Looking up IP
Check an IP Address, Domain Name, Subnet, or ASN
45.125.47.116 has a threat confidence score of 76%. This IP address from China (AS139180, Shandong eshinton Network Technology Co., Ltd.) has been observed in 5 honeypot sessions targeting FTP protocols. Detected attack patterns include ftp valid account photo scr deployment. First observed on March 15, 2026, most recently active March 15, 2026.
Detects an automated FTP session performing credential probing, directory discovery, ASCII mode configuration, passive transfer negotiation, and staged upload of a photo_scr payload. This pattern is consistent with scripted web shell or content-stager deployment via compromised FTP credentials.