125.99.2.19 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
125.99.242.202	attack	Invalid user administrator from 125.99.242.202 port 39484	2020-10-10 23:33:33
125.99.242.202	attackbotsspam	5x Failed Password	2020-10-10 15:23:27
125.99.242.202	attackbotsspam	$f2bV_matches	2020-10-09 08:05:45
125.99.242.202	attack	$f2bV_matches	2020-10-09 00:40:52
125.99.242.202	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-08 16:37:15
125.99.226.79	attack	DATE:2020-09-18 19:00:24, IP:125.99.226.79, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-09-20 00:20:03
125.99.226.79	attackbotsspam	DATE:2020-09-18 19:00:24, IP:125.99.226.79, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-09-19 16:07:01
125.99.226.79	attack	DATE:2020-09-18 19:00:24, IP:125.99.226.79, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-09-19 07:41:33
125.99.228.17	attackbots	Sep 17 18:58:12 deneb sshd\[26945\]: Did not receive identification string from 125.99.228.17Sep 17 18:58:25 deneb sshd\[26947\]: Did not receive identification string from 125.99.228.17Sep 17 18:58:39 deneb sshd\[26948\]: Did not receive identification string from 125.99.228.17 ...	2020-09-19 00:51:07
125.99.228.17	attackbotsspam	Sep 17 18:58:12 deneb sshd\[26945\]: Did not receive identification string from 125.99.228.17Sep 17 18:58:25 deneb sshd\[26947\]: Did not receive identification string from 125.99.228.17Sep 17 18:58:39 deneb sshd\[26948\]: Did not receive identification string from 125.99.228.17 ...	2020-09-18 16:53:13
125.99.228.17	attackspam	Sep 17 18:58:12 deneb sshd\[26945\]: Did not receive identification string from 125.99.228.17Sep 17 18:58:25 deneb sshd\[26947\]: Did not receive identification string from 125.99.228.17Sep 17 18:58:39 deneb sshd\[26948\]: Did not receive identification string from 125.99.228.17 ...	2020-09-18 07:08:23
125.99.237.154	attack	DATE:2020-09-17 02:21:09, IP:125.99.237.154, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-17 18:47:24
125.99.237.154	attack	DATE:2020-09-17 02:21:09, IP:125.99.237.154, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-17 09:59:50
125.99.245.20	attackbotsspam	GPON Home Routers Remote Code Execution Vulnerability	2020-09-16 21:24:31
125.99.245.20	attackbots	GPON Home Routers Remote Code Execution Vulnerability	2020-09-16 13:54:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.99.2.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9076
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.99.2.19.			IN	A

