29
26

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?

More than 5 years have passed since last update.

【危険なIPアドレスリスト】攻撃者IPアドレスリスト(随時更新)

Last updated at Posted at 2016-04-01

サーバーのOSに不正ログインしようとするとっても危険なIPアドレスのリストです。
要するに、攻撃者サーバーのIPアドレスリストになります。

httpサーバーが動いているか試しにアクセスして見ると、いかにも攻撃者サーバーというような怖いものが表示されるサーバーもあります。

殆どがクライアントではなく、攻撃サーバーなので固定IPアドレスですが、中にはサーバーではない動的なIPアドレスも含まれるかもしれません。
(一応、サーバー以外のIPは入れないように判定しています)

収集方法は、あえてSSHポートを変更していない(鍵認証とかにはしているので安心を)私の管理する50個のサーバーに対するSSH不正ログインアタックのログです。

グローバルIPの近い違うサーバーに同じ攻撃者からのアタックも普通に見られ、攻撃者は総当りでサーバー自体もスキャンしているのが分かります。

http(80)が起動しているものには 「http running」 をつけています。
ホスト名を引けたものにはホスト名をつけていますが、偽装している可能性大です。


コピペだけでこれらのIPからのSSHログインをブロックできます。
(vim /etc/hosts.deny)

ちなみに、SSHポートを変えていない場合、
どんなサーバーでも24時間常に不正アクセスを試みられていると思ったほうがいいです。
(cat /var/log/secure)


