125.161.130.49

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): PT Telekomunikasi Indonesia

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
125.161.130.6	attackbotsspam	Attempted connection to port 23.	2020-08-14 05:56:21
125.161.130.217	attack	Unauthorized IMAP connection attempt	2020-06-17 01:28:41
125.161.130.64	attack	Honeypot attack, port: 445, PTR: 64.subnet125-161-130.speedy.telkom.net.id.	2020-05-06 01:42:56
125.161.130.18	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 01-04-2020 04:55:09.	2020-04-01 13:18:17
125.161.130.17	attackspam	RDP Bruteforce	2020-03-02 04:33:01
125.161.130.201	attack	Lines containing failures of 125.161.130.201 Feb 29 06:23:23 shared11 sshd[8547]: Invalid user admin from 125.161.130.201 port 11578 Feb 29 06:23:23 shared11 sshd[8547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.130.201 Feb 29 06:23:25 shared11 sshd[8547]: Failed password for invalid user admin from 125.161.130.201 port 11578 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.161.130.201	2020-02-29 18:29:04
125.161.130.175	attackbots	Unauthorized connection attempt from IP address 125.161.130.175 on Port 445(SMB)	2020-02-13 00:24:06
125.161.130.70	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 08-02-2020 04:50:10.	2020-02-08 20:10:22
125.161.130.200	attackbots	Unauthorized connection attempt detected from IP address 125.161.130.200 to port 80 [J]	2020-02-05 19:33:41
125.161.130.227	attackbotsspam	(sshd) Failed SSH login from 125.161.130.227 (ID/Indonesia/227.subnet125-161-130.speedy.telkom.net.id): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 1 07:01:37 ubnt-55d23 sshd[29308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.130.227 user=root Feb 1 07:01:39 ubnt-55d23 sshd[29308]: Failed password for root from 125.161.130.227 port 15320 ssh2	2020-02-01 16:29:03
125.161.130.48	attackbotsspam	Unauthorized connection attempt detected from IP address 125.161.130.48 to port 8080 [J]	2020-01-31 05:32:43
125.161.130.218	attackbots	1580360145 - 01/30/2020 05:55:45 Host: 125.161.130.218/125.161.130.218 Port: 445 TCP Blocked	2020-01-30 20:59:57
125.161.130.157	attackbotsspam	Automatic report - SSH Brute-Force Attack	2020-01-16 17:53:22
125.161.130.7	attack	Honeypot attack, port: 81, PTR: 7.subnet125-161-130.speedy.telkom.net.id.	2020-01-14 02:22:02
125.161.130.125	attackspambots	Automatic report - Port Scan Attack	2020-01-02 05:25:32

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.161.130.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2545
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.161.130.49.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052202 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu May 23 23:01:05 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

