14.160.26.221 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 14.160.26.221 to port 445	2020-01-04 23:37:57

相同子网IP讨论:

IP	类型	评论内容	时间
14.160.26.103	attackbots	Port Scan ...	2020-08-11 17:06:24
14.160.26.153	attack	Unauthorized connection attempt from IP address 14.160.26.153 on Port 445(SMB)	2020-06-02 02:31:03
14.160.26.57	attack	Unauthorized connection attempt detected from IP address 14.160.26.57 to port 445	2019-12-17 22:46:18
14.160.26.57	attackspambots	Unauthorized connection attempt detected from IP address 14.160.26.57 to port 445	2019-12-16 22:08:42
14.160.26.61	attack	Dec 1 07:27:37 andromeda sshd\[37542\]: Invalid user admin from 14.160.26.61 port 59078 Dec 1 07:27:37 andromeda sshd\[37542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.26.61 Dec 1 07:27:38 andromeda sshd\[37542\]: Failed password for invalid user admin from 14.160.26.61 port 59078 ssh2	2019-12-01 17:18:18
14.160.26.57	attackspam	445/tcp 445/tcp [2019-11-03/10]2pkt	2019-11-10 14:04:12
14.160.26.57	attackspam	Unauthorised access (Nov 1) SRC=14.160.26.57 LEN=52 TTL=116 ID=26688 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-01 19:18:47
14.160.26.57	attack	Unauthorised access (Oct 25) SRC=14.160.26.57 LEN=52 TTL=115 ID=2294 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-25 12:15:56
14.160.26.57	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 11:51:42.	2019-09-20 00:00:46
14.160.26.178	attack	Sep 8 11:12:31 pkdns2 sshd\[28014\]: Address 14.160.26.178 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 8 11:12:31 pkdns2 sshd\[28014\]: Invalid user newuser from 14.160.26.178Sep 8 11:12:33 pkdns2 sshd\[28014\]: Failed password for invalid user newuser from 14.160.26.178 port 33062 ssh2Sep 8 11:17:50 pkdns2 sshd\[28235\]: Address 14.160.26.178 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 8 11:17:50 pkdns2 sshd\[28235\]: Invalid user radio from 14.160.26.178Sep 8 11:17:51 pkdns2 sshd\[28235\]: Failed password for invalid user radio from 14.160.26.178 port 55033 ssh2 ...	2019-09-08 16:33:34
14.160.26.178	attack	Sep 5 11:08:16 wbs sshd\[18371\]: Invalid user 123456789 from 14.160.26.178 Sep 5 11:08:16 wbs sshd\[18371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.26.178 Sep 5 11:08:17 wbs sshd\[18371\]: Failed password for invalid user 123456789 from 14.160.26.178 port 54391 ssh2 Sep 5 11:13:23 wbs sshd\[18919\]: Invalid user csczserver from 14.160.26.178 Sep 5 11:13:23 wbs sshd\[18919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.26.178	2019-09-06 11:08:57
14.160.26.178	attackbots	Aug 31 20:55:50 xtremcommunity sshd\[3846\]: Invalid user mariadb from 14.160.26.178 port 49313 Aug 31 20:55:50 xtremcommunity sshd\[3846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.26.178 Aug 31 20:55:51 xtremcommunity sshd\[3846\]: Failed password for invalid user mariadb from 14.160.26.178 port 49313 ssh2 Aug 31 21:00:33 xtremcommunity sshd\[4000\]: Invalid user guest3 from 14.160.26.178 port 43649 Aug 31 21:00:33 xtremcommunity sshd\[4000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.26.178 ...	2019-09-01 09:20:44
14.160.26.178	attackspam	Aug 23 08:29:05 web8 sshd\[13671\]: Invalid user kinder from 14.160.26.178 Aug 23 08:29:05 web8 sshd\[13671\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.26.178 Aug 23 08:29:07 web8 sshd\[13671\]: Failed password for invalid user kinder from 14.160.26.178 port 42774 ssh2 Aug 23 08:34:02 web8 sshd\[15943\]: Invalid user denis from 14.160.26.178 Aug 23 08:34:02 web8 sshd\[15943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.26.178	2019-08-23 16:53:18
14.160.26.57	attack	Unauthorized connection attempt from IP address 14.160.26.57 on Port 445(SMB)	2019-06-25 02:20:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.160.26.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22512
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.160.26.221.			IN	A

;; AUTHORITY SECTION:
.			305	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 04 23:37:48 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

