必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
14.207.138.99 attackbotsspam
Honeypot attack, port: 445, PTR: mx-ll-14.207.138-99.dynamic.3bb.in.th.
2020-02-08 17:49:59
14.207.13.222 attackspam
2019-11-01T04:50:14.6823061240 sshd\[27897\]: Invalid user ubnt from 14.207.13.222 port 60391
2019-11-01T04:50:14.8890651240 sshd\[27897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.207.13.222
2019-11-01T04:50:16.4920951240 sshd\[27897\]: Failed password for invalid user ubnt from 14.207.13.222 port 60391 ssh2
...
2019-11-01 17:39:49
14.207.137.59 attackspambots
Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 04:50:18.
2019-10-21 15:44:17
14.207.137.221 attackspambots
Sat, 20 Jul 2019 21:54:11 +0000 likely compromised host or open proxy. ddos rate spidering
2019-07-21 14:03:04
14.207.136.9 attack
wordpress exploit scan
...
2019-07-15 14:54:34
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.13.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8978
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.13.189.			IN	A

;; AUTHORITY SECTION:
.			188	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 13:21:35 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
189.13.207.14.in-addr.arpa domain name pointer mx-ll-14.207.13-189.dynamic.3bb.in.th.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
189.13.207.14.in-addr.arpa	name = mx-ll-14.207.13-189.dynamic.3bb.in.th.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
196.203.31.154 attackbots
Tried sshing with brute force.
2019-07-01 12:32:42
35.232.147.191 attackbots
Message: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/activated_rules/modsecurity_crs_35_bad_robots.conf"] [line "20"] [id "990002"] [rev "2"] [msg "Request Indicates a Security Scanner Scanned the Site"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [ver "OWASP_CRS/2.2.6"] [maturity "9"] [accuracy "9"] [tag "OWASP_CRS/AUTOMATION/SECURITY_SCANNER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"]
2019-07-01 14:38:40
92.119.160.125 attackbots
01.07.2019 05:04:48 Connection to port 3203 blocked by firewall
2019-07-01 13:26:36
74.82.47.8 attackbotsspam
firewall-block, port(s): 389/tcp
2019-07-01 14:30:51
81.22.45.116 attack
Jul  1 03:54:14   TCP Attack: SRC=81.22.45.116 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=241  PROTO=TCP SPT=50053 DPT=5018 WINDOW=1024 RES=0x00 SYN URGP=0
2019-07-01 12:40:52
159.65.236.58 attack
SSH Bruteforce
2019-07-01 14:35:05
185.176.27.66 attackbotsspam
firewall-block, port(s): 7725/tcp, 7733/tcp
2019-07-01 14:06:09
185.176.27.90 attackspambots
01.07.2019 04:07:43 Connection to port 53694 blocked by firewall
2019-07-01 14:04:10
81.22.45.219 attack
NAME : RU-INFOTECH-20181015 CIDR : 81.22.45.0/24 SYN Flood DDoS Attack Russian Federation - block certain countries :) IP: 81.22.45.219  Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN  - data recovery https://help-dysk.pl
2019-07-01 14:27:44
128.134.25.85 attack
Jul  1 08:23:49 lnxweb62 sshd[1833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.134.25.85
Jul  1 08:23:49 lnxweb62 sshd[1833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.134.25.85
2019-07-01 14:42:48
218.92.0.207 attackspam
Jun 30 23:55:41 plusreed sshd[3371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.207  user=root
Jun 30 23:55:43 plusreed sshd[3371]: Failed password for root from 218.92.0.207 port 32632 ssh2
...
2019-07-01 14:36:32
80.82.78.104 attackspambots
01.07.2019 05:03:33 Connection to port 3393 blocked by firewall
2019-07-01 14:29:13
113.108.140.114 attackspambots
Invalid user lilin from 113.108.140.114 port 25792
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.108.140.114
Failed password for invalid user lilin from 113.108.140.114 port 25792 ssh2
Invalid user developers from 113.108.140.114 port 21920
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.108.140.114
2019-07-01 12:28:49
89.248.162.168 attackspam
01.07.2019 06:17:08 Connection to port 15009 blocked by firewall
2019-07-01 14:26:28
14.171.55.88 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-01 03:27:47,396 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.171.55.88)
2019-07-01 12:33:09

最近上报的IP列表

14.207.13.170 14.207.13.163 14.207.13.175 14.207.13.148
14.207.13.199 14.207.13.178 14.207.13.192 14.207.13.210
14.207.13.217 14.207.13.208 14.207.13.202 14.207.13.204
14.207.13.221 14.207.13.219 99.65.189.15 14.207.13.215
14.207.13.228 14.207.13.237 14.207.13.244 14.207.13.233