最終更新日 2016/05/02

sshd: 61.51.18.101
sshd: 103.15.49.42
sshd: 185.130.5.86
sshd: 119.188.7.134
sshd: 23.101.65.207
sshd: 80.90.88.235
sshd: 183.60.158.160
sshd: 185.110.132.54
sshd: 159.226.21.146
sshd: 93.158.211.210
sshd: 40.117.148.239
sshd: 96.56.7.42
sshd: 185.5.99.216
sshd: 178.34.184.82
sshd: 61.244.111.77
sshd: 179.43.144.6
sshd: 80.82.78.66
sshd: 125.72.60.2
sshd: 178.15.112.34
sshd: 64.235.217.51
sshd: 185.130.5.179
sshd: 205.204.80.167
sshd: 181.214.92.16
sshd: 104.41.60.151
sshd: 117.79.130.206
sshd: 185.130.5.174
sshd: 159.122.220.20
sshd: 181.214.92.11
sshd: 220.170.192.226
sshd: 120.25.200.39
sshd: 89.163.249.105
sshd: 77.75.39.148
sshd: 79.143.185.217
sshd: 157.7.244.46
sshd: 149.202.175.167
sshd: 125.211.218.165
sshd: 221.2.158.39
sshd: 119.188.4.9
sshd: 193.201.227.104
sshd: 138.99.156.218
sshd: 87.101.205.108
sshd: 187.52.69.156
sshd: 117.190.233.21
sshd: 61.216.84.147
sshd: 40.83.121.211
sshd: 112.168.26.199
sshd: 113.12.184.238
sshd: 94.47.254.75
sshd: 118.33.151.148
sshd: 23.246.250.2
sshd: 58.218.205.69
sshd: 41.237.209.129
sshd: 80.190.253.207
sshd: 183.61.152.135
sshd: 113.59.33.61
sshd: 121.158.47.250
sshd: 40.76.204.123
sshd: 46.183.221.155
sshd: 1.234.27.16
sshd: 187.72.195.161
sshd: 114.251.247.84
sshd: 208.67.1.144
sshd: 193.201.227.117
sshd: 193.201.227.118
sshd: 120.24.81.217
sshd: 31.7.65.43
sshd: 61.218.251.54
sshd: 181.214.92.181
sshd: 202.152.58.25
sshd: 91.201.236.114
sshd: 40.118.247.4
sshd: 124.74.105.2
sshd: 193.201.227.120
sshd: 218.200.188.213
sshd: 221.203.142.71
sshd: 212.83.170.26
sshd: 91.218.15.202
sshd: 61.145.118.173
sshd: 185.130.5.249
sshd: 58.218.204.30
sshd: 95.48.235.217
sshd: 61.216.91.30
sshd: 159.8.110.168
sshd: 40.118.70.73
sshd: 91.236.74.6
sshd: 13.76.243.191
sshd: 193.201.227.10
sshd: 117.34.70.143
sshd: 58.218.211.11
sshd: 193.201.227.18
sshd: 104.238.216.90
sshd: 200.77.181.23
sshd: 62.141.39.75
sshd: 47.89.54.70
sshd: 8.26.195.143
sshd: 108.170.20.114
sshd: 153.122.65.36
sshd: 183.3.202.192
sshd: 5.58.76.88
sshd: 13.75.88.135
sshd: 159.8.41.180
sshd: 13.76.128.124
sshd: 191.34.75.23
sshd: 152.101.90.82
sshd: 40.76.214.162
sshd: 54.201.153.179
sshd: 119.90.18.8
sshd: 23.101.132.127
sshd: 112.169.100.157
sshd: 219.135.103.215
sshd: 202.164.39.21
sshd: 153.203.101.244
sshd: 212.129.3.143
sshd: 62.210.76.202
sshd: 125.212.232.98
sshd: 208.53.44.225
sshd: 185.106.92.148
sshd: 125.212.232.99
sshd: 155.133.82.47
sshd: 61.188.176.134
sshd: 190.24.150.106
sshd: 40.78.62.82
sshd: 122.143.29.59
sshd: 180.153.151.102
sshd: 115.231.209.214
sshd: 119.15.137.149
sshd: 103.18.1.81
sshd: 187.217.192.34
sshd: 61.241.82.125
sshd: 205.204.80.146
sshd: 193.107.90.215
sshd: 42.115.148.107
sshd: 202.70.78.254
sshd: 40.122.202.2
sshd: 218.6.168.220
sshd: 110.164.82.2
sshd: 213.85.31.170
sshd: 5.101.146.6
sshd: 123.126.110.69
sshd: 162.213.154.10
sshd: 106.240.247.42
sshd: 115.85.192.40
sshd: 23.99.218.36
sshd: 52.24.86.34
sshd: 159.226.33.6
sshd: 222.124.218.210
sshd: 208.67.1.216
