42.51.201.160 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Henan Telcom Union Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Email rejected due to spam filtering	2020-02-18 18:54:38

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.51.201.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27481
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.51.201.160.			IN	A

;; AUTHORITY SECTION:
.			129	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021801 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 18:54:31 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

160.201.51.42.in-addr.arpa domain name pointer idc.ly.ha.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
160.201.51.42.in-addr.arpa	name = idc.ly.ha.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
34.74.204.67	attackspam	[Mon Apr 27 18:53:59.930879 2020] [:error] [pid 5829:tid 140575014553344] [client 34.74.204.67:56799] [client 34.74.204.67] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "XqbH1zsqLtpMvmFBdz70zQAAAhw"] ...	2020-04-28 00:16:13
222.186.175.167	attackbots	Apr 27 18:35:56 server sshd[48102]: Failed none for root from 222.186.175.167 port 29558 ssh2 Apr 27 18:35:58 server sshd[48102]: Failed password for root from 222.186.175.167 port 29558 ssh2 Apr 27 18:36:02 server sshd[48102]: Failed password for root from 222.186.175.167 port 29558 ssh2	2020-04-28 00:36:51
159.65.152.201	attackbotsspam	Apr 27 16:11:44 hosting sshd[15956]: Invalid user ts3serv from 159.65.152.201 port 39362 ...	2020-04-28 00:20:43
93.115.1.195	attack	Unauthorized connection attempt detected from IP address 93.115.1.195 to port 3855	2020-04-28 00:53:25
167.71.59.125	attackbots	" "	2020-04-28 00:13:26
42.159.81.224	attack	Apr 27 15:08:47 mail sshd[27413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.81.224 Apr 27 15:08:50 mail sshd[27413]: Failed password for invalid user matilde from 42.159.81.224 port 31256 ssh2 Apr 27 15:12:25 mail sshd[28238]: Failed password for root from 42.159.81.224 port 23331 ssh2	2020-04-28 00:17:22
150.136.248.154	attackspam	port scan and connect, tcp 80 (http)	2020-04-28 00:30:15
196.247.31.80	attackbots	16,49-05/04 [bc02/m55] PostRequest-Spammer scoring: rome	2020-04-28 00:45:30
18.197.41.7	attack	/?url=http://weblibrary.win Referer: http://weblibrary.win Description: Remote file inclusion attempted.	2020-04-28 00:17:54
106.75.7.70	attack	Apr 27 17:19:00 rotator sshd\[25784\]: Failed password for root from 106.75.7.70 port 47096 ssh2Apr 27 17:21:13 rotator sshd\[26550\]: Invalid user ssp from 106.75.7.70Apr 27 17:21:15 rotator sshd\[26550\]: Failed password for invalid user ssp from 106.75.7.70 port 38840 ssh2Apr 27 17:23:33 rotator sshd\[26577\]: Invalid user dian from 106.75.7.70Apr 27 17:23:35 rotator sshd\[26577\]: Failed password for invalid user dian from 106.75.7.70 port 58814 ssh2Apr 27 17:25:40 rotator sshd\[27372\]: Failed password for root from 106.75.7.70 port 50556 ssh2 ...	2020-04-28 00:21:15
64.225.67.233	attack	$f2bV_matches	2020-04-28 00:38:50
47.241.16.219	attack	Unauthorized IMAP connection attempt	2020-04-28 00:42:30
177.104.124.235	attackbots	Apr 27 20:53:58 gw1 sshd[21846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.104.124.235 Apr 27 20:54:01 gw1 sshd[21846]: Failed password for invalid user nd from 177.104.124.235 port 8287 ssh2 ...	2020-04-28 00:37:14
92.97.154.166	attackbots	Apr 27 14:03:19 server sshd[34207]: Failed password for invalid user tomcat from 92.97.154.166 port 53226 ssh2 Apr 27 14:08:46 server sshd[38059]: Failed password for invalid user gentry from 92.97.154.166 port 36738 ssh2 Apr 27 14:14:08 server sshd[42624]: Failed password for invalid user ubuntu from 92.97.154.166 port 48470 ssh2	2020-04-28 00:57:43
222.186.180.142	attack	Apr 27 18:26:19 mail sshd[5899]: Failed password for root from 222.186.180.142 port 23476 ssh2 Apr 27 18:26:29 mail sshd[5919]: Failed password for root from 222.186.180.142 port 16840 ssh2	2020-04-28 00:34:04

最近上报的IP列表

49.213.180.61	181.198.211.58	249.147.28.246	4.16.87.46
4.145.120.186	92.93.142.12	186.108.31.73	49.213.179.211
213.154.18.135	113.25.160.22	49.213.178.183	90.227.127.202
124.47.180.31	49.213.178.145	49.233.182.246	117.3.46.25
45.143.223.35	49.213.178.103	47.75.105.83	185.224.171.2