必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): OJSC North-West Telecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspambots
Jun 29 10:33:15 master sshd[23805]: Failed password for invalid user admin from 5.142.20.45 port 52803 ssh2
2019-06-29 17:33:23
相同子网IP讨论:
IP 类型 评论内容 时间
5.142.204.197 attackbots
Invalid user admin from 5.142.204.197 port 34119
2020-04-19 03:52:08
5.142.201.63 attackbots
SMTP-SASL bruteforce attempt
2020-01-28 01:18:51
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.142.20.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46478
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.142.20.45.			IN	A

;; AUTHORITY SECTION:
.			2934	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062900 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 29 17:33:15 CST 2019
;; MSG SIZE  rcvd: 115
HOST信息:
Host 45.20.142.5.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 45.20.142.5.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
152.67.35.185 attackbots
Sep 18 02:28:49 vmd26974 sshd[28803]: Failed password for root from 152.67.35.185 port 42866 ssh2
...
2020-09-18 16:32:20
185.191.171.12 attack
Web Server Attack
2020-09-18 16:45:40
45.142.120.93 attackbots
Sep 18 10:10:02 relay postfix/smtpd\[13148\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep 18 10:10:11 relay postfix/smtpd\[17200\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep 18 10:10:16 relay postfix/smtpd\[17199\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep 18 10:10:29 relay postfix/smtpd\[17197\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep 18 10:10:29 relay postfix/smtpd\[13168\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-09-18 16:30:19
115.75.38.247 attack
Automatic report - Port Scan Attack
2020-09-18 17:02:57
95.190.206.194 attack
$f2bV_matches
2020-09-18 17:00:18
103.145.13.221 attackspam
[N10.H2.VM2] Port Scanner Detected Blocked by UFW
2020-09-18 16:48:59
36.81.14.46 attack
1600361875 - 09/17/2020 18:57:55 Host: 36.81.14.46/36.81.14.46 Port: 445 TCP Blocked
2020-09-18 16:59:22
182.16.175.114 attackspambots
MAIL: User Login Brute Force Attempt
2020-09-18 16:36:25
78.170.43.98 attackspambots
Icarus honeypot on github
2020-09-18 16:46:08
71.80.249.215 attackbotsspam
Invalid user admin from 71.80.249.215
2020-09-18 16:48:13
45.129.33.14 attackspambots
firewall-block, port(s): 25251/tcp
2020-09-18 16:44:33
104.206.128.26 attackbots
RDP brute force attack detected by fail2ban
2020-09-18 16:50:33
179.111.222.123 attackbots
Sep 18 10:35:40 server sshd[16677]: Failed password for invalid user 123456 from 179.111.222.123 port 42792 ssh2
Sep 18 10:40:18 server sshd[19104]: Failed password for invalid user logger from 179.111.222.123 port 9737 ssh2
Sep 18 10:45:05 server sshd[21367]: Failed password for invalid user z0102030405 from 179.111.222.123 port 33096 ssh2
2020-09-18 17:01:46
113.200.60.74 attack
Sep 18 08:06:05 marvibiene sshd[23272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.200.60.74  user=root
Sep 18 08:06:07 marvibiene sshd[23272]: Failed password for root from 113.200.60.74 port 45987 ssh2
Sep 18 08:09:44 marvibiene sshd[61341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.200.60.74  user=root
Sep 18 08:09:47 marvibiene sshd[61341]: Failed password for root from 113.200.60.74 port 58184 ssh2
2020-09-18 16:37:36
103.23.100.87 attackbotsspam
103.23.100.87 (ID/Indonesia/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 18 04:10:25 jbs1 sshd[10372]: Failed password for root from 103.23.100.87 port 40260 ssh2
Sep 18 04:15:36 jbs1 sshd[11929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.156.221  user=root
Sep 18 04:08:23 jbs1 sshd[9602]: Failed password for root from 148.70.195.242 port 55384 ssh2
Sep 18 04:09:46 jbs1 sshd[10080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.146.178  user=root
Sep 18 04:10:23 jbs1 sshd[10372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.23.100.87  user=root
Sep 18 04:09:48 jbs1 sshd[10080]: Failed password for root from 68.183.146.178 port 48146 ssh2

IP Addresses Blocked:
2020-09-18 16:53:35

最近上报的IP列表

185.51.36.66 112.243.165.223 112.167.87.5 111.252.140.18
178.33.157.248 220.92.36.32 185.222.209.40 168.229.97.67
123.49.51.42 59.115.175.146 206.248.181.122 123.31.28.223
111.251.153.246 14.186.157.162 187.7.147.9 77.66.11.200
5.135.125.203 123.115.52.76 124.81.254.82 118.25.36.160