125.164.42.49 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
125.164.42.134	attackspambots	Bruteforce on SSH Honeypot	2020-01-04 20:52:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.164.42.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.164.42.49.			IN	A

;; AUTHORITY SECTION:
.			300	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 02:55:58 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 49.42.164.125.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 49.42.164.125.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.211.243.195	attackspam	Aug 3 14:44:45 vps200512 sshd\[14512\]: Invalid user steam from 80.211.243.195 Aug 3 14:44:45 vps200512 sshd\[14512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.243.195 Aug 3 14:44:47 vps200512 sshd\[14512\]: Failed password for invalid user steam from 80.211.243.195 port 46764 ssh2 Aug 3 14:51:06 vps200512 sshd\[14609\]: Invalid user rmsasi from 80.211.243.195 Aug 3 14:51:06 vps200512 sshd\[14609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.243.195	2019-08-04 05:32:35
191.53.221.40	attack	Aug 3 17:05:53 xeon postfix/smtpd[8655]: warning: unknown[191.53.221.40]: SASL PLAIN authentication failed: authentication failure	2019-08-04 05:20:03
172.81.237.242	attack	Aug 3 18:12:44 ArkNodeAT sshd\[5388\]: Invalid user donatas from 172.81.237.242 Aug 3 18:12:44 ArkNodeAT sshd\[5388\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.237.242 Aug 3 18:12:46 ArkNodeAT sshd\[5388\]: Failed password for invalid user donatas from 172.81.237.242 port 39576 ssh2	2019-08-04 05:31:43
46.166.151.47	attackbots	\[2019-08-03 16:52:59\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-03T16:52:59.994-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00446812111465",SessionID="0x7ff4d07952f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/58730",ACLName="no_extension_match" \[2019-08-03 16:53:22\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-03T16:53:22.135-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="1793260046406820923",SessionID="0x7ff4d0348688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/57022",ACLName="no_extension_match" \[2019-08-03 17:00:55\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-03T17:00:55.515-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00346812410249",SessionID="0x7ff4d02d8f48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/59433",ACLName="no_e	2019-08-04 05:12:30
191.53.117.56	attackspambots	failed_logins	2019-08-04 05:36:12
42.116.220.225	attack	Unauthorised access (Aug 3) SRC=42.116.220.225 LEN=40 TTL=47 ID=33122 TCP DPT=23 WINDOW=45235 SYN	2019-08-04 05:43:47
111.231.72.231	attackspam	Feb 22 15:16:39 motanud sshd\[25621\]: Invalid user sa from 111.231.72.231 port 46230 Feb 22 15:16:39 motanud sshd\[25621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.72.231 Feb 22 15:16:41 motanud sshd\[25621\]: Failed password for invalid user sa from 111.231.72.231 port 46230 ssh2	2019-08-04 05:38:24
220.142.32.11	attackspam	Honeypot attack, port: 445, PTR: 220-142-32-11.dynamic-ip.hinet.net.	2019-08-04 05:18:30
196.20.229.154	attack	Aug 3 23:51:48 ArkNodeAT sshd\[4634\]: Invalid user braun from 196.20.229.154 Aug 3 23:51:48 ArkNodeAT sshd\[4634\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.20.229.154 Aug 3 23:51:50 ArkNodeAT sshd\[4634\]: Failed password for invalid user braun from 196.20.229.154 port 40124 ssh2	2019-08-04 05:54:40
185.222.211.4	attackspambots	Aug 3 17:08:00 xeon postfix/smtpd[8987]: NOQUEUE: reject: RCPT from unknown[185.222.211.4]: 554 5.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=	2019-08-04 05:17:33
36.26.96.232	attackspambots	port scan and connect, tcp 23 (telnet)	2019-08-04 05:19:44
162.243.151.98	attackspam	Aug 3 09:50:01 dx0 kernel: Firewall: TCP_IN Blocked IN=eth0 SRC=162.243.151.98 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=54321 PROTO=TCP SPT=58897 DPT=544 WINDOW=65535 RES=0x00 SYN URGP=0	2019-08-04 05:32:10
92.234.114.90	attackbotsspam	Aug 3 07:29:15 *** sshd[29198]: Failed password for invalid user prueba from 92.234.114.90 port 55978 ssh2	2019-08-04 05:41:51
159.203.115.76	attackbotsspam	SSH bruteforce (Triggered fail2ban)	2019-08-04 05:24:12
110.17.188.30	attackspam	Aug 3 17:07:20 ns3042688 courier-imapd: LOGIN FAILED, method=PLAIN, ip=\[::ffff:110.17.188.30\] ...	2019-08-04 05:37:06

Recently Reported IPs

125.164.42.247	125.164.42.76	125.164.43.116	117.91.138.226
125.164.43.13	117.91.138.228	117.91.138.238	117.91.138.24
117.91.138.248	117.91.138.25	125.164.56.73	125.164.57.131
125.164.57.136	125.164.56.74	125.164.57.189	117.91.138.254
125.164.56.75	125.164.57.158	125.164.57.110	125.164.57.129