14.207.17.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.207.17.84	attack	SSH/22 MH Probe, BF, Hack -	2020-07-13 05:21:41
14.207.17.172	attack	1591258217 - 06/04/2020 10:10:17 Host: 14.207.17.172/14.207.17.172 Port: 445 TCP Blocked	2020-06-04 20:02:41
14.207.175.80	attackspambots	Port 1433 Scan	2020-03-04 04:33:04
14.207.172.76	attack	Jan 1 09:57:19 mercury auth[30092]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=josh@learnargentinianspanish.com rhost=14.207.172.76 ...	2020-03-04 02:01:10
14.207.172.240	attackspambots	"SMTP brute force auth login attempt."	2020-01-17 02:07:14
14.207.173.89	attackbotsspam	unauthorized connection attempt	2020-01-09 15:43:34
14.207.171.199	attack	1577201672 - 12/24/2019 16:34:32 Host: 14.207.171.199/14.207.171.199 Port: 445 TCP Blocked	2019-12-25 01:26:03
14.207.175.206	attackbotsspam	20.11.2019 15:39:38 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2019-11-21 04:09:22
14.207.171.7	attackbotsspam	Unauthorized connection attempt from IP address 14.207.171.7 on Port 445(SMB)	2019-09-05 21:38:54
14.207.172.81	attack	5555/tcp [2019-08-02]1pkt	2019-08-03 09:05:56
14.207.175.92	attackspambots	Sun, 21 Jul 2019 18:28:10 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 05:49:50
14.207.172.33	attackspam	Unauthorized connection attempt from IP address 14.207.172.33 on Port 445(SMB)	2019-06-29 07:05:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.17.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10223
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.17.138.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 13:25:08 CST 2022
;; MSG SIZE  rcvd: 106

Host info

138.17.207.14.in-addr.arpa domain name pointer mx-ll-14.207.17-138.dynamic.3bb.in.th.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.17.207.14.in-addr.arpa	name = mx-ll-14.207.17-138.dynamic.3bb.in.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.83.44.111	attack	Jun 3 14:40:48 eventyay sshd[17912]: Failed password for root from 51.83.44.111 port 60394 ssh2 Jun 3 14:44:09 eventyay sshd[18019]: Failed password for root from 51.83.44.111 port 36164 ssh2 ...	2020-06-03 23:23:45
218.149.128.186	attackspam	Jun 3 13:45:03 localhost sshd[83712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.149.128.186 user=root Jun 3 13:45:06 localhost sshd[83712]: Failed password for root from 218.149.128.186 port 35580 ssh2 Jun 3 13:49:05 localhost sshd[84083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.149.128.186 user=root Jun 3 13:49:07 localhost sshd[84083]: Failed password for root from 218.149.128.186 port 36464 ssh2 Jun 3 13:53:06 localhost sshd[84456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.149.128.186 user=root Jun 3 13:53:08 localhost sshd[84456]: Failed password for root from 218.149.128.186 port 37349 ssh2 ...	2020-06-03 23:32:54
179.234.100.33	attack	Fail2Ban Ban Triggered	2020-06-03 23:24:35
103.101.82.158	attackspam	Lines containing failures of 103.101.82.158 Jun 3 06:51:05 shared05 sshd[11302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.101.82.158 user=r.r Jun 3 06:51:07 shared05 sshd[11302]: Failed password for r.r from 103.101.82.158 port 46416 ssh2 Jun 3 06:51:07 shared05 sshd[11302]: Received disconnect from 103.101.82.158 port 46416:11: Bye Bye [preauth] Jun 3 06:51:07 shared05 sshd[11302]: Disconnected from authenticating user r.r 103.101.82.158 port 46416 [preauth] Jun 3 06:53:23 shared05 sshd[12641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.101.82.158 user=r.r Jun 3 06:53:25 shared05 sshd[12641]: Failed password for r.r from 103.101.82.158 port 50894 ssh2 Jun 3 06:53:26 shared05 sshd[12641]: Received disconnect from 103.101.82.158 port 50894:11: Bye Bye [preauth] Jun 3 06:53:26 shared05 sshd[12641]: Disconnected from authenticating user r.r 103.101.82.158 port 50894........ ------------------------------	2020-06-03 23:48:49
140.143.233.29	attackspam	Jun 3 13:50:11 cloud sshd[628]: Failed password for root from 140.143.233.29 port 59068 ssh2	2020-06-03 23:25:03
195.54.160.212	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 6639 proto: TCP cat: Misc Attack	2020-06-03 23:21:23
54.39.138.249	attackbotsspam	2020-06-03T17:07:08.779753mail.broermann.family sshd[28383]: Failed password for root from 54.39.138.249 port 37032 ssh2 2020-06-03T17:12:11.430333mail.broermann.family sshd[28855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip249.ip-54-39-138.net user=root 2020-06-03T17:12:13.255201mail.broermann.family sshd[28855]: Failed password for root from 54.39.138.249 port 41382 ssh2 2020-06-03T17:17:09.652242mail.broermann.family sshd[29309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip249.ip-54-39-138.net user=root 2020-06-03T17:17:11.960458mail.broermann.family sshd[29309]: Failed password for root from 54.39.138.249 port 45730 ssh2 ...	2020-06-03 23:33:16
139.198.18.184	attack	SSH brutforce	2020-06-03 23:26:00
161.35.75.40	attackspambots	detected by Fail2Ban	2020-06-03 23:10:52
195.54.160.228	attackbotsspam	06/03/2020-11:28:43.222995 195.54.160.228 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-03 23:37:19
109.75.172.132	attackspambots	Automatic report - XMLRPC Attack	2020-06-03 23:39:17
179.124.180.69	attackspambots	Jun 3 14:53:38 debian kernel: [87782.893013] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=179.124.180.69 DST=89.252.131.35 LEN=44 TOS=0x00 PREC=0x00 TTL=48 ID=46985 PROTO=TCP SPT=41930 DPT=80 WINDOW=34794 RES=0x00 SYN URGP=0	2020-06-03 23:16:40
5.67.162.211	attackspambots	Jun 3 14:23:49 [host] sshd[30398]: pam_unix(sshd: Jun 3 14:23:51 [host] sshd[30398]: Failed passwor Jun 3 14:27:13 [host] sshd[30521]: pam_unix(sshd:	2020-06-03 23:36:14
118.99.83.18	attackspambots	Icarus honeypot on github	2020-06-03 23:07:15
185.243.11.19	attackbots	Automatic report - XMLRPC Attack	2020-06-03 23:37:47

Recently Reported IPs

14.207.17.140	14.207.17.154	14.207.17.150	14.207.17.134
14.207.17.133	14.207.17.163	14.207.17.164	14.207.17.125
14.207.17.156	14.207.17.110	14.207.17.167	14.207.17.175
14.207.17.183	14.207.17.184	14.207.17.170	14.207.17.219
14.207.17.208	14.207.17.22	14.207.17.179	14.207.17.198