42.231.163.197

基本信息:

城市(city): Zhengzhou

省份(region): Henan

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): CHINA UNICOM China169 Backbone

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.231.163.223	attack	Mar 6 23:06:00 grey postfix/smtpd\[18312\]: NOQUEUE: reject: RCPT from unknown\[42.231.163.223\]: 554 5.7.1 Service unavailable\; Client host \[42.231.163.223\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.163.223\; from=\ to=\ proto=SMTP helo=\ ...	2020-03-07 06:40:18
42.231.163.224	attackbots	Email rejected due to spam filtering	2020-03-02 03:13:26
42.231.163.211	attackbots	spam	2020-02-29 17:44:39
42.231.163.88	attackspam	Feb 27 05:58:49 grey postfix/smtpd\[3219\]: NOQUEUE: reject: RCPT from unknown\[42.231.163.88\]: 554 5.7.1 Service unavailable\; Client host \[42.231.163.88\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[42.231.163.88\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-27 13:38:47
42.231.163.134	attackspambots	Fake domain expiration notices spf=pass. smtp.mailfrom=info@shaxiamight.top	2020-02-15 16:52:55
42.231.163.120	attackbotsspam	Email rejected due to spam filtering	2020-02-11 18:37:41

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.231.163.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59602
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.231.163.197.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041102 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 12 12:17:32 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

197.163.231.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
197.163.231.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
182.70.106.30	attack	Repeated attempts against wp-login	2020-04-05 20:25:28
122.51.253.156	attackbotsspam	Apr 5 11:50:17 hosting sshd[5728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.253.156 user=root Apr 5 11:50:19 hosting sshd[5728]: Failed password for root from 122.51.253.156 port 34308 ssh2 ...	2020-04-05 20:04:26
51.79.38.82	attackbotsspam	Apr 5 10:28:41 ns382633 sshd\[15621\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.38.82 user=root Apr 5 10:28:43 ns382633 sshd\[15621\]: Failed password for root from 51.79.38.82 port 37208 ssh2 Apr 5 10:33:33 ns382633 sshd\[16639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.38.82 user=root Apr 5 10:33:35 ns382633 sshd\[16639\]: Failed password for root from 51.79.38.82 port 45240 ssh2 Apr 5 10:36:44 ns382633 sshd\[17392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.38.82 user=root	2020-04-05 20:10:00
172.69.68.220	attackbots	$f2bV_matches	2020-04-05 20:13:04
54.37.151.239	attack	Apr 5 11:08:33 srv01 sshd[23289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 user=root Apr 5 11:08:35 srv01 sshd[23289]: Failed password for root from 54.37.151.239 port 48985 ssh2 Apr 5 11:12:35 srv01 sshd[23625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 user=root Apr 5 11:12:37 srv01 sshd[23625]: Failed password for root from 54.37.151.239 port 54237 ssh2 Apr 5 11:16:32 srv01 sshd[23821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 user=root Apr 5 11:16:34 srv01 sshd[23821]: Failed password for root from 54.37.151.239 port 59470 ssh2 ...	2020-04-05 19:42:46
193.176.181.214	attack	$f2bV_matches	2020-04-05 20:14:06
162.248.92.145	attackbots	Brute force attack against VPN service	2020-04-05 20:01:35
185.133.193.88	attack	Unauthorized connection attempt detected from IP address 185.133.193.88 to port 3389	2020-04-05 19:57:18
162.243.132.179	attack	scans once in preceeding hours on the ports (in chronological order) 49616 resulting in total of 56 scans from 162.243.0.0/16 block.	2020-04-05 20:27:32
192.144.230.158	attack	Lines containing failures of 192.144.230.158 (max 1000) Apr 3 20:23:20 localhost sshd[31169]: User r.r from 192.144.230.158 not allowed because listed in DenyUsers Apr 3 20:23:20 localhost sshd[31169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.230.158 user=r.r Apr 3 20:23:22 localhost sshd[31169]: Failed password for invalid user r.r from 192.144.230.158 port 42830 ssh2 Apr 3 20:23:25 localhost sshd[31169]: Received disconnect from 192.144.230.158 port 42830:11: Bye Bye [preauth] Apr 3 20:23:25 localhost sshd[31169]: Disconnected from invalid user r.r 192.144.230.158 port 42830 [preauth] Apr 3 20:38:46 localhost sshd[2113]: User r.r from 192.144.230.158 not allowed because listed in DenyUsers Apr 3 20:38:46 localhost sshd[2113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.230.158 user=r.r Apr 3 20:38:47 localhost sshd[2113]: Failed password for invalid user........ ------------------------------	2020-04-05 20:15:34
80.227.12.38	attack	Apr 5 13:59:03 icinga sshd[4957]: Failed password for root from 80.227.12.38 port 34742 ssh2 Apr 5 14:11:43 icinga sshd[24688]: Failed password for root from 80.227.12.38 port 59832 ssh2 ...	2020-04-05 20:26:58
163.172.50.34	attackbotsspam	SSH Brute Force	2020-04-05 19:56:52
47.22.82.8	attackbots	Apr 5 10:37:38 ns382633 sshd\[17485\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.22.82.8 user=root Apr 5 10:37:40 ns382633 sshd\[17485\]: Failed password for root from 47.22.82.8 port 47524 ssh2 Apr 5 10:42:41 ns382633 sshd\[18521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.22.82.8 user=root Apr 5 10:42:43 ns382633 sshd\[18521\]: Failed password for root from 47.22.82.8 port 54926 ssh2 Apr 5 10:48:26 ns382633 sshd\[19581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.22.82.8 user=root	2020-04-05 20:17:45
2.136.161.213	attackspam	SMB Server BruteForce Attack	2020-04-05 19:49:54
208.88.172.135	attackspam	Apr 5 13:09:33 ns382633 sshd\[15953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.88.172.135 user=root Apr 5 13:09:34 ns382633 sshd\[15953\]: Failed password for root from 208.88.172.135 port 44289 ssh2 Apr 5 13:15:20 ns382633 sshd\[17404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.88.172.135 user=root Apr 5 13:15:23 ns382633 sshd\[17404\]: Failed password for root from 208.88.172.135 port 61906 ssh2 Apr 5 13:18:23 ns382633 sshd\[17920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.88.172.135 user=root	2020-04-05 19:51:15

最近上报的IP列表

179.184.23.195	66.28.139.131	40.107.6.84	113.160.229.12
185.148.243.95	113.247.233.22	184.168.200.142	167.99.80.173
104.148.64.196	23.233.9.144	104.148.64.198	221.229.173.231
41.39.73.218	104.148.64.195	192.241.198.60	118.69.195.170
192.54.56.208	186.210.91.171	122.155.0.239	202.141.250.148