125.167.61.148

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
125.167.61.103	attackspam	Unauthorised access (Jun 30) SRC=125.167.61.103 LEN=52 TTL=118 ID=28884 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-30 15:00:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.167.61.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34065
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.167.61.148.			IN	A

;; AUTHORITY SECTION:
.			138	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 03:09:14 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 148.61.167.125.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 148.61.167.125.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.162.113.19	attackbotsspam	Unauthorised access (Sep 11) SRC=78.162.113.19 LEN=44 TOS=0x10 PREC=0x40 TTL=47 ID=826 TCP DPT=8080 WINDOW=33724 SYN Unauthorised access (Sep 11) SRC=78.162.113.19 LEN=44 TOS=0x10 PREC=0x40 TTL=47 ID=29184 TCP DPT=8080 WINDOW=33724 SYN	2019-09-12 03:10:03
212.162.148.245	attackbots	2019-09-11 x@x 2019-09-11 x@x 2019-09-11 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=212.162.148.245	2019-09-12 02:50:16
218.245.1.169	attackbots	Sep 11 11:13:52 localhost sshd\[110576\]: Invalid user hadoop from 218.245.1.169 port 55826 Sep 11 11:13:52 localhost sshd\[110576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.245.1.169 Sep 11 11:13:55 localhost sshd\[110576\]: Failed password for invalid user hadoop from 218.245.1.169 port 55826 ssh2 Sep 11 11:22:41 localhost sshd\[110865\]: Invalid user sinusbot from 218.245.1.169 port 53127 Sep 11 11:22:41 localhost sshd\[110865\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.245.1.169 ...	2019-09-12 02:37:42
66.240.219.146	attackspambots	Sep 10 20:42:09 lenivpn01 kernel: \[373733.888182\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=66.240.219.146 DST=195.201.121.15 LEN=44 TOS=0x10 PREC=0x00 TTL=110 ID=9415 PROTO=TCP SPT=26200 DPT=800 WINDOW=53238 RES=0x00 SYN URGP=0 Sep 10 23:16:52 lenivpn01 kernel: \[383016.459333\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=66.240.219.146 DST=195.201.121.15 LEN=44 TOS=0x10 PREC=0x00 TTL=110 ID=10354 PROTO=TCP SPT=26200 DPT=8058 WINDOW=58437 RES=0x00 SYN URGP=0 Sep 11 00:55:36 lenivpn01 kernel: \[388940.441469\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=66.240.219.146 DST=195.201.121.15 LEN=44 TOS=0x10 PREC=0x00 TTL=110 ID=35335 PROTO=TCP SPT=26200 DPT=5190 WINDOW=52934 RES=0x00 SYN URGP=0 ...	2019-09-12 02:35:16
104.140.148.58	attack	Sep 11 14:57:21 localhost kernel: [1966058.443067] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=2495 PROTO=TCP SPT=65325 DPT=987 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 14:57:21 localhost kernel: [1966058.443093] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=2495 PROTO=TCP SPT=65325 DPT=987 SEQ=3815533082 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 OPT (020405B4) Sep 11 14:59:52 localhost kernel: [1966209.518449] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=43417 PROTO=TCP SPT=64300 DPT=5910 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 14:59:52 localhost kernel: [1966209.518469] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=4	2019-09-12 03:13:24
185.204.217.97	attack	SSHScan	2019-09-12 03:02:11
111.231.215.244	attack	Sep 11 20:56:25 markkoudstaal sshd[16284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.215.244 Sep 11 20:56:26 markkoudstaal sshd[16284]: Failed password for invalid user myftp from 111.231.215.244 port 29870 ssh2 Sep 11 20:59:41 markkoudstaal sshd[16515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.215.244	2019-09-12 03:23:02
177.87.15.230	attackspambots	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-09-12 02:56:53
36.249.118.230	attackspam	Sep 11 20:59:42 km20725 sshd[16953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.249.118.230 user=r.r Sep 11 20:59:44 km20725 sshd[16953]: Failed password for r.r from 36.249.118.230 port 49540 ssh2 Sep 11 20:59:47 km20725 sshd[16953]: Failed password for r.r from 36.249.118.230 port 49540 ssh2 Sep 11 20:59:49 km20725 sshd[16953]: Failed password for r.r from 36.249.118.230 port 49540 ssh2 Sep 11 20:59:52 km20725 sshd[16953]: Failed password for r.r from 36.249.118.230 port 49540 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=36.249.118.230	2019-09-12 03:14:41
71.6.199.23	attackspambots	11.09.2019 17:55:40 Connection to port 1400 blocked by firewall	2019-09-12 02:34:02
192.241.76.61	attack	US - 1H : (376) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN55286 IP : 192.241.76.61 CIDR : 192.241.64.0/20 PREFIX COUNT : 475 UNIQUE IP COUNT : 511744 WYKRYTE ATAKI Z ASN55286 : 1H - 2 3H - 2 6H - 2 12H - 6 24H - 6 INFO : Looking for resource vulnerabilities 403 Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-09-12 02:51:14
122.161.192.206	attack	Sep 11 20:33:17 MK-Soft-Root1 sshd\[30473\]: Invalid user support from 122.161.192.206 port 57446 Sep 11 20:33:17 MK-Soft-Root1 sshd\[30473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.161.192.206 Sep 11 20:33:20 MK-Soft-Root1 sshd\[30473\]: Failed password for invalid user support from 122.161.192.206 port 57446 ssh2 ...	2019-09-12 02:38:18
112.195.165.23	attackspambots	Sep 10 22:02:10 lcdev sshd\[13557\]: Invalid user guest from 112.195.165.23 Sep 10 22:02:10 lcdev sshd\[13557\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.195.165.23 Sep 10 22:02:12 lcdev sshd\[13557\]: Failed password for invalid user guest from 112.195.165.23 port 37138 ssh2 Sep 10 22:06:58 lcdev sshd\[13977\]: Invalid user sammy from 112.195.165.23 Sep 10 22:06:58 lcdev sshd\[13977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.195.165.23	2019-09-12 02:39:20
39.68.154.165	attack	Fail2Ban - FTP Abuse Attempt	2019-09-12 02:53:29
168.253.112.162	attackspambots	Sep 11 09:49:32 [munged] sshd[13241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.253.112.162	2019-09-12 03:01:26

Recently Reported IPs

125.167.61.24	125.167.61.77	125.167.61.87	117.92.29.192
125.167.62.184	125.167.62.143	125.167.62.209	125.167.62.154
125.167.61.98	125.167.62.172	125.167.62.103	125.167.62.111
125.167.62.159	125.167.62.18	125.167.62.176	125.167.62.112
117.92.32.163	125.167.62.234	125.167.62.24	125.167.62.245