14.207.102.148

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.207.102.4	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-04-09 12:03:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.102.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38905
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.102.148.			IN	A

;; AUTHORITY SECTION:
.			590	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:49:29 CST 2022
;; MSG SIZE  rcvd: 107

Host info

148.102.207.14.in-addr.arpa domain name pointer mx-ll-14.207.102-148.dynamic.3bb.co.th.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.102.207.14.in-addr.arpa	name = mx-ll-14.207.102-148.dynamic.3bb.co.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.84.137.129	attack	Caught in portsentry honeypot	2019-08-27 13:26:05
77.204.76.91	attack	Brute force attempt	2019-08-27 13:24:40
117.69.46.172	attackspam	Brute force SMTP login attempts.	2019-08-27 13:24:24
103.68.82.118	attackspam	Sending SPAM email	2019-08-27 13:42:18
159.65.8.104	attackspambots	Aug 27 04:35:43 marvibiene sshd[23697]: Invalid user QNUDECPU from 159.65.8.104 port 37374 Aug 27 04:35:43 marvibiene sshd[23697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.8.104 Aug 27 04:35:43 marvibiene sshd[23697]: Invalid user QNUDECPU from 159.65.8.104 port 37374 Aug 27 04:35:46 marvibiene sshd[23697]: Failed password for invalid user QNUDECPU from 159.65.8.104 port 37374 ssh2 ...	2019-08-27 13:50:18
165.227.198.61	attack	Aug 26 19:07:19 wbs sshd\[26980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.198.61 user=root Aug 26 19:07:21 wbs sshd\[26980\]: Failed password for root from 165.227.198.61 port 64055 ssh2 Aug 26 19:11:18 wbs sshd\[27500\]: Invalid user applmgr from 165.227.198.61 Aug 26 19:11:18 wbs sshd\[27500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.198.61 Aug 26 19:11:20 wbs sshd\[27500\]: Failed password for invalid user applmgr from 165.227.198.61 port 43004 ssh2	2019-08-27 13:21:27
45.119.81.237	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-08-27 13:07:05
51.38.90.195	attackbots	Aug 27 02:42:40 meumeu sshd[14726]: Failed password for invalid user ali from 51.38.90.195 port 57644 ssh2 Aug 27 02:46:29 meumeu sshd[15169]: Failed password for invalid user carlo from 51.38.90.195 port 45414 ssh2 ...	2019-08-27 13:14:19
176.122.56.100	attackbots	[portscan] Port scan	2019-08-27 13:45:58
149.202.178.116	attackspam	2019-08-27T06:10:02.341992 sshd[21529]: Invalid user jocelyn from 149.202.178.116 port 42958 2019-08-27T06:10:02.354256 sshd[21529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.178.116 2019-08-27T06:10:02.341992 sshd[21529]: Invalid user jocelyn from 149.202.178.116 port 42958 2019-08-27T06:10:04.847526 sshd[21529]: Failed password for invalid user jocelyn from 149.202.178.116 port 42958 ssh2 2019-08-27T06:17:52.373022 sshd[21635]: Invalid user jocelyn from 149.202.178.116 port 58632 ...	2019-08-27 13:23:53
109.224.37.85	attackbots	2019-08-26 18:35:45 H=(losipallets.it) [109.224.37.85]:55183 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-08-26 18:35:46 H=(losipallets.it) [109.224.37.85]:55183 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-08-26 18:35:46 H=(losipallets.it) [109.224.37.85]:55183 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2019-08-27 13:19:24
68.183.1.175	attackspambots	Aug 27 07:12:47 * sshd[25660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.1.175 Aug 27 07:12:49 * sshd[25660]: Failed password for invalid user carrie from 68.183.1.175 port 41258 ssh2	2019-08-27 13:47:40
37.59.9.195	attack	www.geburtshaus-fulda.de 37.59.9.195 \[27/Aug/2019:03:47:03 +0200\] "POST /wp-login.php HTTP/1.1" 200 5785 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.geburtshaus-fulda.de 37.59.9.195 \[27/Aug/2019:03:47:03 +0200\] "POST /wp-login.php HTTP/1.1" 200 5789 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-08-27 13:11:57
84.22.138.150	attack	Sending SPAM email	2019-08-27 13:40:51
2.235.159.160	attack	Automatic report - Port Scan Attack	2019-08-27 13:28:33

Recently Reported IPs

14.207.102.140	14.207.102.150	14.207.102.159	14.207.102.145
95.13.14.21	14.207.114.172	14.207.114.182	14.207.114.216
14.207.12.164	14.207.12.167	14.207.12.168	14.207.114.62
14.207.114.196	14.207.12.189	14.207.12.178	14.207.114.250
14.207.114.67	14.207.12.199	14.207.12.201	14.207.12.206