必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Coppito

省份(region): Regione Abruzzo

国家(country): Italy

运营商(isp): Fastweb

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
81.208.42.145 attack
CMS (WordPress or Joomla) login attempt.
2020-04-03 11:01:53
81.208.42.145 attackspam
Automatic report - XMLRPC Attack
2020-03-01 18:17:49
81.208.42.145 attack
C1,WP GET /wp-login.php
2020-02-14 01:13:30
81.208.42.145 attackspam
WordPress XMLRPC scan :: 81.208.42.145 0.076 BYPASS [03/Feb/2020:07:07:55  0000] [censored_4] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-02-03 15:23:44
81.208.42.145 attackspam
xmlrpc attack
2020-01-21 04:48:41
81.208.42.145 attackspam
81.208.42.145 - - [16/Jan/2020:05:48:58 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
81.208.42.145 - - [16/Jan/2020:05:48:58 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-01-16 14:14:58
81.208.42.145 attack
81.208.42.145 - - \[21/Dec/2019:07:28:52 +0100\] "POST /wp-login.php HTTP/1.0" 200 3080 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
81.208.42.145 - - \[21/Dec/2019:07:28:53 +0100\] "POST /wp-login.php HTTP/1.0" 200 3039 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
81.208.42.145 - - \[21/Dec/2019:07:28:54 +0100\] "POST /wp-login.php HTTP/1.0" 200 3048 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-12-21 16:21:06
81.208.42.145 attack
Wordpress attack
2019-12-19 02:31:16
81.208.42.145 attackspambots
[munged]::443 81.208.42.145 - - [01/Dec/2019:15:41:01 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 81.208.42.145 - - [01/Dec/2019:15:41:02 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 81.208.42.145 - - [01/Dec/2019:15:41:03 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 81.208.42.145 - - [01/Dec/2019:15:41:04 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 81.208.42.145 - - [01/Dec/2019:15:41:04 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 81.208.42.145 - - [01/Dec/2019:15:41:05 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubun
2019-12-02 02:21:57
81.208.42.145 attack
WordPress login Brute force / Web App Attack on client site.
2019-11-17 14:52:39
81.208.42.145 attackspambots
81.208.42.145 - - \[11/Nov/2019:23:42:22 +0100\] "POST /wp-login.php HTTP/1.0" 200 15320 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
81.208.42.145 - - \[11/Nov/2019:23:42:22 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
81.208.42.145 - - \[11/Nov/2019:23:42:43 +0100\] "POST /wp-login.php HTTP/1.0" 200 14645 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-11-12 08:00:41
81.208.42.145 attackbotsspam
Automatic report - Banned IP Access
2019-10-20 07:24:22
81.208.42.145 attackbotsspam
Automatic report - XMLRPC Attack
2019-10-18 23:02:31
81.208.42.172 attackbots
xmlrpc attack
2019-10-08 04:36:06
81.208.42.172 attackbots
ft-1848-fussball.de 81.208.42.172 \[04/Oct/2019:17:29:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 2298 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
ft-1848-fussball.de 81.208.42.172 \[04/Oct/2019:17:29:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 2263 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-10-05 01:59:39
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.208.4.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 608
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;81.208.4.199.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 17:19:15 CST 2025
;; MSG SIZE  rcvd: 105
HOST信息:
199.4.208.81.in-addr.arpa domain name pointer host199.004.208.081.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
199.4.208.81.in-addr.arpa	name = host199.004.208.081.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
88.225.231.77 attackspam
