42.231.163.208

Basic Info

City: Zhengzhou

Region: Henan

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: CHINA UNICOM China169 Backbone

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.231.163.223	attack	Mar 6 23:06:00 grey postfix/smtpd\[18312\]: NOQUEUE: reject: RCPT from unknown\[42.231.163.223\]: 554 5.7.1 Service unavailable\; Client host \[42.231.163.223\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?42.231.163.223\; from=\ to=\ proto=SMTP helo=\ ...	2020-03-07 06:40:18
42.231.163.224	attackbots	Email rejected due to spam filtering	2020-03-02 03:13:26
42.231.163.211	attackbots	spam	2020-02-29 17:44:39
42.231.163.88	attackspam	Feb 27 05:58:49 grey postfix/smtpd\[3219\]: NOQUEUE: reject: RCPT from unknown\[42.231.163.88\]: 554 5.7.1 Service unavailable\; Client host \[42.231.163.88\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[42.231.163.88\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-27 13:38:47
42.231.163.134	attackspambots	Fake domain expiration notices spf=pass. smtp.mailfrom=info@shaxiamight.top	2020-02-15 16:52:55
42.231.163.120	attackbotsspam	Email rejected due to spam filtering	2020-02-11 18:37:41

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.231.163.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25129
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.231.163.208.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 17 14:19:29 +08 2019
;; MSG SIZE  rcvd: 118

Host info

208.163.231.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
208.163.231.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.150.38.251	attackspam	Sun, 21 Jul 2019 07:37:40 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 18:22:36
92.119.160.143	attackspambots	21.07.2019 09:54:35 Connection to port 11324 blocked by firewall	2019-07-21 18:08:21
58.65.222.22	attack	Sun, 21 Jul 2019 07:37:32 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 18:44:36
49.150.109.141	attackspam	Sun, 21 Jul 2019 07:37:49 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 17:54:16
115.79.197.6	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 05:22:29,432 INFO [shellcode_manager] (115.79.197.6) no match, writing hexdump (ac4a38fb373a6720d8a361cd2a989ae8 :2085855) - MS17010 (EternalBlue)	2019-07-21 17:48:15
5.129.179.45	attackspam	Sun, 21 Jul 2019 07:37:43 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 18:13:33
183.182.114.191	attackbotsspam	Sun, 21 Jul 2019 07:37:35 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 18:36:53
41.40.28.72	attackspambots	Sun, 21 Jul 2019 07:37:34 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 18:39:51
171.101.98.137	attack	Sun, 21 Jul 2019 07:37:44 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 18:10:13
45.117.28.232	attackbots	Sun, 21 Jul 2019 07:37:43 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 18:11:55
67.207.91.133	attack	Jul 21 11:19:34 h2177944 sshd\[10224\]: Invalid user backups from 67.207.91.133 port 50514 Jul 21 11:19:34 h2177944 sshd\[10224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.207.91.133 Jul 21 11:19:36 h2177944 sshd\[10224\]: Failed password for invalid user backups from 67.207.91.133 port 50514 ssh2 Jul 21 11:25:41 h2177944 sshd\[10352\]: Invalid user john from 67.207.91.133 port 47634 ...	2019-07-21 17:34:37
173.82.70.109	attackspambots	Jul 19 09:14:26 localhost kernel: [14786260.132304] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=173.82.70.109 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=243 ID=19468 PROTO=TCP SPT=42629 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 19 09:14:26 localhost kernel: [14786260.132331] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=173.82.70.109 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=243 ID=19468 PROTO=TCP SPT=42629 DPT=445 SEQ=556674511 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 21 03:38:26 localhost kernel: [14938899.287416] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=173.82.70.109 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=243 ID=31535 PROTO=TCP SPT=41916 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 21 03:38:26 localhost kernel: [14938899.287423] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=173.82.70.109 DST=[mungedIP2] LEN=40 TOS=0x08 PREC	2019-07-21 17:29:30
5.77.254.100	attackspam	Sun, 21 Jul 2019 07:37:39 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 18:25:50
117.6.129.8	attackbotsspam	Sun, 21 Jul 2019 07:37:31 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 18:46:05
68.196.202.62	attackspam	NAME : OOL-CPE-ISLPNY-68-199-88-0-21 CIDR : 68.199.88.0/21 SYN Flood DDoS Attack USA - New York - block certain countries :) IP: 68.196.202.62 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-07-21 18:35:11

Recently Reported IPs

14.188.70.9	176.51.120.47	5.196.1.172	113.164.244.38
184.22.158.62	110.138.137.1	183.89.14.72	125.162.74.175
202.191.120.106	117.239.242.106	39.64.114.254	118.69.32.121
201.247.246.4	125.24.152.55	187.74.224.94	123.24.82.91
113.163.94.203	222.71.75.54	27.71.253.80	34.194.34.83