必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
142.4.6.212 attack
142.4.6.212 - - [11/Jul/2020:10:54:55 +0200] "GET /wp-login.php HTTP/1.1" 200 5990 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - [11/Jul/2020:10:54:58 +0200] "POST /wp-login.php HTTP/1.1" 200 6220 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - [11/Jul/2020:10:55:00 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-07-11 17:05:04
142.4.6.212 attack
142.4.6.212 - - [05/Jul/2020:20:03:33 +0100] "POST /wp-login.php HTTP/1.1" 200 1795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - [05/Jul/2020:20:03:35 +0100] "POST /wp-login.php HTTP/1.1" 200 1772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - [05/Jul/2020:20:03:35 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-07-06 04:17:34
142.4.6.212 attack
142.4.6.212 - - [27/May/2020:13:55:19 +0200] "POST /wp-login.php HTTP/1.1" 200 3432 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - [27/May/2020:13:55:21 +0200] "POST /wp-login.php HTTP/1.1" 200 3411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-05-27 22:01:48
142.4.6.212 attackbotsspam
Automatic report - XMLRPC Attack
2020-05-27 12:25:58
142.4.6.212 attackspambots
xmlrpc attack
2020-05-20 02:53:31
142.4.6.212 attackbots
142.4.6.212 - - \[12/May/2020:08:17:32 +0200\] "POST /wp-login.php HTTP/1.0" 200 7318 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - \[12/May/2020:08:17:35 +0200\] "POST /wp-login.php HTTP/1.0" 200 7318 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - \[12/May/2020:08:17:37 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 802 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-05-12 17:31:19
142.4.6.212 attack
142.4.6.212 - - \[08/May/2020:14:11:29 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - \[08/May/2020:14:11:38 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - \[08/May/2020:14:11:57 +0200\] "POST /wp-login.php HTTP/1.0" 200 6301 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-05-09 00:47:23
142.4.6.212 attack
142.4.6.212 - - \[17/Apr/2020:05:59:01 +0200\] "POST /wp-login.php HTTP/1.0" 200 6533 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - \[17/Apr/2020:05:59:05 +0200\] "POST /wp-login.php HTTP/1.0" 200 6370 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
142.4.6.212 - - \[17/Apr/2020:05:59:07 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-04-17 12:30:44
142.4.6.175 attackspam
142.4.6.175 - - \[24/Nov/2019:07:20:36 +0100\] "POST /wp-login.php HTTP/1.0" 200 6655 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
142.4.6.175 - - \[24/Nov/2019:07:21:00 +0100\] "POST /wp-login.php HTTP/1.0" 200 6493 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
142.4.6.175 - - \[24/Nov/2019:07:21:21 +0100\] "POST /wp-login.php HTTP/1.0" 200 6492 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-11-24 19:49:02
142.4.6.175 attackspambots
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/142.4.6.175/ 
 
 US - 1H : (194)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : US 
 NAME ASN : ASN46606 
 
 IP : 142.4.6.175 
 
 CIDR : 142.4.0.0/19 
 
 PREFIX COUNT : 301 
 
 UNIQUE IP COUNT : 1563392 
 
 
 ATTACKS DETECTED ASN46606 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 1 
 
 DateTime : 2019-11-06 07:21:47 
 
 INFO : Server 404 - Looking for resource vulnerabilities Detected and Blocked by ADMIN  - data recovery
2019-11-06 21:16:00
142.4.6.175 attackbotsspam
fail2ban honeypot
2019-10-19 14:49:44
142.4.6.175 attack
xmlrpc attack
2019-09-30 03:25:01
142.4.6.175 attack
$f2bV_matches
2019-07-29 15:26:09
142.4.6.175 attackspam
May 30 12:29:07 server sshd\[169512\]: Invalid user admin from 142.4.6.175
May 30 12:29:07 server sshd\[169512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.6.175
May 30 12:29:09 server sshd\[169512\]: Failed password for invalid user admin from 142.4.6.175 port 45010 ssh2
...
2019-07-12 05:20:54
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.4.6.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64366
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.4.6.207.			IN	A

