42.225.120.56 - IPInfo

Basic Info

City: unknown

Region: Henan

Country: China

Internet Service Provider: China Unicom Henan Province Network

Hostname: unknown

Organization: CHINA UNICOM China169 Backbone

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-08-12 00:43:29

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.225.120.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55162
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.225.120.56.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 12 00:43:22 CST 2019
;; MSG SIZE  rcvd: 117

Host info

56.120.225.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
56.120.225.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.218.148.131	attackspam	Aug 12 10:52:40 lnxded63 sshd[9222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.218.148.131 Aug 12 10:52:42 lnxded63 sshd[9222]: Failed password for invalid user graham from 81.218.148.131 port 12422 ssh2 Aug 12 11:02:16 lnxded63 sshd[10334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.218.148.131	2019-08-12 17:10:32
144.255.242.61	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-12 16:54:36
185.220.101.7	attackbots	<6 unauthorized SSH connections	2019-08-12 17:01:32
182.61.41.153	attackspambots	Aug 12 08:55:46 MK-Soft-VM4 sshd\[28371\]: Invalid user cssserver from 182.61.41.153 port 54886 Aug 12 08:55:46 MK-Soft-VM4 sshd\[28371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.41.153 Aug 12 08:55:47 MK-Soft-VM4 sshd\[28371\]: Failed password for invalid user cssserver from 182.61.41.153 port 54886 ssh2 ...	2019-08-12 17:02:06
18.231.80.46	attack	18.231.80.46 - - [12/Aug/2019:04:35:15 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 18.231.80.46 - - [12/Aug/2019:04:35:16 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 18.231.80.46 - - [12/Aug/2019:04:35:18 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 18.231.80.46 - - [12/Aug/2019:04:35:19 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 18.231.80.46 - - [12/Aug/2019:04:35:20 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 18.231.80.46 - - [12/Aug/2019:04:35:22 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-12 16:25:15
118.97.140.237	attackbotsspam	Aug 12 07:55:03 root sshd[6142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.140.237 Aug 12 07:55:05 root sshd[6142]: Failed password for invalid user chantal from 118.97.140.237 port 51682 ssh2 Aug 12 08:00:11 root sshd[6163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.140.237 ...	2019-08-12 17:05:46
218.92.0.154	attackbots	port scan and connect, tcp 22 (ssh)	2019-08-12 16:52:04
148.66.135.178	attack	Aug 12 10:42:51 [munged] sshd[30388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.135.178 user=support Aug 12 10:42:53 [munged] sshd[30388]: Failed password for support from 148.66.135.178 port 41120 ssh2	2019-08-12 16:59:24
200.71.93.105	attackspambots	Honeypot attack, port: 23, PTR: adsl-200-71-93-105.coopenetcolon.com.ar.	2019-08-12 16:58:43
80.66.218.219	attack	Honeypot attack, port: 23, PTR: 219-218-66-80.hosts.wifi.3psystem.it.	2019-08-12 16:59:52
61.55.37.183	attackspam	" "	2019-08-12 17:03:34
213.186.244.4	attackbotsspam	frenzy	2019-08-12 17:12:20
112.85.42.189	attack	2019-08-12T08:09:27.653895abusebot-4.cloudsearch.cf sshd\[24755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.189 user=root	2019-08-12 16:33:22
114.99.130.250	attack	Aug 12 04:34:30 lnxmail61 postfix/smtpd[17408]: warning: unknown[114.99.130.250]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 04:34:30 lnxmail61 postfix/smtpd[17408]: lost connection after AUTH from unknown[114.99.130.250] Aug 12 04:34:38 lnxmail61 postfix/smtpd[14894]: warning: unknown[114.99.130.250]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 04:34:38 lnxmail61 postfix/smtpd[14894]: lost connection after AUTH from unknown[114.99.130.250] Aug 12 04:34:49 lnxmail61 postfix/smtpd[17408]: warning: unknown[114.99.130.250]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 04:34:49 lnxmail61 postfix/smtpd[17408]: lost connection after AUTH from unknown[114.99.130.250]	2019-08-12 16:32:28
73.169.179.92	attackbotsspam	Honeypot attack, port: 23, PTR: c-73-169-179-92.hsd1.wa.comcast.net.	2019-08-12 16:46:43

Recently Reported IPs

41.132.204.223	18.202.141.47	6.203.157.77	189.198.245.229
86.218.169.245	185.153.180.38	252.51.63.16	79.178.145.159
96.125.14.61	180.183.116.232	233.35.25.157	75.73.211.160
247.40.61.198	52.215.171.41	89.50.144.138	4.144.151.37
95.5.168.37	191.9.35.185	222.86.94.250	71.110.47.148