14.207.98.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.207.98.98	attackspambots	8728/tcp 22/tcp 8291/tcp... [2019-10-25]7pkt,3pt.(tcp)	2019-10-25 16:49:35
14.207.98.19	attackspambots	Jul 12 21:53:46 xxxxxxx sshd[2109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mx-ll-14.207.98-19.dynamic.3bb.co.th Jul 12 21:53:48 xxxxxxx sshd[2109]: Failed password for invalid user admin from 14.207.98.19 port 58144 ssh2 Jul 12 21:53:49 xxxxxxx sshd[2109]: Connection closed by 14.207.98.19 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.207.98.19	2019-07-13 06:20:58

类型

评论内容

时间

14.207.98.98

attackspambots

8728/tcp 22/tcp 8291/tcp...
[2019-10-25]7pkt,3pt.(tcp)

2019-10-25 16:49:35

14.207.98.19

attackspambots

Jul 12 21:53:46 xxxxxxx sshd[2109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mx-ll-14.207.98-19.dynamic.3bb.co.th
Jul 12 21:53:48 xxxxxxx sshd[2109]: Failed password for invalid user admin from 14.207.98.19 port 58144 ssh2
Jul 12 21:53:49 xxxxxxx sshd[2109]: Connection closed by 14.207.98.19 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.207.98.19

2019-07-13 06:20:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.98.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24914
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.98.130.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 13:46:26 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

130.98.207.14.in-addr.arpa domain name pointer mx-ll-14.207.98-130.dynamic.3bb.co.th.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.98.207.14.in-addr.arpa	name = mx-ll-14.207.98-130.dynamic.3bb.co.th.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
112.26.98.122	attackbotsspam	TCP (SYN) 112.26.98.122:58948 -> port 3240, len 44	2020-09-20 03:39:42
208.169.93.250	attackspambots	TCP (SYN) 208.169.93.250:45776 -> port 445, len 44	2020-09-20 03:42:43
116.27.175.103	attackspambots	[portscan] Port scan	2020-09-20 04:02:30
212.227.203.132	attackspam	212.227.203.132 - - [19/Sep/2020:18:55:36 +0100] "POST /wp-login.php HTTP/1.1" 200 2596 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.227.203.132 - - [19/Sep/2020:18:55:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2580 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.227.203.132 - - [19/Sep/2020:18:55:37 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-20 04:08:25
198.23.148.137	attack	Sep 19 21:07:39 raspberrypi sshd[3746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.23.148.137 Sep 19 21:07:41 raspberrypi sshd[3746]: Failed password for invalid user mysql from 198.23.148.137 port 54592 ssh2 ...	2020-09-20 04:08:37
189.240.225.205	attackspam	2020-09-19T21:47:41.160091ks3355764 sshd[1646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.225.205 user=root 2020-09-19T21:47:43.747390ks3355764 sshd[1646]: Failed password for root from 189.240.225.205 port 41444 ssh2 ...	2020-09-20 04:03:00
138.197.135.102	attackspambots	138.197.135.102 - - [19/Sep/2020:07:11:21 +0100] "POST /wp-login.php HTTP/1.1" 200 2451 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.135.102 - - [19/Sep/2020:07:11:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2431 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.135.102 - - [19/Sep/2020:07:11:24 +0100] "POST /wp-login.php HTTP/1.1" 200 2431 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-20 03:49:48
185.233.116.120	attack	SSH 2020-09-19 23:05:16 185.233.116.120 104.152.187.140 > POST talk.ph.co.id /wp-login.php HTTP/1.1 - - 2020-09-19 23:05:15 185.233.116.120 104.152.187.140 > GET talk.ph.co.id /wp-login.php HTTP/1.1 - - 2020-09-19 23:05:16 185.233.116.120 104.152.187.140 > POST talk.ph.co.id /wp-login.php HTTP/1.1 - -	2020-09-20 03:49:17
159.65.245.182	attackbots	Time: Sat Sep 19 16:29:05 2020 +0000 IP: 159.65.245.182 (US/United States/route.datahinge.com) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 19 16:14:38 29-1 sshd[25435]: Invalid user alexander from 159.65.245.182 port 38030 Sep 19 16:14:40 29-1 sshd[25435]: Failed password for invalid user alexander from 159.65.245.182 port 38030 ssh2 Sep 19 16:23:52 29-1 sshd[26705]: Invalid user vncuser from 159.65.245.182 port 42062 Sep 19 16:23:54 29-1 sshd[26705]: Failed password for invalid user vncuser from 159.65.245.182 port 42062 ssh2 Sep 19 16:29:02 29-1 sshd[27682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.245.182 user=root	2020-09-20 03:42:32
183.165.60.186	attackspam	SSH Brute-Force Attack	2020-09-20 03:41:19
222.186.173.238	attack	2020-09-19T23:09:22.456072afi-git.jinr.ru sshd[5607]: Failed password for root from 222.186.173.238 port 15214 ssh2 2020-09-19T23:09:25.386503afi-git.jinr.ru sshd[5607]: Failed password for root from 222.186.173.238 port 15214 ssh2 2020-09-19T23:09:28.061442afi-git.jinr.ru sshd[5607]: Failed password for root from 222.186.173.238 port 15214 ssh2 2020-09-19T23:09:28.061587afi-git.jinr.ru sshd[5607]: error: maximum authentication attempts exceeded for root from 222.186.173.238 port 15214 ssh2 [preauth] 2020-09-19T23:09:28.061601afi-git.jinr.ru sshd[5607]: Disconnecting: Too many authentication failures [preauth] ...	2020-09-20 04:09:38
171.25.193.78	attack	Sep 19 19:50:25 rotator sshd\[8350\]: Failed password for root from 171.25.193.78 port 10616 ssh2Sep 19 19:50:28 rotator sshd\[8350\]: Failed password for root from 171.25.193.78 port 10616 ssh2Sep 19 19:50:34 rotator sshd\[8350\]: Failed password for root from 171.25.193.78 port 10616 ssh2Sep 19 19:50:37 rotator sshd\[8350\]: Failed password for root from 171.25.193.78 port 10616 ssh2Sep 19 19:50:40 rotator sshd\[8350\]: Failed password for root from 171.25.193.78 port 10616 ssh2Sep 19 19:50:43 rotator sshd\[8350\]: Failed password for root from 171.25.193.78 port 10616 ssh2 ...	2020-09-20 04:10:23
157.245.74.244	attackspambots	157.245.74.244 - - \[19/Sep/2020:13:40:31 +0200\] "POST /wp-login.php HTTP/1.0" 200 8625 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.74.244 - - \[19/Sep/2020:13:40:32 +0200\] "POST /wp-login.php HTTP/1.0" 200 8409 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.74.244 - - \[19/Sep/2020:13:40:32 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-20 03:35:05
51.159.95.5	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-20 03:38:36
104.140.188.22	attackbotsspam	UDP 104.140.188.22:52393 -> port 161, len 71	2020-09-20 03:34:41

最近上报的IP列表

14.207.97.5	14.207.98.13	14.207.98.128	14.207.98.137
14.207.98.173	14.207.98.182	14.207.98.189	14.207.98.192
14.207.98.200	14.207.98.197	14.207.98.202	14.207.98.185
14.207.98.204	14.207.98.210	14.207.98.215	14.207.98.226
14.207.99.212	14.207.99.193	14.207.99.210	14.207.99.206