125.161.130.41

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): PT Telekomunikasi Indonesia

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
125.161.130.6	attackbotsspam	Attempted connection to port 23.	2020-08-14 05:56:21
125.161.130.217	attack	Unauthorized IMAP connection attempt	2020-06-17 01:28:41
125.161.130.64	attack	Honeypot attack, port: 445, PTR: 64.subnet125-161-130.speedy.telkom.net.id.	2020-05-06 01:42:56
125.161.130.18	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 01-04-2020 04:55:09.	2020-04-01 13:18:17
125.161.130.17	attackspam	RDP Bruteforce	2020-03-02 04:33:01
125.161.130.201	attack	Lines containing failures of 125.161.130.201 Feb 29 06:23:23 shared11 sshd[8547]: Invalid user admin from 125.161.130.201 port 11578 Feb 29 06:23:23 shared11 sshd[8547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.130.201 Feb 29 06:23:25 shared11 sshd[8547]: Failed password for invalid user admin from 125.161.130.201 port 11578 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.161.130.201	2020-02-29 18:29:04
125.161.130.175	attackbots	Unauthorized connection attempt from IP address 125.161.130.175 on Port 445(SMB)	2020-02-13 00:24:06
125.161.130.70	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 08-02-2020 04:50:10.	2020-02-08 20:10:22
125.161.130.200	attackbots	Unauthorized connection attempt detected from IP address 125.161.130.200 to port 80 [J]	2020-02-05 19:33:41
125.161.130.227	attackbotsspam	(sshd) Failed SSH login from 125.161.130.227 (ID/Indonesia/227.subnet125-161-130.speedy.telkom.net.id): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 1 07:01:37 ubnt-55d23 sshd[29308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.130.227 user=root Feb 1 07:01:39 ubnt-55d23 sshd[29308]: Failed password for root from 125.161.130.227 port 15320 ssh2	2020-02-01 16:29:03
125.161.130.48	attackbotsspam	Unauthorized connection attempt detected from IP address 125.161.130.48 to port 8080 [J]	2020-01-31 05:32:43
125.161.130.218	attackbots	1580360145 - 01/30/2020 05:55:45 Host: 125.161.130.218/125.161.130.218 Port: 445 TCP Blocked	2020-01-30 20:59:57
125.161.130.157	attackbotsspam	Automatic report - SSH Brute-Force Attack	2020-01-16 17:53:22
125.161.130.7	attack	Honeypot attack, port: 81, PTR: 7.subnet125-161-130.speedy.telkom.net.id.	2020-01-14 02:22:02
125.161.130.125	attackspambots	Automatic report - Port Scan Attack	2020-01-02 05:25:32

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.161.130.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35972
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.161.130.41.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060500 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 06 01:12:03 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

41.130.161.125.in-addr.arpa domain name pointer 41.subnet125-161-130.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
41.130.161.125.in-addr.arpa	name = 41.subnet125-161-130.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.175.148	attack	Oct 1 00:02:50 dedicated sshd[20853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Oct 1 00:02:52 dedicated sshd[20853]: Failed password for root from 222.186.175.148 port 2568 ssh2	2019-10-01 06:17:22
177.37.231.216	attackspambots	SMB Server BruteForce Attack	2019-10-01 06:09:45
158.69.113.39	attackbotsspam	Oct 1 00:15:45 SilenceServices sshd[6843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.113.39 Oct 1 00:15:47 SilenceServices sshd[6843]: Failed password for invalid user zoe from 158.69.113.39 port 53458 ssh2 Oct 1 00:23:32 SilenceServices sshd[9015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.113.39	2019-10-01 06:37:12
145.239.83.89	attackbotsspam	Sep 30 23:45:31 dedicated sshd[18284]: Invalid user ivanhoe from 145.239.83.89 port 34226	2019-10-01 06:14:04
189.26.113.98	attack	Sep 30 20:57:44 anodpoucpklekan sshd[53102]: Invalid user vijay from 189.26.113.98 port 52396 ...	2019-10-01 06:44:39
151.80.61.103	attackbots	(sshd) Failed SSH login from 151.80.61.103 (FR/France/103.ip-151-80-61.eu): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Sep 30 18:10:16 host sshd[34671]: Invalid user ts from 151.80.61.103 port 51078	2019-10-01 06:13:20
77.247.110.201	attackbots	\[2019-09-30 18:26:15\] NOTICE\[1948\] chan_sip.c: Registration from '\' failed for '77.247.110.201:53816' - Wrong password \[2019-09-30 18:26:15\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-30T18:26:15.241-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7600058",SessionID="0x7f1e1caa2688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.201/53816",Challenge="541bf896",ReceivedChallenge="541bf896",ReceivedHash="5f6cd39ef3789b6d668bad084358c9d5" \[2019-09-30 18:26:54\] NOTICE\[1948\] chan_sip.c: Registration from '\' failed for '77.247.110.201:60217' - Wrong password \[2019-09-30 18:26:54\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-30T18:26:54.092-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7600072",SessionID="0x7f1e1c3735b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110	2019-10-01 06:46:34
182.50.142.166	attack	Wordpress bruteforce	2019-10-01 06:20:30
222.186.52.89	attackspam	Unauthorized access to SSH at 30/Sep/2019:22:46:13 +0000. Received: (SSH-2.0-PUTTY)	2019-10-01 06:46:51
45.55.176.173	attackspambots	Sep 30 23:59:11 MK-Soft-VM6 sshd[4347]: Failed password for root from 45.55.176.173 port 49329 ssh2 ...	2019-10-01 06:38:26
89.40.216.157	attackspam	Invalid user lois from 89.40.216.157 port 41490	2019-10-01 06:16:06
41.184.180.148	attackbots	Unauthorised access (Sep 30) SRC=41.184.180.148 LEN=40 TOS=0x08 PREC=0x20 TTL=50 ID=21699 TCP DPT=8080 WINDOW=64205 SYN Unauthorised access (Sep 30) SRC=41.184.180.148 LEN=40 TOS=0x08 PREC=0x20 TTL=50 ID=21235 TCP DPT=8080 WINDOW=50355 SYN	2019-10-01 06:22:39
41.230.162.32	attackbotsspam	Port Scan: TCP/443	2019-10-01 06:38:59
212.47.238.207	attackbotsspam	2019-09-30T21:28:32.272923abusebot-4.cloudsearch.cf sshd\[8375\]: Invalid user git from 212.47.238.207 port 47388	2019-10-01 06:17:43
61.135.169.125	attackspambots	Port scan attempt detected by AWS-CCS, CTS, India	2019-10-01 06:26:00

最近上报的IP列表

114.152.7.40	39.152.45.173	98.5.208.217	113.120.140.242
75.231.11.62	57.50.105.217	121.132.82.254	61.228.117.141
173.180.8.181	95.243.29.136	61.56.93.162	24.172.158.5
63.7.16.135	122.145.138.108	88.77.156.236	18.103.244.100
134.249.188.143	83.192.164.71	197.188.221.142	65.86.132.70