125.161.130.49

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): PT Telekomunikasi Indonesia

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
125.161.130.6	attackbotsspam	Attempted connection to port 23.	2020-08-14 05:56:21
125.161.130.217	attack	Unauthorized IMAP connection attempt	2020-06-17 01:28:41
125.161.130.64	attack	Honeypot attack, port: 445, PTR: 64.subnet125-161-130.speedy.telkom.net.id.	2020-05-06 01:42:56
125.161.130.18	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 01-04-2020 04:55:09.	2020-04-01 13:18:17
125.161.130.17	attackspam	RDP Bruteforce	2020-03-02 04:33:01
125.161.130.201	attack	Lines containing failures of 125.161.130.201 Feb 29 06:23:23 shared11 sshd[8547]: Invalid user admin from 125.161.130.201 port 11578 Feb 29 06:23:23 shared11 sshd[8547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.130.201 Feb 29 06:23:25 shared11 sshd[8547]: Failed password for invalid user admin from 125.161.130.201 port 11578 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.161.130.201	2020-02-29 18:29:04
125.161.130.175	attackbots	Unauthorized connection attempt from IP address 125.161.130.175 on Port 445(SMB)	2020-02-13 00:24:06
125.161.130.70	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 08-02-2020 04:50:10.	2020-02-08 20:10:22
125.161.130.200	attackbots	Unauthorized connection attempt detected from IP address 125.161.130.200 to port 80 [J]	2020-02-05 19:33:41
125.161.130.227	attackbotsspam	(sshd) Failed SSH login from 125.161.130.227 (ID/Indonesia/227.subnet125-161-130.speedy.telkom.net.id): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 1 07:01:37 ubnt-55d23 sshd[29308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.130.227 user=root Feb 1 07:01:39 ubnt-55d23 sshd[29308]: Failed password for root from 125.161.130.227 port 15320 ssh2	2020-02-01 16:29:03
125.161.130.48	attackbotsspam	Unauthorized connection attempt detected from IP address 125.161.130.48 to port 8080 [J]	2020-01-31 05:32:43
125.161.130.218	attackbots	1580360145 - 01/30/2020 05:55:45 Host: 125.161.130.218/125.161.130.218 Port: 445 TCP Blocked	2020-01-30 20:59:57
125.161.130.157	attackbotsspam	Automatic report - SSH Brute-Force Attack	2020-01-16 17:53:22
125.161.130.7	attack	Honeypot attack, port: 81, PTR: 7.subnet125-161-130.speedy.telkom.net.id.	2020-01-14 02:22:02
125.161.130.125	attackspambots	Automatic report - Port Scan Attack	2020-01-02 05:25:32

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.161.130.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2545
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.161.130.49.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052202 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu May 23 23:01:05 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

