JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.5.21.2

42.5.21.2 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	UNICOM Liaoning Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.5.21.2

Whois 42.5.21.2

IP Abuse Reports for 42.5.21.2:

This IP address has been reported a total of 8 times from 7 distinct sources. 42.5.21.2 was first reported on February 19th 2021, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2023-07-31 22:57:57 (2 years ago)	ThreatBook Intelligence: Dynamic IP,Spam more details on https://threatbook.io/ip/42.5.21.2	SSH
🇳🇱 maxxsense	2023-05-05 04:02:40 (3 years ago)	(postfix-unknown) Failed postfix unknown login with username [redacted] from 42.5.21.2 (CN/China/-)	Hacking
Anonymous	2023-03-24 00:08:32 (3 years ago)	(smtpauth) Failed SMTP AUTH login from 42.5.21.2 (CN/China/-)	Brute-Force
Anonymous	2021-03-11 16:44:04 (5 years ago)	reported through recidive - multiple failed attempts(SSH)	Brute-Force Exploited Host SSH
Anonymous	2021-02-19 15:44:04 (5 years ago)	reported through recidive - multiple failed attempts(SSH)	Brute-Force Exploited Host SSH
🇩🇪 www.blocklist.de	2021-02-19 15:22:24 (5 years ago)	Lines containing failures of 42.5.21.2 Feb 19 21:01:51 kmh-vmh-001-fsn03 sshd[6501]: pam_unix(sshd:a ... show more Lines containing failures of 42.5.21.2 Feb 19 21:01:51 kmh-vmh-001-fsn03 sshd[6501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.21.2 user=r.r Feb 19 21:01:53 kmh-vmh-001-fsn03 sshd[6501]: Failed password for r.r from 42.5.21.2 port 59600 ssh2 Feb 19 21:01:54 kmh-vmh-001-fsn03 sshd[6501]: Received disconnect from 42.5.21.2 port 59600:11: Bye Bye [preauth] Feb 19 21:01:54 kmh-vmh-001-fsn03 sshd[6501]: Disconnected from authenticating user r.r 42.5.21.2 port 59600 [preauth] Feb 19 21:06:20 kmh-vmh-001-fsn03 sshd[25749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.21.2 user=r.r Feb 19 21:06:22 kmh-vmh-001-fsn03 sshd[25749]: Failed password for r.r from 42.5.21.2 port 49856 ssh2 Feb 19 21:06:24 kmh-vmh-001-fsn03 sshd[25749]: Received disconnect from 42.5.21.2 port 49856:11: Bye Bye [preauth] Feb 19 21:06:24 kmh-vmh-001-fsn03 sshd[25749]: Disconnected from authenticating user r........ ------------------------------ show less	FTP Brute-Force Hacking
🇺🇸 Kernel86	2021-02-19 15:17:03 (5 years ago)	Failed password for root from 42.5.21.2 port 57303 ssh2	Brute-Force SSH
🇩🇪 cvb	2021-02-19 15:14:07 (5 years ago)	Feb 19 21:10:03 vpn01 sshd[2397]: Failed password for root from 42.5.21.2 port 46788 ssh2 ...	Brute-Force SSH

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.242.226.19

🇩🇪 69.5.169.71

🇷🇺 45.195.221.26

🇭🇰 45.194.37.246

🇧🇷 45.183.70.66

🇧🇷 45.174.162.68

🇬🇧 35.203.211.65

🇬🇧 35.203.211.18

🇺🇸 200.10.43.74

🇺🇸 174.138.89.209

🇺🇸 170.106.180.55

🇺🇸 162.216.149.253

🇳🇱 160.119.69.14

🇺🇸 147.185.132.126

🇫🇷 104.28.196.53

🇮🇹 95.240.192.149

🇺🇦 92.244.102.254

🇸🇬 47.84.226.178

🇧🇷 45.169.200.254

🇧🇷 45.165.238.2