42.231.162.201

Basic Info

City: Zhengzhou

Region: Henan

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: CHINA UNICOM China169 Backbone

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.231.162.216	attack	Feb 25 08:25:45 grey postfix/smtpd\[13777\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.216\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.216\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.162.216\; from=\ to=\ proto=SMTP helo=\ ...	2020-02-25 17:00:37
42.231.162.217	attackspambots	Feb 22 17:46:06 exim[22632]: [1\57] 1j5Xuk-0005t2-Fn H=(gmail.com) [42.231.162.217] F= rejected after DATA: This message scored 15.2 spam points.	2020-02-23 04:06:56
42.231.162.228	attackspam	Brute force attempt	2020-02-20 23:21:06
42.231.162.219	attackspambots	Feb 17 19:27:26 exim[2643]: [1\39] 1j3l78-0000gd-Du H=(gmail.com) [42.231.162.219] F= rejected after DATA: This message scored 104.8 spam points.	2020-02-18 05:53:31
42.231.162.14	attackspambots	Feb 2 05:56:58 grey postfix/smtpd\[22281\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.14\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.14\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[42.231.162.14\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-02 14:23:22
42.231.162.224	attackspam	Jan 20 05:58:06 grey postfix/smtpd\[15217\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.224\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.224\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.162.224\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-20 14:15:55
42.231.162.217	attackspam	Jan 16 14:04:47 grey postfix/smtpd\[28896\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.217\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.217\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.162.217\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-16 21:44:40
42.231.162.228	attackspam	Jan 10 22:11:54 grey postfix/smtpd\[30284\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.228\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.228\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.162.228\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-11 05:12:30
42.231.162.216	attack	Spamassassin_42.231.162.216	2019-11-11 09:02:24
42.231.162.190	attack	f2b trigger Multiple SASL failures	2019-09-29 04:17:15
42.231.162.208	attack	"SMTPD" 6184 83083 "2019-09-24 x@x "SMTPD" 6184 83083 "2019-09-24 14:30:54.432" "42.231.162.208" "SENT: 550 Delivery is not allowed to this address." IP Address: 42.231.162.208 Email x@x No MX record resolves to this server for domain: schoenenreus.nl ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.231.162.208	2019-09-24 20:59:43
42.231.162.205	attackbots	SASL Brute Force	2019-09-23 04:24:23
42.231.162.203	attackbotsspam	MagicSpam Rule: block_rbl_lists (b.barracudacentral.org); Spammer IP: 42.231.162.203	2019-08-31 13:19:47
42.231.162.202	attackbotsspam	originated or passed SPAM,UCE	2019-08-05 08:12:04
42.231.162.191	attackspam	Brute force attempt	2019-07-30 08:52:07

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.231.162.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27722
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.231.162.201.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 24 21:04:20 CST 2019
;; MSG SIZE  rcvd: 118

Host info

201.162.231.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
201.162.231.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
132.255.29.228	attackspam	Jul 18 17:46:46 ncomp sshd[431]: Invalid user petru from 132.255.29.228 Jul 18 17:46:46 ncomp sshd[431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.255.29.228 Jul 18 17:46:46 ncomp sshd[431]: Invalid user petru from 132.255.29.228 Jul 18 17:46:48 ncomp sshd[431]: Failed password for invalid user petru from 132.255.29.228 port 41352 ssh2	2019-07-19 00:12:23
36.26.75.58	attackspambots	Jul 18 11:16:19 TORMINT sshd\[4162\]: Invalid user unknown from 36.26.75.58 Jul 18 11:16:19 TORMINT sshd\[4162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.75.58 Jul 18 11:16:21 TORMINT sshd\[4162\]: Failed password for invalid user unknown from 36.26.75.58 port 46516 ssh2 ...	2019-07-18 23:29:06
92.118.160.1	attackspam	6001/tcp 554/tcp 873/tcp... [2019-05-17/07-17]142pkt,71pt.(tcp),9pt.(udp)	2019-07-18 23:34:52
175.167.230.11	attackspam	Telnet Server BruteForce Attack	2019-07-18 23:48:38
36.78.15.164	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 09:04:34,955 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.78.15.164)	2019-07-19 00:04:16
176.121.190.254	attackbots	[portscan] Port scan	2019-07-18 23:40:02
91.98.157.40	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 23:49:12
67.213.75.130	attack	Jul 18 17:59:16 giegler sshd[22843]: Invalid user backuppc from 67.213.75.130 port 64222	2019-07-19 00:02:57
162.144.72.163	attackspambots	Jul 18 17:02:52 XXX sshd[51189]: Invalid user kayten from 162.144.72.163 port 38522	2019-07-19 00:16:16
183.83.88.245	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 09:04:32,922 INFO [amun_request_handler] PortScan Detected on Port: 445 (183.83.88.245)	2019-07-19 00:10:15
182.74.108.2	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 08:17:41,697 INFO [amun_request_handler] PortScan Detected on Port: 445 (182.74.108.2)	2019-07-19 00:07:12
180.249.118.206	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-07-18 23:59:56
1.55.185.128	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 08:19:21,641 INFO [amun_request_handler] PortScan Detected on Port: 445 (1.55.185.128)	2019-07-18 23:26:35
212.174.75.38	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 09:04:10,382 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.174.75.38)	2019-07-19 00:19:49
178.153.238.89	attackspam	Jul 18 06:54:15 localhost kernel: [14691448.379894] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=178.153.238.89 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=13607 PROTO=TCP SPT=41488 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 18 06:54:15 localhost kernel: [14691448.379920] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=178.153.238.89 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=13607 PROTO=TCP SPT=41488 DPT=445 SEQ=2680181988 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 18 06:54:15 localhost kernel: [14691448.388267] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=178.153.238.89 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=13607 PROTO=TCP SPT=41488 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 18 06:54:15 localhost kernel: [14691448.388275] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=178.153.238.89 DST=[mungedIP2] LEN=40 TOS=0x00	2019-07-18 23:39:27

Recently Reported IPs

173.49.120.100	109.141.53.255	157.50.198.55	11.70.242.183
220.217.195.34	85.113.160.217	183.46.77.62	193.2.103.231
79.138.37.5	90.126.81.228	187.255.134.70	188.252.137.81
105.202.85.78	204.140.150.180	148.222.27.12	129.213.49.56
198.87.211.28	36.72.17.97	35.155.54.255	81.7.166.154