59.13.125.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2020-10-07 10:25:47 server sshd[3005]: Failed password for invalid user root from 59.13.125.142 port 56218 ssh2	2020-10-08 06:27:05
attackspam	$f2bV_matches	2020-10-07 22:46:46
attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-07 14:50:33
attackspam	2020-09-01T12:32:18.181961vps-d63064a2 sshd[27790]: Invalid user sofia from 59.13.125.142 port 46948 2020-09-01T12:32:20.007131vps-d63064a2 sshd[27790]: Failed password for invalid user sofia from 59.13.125.142 port 46948 ssh2 2020-09-01T12:37:48.765919vps-d63064a2 sshd[27850]: Invalid user anna from 59.13.125.142 port 49313 2020-09-01T12:37:48.774796vps-d63064a2 sshd[27850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 2020-09-01T12:37:48.765919vps-d63064a2 sshd[27850]: Invalid user anna from 59.13.125.142 port 49313 2020-09-01T12:37:50.558176vps-d63064a2 sshd[27850]: Failed password for invalid user anna from 59.13.125.142 port 49313 ssh2 ...	2020-09-01 21:15:14
attackspambots	Aug 31 23:21:06 santamaria sshd\[14748\]: Invalid user wgr from 59.13.125.142 Aug 31 23:21:06 santamaria sshd\[14748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 Aug 31 23:21:08 santamaria sshd\[14748\]: Failed password for invalid user wgr from 59.13.125.142 port 38843 ssh2 ...	2020-09-01 07:18:16
attackbotsspam	Time: Sat Aug 29 18:12:23 2020 +0000 IP: 59.13.125.142 (KR/South Korea/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 29 18:03:20 ca-37-ams1 sshd[8195]: Invalid user ubuntu1 from 59.13.125.142 port 49734 Aug 29 18:03:21 ca-37-ams1 sshd[8195]: Failed password for invalid user ubuntu1 from 59.13.125.142 port 49734 ssh2 Aug 29 18:09:46 ca-37-ams1 sshd[8747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 user=root Aug 29 18:09:48 ca-37-ams1 sshd[8747]: Failed password for root from 59.13.125.142 port 55648 ssh2 Aug 29 18:12:20 ca-37-ams1 sshd[8912]: Invalid user kido from 59.13.125.142 port 41437	2020-08-30 04:08:46
attack	Invalid user weuser from 59.13.125.142 port 53694	2020-07-30 05:15:42
attackbots	Jul 16 00:19:37 * sshd[19085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 Jul 16 00:19:39 * sshd[19085]: Failed password for invalid user icn from 59.13.125.142 port 59593 ssh2	2020-07-16 06:51:25
attack	detected by Fail2Ban	2020-07-13 03:37:24
attackspam	SSH bruteforce	2020-07-10 01:33:24
attackbots	Jun 24 08:30:27 meumeu sshd[1295007]: Invalid user guest1 from 59.13.125.142 port 58175 Jun 24 08:30:27 meumeu sshd[1295007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 Jun 24 08:30:27 meumeu sshd[1295007]: Invalid user guest1 from 59.13.125.142 port 58175 Jun 24 08:30:28 meumeu sshd[1295007]: Failed password for invalid user guest1 from 59.13.125.142 port 58175 ssh2 Jun 24 08:32:51 meumeu sshd[1295073]: Invalid user developer from 59.13.125.142 port 45995 Jun 24 08:32:51 meumeu sshd[1295073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 Jun 24 08:32:51 meumeu sshd[1295073]: Invalid user developer from 59.13.125.142 port 45995 Jun 24 08:32:53 meumeu sshd[1295073]: Failed password for invalid user developer from 59.13.125.142 port 45995 ssh2 Jun 24 08:35:19 meumeu sshd[1295152]: Invalid user webserver from 59.13.125.142 port 33815 ...	2020-06-24 14:43:40
attackbots	Jun 15 16:48:07 mout sshd[27809]: Invalid user gpadmin from 59.13.125.142 port 45604 Jun 15 16:48:08 mout sshd[27809]: Failed password for invalid user gpadmin from 59.13.125.142 port 45604 ssh2 Jun 15 16:48:09 mout sshd[27809]: Disconnected from invalid user gpadmin 59.13.125.142 port 45604 [preauth]	2020-06-16 04:26:27
attackbotsspam	(sshd) Failed SSH login from 59.13.125.142 (KR/South Korea/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 14 17:53:22 ubnt-55d23 sshd[25685]: Invalid user lionel from 59.13.125.142 port 56725 Jun 14 17:53:24 ubnt-55d23 sshd[25685]: Failed password for invalid user lionel from 59.13.125.142 port 56725 ssh2	2020-06-15 03:07:52
attack	$f2bV_matches	2020-06-14 09:00:44
attackspambots	Automatic report BANNED IP	2020-06-14 03:09:24
attack	Failed password for root from 59.13.125.142 port 52096 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 user=root Failed password for root from 59.13.125.142 port 44795 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 user=root Failed password for root from 59.13.125.142 port 37497 ssh2	2020-06-04 07:31:20
attackbots	Jun 3 13:35:37 eventyay sshd[16300]: Failed password for root from 59.13.125.142 port 33753 ssh2 Jun 3 13:39:57 eventyay sshd[16429]: Failed password for root from 59.13.125.142 port 34662 ssh2 ...	2020-06-03 19:55:46
attackbots	Fail2Ban Ban Triggered (2)	2020-05-28 17:15:25
attackspam	May 12 11:26:12 l02a sshd[23988]: Invalid user test from 59.13.125.142 May 12 11:26:12 l02a sshd[23988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 May 12 11:26:12 l02a sshd[23988]: Invalid user test from 59.13.125.142 May 12 11:26:15 l02a sshd[23988]: Failed password for invalid user test from 59.13.125.142 port 36160 ssh2	2020-05-12 19:05:33
attackspam	20 attempts against mh-ssh on cloud	2020-05-11 07:46:31
attack	Ssh brute force	2020-05-09 17:18:56
attackbotsspam	May 4 05:56:49 markkoudstaal sshd[2659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.13.125.142 May 4 05:56:51 markkoudstaal sshd[2659]: Failed password for invalid user knk from 59.13.125.142 port 39479 ssh2 May 4 05:59:13 markkoudstaal sshd[3093]: Failed password for root from 59.13.125.142 port 55213 ssh2	2020-05-04 12:05:43
attackbots	$f2bV_matches	2020-03-24 07:07:25
attackbots	suspicious action Thu, 12 Mar 2020 12:39:27 -0300	2020-03-13 02:31:01

