14.207.19.242 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.207.19.147	attack	Feb 22 05:55:07 h2177944 kernel: \[5545142.819751\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=14.207.19.147 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=26343 DF PROTO=TCP SPT=50813 DPT=441 WINDOW=14400 RES=0x00 SYN URGP=0 Feb 22 05:55:07 h2177944 kernel: \[5545142.819765\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=14.207.19.147 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=26343 DF PROTO=TCP SPT=50813 DPT=441 WINDOW=14400 RES=0x00 SYN URGP=0 Feb 22 05:55:08 h2177944 kernel: \[5545143.816097\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=14.207.19.147 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=26344 DF PROTO=TCP SPT=50813 DPT=441 WINDOW=14400 RES=0x00 SYN URGP=0 Feb 22 05:55:08 h2177944 kernel: \[5545143.816111\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=14.207.19.147 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=26344 DF PROTO=TCP SPT=50813 DPT=441 WINDOW=14400 RES=0x00 SYN URGP=0 Feb 22 05:55:10 h2177944 kernel: \[5545145.813180\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=14.207.19.147 DST=85.2	2020-02-22 13:09:42
14.207.19.53	attackbots	Unauthorized connection attempt detected from IP address 14.207.19.53 to port 80	2020-01-01 03:27:02
14.207.198.252	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:50:38.	2019-12-21 03:35:12
14.207.199.165	attackbotsspam	Unauthorized connection attempt from IP address 14.207.199.165 on Port 445(SMB)	2019-12-01 04:49:53
14.207.19.2	attack	19/11/17@17:43:14: FAIL: IoT-Telnet address from=14.207.19.2 ...	2019-11-18 07:43:47
14.207.196.2	attack	Unauthorized connection attempt from IP address 14.207.196.2 on Port 445(SMB)	2019-11-14 04:11:38
14.207.197.233	attackbots	54068/udp [2019-10-28]1pkt	2019-10-29 03:05:58
14.207.198.36	attackbots	rdp brute-force attack 2019-10-12 15:31:14 ALLOW TCP 14.207.198.36 ###.###.###.### 59844 3391 0 - 0 0 0 - - - RECEIVE	2019-10-12 22:59:48
14.207.193.10	attackspambots	xmlrpc attack	2019-07-17 15:49:59
14.207.197.107	attackbotsspam	Unauthorized connection attempt from IP address 14.207.197.107 on Port 445(SMB)	2019-07-12 07:39:52
14.207.195.121	attack	xmlrpc attack	2019-07-11 08:08:12

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.19.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36172
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.19.242.			IN	A

;; AUTHORITY SECTION:
.			480	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 13:27:28 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

242.19.207.14.in-addr.arpa domain name pointer mx-ll-14.207.19-242.dynamic.3bb.in.th.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.19.207.14.in-addr.arpa	name = mx-ll-14.207.19-242.dynamic.3bb.in.th.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
193.169.252.206	attack	Oct 4 20:22:14 heicom postfix/smtpd\[26816\]: warning: unknown\[193.169.252.206\]: SASL LOGIN authentication failed: authentication failure Oct 4 21:13:29 heicom postfix/smtpd\[27626\]: warning: unknown\[193.169.252.206\]: SASL LOGIN authentication failed: authentication failure ...	2020-10-05 03:33:20
116.52.175.150	attackbots	port scan and connect, tcp 1433 (ms-sql-s)	2020-10-05 03:18:26
192.119.72.31	attackspam	Auto Fail2Ban report, multiple SMTP login attempts.	2020-10-05 03:23:06
64.227.72.109	attackbots	2020-10-04 21:16:24,036 fail2ban.actions: WARNING [ssh] Ban 64.227.72.109	2020-10-05 03:18:42
129.226.112.181	attackbots	firewall-block, port(s): 9045/tcp	2020-10-05 03:09:28
177.75.12.187	attackbots	Oct 4 21:19:36 h2829583 sshd[27644]: Failed password for root from 177.75.12.187 port 36157 ssh2	2020-10-05 03:27:42
119.45.114.133	attackbotsspam	2020-10-04T10:58:18.821807shield sshd\[4329\]: Invalid user dev from 119.45.114.133 port 46492 2020-10-04T10:58:18.831955shield sshd\[4329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.114.133 2020-10-04T10:58:21.139081shield sshd\[4329\]: Failed password for invalid user dev from 119.45.114.133 port 46492 ssh2 2020-10-04T11:02:08.321747shield sshd\[4706\]: Invalid user admin from 119.45.114.133 port 58732 2020-10-04T11:02:08.332998shield sshd\[4706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.114.133	2020-10-05 03:08:46
37.187.107.217	attackspam	2020-10-04 13:12:53.446039-0500 localhost sshd[89091]: Failed password for root from 37.187.107.217 port 41160 ssh2	2020-10-05 03:37:04
119.164.11.223	attack	TCP (SYN) 119.164.11.223:12535 -> port 23, len 44	2020-10-05 03:07:17
159.203.85.196	attack	firewall-block, port(s): 27644/tcp	2020-10-05 03:16:02
204.15.72.114	attack	Port scan on 1 port(s) from 204.15.72.114 detected: 1433 (11:54:44)	2020-10-05 03:36:31
164.90.185.34	attackspam	[MK-VM3] Blocked by UFW	2020-10-05 03:10:45
122.155.174.36	attackspambots	Sep 25 19:27:45 roki-contabo sshd\[23742\]: Invalid user ubuntu from 122.155.174.36 Sep 25 19:27:45 roki-contabo sshd\[23742\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.174.36 Sep 25 19:27:47 roki-contabo sshd\[23742\]: Failed password for invalid user ubuntu from 122.155.174.36 port 38042 ssh2 Sep 25 19:29:24 roki-contabo sshd\[23755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.174.36 user=root Sep 25 19:29:26 roki-contabo sshd\[23755\]: Failed password for root from 122.155.174.36 port 58888 ssh2 Sep 25 19:27:45 roki-contabo sshd\[23742\]: Invalid user ubuntu from 122.155.174.36 Sep 25 19:27:45 roki-contabo sshd\[23742\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.174.36 Sep 25 19:27:47 roki-contabo sshd\[23742\]: Failed password for invalid user ubuntu from 122.155.174.36 port 38042 ssh2 Sep 25 19:29:24 roki-conta ...	2020-10-05 03:14:59
189.103.153.245	attack	Wordpress File Manager Plugin Remote Code Execution Vulnerability, PTR: bd6799f5.virtua.com.br.	2020-10-05 03:34:27
115.42.127.133	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-10-04T17:20:38Z	2020-10-05 03:06:09

最近上报的IP列表

14.207.19.30	14.207.19.33	14.207.19.40	14.207.19.45
14.207.19.47	14.207.19.49	14.207.19.36	14.207.19.39
14.207.19.51	14.207.19.57	14.207.19.58	14.207.19.61
14.207.19.55	14.207.19.72	14.207.19.74	14.207.19.62
14.207.19.76	14.207.19.80	14.207.19.86	14.207.19.95

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表