14.207.20.70 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.207.205.178	attack	Unauthorized connection attempt from IP address 14.207.205.178 on Port 445(SMB)	2020-09-01 20:04:04
14.207.205.124	attack	WordPress brute force	2020-08-25 05:54:26
14.207.207.181	attackspam	Unauthorized connection attempt from IP address 14.207.207.181 on Port 445(SMB)	2020-08-21 03:40:37
14.207.204.203	attack	Unauthorised access (Aug 7) SRC=14.207.204.203 LEN=52 TOS=0x10 PREC=0x40 TTL=112 ID=7024 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-07 16:06:03
14.207.201.82	attackbots	Unauthorized connection attempt detected from IP address 14.207.201.82 to port 445	2020-07-25 21:59:22
14.207.204.112	attackspam	Port Scan ...	2020-07-14 14:11:08
14.207.205.61	attackspam	Unauthorized IMAP connection attempt	2020-06-22 21:54:50
14.207.206.201	attack	1592798050 - 06/22/2020 05:54:10 Host: 14.207.206.201/14.207.206.201 Port: 445 TCP Blocked	2020-06-22 13:40:16
14.207.205.63	attack	Unauthorized connection attempt from IP address 14.207.205.63 on Port 445(SMB)	2020-06-01 18:12:39
14.207.201.96	attack	20/5/14@14:38:41: FAIL: Alarm-Network address from=14.207.201.96 ...	2020-05-15 04:21:30
14.207.201.175	attack	Unauthorized connection attempt from IP address 14.207.201.175 on Port 445(SMB)	2020-05-12 19:43:30
14.207.207.191	attackbotsspam	May 11 13:47:03 vbuntu sshd[29020]: warning: /etc/hosts.allow, line 11: can't verify hostname: getaddrinfo(mx-ll-14.207.207-191.dynamic.3bb.in.th, AF_INET) failed May 11 13:47:03 vbuntu sshd[29020]: refused connect from 14.207.207.191 (14.207.207.191) May 11 13:47:05 vbuntu sshd[29026]: warning: /etc/hosts.allow, line 11: can't verify hostname: getaddrinfo(mx-ll-14.207.207-191.dynamic.3bb.in.th, AF_INET) failed May 11 13:47:05 vbuntu sshd[29026]: refused connect from 14.207.207.191 (14.207.207.191) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.207.207.191	2020-05-12 01:21:04
14.207.203.22	attack	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-10 18:07:10
14.207.205.234	attackspambots	Honeypot attack, port: 445, PTR: mx-ll-14.207.205-234.dynamic.3bb.in.th.	2020-05-05 21:22:34
14.207.205.110	attackbots	445/tcp [2020-03-23]1pkt	2020-03-23 20:36:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.20.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50085
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.20.70.			IN	A

;; AUTHORITY SECTION:
.			259	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:54:41 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