sshd: 208.67.1.57
sshd: 40.76.48.99
sshd: 187.60.33.130
sshd: 185.130.5.201
sshd: 40.117.40.240
sshd: 137.117.57.102
sshd: 208.67.1.195
sshd: 185.130.5.208
sshd: 93.174.95.98
sshd: 119.164.254.57
sshd: 180.250.16.42
sshd: 52.28.139.49
sshd: 59.63.188.53
sshd: 175.6.7.73
sshd: 1.34.253.152
sshd: 59.148.215.189
sshd: 218.57.11.7
sshd: 190.216.146.145
sshd: 193.201.227.52
sshd: 191.237.46.112
sshd: 190.216.146.143
sshd: 61.183.22.139
sshd: 193.201.227.57
sshd: 117.21.227.36
sshd: 222.202.135.3
sshd: 188.64.169.106
sshd: 193.104.41.89
sshd: 219.233.216.26
sshd: 89.163.201.131
sshd: 13.75.46.245
sshd: 112.54.83.98
sshd: 179.43.141.228
sshd: 193.201.227.62
sshd: 218.200.15.228
sshd: 169.50.15.78
sshd: 91.193.74.33
sshd: 139.196.192.45
sshd: 193.201.227.65
sshd: 193.201.227.63
sshd: 193.201.227.68
sshd: 164.132.160.210
sshd: 202.104.68.30
sshd: 193.201.227.8
sshd: 122.141.236.69
sshd: 117.145.177.163
sshd: 12.70.251.227
sshd: 114.119.5.2
sshd: 1.9.139.32
sshd: 117.21.225.103
sshd: 89.163.209.57
sshd: 138.128.184.104
sshd: 218.85.133.73
sshd: 62.138.2.209
sshd: 112.124.4.33
sshd: 59.151.34.94
sshd: 62.90.207.241
sshd: 23.246.226.208
sshd: 23.102.43.117
sshd: 211.144.94.233
sshd: 177.39.81.45
sshd: 211.144.94.231
sshd: 218.255.151.246
sshd: 59.63.188.44
sshd: 177.70.121.167
sshd: 187.141.5.177
sshd: 208.109.54.40
sshd: 91.193.74.7
sshd: 118.129.166.196
sshd: 61.183.86.23
sshd: 113.21.228.166
sshd: 190.216.146.151
sshd: 193.201.227.6
sshd: 218.65.30.92
sshd: 208.116.37.210
sshd: 159.122.7.45
sshd: 104.214.30.154
sshd: 40.68.28.230
sshd: 120.132.58.128
sshd: 177.55.88.2
sshd: 91.98.96.118
sshd: 104.45.153.60
sshd: 192.241.214.140
sshd: 190.145.30.222
sshd: 180.153.243.73
sshd: 173.224.117.146
sshd: 185.106.94.136
sshd: 47.89.30.90
sshd: 125.88.146.108
sshd: 175.201.19.67
sshd: 94.79.5.102
sshd: 83.13.65.243
sshd: 78.31.65.228
sshd: 162.105.160.30
sshd: 125.88.177.91
sshd: 162.244.28.126
sshd: 27.221.10.43
sshd: 116.249.185.126
sshd: 137.135.108.136
sshd: 217.170.195.52
sshd: 185.93.187.109
sshd: 49.143.32.8
sshd: 202.153.39.13
sshd: 118.26.143.50
sshd: 112.74.13.12
sshd: 164.77.223.189
sshd: 106.120.172.242
sshd: 183.80.163.175
sshd: 112.230.196.5
sshd: 14.0.25.5
sshd: 114.255.117.165
sshd: 117.135.131.60
sshd: 125.88.146.112
sshd: 27.221.10.194
sshd: 208.109.53.250
sshd: 119.10.48.45
sshd: 59.47.5.234
sshd: 117.145.177.59
sshd: 59.47.5.233
sshd: 59.47.5.236
sshd: 58.137.12.74
sshd: 119.81.162.35
sshd: 193.201.227.71
sshd: 40.78.59.254
sshd: 112.33.3.154
sshd: 40.118.163.148
sshd: 193.201.227.70
sshd: 159.8.34.74
sshd: 152.231.82.132
sshd: 201.55.48.173
sshd: 188.214.58.170
sshd: 123.196.116.66
sshd: 108.62.157.218
sshd: 185.106.94.232
sshd: 117.145.177.51
sshd: 40.83.8.192
sshd: 117.145.177.52
sshd: 13.73.7.43
sshd: 115.28.77.249
sshd: 211.151.64.150
sshd: 50.184.106.89
sshd: 159.122.220.108
sshd: 122.144.196.177
sshd: 113.195.145.12
sshd: 193.201.227.84
sshd: 212.98.164.237
sshd: 193.201.227.86
sshd: 40.114.53.168
