125.166.104.74

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
125.166.104.114	attack	Unauthorized connection attempt detected from IP address 125.166.104.114 to port 445	2019-12-14 05:39:42
125.166.104.114	attack	Unauthorized connection attempt from IP address 125.166.104.114 on Port 445(SMB)	2019-12-11 15:10:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.166.104.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63071
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.166.104.74.			IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 03:02:00 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 74.104.166.125.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 74.104.166.125.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.76.160.147	attack	Sep 16 08:22:16 webhost01 sshd[26246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.160.147 Sep 16 08:22:18 webhost01 sshd[26246]: Failed password for invalid user test1 from 180.76.160.147 port 50280 ssh2 ...	2019-09-16 09:26:36
198.12.64.10	attack	scan z	2019-09-16 09:34:19
140.246.175.68	attackspam	Sep 15 14:41:09 auw2 sshd\[28797\]: Invalid user nv from 140.246.175.68 Sep 15 14:41:09 auw2 sshd\[28797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.175.68 Sep 15 14:41:11 auw2 sshd\[28797\]: Failed password for invalid user nv from 140.246.175.68 port 14840 ssh2 Sep 15 14:46:25 auw2 sshd\[29241\]: Invalid user ax400 from 140.246.175.68 Sep 15 14:46:26 auw2 sshd\[29241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.175.68	2019-09-16 09:11:53
111.255.22.236	attackspambots	TW - 1H : (216) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 111.255.22.236 CIDR : 111.255.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 4 3H - 24 6H - 46 12H - 101 24H - 201 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-09-16 09:36:20
185.176.27.38	attackspam	09/15/2019-19:19:35.379809 185.176.27.38 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-16 09:22:48
222.186.42.241	attack	SSH Brute Force, server-1 sshd[8258]: Failed password for root from 222.186.42.241 port 57204 ssh2	2019-09-16 09:18:59
115.213.139.221	attackbots	Lines containing failures of 115.213.139.221 Sep 14 02:57:04 myhost sshd[27483]: User r.r from 115.213.139.221 not allowed because not listed in AllowUsers Sep 14 02:57:04 myhost sshd[27483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.213.139.221 user=r.r Sep 14 02:57:06 myhost sshd[27483]: Failed password for invalid user r.r from 115.213.139.221 port 58259 ssh2 Sep 14 02:57:18 myhost sshd[27483]: message repeated 5 serveres: [ Failed password for invalid user r.r from 115.213.139.221 port 58259 ssh2] Sep 14 02:57:18 myhost sshd[27483]: error: maximum authentication attempts exceeded for invalid user r.r from 115.213.139.221 port 58259 ssh2 [preauth] Sep 14 02:57:18 myhost sshd[27483]: Disconnecting invalid user r.r 115.213.139.221 port 58259: Too many authentication failures [preauth] Sep 14 02:57:18 myhost sshd[27483]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.213.139.221 user=........ ------------------------------	2019-09-16 09:25:39
2.191.71.102	attackspambots	port scan and connect, tcp 23 (telnet)	2019-09-16 08:56:18
106.12.120.79	attack	Sep 15 21:04:21 vps200512 sshd\[20926\]: Invalid user dfk from 106.12.120.79 Sep 15 21:04:21 vps200512 sshd\[20926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.120.79 Sep 15 21:04:23 vps200512 sshd\[20926\]: Failed password for invalid user dfk from 106.12.120.79 port 41504 ssh2 Sep 15 21:08:15 vps200512 sshd\[20971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.120.79 user=ubuntu Sep 15 21:08:17 vps200512 sshd\[20971\]: Failed password for ubuntu from 106.12.120.79 port 45562 ssh2	2019-09-16 09:26:59
