125.166.20.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	445/tcp [2019-10-28]1pkt	2019-10-29 01:32:13

Comments on same subnet:

IP	Type	Details	Datetime
125.166.209.106	attackbotsspam	Invalid user uc from 125.166.209.106 port 42048	2020-04-19 01:18:44
125.166.206.193	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-31 08:59:53
125.166.200.185	attackbotsspam	1580360339 - 01/30/2020 05:58:59 Host: 125.166.200.185/125.166.200.185 Port: 445 TCP Blocked	2020-01-30 15:34:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.166.20.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52508
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.166.20.53.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102801 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 01:32:09 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 53.20.166.125.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 53.20.166.125.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
175.197.233.197	attack	May 1 07:59:47 firewall sshd[3828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.233.197 May 1 07:59:47 firewall sshd[3828]: Invalid user emily from 175.197.233.197 May 1 07:59:49 firewall sshd[3828]: Failed password for invalid user emily from 175.197.233.197 port 57020 ssh2 ...	2020-05-01 19:37:50
140.143.228.18	attackbots	May 1 13:47:00 v22018086721571380 sshd[10421]: Failed password for invalid user rori from 140.143.228.18 port 43058 ssh2	2020-05-01 19:56:28
157.230.235.122	attackspambots	May 1 13:43:49 hell sshd[12498]: Failed password for root from 157.230.235.122 port 44396 ssh2 ...	2020-05-01 19:54:10
193.70.38.187	attackspambots	May 1 07:52:32 NPSTNNYC01T sshd[27477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.38.187 May 1 07:52:34 NPSTNNYC01T sshd[27477]: Failed password for invalid user miko from 193.70.38.187 port 52590 ssh2 May 1 07:56:19 NPSTNNYC01T sshd[27639]: Failed password for root from 193.70.38.187 port 34482 ssh2 ...	2020-05-01 20:03:39
13.67.211.29	attack	hit -> srv3:22	2020-05-01 19:27:39
207.154.218.16	attackbots	Invalid user rq from 207.154.218.16 port 37036	2020-05-01 19:59:35
45.55.246.3	attackspambots	(sshd) Failed SSH login from 45.55.246.3 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 1 14:44:16 srv sshd[2392]: Invalid user arnold from 45.55.246.3 port 60628 May 1 14:44:18 srv sshd[2392]: Failed password for invalid user arnold from 45.55.246.3 port 60628 ssh2 May 1 14:50:36 srv sshd[2669]: Invalid user ftpadmin from 45.55.246.3 port 42126 May 1 14:50:38 srv sshd[2669]: Failed password for invalid user ftpadmin from 45.55.246.3 port 42126 ssh2 May 1 14:56:11 srv sshd[2933]: Invalid user cahn from 45.55.246.3 port 48234	2020-05-01 20:01:37
139.59.238.14	attackspambots	$f2bV_matches	2020-05-01 19:41:53
111.229.228.45	attack	Invalid user blood from 111.229.228.45 port 39466	2020-05-01 19:49:19
2.38.181.39	attack	May 1 08:59:14 roki-contabo sshd\[10225\]: Invalid user u1 from 2.38.181.39 May 1 08:59:14 roki-contabo sshd\[10225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.38.181.39 May 1 08:59:16 roki-contabo sshd\[10225\]: Failed password for invalid user u1 from 2.38.181.39 port 38908 ssh2 May 1 09:12:03 roki-contabo sshd\[10633\]: Invalid user csgo-server from 2.38.181.39 May 1 09:12:03 roki-contabo sshd\[10633\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.38.181.39 ...	2020-05-01 19:28:19
45.142.195.6	attackspambots	May 1 13:57:09 relay postfix/smtpd\[5241\]: warning: unknown\[45.142.195.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 1 13:57:31 relay postfix/smtpd\[7669\]: warning: unknown\[45.142.195.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 1 13:58:21 relay postfix/smtpd\[4822\]: warning: unknown\[45.142.195.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 1 13:58:39 relay postfix/smtpd\[5309\]: warning: unknown\[45.142.195.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 1 13:59:27 relay postfix/smtpd\[5241\]: warning: unknown\[45.142.195.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-01 20:00:32
188.234.247.110	attackspam	Invalid user super from 188.234.247.110 port 36158	2020-05-01 20:00:16
129.204.233.214	attack	Invalid user admin from 129.204.233.214 port 39074	2020-05-01 19:43:56
139.59.79.202	attackbots	Automatic report - WordPress Brute Force	2020-05-01 19:42:13
92.42.162.135	attackbotsspam	Automatic report - Port Scan Attack	2020-05-01 20:01:19

Recently Reported IPs

175.137.1.240	123.233.210.120	185.26.232.236	156.0.214.1
102.114.20.174	104.144.5.28	180.241.44.43	175.101.149.150
36.79.155.91	27.124.32.11	222.166.86.73	174.139.156.22
104.244.75.179	49.151.227.65	181.143.127.234	173.28.136.105
42.115.223.42	23.27.103.109	132.169.185.94	185.246.155.147