125.46.2.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
125.46.29.18	attackbots	Unauthorized connection attempt detected from IP address 125.46.29.18 to port 1433	2020-07-25 22:56:44
125.46.205.33	attack	Unauthorised access (May 8) SRC=125.46.205.33 LEN=40 TTL=46 ID=13464 TCP DPT=8080 WINDOW=15630 SYN Unauthorised access (May 7) SRC=125.46.205.33 LEN=40 TTL=46 ID=14535 TCP DPT=8080 WINDOW=17368 SYN	2020-05-10 01:28:26
125.46.23.166	attackbotsspam	Unauthorized connection attempt detected from IP address 125.46.23.166 to port 1433 [T]	2020-04-23 19:57:42
125.46.23.166	attackbotsspam	Unauthorized connection attempt detected from IP address 125.46.23.166 to port 1433 [T]	2020-04-15 04:23:15
125.46.242.232	attackspam	Automatic report - Port Scan Attack	2020-04-07 20:02:08
125.46.244.255	attackspam	Time: Wed Apr 1 07:25:46 2020 -0300 IP: 125.46.244.255 (CN/China/hn.kd.ny.adsl) Failures: 15 (ftpd) Interval: 3600 seconds Blocked: Permanent Block	2020-04-02 02:24:27
125.46.23.166	attackspambots	" "	2020-03-27 13:58:22
125.46.23.166	attackbotsspam	Unauthorized connection attempt detected from IP address 125.46.23.166 to port 1433 [T]	2020-02-01 20:58:02
125.46.23.166	attackspam	Unauthorized connection attempt detected from IP address 125.46.23.166 to port 1433 [T]	2020-01-27 06:12:23
125.46.23.166	attackbotsspam	Unauthorized connection attempt detected from IP address 125.46.23.166 to port 1433 [J]	2020-01-20 19:30:57
125.46.244.32	attack	Scanning	2019-12-25 20:19:14
125.46.218.27	attackbots	Unauthorised access (Oct 8) SRC=125.46.218.27 LEN=40 TTL=50 ID=22051 TCP DPT=23 WINDOW=56747 SYN	2019-10-08 22:17:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.46.2.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39598
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.46.2.138.			IN	A

;; AUTHORITY SECTION:
.			551	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 09:59:58 CST 2022
;; MSG SIZE  rcvd: 105

