必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attackspam
Unauthorized connection attempt from IP address 125.161.139.58 on Port 445(SMB)
2019-09-09 18:57:15
相同子网IP讨论:
IP 类型 评论内容 时间
125.161.139.27 attack
Icarus honeypot on github
2020-09-01 06:54:06
125.161.139.88 attackbotsspam
Aug 15 07:12:11 cdc sshd[29247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.139.88  user=pi
Aug 15 07:12:13 cdc sshd[29247]: Failed password for invalid user pi from 125.161.139.88 port 2779 ssh2
2020-08-15 15:30:28
125.161.139.28 attack
Unauthorized connection attempt from IP address 125.161.139.28 on Port 445(SMB)
2020-08-11 02:58:14
125.161.139.239 attackspam
1593740866 - 07/03/2020 03:47:46 Host: 125.161.139.239/125.161.139.239 Port: 445 TCP Blocked
2020-07-04 01:59:32
125.161.139.52 attackbots
125.161.139.52 - - \[26/Apr/2020:05:00:00 -0700\] "POST /index.php/admin/ HTTP/1.1" 404 20411125.161.139.52 - - \[26/Apr/2020:05:00:00 -0700\] "POST /index.php/admin/index/ HTTP/1.1" 404 20435125.161.139.52 - - \[26/Apr/2020:05:00:01 -0700\] "POST /index.php/admin/sales_order/ HTTP/1.1" 404 20459
...
2020-04-27 02:08:51
125.161.139.30 attack
Honeypot attack, port: 445, PTR: 30.subnet125-161-139.speedy.telkom.net.id.
2020-02-27 22:06:28
125.161.139.90 attackspam
1581396504 - 02/11/2020 05:48:24 Host: 125.161.139.90/125.161.139.90 Port: 445 TCP Blocked
2020-02-11 20:55:44
125.161.139.52 attackspambots
1579868924 - 01/24/2020 13:28:44 Host: 125.161.139.52/125.161.139.52 Port: 445 TCP Blocked
2020-01-25 04:52:34
125.161.139.148 attackbotsspam
Invalid user pi from 125.161.139.148 port 50862
2019-11-20 02:43:52
125.161.139.42 attackspambots
Attempt to attack host OS, exploiting network vulnerabilities, on 18-10-2019 12:45:23.
2019-10-18 19:55:10
125.161.139.248 attackbotsspam
Attempt to attack host OS, exploiting network vulnerabilities, on 12-10-2019 15:15:18.
2019-10-13 00:17:17
125.161.139.2 attackspambots
Unauthorized connection attempt from IP address 125.161.139.2 on Port 445(SMB)
2019-10-06 01:35:11
125.161.139.240 attackspambots
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-12 03:50:48,625 INFO [amun_request_handler] PortScan Detected on Port: 445 (125.161.139.240)
2019-09-12 13:48:54
125.161.139.215 attackbots
Sep  9 22:32:53 srv206 sshd[13747]: Invalid user tomcat from 125.161.139.215
...
2019-09-10 05:18:01
125.161.139.167 attackbotsspam
Honeypot attack, port: 445, PTR: 167.subnet125-161-139.speedy.telkom.net.id.
2019-08-24 22:41:34
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.161.139.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60725
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.161.139.58.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 09 18:56:57 CST 2019
;; MSG SIZE  rcvd: 118
HOST信息:
58.139.161.125.in-addr.arpa domain name pointer 58.subnet125-161-139.speedy.telkom.net.id.
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
58.139.161.125.in-addr.arpa	name = 58.subnet125-161-139.speedy.telkom.net.id.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
58.152.202.107 attackspam
Honeypot attack, port: 5555, PTR: n058152202107.netvigator.com.
2020-01-23 07:54:44
186.121.247.170 attack
Unauthorized connection attempt detected from IP address 186.121.247.170 to port 1433 [J]
2020-01-23 01:14:59
112.85.42.188 attackbots
01/22/2020-18:51:19.743230 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan
2020-01-23 07:52:51
103.52.216.40 attackbotsspam
Unauthorized connection attempt detected from IP address 103.52.216.40 to port 6061 [J]
2020-01-23 00:57:12
149.90.32.127 attackspambots
Unauthorized connection attempt detected from IP address 149.90.32.127 to port 4873 [J]
2020-01-23 00:51:55
213.81.178.155 attackspam
Unauthorized connection attempt detected from IP address 213.81.178.155 to port 80 [J]
2020-01-23 01:08:26
222.186.30.248 attack
22.01.2020 23:58:44 SSH access blocked by firewall
2020-01-23 08:01:23
39.97.181.40 attack
Unauthorized connection attempt detected from IP address 39.97.181.40 to port 23 [J]
2020-01-23 01:05:43
190.157.205.253 attack
Unauthorized connection attempt detected from IP address 190.157.205.253 to port 81 [J]
2020-01-23 01:13:27
190.39.199.223 attackspam
Unauthorized connection attempt detected from IP address 190.39.199.223 to port 5888 [J]
2020-01-23 01:13:49
218.92.0.172 attackspambots
Jan 23 00:52:38 srv-ubuntu-dev3 sshd[124116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172  user=root
Jan 23 00:52:39 srv-ubuntu-dev3 sshd[124116]: Failed password for root from 218.92.0.172 port 23857 ssh2
Jan 23 00:52:44 srv-ubuntu-dev3 sshd[124116]: Failed password for root from 218.92.0.172 port 23857 ssh2
Jan 23 00:52:38 srv-ubuntu-dev3 sshd[124116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172  user=root
Jan 23 00:52:39 srv-ubuntu-dev3 sshd[124116]: Failed password for root from 218.92.0.172 port 23857 ssh2
Jan 23 00:52:44 srv-ubuntu-dev3 sshd[124116]: Failed password for root from 218.92.0.172 port 23857 ssh2
Jan 23 00:52:38 srv-ubuntu-dev3 sshd[124116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172  user=root
Jan 23 00:52:39 srv-ubuntu-dev3 sshd[124116]: Failed password for root from 218.92.0.172 port 23857 ssh2
J
...
2020-01-23 08:01:41
93.144.81.36 attack
Honeypot attack, port: 81, PTR: net-93-144-81-36.cust.vodafonedsl.it.
2020-01-23 08:04:13
210.5.13.35 attackspam
Honeypot attack, port: 445, PTR: PTR record not found
2020-01-23 07:52:14
218.78.54.80 attackbotsspam
SSH Login Bruteforce
2020-01-23 07:57:13
109.123.117.251 attack
3389BruteforceFW23
2020-01-23 07:53:57

最近上报的IP列表

91.244.77.67 157.245.10.184 43.251.52.103 36.89.159.122
117.247.57.188 202.3.81.135 113.179.194.166 67.21.79.7
110.136.7.182 103.68.55.88 92.118.38.36 103.205.112.70
188.40.181.249 103.122.228.35 76.79.233.193 34.162.91.110
125.166.94.98 36.66.55.7 212.46.205.82 36.75.143.153