125.163.124.29

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 5555, PTR: 29.subnet125-163-124.speedy.telkom.net.id.	2020-03-08 01:51:52

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.163.124.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26781
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.163.124.29.			IN	A

;; AUTHORITY SECTION:
.			130	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030700 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 08 01:51:47 CST 2020
;; MSG SIZE  rcvd: 118

Host info

29.124.163.125.in-addr.arpa domain name pointer 29.subnet125-163-124.speedy.telkom.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
29.124.163.125.in-addr.arpa	name = 29.subnet125-163-124.speedy.telkom.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
128.199.253.133	attack	Dec 7 03:14:44 kapalua sshd\[15575\]: Invalid user cranston from 128.199.253.133 Dec 7 03:14:44 kapalua sshd\[15575\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.253.133 Dec 7 03:14:46 kapalua sshd\[15575\]: Failed password for invalid user cranston from 128.199.253.133 port 54365 ssh2 Dec 7 03:21:25 kapalua sshd\[16354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.253.133 user=root Dec 7 03:21:28 kapalua sshd\[16354\]: Failed password for root from 128.199.253.133 port 57991 ssh2	2019-12-07 21:22:45
24.139.145.122	attack	3389BruteforceFW23	2019-12-07 21:13:17
216.155.94.51	attackspam	Dec 7 11:01:59 vpn01 sshd[25592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.155.94.51 Dec 7 11:02:01 vpn01 sshd[25592]: Failed password for invalid user baermel from 216.155.94.51 port 52083 ssh2 ...	2019-12-07 21:28:23
186.179.100.15	attackspam	[portscan] Port scan	2019-12-07 21:58:55
218.92.0.139	attackbots	Dec 7 15:25:00 sauna sshd[202132]: Failed password for root from 218.92.0.139 port 42624 ssh2 Dec 7 15:25:03 sauna sshd[202132]: Failed password for root from 218.92.0.139 port 42624 ssh2 ...	2019-12-07 21:27:49
54.38.184.235	attackspam	web-1 [ssh] SSH Attack	2019-12-07 21:57:42
46.48.111.52	attack	Unauthorised access (Dec 7) SRC=46.48.111.52 LEN=44 TTL=55 ID=51837 TCP DPT=23 WINDOW=4960 SYN Unauthorised access (Dec 7) SRC=46.48.111.52 LEN=44 TTL=55 ID=34880 TCP DPT=23 WINDOW=4960 SYN	2019-12-07 21:16:48
89.248.168.112	attackspambots	UTC: 2019-12-06 port: 25/tcp	2019-12-07 21:26:35
190.111.115.90	attackspambots	Dec 7 08:27:24 linuxvps sshd\[28410\]: Invalid user pass@word\* from 190.111.115.90 Dec 7 08:27:24 linuxvps sshd\[28410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.115.90 Dec 7 08:27:26 linuxvps sshd\[28410\]: Failed password for invalid user pass@word\* from 190.111.115.90 port 50711 ssh2 Dec 7 08:35:08 linuxvps sshd\[32871\]: Invalid user password from 190.111.115.90 Dec 7 08:35:08 linuxvps sshd\[32871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.115.90	2019-12-07 21:43:19
188.166.46.206	attack	Automatic report - XMLRPC Attack	2019-12-07 21:40:45
41.76.245.154	attackbotsspam	Absender hat Spam-Falle ausgel?st	2019-12-07 21:52:45
46.217.248.5	attackbotsspam	firewall-block, port(s): 23/tcp	2019-12-07 21:58:29
108.223.130.246	attack	Dec707:23:39server4pure-ftpd:\(\?@1.28.206.105\)[WARNING]Authenticationfailedforuser[www]Dec707:24:35server4pure-ftpd:\(\?@108.223.130.246\)[WARNING]Authenticationfailedforuser[www]Dec707:24:24server4pure-ftpd:\(\?@108.223.130.246\)[WARNING]Authenticationfailedforuser[www]Dec707:24:24server4pure-ftpd:\(\?@108.223.130.246\)[WARNING]Authenticationfailedforuser[www]Dec707:23:53server4pure-ftpd:\(\?@1.28.206.105\)[WARNING]Authenticationfailedforuser[www]Dec707:23:54server4pure-ftpd:\(\?@108.223.130.246\)[WARNING]Authenticationfailedforuser[www]Dec707:24:19server4pure-ftpd:\(\?@1.28.206.105\)[WARNING]Authenticationfailedforuser[www]Dec707:24:28server4pure-ftpd:\(\?@1.28.206.105\)[WARNING]Authenticationfailedforuser[www]Dec707:24:00server4pure-ftpd:\(\?@1.28.206.105\)[WARNING]Authenticationfailedforuser[www]Dec707:23:23server4pure-ftpd:\(\?@1.28.206.105\)[WARNING]Authenticationfailedforuser[www]IPAddressesBlocked:1.28.206.105\(CN/China/-\)	2019-12-07 21:43:53
106.13.148.44	attackspam	Dec 7 13:39:19 MK-Soft-Root2 sshd[13805]: Failed password for root from 106.13.148.44 port 49136 ssh2 ...	2019-12-07 21:56:24
179.36.216.216	attackspam	Automatic report - Port Scan Attack	2019-12-07 21:38:03

Recently Reported IPs

49.36.58.106	31.184.253.40	197.210.28.121	191.80.71.225
39.247.216.54	186.227.145.27	15.186.94.156	124.91.138.234
190.39.17.244	123.21.89.176	41.141.102.132	187.24.192.78
103.29.185.165	85.98.45.192	81.93.87.7	117.157.80.53
123.21.81.24	116.193.134.75	116.87.190.252	113.172.201.118