221.26.160.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
221.26.160.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
128.199.170.33	attack	Jun 24 02:49:56 vps46666688 sshd[4537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.170.33 Jun 24 02:49:58 vps46666688 sshd[4537]: Failed password for invalid user postgres from 128.199.170.33 port 50340 ssh2 ...	2020-06-24 19:19:06
5.196.75.47	attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-06-24 19:48:22
218.4.239.146	attackbotsspam	2020-06-24T17:30:58.075025mx1.h3z.jp postfix/smtpd[8596]: warning: unknown[218.4.239.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-24T17:31:05.263465mx1.h3z.jp postfix/smtpd[8596]: warning: unknown[218.4.239.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-24T17:31:16.123397mx1.h3z.jp postfix/smtpd[8596]: warning: unknown[218.4.239.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-24 19:23:09
106.12.131.161	attackspam	Jun 24 07:50:03 rotator sshd\[2076\]: Invalid user suporte from 106.12.131.161Jun 24 07:50:04 rotator sshd\[2076\]: Failed password for invalid user suporte from 106.12.131.161 port 60644 ssh2Jun 24 07:51:49 rotator sshd\[2869\]: Failed password for root from 106.12.131.161 port 53204 ssh2Jun 24 07:53:28 rotator sshd\[2881\]: Failed password for root from 106.12.131.161 port 45758 ssh2Jun 24 07:55:10 rotator sshd\[3027\]: Invalid user testuser from 106.12.131.161Jun 24 07:55:12 rotator sshd\[3027\]: Failed password for invalid user testuser from 106.12.131.161 port 38316 ssh2 ...	2020-06-24 19:37:52
190.218.21.217	attack	Automatic report - XMLRPC Attack	2020-06-24 19:35:04
183.134.89.199	attack	Jun 24 09:45:43 nextcloud sshd\[13653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.134.89.199 user=elasticsearch Jun 24 09:45:46 nextcloud sshd\[13653\]: Failed password for elasticsearch from 183.134.89.199 port 50366 ssh2 Jun 24 09:49:28 nextcloud sshd\[18331\]: Invalid user uftp from 183.134.89.199 Jun 24 09:49:28 nextcloud sshd\[18331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.134.89.199	2020-06-24 19:17:44
171.34.197.241	attackbots	Jun 24 09:58:34 tuxlinux sshd[36586]: Invalid user jessica from 171.34.197.241 port 36957 Jun 24 09:58:34 tuxlinux sshd[36586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.34.197.241 Jun 24 09:58:34 tuxlinux sshd[36586]: Invalid user jessica from 171.34.197.241 port 36957 Jun 24 09:58:34 tuxlinux sshd[36586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.34.197.241 Jun 24 09:58:34 tuxlinux sshd[36586]: Invalid user jessica from 171.34.197.241 port 36957 Jun 24 09:58:34 tuxlinux sshd[36586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.34.197.241 Jun 24 09:58:36 tuxlinux sshd[36586]: Failed password for invalid user jessica from 171.34.197.241 port 36957 ssh2 ...	2020-06-24 19:22:19
197.156.67.242	attackspam	Automatic report - XMLRPC Attack	2020-06-24 19:16:20
193.70.0.42	attack	2020-06-24T11:06:00.310884homeassistant sshd[10559]: Invalid user admin from 193.70.0.42 port 59628 2020-06-24T11:06:00.324297homeassistant sshd[10559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.0.42 ...	2020-06-24 19:38:06
123.206.190.82	attackspam	SSH Bruteforce Attempt (failed auth)	2020-06-24 19:19:36
77.53.144.115	attack	Unauthorized connection attempt detected from IP address 77.53.144.115 to port 443	2020-06-24 19:28:37
192.241.220.236	attackspam	Port scan denied	2020-06-24 19:35:36
92.63.196.25	attack	06/24/2020-03:42:58.643101 92.63.196.25 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-24 19:29:42
45.236.64.138	attackbotsspam	Jun 24 06:57:15 h2779839 sshd[5239]: Invalid user bfq from 45.236.64.138 port 29012 Jun 24 06:57:15 h2779839 sshd[5239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.236.64.138 Jun 24 06:57:15 h2779839 sshd[5239]: Invalid user bfq from 45.236.64.138 port 29012 Jun 24 06:57:16 h2779839 sshd[5239]: Failed password for invalid user bfq from 45.236.64.138 port 29012 ssh2 Jun 24 07:01:09 h2779839 sshd[5327]: Invalid user haolong from 45.236.64.138 port 25397 Jun 24 07:01:09 h2779839 sshd[5327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.236.64.138 Jun 24 07:01:09 h2779839 sshd[5327]: Invalid user haolong from 45.236.64.138 port 25397 Jun 24 07:01:11 h2779839 sshd[5327]: Failed password for invalid user haolong from 45.236.64.138 port 25397 ssh2 Jun 24 07:05:02 h2779839 sshd[5452]: Invalid user core from 45.236.64.138 port 21738 ...	2020-06-24 19:44:02
35.194.178.89	attackbots	Jun 24 11:27:33 fhem-rasp sshd[18597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.194.178.89 Jun 24 11:27:36 fhem-rasp sshd[18597]: Failed password for invalid user postgres from 35.194.178.89 port 54280 ssh2 ...	2020-06-24 19:23:36

最近上报的IP列表

137.91.203.214	143.20.157.136	77.61.226.168	37.142.227.65
223.253.62.234	146.221.145.77	77.42.74.109	115.101.34.46
112.100.73.123	180.100.118.200	140.198.136.213	14.211.44.117
218.230.177.235	123.20.190.153	91.155.216.148	36.78.52.85
126.12.192.59	38.177.242.65	130.174.173.134	117.1.203.79