45.112.125.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. Fiber Networks Indonesia

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH authentication failure x 6 reported by Fail2Ban ...	2019-10-07 03:07:30
attackspam	Sep 27 00:28:00 core sshd[12912]: Invalid user tmp from 45.112.125.66 port 39046 Sep 27 00:28:02 core sshd[12912]: Failed password for invalid user tmp from 45.112.125.66 port 39046 ssh2 ...	2019-09-27 06:47:51

Type

Details

Datetime

attack

SSH authentication failure x 6 reported by Fail2Ban
...

2019-10-07 03:07:30

attackspam

Sep 27 00:28:00 core sshd[12912]: Invalid user tmp from 45.112.125.66 port 39046
Sep 27 00:28:02 core sshd[12912]: Failed password for invalid user tmp from 45.112.125.66 port 39046 ssh2
...

2019-09-27 06:47:51

Comments on same subnet:

IP	Type	Details	Datetime
45.112.125.4	attackbotsspam	unauthorized connection attempt	2020-02-07 13:27:31
45.112.125.98	attack	Honeypot attack, port: 445, PTR: 98-125.fiber.net.id.	2019-06-27 19:32:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.112.125.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64635
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.112.125.66.			IN	A

;; AUTHORITY SECTION:
.			122	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092603 1800 900 604800 86400

;; Query time: 384 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 27 06:47:48 CST 2019
;; MSG SIZE  rcvd: 117

Host info

66.125.112.45.in-addr.arpa domain name pointer 66-125.fiber.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.125.112.45.in-addr.arpa	name = 66-125.fiber.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
109.244.96.201	attackspambots	Aug 22 05:45:35 hanapaa sshd\[20928\]: Invalid user dspace from 109.244.96.201 Aug 22 05:45:35 hanapaa sshd\[20928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.96.201 Aug 22 05:45:37 hanapaa sshd\[20928\]: Failed password for invalid user dspace from 109.244.96.201 port 36938 ssh2 Aug 22 05:51:56 hanapaa sshd\[21488\]: Invalid user spigot from 109.244.96.201 Aug 22 05:51:56 hanapaa sshd\[21488\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.96.201	2019-08-23 00:01:13
123.234.219.226	attackbots	Aug 22 08:44:26 TORMINT sshd\[23677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.234.219.226 user=root Aug 22 08:44:29 TORMINT sshd\[23677\]: Failed password for root from 123.234.219.226 port 33073 ssh2 Aug 22 08:49:05 TORMINT sshd\[23936\]: Invalid user bmedina from 123.234.219.226 Aug 22 08:49:05 TORMINT sshd\[23936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.234.219.226 ...	2019-08-23 00:48:42
24.210.199.30	attackbotsspam	Aug 22 19:54:11 areeb-Workstation sshd\[8731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.210.199.30 user=root Aug 22 19:54:13 areeb-Workstation sshd\[8731\]: Failed password for root from 24.210.199.30 port 60122 ssh2 Aug 22 19:58:26 areeb-Workstation sshd\[9582\]: Invalid user pan from 24.210.199.30 Aug 22 19:58:26 areeb-Workstation sshd\[9582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.210.199.30 ...	2019-08-22 23:43:10
106.12.24.1	attack	Aug 22 18:21:39 icinga sshd[27430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.24.1 Aug 22 18:21:41 icinga sshd[27430]: Failed password for invalid user nacho from 106.12.24.1 port 39234 ssh2 ...	2019-08-23 00:36:02
218.92.0.135	attack	Aug 22 11:50:39 debian sshd\[21968\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.135 user=root Aug 22 11:50:41 debian sshd\[21968\]: Failed password for root from 218.92.0.135 port 49996 ssh2 Aug 22 11:50:44 debian sshd\[21968\]: Failed password for root from 218.92.0.135 port 49996 ssh2 ...	2019-08-23 00:08:45
139.199.29.155	attackbotsspam	Aug 21 23:39:59 hiderm sshd\[18192\]: Invalid user admin from 139.199.29.155 Aug 21 23:39:59 hiderm sshd\[18192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.29.155 Aug 21 23:40:01 hiderm sshd\[18192\]: Failed password for invalid user admin from 139.199.29.155 port 13757 ssh2 Aug 21 23:45:25 hiderm sshd\[18629\]: Invalid user leesw from 139.199.29.155 Aug 21 23:45:25 hiderm sshd\[18629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.29.155	2019-08-22 23:45:01
159.89.155.148	attackspambots	Aug 22 17:51:08 tuxlinux sshd[29743]: Invalid user minecraft3 from 159.89.155.148 port 51668 Aug 22 17:51:08 tuxlinux sshd[29743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.155.148 Aug 22 17:51:08 tuxlinux sshd[29743]: Invalid user minecraft3 from 159.89.155.148 port 51668 Aug 22 17:51:08 tuxlinux sshd[29743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.155.148 Aug 22 17:51:08 tuxlinux sshd[29743]: Invalid user minecraft3 from 159.89.155.148 port 51668 Aug 22 17:51:08 tuxlinux sshd[29743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.155.148 Aug 22 17:51:10 tuxlinux sshd[29743]: Failed password for invalid user minecraft3 from 159.89.155.148 port 51668 ssh2 ...	2019-08-23 00:29:10
51.38.239.2	attack	2019-08-22T18:16:43.445727lon01.zurich-datacenter.net sshd\[8393\]: Invalid user saned from 51.38.239.2 port 53860 2019-08-22T18:16:43.454720lon01.zurich-datacenter.net sshd\[8393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.ip-51-38-239.eu 2019-08-22T18:16:45.203135lon01.zurich-datacenter.net sshd\[8393\]: Failed password for invalid user saned from 51.38.239.2 port 53860 ssh2 2019-08-22T18:24:14.106228lon01.zurich-datacenter.net sshd\[8602\]: Invalid user katinsv from 51.38.239.2 port 35980 2019-08-22T18:24:14.113030lon01.zurich-datacenter.net sshd\[8602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.ip-51-38-239.eu ...	2019-08-23 00:30:34
94.172.182.83	attack	2019-08-22T14:07:50.519205abusebot-2.cloudsearch.cf sshd\[18812\]: Invalid user ggg from 94.172.182.83 port 40867	2019-08-22 23:47:09
213.148.213.99	attack	Automatic report - Banned IP Access	2019-08-23 00:41:13
46.105.244.17	attackspambots	Aug 22 16:15:26 vpn01 sshd\[9256\]: Invalid user web1 from 46.105.244.17 Aug 22 16:15:26 vpn01 sshd\[9256\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.244.17 Aug 22 16:15:28 vpn01 sshd\[9256\]: Failed password for invalid user web1 from 46.105.244.17 port 46306 ssh2	2019-08-23 00:16:55
45.32.79.84	attackspambots	Kommentar-Spam	2019-08-23 00:12:20
35.192.41.81	attackspam	Looking for resource vulnerabilities	2019-08-22 23:53:58
191.53.197.230	attackbotsspam	failed_logins	2019-08-23 00:17:35
124.6.153.2	attackbots	SSH Brute-Forcing (ownc)	2019-08-23 00:42:32

Recently Reported IPs

141.71.170.167	153.61.115.228	143.0.40.252	41.226.0.237
23.247.49.184	190.17.173.212	112.193.21.120	227.107.247.47
144.228.159.108	188.245.103.79	243.145.217.228	131.77.235.204
66.157.249.4	116.31.230.57	95.136.24.145	116.191.240.131
108.60.147.143	69.35.88.125	74.47.36.153	243.213.216.80