205.185.125.20

Basic Info

City: Las Vegas

Region: Nevada

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
205.185.125.216	attackspam	Unauthorized SSH login attempts	2020-09-06 03:53:44
205.185.125.216	attackspambots	Unauthorized SSH login attempts	2020-09-05 19:35:15
205.185.125.197	attack	UDP 205.185.125.197:47951 -> port 1900, len 121	2020-09-02 03:26:06
205.185.125.197	attack	TCP (SYN) 205.185.125.197:38243 -> port 11211, len 44	2020-08-30 01:10:24
205.185.125.216	attackspambots	SSH Login Bruteforce	2020-08-22 13:48:24
205.185.125.164	attack	UDP 205.185.125.164:56268 -> port 161, len 68	2020-08-12 16:58:58
205.185.125.164	attackspambots	firewall-block, port(s): 389/udp	2020-08-06 08:41:42
205.185.125.123	spambotsattackproxynormal	8080	2020-08-05 10:11:03
205.185.125.123	spambotsattackproxynormal	8080	2020-08-05 10:10:57
205.185.125.164	attackbots	SIP/5060 Probe, BF, Hack -	2020-07-27 18:18:30
205.185.125.216	attackspambots	xmlrpc attack	2020-07-25 14:16:12
205.185.125.216	attack	Jun 14 14:50:01 host sshd[23526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=tor-exit-readme.highsecurity.systems user=root Jun 14 14:50:03 host sshd[23526]: Failed password for root from 205.185.125.216 port 57776 ssh2 ...	2020-06-14 22:02:00
205.185.125.243	attackbots	Unauthorized connection attempt detected from IP address 205.185.125.243 to port 8080 [T]	2020-04-29 04:37:22
205.185.125.140	attackspambots	Invalid user admin from 205.185.125.140 port 48784	2020-04-03 22:16:46
205.185.125.165	attackbots	Mar 30 05:36:05 rama sshd[559726]: Invalid user msg from 205.185.125.165 Mar 30 05:36:05 rama sshd[559726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.125.165 Mar 30 05:36:07 rama sshd[559726]: Failed password for invalid user msg from 205.185.125.165 port 55976 ssh2 Mar 30 05:36:07 rama sshd[559726]: Connection closed by 205.185.125.165 [preauth] Mar 30 05:36:10 rama sshd[559783]: Invalid user mtch from 205.185.125.165 Mar 30 05:36:10 rama sshd[559783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.125.165 Mar 30 05:36:12 rama sshd[559783]: Failed password for invalid user mtch from 205.185.125.165 port 56184 ssh2 Mar 30 05:36:13 rama sshd[559783]: Connection closed by 205.185.125.165 [preauth] Mar 30 05:36:16 rama sshd[559836]: Invalid user mtcl from 205.185.125.165 Mar 30 05:36:16 rama sshd[559836]: Failed none for invalid user mtcl from 205.185.125.165 port 56300........ -------------------------------	2020-03-30 20:31:44

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       205.185.112.0 - 205.185.127.255
CIDR:           205.185.112.0/20
NetName:        PONYNET-03
NetHandle:      NET-205-185-112-0-1
Parent:         NET205 (NET-205-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   FranTech Solutions (SYNDI-5)
RegDate:        2010-09-03
Updated:        2012-03-25
Ref:            https://rdap.arin.net/registry/ip/205.185.112.0


OrgName:        FranTech Solutions
OrgId:          SYNDI-5
Address:        1621 Central Ave
City:           Cheyenne
StateProv:      WY
PostalCode:     82001
Country:        US
RegDate:        2010-07-21
Updated:        2024-11-25
Ref:            https://rdap.arin.net/registry/entity/SYNDI-5


OrgTechHandle: FDI19-ARIN
OrgTechName:   Dias, Francisco 
OrgTechPhone:  +1-778-977-8246 
OrgTechEmail:  admin@frantech.ca
OrgTechRef:    https://rdap.arin.net/registry/entity/FDI19-ARIN

