AbuseIPDB » 202.125.94.71

202.125.94.71 was found in our database!

This IP was reported 19,502 times. Confidence of Abuse is 100%: ?

100%

ISP	Gunadarma University
Usage Type	University/College/School
Hostname(s)	akademik.gunadarma.ac.id
Domain Name	gunadarma.net
Country	Indonesia
City	Depok, Jawa Barat

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 202.125.94.71

Whois 202.125.94.71

IP Abuse Reports for 202.125.94.71:

This IP address has been reported a total of 19,502 times from 1,352 distinct sources. 202.125.94.71 was first reported on January 24th 2022, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp	Comment	Categories
Parth Maniar	2023-12-04 08:01:52 (17 hours ago)	This IP address carried out 472 port scanning attempts on 03-12-2023. For more information or to rep ... show moreThis IP address carried out 472 port scanning attempts on 03-12-2023. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
Parth Maniar	2023-12-02 16:27:20 (2 days ago)	This IP address carried out 472 port scanning attempts on 01-12-2023. For more information or to rep ... show moreThis IP address carried out 472 port scanning attempts on 01-12-2023. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
Parth Maniar	2023-12-01 08:32:38 (3 days ago)	This IP address carried out 472 port scanning attempts on 30-11-2023. For more information or to rep ... show moreThis IP address carried out 472 port scanning attempts on 30-11-2023. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
singertc	2023-11-30 14:23:09 (4 days ago)	Nov 30 15:20:30 nospam3 sshd[343717]: Invalid user mon from 202.125.94.71 port 36178 Nov 30 15 ... show moreNov 30 15:20:30 nospam3 sshd[343717]: Invalid user mon from 202.125.94.71 port 36178 Nov 30 15:21:47 nospam3 sshd[343760]: Invalid user twb from 202.125.94.71 port 58874 Nov 30 15:21:47 nospam3 sshd[343760]: Invalid user twb from 202.125.94.71 port 58874 Nov 30 15:23:01 nospam3 sshd[343833]: Invalid user xm from 202.125.94.71 port 53316 ... show less	Brute-Force SSH
singertc	2023-11-30 14:10:31 (4 days ago)	Nov 30 15:03:40 nospam3 sshd[343037]: Invalid user stop from 202.125.94.71 port 37198 Nov 30 1 ... show moreNov 30 15:03:40 nospam3 sshd[343037]: Invalid user stop from 202.125.94.71 port 37198 Nov 30 15:06:22 nospam3 sshd[343142]: Invalid user itsm from 202.125.94.71 port 41004 Nov 30 15:07:42 nospam3 sshd[343207]: Invalid user htt from 202.125.94.71 port 35450 Nov 30 15:08:58 nospam3 sshd[343232]: Invalid user yoann from 202.125.94.71 port 58066 Nov 30 15:10:10 nospam3 sshd[343347]: Invalid user selma from 202.125.94.71 port 52442 ... show less	Brute-Force SSH
LoNET	2023-11-30 14:08:29 (4 days ago)	Report 863628 with IP 503153 for SSH brute-force attack by source 553397 via ssh-honeypot/0.2.0+http	Brute-Force SSH
Samsteve169	2023-11-30 13:41:07 (4 days ago)	Attempt from 202.125.94.71	Brute-Force SSH
Anonymous	2023-11-30 13:19:06 (4 days ago)	Nov 30 13:10:31 f2b auth.info sshd[39986]: Failed password for root from 202.125.94.71 port 56988 ss ... show moreNov 30 13:10:31 f2b auth.info sshd[39986]: Failed password for root from 202.125.94.71 port 56988 ssh2 Nov 30 13:16:36 f2b auth.info sshd[40005]: Invalid user ec2-user from 202.125.94.71 port 32780 Nov 30 13:16:36 f2b auth.info sshd[40005]: Failed password for invalid user ec2-user from 202.125.94.71 port 32780 ssh2 ... show less	Brute-Force SSH
cvb	2023-11-30 11:03:22 (4 days ago)	Nov 30 11:54:37 v22019095806697148 sshd[16848]: Invalid user beatriz from 202.125.94.71 port 54038<b ... show moreNov 30 11:54:37 v22019095806697148 sshd[16848]: Invalid user beatriz from 202.125.94.71 port 54038 Nov 30 11:54:39 v22019095806697148 sshd[16848]: Failed password for invalid user beatriz from 202.125.94.71 port 54038 ssh2 Nov 30 11:56:11 v22019095806697148 sshd[16906]: Invalid user gnome from 202.125.94.71 port 50294 ... cvbnet show less	Brute-Force SSH
