1.216.125.147 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea Republic of

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.216.125.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38410
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.216.125.147.			IN	A

;; AUTHORITY SECTION:
.			374	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092401 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 25 07:31:44 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 147.125.216.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 147.125.216.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
137.74.199.180	attackspambots	Oct 3 23:35:27 vps01 sshd[21518]: Failed password for root from 137.74.199.180 port 50120 ssh2	2019-10-04 05:53:29
190.14.37.227	attackspam	Oct 3 14:42:23 localhost kernel: [3865962.740768] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.37.227 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=79 ID=50759 DF PROTO=TCP SPT=64219 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 14:42:23 localhost kernel: [3865962.740808] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.37.227 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=79 ID=50759 DF PROTO=TCP SPT=64219 DPT=22 SEQ=712200143 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 16:53:00 localhost kernel: [3873799.157992] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.37.227 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=73 ID=37888 DF PROTO=TCP SPT=65173 DPT=22 SEQ=3979357090 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0	2019-10-04 05:40:06
49.88.112.78	attackbotsspam	Oct 4 00:00:28 tux-35-217 sshd\[31572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root Oct 4 00:00:30 tux-35-217 sshd\[31572\]: Failed password for root from 49.88.112.78 port 63078 ssh2 Oct 4 00:00:33 tux-35-217 sshd\[31572\]: Failed password for root from 49.88.112.78 port 63078 ssh2 Oct 4 00:00:35 tux-35-217 sshd\[31572\]: Failed password for root from 49.88.112.78 port 63078 ssh2 ...	2019-10-04 06:03:39
180.178.55.10	attackspam	Automatic report - Banned IP Access	2019-10-04 06:14:27
223.4.70.106	attackspam	Oct 3 11:34:30 sachi sshd\[8307\]: Invalid user pedebike from 223.4.70.106 Oct 3 11:34:30 sachi sshd\[8307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.4.70.106 Oct 3 11:34:33 sachi sshd\[8307\]: Failed password for invalid user pedebike from 223.4.70.106 port 52448 ssh2 Oct 3 11:38:18 sachi sshd\[8635\]: Invalid user admin from 223.4.70.106 Oct 3 11:38:18 sachi sshd\[8635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.4.70.106	2019-10-04 05:51:18
96.57.82.166	attackbotsspam	2019-10-03T20:52:51.747012abusebot-7.cloudsearch.cf sshd\[14547\]: Invalid user backuppc from 96.57.82.166 port 12162	2019-10-04 05:46:09
217.61.161.181	attackbotsspam	Oct 1 02:27:24 amida sshd[168503]: Failed password for r.r from 217.61.161.181 port 37933 ssh2 Oct 1 02:27:26 amida sshd[168503]: Failed password for r.r from 217.61.161.181 port 37933 ssh2 Oct 1 02:27:27 amida sshd[168503]: Failed password for r.r from 217.61.161.181 port 37933 ssh2 Oct 1 02:27:29 amida sshd[168503]: Failed password for r.r from 217.61.161.181 port 37933 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=217.61.161.181	2019-10-04 06:04:39
190.14.37.179	attack	" "	2019-10-04 05:48:46
151.80.36.24	attackbotsspam	Oct 3 22:52:41 nginx sshd[64254]: Connection from 151.80.36.24 port 38917 on 10.23.102.80 port 22 Oct 3 22:52:42 nginx sshd[64254]: Invalid user git from 151.80.36.24	2019-10-04 05:51:43
51.68.178.85	attack	Oct 3 22:52:35 srv206 sshd[3562]: Invalid user admin from 51.68.178.85 ...	2019-10-04 05:59:18
148.70.253.207	attackspam	HTTP: ThinkPHP CMS Getshell Vulnerability HTTP: SQL Injection Attempt Detected	2019-10-04 06:05:48
185.209.0.90	attackbots	Port Scan detected from 185.209.0.90 (LV/Latvia/-). 4 hits in the last 35 seconds	2019-10-04 06:09:46
106.13.26.40	attackbotsspam	Oct 3 11:33:56 kapalua sshd\[21260\]: Invalid user adina from 106.13.26.40 Oct 3 11:33:56 kapalua sshd\[21260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.40 Oct 3 11:33:59 kapalua sshd\[21260\]: Failed password for invalid user adina from 106.13.26.40 port 33174 ssh2 Oct 3 11:37:47 kapalua sshd\[21620\]: Invalid user matteo from 106.13.26.40 Oct 3 11:37:47 kapalua sshd\[21620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.40	2019-10-04 05:38:52
84.243.8.156	attack	(Oct 4) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 2) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 2) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 2) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 2...	2019-10-04 06:02:54
45.40.198.41	attack	Oct 4 00:41:23 server sshd\[20483\]: User root from 45.40.198.41 not allowed because listed in DenyUsers Oct 4 00:41:23 server sshd\[20483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.198.41 user=root Oct 4 00:41:25 server sshd\[20483\]: Failed password for invalid user root from 45.40.198.41 port 47463 ssh2 Oct 4 00:45:42 server sshd\[30215\]: User root from 45.40.198.41 not allowed because listed in DenyUsers Oct 4 00:45:42 server sshd\[30215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.198.41 user=root	2019-10-04 05:54:19

Recently Reported IPs

1.218.138.73	1.218.242.4	1.216.159.123	1.217.31.223
1.216.148.81	1.218.36.165	1.216.39.74	1.219.8.167
1.216.155.22	1.216.213.25	1.216.110.46	1.217.17.189
1.219.40.22	1.219.103.202	1.216.235.19	1.216.23.87
1.217.120.162	1.217.0.221	1.217.64.148	1.218.174.241