AbuseIPDB » 121.42.25.242

Check an IP Address, Domain Name, or Subnet

e.g. 3.239.119.61, microsoft.com, or 5.188.10.0/24

121.42.25.242 was found in our database!

This IP was reported 103 times. Confidence of Abuse is 58%: ?

58%

ISP	Aliyun Computing Co. Ltd
Usage Type	Data Center/Web Hosting/Transit
Domain Name	aliyun.com
Country	China
City	Qingdao, Shandong

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 121.42.25.242

Whois 121.42.25.242

IP Abuse Reports for 121.42.25.242:

This IP address has been reported a total of 103 times from 42 distinct sources. 121.42.25.242 was first reported on May 25th 2022, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
Anonymous	06 Jan 2023	Trawling for Open Source CMS user accounts	Hacking Brute-Force
corthorn	29 Dec 2022	121.42.25.242 - - [29/Dec/2022:08:54:14 +0100] "POST /xmlrpc.php HTTP/1.1" 200 2820 "-" "Mozilla/5.0 ... show more121.42.25.242 - - [29/Dec/2022:08:54:14 +0100] "POST /xmlrpc.php HTTP/1.1" 200 2820 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.5) Gecko/20041107 Firefox/1.0" ... show less	Brute-Force SSH
rh24	28 Dec 2022	(wordpress-user-enum) Failed wordpress-user-enum trigger from 121.42.25.242 (CN/China/-): (CF_ENABL ... show more(wordpress-user-enum) Failed wordpress-user-enum trigger from 121.42.25.242 (CN/China/-): (CF_ENABLE) show less	Brute-Force
ANDREAS LYTOS	27 Dec 2022	(wordpress-user-enum) Failed wordpress-user-enum trigger from 121.42.25.242 (CN/China/-)	Brute-Force
SpaceHost-Server	23 Dec 2022	121.42.25.242 - - [24/Dec/2022:01:23:41 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 ... show more121.42.25.242 - - [24/Dec/2022:01:23:41 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.10) Gecko/20050716 Firefox/1.0.6" 121.42.25.242 - - [24/Dec/2022:01:24:47 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.132 Safari/537.36" 121.42.25.242 - - [24/Dec/2022:01:25:24 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" show less	Hacking Web App Attack
SpaceHost-Server	23 Dec 2022	121.42.25.242 - - [23/Dec/2022:21:24:54 +0100] "POST /xmlrpc.php HTTP/1.0" 200 764 "-" "Mozilla/5.0 ... show more121.42.25.242 - - [23/Dec/2022:21:24:54 +0100] "POST /xmlrpc.php HTTP/1.0" 200 764 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" 121.42.25.242 - - [23/Dec/2022:21:25:11 +0100] "POST /xmlrpc.php HTTP/1.0" 200 764 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.186 Safari/537.36" 121.42.25.242 - - [23/Dec/2022:21:26:30 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows NT 5.1; rv:7.0.1) Gecko/20100101 Firefox/7.0.1" show less	Hacking Web App Attack
swehosting.se	23 Dec 2022	Time: Fri Dec 23 07:43:29 2022 +0100 IP: 121.42.25.242 (CN/China/-) Failures ... show moreTime: Fri Dec 23 07:43:29 2022 +0100 IP: 121.42.25.242 (CN/China/-) Failures: 10 (XMLRPC) Interval: 3600 seconds Blocked: Permanent Block [LF_CUSTOMTRIGGER] show less	Brute-Force Web App Attack
SpaceHost-Server	23 Dec 2022	121.42.25.242 - - [23/Dec/2022:07:19:24 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 ... show more121.42.25.242 - - [23/Dec/2022:07:19:24 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 121.42.25.242 - - [23/Dec/2022:07:20:07 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.104 Safari/537.36" 121.42.25.242 - - [23/Dec/2022:07:20:59 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36" show less	Hacking Web App Attack
SpaceHost-Server	22 Dec 2022	121.42.25.242 - - [23/Dec/2022:03:46:37 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 ... show more121.42.25.242 - - [23/Dec/2022:03:46:37 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.1 (KHTML, like Gecko) Chrome/21.0.1180.83 Safari/537.1" 121.42.25.242 - - [23/Dec/2022:03:49:37 +0100] "POST /xmlrpc.php HTTP/1.0" 200 764 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 121.42.25.242 - - [23/Dec/2022:03:49:48 +0100] "POST /xmlrpc.php HTTP/1.0" 200 764 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:54.0) Gecko/20100101 Firefox/54.0" show less	Hacking Web App Attack
maxxsense	22 Dec 2022	(wordpress) Failed wordpress login from 121.42.25.242 (CN/China/-)	Brute-Force
Leo Lemos	22 Dec 2022	121.42.25.242 - - [22/Dec/2022:12:17:33 -0300] "POST /xmlrpc.php HTTP/1.1" 200 6377 "-" "Mozilla/5.0 ... show more121.42.25.242 - - [22/Dec/2022:12:17:33 -0300] "POST /xmlrpc.php HTTP/1.1" 200 6377 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0" 121.42.25.242 - - [22/Dec/2022:12:29:35 -0300] "POST /xmlrpc.php HTTP/1.1" 200 6377 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:58.0) Gecko/20100101 Firefox/58.0" 121.42.25.242 - - [22/Dec/2022:12:36:46 -0300] "POST /xmlrpc.php HTTP/1.1" 200 6377 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 121.42.25.242 - - [22/Dec/2022:12:37:18 -0300] "POST /xmlrpc.php HTTP/1.1" 200 6377 "-" "Mozilla/5.0 (iPod; CPU iPhone OS 14_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/91.0.4472.80 Mobile/15E148 Safari/604.1" show less	Brute-Force Web App Attack
SpaceHost-Server	22 Dec 2022	121.42.25.242 - - [22/Dec/2022:15:45:11 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 ... show more121.42.25.242 - - [22/Dec/2022:15:45:11 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0" 121.42.25.242 - - [22/Dec/2022:15:46:45 +0100] "POST /xmlrpc.php HTTP/1.0" 200 5963 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0" 121.42.25.242 - - [22/Dec/2022:15:46:54 +0100] "POST /xmlrpc.php HTTP/1.0" 200 733 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.93 Safari/537.36" show less	Hacking Web App Attack
paradigma-software.de	22 Dec 2022	Dec 15 09:19:15 s15260644 wordpress(www.skpwerbung.de)[652967]: Blocked user enumeration attempt fro ... show moreDec 15 09:19:15 s15260644 wordpress(www.skpwerbung.de)[652967]: Blocked user enumeration attempt from 121.42.25.242 Dec 15 09:19:17 s15260644 wordpress(www.skpwerbung.de)[652968]: Blocked user enumeration attempt from 121.42.25.242 Dec 15 09:19:18 s15260644 wordpress(www.skpwerbung.de)[652940]: Blocked user enumeration attempt from 121.42.25.242 show less	Hacking Web App Attack
maxxsense	20 Dec 2022	(wordpress) Failed wordpress login from 121.42.25.242 (CN/China/-)	Brute-Force
eveng	20 Dec 2022	(wordpress) Failed wordpress login from 121.42.25.242 (CN/China/-)	Brute-Force