JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 125.164.232.109

125.164.232.109 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 4%: ?

ISP	PT TELKOM INDONESIA
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.co.id
Country	🇮🇩 Indonesia
City	Kedungwaru, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 125.164.232.109

Whois 125.164.232.109

IP Abuse Reports for 125.164.232.109:

This IP address has been reported a total of 5 times from 4 distinct sources. 125.164.232.109 was first reported on April 21st 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-27 08:03:16 (1 day ago)	[Sat Jun 27 15:03:12.456700 2026] [security2:error] [pid 951173:tid 139938632795840] [client 125.164 ... show more [Sat Jun 27 15:03:12.456700 2026] [security2:error] [pid 951173:tid 139938632795840] [client 125.164.232.109:28173] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i)(?:^\|b[\\"'\\\\)\\\\[\\\\x5c](?:(?:(?:\\\\\|\\\\\|\|&&)[\\\\s\\\\x0b])?\\\\$[!#\\\$\\\\\\\\-0-9\\\\?@_a-\\\\{])?\\\\x5c?u[\\"'\\\$\\\\[\\\\x5c](?:(?:(?:\\\\\|\\\\\|\|&&)[\\\\s\\\\x0b])?\\\\$[!#\\\$\\\\\\\\-0-9\\\\?@_a-\\\\{])?\\\\x5c?s[\\"'\\\$\\\\[\\\\x5c](?:(?:(?:\\\\\|\\\\\|\|&&)[\\\\s\\\\x0b])?\\\\$[!#\\\\(\\\\*\\\\-0- ..." at ARGS_NAMES:id. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "3256"] [id "932350"] [msg "Remote Command Execution: Direct Unix Command Execution (No Arguments)"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: id found within ARGS_NAMES:id: id request_line = GET /index.php/component/search/?Itemid=1310&id=408:gempa-terkini&format=opensearch HTTP/2.0 Request ... show less	Email Spam Hacking
🇧🇷 diego	2024-03-26 06:53:03 (2 years ago)	[rede-164-29] 03/26/2024-03:53:03.590214, 125.164.232.109, Protocol: 6, ET SCAN Suspicious inbound t ... show more [rede-164-29] 03/26/2024-03:53:03.590214, 125.164.232.109, Protocol: 6, ET SCAN Suspicious inbound to MSSQL port 1433 show less	Hacking
🇧🇷 diego	2024-03-25 07:44:04 (2 years ago)	[kvm3859] 03/25/2024-04:44:04.390977, 125.164.232.109, Protocol: 6, ET SCAN Suspicious inbound to my ... show more [kvm3859] 03/25/2024-04:44:04.390977, 125.164.232.109, Protocol: 6, ET SCAN Suspicious inbound to mySQL port 3306 show less	Hacking
🇿🇦 IrisFlower	2022-04-23 00:30:41 (4 years ago)	Unauthorized connection attempt detected from IP address 125.164.232.109 to port 23 [J]	Port Scan Hacking
🇳🇱 EGP Abuse Dept	2022-04-21 16:43:16 (4 years ago)	Unauthorized connection to Telnet port 23	Port Scan Hacking

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇻 81.30.98.44

🇺🇸 54.184.96.248

🇮🇪 54.75.1.84

🇲🇾 47.250.125.42

🇩🇪 46.101.248.64

🇺🇸 20.169.74.230

🇸🇪 20.91.210.35

🇧🇷 205.210.31.166

🇺🇸 205.210.31.19

🇵🇰 202.47.42.54

🇬🇧 195.96.139.55

🇬🇧 185.247.137.176

🇮🇶 185.24.61.224

🇫🇷 172.71.122.189

🇨🇦 142.44.228.34

🇺🇸 103.215.74.185

🇳🇵 103.162.3.61

🇩🇪 92.246.91.211

🇩🇪 92.246.91.93

🇱🇻 81.30.98.62