JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 206.81.23.216

206.81.23.216 was found in our database!

This IP was reported 276 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 206.81.23.216

Whois 206.81.23.216

IP Abuse Reports for 206.81.23.216:

This IP address has been reported a total of 276 times from 178 distinct sources. 206.81.23.216 was first reported on June 12th 2022, and the most recent report was 9 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-02 20:23:14 (1 day ago)	Honeypot hit: Unauthorized traffic (297 bytes of payload); 4891 [1] TCP	Port Scan
🇺🇸 aks4226	2026-06-02 20:17:11 (1 day ago)	Attacking common web applications. (n01)	Web App Attack
🇩🇪 dispaisyenterprises	2026-06-02 19:51:46 (1 day ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 8000 GET / User-Agent: Mozilla/5.0 (compatible; Odi ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 8000 GET / User-Agent: Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/) Accept: / Accept-Encoding: gzip; 8000 [4] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇺🇸 jfz-abuse	2026-06-02 18:28:26 (1 day ago)	fail2ban: apache-proxy ...	Web App Attack
🇫🇷 Coco Bongo	2026-06-02 18:28:13 (1 day ago)	Jun 2 20:28:12 [redacted] postfix/submission/smtpd[362434]: lost connection after STARTTLS from unk ... show more Jun 2 20:28:12 [redacted] postfix/submission/smtpd[362434]: lost connection after STARTTLS from unknown[206.81.23.216] ... show less	Email Spam Exploited Host
🇫🇷 bulletz	2026-06-02 18:16:37 (1 day ago)	Unauthorized SMTP action ...	Brute-Force Email Spam
🇬🇧 gbzret4d	2026-06-02 18:03:59 (1 day ago)	Honeypot [uk-production01]: HTTP/1.1 request on 8086 GET /cgi-bin/authLogin.cgi User-Agent: Go-http ... show more Honeypot [uk-production01]: HTTP/1.1 request on 8086 GET /cgi-bin/authLogin.cgi User-Agent: Go-http-client/1.1; 8086 [9] TCP show less	Hacking Bad Web Bot
🇬🇧 venus.launch.bz	2026-06-02 17:57:58 (1 day ago)	(gohttpua) Bad UA Go-http-client from 206.81.23.216 (DE/Germany/-)	Hacking
🇩🇪 BlueWire Hosting	2026-06-02 17:24:26 (1 day ago)	Bad bot ignoring robot.txt	Bad Web Bot
Anonymous	2026-06-02 17:14:08 (1 day ago)	Honeypot hit: HTTP/1.1 request on 2525 GET /cgi-bin/authLogin.cgi User-Agent: Go-http-client/1.1; 2 ... show more Honeypot hit: HTTP/1.1 request on 2525 GET /cgi-bin/authLogin.cgi User-Agent: Go-http-client/1.1; 2525 [9] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇩🇪 london2038.com	2026-06-02 16:24:25 (1 day ago)	Malformed or malicious web request 206.81.23.216 - - [02/Jun/2026:18:24:11 +0200] "GET /solr/admin/i ... show more Malformed or malicious web request 206.81.23.216 - - [02/Jun/2026:18:24:11 +0200] "GET /solr/admin/info/system HTTP/1.1" 400 255 "-" "Go-http-client/1.1" show less	Hacking Web App Attack
🇩🇪 Viveronese	2026-06-02 15:25:45 (1 day ago)	HTTP vulnerability scanning	Web App Attack
🇬🇧 PeravixGroup	2026-06-02 14:48:28 (1 day ago)	Honeypot detection: Docker Registry unauthorized access / enumeration on port 6000. Severity: MEDIUM ... show more Honeypot detection: Docker Registry unauthorized access / enumeration on port 6000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Justin F. \| AS204464	2026-06-02 14:34:32 (1 day ago)	Honeypot [nx-infrastructure]: Unauthorized traffic (1000 bytes of payload); 20000 [1] TCP Reported b ... show more Honeypot [nx-infrastructure]: Unauthorized traffic (1000 bytes of payload); 20000 [1] TCP Reported by: Justin F. show less	Port Scan
🇺🇸 juguemosalacarioca.com	2026-06-02 13:36:48 (1 day ago)	Multiple HTTP calls attempting to GET resources using common API calls or formats on port 8080	Web App Attack

Showing 76 to 90 of 276 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.76.103.166

🇨🇳 162.14.66.219

🇻🇳 160.187.240.90

🇩🇪 138.246.253.131

🇮🇳 122.187.235.148

🇵🇰 103.117.163.122

🇺🇸 34.58.124.191

🇯🇵 8.216.9.30

🇳🇱 5.61.209.126

🇲🇽 186.96.145.241

🇳🇱 176.65.148.216

🇺🇸 173.239.213.23

🇩🇪 167.94.146.65

🇱🇾 165.16.76.245

🇺🇸 138.94.219.13

🇵🇰 137.59.230.79

🇭🇰 103.77.210.80

🇹🇼 60.199.224.55

🇳🇱 45.148.10.141

🇦🇺 20.5.130.110