必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Spain

运营商(isp): Telefonica de Espana Sau

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attackspambots
2020-03-05T15:08:08.076551shield sshd\[10735\]: Invalid user v from 81.45.56.199 port 55374
2020-03-05T15:08:08.080590shield sshd\[10735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net
2020-03-05T15:08:10.085909shield sshd\[10735\]: Failed password for invalid user v from 81.45.56.199 port 55374 ssh2
2020-03-05T15:13:51.015215shield sshd\[12050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net  user=root
2020-03-05T15:13:52.968282shield sshd\[12050\]: Failed password for root from 81.45.56.199 port 34682 ssh2
2020-03-05 23:48:46
attackspam
Unauthorized connection attempt detected from IP address 81.45.56.199 to port 2220 [J]
2020-02-05 01:19:35
attack
ssh brute force
2020-01-14 16:44:46
attackbots
$f2bV_matches
2020-01-11 18:54:46
attack
Unauthorized connection attempt detected from IP address 81.45.56.199 to port 2220 [J]
2020-01-06 21:41:18
attack
Invalid user shihhsiung from 81.45.56.199 port 39438
2019-12-31 17:31:23
attackspam
Dec 25 15:45:45 localhost sshd[35632]: Failed password for invalid user ubuntu from 81.45.56.199 port 35108 ssh2
Dec 25 15:50:29 localhost sshd[35893]: Failed password for invalid user server from 81.45.56.199 port 41196 ssh2
Dec 25 15:52:59 localhost sshd[35997]: Failed password for invalid user admin from 81.45.56.199 port 36030 ssh2
2019-12-26 01:54:33
attackspambots
Dec 20 08:39:00 eventyay sshd[12537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
Dec 20 08:39:02 eventyay sshd[12537]: Failed password for invalid user mandrake91 from 81.45.56.199 port 37986 ssh2
Dec 20 08:41:27 eventyay sshd[12626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
...
2019-12-20 19:33:09
attack
Dec 19 18:55:39 localhost sshd[51072]: Failed password for root from 81.45.56.199 port 36834 ssh2
Dec 19 19:02:15 localhost sshd[51254]: Failed password for invalid user 123 from 81.45.56.199 port 58722 ssh2
Dec 19 19:07:43 localhost sshd[51345]: Failed password for invalid user karademir from 81.45.56.199 port 37092 ssh2
2019-12-20 02:41:19
attackbots
Dec 17 20:07:41 php1 sshd\[10049\]: Invalid user vmuser from 81.45.56.199
Dec 17 20:07:41 php1 sshd\[10049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net
Dec 17 20:07:44 php1 sshd\[10049\]: Failed password for invalid user vmuser from 81.45.56.199 port 50084 ssh2
Dec 17 20:13:22 php1 sshd\[11048\]: Invalid user service from 81.45.56.199
Dec 17 20:13:22 php1 sshd\[11048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net
2019-12-18 14:27:14
attack
fail2ban
2019-12-14 19:20:05
attackbotsspam
Dec 13 23:44:33 pi sshd\[28694\]: Failed password for root from 81.45.56.199 port 35672 ssh2
Dec 13 23:50:38 pi sshd\[29026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199  user=root
Dec 13 23:50:40 pi sshd\[29026\]: Failed password for root from 81.45.56.199 port 44518 ssh2
Dec 13 23:56:34 pi sshd\[29387\]: Invalid user waloff from 81.45.56.199 port 53370
Dec 13 23:56:34 pi sshd\[29387\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
...
2019-12-14 08:03:09
attackbotsspam
Dec 10 05:06:46 hpm sshd\[3604\]: Invalid user vcsa from 81.45.56.199
Dec 10 05:06:46 hpm sshd\[3604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net
Dec 10 05:06:49 hpm sshd\[3604\]: Failed password for invalid user vcsa from 81.45.56.199 port 45318 ssh2
Dec 10 05:13:02 hpm sshd\[4309\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net  user=root
Dec 10 05:13:04 hpm sshd\[4309\]: Failed password for root from 81.45.56.199 port 54120 ssh2
2019-12-10 23:25:13
attackbots
Dec  5 07:33:50 sauna sshd[87415]: Failed password for root from 81.45.56.199 port 51172 ssh2
...
2019-12-05 13:41:57
attack
Dec  4 19:22:03 localhost sshd\[70630\]: Invalid user choong from 81.45.56.199 port 42414
Dec  4 19:22:03 localhost sshd\[70630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
Dec  4 19:22:05 localhost sshd\[70630\]: Failed password for invalid user choong from 81.45.56.199 port 42414 ssh2
Dec  4 19:28:06 localhost sshd\[70798\]: Invalid user 123456 from 81.45.56.199 port 52952
Dec  4 19:28:06 localhost sshd\[70798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
...
2019-12-05 03:46:29
attackspam
Dec  2 01:13:28 v22018076622670303 sshd\[2681\]: Invalid user arakawa from 81.45.56.199 port 54554
Dec  2 01:13:28 v22018076622670303 sshd\[2681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
Dec  2 01:13:30 v22018076622670303 sshd\[2681\]: Failed password for invalid user arakawa from 81.45.56.199 port 54554 ssh2
...
2019-12-02 08:21:19
attackbots
Oct 31 16:28:22 meumeu sshd[6652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 
Oct 31 16:28:24 meumeu sshd[6652]: Failed password for invalid user vacchacarya from 81.45.56.199 port 37800 ssh2
Oct 31 16:34:48 meumeu sshd[7682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 
...
2019-12-01 08:21:02
attackbotsspam
Nov 27 18:32:48 ny01 sshd[27727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
Nov 27 18:32:50 ny01 sshd[27727]: Failed password for invalid user snapper from 81.45.56.199 port 50130 ssh2
Nov 27 18:39:30 ny01 sshd[28367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
2019-11-28 07:46:39
attackspam
Nov 21 14:59:37 vps46666688 sshd[5738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
Nov 21 14:59:39 vps46666688 sshd[5738]: Failed password for invalid user admin from 81.45.56.199 port 55592 ssh2
...
2019-11-22 02:09:37
attackspambots
SSH Bruteforce
2019-11-17 20:00:11
attackspam
Oct 29 02:20:51 web1 sshd[27586]: Invalid user smmsp from 81.45.56.199
Oct 29 02:20:53 web1 sshd[27586]: Failed password for invalid user smmsp from 81.45.56.199 port 33080 ssh2
Oct 29 02:20:53 web1 sshd[27586]: Received disconnect from 81.45.56.199: 11: Bye Bye [preauth]
Oct 29 02:37:13 web1 sshd[28928]: Failed password for r.r from 81.45.56.199 port 52834 ssh2
Oct 29 02:37:13 web1 sshd[28928]: Received disconnect from 81.45.56.199: 11: Bye Bye [preauth]
Oct 29 02:41:18 web1 sshd[29353]: Invalid user odoo from 81.45.56.199
Oct 29 02:41:20 web1 sshd[29353]: Failed password for invalid user odoo from 81.45.56.199 port 35946 ssh2
Oct 29 02:41:20 web1 sshd[29353]: Received disconnect from 81.45.56.199: 11: Bye Bye [preauth]
Oct 29 02:45:38 web1 sshd[29744]: Failed password for r.r from 81.45.56.199 port 47296 ssh2
Oct 29 02:45:38 web1 sshd[29744]: Received disconnect from 81.45.56.199: 11: Bye Bye [preauth]
Oct 29 02:50:16 web1 sshd[30094]: Invalid user netbank from 81.45.........
-------------------------------
2019-11-03 06:13:56
attackspambots
2019-10-29T05:59:24.467469  sshd[8948]: Invalid user qaz123$%^ from 81.45.56.199 port 54758
2019-10-29T05:59:24.480158  sshd[8948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199
2019-10-29T05:59:24.467469  sshd[8948]: Invalid user qaz123$%^ from 81.45.56.199 port 54758
2019-10-29T05:59:26.827963  sshd[8948]: Failed password for invalid user qaz123$%^ from 81.45.56.199 port 54758 ssh2
2019-10-29T06:04:17.352204  sshd[9049]: Invalid user consultant from 81.45.56.199 port 37874
...
2019-10-29 14:41:01
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.45.56.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52742
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.45.56.199.			IN	A

