45.125.2.8 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.125.222.120	attack	Oct 3 23:52:28 ns382633 sshd\[15976\]: Invalid user wp-user from 45.125.222.120 port 43078 Oct 3 23:52:28 ns382633 sshd\[15976\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.222.120 Oct 3 23:52:30 ns382633 sshd\[15976\]: Failed password for invalid user wp-user from 45.125.222.120 port 43078 ssh2 Oct 4 00:03:52 ns382633 sshd\[17282\]: Invalid user deployer from 45.125.222.120 port 60982 Oct 4 00:03:52 ns382633 sshd\[17282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.222.120	2020-10-04 06:05:39
45.125.222.120	attack	Invalid user ftptest from 45.125.222.120 port 41354	2020-10-03 22:06:40
45.125.222.120	attackbots	Invalid user testing from 45.125.222.120 port 49426	2020-10-03 13:51:33
45.125.222.120	attack	Sep 28 16:58:36 ns308116 sshd[545]: Invalid user ftpuser from 45.125.222.120 port 56524 Sep 28 16:58:36 ns308116 sshd[545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.222.120 Sep 28 16:58:38 ns308116 sshd[545]: Failed password for invalid user ftpuser from 45.125.222.120 port 56524 ssh2 Sep 28 17:02:54 ns308116 sshd[10458]: Invalid user ttt from 45.125.222.120 port 56182 Sep 28 17:02:54 ns308116 sshd[10458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.222.120 ...	2020-09-29 02:04:13
45.125.222.120	attack	Sep 28 05:33:52 ip106 sshd[26049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.222.120 Sep 28 05:33:54 ip106 sshd[26049]: Failed password for invalid user ubuntu from 45.125.222.120 port 39236 ssh2 ...	2020-09-28 18:10:42
45.125.217.217	attackspambots	Attempted connection to port 445.	2020-09-05 01:10:09
45.125.217.217	attackbotsspam	Attempted connection to port 445.	2020-09-04 16:29:55
45.125.217.217	attackspambots	Attempted connection to port 445.	2020-09-04 08:49:56
45.125.222.120	attackspam	Invalid user metro from 45.125.222.120 port 37588	2020-09-03 22:59:22
45.125.222.120	attack	Sep 3 06:14:50 cp sshd[2963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.222.120	2020-09-03 14:35:34
45.125.222.120	attack	Automatic report - Banned IP Access	2020-09-03 06:48:39
45.125.222.120	attack	Aug 29 13:58:53 meumeu sshd[583792]: Invalid user todus from 45.125.222.120 port 47282 Aug 29 13:58:53 meumeu sshd[583792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.222.120 Aug 29 13:58:53 meumeu sshd[583792]: Invalid user todus from 45.125.222.120 port 47282 Aug 29 13:58:54 meumeu sshd[583792]: Failed password for invalid user todus from 45.125.222.120 port 47282 ssh2 Aug 29 14:03:25 meumeu sshd[584245]: Invalid user administrator from 45.125.222.120 port 51430 Aug 29 14:03:25 meumeu sshd[584245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.222.120 Aug 29 14:03:25 meumeu sshd[584245]: Invalid user administrator from 45.125.222.120 port 51430 Aug 29 14:03:28 meumeu sshd[584245]: Failed password for invalid user administrator from 45.125.222.120 port 51430 ssh2 Aug 29 14:07:44 meumeu sshd[584400]: Invalid user inoue from 45.125.222.120 port 55578 ...	2020-08-30 00:43:26
45.125.222.120	attackbotsspam	SSH Bruteforce attack	2020-08-28 18:00:52
45.125.222.120	attackspam	Aug 24 12:01:49 firewall sshd[24305]: Invalid user wangjing from 45.125.222.120 Aug 24 12:01:51 firewall sshd[24305]: Failed password for invalid user wangjing from 45.125.222.120 port 41104 ssh2 Aug 24 12:04:17 firewall sshd[24381]: Invalid user apt-mirror from 45.125.222.120 ...	2020-08-25 00:11:30
45.125.245.195	attackbots	Automatic report - Banned IP Access	2020-08-19 19:28:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.125.2.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35352
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.125.2.8.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022070600 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 06 22:08:42 CST 2022
;; MSG SIZE  rcvd: 103

