必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): OJSC North-West Telecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspambots
Port probing on unauthorized port 445
2020-08-05 03:44:45
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.142.106.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19178
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.142.106.20.			IN	A

;; AUTHORITY SECTION:
.			447	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080401 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 05 03:44:42 CST 2020
;; MSG SIZE  rcvd: 116
HOST信息:
20.106.142.5.in-addr.arpa domain name pointer ip-020-106-142-5.pools.atnet.ru.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.106.142.5.in-addr.arpa	name = ip-020-106-142-5.pools.atnet.ru.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
187.92.96.242 attack
Aug 31 12:17:10 sachi sshd\[20296\]: Invalid user i from 187.92.96.242
Aug 31 12:17:10 sachi sshd\[20296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.92.96.242
Aug 31 12:17:13 sachi sshd\[20296\]: Failed password for invalid user i from 187.92.96.242 port 45418 ssh2
Aug 31 12:23:16 sachi sshd\[20797\]: Invalid user git from 187.92.96.242
Aug 31 12:23:16 sachi sshd\[20797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.92.96.242
2019-09-01 11:33:07
104.248.49.171 attackbotsspam
Sep  1 05:40:21 meumeu sshd[12185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 
Sep  1 05:40:24 meumeu sshd[12185]: Failed password for invalid user darian from 104.248.49.171 port 53712 ssh2
Sep  1 05:44:20 meumeu sshd[12609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 
...
2019-09-01 11:55:27
188.165.238.65 attackspam
Invalid user alex from 188.165.238.65 port 43548
2019-09-01 11:08:54
42.112.185.242 attack
Aug 31 21:02:28 TORMINT sshd\[5182\]: Invalid user admin from 42.112.185.242
Aug 31 21:02:28 TORMINT sshd\[5182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.185.242
Aug 31 21:02:30 TORMINT sshd\[5182\]: Failed password for invalid user admin from 42.112.185.242 port 40898 ssh2
...
2019-09-01 11:12:00
190.7.128.74 attack
Aug 31 20:13:53 Tower sshd[22011]: Connection from 190.7.128.74 port 39324 on 192.168.10.220 port 22
Aug 31 20:13:53 Tower sshd[22011]: Invalid user bot from 190.7.128.74 port 39324
Aug 31 20:13:53 Tower sshd[22011]: error: Could not get shadow information for NOUSER
Aug 31 20:13:53 Tower sshd[22011]: Failed password for invalid user bot from 190.7.128.74 port 39324 ssh2
Aug 31 20:13:53 Tower sshd[22011]: Received disconnect from 190.7.128.74 port 39324:11: Bye Bye [preauth]
Aug 31 20:13:53 Tower sshd[22011]: Disconnected from invalid user bot 190.7.128.74 port 39324 [preauth]
2019-09-01 11:54:01
104.238.97.230 attackbotsspam
Looking for resource vulnerabilities
2019-09-01 11:35:43
140.224.111.187 attack
Lines containing failures of 140.224.111.187
Aug 31 23:37:11 home sshd[8263]: Invalid user admin from 140.224.111.187 port 55763
Aug 31 23:37:11 home sshd[8263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.224.111.187 
Aug 31 23:37:13 home sshd[8263]: Failed password for invalid user admin from 140.224.111.187 port 55763 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=140.224.111.187
2019-09-01 11:40:19
2.88.152.128 attackspam
namecheap spam
2019-09-01 11:17:44
51.68.47.45 attackbotsspam
Aug 31 11:43:36 auw2 sshd\[29630\]: Invalid user deploy from 51.68.47.45
Aug 31 11:43:36 auw2 sshd\[29630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-68-47.eu
Aug 31 11:43:38 auw2 sshd\[29630\]: Failed password for invalid user deploy from 51.68.47.45 port 53616 ssh2
Aug 31 11:47:26 auw2 sshd\[29960\]: Invalid user cyrus from 51.68.47.45
Aug 31 11:47:26 auw2 sshd\[29960\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-68-47.eu
2019-09-01 11:07:18
157.65.245.2 attack
Chat Spam
2019-09-01 11:51:54
49.50.64.213 attackspam
Sep  1 03:59:41 MainVPS sshd[6613]: Invalid user uftp from 49.50.64.213 port 41634
Sep  1 03:59:41 MainVPS sshd[6613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.50.64.213
Sep  1 03:59:41 MainVPS sshd[6613]: Invalid user uftp from 49.50.64.213 port 41634
Sep  1 03:59:43 MainVPS sshd[6613]: Failed password for invalid user uftp from 49.50.64.213 port 41634 ssh2
Sep  1 04:04:30 MainVPS sshd[6944]: Invalid user purchase from 49.50.64.213 port 57520
...
2019-09-01 11:38:39
1.129.109.120 attack
Aug 31 21:44:48 web8 sshd\[19821\]: Invalid user jhon from 1.129.109.120
Aug 31 21:44:48 web8 sshd\[19821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.129.109.120
Aug 31 21:44:50 web8 sshd\[19821\]: Failed password for invalid user jhon from 1.129.109.120 port 61885 ssh2
Aug 31 21:46:39 web8 sshd\[20802\]: Invalid user sampath from 1.129.109.120
Aug 31 21:46:39 web8 sshd\[20802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.129.109.120
2019-09-01 11:40:48
188.166.31.205 attackspambots
Invalid user brenda from 188.166.31.205 port 53287
2019-09-01 11:55:03
164.132.24.138 attackbots
2019-09-01T00:18:31.393890wiz-ks3 sshd[4457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138  user=root
2019-09-01T00:18:33.203896wiz-ks3 sshd[4457]: Failed password for root from 164.132.24.138 port 36066 ssh2
2019-09-01T00:30:46.643845wiz-ks3 sshd[4485]: Invalid user spice from 164.132.24.138 port 34165
2019-09-01T00:30:46.645911wiz-ks3 sshd[4485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138
2019-09-01T00:30:46.643845wiz-ks3 sshd[4485]: Invalid user spice from 164.132.24.138 port 34165
2019-09-01T00:30:48.355864wiz-ks3 sshd[4485]: Failed password for invalid user spice from 164.132.24.138 port 34165 ssh2
2019-09-01T00:39:52.907781wiz-ks3 sshd[4509]: Invalid user git from 164.132.24.138 port 57239
2019-09-01T00:39:52.909857wiz-ks3 sshd[4509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138
2019-09-01T00:39:52.907781wiz-ks3 sshd[4509]: Invali
2019-09-01 11:49:35
113.190.218.91 attackbots
"Fail2Ban detected SSH brute force attempt"
2019-09-01 11:09:52

最近上报的IP列表

176.152.104.234 74.237.131.194 106.180.135.183 237.76.248.161
211.105.26.80 200.185.1.108 206.5.137.228 106.102.19.219
95.169.13.22 188.166.246.9 134.122.53.154 44.80.39.133
176.96.138.175 84.78.91.2 209.127.18.229 179.156.3.30
187.160.77.247 174.106.33.85 9.122.66.219 91.76.9.71