Host info

138.2.46.125.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.2.46.125.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.22.86	attack	Jun 21 21:47:07 [host] sshd[23903]: Invalid user kafka from 68.183.22.86 Jun 21 21:47:07 [host] sshd[23903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.22.86 Jun 21 21:47:09 [host] sshd[23903]: Failed password for invalid user kafka from 68.183.22.86 port 58192 ssh2	2019-06-22 04:15:35
199.249.230.69	attack	Request: "GET /wp-content/plugins/css-ready-selectors/file.php HTTP/1.1" Request: "GET /res.php HTTP/1.1" Request: "GET /01.php HTTP/1.1" Request: "GET /wp-content/plugins/qetf0.php HTTP/1.1" Request: "GET /wp-content/plugins/server.php HTTP/1.1" Request: "GET /Dwsonv.php HTTP/1.1" Request: "GET /bak.php?login=canshu HTTP/1.1" Request: "GET /wp-content/aw.php HTTP/1.1" Request: "GET /wp-content/plugins/options.php HTTP/1.1" Request: "GET /wp-content/batman.php HTTP/1.1" Request: "GET /date.php HTTP/1.1" Request: "GET /xkl.php HTTP/1.1" Request: "GET /wp-cofigs.php HTTP/1.1" Request: "GET /error_log.php?kudax=w00tz HTTP/1.1" Request: "GET /xyz.php HTTP/1.1" Request: "GET /res.php HTTP/1.1" Request: "GET /res.php HTTP/1.1" Request: "GET /01.php HTTP/1.1" Request: "GET /01.php HTTP/1.1" Request: "GET /Dwsonv.php HTTP/1.1" Request: "GET /Dwsonv.php HTTP/1.1" Request: "GET /bak.php?login=canshu HTTP/1.1" Request: "GET /bak.php?login=canshu HTTP/1.1" Request: "GET /date.php HTTP/1.1" Request: "GET /date.php HTTP/1.	2019-06-22 04:34:36
91.205.210.82	attackbotsspam	Jun 21 21:39:46 mail kernel: \[191531.626448\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=91.205.210.82 DST=91.205.173.180 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=48607 DF PROTO=TCP SPT=26165 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0 Jun 21 21:40:55 mail kernel: \[191600.622641\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=91.205.210.82 DST=91.205.173.180 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=58811 DF PROTO=TCP SPT=49836 DPT=7547 WINDOW=14600 RES=0x00 SYN URGP=0 Jun 21 21:46:38 mail kernel: \[191943.621421\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=91.205.210.82 DST=91.205.173.180 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=6602 DF PROTO=TCP SPT=59278 DPT=8291 WINDOW=14600 RES=0x00 SYN URGP=0	2019-06-22 04:32:56
185.123.233.183	attackspam	Request: "GET / HTTP/1.1"	2019-06-22 04:10:57
84.127.137.26	attackspam	Jun 16 21:50:51 cumulus sshd[4022]: Bad protocol version identification '' from 84.127.137.26 port 56958 Jun 16 22:12:50 cumulus sshd[5285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.127.137.26 user=r.r Jun 16 22:12:52 cumulus sshd[5285]: Failed password for r.r from 84.127.137.26 port 46304 ssh2 Jun 16 22:12:53 cumulus sshd[5285]: Connection closed by 84.127.137.26 port 46304 [preauth] Jun 16 22:17:14 cumulus sshd[5448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.127.137.26 user=r.r Jun 16 22:17:16 cumulus sshd[5448]: Failed password for r.r from 84.127.137.26 port 34148 ssh2 Jun 16 22:22:30 cumulus sshd[5767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.127.137.26 user=r.r Jun 16 22:22:32 cumulus sshd[5767]: Failed password for r.r from 84.127.137.26 port 58554 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?i	2019-06-22 04:33:29
46.166.190.162	attackbots	Bad Bot Request: "HEAD / HTTP/1.1" Agent: "Mozilla/5.0 (compatible; Uptimebot/1.0; http://www.uptime.com/uptimebot)"	2019-06-22 04:32:17
14.200.102.58	attackspam	Request: "GET / HTTP/1.1" Request: "GET / HTTP/1.1"	2019-06-22 04:17:18
202.162.199.41	attackbots	Request: "GET / HTTP/1.1"	2019-06-22 04:41:33
210.57.215.106	attackbotsspam	445/tcp 445/tcp 445/tcp [2019-06-21]3pkt	2019-06-22 04:47:28
191.37.128.83	attack	Request: "GET / HTTP/1.1"	2019-06-22 04:39:09
103.254.127.126	attackspam	Request: "GET / HTTP/1.1"	2019-06-22 04:19:11
179.57.112.130	attackspambots	445/tcp [2019-06-21]1pkt	2019-06-22 04:38:43
201.147.144.87	attackspambots	Request: "GET / HTTP/1.1" Request: "GET / HTTP/1.1"	2019-06-22 04:52:10
18.188.164.133	attackspam	/wp-login.php	2019-06-22 04:10:16
185.161.115.146	attack	Request: "GET / HTTP/1.1"	2019-06-22 04:38:15

Recently Reported IPs

125.45.59.143	125.45.66.78	125.46.214.150	125.46.220.38
125.45.67.37	125.46.221.213	125.47.201.250	125.46.251.60
125.47.244.163	125.45.59.219	125.47.244.66	125.47.247.120
125.47.247.173	125.47.251.53	125.47.45.167	125.47.49.200
125.47.51.168	125.47.57.208	125.47.49.206	125.47.73.211