Anonymous	2023-11-30 10:04:22 (4 days ago)	202.125.94.71 (ID/Indonesia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; ... show more202.125.94.71 (ID/Indonesia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Nov 30 05:03:09 server2 sshd[22139]: Failed password for root from 185.126.34.211 port 51156 ssh2 Nov 30 04:55:35 server2 sshd[19792]: Failed password for root from 159.223.198.247 port 34298 ssh2 Nov 30 05:04:13 server2 sshd[22414]: Failed password for root from 43.153.55.10 port 52680 ssh2 Nov 30 05:03:30 server2 sshd[22286]: Failed password for root from 202.125.94.71 port 40314 ssh2 Nov 30 05:00:51 server2 sshd[21022]: Failed password for root from 178.128.21.190 port 51560 ssh2 IP Addresses Blocked: 185.126.34.211 (DE/Germany/-) 159.223.198.247 (US/United States/-) 43.153.55.10 (JP/Japan/-) show less	Brute-Force
bittiguru.fi	2023-11-30 09:10:37 (4 days ago)	Nov 30 11:10:34 www sshd\[65217\]: Address 202.125.94.71 maps to akademik.gunadarma.ac.id, but this ... show moreNov 30 11:10:34 www sshd\[65217\]: Address 202.125.94.71 maps to akademik.gunadarma.ac.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Nov 30 11:10:34 www sshd\[65217\]: Invalid user test2 from 202.125.94.71Nov 30 11:10:35 www sshd\[65217\]: Failed password for invalid user test2 from 202.125.94.71 port 36784 ssh2 ... show less	Brute-Force SSH
bittiguru.fi	2023-11-30 08:55:31 (4 days ago)	Nov 30 10:54:19 www sshd\[65029\]: Address 202.125.94.71 maps to akademik.gunadarma.ac.id, but this ... show moreNov 30 10:54:19 www sshd\[65029\]: Address 202.125.94.71 maps to akademik.gunadarma.ac.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Nov 30 10:54:21 www sshd\[65029\]: Failed password for root from 202.125.94.71 port 60110 ssh2Nov 30 10:55:29 www sshd\[65049\]: Address 202.125.94.71 maps to akademik.gunadarma.ac.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Nov 30 10:55:29 www sshd\[65049\]: Invalid user hdfs from 202.125.94.71 ... show less	Brute-Force SSH
Parth Maniar	2023-11-30 08:43:38 (4 days ago)	This IP address carried out 472 port scanning attempts on 29-11-2023. For more information or to rep ... show moreThis IP address carried out 472 port scanning attempts on 29-11-2023. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
TimeWalker	2023-11-30 08:40:38 (4 days ago)	2023-11-30T09:33:25.470280vmi985635.contaboserver.net sshd[3916939]: Failed password for invalid use ... show more2023-11-30T09:33:25.470280vmi985635.contaboserver.net sshd[3916939]: Failed password for invalid user amahmud from 202.125.94.71 port 60860 ssh2 2023-11-30T09:39:23.985625vmi985635.contaboserver.net sshd[3956944]: Invalid user wolli from 202.125.94.71 port 35352 2023-11-30T09:39:23.990807vmi985635.contaboserver.net sshd[3956944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.125.94.71 2023-11-30T09:39:25.958043vmi985635.contaboserver.net sshd[3956944]: Failed password for invalid user wolli from 202.125.94.71 port 35352 ssh2 2023-11-30T09:40:37.378586vmi985635.contaboserver.net sshd[3956968]: Invalid user rz from 202.125.94.71 port 57914 ... show less	Brute-Force SSH
bittiguru.fi	2023-11-30 08:39:05 (4 days ago)	Nov 30 10:39:01 www sshd\[64882\]: Address 202.125.94.71 maps to akademik.gunadarma.ac.id, but this ... show moreNov 30 10:39:01 www sshd\[64882\]: Address 202.125.94.71 maps to akademik.gunadarma.ac.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Nov 30 10:39:01 www sshd\[64882\]: Invalid user amahmud from 202.125.94.71Nov 30 10:39:04 www sshd\[64882\]: Failed password for invalid user amahmud from 202.125.94.71 port 53346 ssh2 ... show less	Brute-Force SSH

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