125.161.130.49

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): PT Telekomunikasi Indonesia

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
125.161.130.6	attackbotsspam	Attempted connection to port 23.	2020-08-14 05:56:21
125.161.130.217	attack	Unauthorized IMAP connection attempt	2020-06-17 01:28:41
125.161.130.64	attack	Honeypot attack, port: 445, PTR: 64.subnet125-161-130.speedy.telkom.net.id.	2020-05-06 01:42:56
125.161.130.18	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 01-04-2020 04:55:09.	2020-04-01 13:18:17
125.161.130.17	attackspam	RDP Bruteforce	2020-03-02 04:33:01
125.161.130.201	attack	Lines containing failures of 125.161.130.201 Feb 29 06:23:23 shared11 sshd[8547]: Invalid user admin from 125.161.130.201 port 11578 Feb 29 06:23:23 shared11 sshd[8547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.130.201 Feb 29 06:23:25 shared11 sshd[8547]: Failed password for invalid user admin from 125.161.130.201 port 11578 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.161.130.201	2020-02-29 18:29:04
125.161.130.175	attackbots	Unauthorized connection attempt from IP address 125.161.130.175 on Port 445(SMB)	2020-02-13 00:24:06
125.161.130.70	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 08-02-2020 04:50:10.	2020-02-08 20:10:22
125.161.130.200	attackbots	Unauthorized connection attempt detected from IP address 125.161.130.200 to port 80 [J]	2020-02-05 19:33:41
125.161.130.227	attackbotsspam	(sshd) Failed SSH login from 125.161.130.227 (ID/Indonesia/227.subnet125-161-130.speedy.telkom.net.id): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 1 07:01:37 ubnt-55d23 sshd[29308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.130.227 user=root Feb 1 07:01:39 ubnt-55d23 sshd[29308]: Failed password for root from 125.161.130.227 port 15320 ssh2	2020-02-01 16:29:03
125.161.130.48	attackbotsspam	Unauthorized connection attempt detected from IP address 125.161.130.48 to port 8080 [J]	2020-01-31 05:32:43
125.161.130.218	attackbots	1580360145 - 01/30/2020 05:55:45 Host: 125.161.130.218/125.161.130.218 Port: 445 TCP Blocked	2020-01-30 20:59:57
125.161.130.157	attackbotsspam	Automatic report - SSH Brute-Force Attack	2020-01-16 17:53:22
125.161.130.7	attack	Honeypot attack, port: 81, PTR: 7.subnet125-161-130.speedy.telkom.net.id.	2020-01-14 02:22:02
125.161.130.125	attackspambots	Automatic report - Port Scan Attack	2020-01-02 05:25:32

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.161.130.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2545
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.161.130.49.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052202 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu May 23 23:01:05 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

