JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 125.76.157.242

125.76.157.242 was found in our database!

This IP was reported 380 times. Confidence of Abuse is 0%: ?

ISP	CHINANET Shanxi(SN) province network
Usage Type	Commercial
ASN	AS134768
Domain Name	xa.sn.cn
Country	🇨🇳 China
City	Xi'an, Shaanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 125.76.157.242

Whois 125.76.157.242

IP Abuse Reports for 125.76.157.242:

This IP address has been reported a total of 380 times from 240 distinct sources. 125.76.157.242 was first reported on June 6th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 paltaman	2024-06-28 00:20:05 (1 year ago)	2024-06-27T20:12:28.365363devel sshd[16368]: Failed password for invalid user testuser from 125.76.1 ... show more 2024-06-27T20:12:28.365363devel sshd[16368]: Failed password for invalid user testuser from 125.76.157.242 port 51834 ssh2 2024-06-27T20:20:02.421253devel sshd[21330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.76.157.242 user=root 2024-06-27T20:20:05.058928devel sshd[21330]: Failed password for root from 125.76.157.242 port 49204 ssh2 show less	Brute-Force SSH
Anonymous	2024-06-27 23:51:42 (1 year ago)	$f2bV_matches	Brute-Force
🇬🇧 paradoxnetworks	2024-06-27 23:18:35 (1 year ago)	2024-06-27T23:11:04.415526+00:00 edge-thn-lhr01.int.pdx.net.uk sshd[556043]: Invalid user test7 from ... show more 2024-06-27T23:11:04.415526+00:00 edge-thn-lhr01.int.pdx.net.uk sshd[556043]: Invalid user test7 from 125.76.157.242 port 35542 2024-06-27T23:13:46.557036+00:00 edge-thn-lhr01.int.pdx.net.uk sshd[556186]: Invalid user ubuntu from 125.76.157.242 port 45464 2024-06-27T23:18:34.525586+00:00 edge-thn-lhr01.int.pdx.net.uk sshd[557173]: Invalid user oracle from 125.76.157.242 port 57674 ... show less	Brute-Force SSH
🇪🇪 Samuil Warshan	2024-06-27 22:46:51 (1 year ago)	F2B blocked SSH BF	Brute-Force SSH
Anonymous	2024-06-27 22:46:29 (1 year ago)	2024-06-28T00:39:06.773001v22019037947384217 sshd[5724]: Invalid user admin from 125.76.157.242 port ... show more 2024-06-28T00:39:06.773001v22019037947384217 sshd[5724]: Invalid user admin from 125.76.157.242 port 47144 2024-06-28T00:39:06.942746v22019037947384217 sshd[5724]: Disconnected from 125.76.157.242 port 47144 [preauth] 2024-06-28T00:46:28.181185v22019037947384217 sshd[5744]: Disconnected from 125.76.157.242 port 35414 [preauth] ... show less	Brute-Force SSH
🇩🇪 Dominik Lysiak	2024-06-27 21:13:56 (1 year ago)	2024-06-27T23:12:43.027676+02:00 main sshd[3878541]: Failed password for root from 125.76.157.242 po ... show more 2024-06-27T23:12:43.027676+02:00 main sshd[3878541]: Failed password for root from 125.76.157.242 port 33700 ssh2 2024-06-27T23:13:18.059862+02:00 main sshd[3878953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.76.157.242 user=root 2024-06-27T23:13:20.190154+02:00 main sshd[3878953]: Failed password for root from 125.76.157.242 port 41980 ssh2 2024-06-27T23:13:53.437235+02:00 main sshd[3879430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.76.157.242 user=root 2024-06-27T23:13:55.378324+02:00 main sshd[3879430]: Failed password for root from 125.76.157.242 port 50262 ssh2 ... show less	Brute-Force SSH
🇵🇱 zmb.pl	2024-06-27 12:01:02 (1 year ago)	Jun 27 14:00:50 srv0 sshd\[25485\]: Invalid user oracle from 125.76.157.242 port 51834 Jun 27 14:00: ... show more Jun 27 14:00:50 srv0 sshd\[25485\]: Invalid user oracle from 125.76.157.242 port 51834 Jun 27 14:00:50 srv0 sshd\[25485\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.76.157.242 Jun 27 14:00:52 srv0 sshd\[25485\]: Failed password for invalid user oracle from 125.76.157.242 port 51834 ssh2 ... show less	Brute-Force SSH