Host info

8.2.125.45.in-addr.arpa domain name pointer 45.125.2.8.static.xtom.hk.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
8.2.125.45.in-addr.arpa	name = 45.125.2.8.static.xtom.hk.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.219.138.234	attack	Scanning random ports - tries to find possible vulnerable services	2019-08-08 16:38:21
74.82.47.44	attackbots	Honeypot hit.	2019-08-08 15:49:34
5.202.93.95	attackbotsspam	Aug 8 10:40:23 our-server-hostname postfix/smtpd[20116]: connect from unknown[5.202.93.95] Aug x@x Aug x@x Aug x@x Aug x@x Aug 8 10:40:30 our-server-hostname postfix/smtpd[20116]: lost connection after RCPT from unknown[5.202.93.95] Aug 8 10:40:30 our-server-hostname postfix/smtpd[20116]: disconnect from unknown[5.202.93.95] Aug 8 11:39:05 our-server-hostname postfix/smtpd[12544]: connect from unknown[5.202.93.95] Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.202.93.95	2019-08-08 16:33:26
58.153.79.133	attack	Honeypot attack, port: 5555, PTR: n058153079133.netvigator.com.	2019-08-08 15:52:02
206.189.108.59	attackspam	Aug 8 05:45:49 yesfletchmain sshd\[31215\]: Invalid user test1234 from 206.189.108.59 port 37076 Aug 8 05:45:49 yesfletchmain sshd\[31215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.108.59 Aug 8 05:45:51 yesfletchmain sshd\[31215\]: Failed password for invalid user test1234 from 206.189.108.59 port 37076 ssh2 Aug 8 05:51:53 yesfletchmain sshd\[31259\]: Invalid user columbia from 206.189.108.59 port 60446 Aug 8 05:51:53 yesfletchmain sshd\[31259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.108.59 ...	2019-08-08 16:03:52
190.97.76.237	attackspam	Aug 8 02:05:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.97.76.237 port 55497 ssh2 (target: 158.69.100.141:22, password: 0000) Aug 8 02:05:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.97.76.237 port 55497 ssh2 (target: 158.69.100.141:22, password: uClinux) Aug 8 02:05:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.97.76.237 port 55497 ssh2 (target: 158.69.100.141:22, password: anko) Aug 8 02:05:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.97.76.237 port 55497 ssh2 (target: 158.69.100.141:22, password: waldo) Aug 8 02:05:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.97.76.237 port 55497 ssh2 (target: 158.69.100.141:22, password: nosoup4u) Aug 8 02:05:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.97.76.237 port 55497 ssh2 (target: 158.69.100.141:22, password: dreambox) Aug 8 02:05:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r fr........ ------------------------------	2019-08-08 16:42:03
37.214.40.200	attack	Honeypot attack, port: 445, PTR: mm-200-40-214-37.mgts.dynamic.pppoe.byfly.by.	2019-08-08 15:57:11
218.92.0.190	attack	Aug 8 14:39:10 webhost01 sshd[23819]: Failed password for root from 218.92.0.190 port 32551 ssh2 ...	2019-08-08 16:16:07
66.150.26.41	attack	" "	2019-08-08 16:19:29
117.93.16.30	attack	Aug 8 02:17:19 www_kotimaassa_fi sshd[711]: Failed password for root from 117.93.16.30 port 62756 ssh2 Aug 8 02:17:33 www_kotimaassa_fi sshd[711]: error: maximum authentication attempts exceeded for root from 117.93.16.30 port 62756 ssh2 [preauth] ...	2019-08-08 15:55:56
185.176.27.18	attack	08/08/2019-02:53:09.850305 185.176.27.18 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-08 16:13:07
139.59.4.57	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2019-08-08 16:13:31
93.69.82.111	attackbots	Automatic report - Port Scan Attack	2019-08-08 16:28:42
37.47.187.31	attackbots	Repeated attempts against wp-login	2019-08-08 16:21:28
210.51.161.210	attackspam	Aug 8 04:17:42 [munged] sshd[10704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.51.161.210	2019-08-08 15:48:36

Recently Reported IPs

200.68.162.234	71.80.5.79	91.1.2.216	5.63.21.50
1.17.171.8	210.98.1.0	104.218.234.100	16.162.202.214
99.37.38.2	178.156.202.103	103.12.128.226	146.86.127.31
146.86.127.85	176.235.38.233	19.12.2.60	29.1.53.89
98.50.91.4	2.5.67.189	1.43.56.11	7.3.164.38