172.94.125.10 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.94.125.132	attackspam	Oct 30 11:21:11 auw2 sshd\[26037\]: Invalid user passwd from 172.94.125.132 Oct 30 11:21:11 auw2 sshd\[26037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.125.132 Oct 30 11:21:13 auw2 sshd\[26037\]: Failed password for invalid user passwd from 172.94.125.132 port 49100 ssh2 Oct 30 11:25:38 auw2 sshd\[26399\]: Invalid user mailboy from 172.94.125.132 Oct 30 11:25:38 auw2 sshd\[26399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.125.132	2019-10-31 05:28:06
172.94.125.135	attackspam	$f2bV_matches	2019-10-31 02:05:03
172.94.125.131	attackbots	<6 unauthorized SSH connections	2019-10-22 17:02:27
172.94.125.131	attackbotsspam	2019-10-21T12:55:45.129458hub.schaetter.us sshd\[17127\]: Invalid user cmonin from 172.94.125.131 port 34380 2019-10-21T12:55:45.139506hub.schaetter.us sshd\[17127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.125.131 2019-10-21T12:55:47.438153hub.schaetter.us sshd\[17127\]: Failed password for invalid user cmonin from 172.94.125.131 port 34380 ssh2 2019-10-21T12:59:56.239865hub.schaetter.us sshd\[17169\]: Invalid user net123 from 172.94.125.131 port 44220 2019-10-21T12:59:56.248332hub.schaetter.us sshd\[17169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.125.131 ...	2019-10-21 21:22:29
172.94.125.147	attackbotsspam	Oct 21 08:05:01 SilenceServices sshd[32317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.125.147 Oct 21 08:05:03 SilenceServices sshd[32317]: Failed password for invalid user usertest from 172.94.125.147 port 44222 ssh2 Oct 21 08:08:53 SilenceServices sshd[937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.125.147	2019-10-21 14:11:19
172.94.125.136	attackbotsspam	$f2bV_matches	2019-10-20 22:16:36
172.94.125.142	attackbotsspam	Oct 18 12:11:02 game-panel sshd[5550]: Failed password for root from 172.94.125.142 port 35132 ssh2 Oct 18 12:15:21 game-panel sshd[5682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.125.142 Oct 18 12:15:23 game-panel sshd[5682]: Failed password for invalid user leoay from 172.94.125.142 port 51690 ssh2	2019-10-18 22:37:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.94.125.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47197
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.94.125.10.			IN	A

