125.136.230.42

Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Triggered: repeated knocking on closed ports.	2020-06-26 20:18:49

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.136.230.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18730
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.136.230.42.			IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062600 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 26 20:18:45 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 42.230.136.125.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.230.136.125.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.110.63.57	attackbots	Unauthorized connection attempt detected from IP address 77.110.63.57 to port 23	2020-01-12 08:55:12
222.186.180.6	attackspambots	Jan 12 01:51:20 eventyay sshd[5823]: Failed password for root from 222.186.180.6 port 53848 ssh2 Jan 12 01:51:33 eventyay sshd[5823]: error: maximum authentication attempts exceeded for root from 222.186.180.6 port 53848 ssh2 [preauth] Jan 12 01:51:38 eventyay sshd[5826]: Failed password for root from 222.186.180.6 port 18064 ssh2 ...	2020-01-12 08:54:23
222.186.15.91	attack	Jan 12 01:23:05 dcd-gentoo sshd[32405]: User root from 222.186.15.91 not allowed because none of user's groups are listed in AllowGroups Jan 12 01:23:07 dcd-gentoo sshd[32405]: error: PAM: Authentication failure for illegal user root from 222.186.15.91 Jan 12 01:23:05 dcd-gentoo sshd[32405]: User root from 222.186.15.91 not allowed because none of user's groups are listed in AllowGroups Jan 12 01:23:07 dcd-gentoo sshd[32405]: error: PAM: Authentication failure for illegal user root from 222.186.15.91 Jan 12 01:23:05 dcd-gentoo sshd[32405]: User root from 222.186.15.91 not allowed because none of user's groups are listed in AllowGroups Jan 12 01:23:07 dcd-gentoo sshd[32405]: error: PAM: Authentication failure for illegal user root from 222.186.15.91 Jan 12 01:23:07 dcd-gentoo sshd[32405]: Failed keyboard-interactive/pam for invalid user root from 222.186.15.91 port 38285 ssh2 ...	2020-01-12 08:31:04
222.186.175.150	attackbots	Jan 12 01:53:51 vps647732 sshd[5999]: Failed password for root from 222.186.175.150 port 20980 ssh2 Jan 12 01:54:05 vps647732 sshd[5999]: error: maximum authentication attempts exceeded for root from 222.186.175.150 port 20980 ssh2 [preauth] ...	2020-01-12 09:02:36
92.118.38.40	attack	Jan 12 01:06:15 vmanager6029 postfix/smtpd\[1271\]: warning: unknown\[92.118.38.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 12 01:06:51 vmanager6029 postfix/smtpd\[1271\]: warning: unknown\[92.118.38.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-01-12 08:27:57
80.211.116.102	attackbotsspam	$f2bV_matches	2020-01-12 08:57:58
222.186.42.136	attackbotsspam	Jan 12 01:26:49 srv1-bit sshd[29770]: User root from 222.186.42.136 not allowed because not listed in AllowUsers Jan 12 01:33:06 srv1-bit sshd[29866]: User root from 222.186.42.136 not allowed because not listed in AllowUsers ...	2020-01-12 08:44:31
171.228.30.92	attackbots	Jan 11 21:51:15 mxgate1 postfix/postscreen[7221]: CONNECT from [171.228.30.92]:59858 to [176.31.12.44]:25 Jan 11 21:51:15 mxgate1 postfix/dnsblog[7223]: addr 171.228.30.92 listed by domain zen.spamhaus.org as 127.0.0.4 Jan 11 21:51:15 mxgate1 postfix/dnsblog[7223]: addr 171.228.30.92 listed by domain zen.spamhaus.org as 127.0.0.3 Jan 11 21:51:15 mxgate1 postfix/dnsblog[7223]: addr 171.228.30.92 listed by domain zen.spamhaus.org as 127.0.0.11 Jan 11 21:51:15 mxgate1 postfix/dnsblog[7248]: addr 171.228.30.92 listed by domain cbl.abuseat.org as 127.0.0.2 Jan 11 21:51:15 mxgate1 postfix/dnsblog[7222]: addr 171.228.30.92 listed by domain bl.spamcop.net as 127.0.0.2 Jan 11 21:51:21 mxgate1 postfix/postscreen[7221]: DNSBL rank 4 for [171.228.30.92]:59858 Jan 11 21:51:22 mxgate1 postfix/tlsproxy[7249]: CONNECT from [171.228.30.92]:59858 Jan x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=171.228.30.92	2020-01-12 08:53:14
186.91.98.195	attack	Unauthorized connection attempt detected from IP address 186.91.98.195 to port 445	2020-01-12 08:27:05
94.25.174.30	attackbotsspam	Wordpress login scanning	2020-01-12 08:47:59
162.247.74.27	attack	Automatic report - Banned IP Access	2020-01-12 08:35:57
178.95.196.140	attackspam	Telnet/23 MH Probe, BF, Hack -	2020-01-12 09:01:12
111.72.194.213	attack	2020-01-11 15:03:25 dovecot_login authenticator failed for (fexfu) [111.72.194.213]:58935 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=zhouwei@lerctr.org) 2020-01-11 15:03:32 dovecot_login authenticator failed for (domom) [111.72.194.213]:58935 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=zhouwei@lerctr.org) 2020-01-11 15:03:44 dovecot_login authenticator failed for (hadtw) [111.72.194.213]:58935 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=zhouwei@lerctr.org) ...	2020-01-12 08:36:25
177.85.172.145	attack	Unauthorized connection attempt detected from IP address 177.85.172.145 to port 8022 [T]	2020-01-12 08:38:52
129.211.130.37	attack	$f2bV_matches	2020-01-12 08:39:55

Recently Reported IPs

193.29.13.133	50.80.173.210	199.195.251.90	106.75.32.229
207.46.13.144	137.97.35.162	39.41.152.77	118.89.168.254
197.248.20.119	188.59.59.219	24.253.43.66	103.108.192.210
81.68.76.214	106.58.189.125	138.97.28.196	183.87.134.134
51.254.207.92	197.48.114.5	182.148.12.7	34.211.217.241