sshd: 193.201.227.200
sshd: 1.189.209.194
# 2016/04/02 追加
sshd: 193.201.227.11
sshd: 27.254.67.185
sshd: 118.69.61.25
sshd: 222.214.218.200
sshd: 116.246.27.145
sshd: 133.242.177.76
# 2016/04/03 追加
sshd: 117.21.191.219
sshd: 185.106.92.143
sshd: 77.41.229.18
sshd: 195.175.57.254
sshd: 217.144.201.243
sshd: 13.92.130.128
sshd: 183.3.202.191
sshd: 143.106.51.80
# 2016/04/05 追加
sshd: 111.13.70.132
sshd: 220.88.41.2
# 2016/04/08 追加
sshd: 111.204.117.98
sshd: 117.136.145.19
sshd: 69.4.87.26
sshd: 119.146.221.68
sshd: 222.186.51.200
sshd: 166.62.85.153
sshd: 182.105.146.175
sshd: 183.3.202.170
sshd: 221.203.3.100
sshd: 91.197.232.30
sshd: 61.32.31.183
sshd: 91.197.232.25
sshd: 221.179.89.90
sshd: 138.94.164.71
sshd: 81.2.252.64
sshd: 192.184.40.93
# 2016/04/13 追加
sshd: 59.47.5.232
sshd: 151.11.201.3
sshd: 104.243.16.106
sshd: 173.79.197.228
sshd: 125.212.232.63
sshd: 115.29.55.185
sshd: 185.103.252.98
sshd: 200.205.43.243
sshd: 221.203.3.103
sshd: 31.184.198.210
sshd: 13.95.146.197
sshd: 212.83.188.250
sshd: 202.147.204.202
sshd: 111.13.70.133
sshd: 179.43.141.221
sshd: 81.82.207.64
# 2016/04/15 追加
sshd: 89.107.129.219 # http running
sshd: 109.230.252.52 # http running
sshd: 121.162.3.133 # http running
sshd: 203.191.150.53
sshd: 89.31.6.5
sshd: 62.28.211.202
sshd: 185.103.252.115
sshd: 222.255.180.119
sshd: 194.136.108.9
# 2016/04/18 追加
sshd: 192.3.170.114 # host.colocrossing.com
sshd: 173.208.220.131 # http running
sshd: 192.169.189.36 # http running
sshd: 27.131.3.130 # http running
sshd: 192.169.189.80 # http running
sshd: 185.130.5.88 # http running
sshd: 61.139.140.161
sshd: 220.181.167.183
sshd: 220.179.172.185
sshd: 61.132.161.130
sshd: 179.43.144.37
sshd: 185.103.252.14
sshd: 123.94.10.3
sshd: 59.45.79.23
sshd: 122.49.30.116
# 2016/05/02 追加
sshd: 84.45.123.3 # outgoing.myaspect.net
sshd: 161.202.120.149 # 95.78.caa1.ip4.static.sl-reverse.com
sshd: 46.8.44.157 # hostname.vvv
sshd: 159.122.123.183 # b7.7b.7a9f.ip4.static.sl-reverse.com
sshd: 198.23.113.23 # 17.71.17c6.ip4.static.sl-reverse.com
sshd: 185.110.132.55 # http running
sshd: 103.29.196.250 # http running transit-250.unud.ac.id
sshd: 91.201.236.155 # http running
sshd: 125.91.13.2 # http running
sshd: 220.124.151.130 # http running
sshd: 153.122.2.218 # http running chausu.com
sshd: 58.20.125.166 # http running
sshd: 103.4.231.200 # http running
sshd: 185.130.5.48 # http running
sshd: 179.43.144.43 # http running
sshd: 87.118.106.23 # http running ns.km23316-04.keymachine.de
sshd: 91.224.161.78
sshd: 118.26.135.175
sshd: 91.224.160.29
sshd: 91.224.160.33
sshd: 118.193.86.6
sshd: 212.46.39.52
sshd: 219.83.163.168
sshd: 221.203.3.105
sshd: 179.43.144.25
sshd: 14.176.14.253
sshd: 91.224.160.37
sshd: 125.124.246.89
sshd: 101.254.101.2
sshd: 221.11.92.253
sshd: 179.43.144.17
sshd: 123.138.79.60
sshd: 120.203.215.106

まだまーだありますが多すぎるので今日はここまで

29
26
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
29
26

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?