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.13.125.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31610
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.13.125.142.			IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031202 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 13 02:30:58 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 142.125.13.59.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.125.13.59.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.196.54.35	attackbots	SSH bruteforce	2020-04-26 16:05:21
201.130.109.111	attackbotsspam	1587873066 - 04/26/2020 05:51:06 Host: 201.130.109.111/201.130.109.111 Port: 445 TCP Blocked	2020-04-26 16:29:54
103.42.57.65	attack	Apr 26 06:58:50 124388 sshd[14807]: Invalid user lxr from 103.42.57.65 port 33546 Apr 26 06:58:50 124388 sshd[14807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 Apr 26 06:58:50 124388 sshd[14807]: Invalid user lxr from 103.42.57.65 port 33546 Apr 26 06:58:52 124388 sshd[14807]: Failed password for invalid user lxr from 103.42.57.65 port 33546 ssh2 Apr 26 07:01:10 124388 sshd[14957]: Invalid user bloomberg from 103.42.57.65 port 44854	2020-04-26 16:05:54
128.1.91.202	attack	04/25/2020-23:51:18.984592 128.1.91.202 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-26 16:17:57
180.76.108.151	attackspam	2020-04-26T03:35:24.4525631495-001 sshd[31179]: Invalid user wn from 180.76.108.151 port 44538 2020-04-26T03:35:24.4582661495-001 sshd[31179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.108.151 2020-04-26T03:35:24.4525631495-001 sshd[31179]: Invalid user wn from 180.76.108.151 port 44538 2020-04-26T03:35:26.1733221495-001 sshd[31179]: Failed password for invalid user wn from 180.76.108.151 port 44538 ssh2 2020-04-26T03:37:43.6170621495-001 sshd[31309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.108.151 user=root 2020-04-26T03:37:45.7482981495-001 sshd[31309]: Failed password for root from 180.76.108.151 port 44034 ssh2 ...	2020-04-26 16:28:36
162.243.132.235	attackspam	" "	2020-04-26 15:50:33
34.76.2.48	attackspambots	Apr 26 08:03:01 rotator sshd\[30944\]: Invalid user gamma from 34.76.2.48Apr 26 08:03:03 rotator sshd\[30944\]: Failed password for invalid user gamma from 34.76.2.48 port 59308 ssh2Apr 26 08:06:43 rotator sshd\[31724\]: Invalid user openproject from 34.76.2.48Apr 26 08:06:46 rotator sshd\[31724\]: Failed password for invalid user openproject from 34.76.2.48 port 36022 ssh2Apr 26 08:10:31 rotator sshd\[32510\]: Invalid user ma from 34.76.2.48Apr 26 08:10:33 rotator sshd\[32510\]: Failed password for invalid user ma from 34.76.2.48 port 40966 ssh2 ...	2020-04-26 15:57:29
219.239.47.66	attack	$f2bV_matches	2020-04-26 16:04:59
106.12.189.91	attack	Apr 26 03:10:35 firewall sshd[26847]: Invalid user anto from 106.12.189.91 Apr 26 03:10:36 firewall sshd[26847]: Failed password for invalid user anto from 106.12.189.91 port 50214 ssh2 Apr 26 03:15:59 firewall sshd[26937]: Invalid user rus from 106.12.189.91 ...	2020-04-26 16:25:12
177.44.88.168	attackbotsspam	T: f2b postfix aggressive 3x	2020-04-26 16:02:14
172.81.243.232	attackspam	Invalid user malaivongs from 172.81.243.232 port 55724	2020-04-26 16:11:10
94.29.77.250	attackbots	Unauthorised access (Apr 26) SRC=94.29.77.250 LEN=52 TTL=112 ID=22051 DF TCP DPT=445 WINDOW=8192 SYN	2020-04-26 16:09:40
111.231.225.162	attackspambots	Apr 26 09:56:14 vpn01 sshd[8095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.225.162 Apr 26 09:56:16 vpn01 sshd[8095]: Failed password for invalid user leyton from 111.231.225.162 port 40286 ssh2 ...	2020-04-26 16:24:31
45.67.233.191	attackbots	From retornos@aquivoceconsegue.live Sun Apr 26 00:51:43 2020 Received: from seguemx6.aquivoceconsegue.live ([45.67.233.191]:33884)	2020-04-26 15:53:56
190.85.140.93	attackspambots	(sshd) Failed SSH login from 190.85.140.93 (CO/Colombia/-): 5 in the last 3600 secs	2020-04-26 16:17:32

Recently Reported IPs

59.98.236.188	59.96.24.47	59.165.217.130	59.152.110.221
59.37.160.178	60.221.255.182	59.127.135.77	45.147.228.41
200.187.173.124	59.1.28.70	58.87.76.32	58.65.211.184
58.56.161.52	188.165.81.209	177.69.19.90	113.160.158.183
91.117.140.36	58.215.219.118	91.109.4.48	54.38.217.63