必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attackspambots
SSH bruteforce (Triggered fail2ban)
2019-07-28 10:47:12
相同子网IP讨论:
IP 类型 评论内容 时间
125.161.139.27 attack
Icarus honeypot on github
2020-09-01 06:54:06
125.161.139.88 attackbotsspam
Aug 15 07:12:11 cdc sshd[29247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.139.88  user=pi
Aug 15 07:12:13 cdc sshd[29247]: Failed password for invalid user pi from 125.161.139.88 port 2779 ssh2
2020-08-15 15:30:28
125.161.139.28 attack
Unauthorized connection attempt from IP address 125.161.139.28 on Port 445(SMB)
2020-08-11 02:58:14
125.161.139.239 attackspam
1593740866 - 07/03/2020 03:47:46 Host: 125.161.139.239/125.161.139.239 Port: 445 TCP Blocked
2020-07-04 01:59:32
125.161.139.52 attackbots
125.161.139.52 - - \[26/Apr/2020:05:00:00 -0700\] "POST /index.php/admin/ HTTP/1.1" 404 20411125.161.139.52 - - \[26/Apr/2020:05:00:00 -0700\] "POST /index.php/admin/index/ HTTP/1.1" 404 20435125.161.139.52 - - \[26/Apr/2020:05:00:01 -0700\] "POST /index.php/admin/sales_order/ HTTP/1.1" 404 20459
...
2020-04-27 02:08:51
125.161.139.30 attack
Honeypot attack, port: 445, PTR: 30.subnet125-161-139.speedy.telkom.net.id.
2020-02-27 22:06:28
125.161.139.90 attackspam
1581396504 - 02/11/2020 05:48:24 Host: 125.161.139.90/125.161.139.90 Port: 445 TCP Blocked
2020-02-11 20:55:44
125.161.139.52 attackspambots
1579868924 - 01/24/2020 13:28:44 Host: 125.161.139.52/125.161.139.52 Port: 445 TCP Blocked
2020-01-25 04:52:34
125.161.139.148 attackbotsspam
Invalid user pi from 125.161.139.148 port 50862
2019-11-20 02:43:52
125.161.139.42 attackspambots
Attempt to attack host OS, exploiting network vulnerabilities, on 18-10-2019 12:45:23.
2019-10-18 19:55:10
125.161.139.248 attackbotsspam
Attempt to attack host OS, exploiting network vulnerabilities, on 12-10-2019 15:15:18.
2019-10-13 00:17:17
125.161.139.2 attackspambots
Unauthorized connection attempt from IP address 125.161.139.2 on Port 445(SMB)
2019-10-06 01:35:11
125.161.139.240 attackspambots
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-12 03:50:48,625 INFO [amun_request_handler] PortScan Detected on Port: 445 (125.161.139.240)
2019-09-12 13:48:54
125.161.139.215 attackbots
Sep  9 22:32:53 srv206 sshd[13747]: Invalid user tomcat from 125.161.139.215
...
2019-09-10 05:18:01
125.161.139.58 attackspam
Unauthorized connection attempt from IP address 125.161.139.58 on Port 445(SMB)
2019-09-09 18:57:15
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.161.139.86
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20579
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.161.139.86.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072701 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 28 10:47:04 CST 2019
;; MSG SIZE  rcvd: 118
HOST信息:
86.139.161.125.in-addr.arpa domain name pointer 86.subnet125-161-139.speedy.telkom.net.id.
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
86.139.161.125.in-addr.arpa	name = 86.subnet125-161-139.speedy.telkom.net.id.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
1.172.77.146 attack
Honeypot attack, port: 23, PTR: 1-172-77-146.dynamic-ip.hinet.net.
2019-08-06 10:38:18
183.150.0.132 attackbots
account brute force by foreign IP
2019-08-06 10:34:05
60.184.83.96 attackbotsspam
account brute force by foreign IP
2019-08-06 10:38:35
177.154.234.217 attackbotsspam
Aug  5 21:35:17 web1 postfix/smtpd[17569]: warning: unknown[177.154.234.217]: SASL PLAIN authentication failed: authentication failure
...
2019-08-06 11:07:57
121.232.148.122 attack
account brute force by foreign IP
2019-08-06 10:37:19
113.137.20.127 attack
Honeypot attack, port: 23, PTR: PTR record not found
2019-08-06 11:21:43
149.202.204.141 attackspam
Aug  6 03:12:44 localhost sshd\[125908\]: Invalid user ts3server from 149.202.204.141 port 50922
Aug  6 03:12:44 localhost sshd\[125908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.204.141
Aug  6 03:12:46 localhost sshd\[125908\]: Failed password for invalid user ts3server from 149.202.204.141 port 50922 ssh2
Aug  6 03:16:50 localhost sshd\[126007\]: Invalid user sparc from 149.202.204.141 port 46430
Aug  6 03:16:50 localhost sshd\[126007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.204.141
...
2019-08-06 11:21:18
1.196.113.167 attack
account brute force by foreign IP
2019-08-06 10:41:01
115.213.153.151 attack
account brute force by foreign IP
2019-08-06 10:56:28
183.166.125.184 attack
account brute force by foreign IP
2019-08-06 10:46:28
195.154.114.153 attackbotsspam
Honeypot attack, application: ssdp, PTR: 195-154-114-153.rev.poneytelecom.eu.
2019-08-06 10:47:30
106.6.231.171 attackspambots
account brute force by foreign IP
2019-08-06 11:05:58
36.62.242.193 attack
account brute force by foreign IP
2019-08-06 10:37:42
79.173.208.225 attackbotsspam
Honeypot attack, port: 23, PTR: 79.173.x.225.go.com.jo.
2019-08-06 10:34:57
121.233.207.234 attack
account brute force by foreign IP
2019-08-06 11:08:34

最近上报的IP列表

253.158.53.219 159.2.73.99 169.168.150.147 123.65.230.49
66.70.130.149 61.67.27.27 142.11.249.130 23.101.69.103
187.120.131.67 103.255.6.2 49.67.164.164 125.224.34.22
177.69.130.81 109.236.211.171 104.203.118.43 166.111.80.44
54.37.136.60 117.94.28.194 189.5.4.195 189.90.244.82