70.20.207.14.in-addr.arpa domain name pointer mx-ll-14.207.20-70.dynamic.3bb.in.th.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
70.20.207.14.in-addr.arpa	name = mx-ll-14.207.20-70.dynamic.3bb.in.th.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
129.204.79.131	attackbots	Lines containing failures of 129.204.79.131 Oct 7 08:45:54 dns01 sshd[23489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.79.131 user=r.r Oct 7 08:45:56 dns01 sshd[23489]: Failed password for r.r from 129.204.79.131 port 42014 ssh2 Oct 7 08:46:01 dns01 sshd[23489]: Received disconnect from 129.204.79.131 port 42014:11: Bye Bye [preauth] Oct 7 08:46:01 dns01 sshd[23489]: Disconnected from authenticating user r.r 129.204.79.131 port 42014 [preauth] Oct 7 09:02:07 dns01 sshd[25756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.79.131 user=r.r Oct 7 09:02:09 dns01 sshd[25756]: Failed password for r.r from 129.204.79.131 port 50392 ssh2 Oct 7 09:02:09 dns01 sshd[25756]: Received disconnect from 129.204.79.131 port 50392:11: Bye Bye [preauth] Oct 7 09:02:09 dns01 sshd[25756]: Disconnected from authenticating user r.r 129.204.79.131 port 50392 [preauth] Oct 7 09:07:........ ------------------------------	2019-10-11 01:38:58
106.12.84.115	attack	Oct 6 06:26:00 kmh-wsh-001-nbg03 sshd[14724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.115 user=r.r Oct 6 06:26:02 kmh-wsh-001-nbg03 sshd[14724]: Failed password for r.r from 106.12.84.115 port 52606 ssh2 Oct 6 06:26:03 kmh-wsh-001-nbg03 sshd[14724]: Received disconnect from 106.12.84.115 port 52606:11: Bye Bye [preauth] Oct 6 06:26:03 kmh-wsh-001-nbg03 sshd[14724]: Disconnected from 106.12.84.115 port 52606 [preauth] Oct 6 06:30:35 kmh-wsh-001-nbg03 sshd[14897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.115 user=r.r Oct 6 06:30:38 kmh-wsh-001-nbg03 sshd[14897]: Failed password for r.r from 106.12.84.115 port 58656 ssh2 Oct 6 06:30:38 kmh-wsh-001-nbg03 sshd[14897]: Received disconnect from 106.12.84.115 port 58656:11: Bye Bye [preauth] Oct 6 06:30:38 kmh-wsh-001-nbg03 sshd[14897]: Disconnected from 106.12.84.115 port 58656 [preauth] Oct 6 06:44:02 ........ -------------------------------	2019-10-11 01:06:29
221.149.133.64	attack	Automatic report - FTP Brute Force	2019-10-11 01:21:28
54.39.75.1	attackbots	Oct 10 19:06:47 SilenceServices sshd[8071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.75.1 Oct 10 19:06:49 SilenceServices sshd[8071]: Failed password for invalid user hbase from 54.39.75.1 port 56172 ssh2 Oct 10 19:08:55 SilenceServices sshd[8662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.75.1	2019-10-11 01:17:21
218.255.150.226	attack	FTP Brute-Force reported by Fail2Ban	2019-10-11 01:27:37
112.254.248.128	attackspambots	Unauthorised access (Oct 10) SRC=112.254.248.128 LEN=40 TTL=49 ID=65019 TCP DPT=8080 WINDOW=48236 SYN Unauthorised access (Oct 10) SRC=112.254.248.128 LEN=40 TTL=49 ID=33846 TCP DPT=8080 WINDOW=48236 SYN Unauthorised access (Oct 10) SRC=112.254.248.128 LEN=40 TTL=49 ID=49242 TCP DPT=8080 WINDOW=48236 SYN Unauthorised access (Oct 10) SRC=112.254.248.128 LEN=40 TTL=49 ID=30575 TCP DPT=8080 WINDOW=48236 SYN Unauthorised access (Oct 10) SRC=112.254.248.128 LEN=40 TTL=49 ID=49689 TCP DPT=8080 WINDOW=39241 SYN Unauthorised access (Oct 8) SRC=112.254.248.128 LEN=40 TTL=49 ID=5787 TCP DPT=8080 WINDOW=48236 SYN Unauthorised access (Oct 8) SRC=112.254.248.128 LEN=40 TTL=49 ID=2339 TCP DPT=8080 WINDOW=23569 SYN Unauthorised access (Oct 7) SRC=112.254.248.128 LEN=40 TTL=49 ID=8072 TCP DPT=8080 WINDOW=48236 SYN	2019-10-11 01:36:03
157.119.189.93	attack	Oct 10 10:25:56 ny01 sshd[10463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.119.189.93 Oct 10 10:25:58 ny01 sshd[10463]: Failed password for invalid user P@SS@123 from 157.119.189.93 port 41090 ssh2 Oct 10 10:30:40 ny01 sshd[11003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.119.189.93	2019-10-11 01:23:23
194.54.65.228	attack	[portscan] Port scan	2019-10-11 01:01:47
132.145.213.82	attack	Oct 10 19:34:46 OPSO sshd\[32754\]: Invalid user 123Remote from 132.145.213.82 port 18894 Oct 10 19:34:46 OPSO sshd\[32754\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.213.82 Oct 10 19:34:47 OPSO sshd\[32754\]: Failed password for invalid user 123Remote from 132.145.213.82 port 18894 ssh2 Oct 10 19:39:03 OPSO sshd\[1087\]: Invalid user 123Orange from 132.145.213.82 port 39244 Oct 10 19:39:03 OPSO sshd\[1087\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.213.82	2019-10-11 01:41:37
103.228.55.79	attack	$f2bV_matches	2019-10-11 01:05:44
58.215.13.154	attackbotsspam	Oct 10 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=58.215.13.154, lip=REMOVED, TLS: Disconnected, session=\ Oct 10 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=58.215.13.154, lip=REMOVED, TLS, session=\ Oct 10 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=58.215.13.154, lip=REMOVED, TLS: Disconnected, session=\	2019-10-11 01:37:14
104.41.5.236	attack	Forged login request.	2019-10-11 01:11:03
83.234.179.115	attackbots	[portscan] Port scan	2019-10-11 01:39:15
168.61.178.132	attack	168.61.178.132 409057750-PPE0 UoCMRN27yxkatqW8ZJdH5RKOwEY0000 PublicWebServer Cross-site script check failed for field files[]="Bad tag: ?php"	2019-10-11 01:10:15
192.42.116.17	attackspambots	2019-10-10T17:03:27.915143abusebot.cloudsearch.cf sshd\[21982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=this-is-a-tor-exit-node-hviv117.hviv.nl user=root	2019-10-11 01:26:22

最近上报的IP列表

14.207.20.80	14.207.20.9	14.207.200.100	14.207.200.102
14.207.200.120	14.207.200.112	14.207.200.133	14.207.200.140
14.207.200.143	14.207.200.154	14.207.203.235	14.207.203.236
14.207.203.242	14.207.203.26	14.207.200.118	224.5.43.137
14.207.203.49	14.207.203.58	14.207.203.75	14.207.203.53

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表