia Fri, 28 Jun 2019 01:46:59 +0000 Authentication-Results: spf=pass (sender IP is 54.240.11.40) smtp.mailfrom=amazonses.com; hotmail.co.uk; dkim=pass (signature was verified) header.d=testeurs-job-th.site;hotmail.co.uk; dmarc=bestguesspass action=none header.from=testeurs-job-th.site; Received-SPF: Pass (protection.outlook.com: domain of amazonses.com designates 54.240.11.40 as permitted sender) receiver=protection.outlook.com; client-ip=54.240.11.40; helo=a11-40.smtp-out.amazonses.com;	2019-06-28 19:15:13
186.216.154.74	attack	libpam_shield report: forced login attempt	2019-06-28 18:49:01

最近上报的IP列表

88.230.5.149	42.231.162.205	176.117.13.66	132.67.105.26
85.17.24.158	90.33.17.253	123.71.30.65	177.38.56.133
83.115.196.99	174.38.141.220	104.236.221.87	200.199.51.137
42.231.162.201	219.86.7.253	182.244.207.222	42.231.162.194
173.49.120.100	109.141.53.255	157.50.198.55	11.70.242.183