;; AUTHORITY SECTION:
.			174	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102801 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 08:52:38 CST 2019
;; MSG SIZE  rcvd: 116
HOST信息:
199.56.45.81.in-addr.arpa domain name pointer 199.red-81-45-56.staticip.rima-tde.net.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
199.56.45.81.in-addr.arpa	name = 199.red-81-45-56.staticip.rima-tde.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
183.136.106.166 attackspam
Honeypot attack, port: 445, PTR: PTR record not found
2019-11-18 00:36:39
218.28.168.4 attack
Nov 17 22:21:39 vibhu-HP-Z238-Microtower-Workstation sshd\[30497\]: Invalid user alf from 218.28.168.4
Nov 17 22:21:39 vibhu-HP-Z238-Microtower-Workstation sshd\[30497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.28.168.4
Nov 17 22:21:40 vibhu-HP-Z238-Microtower-Workstation sshd\[30497\]: Failed password for invalid user alf from 218.28.168.4 port 15437 ssh2
Nov 17 22:26:37 vibhu-HP-Z238-Microtower-Workstation sshd\[30778\]: Invalid user crippen from 218.28.168.4
Nov 17 22:26:37 vibhu-HP-Z238-Microtower-Workstation sshd\[30778\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.28.168.4
...
2019-11-18 01:00:27
137.25.101.102 attackbots
SSH Brute-Force reported by Fail2Ban
2019-11-18 01:01:08
179.180.239.74 attackbotsspam
Honeypot attack, port: 23, PTR: 179.180.239.74.dynamic.adsl.gvt.net.br.
2019-11-18 00:22:16
63.83.78.135 attackspam
Nov 17 15:36:02 web01 postfix/smtpd[19878]: connect from observant.raaftar.com[63.83.78.135]
Nov 17 15:36:02 web01 policyd-spf[20464]: None; identhostnamey=helo; client-ip=63.83.78.135; helo=observant.mozkurt.com; envelope-from=x@x
Nov 17 15:36:02 web01 policyd-spf[20464]: Pass; identhostnamey=mailfrom; client-ip=63.83.78.135; helo=observant.mozkurt.com; envelope-from=x@x
Nov x@x
Nov 17 15:36:03 web01 postfix/smtpd[19878]: 6C0CC51FD4: client=observant.raaftar.com[63.83.78.135]
Nov 17 15:36:03 web01 postfix/smtpd[19878]: disconnect from observant.raaftar.com[63.83.78.135]
Nov 17 15:38:43 web01 postfix/smtpd[20783]: connect from observant.raaftar.com[63.83.78.135]
Nov 17 15:38:44 web01 policyd-spf[20996]: None; identhostnamey=helo; client-ip=63.83.78.135; helo=observant.mozkurt.com; envelope-from=x@x
Nov 17 15:38:44 web01 policyd-spf[20996]: Pass; identhostnamey=mailfrom; client-ip=63.83.78.135; helo=observant.mozkurt.com; envelope-from=x@x
Nov x@x
Nov 17 15:38:44 web01 p........
-------------------------------
2019-11-18 00:21:42
183.13.10.173 attackbots
11/17/2019-15:44:03.444229 183.13.10.173 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433
2019-11-18 00:43:31
58.144.150.233 attackspambots
Nov 17 17:15:59 server sshd\[28232\]: Invalid user web from 58.144.150.233
Nov 17 17:15:59 server sshd\[28232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.144.150.233 
Nov 17 17:16:02 server sshd\[28232\]: Failed password for invalid user web from 58.144.150.233 port 41604 ssh2
Nov 17 17:44:25 server sshd\[2694\]: Invalid user smitsugi from 58.144.150.233
Nov 17 17:44:25 server sshd\[2694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.144.150.233 
...
2019-11-18 00:23:59
72.93.29.214 attackspambots
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/72.93.29.214/ 
 
