14.207.42.23 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.207.42.89	attackspambots	2019-12-29 23:48:56 plain_virtual_exim authenticator failed for mx-ll-14.207.42-89.dynamic.3bb.co.th ([127.0.0.1]) [14.207.42.89]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.207.42.89	2019-12-30 08:21:41
14.207.42.142	attack	Lines containing failures of 14.207.42.142 2019-11-04 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.207.42.142	2019-11-05 06:48:58

类型

评论内容

时间

14.207.42.89

attackspambots

2019-12-29 23:48:56 plain_virtual_exim authenticator failed for mx-ll-14.207.42-89.dynamic.3bb.co.th ([127.0.0.1]) [14.207.42.89]: 535 Incorrect authentication data


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.207.42.89

2019-12-30 08:21:41

14.207.42.142

attack

Lines containing failures of 14.207.42.142
2019-11-04 x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.207.42.142

2019-11-05 06:48:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.42.23
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60399
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.42.23.			IN	A

;; AUTHORITY SECTION:
.			484	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:58:10 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

23.42.207.14.in-addr.arpa domain name pointer mx-ll-14.207.42-23.dynamic.3bb.co.th.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
23.42.207.14.in-addr.arpa	name = mx-ll-14.207.42-23.dynamic.3bb.co.th.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
70.88.253.123	attackspambots	Oct 16 10:17:07 gw1 sshd[25803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.88.253.123 Oct 16 10:17:09 gw1 sshd[25803]: Failed password for invalid user xxxxx from 70.88.253.123 port 59824 ssh2 ...	2019-10-16 15:40:43
77.247.110.17	attackbotsspam	\[2019-10-16 03:42:08\] NOTICE\[1887\] chan_sip.c: Registration from '"499" \' failed for '77.247.110.17:6237' - Wrong password \[2019-10-16 03:42:08\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-16T03:42:08.734-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="499",SessionID="0x7fc3ac00c388",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.17/6237",Challenge="311319e0",ReceivedChallenge="311319e0",ReceivedHash="6a76fc5d2c59452b61422db02fafc8ff" \[2019-10-16 03:42:08\] NOTICE\[1887\] chan_sip.c: Registration from '"499" \' failed for '77.247.110.17:6237' - Wrong password \[2019-10-16 03:42:08\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-16T03:42:08.855-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="499",SessionID="0x7fc3ac7f93a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.2	2019-10-16 15:58:39
140.143.15.169	attack	Oct 16 06:19:03 meumeu sshd[20019]: Failed password for root from 140.143.15.169 port 38004 ssh2 Oct 16 06:23:34 meumeu sshd[20601]: Failed password for root from 140.143.15.169 port 46850 ssh2 ...	2019-10-16 15:54:39
45.141.84.18	attack	要求的頁面：/.git/config	2019-10-16 16:00:34
51.254.37.192	attackbotsspam	Oct 16 08:21:18 ArkNodeAT sshd\[26245\]: Invalid user test from 51.254.37.192 Oct 16 08:21:18 ArkNodeAT sshd\[26245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.192 Oct 16 08:21:20 ArkNodeAT sshd\[26245\]: Failed password for invalid user test from 51.254.37.192 port 42046 ssh2	2019-10-16 15:27:54
31.41.248.6	attackbotsspam	[portscan] Port scan	2019-10-16 15:49:34
157.230.128.195	attackspam	[ssh] SSH attack	2019-10-16 15:30:15
103.39.133.110	attack	Oct 16 07:08:48 DAAP sshd[1592]: Invalid user fl from 103.39.133.110 port 48482 Oct 16 07:08:48 DAAP sshd[1592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.39.133.110 Oct 16 07:08:48 DAAP sshd[1592]: Invalid user fl from 103.39.133.110 port 48482 Oct 16 07:08:50 DAAP sshd[1592]: Failed password for invalid user fl from 103.39.133.110 port 48482 ssh2 Oct 16 07:17:04 DAAP sshd[1767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.39.133.110 user=root Oct 16 07:17:07 DAAP sshd[1767]: Failed password for root from 103.39.133.110 port 54908 ssh2 ...	2019-10-16 15:51:48
198.108.67.46	attackspambots	firewall-block, port(s): 8585/tcp	2019-10-16 15:40:24
106.13.19.75	attackspam	2019-10-16T04:30:05.726820abusebot.cloudsearch.cf sshd\[18104\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.19.75 user=root	2019-10-16 15:51:15
109.224.22.34	attackspam	postfix (unknown user, SPF fail or relay access denied)	2019-10-16 15:46:24
193.70.85.206	attackbots	Oct 16 06:45:38 SilenceServices sshd[2834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.85.206 Oct 16 06:45:40 SilenceServices sshd[2834]: Failed password for invalid user andiani from 193.70.85.206 port 48365 ssh2 Oct 16 06:49:22 SilenceServices sshd[3807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.85.206	2019-10-16 15:34:20
62.173.154.12	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-16 15:32:05
23.129.64.187	attackbots	Automatic report - XMLRPC Attack	2019-10-16 15:45:21
80.14.142.145	attackbots	Oct 16 02:27:54 keyhelp sshd[23344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.14.142.145 user=r.r Oct 16 02:27:55 keyhelp sshd[23344]: Failed password for r.r from 80.14.142.145 port 45910 ssh2 Oct 16 02:27:56 keyhelp sshd[23344]: Received disconnect from 80.14.142.145 port 45910:11: Bye Bye [preauth] Oct 16 02:27:56 keyhelp sshd[23344]: Disconnected from 80.14.142.145 port 45910 [preauth] Oct 16 02:46:32 keyhelp sshd[27223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.14.142.145 user=r.r Oct 16 02:46:35 keyhelp sshd[27223]: Failed password for r.r from 80.14.142.145 port 50858 ssh2 Oct 16 02:46:35 keyhelp sshd[27223]: Received disconnect from 80.14.142.145 port 50858:11: Bye Bye [preauth] Oct 16 02:46:35 keyhelp sshd[27223]: Disconnected from 80.14.142.145 port 50858 [preauth] Oct 16 02:52:35 keyhelp sshd[28248]: pam_unix(sshd:auth): authentication failure; logname= uid=0........ -------------------------------	2019-10-16 15:20:10

最近上报的IP列表

14.207.42.225	14.207.42.233	14.207.42.236	14.207.42.253
14.207.42.31	14.207.42.3	14.207.42.38	14.207.42.41
14.207.42.50	14.207.42.62	14.207.42.55	14.207.42.67
14.207.42.69	14.207.42.73	14.207.42.80	14.207.42.8
14.207.42.88	14.207.42.90	73.74.52.54	14.207.43.1