125.164.2.238 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
125.164.232.200	attackspambots	Brute force blocker - service: proftpd1, proftpd2 - aantal: 164 - Sun Sep 2 15:45:18 2018	2020-09-26 06:43:20
125.164.232.200	attackspam	Brute force blocker - service: proftpd1, proftpd2 - aantal: 164 - Sun Sep 2 15:45:18 2018	2020-09-25 23:47:50
125.164.232.200	attackspam	Brute force blocker - service: proftpd1, proftpd2 - aantal: 164 - Sun Sep 2 15:45:18 2018	2020-09-25 15:24:44
125.164.233.50	attackspambots	Automatic report - Port Scan Attack	2020-08-26 16:50:09
125.164.232.41	attack	Unauthorized connection attempt from IP address 125.164.232.41 on Port 445(SMB)	2020-07-27 03:04:56
125.164.234.148	attack	Unauthorized connection attempt from IP address 125.164.234.148 on Port 445(SMB)	2020-07-20 21:57:41
125.164.21.182	attackbotsspam	Tried sshing with brute force.	2020-07-20 14:39:23
125.164.233.229	attackspam	Automatic report - Port Scan Attack	2020-07-17 07:27:18
125.164.244.234	attack	Automatic report - Port Scan Attack	2020-05-12 01:18:46
125.164.238.157	attackspambots	Unauthorized connection attempt from IP address 125.164.238.157 on Port 445(SMB)	2020-03-25 10:42:46
125.164.248.16	attackbotsspam	1582753694 - 02/26/2020 22:48:14 Host: 125.164.248.16/125.164.248.16 Port: 445 TCP Blocked	2020-02-27 07:39:01
125.164.224.174	attackbots	20/2/25@23:55:58: FAIL: Alarm-Network address from=125.164.224.174 20/2/25@23:55:58: FAIL: Alarm-Network address from=125.164.224.174 ...	2020-02-26 17:35:47
125.164.252.153	attack	1582615473 - 02/25/2020 08:24:33 Host: 125.164.252.153/125.164.252.153 Port: 445 TCP Blocked	2020-02-25 18:07:15
125.164.235.132	attack	Automatic report - Port Scan Attack	2020-02-09 11:04:49
125.164.218.211	attackspam	Feb 7 15:09:16 odroid64 sshd\[20660\]: User ftp from 125.164.218.211 not allowed because not listed in AllowUsers Feb 7 15:09:16 odroid64 sshd\[20660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.164.218.211 user=ftp ...	2020-02-07 22:50:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.164.2.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.164.2.238.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 02:53:40 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 238.2.164.125.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 238.2.164.125.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.157.219.83	attackbots	Failed password for root from 123.157.219.83 port 26019 ssh2	2020-08-04 14:51:47
119.45.142.15	attackspambots	Aug 4 05:49:42 serwer sshd\[18799\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root Aug 4 05:49:43 serwer sshd\[18799\]: Failed password for root from 119.45.142.15 port 52674 ssh2 Aug 4 05:55:11 serwer sshd\[19423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root ...	2020-08-04 15:00:22
180.101.221.152	attack	$f2bV_matches	2020-08-04 15:20:13
193.57.40.11	attackbotsspam	Honeypot hit.	2020-08-04 15:13:10
87.251.74.30	attackspambots	Bruteforce SSH attempt	2020-08-04 15:19:34
122.4.249.171	attackspambots	Aug 4 07:34:48 h2646465 sshd[28680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.4.249.171 user=root Aug 4 07:34:49 h2646465 sshd[28680]: Failed password for root from 122.4.249.171 port 38788 ssh2 Aug 4 07:43:45 h2646465 sshd[29982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.4.249.171 user=root Aug 4 07:43:47 h2646465 sshd[29982]: Failed password for root from 122.4.249.171 port 33388 ssh2 Aug 4 07:49:03 h2646465 sshd[30607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.4.249.171 user=root Aug 4 07:49:05 h2646465 sshd[30607]: Failed password for root from 122.4.249.171 port 38699 ssh2 Aug 4 07:54:04 h2646465 sshd[31248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.4.249.171 user=root Aug 4 07:54:06 h2646465 sshd[31248]: Failed password for root from 122.4.249.171 port 44012 ssh2 Aug 4 07:59:12 h2646465 ssh	2020-08-04 14:53:09