;; AUTHORITY SECTION:
.			409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091500 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 01:27:30 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 10.125.94.172.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 10.125.94.172.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.173.183	attackbots	Jul 9 18:52:07 PorscheCustomer sshd[6800]: Failed password for root from 222.186.173.183 port 58984 ssh2 Jul 9 18:52:20 PorscheCustomer sshd[6800]: Failed password for root from 222.186.173.183 port 58984 ssh2 Jul 9 18:52:20 PorscheCustomer sshd[6800]: error: maximum authentication attempts exceeded for root from 222.186.173.183 port 58984 ssh2 [preauth] ...	2020-07-10 00:54:51
116.6.234.141	attackbots	2020-07-09T20:11:29.693599mail.standpoint.com.ua sshd[19816]: Invalid user lemwal from 116.6.234.141 port 34037 2020-07-09T20:11:29.696138mail.standpoint.com.ua sshd[19816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.6.234.141 2020-07-09T20:11:29.693599mail.standpoint.com.ua sshd[19816]: Invalid user lemwal from 116.6.234.141 port 34037 2020-07-09T20:11:32.510052mail.standpoint.com.ua sshd[19816]: Failed password for invalid user lemwal from 116.6.234.141 port 34037 ssh2 2020-07-09T20:13:54.394438mail.standpoint.com.ua sshd[20141]: Invalid user annemarie from 116.6.234.141 port 34038 ...	2020-07-10 01:22:19
185.39.11.39	attackbotsspam	Jul 9 18:58:28 debian-2gb-nbg1-2 kernel: \[16572501.345169\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.39.11.39 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=31599 PROTO=TCP SPT=45113 DPT=5152 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-10 01:02:56
183.17.62.123	attackspam	Jul 9 12:55:38 mail1 postfix/smtpd[17152]: connect from unknown[183.17.62.123] Jul 9 12:55:39 mail1 postgrey[697]: action=greylist, reason=new, client_name=unknown, client_address=183.17.62.123, sender=x@x recipient=x@x Jul 9 12:55:39 mail1 postfix/smtpd[17152]: disconnect from unknown[183.17.62.123] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Jul 9 12:56:20 mail1 postfix/smtpd[17152]: connect from unknown[183.17.62.123] Jul 9 12:56:21 mail1 postgrey[697]: action=greylist, reason=new, client_name=unknown, client_address=183.17.62.123, sender=x@x recipient=x@x Jul 9 12:56:21 mail1 postfix/smtpd[17152]: disconnect from unknown[183.17.62.123] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Jul 9 12:56:23 mail1 postfix/smtpd[17274]: connect from unknown[183.17.62.123] Jul 9 12:56:24 mail1 postgrey[697]: action=greylist, reason=new, client_name=unknown, client_address=183.17.62.123, sender=x@x recipient=x@x Jul 9 12:56:25 mail1 postgrey[697]:........ -------------------------------	2020-07-10 01:19:28
49.232.161.242	attackbotsspam	2020-07-09T12:01:02.560245ionos.janbro.de sshd[100147]: Invalid user test from 49.232.161.242 port 51878 2020-07-09T12:01:05.677091ionos.janbro.de sshd[100147]: Failed password for invalid user test from 49.232.161.242 port 51878 ssh2 2020-07-09T12:03:24.577377ionos.janbro.de sshd[100164]: Invalid user fxy from 49.232.161.242 port 48596 2020-07-09T12:03:24.641056ionos.janbro.de sshd[100164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.161.242 2020-07-09T12:03:24.577377ionos.janbro.de sshd[100164]: Invalid user fxy from 49.232.161.242 port 48596 2020-07-09T12:03:26.786012ionos.janbro.de sshd[100164]: Failed password for invalid user fxy from 49.232.161.242 port 48596 ssh2 2020-07-09T12:05:42.882457ionos.janbro.de sshd[100170]: Invalid user guozp from 49.232.161.242 port 45314 2020-07-09T12:05:42.920704ionos.janbro.de sshd[100170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.161.242 2020 ...	2020-07-10 00:52:01
85.30.153.194	attackspambots	2020-07-09T13:05:33.469727beta postfix/smtpd[16166]: NOQUEUE: reject: RCPT from host-85-30-153-194.sydskane.nu[85.30.153.194]: 554 5.7.1 Service unavailable; Client host [85.30.153.194] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/85.30.153.194 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= ...	2020-07-10 01:01:58
120.131.14.125	attack	Brute-force attempt banned	2020-07-10 01:10:48
162.243.50.8	attackspambots	...	2020-07-10 01:03:22
162.247.74.7	attackspam	Unauthorized connection attempt detected from IP address 162.247.74.7 to port 443	2020-07-10 00:58:24
46.101.77.58	attackspambots	(sshd) Failed SSH login from 46.101.77.58 (GB/United Kingdom/-): 5 in the last 3600 secs	2020-07-10 00:45:37
222.186.175.23	attackbots	Jul 9 13:24:41 NPSTNNYC01T sshd[16956]: Failed password for root from 222.186.175.23 port 30658 ssh2 Jul 9 13:24:49 NPSTNNYC01T sshd[16964]: Failed password for root from 222.186.175.23 port 55073 ssh2 ...	2020-07-10 01:25:49
136.233.36.124	attack	20/7/9@08:05:21: FAIL: Alarm-Network address from=136.233.36.124 20/7/9@08:05:21: FAIL: Alarm-Network address from=136.233.36.124 ...	2020-07-10 01:14:04
80.47.126.148	attackspambots	Attempts against non-existent wp-login	2020-07-10 00:48:53
190.246.155.29	attack	Jul 9 18:02:13 prod4 sshd\[20161\]: Invalid user git from 190.246.155.29 Jul 9 18:02:15 prod4 sshd\[20161\]: Failed password for invalid user git from 190.246.155.29 port 44108 ssh2 Jul 9 18:09:30 prod4 sshd\[23255\]: Invalid user tomy from 190.246.155.29 ...	2020-07-10 01:18:09
197.3.90.66	attackspam	postfix (unknown user, SPF fail or relay access denied)	2020-07-10 00:55:28

Recently Reported IPs

213.123.121.47	154.201.34.23	46.205.209.210	154.202.127.118
23.105.71.224	154.83.10.185	51.91.14.6	8.212.150.54
218.1.142.207	193.151.160.27	148.153.82.141	151.46.16.173
147.182.210.165	138.99.93.14	124.106.150.231	178.249.211.131
178.197.213.198	115.48.211.53	118.250.104.42	223.26.212.4