🇫🇮 diego021	2024-06-27 10:43:48 (1 year ago)	2024-06-27T05:43:45.296164-05:00 debian-hel1 sshd[167392]: Invalid user user from 125.76.157.242 por ... show more 2024-06-27T05:43:45.296164-05:00 debian-hel1 sshd[167392]: Invalid user user from 125.76.157.242 port 35106 2024-06-27T05:43:45.300005-05:00 debian-hel1 sshd[167392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.76.157.242 2024-06-27T05:43:47.526661-05:00 debian-hel1 sshd[167392]: Failed password for invalid user user from 125.76.157.242 port 35106 ssh2 ... show less	Brute-Force SSH
🇩🇪 ghostwarriors	2024-06-27 09:20:54 (1 year ago)	Unauthorized connection attempt detected, SSH Brute-Force	Port Scan Brute-Force SSH
Anonymous	2024-06-27 08:42:32 (1 year ago)	Scenario: crowdsecurity/ssh-slow-bf	Brute-Force SSH
🇺🇸 drewf.ink	2024-06-27 08:34:49 (1 year ago)	[08:34] Tried to connect to SSH on port 22 but didn't have a valid header (port scanner?)	Brute-Force SSH
🇺🇸 en0	2024-06-27 08:23:37 (1 year ago)	2024-06-27 03:23:37,168 fail2ban.actions [986]: NOTICE [sshd] Ban 125.76.157.242	Brute-Force SSH
🇫🇮 Antti	2024-06-27 08:16:37 (1 year ago)	2024-06-27T08:15:40.204903+00:00 melon sshd[2517347]: Invalid user user from 125.76.157.242 port 483 ... show more 2024-06-27T08:15:40.204903+00:00 melon sshd[2517347]: Invalid user user from 125.76.157.242 port 48314 2024-06-27T08:16:05.948646+00:00 melon sshd[2517797]: Connection from 125.76.157.242 port 53858 on 65.108.201.187 port 22 rdomain "" 2024-06-27T08:16:07.378141+00:00 melon sshd[2517797]: User root from 125.76.157.242 not allowed because none of user's groups are listed in AllowGroups 2024-06-27T08:16:35.594674+00:00 melon sshd[2518323]: Connection from 125.76.157.242 port 59404 on 65.108.201.187 port 22 rdomain "" 2024-06-27T08:16:37.046154+00:00 melon sshd[2518323]: User root from 125.76.157.242 not allowed because none of user's groups are listed in AllowGroups show less	Brute-Force SSH
🇺🇸 trobotham	2024-06-27 04:54:36 (1 year ago)	(sshd) Failed SSH login from 125.76.157.242 (CN/China/-): 5 in the last 3600 secs; Ports: 22; Direct ... show more (sshd) Failed SSH login from 125.76.157.242 (CN/China/-): 5 in the last 3600 secs; Ports: 22; Direction: in; Trigger: LF_SSHD; Logs: Jun 27 00:38:20 w sshd[1871694]: Invalid user hadoop from 125.76.157.242 port 35952 Jun 27 00:48:27 w sshd[1874714]: Invalid user deployer from 125.76.157.242 port 45854 Jun 27 00:49:47 w sshd[1874916]: Invalid user steam from 125.76.157.242 port 34920 Jun 27 00:54:03 w sshd[1876453]: Invalid user oracle from 125.76.157.242 port 58588 Jun 27 00:54:32 w sshd[1876527]: Invalid user deployer from 125.76.157.242 port 36122 show less	Port Scan
Anonymous	2024-06-27 04:16:02 (1 year ago)	Jun 26 23:15:13 jumarpab sshd[146261]: Failed password for invalid user amir from 125.76.157.242 por ... show more Jun 26 23:15:13 jumarpab sshd[146261]: Failed password for invalid user amir from 125.76.157.242 port 48362 ssh2 Jun 26 23:15:59 jumarpab sshd[146374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.76.157.242 user=root Jun 26 23:16:02 jumarpab sshd[146374]: Failed password for root from 125.76.157.242 port 59042 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 380 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 72.10.32.138

🇩🇪 213.209.159.217

🇳🇱 185.136.15.10

🇺🇸 167.234.120.71

🇯🇵 165.154.231.236

🇸🇬 114.119.147.181

🇫🇷 75.119.132.109

🇳🇱 45.148.10.157

🇺🇸 45.79.114.248

🇸🇬 4.194.131.131

🇸🇬 4.194.45.174

🇳🇱 204.76.203.219

🇨🇳 124.117.195.8

🇮🇩 36.74.218.130

🇮🇳 4.186.56.66

🇧🇷 168.196.144.234

🇺🇸 165.154.162.98

🇷🇺 82.151.98.46

🇺🇸 54.242.67.128

🇲🇼 41.75.114.30