Automatic report - Banned IP Access
2020-05-24 15:27:22
128.199.95.161 attack
May 24 07:28:17 ip-172-31-61-156 sshd[20267]: Failed password for invalid user kiban01 from 128.199.95.161 port 39046 ssh2
May 24 07:28:15 ip-172-31-61-156 sshd[20267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.95.161
May 24 07:28:15 ip-172-31-61-156 sshd[20267]: Invalid user kiban01 from 128.199.95.161
May 24 07:28:17 ip-172-31-61-156 sshd[20267]: Failed password for invalid user kiban01 from 128.199.95.161 port 39046 ssh2
May 24 07:29:57 ip-172-31-61-156 sshd[20307]: Invalid user hjsung from 128.199.95.161
...
2020-05-24 15:35:32
111.93.214.69 attack
May 24 06:49:26 localhost sshd\[19394\]: Invalid user noq from 111.93.214.69
May 24 06:49:26 localhost sshd\[19394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.214.69
May 24 06:49:28 localhost sshd\[19394\]: Failed password for invalid user noq from 111.93.214.69 port 37832 ssh2
May 24 06:51:43 localhost sshd\[19615\]: Invalid user edy from 111.93.214.69
May 24 06:51:43 localhost sshd\[19615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.214.69
...
2020-05-24 15:26:45
35.226.60.77 attack
May 24 08:14:48 sip sshd[383331]: Invalid user gdt from 35.226.60.77 port 56450
May 24 08:14:50 sip sshd[383331]: Failed password for invalid user gdt from 35.226.60.77 port 56450 ssh2
May 24 08:18:16 sip sshd[383359]: Invalid user lingqi from 35.226.60.77 port 33576
...
2020-05-24 15:06:03
185.232.65.105 attackspambots
SSH Scan
2020-05-24 14:56:19
162.243.139.196 attack
ET SCAN Zmap User-Agent (zgrab) - port: 80 proto: TCP cat: Detection of a Network Scan
2020-05-24 15:07:17
52.40.89.254 attackbotsspam
Bad bot/spoofed identity
2020-05-24 15:01:03
218.92.0.211 attackspambots
2020-05-24T02:49:20.057571xentho-1 sshd[692530]: Failed password for root from 218.92.0.211 port 54160 ssh2
2020-05-24T02:54:47.351725xentho-1 sshd[692569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.211  user=root
2020-05-24T02:54:49.204021xentho-1 sshd[692569]: Failed password for root from 218.92.0.211 port 42561 ssh2
2020-05-24T02:54:47.351725xentho-1 sshd[692569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.211  user=root
2020-05-24T02:54:49.204021xentho-1 sshd[692569]: Failed password for root from 218.92.0.211 port 42561 ssh2
2020-05-24T02:54:54.052256xentho-1 sshd[692569]: Failed password for root from 218.92.0.211 port 42561 ssh2
2020-05-24T02:54:47.351725xentho-1 sshd[692569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.211  user=root
2020-05-24T02:54:49.204021xentho-1 sshd[692569]: Failed password for root from 218.92
...
2020-05-24 15:17:07
106.52.221.48 attack
" "
2020-05-24 15:02:20
106.13.28.108 attackbotsspam
May 24 08:33:53 server sshd[6643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.28.108
May 24 08:33:55 server sshd[6643]: Failed password for invalid user vwz from 106.13.28.108 port 35280 ssh2
May 24 08:36:00 server sshd[6888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.28.108
...
2020-05-24 15:03:17
178.62.36.116 attackspam
Invalid user rjl from 178.62.36.116 port 47206
2020-05-24 15:03:59
131.161.18.93 attackbotsspam
Multiple SSH login attempts.
2020-05-24 15:17:37
51.15.125.53 attack
Invalid user qps from 51.15.125.53 port 51366
2020-05-24 14:58:52
1.34.254.165 attackbotsspam
Port probing on unauthorized port 23
2020-05-24 15:36:46
218.92.0.212 attackbots
SSH Brute-Force attacks
2020-05-24 15:16:48

最近上报的IP列表

7.74.250.17 116.178.106.185 119.208.253.58 48.18.33.167
173.40.102.187 67.66.29.14 180.65.244.91 116.102.7.223
74.11.64.129 81.147.6.122 20.206.170.64 15.40.186.42
254.100.108.175 128.11.144.95 234.156.82.147 165.34.72.123
132.4.234.151 243.229.210.8 191.38.237.255 24.192.126.88