125.42.25.95 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
125.42.254.247	attack	SSH login attempts.	2020-02-17 17:16:16
125.42.253.127	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/125.42.253.127/ CN - 1H : (282) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 125.42.253.127 CIDR : 125.40.0.0/14 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 WYKRYTE ATAKI Z ASN4837 : 1H - 6 3H - 12 6H - 17 12H - 38 24H - 81 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery	2019-09-20 00:46:55

Type

Details

Datetime

125.42.254.247

attack

SSH login attempts.

2020-02-17 17:16:16

125.42.253.127

attackspambots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/125.42.253.127/ 
 CN - 1H : (282)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : CN 
 NAME ASN : ASN4837 
 
 IP : 125.42.253.127 
 
 CIDR : 125.40.0.0/14 
 
 PREFIX COUNT : 1262 
 
 UNIQUE IP COUNT : 56665856 
 
 
 WYKRYTE ATAKI Z ASN4837 :  
  1H - 6 
  3H - 12 
  6H - 17 
 12H - 38 
 24H - 81 
 
 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN  - data recovery

2019-09-20 00:46:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.42.25.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32894
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.42.25.95.			IN	A

;; AUTHORITY SECTION:
.			551	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 07:04:16 CST 2022
;; MSG SIZE  rcvd: 105

Host info

95.25.42.125.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
95.25.42.125.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.38.150.72	attack	Jul 5 14:18:42 web02.agentur-b-2.de postfix/smtpd[23663]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 5 14:19:32 web02.agentur-b-2.de postfix/smtpd[23663]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 5 14:19:56 web02.agentur-b-2.de postfix/smtpd[22912]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 5 14:20:21 web02.agentur-b-2.de postfix/smtpd[22912]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 5 14:20:47 web02.agentur-b-2.de postfix/smtpd[23663]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-07-06 02:08:27
181.49.176.36	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-06 02:15:23
114.35.95.146	attack	Honeypot attack, port: 81, PTR: 114-35-95-146.HINET-IP.hinet.net.	2020-07-06 02:16:57
109.191.177.148	attack	Unauthorized connection attempt detected from IP address 109.191.177.148 to port 139	2020-07-06 01:42:03
223.171.32.55	attackbotsspam	Jul 5 19:23:09 dhoomketu sshd[1299888]: Failed password for root from 223.171.32.55 port 42031 ssh2 Jul 5 19:24:48 dhoomketu sshd[1299901]: Invalid user mithun from 223.171.32.55 port 42032 Jul 5 19:24:48 dhoomketu sshd[1299901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.32.55 Jul 5 19:24:48 dhoomketu sshd[1299901]: Invalid user mithun from 223.171.32.55 port 42032 Jul 5 19:24:50 dhoomketu sshd[1299901]: Failed password for invalid user mithun from 223.171.32.55 port 42032 ssh2 ...	2020-07-06 01:43:40
67.207.89.207	attack	Jul 5 19:35:47 rotator sshd\[6444\]: Invalid user tiago from 67.207.89.207Jul 5 19:35:49 rotator sshd\[6444\]: Failed password for invalid user tiago from 67.207.89.207 port 32986 ssh2Jul 5 19:38:43 rotator sshd\[6466\]: Failed password for root from 67.207.89.207 port 59332 ssh2Jul 5 19:41:30 rotator sshd\[7265\]: Invalid user castis from 67.207.89.207Jul 5 19:41:32 rotator sshd\[7265\]: Failed password for invalid user castis from 67.207.89.207 port 57332 ssh2Jul 5 19:44:31 rotator sshd\[7296\]: Failed password for root from 67.207.89.207 port 55378 ssh2 ...	2020-07-06 02:11:03
51.75.30.199	attack	Jul 5 17:56:46 bchgang sshd[58129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.30.199 Jul 5 17:56:48 bchgang sshd[58129]: Failed password for invalid user tian from 51.75.30.199 port 37146 ssh2 Jul 5 17:59:53 bchgang sshd[58255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.30.199 ...	2020-07-06 02:08:09
104.206.128.42	attackspambots	21/tcp 3306/tcp 161/udp... [2020-05-05/07-05]51pkt,11pt.(tcp),1pt.(udp)	2020-07-06 02:17:41
59.126.149.208	attackbotsspam	Honeypot attack, port: 81, PTR: 59-126-149-208.HINET-IP.hinet.net.	2020-07-06 01:46:44
139.217.227.32	attackbotsspam	Jul 5 17:41:43 plex-server sshd[207095]: Invalid user chile from 139.217.227.32 port 43778 Jul 5 17:41:43 plex-server sshd[207095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.227.32 Jul 5 17:41:43 plex-server sshd[207095]: Invalid user chile from 139.217.227.32 port 43778 Jul 5 17:41:45 plex-server sshd[207095]: Failed password for invalid user chile from 139.217.227.32 port 43778 ssh2 Jul 5 17:44:39 plex-server sshd[208066]: Invalid user chris from 139.217.227.32 port 52562 ...	2020-07-06 02:02:51
112.85.42.173	attackbotsspam	Jul 5 17:58:52 rush sshd[18147]: Failed password for root from 112.85.42.173 port 30738 ssh2 Jul 5 17:58:56 rush sshd[18147]: Failed password for root from 112.85.42.173 port 30738 ssh2 Jul 5 17:58:59 rush sshd[18147]: Failed password for root from 112.85.42.173 port 30738 ssh2 Jul 5 17:59:02 rush sshd[18147]: Failed password for root from 112.85.42.173 port 30738 ssh2 ...	2020-07-06 02:00:18
51.255.35.58	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-07-06 01:42:18
218.92.0.215	attackbots	Jul 5 17:30:56 scw-6657dc sshd[10545]: Failed password for root from 218.92.0.215 port 50484 ssh2 Jul 5 17:30:56 scw-6657dc sshd[10545]: Failed password for root from 218.92.0.215 port 50484 ssh2 Jul 5 17:31:00 scw-6657dc sshd[10545]: Failed password for root from 218.92.0.215 port 50484 ssh2 ...	2020-07-06 01:38:24
108.216.192.211	attackbotsspam	" "	2020-07-06 02:06:25
211.108.69.103	attackbots	2020-07-05T20:43:17.869288afi-git.jinr.ru sshd[3203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.108.69.103 2020-07-05T20:43:17.865895afi-git.jinr.ru sshd[3203]: Invalid user train from 211.108.69.103 port 46974 2020-07-05T20:43:20.424033afi-git.jinr.ru sshd[3203]: Failed password for invalid user train from 211.108.69.103 port 46974 ssh2 2020-07-05T20:44:34.394549afi-git.jinr.ru sshd[3502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.108.69.103 user=root 2020-07-05T20:44:36.184795afi-git.jinr.ru sshd[3502]: Failed password for root from 211.108.69.103 port 37558 ssh2 ...	2020-07-06 02:08:50

Recently Reported IPs

125.43.134.188	125.43.163.34	125.43.18.141	125.43.193.213
125.43.188.110	125.43.21.12	125.43.216.136	125.43.217.98
125.43.22.141	125.43.33.157	125.43.36.20	125.43.36.36
125.43.36.80	125.43.42.59	125.43.240.136	125.43.42.87
125.43.81.214	125.43.59.114	125.43.80.221	125.43.83.223