14.207.130.109

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.130.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19586
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.130.109.			IN	A

;; AUTHORITY SECTION:
.			426	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:51:01 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

109.130.207.14.in-addr.arpa domain name pointer mx-ll-14.207.130-109.dynamic.3bb.in.th.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
109.130.207.14.in-addr.arpa	name = mx-ll-14.207.130-109.dynamic.3bb.in.th.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
115.239.253.241	attack	Apr 14 22:41:39 cumulus sshd[13353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.239.253.241 user=r.r Apr 14 22:41:41 cumulus sshd[13353]: Failed password for r.r from 115.239.253.241 port 57641 ssh2 Apr 14 22:41:41 cumulus sshd[13353]: Received disconnect from 115.239.253.241 port 57641:11: Bye Bye [preauth] Apr 14 22:41:41 cumulus sshd[13353]: Disconnected from 115.239.253.241 port 57641 [preauth] Apr 14 22:48:00 cumulus sshd[13658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.239.253.241 user=r.r Apr 14 22:48:02 cumulus sshd[13658]: Failed password for r.r from 115.239.253.241 port 59047 ssh2 Apr 14 22:48:02 cumulus sshd[13658]: Received disconnect from 115.239.253.241 port 59047:11: Bye Bye [preauth] Apr 14 22:48:02 cumulus sshd[13658]: Disconnected from 115.239.253.241 port 59047 [preauth] Apr 14 22:51:08 cumulus sshd[13808]: pam_unix(sshd:auth): authentication failure........ -------------------------------	2020-04-16 07:24:07
148.59.185.117	attackbotsspam	1,47-11/04 [bc02/m70] PostRequest-Spammer scoring: stockholm	2020-04-16 07:35:49
213.180.203.2	attackspam	[Thu Apr 16 03:23:14.156372 2020] [:error] [pid 27072:tid 140327109256960] [client 213.180.203.2:55152] [client 213.180.203.2] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XpdtMtf343qgl4K6QZWtSwAABGY"] ...	2020-04-16 07:27:41
111.40.217.92	attackspam	DATE:2020-04-16 00:20:09, IP:111.40.217.92, PORT:ssh SSH brute force auth (docker-dc)	2020-04-16 07:15:22
111.229.199.67	attack	Apr 16 00:39:25 santamaria sshd\[31613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.199.67 user=root Apr 16 00:39:27 santamaria sshd\[31613\]: Failed password for root from 111.229.199.67 port 38646 ssh2 Apr 16 00:44:22 santamaria sshd\[31684\]: Invalid user user from 111.229.199.67 Apr 16 00:44:22 santamaria sshd\[31684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.199.67 ...	2020-04-16 07:41:30
174.253.160.51	attacknormal	seriously	2020-04-16 07:06:05
222.186.173.201	attack	Apr 16 01:05:50 minden010 sshd[3964]: Failed password for root from 222.186.173.201 port 11022 ssh2 Apr 16 01:05:53 minden010 sshd[3964]: Failed password for root from 222.186.173.201 port 11022 ssh2 Apr 16 01:05:56 minden010 sshd[3964]: Failed password for root from 222.186.173.201 port 11022 ssh2 Apr 16 01:06:03 minden010 sshd[3964]: error: maximum authentication attempts exceeded for root from 222.186.173.201 port 11022 ssh2 [preauth] ...	2020-04-16 07:09:12
209.17.96.178	attack	Port Scan: Events[3] countPorts[3]: 80 8443 137 ..	2020-04-16 07:28:34
222.180.162.8	attackbotsspam	Invalid user admin from 222.180.162.8 port 43940	2020-04-16 07:05:22
222.186.30.167	attackbots	Apr 16 01:08:05 ucs sshd\[8533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root Apr 16 01:08:08 ucs sshd\[8531\]: error: PAM: User not known to the underlying authentication module for root from 222.186.30.167 Apr 16 01:08:08 ucs sshd\[8535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root ...	2020-04-16 07:13:54
212.47.230.29	attack	Apr 16 00:57:46 h2779839 sshd[3252]: Invalid user kj from 212.47.230.29 port 54182 Apr 16 00:57:46 h2779839 sshd[3252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.230.29 Apr 16 00:57:46 h2779839 sshd[3252]: Invalid user kj from 212.47.230.29 port 54182 Apr 16 00:57:48 h2779839 sshd[3252]: Failed password for invalid user kj from 212.47.230.29 port 54182 ssh2 Apr 16 01:01:36 h2779839 sshd[3345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.230.29 user=root Apr 16 01:01:37 h2779839 sshd[3345]: Failed password for root from 212.47.230.29 port 33038 ssh2 Apr 16 01:05:25 h2779839 sshd[3471]: Invalid user test from 212.47.230.29 port 40124 Apr 16 01:05:25 h2779839 sshd[3471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.230.29 Apr 16 01:05:25 h2779839 sshd[3471]: Invalid user test from 212.47.230.29 port 40124 Apr 16 01:05:27 h2779839 sshd[3 ...	2020-04-16 07:15:00
92.118.38.83	attackbots	'IP reached maximum auth failures'	2020-04-16 07:24:45
209.17.96.242	attackspambots	port scan and connect, tcp 22 (ssh)	2020-04-16 07:25:32
128.199.52.45	attackspam	Apr 16 01:37:56 lukav-desktop sshd\[26484\]: Invalid user tpuser from 128.199.52.45 Apr 16 01:37:56 lukav-desktop sshd\[26484\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.52.45 Apr 16 01:37:58 lukav-desktop sshd\[26484\]: Failed password for invalid user tpuser from 128.199.52.45 port 54006 ssh2 Apr 16 01:44:01 lukav-desktop sshd\[26821\]: Invalid user oframe4 from 128.199.52.45 Apr 16 01:44:01 lukav-desktop sshd\[26821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.52.45	2020-04-16 07:12:16
119.97.184.220	attackspambots	Apr 15 19:45:24 * sshd[14191]: Invalid user sahil from 119.97.184.220 Apr 15 19:45:24 * sshd[14191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.97.184.220 Apr 15 19:45:25 * sshd[14191]: Failed password for invalid user sahil from 119.97.184.220 port 36828 ssh2 Apr 15 19:45:25 * sshd[14191]: Received disconnect from 119.97.184.220: 11: Bye Bye [preauth] Apr 15 19:56:01 * sshd[15705]: Invalid user kernoops from 119.97.184.220 Apr 15 19:56:01 * sshd[15705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.97.184.220 Apr 15 19:56:03 * sshd[15705]: Failed password for invalid user kernoops from 119.97.184.220 port 45792 ssh2 Apr 15 19:56:04 * sshd[15705]: Received disconnect from 119.97.184.220: 11: Bye Bye [preauth] Apr 15 19:58:58 * sshd[15830]: Connection closed by 119.97.184.220 [preauth] Apr 15 20:00:18 * sshd[16509]: Invalid user azureuser from 119.97.184.2........ -------------------------------	2020-04-16 07:34:43

最近上报的IP列表

14.207.130.112	14.207.130.118	14.207.130.121	157.47.51.158
149.232.189.150	14.207.14.252	14.207.14.48	14.207.14.35
14.207.14.5	14.207.14.40	14.207.14.37	14.207.14.65
14.207.14.82	14.207.14.94	14.207.14.53	14.207.14.26
14.207.14.39	14.207.14.97	14.207.140.1	14.207.140.135