;; AUTHORITY SECTION:
.			504	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 10:57:41 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 19.2.99.125.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 19.2.99.125.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.207.33.2	attack	Dec 3 14:20:53 marvibiene sshd[22998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.33.2 user=root Dec 3 14:20:56 marvibiene sshd[22998]: Failed password for root from 49.207.33.2 port 56968 ssh2 Dec 3 14:30:22 marvibiene sshd[23126]: Invalid user user from 49.207.33.2 port 39532 ...	2019-12-03 22:58:57
27.254.90.106	attackspam	Dec 3 16:23:01 markkoudstaal sshd[7626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.90.106 Dec 3 16:23:03 markkoudstaal sshd[7626]: Failed password for invalid user ilysa from 27.254.90.106 port 50323 ssh2 Dec 3 16:29:42 markkoudstaal sshd[8266]: Failed password for root from 27.254.90.106 port 54596 ssh2	2019-12-03 23:32:48
164.132.81.106	attackbotsspam	Dec 3 16:11:03 vps666546 sshd\[12022\]: Invalid user platinum from 164.132.81.106 port 44090 Dec 3 16:11:03 vps666546 sshd\[12022\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.81.106 Dec 3 16:11:05 vps666546 sshd\[12022\]: Failed password for invalid user platinum from 164.132.81.106 port 44090 ssh2 Dec 3 16:16:56 vps666546 sshd\[12278\]: Invalid user mysql from 164.132.81.106 port 57176 Dec 3 16:16:56 vps666546 sshd\[12278\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.81.106 ...	2019-12-03 23:23:04
222.186.175.161	attackspam	Dec 3 10:36:15 sshd: Connection from 222.186.175.161 port 33520 Dec 3 10:36:16 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Dec 3 10:36:18 sshd: Failed password for root from 222.186.175.161 port 33520 ssh2 Dec 3 10:36:20 sshd: Received disconnect from 222.186.175.161: 11: [preauth]	2019-12-03 23:06:10
103.27.238.107	attack	Dec 3 14:21:48 localhost sshd\[12886\]: Invalid user FuwuqiXP from 103.27.238.107 port 47630 Dec 3 14:21:48 localhost sshd\[12886\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.238.107 Dec 3 14:21:49 localhost sshd\[12886\]: Failed password for invalid user FuwuqiXP from 103.27.238.107 port 47630 ssh2 Dec 3 14:30:11 localhost sshd\[13124\]: Invalid user smecherul from 103.27.238.107 port 58524 Dec 3 14:30:11 localhost sshd\[13124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.238.107 ...	2019-12-03 23:18:11
190.210.222.2	attackbotsspam	Unauthorized connection attempt from IP address 190.210.222.2 on Port 445(SMB)	2019-12-03 23:24:05
192.227.127.94	attack	Attack, like DDOS, Brute-Force, Port Scan, Hack, etc.	2019-12-03 23:06:42
106.13.71.209	attackbots	PHP DIESCAN Information Disclosure Vulnerability	2019-12-03 23:21:01
159.203.165.197	attackspambots	Dec 3 04:54:22 kmh-wmh-003-nbg03 sshd[15059]: Invalid user server from 159.203.165.197 port 38120 Dec 3 04:54:22 kmh-wmh-003-nbg03 sshd[15059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.165.197 Dec 3 04:54:24 kmh-wmh-003-nbg03 sshd[15059]: Failed password for invalid user server from 159.203.165.197 port 38120 ssh2 Dec 3 04:54:24 kmh-wmh-003-nbg03 sshd[15059]: Received disconnect from 159.203.165.197 port 38120:11: Bye Bye [preauth] Dec 3 04:54:24 kmh-wmh-003-nbg03 sshd[15059]: Disconnected from 159.203.165.197 port 38120 [preauth] Dec 3 05:04:04 kmh-wmh-003-nbg03 sshd[16188]: Invalid user skibba from 159.203.165.197 port 59122 Dec 3 05:04:04 kmh-wmh-003-nbg03 sshd[16188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.165.197 Dec 3 05:04:06 kmh-wmh-003-nbg03 sshd[16188]: Failed password for invalid user skibba from 159.203.165.197 port 59122 ssh2 Dec 3 05:15:........ -------------------------------	2019-12-03 23:09:02
77.222.98.101	attackbotsspam	Unauthorized connection attempt from IP address 77.222.98.101 on Port 445(SMB)	2019-12-03 23:05:19
110.145.25.35	attackbotsspam	Dec 3 09:54:39 plusreed sshd[18068]: Invalid user dewey from 110.145.25.35 ...	2019-12-03 23:14:35
222.186.175.182	attackspam	Dec 3 20:31:15 gw1 sshd[30043]: Failed password for root from 222.186.175.182 port 15600 ssh2 Dec 3 20:31:27 gw1 sshd[30043]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 15600 ssh2 [preauth] ...	2019-12-03 23:33:54
37.49.230.29	attackspam	\[2019-12-03 10:18:51\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-03T10:18:51.801-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="706810011441975359003",SessionID="0x7f26c445f668",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.29/49415",ACLName="no_extension_match" \[2019-12-03 10:20:03\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-03T10:20:03.330-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="7010810011441975359003",SessionID="0x7f26c4931b18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.29/58922",ACLName="no_extension_match" \[2019-12-03 10:21:07\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-03T10:21:07.749-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="707810011441975359003",SessionID="0x7f26c4022278",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.29/63180"	2019-12-03 23:25:26
37.252.74.199	attack	Unauthorized connection attempt from IP address 37.252.74.199 on Port 445(SMB)	2019-12-03 23:11:22
14.207.78.152	attack	firewall-block, port(s): 9001/tcp	2019-12-03 23:42:35

Recently Reported IPs

125.99.72.126	126.1.28.13	125.99.76.138	126.108.88.246
126.107.148.15	126.111.79.135	126.172.126.122	126.161.211.185
126.200.154.65	125.99.221.47	126.227.226.5	126.23.107.51
126.213.216.94	126.249.1.174	126.26.93.53	126.31.244.225
126.48.158.24	126.51.110.220	126.34.244.226	126.61.168.152