42.120.160.171

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.120.160.121	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54361032bca7eef6 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 05:49:02
42.120.160.50	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5433760a38afe4c4 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:37:52
42.120.160.112	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5415ee769a19eb51 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:21:48
42.120.160.51	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541558d4fe79e7c5 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:09:18
42.120.160.123	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5416f9cdfa82e7a4 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:44:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.120.160.171
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18989
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.120.160.171.			IN	A

;; AUTHORITY SECTION:
.			237	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062100 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 21 17:34:59 CST 2022
;; MSG SIZE  rcvd: 107

Host info

171.160.120.42.in-addr.arpa domain name pointer shenmaspider-42-120-160-171.crawl.sm.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
171.160.120.42.in-addr.arpa	name = shenmaspider-42-120-160-171.crawl.sm.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.60.136.198	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/82.60.136.198/ IT - 1H : (124) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN3269 IP : 82.60.136.198 CIDR : 82.60.0.0/16 PREFIX COUNT : 550 UNIQUE IP COUNT : 19507712 ATTACKS DETECTED ASN3269 : 1H - 1 3H - 8 6H - 18 12H - 36 24H - 72 DateTime : 2019-10-30 21:23:30 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-31 08:20:10
218.92.0.191	attackbots	Oct 31 01:11:53 legacy sshd[24141]: Failed password for root from 218.92.0.191 port 38936 ssh2 Oct 31 01:13:49 legacy sshd[24217]: Failed password for root from 218.92.0.191 port 61166 ssh2 ...	2019-10-31 08:15:58
62.234.105.16	attackbots	Automatic report - Banned IP Access	2019-10-31 08:30:33
201.47.158.130	attack	Oct 31 04:57:26 ns381471 sshd[12018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.47.158.130 Oct 31 04:57:29 ns381471 sshd[12018]: Failed password for invalid user test from 201.47.158.130 port 42764 ssh2	2019-10-31 12:08:47
128.199.58.60	attackbots	xmlrpc attack	2019-10-31 08:34:14
14.116.253.142	attackspam	Oct 31 01:26:23 gw1 sshd[32000]: Failed password for root from 14.116.253.142 port 45157 ssh2 Oct 31 01:30:43 gw1 sshd[32092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.253.142 ...	2019-10-31 08:23:14
185.156.73.52	attack	10/31/2019-00:01:13.984559 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-31 12:03:35
92.63.194.27	attackbots	Automatic report - Port Scan	2019-10-31 08:24:44
52.221.183.187	attack	2019-10-31T04:56:37.285221 sshd[12670]: Invalid user ph from 52.221.183.187 port 60124 2019-10-31T04:56:37.300469 sshd[12670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.183.187 2019-10-31T04:56:37.285221 sshd[12670]: Invalid user ph from 52.221.183.187 port 60124 2019-10-31T04:56:39.600633 sshd[12670]: Failed password for invalid user ph from 52.221.183.187 port 60124 ssh2 2019-10-31T05:13:01.682932 sshd[12857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.183.187 user=root 2019-10-31T05:13:04.070170 sshd[12857]: Failed password for root from 52.221.183.187 port 40964 ssh2 ...	2019-10-31 12:15:42
134.209.87.59	attackspambots	DATE:2019-10-30 21:23:15, IP:134.209.87.59, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-10-31 08:28:10
94.23.215.90	attack	Oct 31 04:53:52 legacy sshd[32704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 Oct 31 04:53:54 legacy sshd[32704]: Failed password for invalid user duckie from 94.23.215.90 port 52290 ssh2 Oct 31 04:57:29 legacy sshd[340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 ...	2019-10-31 12:10:02
200.69.236.112	attackspam	Oct 31 02:01:52 sauna sshd[119988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.69.236.112 Oct 31 02:01:55 sauna sshd[119988]: Failed password for invalid user iloveyou from 200.69.236.112 port 59041 ssh2 ...	2019-10-31 08:26:28
222.186.175.140	attack	Oct 31 05:12:41 gw1 sshd[4910]: Failed password for root from 222.186.175.140 port 7362 ssh2 Oct 31 05:12:57 gw1 sshd[4910]: error: maximum authentication attempts exceeded for root from 222.186.175.140 port 7362 ssh2 [preauth] ...	2019-10-31 08:19:19
130.61.72.90	attackspambots	Oct 30 21:40:21 game-panel sshd[19142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.72.90 Oct 30 21:40:23 game-panel sshd[19142]: Failed password for invalid user f1 from 130.61.72.90 port 41078 ssh2 Oct 30 21:44:19 game-panel sshd[19266]: Failed password for root from 130.61.72.90 port 51544 ssh2	2019-10-31 08:30:07
85.93.20.92	attackbotsspam	191030 19:51:32 \[Warning\] Access denied for user 'root'@'85.93.20.92' \(using password: YES\) 191030 21:49:18 \[Warning\] Access denied for user 'root'@'85.93.20.92' \(using password: YES\) 191030 23:47:28 \[Warning\] Access denied for user 'root'@'85.93.20.92' \(using password: YES\) ...	2019-10-31 12:04:39

Recently Reported IPs

42.120.160.185	137.226.81.17	137.226.146.188	180.76.111.88
169.229.42.142	169.229.22.51	137.226.214.51	91.224.92.81
86.45.7.231	216.181.226.179	39.76.127.181	141.212.122.102
106.11.158.41	137.226.250.153	137.226.52.85	137.226.54.184
58.205.90.240	137.226.14.136	144.55.149.221	137.226.52.229