必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
14.207.42.89 attackspambots
2019-12-29 23:48:56 plain_virtual_exim authenticator failed for mx-ll-14.207.42-89.dynamic.3bb.co.th ([127.0.0.1]) [14.207.42.89]: 535 Incorrect authentication data


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.207.42.89
2019-12-30 08:21:41
14.207.42.142 attack
Lines containing failures of 14.207.42.142
2019-11-04 x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.207.42.142
2019-11-05 06:48:58
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.42.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.42.134.			IN	A

;; AUTHORITY SECTION:
.			578	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:58:07 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
134.42.207.14.in-addr.arpa domain name pointer mx-ll-14.207.42-134.dynamic.3bb.co.th.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.42.207.14.in-addr.arpa	name = mx-ll-14.207.42-134.dynamic.3bb.co.th.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
2.39.120.180 attackspambots
Aug  4 06:06:42 buvik sshd[28014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.39.120.180
Aug  4 06:06:44 buvik sshd[28014]: Failed password for invalid user Win&123 from 2.39.120.180 port 58216 ssh2
Aug  4 06:11:17 buvik sshd[28785]: Invalid user PassWoRD from 2.39.120.180
...
2020-08-04 16:43:57
98.167.124.171 attack
Aug  4 07:04:55 rocket sshd[23327]: Failed password for root from 98.167.124.171 port 57174 ssh2
Aug  4 07:09:25 rocket sshd[24108]: Failed password for root from 98.167.124.171 port 43830 ssh2
...
2020-08-04 17:13:33
68.183.112.182 attack
Attempt to hack Wordpress Login, XMLRPC or other login
2020-08-04 17:12:27
106.12.38.70 attack
Aug  4 08:37:55 Ubuntu-1404-trusty-64-minimal sshd\[19311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.70  user=root
Aug  4 08:37:57 Ubuntu-1404-trusty-64-minimal sshd\[19311\]: Failed password for root from 106.12.38.70 port 35360 ssh2
Aug  4 08:50:15 Ubuntu-1404-trusty-64-minimal sshd\[28080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.70  user=root
Aug  4 08:50:17 Ubuntu-1404-trusty-64-minimal sshd\[28080\]: Failed password for root from 106.12.38.70 port 38112 ssh2
Aug  4 08:54:50 Ubuntu-1404-trusty-64-minimal sshd\[31125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.70  user=root
2020-08-04 16:39:05
89.229.149.145 attack
Auto report Web spam and bad bot from Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.79 Safari/537.36 | HTTP/1.1 | GET | Tuesday, August 4th 2020 @ 03:51:47
2020-08-04 17:14:14
103.74.118.168 attackspam
103.74.118.168 - - [04/Aug/2020:04:39:20 +0100] "POST /wp-login.php HTTP/1.1" 200 1775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
103.74.118.168 - - [04/Aug/2020:04:39:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
103.74.118.168 - - [04/Aug/2020:04:52:26 +0100] "POST /wp-login.php HTTP/1.1" 200 1775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-08-04 16:50:35
159.89.133.144 attackbots
Port scan: Attack repeated for 24 hours
2020-08-04 16:45:18
41.72.197.182 attack
Unauthorized connection attempt detected from IP address 41.72.197.182 to port 22
2020-08-04 16:51:40
177.107.35.26 attack
ssh brute force
2020-08-04 17:16:08
79.98.105.180 attackspam
Aug  4 03:49:25 UTC__SANYALnet-Labs__cac14 sshd[26552]: Connection from 79.98.105.180 port 38682 on 64.137.176.112 port 22
Aug  4 03:49:25 UTC__SANYALnet-Labs__cac14 sshd[26552]: User r.r from 79.98.105.180 not allowed because not listed in AllowUsers
Aug  4 03:49:25 UTC__SANYALnet-Labs__cac14 sshd[26552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.98.105.180  user=r.r
Aug  4 03:49:27 UTC__SANYALnet-Labs__cac14 sshd[26552]: Failed password for invalid user r.r from 79.98.105.180 port 38682 ssh2
Aug  4 03:49:27 UTC__SANYALnet-Labs__cac14 sshd[26552]: Received disconnect from 79.98.105.180: 11: Bye Bye [preauth]
Aug  4 03:53:37 UTC__SANYALnet-Labs__cac14 sshd[26681]: Connection from 79.98.105.180 port 54112 on 64.137.176.112 port 22
Aug  4 03:53:38 UTC__SANYALnet-Labs__cac14 sshd[26681]: User r.r from 79.98.105.180 not allowed because not listed in AllowUsers
Aug  4 03:53:38 UTC__SANYALnet-Labs__cac14 sshd[26681]: pam_unix(s........
-------------------------------
2020-08-04 16:57:19
218.92.0.210 attack
Aug  4 11:02:29 OPSO sshd\[24420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.210  user=root
Aug  4 11:02:31 OPSO sshd\[24420\]: Failed password for root from 218.92.0.210 port 57639 ssh2
Aug  4 11:02:33 OPSO sshd\[24420\]: Failed password for root from 218.92.0.210 port 57639 ssh2
Aug  4 11:02:34 OPSO sshd\[24420\]: Failed password for root from 218.92.0.210 port 57639 ssh2
Aug  4 11:03:42 OPSO sshd\[24575\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.210  user=root
2020-08-04 17:06:11
186.103.184.227 attackspam
Banned for a week because repeated abuses, for example SSH, but not only
2020-08-04 17:03:34
218.92.0.198 attackbots
Aug  4 10:45:20 dcd-gentoo sshd[22008]: User root from 218.92.0.198 not allowed because none of user's groups are listed in AllowGroups
Aug  4 10:45:23 dcd-gentoo sshd[22008]: error: PAM: Authentication failure for illegal user root from 218.92.0.198
Aug  4 10:45:23 dcd-gentoo sshd[22008]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.198 port 13628 ssh2
...
2020-08-04 16:58:52
221.178.190.8 attack
2020-08-04T14:30:05.571700hostname sshd[96514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.178.190.8  user=root
2020-08-04T14:30:08.012110hostname sshd[96514]: Failed password for root from 221.178.190.8 port 18589 ssh2
...
2020-08-04 16:33:43
194.26.29.12 attack
Aug  4 10:57:46 debian-2gb-nbg1-2 kernel: \[18789933.498155\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.12 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=63043 PROTO=TCP SPT=51058 DPT=27000 WINDOW=1024 RES=0x00 SYN URGP=0
2020-08-04 17:13:17

最近上报的IP列表

14.207.42.119 14.207.42.12 14.207.42.120 14.207.42.145
14.207.42.164 14.207.42.17 14.207.42.178 14.207.42.176
14.207.42.19 14.207.42.203 14.207.42.200 14.207.42.205
14.207.42.220 14.207.42.195 14.207.42.218 14.207.42.225
14.207.42.23 14.207.42.233 14.207.42.236 14.207.42.253