42.225.20.174 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.225.200.79	attackbotsspam	1027/udp [2020-10-13]1pkt	2020-10-14 01:56:39
42.225.200.79	attack	SSH login attempts.	2020-10-13 17:09:36
42.225.208.86	attack	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-11-13 06:22:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.225.20.174
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47252
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.225.20.174.			IN	A

;; AUTHORITY SECTION:
.			391	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 08:43:24 CST 2022
;; MSG SIZE  rcvd: 106

Host info

174.20.225.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
174.20.225.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.232.67.147	attackbotsspam	Unauthorized connection attempt from IP address 117.232.67.147 on Port 445(SMB)	2020-08-27 23:10:27
193.27.229.189	attackbots	Aug 27 16:46:56 [host] kernel: [4206358.605638] [U Aug 27 16:46:56 [host] kernel: [4206358.817105] [U Aug 27 16:46:56 [host] kernel: [4206359.031129] [U Aug 27 16:46:57 [host] kernel: [4206359.245176] [U Aug 27 16:46:57 [host] kernel: [4206359.459106] [U Aug 27 16:46:57 [host] kernel: [4206359.673054] [U	2020-08-27 23:24:49
140.143.233.29	attack	21 attempts against mh-ssh on echoip	2020-08-27 23:07:32
115.84.112.138	attackspam	Aug 25 23:36:40 mail.srvfarm.net dovecot: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=115.84.112.138, lip=185.118.197.126, session= Aug 25 23:37:07 mail.srvfarm.net dovecot: imap-login: Disconnected (auth failed, 1 attempts in 7 secs): user=, method=PLAIN, rip=115.84.112.138, lip=185.118.197.126, session= Aug 25 23:37:11 mail.srvfarm.net dovecot: imap-login: Disconnected (auth failed, 1 attempts in 20 secs): user=, method=PLAIN, rip=115.84.112.138, lip=185.118.197.126, session= Aug 25 23:38:10 mail.srvfarm.net dovecot: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=115.84.112.138, lip=185.118.197.126, session= Aug 25 23:43:27 mail.srvfarm.net dovecot: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=115.84.112.138, li	2020-08-27 23:19:08
164.68.110.55	attackspambots	Unauthorized connection attempt from IP address 164.68.110.55 on Port 445(SMB)	2020-08-27 22:56:26
192.241.237.152	attackspambots	Unauthorized connection attempt from IP address 192.241.237.152 on Port 3306(MYSQL)	2020-08-27 22:52:57
103.146.202.160	attack	Aug 27 14:26:01 game-panel sshd[7553]: Failed password for root from 103.146.202.160 port 46666 ssh2 Aug 27 14:30:29 game-panel sshd[7849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.146.202.160 Aug 27 14:30:30 game-panel sshd[7849]: Failed password for invalid user sun from 103.146.202.160 port 54950 ssh2	2020-08-27 22:47:00
103.28.38.166	attack	Lots of Login attempts to user accounts	2020-08-27 23:17:33
51.91.250.197	attackbotsspam	bruteforce detected	2020-08-27 23:28:39
142.44.160.40	attack	Aug 27 14:23:05 localhost sshd[124031]: Invalid user publish from 142.44.160.40 port 49806 Aug 27 14:23:05 localhost sshd[124031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net Aug 27 14:23:05 localhost sshd[124031]: Invalid user publish from 142.44.160.40 port 49806 Aug 27 14:23:07 localhost sshd[124031]: Failed password for invalid user publish from 142.44.160.40 port 49806 ssh2 Aug 27 14:28:56 localhost sshd[124543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net user=root Aug 27 14:28:57 localhost sshd[124543]: Failed password for root from 142.44.160.40 port 32972 ssh2 ...	2020-08-27 22:53:58
94.25.161.52	attackspambots	Unauthorized connection attempt from IP address 94.25.161.52 on Port 445(SMB)	2020-08-27 23:28:23
95.182.122.131	attack	(sshd) Failed SSH login from 95.182.122.131 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 27 16:04:43 srv sshd[31036]: Invalid user tmp from 95.182.122.131 port 52839 Aug 27 16:04:45 srv sshd[31036]: Failed password for invalid user tmp from 95.182.122.131 port 52839 ssh2 Aug 27 16:16:57 srv sshd[31340]: Invalid user contabilidad from 95.182.122.131 port 43057 Aug 27 16:16:59 srv sshd[31340]: Failed password for invalid user contabilidad from 95.182.122.131 port 43057 ssh2 Aug 27 16:21:28 srv sshd[31540]: Invalid user saba from 95.182.122.131 port 46471	2020-08-27 23:18:05
31.128.21.71	attackbots	Automatic report - Port Scan Attack	2020-08-27 22:49:14
187.10.231.238	attack	Aug 27 14:47:10 web-main sshd[3341657]: Failed password for invalid user black from 187.10.231.238 port 46962 ssh2 Aug 27 15:01:19 web-main sshd[3343467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.10.231.238 user=root Aug 27 15:01:20 web-main sshd[3343467]: Failed password for root from 187.10.231.238 port 37620 ssh2	2020-08-27 23:15:07
212.70.149.52	attackspambots	Aug 27 17:15:13 relay postfix/smtpd\[11730\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 17:15:40 relay postfix/smtpd\[13091\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 17:16:07 relay postfix/smtpd\[12836\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 17:16:35 relay postfix/smtpd\[12938\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 17:17:02 relay postfix/smtpd\[13323\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-27 23:18:21

Recently Reported IPs

42.225.192.157	42.225.201.188	42.224.94.4	42.224.80.145
42.225.203.77	42.225.203.168	42.225.205.97	42.225.217.79
42.224.78.152	42.225.202.67	42.225.231.34	42.225.235.104
42.225.236.6	42.225.239.48	42.225.239.52	42.225.241.57
193.93.121.38	42.225.243.183	42.225.243.62	42.225.27.206