14.160.52.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	1602016722 - 10/06/2020 22:38:42 Host: 14.160.52.130/14.160.52.130 Port: 445 TCP Blocked ...	2020-10-08 02:34:02
attackspam	1602016722 - 10/06/2020 22:38:42 Host: 14.160.52.130/14.160.52.130 Port: 445 TCP Blocked ...	2020-10-07 18:46:54

相同子网IP讨论:

IP	类型	评论内容	时间
14.160.52.58	attack	Dovecot Invalid User Login Attempt.	2020-09-06 21:56:13
14.160.52.58	attackspambots	Attempted Brute Force (dovecot)	2020-09-06 13:31:37
14.160.52.58	attackspam	Attempted Brute Force (dovecot)	2020-09-06 05:46:12
14.160.52.26	attackspam	Brute force attack to crack SMTP password (port 25 / 587)	2020-08-06 07:01:33
14.160.52.58	attackbotsspam	Unauthorized connection attempt from IP address 14.160.52.58	2020-07-28 00:53:59
14.160.52.26	attackbotsspam	Brute force attack to crack SMTP password (port 25 / 587)	2020-06-26 08:22:22
14.160.52.58	attackspam	...	2020-06-04 01:56:32
14.160.52.26	attackspambots	Dovecot Invalid User Login Attempt.	2020-05-29 01:38:47
14.160.52.26	attack	(imapd) Failed IMAP login from 14.160.52.26 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 29 16:31:17 ir1 dovecot[264309]: imap-login: Disconnected (auth failed, 1 attempts in 7 secs): user=, method=PLAIN, rip=14.160.52.26, lip=5.63.12.44, session=<4VYztGykXkAOoDQa>	2020-04-30 03:46:08
14.160.52.54	attackbotsspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-03-05 19:34:24
14.160.52.54	attackbots	Nov 27 23:55:20 ns3042688 courier-imapd: LOGIN FAILED, method=PLAIN, ip=\[::ffff:14.160.52.54\] ...	2019-11-28 09:40:10
14.160.52.170	attack	Unauthorized connection attempt from IP address 14.160.52.170 on Port 445(SMB)	2019-11-17 04:42:08
14.160.52.170	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 10-10-2019 21:10:22.	2019-10-11 05:17:33
14.160.52.166	attackspam	445/tcp [2019-06-21]1pkt	2019-06-21 15:32:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.160.52.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57523
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.160.52.130.			IN	A

;; AUTHORITY SECTION:
.			179	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100700 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 07 18:46:50 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

130.52.160.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.52.160.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
213.160.153.2	attackbotsspam	SSH brute force	2020-04-20 08:16:25
185.234.219.23	attack	Apr 20 02:10:04 ns3042688 courier-pop3d: LOGIN FAILED, user=support@cesumin.info, ip=\[::ffff:185.234.219.23\] ...	2020-04-20 08:11:38
122.51.243.143	attackspambots	Apr 20 00:18:23 mailserver sshd\[19511\]: Invalid user ce from 122.51.243.143 ...	2020-04-20 07:45:54
80.82.77.86	attack	80.82.77.86 was recorded 10 times by 8 hosts attempting to connect to the following ports: 32771,32768,49153. Incident counter (4h, 24h, all-time): 10, 91, 11301	2020-04-20 08:17:03
101.231.146.34	attackbotsspam	2020-04-19T23:22:51.982169shield sshd\[17945\]: Invalid user mysql from 101.231.146.34 port 41011 2020-04-19T23:22:51.985909shield sshd\[17945\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.146.34 2020-04-19T23:22:53.632252shield sshd\[17945\]: Failed password for invalid user mysql from 101.231.146.34 port 41011 ssh2 2020-04-19T23:27:13.628655shield sshd\[18712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.146.34 user=root 2020-04-19T23:27:15.576172shield sshd\[18712\]: Failed password for root from 101.231.146.34 port 49599 ssh2	2020-04-20 07:37:09
106.54.40.151	attackspambots	Scanned 3 times in the last 24 hours on port 22	2020-04-20 08:16:44
194.143.137.124	attackbots	Unauthorized connection attempt detected from IP address 194.143.137.124 to port 8080	2020-04-20 08:02:11
116.196.94.211	attackbotsspam	SSH Brute-Force Attack	2020-04-20 07:49:52
49.234.124.225	attackbotsspam	Apr 20 01:17:28 DAAP sshd[2214]: Invalid user ftpuser from 49.234.124.225 port 54706 Apr 20 01:17:28 DAAP sshd[2215]: Invalid user ftpuser from 49.234.124.225 port 54708 Apr 20 01:17:28 DAAP sshd[2214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.124.225 Apr 20 01:17:28 DAAP sshd[2214]: Invalid user ftpuser from 49.234.124.225 port 54706 Apr 20 01:17:29 DAAP sshd[2214]: Failed password for invalid user ftpuser from 49.234.124.225 port 54706 ssh2 Apr 20 01:17:28 DAAP sshd[2215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.124.225 Apr 20 01:17:28 DAAP sshd[2215]: Invalid user ftpuser from 49.234.124.225 port 54708 Apr 20 01:17:29 DAAP sshd[2215]: Failed password for invalid user ftpuser from 49.234.124.225 port 54708 ssh2 ...	2020-04-20 07:55:50
150.109.55.167	attackspam	SSH invalid-user multiple login try	2020-04-20 08:06:50
194.61.24.31	attackspambots	Apr 20 01:30:35 debian-2gb-nbg1-2 kernel: \[9598000.871006\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.61.24.31 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=46191 PROTO=TCP SPT=58282 DPT=2002 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-20 07:58:54
136.232.80.30	attackbots	1587327154 - 04/19/2020 22:12:34 Host: 136.232.80.30/136.232.80.30 Port: 445 TCP Blocked	2020-04-20 08:10:45
88.88.112.98	attackspam	Invalid user ge from 88.88.112.98 port 55198	2020-04-20 07:48:23
46.161.53.51	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-20 07:38:00
80.211.45.85	attackspam	Apr 19 22:40:45 legacy sshd[19432]: Failed password for root from 80.211.45.85 port 42882 ssh2 Apr 19 22:46:17 legacy sshd[19878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Apr 19 22:46:19 legacy sshd[19878]: Failed password for invalid user oracle from 80.211.45.85 port 33090 ssh2 ...	2020-04-20 07:52:58

最近上报的IP列表

194.14.37.219	191.101.22.181	236.12.155.194	179.149.22.191
46.137.253.246	62.109.217.119	189.114.1.16	112.29.171.34
34.74.88.243	182.74.167.249	69.12.68.194	122.226.167.246
198.12.157.28	185.191.171.21	188.82.92.144	188.166.225.17
176.32.34.102	31.171.152.131	122.70.178.5	102.137.59.183