201.251.156.11	attackbots	Aug 11 03:31:46 vtv3 sshd\[20587\]: Invalid user travis from 201.251.156.11 port 35214 Aug 11 03:31:47 vtv3 sshd\[20587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.251.156.11 Aug 11 03:31:48 vtv3 sshd\[20587\]: Failed password for invalid user travis from 201.251.156.11 port 35214 ssh2 Aug 11 03:37:24 vtv3 sshd\[23195\]: Invalid user michelle from 201.251.156.11 port 60067 Aug 11 03:37:24 vtv3 sshd\[23195\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.251.156.11 Aug 11 03:48:16 vtv3 sshd\[28282\]: Invalid user 1qaz@WSX from 201.251.156.11 port 53410 Aug 11 03:48:16 vtv3 sshd\[28282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.251.156.11 Aug 11 03:48:17 vtv3 sshd\[28282\]: Failed password for invalid user 1qaz@WSX from 201.251.156.11 port 53410 ssh2 Aug 11 03:53:51 vtv3 sshd\[30889\]: Invalid user ocean from 201.251.156.11 port 50114 Aug 11 03:53:51 vtv3	2019-09-16 09:04:45
221.4.223.212	attackbotsspam	Sep 16 02:59:02 microserver sshd[29869]: Invalid user canna from 221.4.223.212 port 38455 Sep 16 02:59:02 microserver sshd[29869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.4.223.212 Sep 16 02:59:04 microserver sshd[29869]: Failed password for invalid user canna from 221.4.223.212 port 38455 ssh2 Sep 16 03:04:10 microserver sshd[30550]: Invalid user butter from 221.4.223.212 port 48325 Sep 16 03:04:10 microserver sshd[30550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.4.223.212 Sep 16 03:14:20 microserver sshd[31914]: Invalid user upload1 from 221.4.223.212 port 43073 Sep 16 03:14:20 microserver sshd[31914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.4.223.212 Sep 16 03:14:22 microserver sshd[31914]: Failed password for invalid user upload1 from 221.4.223.212 port 43073 ssh2 Sep 16 03:19:26 microserver sshd[32563]: Invalid user tyson from 221.4.223.212 port 52847	2019-09-16 09:33:51
191.7.152.13	attackbots	Sep 15 21:04:05 vps200512 sshd\[20924\]: Invalid user kurt from 191.7.152.13 Sep 15 21:04:05 vps200512 sshd\[20924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.7.152.13 Sep 15 21:04:08 vps200512 sshd\[20924\]: Failed password for invalid user kurt from 191.7.152.13 port 40886 ssh2 Sep 15 21:08:51 vps200512 sshd\[20981\]: Invalid user arrowbaz from 191.7.152.13 Sep 15 21:08:51 vps200512 sshd\[20981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.7.152.13	2019-09-16 09:30:52
176.31.191.61	attackbotsspam	Sep 15 21:29:34 TORMINT sshd\[20598\]: Invalid user ajay from 176.31.191.61 Sep 15 21:29:34 TORMINT sshd\[20598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.191.61 Sep 15 21:29:36 TORMINT sshd\[20598\]: Failed password for invalid user ajay from 176.31.191.61 port 60314 ssh2 ...	2019-09-16 09:32:51
157.245.107.180	attack	Sep 16 03:08:42 eventyay sshd[13542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.107.180 Sep 16 03:08:43 eventyay sshd[13542]: Failed password for invalid user alex from 157.245.107.180 port 36642 ssh2 Sep 16 03:12:53 eventyay sshd[13666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.107.180 ...	2019-09-16 09:20:19
157.100.234.45	attackspambots	Sep 16 03:04:32 SilenceServices sshd[21375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Sep 16 03:04:34 SilenceServices sshd[21375]: Failed password for invalid user hs from 157.100.234.45 port 45904 ssh2 Sep 16 03:08:44 SilenceServices sshd[24441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45	2019-09-16 09:12:51

Recently Reported IPs

125.166.105.133	125.166.105.171	125.166.105.176	125.166.106.40
125.166.105.135	125.166.106.60	125.166.107.1	125.166.106.242
125.166.107.235	117.91.254.44	125.166.107.45	125.166.108.156
125.166.108.129	125.166.108.188	125.166.108.31	125.166.109.144
125.166.108.58	125.166.108.240	125.166.109.49	125.166.108.72