125.20.66.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Uflex Limited

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 125.20.66.94 on Port 445(SMB)	2020-05-29 00:11:40

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.20.66.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37366
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.20.66.94.			IN	A

;; AUTHORITY SECTION:
.			3008	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052200 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed May 22 18:38:19 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 94.66.20.125.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 94.66.20.125.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.236.175.127	attack	$f2bV_matches	2020-04-18 01:29:17
94.180.58.238	attack	Apr 17 18:45:56 nextcloud sshd\[6400\]: Invalid user admin from 94.180.58.238 Apr 17 18:45:56 nextcloud sshd\[6400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.180.58.238 Apr 17 18:45:58 nextcloud sshd\[6400\]: Failed password for invalid user admin from 94.180.58.238 port 38236 ssh2	2020-04-18 01:16:31
109.229.9.104	attack	Automatic report - Port Scan Attack	2020-04-18 01:32:46
106.51.85.146	attack	Microsoft SQL Server User Authentication Brute Force Attempt, PTR: broadband.actcorp.in.	2020-04-18 01:43:15
183.87.192.235	attackspambots	leo_www	2020-04-18 01:39:16
38.73.238.138	attackspam	$f2bV_matches	2020-04-18 01:34:24
191.189.4.17	attackspam	Automatic report - Port Scan Attack	2020-04-18 01:33:11
51.255.109.174	attack	Metasploit VxWorks WDB Agent Scanner Detection, PTR: flores.onyphe.io.	2020-04-18 01:30:23
149.255.243.78	attack	Brute force username and password attack.	2020-04-18 01:41:14
195.9.33.186	attackbotsspam	Attempted connection to port 23.	2020-04-18 01:18:26
222.154.229.60	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-18 01:25:30
45.142.195.2	attack	maillog:Apr 12 03:19:28 mail sendmail[23454]: 03C9JF5O023454: [45.142.195.2] did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA maillog:Apr 12 03:20:17 mail sendmail[23470]: 03C9K6HS023470: [45.142.195.2] did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA maillog:Apr 12 03:21:09 mail sendmail[23478]: 03C9KuZl023478: [45.142.195.2] did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA maillog:Apr 12 03:21:59 mail sendmail[23486]: 03C9LkqQ023486: [45.142.195.2] did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA maillog:Apr 12 03:22:49 mail sendmail[23494]: 03C9Mb7d023494: [45.142.195.2] did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA maillog:Apr 12 03:23:39 mail sendmail[23519]: 03C9NR7a023519: [45.142.195.2] did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA	2020-04-18 01:35:02
134.209.221.54	attackbotsspam	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-18 01:37:44
124.29.236.163	attackspambots	Apr 17 18:37:38 srv-ubuntu-dev3 sshd[107469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.29.236.163 user=root Apr 17 18:37:40 srv-ubuntu-dev3 sshd[107469]: Failed password for root from 124.29.236.163 port 47262 ssh2 Apr 17 18:42:33 srv-ubuntu-dev3 sshd[108216]: Invalid user test from 124.29.236.163 Apr 17 18:42:33 srv-ubuntu-dev3 sshd[108216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.29.236.163 Apr 17 18:42:33 srv-ubuntu-dev3 sshd[108216]: Invalid user test from 124.29.236.163 Apr 17 18:42:36 srv-ubuntu-dev3 sshd[108216]: Failed password for invalid user test from 124.29.236.163 port 54634 ssh2 Apr 17 18:47:27 srv-ubuntu-dev3 sshd[109104]: Invalid user xn from 124.29.236.163 Apr 17 18:47:27 srv-ubuntu-dev3 sshd[109104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.29.236.163 Apr 17 18:47:27 srv-ubuntu-dev3 sshd[109104]: Invalid user xn fro ...	2020-04-18 01:45:43
114.88.128.78	attackspambots	Apr 4 11:07:48 r.ca sshd[30160]: Failed password for invalid user minecraft from 114.88.128.78 port 40634 ssh2	2020-04-18 01:16:15

Recently Reported IPs

74.229.85.193	181.161.189.113	190.78.51.30	106.105.3.145
88.20.254.72	193.112.42.88	106.148.34.122	147.144.14.113
121.182.142.167	172.173.227.85	189.131.6.121	156.168.199.58
179.82.103.146	116.48.100.49	184.25.180.54	51.38.42.39
144.199.178.6	169.149.221.57	74.87.20.227	57.139.126.11