49.130.161.125.in-addr.arpa domain name pointer 49.subnet125-161-130.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
49.130.161.125.in-addr.arpa	name = 49.subnet125-161-130.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
161.35.37.0	attackbotsspam	Invalid user parsa from 161.35.37.0 port 23529	2020-07-16 15:33:14
119.45.122.102	attackbotsspam	sshd jail - ssh hack attempt	2020-07-16 15:48:07
61.177.172.142	attackspambots	$f2bV_matches	2020-07-16 15:22:26
116.110.113.132	attackspambots	Jul 16 08:27:18 ArkNodeAT sshd\[5532\]: Invalid user 1234 from 116.110.113.132 Jul 16 08:27:18 ArkNodeAT sshd\[5532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.110.113.132 Jul 16 08:27:20 ArkNodeAT sshd\[5532\]: Failed password for invalid user 1234 from 116.110.113.132 port 59834 ssh2	2020-07-16 15:29:25
193.35.51.13	attackspam	Jul 16 09:50:02 mail.srvfarm.net postfix/smtpd[805418]: warning: unknown[193.35.51.13]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 16 09:50:02 mail.srvfarm.net postfix/smtpd[805418]: lost connection after AUTH from unknown[193.35.51.13] Jul 16 09:50:07 mail.srvfarm.net postfix/smtpd[808142]: lost connection after AUTH from unknown[193.35.51.13] Jul 16 09:50:12 mail.srvfarm.net postfix/smtpd[805418]: lost connection after AUTH from unknown[193.35.51.13] Jul 16 09:50:16 mail.srvfarm.net postfix/smtpd[805417]: lost connection after AUTH from unknown[193.35.51.13]	2020-07-16 15:54:39
52.187.202.122	attack	Jul 16 01:43:25 hidden sshd[4116]: Failed password for hidden from 52.187.202.122 port 16828 ssh2 Jul 16 03:26:10 hidden sshd[19625]: Failed password for hidden from 52.187.202.122 port 50703 ssh2 Jul 16 09:14:04 hidden sshd[8704]: Failed password for hidden from 52.187.202.122 port 22424 ssh2	2020-07-16 15:21:02
49.234.224.88	attackbots	Invalid user sean from 49.234.224.88 port 37846	2020-07-16 15:50:00
185.204.3.36	attackspam	Invalid user admin from 185.204.3.36 port 46804	2020-07-16 15:56:24
198.46.152.196	attackbots	Jul 16 06:59:21 *** sshd[27204]: Invalid user starbound from 198.46.152.196	2020-07-16 15:35:00
45.183.192.14	attackbotsspam	Jul 16 07:44:08 vps sshd[4313]: Failed password for invalid user ima from 45.183.192.14 port 56262 ssh2 Jul 16 07:48:57 vps sshd[27197]: Invalid user admin from 45.183.192.14 port 42504 Jul 16 07:48:57 vps sshd[27197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.183.192.14 Jul 16 07:48:59 vps sshd[27197]: Failed password for invalid user admin from 45.183.192.14 port 42504 ssh2 Jul 16 07:53:57 vps sshd[50717]: Invalid user ubuntu from 45.183.192.14 port 56978 ...	2020-07-16 15:26:15
220.250.25.36	attack	Jul 16 07:48:14 ns382633 sshd\[17876\]: Invalid user syn from 220.250.25.36 port 47410 Jul 16 07:48:14 ns382633 sshd\[17876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.250.25.36 Jul 16 07:48:16 ns382633 sshd\[17876\]: Failed password for invalid user syn from 220.250.25.36 port 47410 ssh2 Jul 16 08:06:39 ns382633 sshd\[21118\]: Invalid user markus from 220.250.25.36 port 21867 Jul 16 08:06:39 ns382633 sshd\[21118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.250.25.36	2020-07-16 15:53:29
202.79.34.76	attackbots	Invalid user informix from 202.79.34.76 port 43348	2020-07-16 15:29:01
122.51.82.22	attack	Jul 16 09:42:50 vps639187 sshd\[27216\]: Invalid user build from 122.51.82.22 port 34874 Jul 16 09:42:50 vps639187 sshd\[27216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22 Jul 16 09:42:52 vps639187 sshd\[27216\]: Failed password for invalid user build from 122.51.82.22 port 34874 ssh2 ...	2020-07-16 15:44:57
118.100.116.155	attackbots	Invalid user ulus from 118.100.116.155 port 45192	2020-07-16 15:25:26
183.3.144.210	attackbotsspam	20/7/15@23:52:12: FAIL: Alarm-Intrusion address from=183.3.144.210 ...	2020-07-16 15:51:46

最近上报的IP列表

154.231.150.236	116.155.185.190	180.65.40.81	104.153.50.188
116.50.160.34	150.214.60.136	92.207.236.155	103.47.83.189
68.30.150.87	47.29.17.127	148.56.34.98	182.176.171.52
160.126.208.229	5.67.138.25	71.110.161.210	197.61.212.232
122.245.105.69	87.26.38.213	180.135.41.144	130.120.169.207