;; AUTHORITY SECTION:
.			479	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:04:39 CST 2022
;; MSG SIZE  rcvd: 104
HOST信息:
207.6.4.142.in-addr.arpa domain name pointer 142-4-6-207.unifiedlayer.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
207.6.4.142.in-addr.arpa	name = 142-4-6-207.unifiedlayer.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
79.116.250.76 attack
scan z
2020-04-16 18:39:49
222.186.175.215 attackbots
Apr 16 13:04:18 host sshd[17412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215  user=root
Apr 16 13:04:20 host sshd[17412]: Failed password for root from 222.186.175.215 port 16122 ssh2
...
2020-04-16 19:11:17
211.147.216.19 attackbots
IP blocked
2020-04-16 18:29:39
91.121.135.79 attack
Apr 16 05:48:07 jane sshd[17669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.135.79 
Apr 16 05:48:09 jane sshd[17669]: Failed password for invalid user share from 91.121.135.79 port 54858 ssh2
...
2020-04-16 18:36:51
139.255.73.9 attack
Apr 16 04:47:16 askasleikir sshd[220457]: Failed password for invalid user vagrant from 139.255.73.9 port 61200 ssh2
2020-04-16 18:31:44
47.205.52.166 attack
Unauthorized connection attempt detected from IP address 47.205.52.166 to port 8000 [T]
2020-04-16 18:42:23
164.132.225.250 attackbotsspam
$f2bV_matches
2020-04-16 18:39:19
218.201.222.25 attack
DATE:2020-04-16 05:47:59, IP:218.201.222.25, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)
2020-04-16 18:47:40
51.83.108.93 attackspam
51.83.108.93 - - \[16/Apr/2020:08:33:25 +0000\] "POST /wp-login.php HTTP/1.1" 200 1573 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
51.83.108.93 - - \[16/Apr/2020:08:33:27 +0000\] "POST /wp-login.php HTTP/1.1" 200 1574 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
...
2020-04-16 18:43:12
13.231.86.194 attackspam
Apr 16 09:34:05 game-panel sshd[11740]: Failed password for root from 13.231.86.194 port 43046 ssh2
Apr 16 09:38:28 game-panel sshd[11871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.231.86.194
Apr 16 09:38:30 game-panel sshd[11871]: Failed password for invalid user cssserver from 13.231.86.194 port 54196 ssh2
2020-04-16 18:40:19
87.251.74.250 attack
firewall-block, port(s): 5544/tcp, 7070/tcp
2020-04-16 19:01:10
123.233.116.60 attack
Apr 16 06:45:17 lukav-desktop sshd\[29643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.233.116.60  user=root
Apr 16 06:45:19 lukav-desktop sshd\[29643\]: Failed password for root from 123.233.116.60 port 41072 ssh2
Apr 16 06:47:31 lukav-desktop sshd\[29737\]: Invalid user shammer from 123.233.116.60
Apr 16 06:47:31 lukav-desktop sshd\[29737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.233.116.60
Apr 16 06:47:33 lukav-desktop sshd\[29737\]: Failed password for invalid user shammer from 123.233.116.60 port 35034 ssh2
2020-04-16 19:05:07
222.252.89.165 attackspam
Apr 16 03:48:08 *** sshd[5451]: Invalid user admin from 222.252.89.165
2020-04-16 18:32:14
103.121.90.56 attackbots
IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.
2020-04-16 19:02:07
73.253.70.51 attackspambots
Invalid user test1 from 73.253.70.51 port 42592
2020-04-16 18:29:21

最近上报的IP列表

142.4.7.76 213.255.18.241 142.4.6.237 142.4.97.33
142.4.9.131 142.44.128.236 142.44.131.5 142.44.129.236
142.44.136.29 142.44.135.249 142.44.136.192 142.44.138.144
142.44.138.103 142.44.138.162 142.44.139.57 142.44.138.84
142.44.138.48 142.44.142.171 142.44.144.182 142.44.144.41