42.120.160.231

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.120.160.121	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54361032bca7eef6 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 05:49:02
42.120.160.50	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5433760a38afe4c4 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:37:52
42.120.160.112	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5415ee769a19eb51 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:21:48
42.120.160.51	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541558d4fe79e7c5 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:09:18
42.120.160.123	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5416f9cdfa82e7a4 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:44:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.120.160.231
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55475
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.120.160.231.			IN	A

;; AUTHORITY SECTION:
.			367	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063000 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 30 15:49:09 CST 2022
;; MSG SIZE  rcvd: 107

Host info

231.160.120.42.in-addr.arpa domain name pointer shenmaspider-42-120-160-231.crawl.sm.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
231.160.120.42.in-addr.arpa	name = shenmaspider-42-120-160-231.crawl.sm.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
60.162.165.189	attackspambots	Dec 3 23:57:26 esmtp postfix/smtpd[13112]: lost connection after AUTH from unknown[60.162.165.189] Dec 3 23:57:27 esmtp postfix/smtpd[13112]: lost connection after AUTH from unknown[60.162.165.189] Dec 3 23:57:29 esmtp postfix/smtpd[13112]: lost connection after AUTH from unknown[60.162.165.189] Dec 3 23:57:32 esmtp postfix/smtpd[13112]: lost connection after AUTH from unknown[60.162.165.189] Dec 3 23:57:33 esmtp postfix/smtpd[13112]: lost connection after AUTH from unknown[60.162.165.189] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=60.162.165.189	2019-12-04 13:29:42
75.142.74.23	attackbots	2019-12-04T05:35:16.663236abusebot-8.cloudsearch.cf sshd\[24744\]: Invalid user wong from 75.142.74.23 port 57102	2019-12-04 13:55:38
5.83.160.121	attackspambots	Dec 4 06:12:28 OPSO sshd\[21878\]: Invalid user mongodb2 from 5.83.160.121 port 57392 Dec 4 06:12:28 OPSO sshd\[21878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.83.160.121 Dec 4 06:12:31 OPSO sshd\[21878\]: Failed password for invalid user mongodb2 from 5.83.160.121 port 57392 ssh2 Dec 4 06:20:09 OPSO sshd\[24155\]: Invalid user borjon from 5.83.160.121 port 39068 Dec 4 06:20:09 OPSO sshd\[24155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.83.160.121	2019-12-04 13:32:49
140.143.136.89	attack	Dec 4 00:55:22 plusreed sshd[20345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.136.89 user=root Dec 4 00:55:25 plusreed sshd[20345]: Failed password for root from 140.143.136.89 port 58204 ssh2 ...	2019-12-04 14:01:57
24.54.138.169	attackbotsspam	firewall-block, port(s): 81/tcp	2019-12-04 13:57:30
89.248.168.51	attackbots	12/03/2019-23:57:00.324212 89.248.168.51 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-04 13:59:01
139.155.45.196	attackspam	Dec 3 19:11:38 tdfoods sshd\[11252\]: Invalid user host from 139.155.45.196 Dec 3 19:11:38 tdfoods sshd\[11252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.45.196 Dec 3 19:11:40 tdfoods sshd\[11252\]: Failed password for invalid user host from 139.155.45.196 port 52074 ssh2 Dec 3 19:18:46 tdfoods sshd\[11894\]: Invalid user yori from 139.155.45.196 Dec 3 19:18:46 tdfoods sshd\[11894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.45.196	2019-12-04 13:43:21
49.233.135.204	attackbotsspam	Dec 4 05:56:24 venus sshd\[31513\]: Invalid user ni853967 from 49.233.135.204 port 41522 Dec 4 05:56:24 venus sshd\[31513\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.135.204 Dec 4 05:56:26 venus sshd\[31513\]: Failed password for invalid user ni853967 from 49.233.135.204 port 41522 ssh2 ...	2019-12-04 14:01:30
210.16.100.105	attackbotsspam	Unauthorised access (Dec 4) SRC=210.16.100.105 LEN=40 TTL=239 ID=64901 TCP DPT=445 WINDOW=1024 SYN Unauthorised access (Dec 2) SRC=210.16.100.105 LEN=40 TTL=239 ID=741 TCP DPT=1433 WINDOW=1024 SYN	2019-12-04 13:48:18
147.135.208.234	attackspam	2019-12-04T05:32:40.741766abusebot-5.cloudsearch.cf sshd\[22869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=234.ip-147-135-208.eu user=root	2019-12-04 13:48:46
217.31.189.56	attackspam	port scan and connect, tcp 23 (telnet)	2019-12-04 13:55:53
92.118.38.38	attackbots	IP: 92.118.38.38 ASN: AS50360 Tamatiya EOOD Port: Message Submission 587 Found in one or more Blacklists Date: 4/12/2019 5:32:25 AM UTC	2019-12-04 13:36:20
114.220.18.18	attackbots	SASL broute force	2019-12-04 13:52:17
51.91.250.49	attack	Dec 4 00:43:05 TORMINT sshd\[1653\]: Invalid user test from 51.91.250.49 Dec 4 00:43:05 TORMINT sshd\[1653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.250.49 Dec 4 00:43:07 TORMINT sshd\[1653\]: Failed password for invalid user test from 51.91.250.49 port 35650 ssh2 ...	2019-12-04 13:59:50
112.30.133.241	attack	Dec 4 00:23:40 plusreed sshd[12328]: Invalid user tryit from 112.30.133.241 ...	2019-12-04 13:41:09

Recently Reported IPs

137.226.176.176	137.226.109.245	137.226.137.72	186.179.135.24
121.230.60.45	80.82.66.62	137.226.154.40	123.123.136.105
137.226.170.112	137.226.189.189	137.226.189.215	137.226.191.167
80.82.64.173	137.226.200.74	137.226.39.109	137.226.146.219
137.226.170.41	137.226.234.172	137.226.191.180	137.226.169.135