49.130.161.125.in-addr.arpa domain name pointer 49.subnet125-161-130.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
49.130.161.125.in-addr.arpa	name = 49.subnet125-161-130.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.157.202.138	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-12 02:18:02,548 INFO [amun_request_handler] PortScan Detected on Port: 445 (201.157.202.138)	2019-09-12 20:03:03
14.102.76.10	attackbots	Unauthorized IMAP connection attempt	2019-09-12 19:47:17
167.71.82.184	attackspam	Sep 12 01:34:16 auw2 sshd\[23693\]: Invalid user test1 from 167.71.82.184 Sep 12 01:34:16 auw2 sshd\[23693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.82.184 Sep 12 01:34:19 auw2 sshd\[23693\]: Failed password for invalid user test1 from 167.71.82.184 port 53672 ssh2 Sep 12 01:39:41 auw2 sshd\[24274\]: Invalid user admin from 167.71.82.184 Sep 12 01:39:41 auw2 sshd\[24274\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.82.184	2019-09-12 19:48:41
49.234.48.86	attack	Sep 12 03:44:19 game-panel sshd[11331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.48.86 Sep 12 03:44:21 game-panel sshd[11331]: Failed password for invalid user sbserver from 49.234.48.86 port 37044 ssh2 Sep 12 03:50:30 game-panel sshd[11559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.48.86	2019-09-12 20:14:00
198.27.90.106	attack	Sep 12 07:19:58 ny01 sshd[27381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.90.106 Sep 12 07:20:00 ny01 sshd[27381]: Failed password for invalid user testuser from 198.27.90.106 port 45067 ssh2 Sep 12 07:25:43 ny01 sshd[28687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.90.106	2019-09-12 19:35:34
104.236.95.55	attackspambots	Sep 12 11:52:32 hcbbdb sshd\[32406\]: Invalid user git from 104.236.95.55 Sep 12 11:52:32 hcbbdb sshd\[32406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.95.55 Sep 12 11:52:34 hcbbdb sshd\[32406\]: Failed password for invalid user git from 104.236.95.55 port 44780 ssh2 Sep 12 12:01:32 hcbbdb sshd\[1009\]: Invalid user deploy from 104.236.95.55 Sep 12 12:01:32 hcbbdb sshd\[1009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.95.55	2019-09-12 20:10:58
210.21.226.2	attackbotsspam	Sep 12 03:51:03 MK-Soft-VM3 sshd\[29415\]: Invalid user sysmail from 210.21.226.2 port 17904 Sep 12 03:51:03 MK-Soft-VM3 sshd\[29415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.21.226.2 Sep 12 03:51:05 MK-Soft-VM3 sshd\[29415\]: Failed password for invalid user sysmail from 210.21.226.2 port 17904 ssh2 ...	2019-09-12 19:50:53
62.210.30.128	attackspam	Automated report - ssh fail2ban: Sep 12 13:47:09 authentication failure Sep 12 13:47:11 wrong password, user=ts, port=35338, ssh2 Sep 12 13:52:55 authentication failure	2019-09-12 20:13:03
23.251.128.200	attackbots	Sep 12 01:52:42 php1 sshd\[3518\]: Invalid user 1 from 23.251.128.200 Sep 12 01:52:42 php1 sshd\[3518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.251.128.200 Sep 12 01:52:44 php1 sshd\[3518\]: Failed password for invalid user 1 from 23.251.128.200 port 38399 ssh2 Sep 12 01:58:52 php1 sshd\[4056\]: Invalid user dbadmin from 23.251.128.200 Sep 12 01:58:52 php1 sshd\[4056\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.251.128.200	2019-09-12 20:15:02
61.92.169.178	attackspambots	SSH Bruteforce attempt	2019-09-12 19:44:12
173.208.152.250	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(09120936)	2019-09-12 20:07:52
174.37.18.218	attackbotsspam	Brute force RDP, port 3389	2019-09-12 20:33:55
77.245.149.11	attackspambots	77.245.149.11 - - \[12/Sep/2019:05:49:53 +0200\] "POST /wp-login.php HTTP/1.1" 200 2111 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 77.245.149.11 - - \[12/Sep/2019:05:49:54 +0200\] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-09-12 20:28:54
112.31.205.135	attackbots	Sep1205:48:36server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]Sep1205:48:44server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]Sep1205:48:51server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]Sep1205:48:56server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]Sep1205:49:03server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]Sep1205:49:11server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]Sep1205:49:17server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]Sep1205:49:23server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]Sep1205:49:29server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]Sep1205:49:34server6pure-ftpd:\(\?@112.31.205.135\)[WARNING]Authenticationfailedforuser[bfclcoin]	2019-09-12 20:27:02
198.23.251.111	attackspam	2019-09-12T07:13:23.016140abusebot-6.cloudsearch.cf sshd\[19735\]: Invalid user sysadmin from 198.23.251.111 port 40864	2019-09-12 19:36:21

最近上报的IP列表

154.231.150.236	116.155.185.190	180.65.40.81	104.153.50.188
116.50.160.34	150.214.60.136	92.207.236.155	103.47.83.189
68.30.150.87	47.29.17.127	148.56.34.98	182.176.171.52
160.126.208.229	5.67.138.25	71.110.161.210	197.61.212.232
122.245.105.69	87.26.38.213	180.135.41.144	130.120.169.207