42.231.163.203

基本信息:

城市(city): Zhengzhou

省份(region): Henan

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): CHINA UNICOM China169 Backbone

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.231.163.223	attack	Mar 6 23:06:00 grey postfix/smtpd\[18312\]: NOQUEUE: reject: RCPT from unknown\[42.231.163.223\]: 554 5.7.1 Service unavailable\; Client host \[42.231.163.223\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.163.223\; from=\ to=\ proto=SMTP helo=\ ...	2020-03-07 06:40:18
42.231.163.224	attackbots	Email rejected due to spam filtering	2020-03-02 03:13:26
42.231.163.211	attackbots	spam	2020-02-29 17:44:39
42.231.163.88	attackspam	Feb 27 05:58:49 grey postfix/smtpd\[3219\]: NOQUEUE: reject: RCPT from unknown\[42.231.163.88\]: 554 5.7.1 Service unavailable\; Client host \[42.231.163.88\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[42.231.163.88\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-27 13:38:47
42.231.163.134	attackspambots	Fake domain expiration notices spf=pass. smtp.mailfrom=info@shaxiamight.top	2020-02-15 16:52:55
42.231.163.120	attackbotsspam	Email rejected due to spam filtering	2020-02-11 18:37:41

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.231.163.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28712
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.231.163.203.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri May 10 20:14:47 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

203.163.231.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
203.163.231.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.13.52.234	attackbotsspam	[ssh] SSH attack	2020-01-10 17:47:22
77.45.223.99	attackspam	77.45.223.99 - - [10/Jan/2020:05:51:59 +0100] "GET /security/wp-login.php HTTP/1.1" 404 16601 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/537.16 (KHTML, like Gecko) Version/8.0 Safari/537.16" 77.45.223.99 - - [10/Jan/2020:05:52:00 +0100] "GET /blog/wp-login.php HTTP/1.1" 404 16577 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/537.16 (KHTML, like Gecko) Version/8.0 Safari/537.16" 77.45.223.99 - - [10/Jan/2020:05:52:01 +0100] "GET /blogs/wp-login.php HTTP/1.1" 404 16625 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/537.16 (KHTML, like Gecko) Version/8.0 Safari/537.16" 77.45.223.99 - - [10/Jan/2020:05:52:01 +0100] "GET /web/wp-login.php HTTP/1.1" 404 16599 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/537.16 (KHTML, like Gecko) Version ...	2020-01-10 17:11:55
185.209.0.32	attack	Jan 10 09:41:15 debian-2gb-nbg1-2 kernel: \[904986.256652\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.209.0.32 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=16083 PROTO=TCP SPT=45196 DPT=34500 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-10 17:15:50
49.88.112.113	attack	$f2bV_matches	2020-01-10 17:21:19
62.234.31.201	attackspam	Jan 10 06:43:35 woltan sshd[20377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.31.201	2020-01-10 17:46:10
190.111.239.144	attackspambots	Jan 10 05:51:11 debian-2gb-nbg1-2 kernel: \[891182.041351\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=190.111.239.144 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=239 ID=6098 PROTO=TCP SPT=44551 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-10 17:40:19
212.64.33.206	attackspambots	$f2bV_matches	2020-01-10 17:30:32
132.232.52.86	attackbots	Brute-force attempt banned	2020-01-10 17:33:03
185.58.205.244	attackbotsspam	Jan 7 06:20:02 venus sshd[6958]: Invalid user eem from 185.58.205.244 port 57580 Jan 7 06:20:05 venus sshd[6958]: Failed password for invalid user eem from 185.58.205.244 port 57580 ssh2 Jan 7 06:29:28 venus sshd[8124]: Invalid user hos from 185.58.205.244 port 53054 Jan 7 06:29:30 venus sshd[8124]: Failed password for invalid user hos from 185.58.205.244 port 53054 ssh2 Jan 7 06:32:57 venus sshd[8508]: Invalid user apache2 from 185.58.205.244 port 44594 Jan 7 06:32:59 venus sshd[8508]: Failed password for invalid user apache2 from 185.58.205.244 port 44594 ssh2 Jan 7 06:36:05 venus sshd[8891]: Invalid user tester from 185.58.205.244 port 36140 Jan 7 06:36:07 venus sshd[8891]: Failed password for invalid user tester from 185.58.205.244 port 36140 ssh2 Jan 7 06:39:03 venus sshd[9273]: Invalid user from 185.58.205.244 port 55920 Jan 7 06:39:06 venus sshd[9273]: Failed password for invalid user from 185.58.205.244 port 55920 ssh2 Jan 7 06:42:09 venus sshd[9712]........ ------------------------------	2020-01-10 17:19:12
77.244.16.241	attackspam	postfix	2020-01-10 17:34:40
14.225.3.47	attackbotsspam	Jan 10 08:27:32 gitlab-tf sshd\[18422\]: Invalid user admin from 14.225.3.47Jan 10 08:29:39 gitlab-tf sshd\[18830\]: Invalid user scaner from 14.225.3.47 ...	2020-01-10 17:42:30
167.99.65.138	attackbotsspam	Jan 9 20:54:40 sachi sshd\[29322\]: Invalid user admin from 167.99.65.138 Jan 9 20:54:40 sachi sshd\[29322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.65.138 Jan 9 20:54:42 sachi sshd\[29322\]: Failed password for invalid user admin from 167.99.65.138 port 48780 ssh2 Jan 9 20:58:07 sachi sshd\[29641\]: Invalid user geoffrey from 167.99.65.138 Jan 9 20:58:07 sachi sshd\[29641\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.65.138	2020-01-10 17:40:49
122.225.60.250	attackspam	Multiple failed FTP logins	2020-01-10 17:24:05
154.0.168.66	attack	WordPress login Brute force / Web App Attack on client site.	2020-01-10 17:32:34
221.132.89.150	attack	firewall-block, port(s): 445/tcp	2020-01-10 17:13:09

最近上报的IP列表

119.28.9.164	214.231.24.251	54.161.163.204	77.88.5.5
198.169.29.237	5.141.167.126	118.172.114.63	185.7.20.46
219.156.146.184	144.248.46.37	162.243.101.23	211.206.135.89
114.162.125.192	111.58.71.15	34.71.169.194	47.77.16.8
90.122.173.207	37.10.112.66	203.40.45.83	115.96.125.212