125.42.192.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
125.42.192.46	attack	DATE:2020-02-20 06:22:05, IP:125.42.192.46, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-02-20 16:09:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.42.192.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9785
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.42.192.21.			IN	A

;; AUTHORITY SECTION:
.			207	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 48 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 11:01:44 CST 2022
;; MSG SIZE  rcvd: 106

Host info

21.192.42.125.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.192.42.125.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.44.119.178	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 22-03-2020 12:55:10.	2020-03-23 05:45:53
72.11.168.29	attack	2020-03-22T20:55:46.845487abusebot-8.cloudsearch.cf sshd[31340]: Invalid user rq from 72.11.168.29 port 56778 2020-03-22T20:55:46.857232abusebot-8.cloudsearch.cf sshd[31340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72-11-168-29.cpe.axion.ca 2020-03-22T20:55:46.845487abusebot-8.cloudsearch.cf sshd[31340]: Invalid user rq from 72.11.168.29 port 56778 2020-03-22T20:55:49.298225abusebot-8.cloudsearch.cf sshd[31340]: Failed password for invalid user rq from 72.11.168.29 port 56778 ssh2 2020-03-22T21:04:26.650921abusebot-8.cloudsearch.cf sshd[31891]: Invalid user mi from 72.11.168.29 port 38038 2020-03-22T21:04:26.662446abusebot-8.cloudsearch.cf sshd[31891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72-11-168-29.cpe.axion.ca 2020-03-22T21:04:26.650921abusebot-8.cloudsearch.cf sshd[31891]: Invalid user mi from 72.11.168.29 port 38038 2020-03-22T21:04:28.821921abusebot-8.cloudsearch.cf sshd[31891]: Fa ...	2020-03-23 05:21:24
200.83.9.163	attackspam	port scan and connect, tcp 8080 (http-proxy)	2020-03-23 05:34:22
115.233.227.46	attackbotsspam	Mar 22 22:28:01 tuxlinux sshd[4430]: Invalid user hd from 115.233.227.46 port 50000 Mar 22 22:28:01 tuxlinux sshd[4430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.233.227.46 Mar 22 22:28:01 tuxlinux sshd[4430]: Invalid user hd from 115.233.227.46 port 50000 Mar 22 22:28:01 tuxlinux sshd[4430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.233.227.46 Mar 22 22:28:01 tuxlinux sshd[4430]: Invalid user hd from 115.233.227.46 port 50000 Mar 22 22:28:01 tuxlinux sshd[4430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.233.227.46 Mar 22 22:28:03 tuxlinux sshd[4430]: Failed password for invalid user hd from 115.233.227.46 port 50000 ssh2 ...	2020-03-23 05:44:08
27.75.113.14	attackspambots	DATE:2020-03-22 13:52:25, IP:27.75.113.14, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-23 05:22:34
42.2.125.137	attack	Honeypot attack, port: 5555, PTR: 42-2-125-137.static.netvigator.com.	2020-03-23 05:30:43
122.163.72.7	attack	Automatic report - Port Scan Attack	2020-03-23 05:48:33
195.122.226.164	attackspambots	Mar 22 22:03:56 pkdns2 sshd\[4957\]: Invalid user www from 195.122.226.164Mar 22 22:03:58 pkdns2 sshd\[4957\]: Failed password for invalid user www from 195.122.226.164 port 7851 ssh2Mar 22 22:07:53 pkdns2 sshd\[5136\]: Invalid user nx from 195.122.226.164Mar 22 22:07:54 pkdns2 sshd\[5136\]: Failed password for invalid user nx from 195.122.226.164 port 1081 ssh2Mar 22 22:11:56 pkdns2 sshd\[5312\]: Invalid user user2 from 195.122.226.164Mar 22 22:11:58 pkdns2 sshd\[5312\]: Failed password for invalid user user2 from 195.122.226.164 port 28405 ssh2 ...	2020-03-23 05:37:02
59.56.109.194	attack	Mar 21 11:22:55 server6 sshd[31747]: Failed password for invalid user factorio from 59.56.109.194 port 10190 ssh2 Mar 21 11:22:56 server6 sshd[31747]: Received disconnect from 59.56.109.194: 11: Bye Bye [preauth] Mar 21 11:35:59 server6 sshd[10933]: Failed password for invalid user ftp_user from 59.56.109.194 port 25027 ssh2 Mar 21 11:35:59 server6 sshd[10933]: Received disconnect from 59.56.109.194: 11: Bye Bye [preauth] Mar 21 11:40:14 server6 sshd[14759]: Failed password for invalid user deploy from 59.56.109.194 port 41560 ssh2 Mar 21 11:40:14 server6 sshd[14759]: Received disconnect from 59.56.109.194: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=59.56.109.194	2020-03-23 05:17:58
67.219.145.8	attackbots	SpamScore above: 10.0	2020-03-23 05:41:33
112.78.180.123	attackbots	Mar 22 13:55:43 163-172-32-151 sshd[11899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.78.180.123 user=root Mar 22 13:55:45 163-172-32-151 sshd[11899]: Failed password for root from 112.78.180.123 port 47050 ssh2 ...	2020-03-23 05:28:38
90.188.15.141	attack	Mar 22 19:18:05 dev0-dcde-rnet sshd[5649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.188.15.141 Mar 22 19:18:06 dev0-dcde-rnet sshd[5649]: Failed password for invalid user scanner from 90.188.15.141 port 51356 ssh2 Mar 22 19:27:52 dev0-dcde-rnet sshd[5746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.188.15.141	2020-03-23 05:17:14
219.78.7.43	attackspam	Honeypot attack, port: 5555, PTR: n219078007043.netvigator.com.	2020-03-23 05:23:49
192.210.192.165	attackspam	Mar 22 21:59:29 * sshd[27557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.210.192.165 Mar 22 21:59:32 * sshd[27557]: Failed password for invalid user bruce from 192.210.192.165 port 34710 ssh2	2020-03-23 05:50:13
218.92.0.158	attackspam	2020-03-22T22:49:44.021655vps773228.ovh.net sshd[4623]: Failed password for root from 218.92.0.158 port 1573 ssh2 2020-03-22T22:49:47.332499vps773228.ovh.net sshd[4623]: Failed password for root from 218.92.0.158 port 1573 ssh2 2020-03-22T22:49:51.055164vps773228.ovh.net sshd[4623]: Failed password for root from 218.92.0.158 port 1573 ssh2 2020-03-22T22:49:54.323770vps773228.ovh.net sshd[4623]: Failed password for root from 218.92.0.158 port 1573 ssh2 2020-03-22T22:49:57.342480vps773228.ovh.net sshd[4623]: Failed password for root from 218.92.0.158 port 1573 ssh2 ...	2020-03-23 05:53:14

Recently Reported IPs

5.1.104.66	66.94.97.238	179.234.50.46	78.189.237.53
103.86.200.48	103.15.60.42	193.163.125.99	76.104.152.236
177.124.20.200	41.169.68.81	79.103.148.23	90.84.224.46
175.106.10.164	212.125.19.202	176.215.58.171	73.200.158.233
109.100.7.31	120.86.253.221	23.105.70.119	24.181.78.243