122.165.149.75	attack	Port Scan detected from 122.165.149.75 (IN/India/Tamil Nadu/Chennai (Basha Garden)/abts-tn-static-075.149.165.122.airtelbroadband.in). 4 hits in the last 15 seconds	2020-08-04 15:08:01
39.78.98.153	attackbots	(ftpd) Failed FTP login from 39.78.98.153 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 4 10:31:56 ir1 pure-ftpd: (?@39.78.98.153) [WARNING] Authentication failed for user [anonymous]	2020-08-04 15:18:59
49.233.155.170	attackbotsspam	2020-08-04T06:11:13.593440shield sshd\[6873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.155.170 user=root 2020-08-04T06:11:15.750393shield sshd\[6873\]: Failed password for root from 49.233.155.170 port 59768 ssh2 2020-08-04T06:15:12.757474shield sshd\[7351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.155.170 user=root 2020-08-04T06:15:15.055323shield sshd\[7351\]: Failed password for root from 49.233.155.170 port 43874 ssh2 2020-08-04T06:19:14.545469shield sshd\[7760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.155.170 user=root	2020-08-04 14:45:39
51.75.202.218	attackbotsspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-04T03:53:16Z and 2020-08-04T04:02:18Z	2020-08-04 15:02:39
47.52.39.76	attackbotsspam	Aug 4 05:52:37 web-main sshd[779221]: Failed password for root from 47.52.39.76 port 45302 ssh2 Aug 4 05:55:25 web-main sshd[779226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.52.39.76 user=root Aug 4 05:55:27 web-main sshd[779226]: Failed password for root from 47.52.39.76 port 33364 ssh2	2020-08-04 14:48:58
92.129.147.244	attackspambots	Lines containing failures of 92.129.147.244 Aug 3 14:48:57 newdogma sshd[29553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.129.147.244 user=r.r Aug 3 14:48:58 newdogma sshd[29553]: Failed password for r.r from 92.129.147.244 port 38328 ssh2 Aug 3 14:48:59 newdogma sshd[29553]: Received disconnect from 92.129.147.244 port 38328:11: Bye Bye [preauth] Aug 3 14:48:59 newdogma sshd[29553]: Disconnected from authenticating user r.r 92.129.147.244 port 38328 [preauth] Aug 3 14:54:06 newdogma sshd[29830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.129.147.244 user=r.r Aug 3 14:54:09 newdogma sshd[29830]: Failed password for r.r from 92.129.147.244 port 51168 ssh2 Aug 3 14:54:10 newdogma sshd[29830]: Received disconnect from 92.129.147.244 port 51168:11: Bye Bye [preauth] Aug 3 14:54:10 newdogma sshd[29830]: Disconnected from authenticating user r.r 92.129.147.244 port 51168........ ------------------------------	2020-08-04 15:21:07
45.4.168.57	attack	Aug 3 22:55:31 mailman postfix/smtpd[2703]: warning: unknown[45.4.168.57]: SASL PLAIN authentication failed: authentication failure	2020-08-04 14:46:04
179.215.78.250	attackspam	Port Scan detected from 179.215.78.250 (BR/Brazil/São Paulo/São Paulo/b3d74efa.virtua.com.br). 4 hits in the last 206 seconds	2020-08-04 14:57:42
51.68.88.26	attack	Aug 4 07:47:50 PorscheCustomer sshd[24969]: Failed password for root from 51.68.88.26 port 57980 ssh2 Aug 4 07:50:19 PorscheCustomer sshd[25073]: Failed password for root from 51.68.88.26 port 41616 ssh2 ...	2020-08-04 15:06:57

Recently Reported IPs

125.164.2.24	125.164.2.92	117.90.5.118	125.164.20.114
125.164.20.101	125.164.20.135	125.164.20.151	125.164.20.157
125.164.20.189	125.164.20.188	125.164.20.216	125.164.20.175
125.164.20.230	125.164.20.247	125.164.20.5	117.90.5.12
125.164.20.64	125.164.202.9	125.164.204.14	125.164.204.237