49.130.161.125.in-addr.arpa domain name pointer 49.subnet125-161-130.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
49.130.161.125.in-addr.arpa	name = 49.subnet125-161-130.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
180.178.55.10	attackspambots	Oct 4 04:57:48 tdfoods sshd\[32154\]: Invalid user Apple@2017 from 180.178.55.10 Oct 4 04:57:48 tdfoods sshd\[32154\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.178.55.10 Oct 4 04:57:50 tdfoods sshd\[32154\]: Failed password for invalid user Apple@2017 from 180.178.55.10 port 44161 ssh2 Oct 4 05:02:12 tdfoods sshd\[32496\]: Invalid user 123Crocodile from 180.178.55.10 Oct 4 05:02:12 tdfoods sshd\[32496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.178.55.10	2019-10-04 23:06:27
222.186.190.2	attackspam	Oct 4 10:52:42 xentho sshd[8799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Oct 4 10:52:43 xentho sshd[8799]: Failed password for root from 222.186.190.2 port 32962 ssh2 Oct 4 10:52:48 xentho sshd[8799]: Failed password for root from 222.186.190.2 port 32962 ssh2 Oct 4 10:52:42 xentho sshd[8799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Oct 4 10:52:43 xentho sshd[8799]: Failed password for root from 222.186.190.2 port 32962 ssh2 Oct 4 10:52:48 xentho sshd[8799]: Failed password for root from 222.186.190.2 port 32962 ssh2 Oct 4 10:52:42 xentho sshd[8799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Oct 4 10:52:43 xentho sshd[8799]: Failed password for root from 222.186.190.2 port 32962 ssh2 Oct 4 10:52:48 xentho sshd[8799]: Failed password for root from 222.186.190.2 po ...	2019-10-04 22:53:31
217.21.193.20	attack	464/tcp 445/tcp 401/tcp... [2019-08-03/10-04]1953pkt,101pt.(tcp),2tp.(icmp)	2019-10-04 22:43:25
198.108.67.111	attack	10/04/2019-09:04:41.647018 198.108.67.111 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-04 22:47:17
165.22.144.206	attackbots	Oct 4 20:55:38 webhost01 sshd[5045]: Failed password for root from 165.22.144.206 port 42008 ssh2 ...	2019-10-04 22:33:00
122.112.249.76	attackbotsspam	enlinea.de 122.112.249.76 \[04/Oct/2019:14:26:55 +0200\] "POST /wp-login.php HTTP/1.1" 200 5640 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" enlinea.de 122.112.249.76 \[04/Oct/2019:14:26:57 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4141 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-04 22:55:32
41.242.137.28	attack	Automatic report - Port Scan Attack	2019-10-04 22:53:59
106.13.56.45	attack	Oct 4 16:33:54 nextcloud sshd\[30947\]: Invalid user Marcos2017 from 106.13.56.45 Oct 4 16:33:54 nextcloud sshd\[30947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.56.45 Oct 4 16:33:56 nextcloud sshd\[30947\]: Failed password for invalid user Marcos2017 from 106.13.56.45 port 33746 ssh2 ...	2019-10-04 22:40:54
92.63.194.56	attackspambots	10/04/2019-14:27:10.208491 92.63.194.56 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-04 22:44:45
198.108.67.43	attackspambots	2077/tcp 2985/tcp 2572/tcp... [2019-08-03/10-04]114pkt,109pt.(tcp)	2019-10-04 23:08:27
178.88.115.126	attackspam	SSH Brute-Force reported by Fail2Ban	2019-10-04 23:08:45
222.186.42.241	attackbotsspam	Oct 4 16:41:05 freya sshd[24466]: Disconnected from authenticating user root 222.186.42.241 port 25626 [preauth] ...	2019-10-04 22:42:38
167.114.18.68	attackspam	[munged]::443 167.114.18.68 - - [04/Oct/2019:14:40:37 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 167.114.18.68 - - [04/Oct/2019:14:40:38 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 167.114.18.68 - - [04/Oct/2019:14:40:40 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 167.114.18.68 - - [04/Oct/2019:14:40:41 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 167.114.18.68 - - [04/Oct/2019:14:40:43 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 167.114.18.68 - - [04/Oct/2019:14:40:44 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubun	2019-10-04 22:57:29
106.12.125.139	attackspam	Oct 4 15:27:48 MK-Soft-VM5 sshd[1796]: Failed password for root from 106.12.125.139 port 47336 ssh2 ...	2019-10-04 22:27:48
164.132.56.243	attackbotsspam	2019-10-04T14:16:59.633532abusebot-6.cloudsearch.cf sshd\[10275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=243.ip-164-132-56.eu user=root	2019-10-04 22:37:47

最近上报的IP列表

154.231.150.236	116.155.185.190	180.65.40.81	104.153.50.188
116.50.160.34	150.214.60.136	92.207.236.155	103.47.83.189
68.30.150.87	47.29.17.127	148.56.34.98	182.176.171.52
160.126.208.229	5.67.138.25	71.110.161.210	197.61.212.232
122.245.105.69	87.26.38.213	180.135.41.144	130.120.169.207