 US - 1H : (160)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : US 
 NAME ASN : ASN701 
 
 IP : 72.93.29.214 
 
 CIDR : 72.93.0.0/16 
 
 PREFIX COUNT : 7223 
 
 UNIQUE IP COUNT : 40015360 
 
 
 ATTACKS DETECTED ASN701 :  
  1H - 1 
  3H - 2 
  6H - 2 
 12H - 5 
 24H - 6 
 
 DateTime : 2019-11-17 15:43:34 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-11-18 01:01:34
152.168.137.2 attackbotsspam
Nov 17 15:43:59 sso sshd[7273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.168.137.2
Nov 17 15:44:01 sso sshd[7273]: Failed password for invalid user webmaster from 152.168.137.2 port 43207 ssh2
...
2019-11-18 00:46:21
185.176.27.254 attackspam
11/17/2019-11:27:26.796624 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-11-18 00:29:30
201.116.12.217 attackbots
Nov 17 22:30:23 areeb-Workstation sshd[27835]: Failed password for backup from 201.116.12.217 port 33313 ssh2
...
2019-11-18 01:04:41
220.233.114.211 attack
Automatic report - Banned IP Access
2019-11-18 00:30:11
186.6.233.211 attackbots
2019-11-17T14:44:25.457020Z 719108b90830 New connection: 186.6.233.211:43496 (172.17.0.4:2222) [session: 719108b90830]
2019-11-17T14:44:26.321738Z bf7f8f82b21e New connection: 186.6.233.211:4094 (172.17.0.4:2222) [session: bf7f8f82b21e]
2019-11-18 00:23:31
139.59.77.237 attack
Automatic report - Banned IP Access
2019-11-18 00:30:36
182.48.84.6 attack
F2B jail: sshd. Time: 2019-11-17 17:40:39, Reported by: VKReport
2019-11-18 00:55:58

最近上报的IP列表

125.45.231.26 87.205.115.51 217.68.210.96 113.190.173.31
77.174.14.5 220.149.241.72 84.10.81.220 137.215.52.40
90.176.169.233 189.177.65.50 74.22.186.49 115.159.92.54
134.73.51.214 91.188.193.145 157.91.97.240 204.236.78.225
10.168.220.113 45.182.159.201 186.125.240.218 60.176.245.98