10.42.25.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: IANA Special-Purpose Address

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 10.42.25.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51268
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;10.42.25.214.			IN	A

;; AUTHORITY SECTION:
.			423	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023111502 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 16 12:53:37 CST 2023
;; MSG SIZE  rcvd: 105

Host info

Host 214.25.42.10.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.25.42.10.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.114.14.145	attackbotsspam	10 attempts against mh-misc-ban on soil	2020-03-13 16:52:20
106.13.236.137	attack	Mar 13 08:26:45 sigma sshd\[12303\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.236.137 user=rootMar 13 08:33:55 sigma sshd\[12321\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.236.137 user=root ...	2020-03-13 17:05:08
112.164.3.186	attack	Port probing on unauthorized port 82	2020-03-13 16:41:53
89.248.174.213	attack	Mar 13 09:54:37 debian-2gb-nbg1-2 kernel: \[6348811.711911\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.174.213 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=849 PROTO=TCP SPT=44661 DPT=44994 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-13 16:54:59
222.186.15.166	attack	DATE:2020-03-13 09:46:45, IP:222.186.15.166, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-03-13 17:08:46
211.137.225.83	attackspam	Honeypot hit.	2020-03-13 17:19:10
182.70.142.244	attackbotsspam	Mar 13 07:18:59 host sshd\[25420\]: Invalid user PlcmSpIp from 182.70.142.244 port 4343	2020-03-13 16:42:30
14.173.249.73	attackbots	scan z	2020-03-13 17:06:45
195.231.3.82	attackbots	Mar 13 09:14:38 mail.srvfarm.net postfix/smtpd[2361798]: warning: unknown[195.231.3.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 09:14:38 mail.srvfarm.net postfix/smtpd[2361798]: lost connection after AUTH from unknown[195.231.3.82] Mar 13 09:21:04 mail.srvfarm.net postfix/smtpd[2376084]: warning: unknown[195.231.3.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 09:21:04 mail.srvfarm.net postfix/smtpd[2376084]: lost connection after AUTH from unknown[195.231.3.82] Mar 13 09:22:20 mail.srvfarm.net postfix/smtpd[2376091]: warning: unknown[195.231.3.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-03-13 16:34:20
51.91.124.16	attackbots	2020-03-13T01:46:17.787844mail.thespaminator.com sshd[11791]: Failed password for root from 51.91.124.16 port 46876 ssh2 2020-03-13T01:50:23.180804mail.thespaminator.com sshd[12149]: Invalid user sunqiu from 51.91.124.16 port 35756 ...	2020-03-13 17:18:03
63.82.48.99	attackbotsspam	Mar 13 04:33:31 mail.srvfarm.net postfix/smtpd[2258471]: NOQUEUE: reject: RCPT from unknown[63.82.48.99]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 04:36:19 mail.srvfarm.net postfix/smtpd[2269485]: NOQUEUE: reject: RCPT from unknown[63.82.48.99]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 04:36:42 mail.srvfarm.net postfix/smtpd[2272686]: NOQUEUE: reject: RCPT from unknown[63.82.48.99]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 04:36:57 mail.srvfarm.net postfix/smtpd[2270461]: NOQUEUE: reject: RCPT from unknown[63.82.48.99]: 450 4.1.8 : Sende	2020-03-13 16:36:17
125.237.148.29	attackspam	Trolling for resource vulnerabilities	2020-03-13 16:41:15
78.29.9.25	attack	[Fri Mar 13 10:51:23.181766 2020] [:error] [pid 19104:tid 140633108891392] [client 78.29.9.25:47956] [client 78.29.9.25] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XmsDOznvAYRVVxFGAY6ByQAAAOA"] ...	2020-03-13 16:55:25
182.160.33.60	attackbotsspam	Mar 13 04:51:29 debian-2gb-nbg1-2 kernel: \[6330624.415079\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=182.160.33.60 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=62633 DF PROTO=TCP SPT=23594 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0	2020-03-13 16:54:15
177.139.177.94	attackbotsspam	Mar 13 05:51:13 ws12vmsma01 sshd[29205]: Invalid user openvpn_as from 177.139.177.94 Mar 13 05:51:15 ws12vmsma01 sshd[29205]: Failed password for invalid user openvpn_as from 177.139.177.94 port 48632 ssh2 Mar 13 05:58:31 ws12vmsma01 sshd[30210]: Invalid user ubuntu from 177.139.177.94 ...	2020-03-13 17:20:26

Recently Reported IPs

10.4.22.168	10.38.228.120	10.38.166.101	10.4.12.95
10.38.255.141	10.37.40.51	10.4.235.187	10.40.200.128
10.38.105.238	10.37.68.81	10.4.27.70	10.38.109.252
10.41.59.91	10.42.93.246	10.38.193.106	10.4.153.252
10.38.153.233	10.37.74.156	10.42.174.68	10.37.35.28