OrgAbuseHandle: FDI19-ARIN
OrgAbuseName:   Dias, Francisco 
OrgAbusePhone:  +1-778-977-8246 
OrgAbuseEmail:  admin@frantech.ca
OrgAbuseRef:    https://rdap.arin.net/registry/entity/FDI19-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 205.185.125.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1368
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;205.185.125.20.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025092600 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 26 15:48:43 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 20.125.185.205.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.125.185.205.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.13.103.241	attack	Dec 13 08:43:00 debian-2gb-nbg1-2 kernel: \[24504514.202052\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=186.13.103.241 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=58980 PROTO=TCP SPT=34617 DPT=23 WINDOW=27081 RES=0x00 SYN URGP=0	2019-12-13 22:05:25
200.255.228.166	attack	1576222948 - 12/13/2019 08:42:28 Host: 200.255.228.166/200.255.228.166 Port: 445 TCP Blocked	2019-12-13 22:33:42
138.121.14.201	attack	1576222983 - 12/13/2019 08:43:03 Host: 138.121.14.201/138.121.14.201 Port: 445 TCP Blocked	2019-12-13 22:01:51
183.129.50.83	attackbots	2019-12-13 01:16:38 H=(cfhi.com) [183.129.50.83]:63555 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.2, 127.0.0.11, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBL467427) 2019-12-13 01:36:40 H=(cfhi.com) [183.129.50.83]:61785 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.2, 127.0.0.11) (https://www.spamhaus.org/sbl/query/SBL467427) 2019-12-13 01:42:35 H=(cfhi.com) [183.129.50.83]:58656 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.2, 127.0.0.11) (https://www.spamhaus.org/sbl/query/SBL467427) ...	2019-12-13 22:27:37
87.246.7.34	attackbotsspam	Dec 13 15:12:54 webserver postfix/smtpd\[24894\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 13 15:13:00 webserver postfix/smtpd\[24894\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 13 15:13:24 webserver postfix/smtpd\[24900\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 13 15:13:53 webserver postfix/smtpd\[24894\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 13 15:14:22 webserver postfix/smtpd\[24900\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-13 22:17:23
187.188.251.219	attackbots	Dec 13 14:31:37 srv01 sshd[22718]: Invalid user hausi from 187.188.251.219 port 60556 Dec 13 14:31:37 srv01 sshd[22718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.251.219 Dec 13 14:31:37 srv01 sshd[22718]: Invalid user hausi from 187.188.251.219 port 60556 Dec 13 14:31:39 srv01 sshd[22718]: Failed password for invalid user hausi from 187.188.251.219 port 60556 ssh2 Dec 13 14:39:06 srv01 sshd[23487]: Invalid user zan from 187.188.251.219 port 53968 ...	2019-12-13 22:12:02
192.99.151.33	attackspambots	ssh failed login	2019-12-13 22:35:34
85.192.35.167	attack	Dec 13 12:49:35 ns382633 sshd\[24952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.35.167 user=root Dec 13 12:49:37 ns382633 sshd\[24952\]: Failed password for root from 85.192.35.167 port 52772 ssh2 Dec 13 12:57:58 ns382633 sshd\[26459\]: Invalid user kojiya from 85.192.35.167 port 33452 Dec 13 12:57:58 ns382633 sshd\[26459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.35.167 Dec 13 12:58:00 ns382633 sshd\[26459\]: Failed password for invalid user kojiya from 85.192.35.167 port 33452 ssh2	2019-12-13 22:31:06
94.102.52.28	attackbots	[12/Dec/2019:14:36:49 -0500] "\x16\x03\x02\x01o\x01" Blank UA	2019-12-13 21:59:01
210.19.35.122	attackbots	Unauthorized connection attempt detected from IP address 210.19.35.122 to port 445	2019-12-13 22:10:51
183.17.61.220	attack	IP: 183.17.61.220 ASN: AS4134 No.31 Jin-rong Street Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 13/12/2019 1:43:29 PM UTC	2019-12-13 22:30:24
62.183.45.90	attack	Unauthorized connection attempt detected from IP address 62.183.45.90 to port 445	2019-12-13 22:02:40
182.61.46.245	attackspambots	Dec 13 13:39:48 yesfletchmain sshd\[27028\]: User root from 182.61.46.245 not allowed because not listed in AllowUsers Dec 13 13:39:48 yesfletchmain sshd\[27028\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.46.245 user=root Dec 13 13:39:50 yesfletchmain sshd\[27028\]: Failed password for invalid user root from 182.61.46.245 port 50216 ssh2 Dec 13 13:49:39 yesfletchmain sshd\[27261\]: Invalid user inui from 182.61.46.245 port 44300 Dec 13 13:49:39 yesfletchmain sshd\[27261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.46.245 ...	2019-12-13 21:58:03
45.116.230.37	attack	Unauthorized connection attempt detected from IP address 45.116.230.37 to port 445	2019-12-13 22:32:13
185.63.218.225	attackbotsspam	[portscan] Port scan	2019-12-13 22:28:40

Recently Reported IPs

209.132.243.173	172.237.124.14	42.229.133.232	183.186.161.64
111.42.156.199	110.252.52.145	114.96.103.33	39.128.221.247
223.88.80.25	223.88.245.159	223.88.237.93	223.86.235.235
223.64.48.79	183.251.92.89	183.251.183.145	120.239.28.230
120.229.217.203	120.216.241.134	216.180.246.184	206.168.34.50