5.160.130.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Iran (ISLAMIC Republic Of)

运营商(isp): Respina Networks & Beyond PJSC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 5.160.130.2 on Port 445(SMB)	2019-10-31 03:44:36

相同子网IP讨论:

IP	类型	评论内容	时间
5.160.130.104	attackbots	firewall-block, port(s): 8080/tcp	2020-06-05 18:58:23
5.160.130.153	attackspambots	scan z	2019-12-06 03:28:14

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.160.130.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3583
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.160.130.2.			IN	A

;; AUTHORITY SECTION:
.			3349	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042101 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 22 08:31:47 +08 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 2.130.160.5.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 2.130.160.5.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
89.148.255.41	attack	400 BAD REQUEST	2020-04-07 07:02:18
90.150.244.68	attackspambots	Unauthorized connection attempt from IP address 90.150.244.68 on Port 445(SMB)	2020-04-07 06:42:26
95.147.20.240	attackspam	Apr 6 21:50:24 web sshd[25754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.147.20.240 Apr 6 21:50:24 web sshd[25756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.147.20.240 ...	2020-04-07 06:39:23
75.130.124.90	attackbotsspam	Apr 7 00:21:28 vps sshd[448752]: Failed password for invalid user deploy from 75.130.124.90 port 6023 ssh2 Apr 7 00:25:53 vps sshd[473050]: Invalid user admin from 75.130.124.90 port 60365 Apr 7 00:25:53 vps sshd[473050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=075-130-124-090.biz.spectrum.com Apr 7 00:25:55 vps sshd[473050]: Failed password for invalid user admin from 75.130.124.90 port 60365 ssh2 Apr 7 00:30:06 vps sshd[499111]: Invalid user ns2c from 75.130.124.90 port 36638 ...	2020-04-07 06:31:17
51.38.189.176	attackspam	Apr 6 23:24:54 [host] sshd[2020]: pam_unix(sshd:a Apr 6 23:24:56 [host] sshd[2020]: Failed password Apr 6 23:28:25 [host] sshd[2226]: Invalid user te Apr 6 23:28:25 [host] sshd[2226]: pam_unix(sshd:a	2020-04-07 06:45:56
104.46.55.57	attackspambots	Apr 7 00:19:39 mail.srvfarm.net postfix/smtps/smtpd[645066]: warning: unknown[104.46.55.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 00:23:07 mail.srvfarm.net postfix/smtps/smtpd[806988]: warning: unknown[104.46.55.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 00:24:49 mail.srvfarm.net postfix/smtps/smtpd[807264]: warning: unknown[104.46.55.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 00:26:27 mail.srvfarm.net postfix/smtps/smtpd[807264]: warning: unknown[104.46.55.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 00:28:15 mail.srvfarm.net postfix/smtps/smtpd[807264]: warning: unknown[104.46.55.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-04-07 06:41:38
62.171.172.225	attack	Apr 7 00:48:07 nginx sshd[96662]: Invalid user cron from 62.171.172.225 Apr 7 00:48:07 nginx sshd[96662]: Received disconnect from 62.171.172.225 port 52174:11: Normal Shutdown [preauth]	2020-04-07 07:04:40
136.232.66.174	attack	$f2bV_matches	2020-04-07 06:47:18
222.186.15.236	attack	Port 22 (SSH) access denied	2020-04-07 06:29:55
202.72.245.122	attack	Unauthorized connection attempt from IP address 202.72.245.122 on Port 445(SMB)	2020-04-07 06:35:40
183.88.217.43	attackspam	(imapd) Failed IMAP login from 183.88.217.43 (TH/Thailand/mx-ll-183.88.217-43.dynamic.3bb.in.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 6 20:00:11 ir1 dovecot[566034]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=183.88.217.43, lip=5.63.12.44, session=<39gH8aCiN623WNkr>	2020-04-07 06:55:24
94.64.231.168	attackspam	firewall-block, port(s): 80/tcp	2020-04-07 07:04:25
118.89.108.147	attackspambots	Apr 6 18:17:16 v22019038103785759 sshd\[10648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.108.147 user=root Apr 6 18:17:19 v22019038103785759 sshd\[10648\]: Failed password for root from 118.89.108.147 port 58186 ssh2 Apr 6 18:21:10 v22019038103785759 sshd\[10912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.108.147 user=root Apr 6 18:21:11 v22019038103785759 sshd\[10912\]: Failed password for root from 118.89.108.147 port 40038 ssh2 Apr 6 18:24:35 v22019038103785759 sshd\[11205\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.108.147 user=root ...	2020-04-07 06:28:45
36.90.156.123	attackspam	Unauthorized connection attempt from IP address 36.90.156.123 on Port 445(SMB)	2020-04-07 06:49:50
14.160.95.114	attack	(imapd) Failed IMAP login from 14.160.95.114 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 6 20:00:16 ir1 dovecot[566034]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=14.160.95.114, lip=5.63.12.44, session=<1H5S8aCiAt8OoF9y>	2020-04-07 06:46:54

最近上报的IP列表

87.146.165.128	107.225.180.51	125.72.232.19	26.247.202.106
123.27.124.111	237.58.229.106	122.155.223.55	23.136.216.252
187.57.87.153	219.199.252.27	181.15.154.156	218.76.179.169
193.232.124.76	243.226.109.46	65.101.151.75	64.185.63.25
115.234.143.172	16.170.58.185	95.161.222.211	110.184.213.23