14.207.28.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.207.28.171	attack	SSH Invalid Login	2020-09-24 21:09:53
14.207.28.171	attack	SSH Invalid Login	2020-09-24 13:05:04
14.207.28.171	attackspam	(sshd) Failed SSH login from 14.207.28.171 (TH/Thailand/Rayong/Pluak Daeng/mx-ll-14.207.28-171.dynamic.3bb.co.th): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 23 13:04:58 atlas sshd[17419]: Invalid user admin from 14.207.28.171 port 60049 Sep 23 13:05:00 atlas sshd[17419]: Failed password for invalid user admin from 14.207.28.171 port 60049 ssh2 Sep 23 13:05:03 atlas sshd[17452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.207.28.171 user=root Sep 23 13:05:05 atlas sshd[17452]: Failed password for root from 14.207.28.171 port 60295 ssh2 Sep 23 13:05:08 atlas sshd[17595]: Invalid user admin from 14.207.28.171 port 60406	2020-09-24 04:33:41
14.207.28.223	attackbots	Chat Spam	2019-10-05 06:20:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.28.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13952
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.207.28.66.			IN	A

;; AUTHORITY SECTION:
.			160	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:56:39 CST 2022
;; MSG SIZE  rcvd: 105

Host info

66.28.207.14.in-addr.arpa domain name pointer mx-ll-14.207.28-66.dynamic.3bb.in.th.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.28.207.14.in-addr.arpa	name = mx-ll-14.207.28-66.dynamic.3bb.in.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
162.243.135.202	attackbots	Port Scan detected from 162.243.135.202 (US/United States/zg0213a-468.stretchoid.com). 4 hits in the last 160 seconds	2020-02-21 16:03:16
52.34.83.11	attack	02/21/2020-08:16:34.083118 52.34.83.11 Protocol: 6 SURICATA TLS invalid record/traffic	2020-02-21 16:19:59
128.199.220.207	attackspam	Feb 21 08:54:59 sshd\[20528\]: Invalid user zhoumin from 128.199.220.207Feb 21 08:55:01 sshd\[20528\]: Failed password for invalid user zhoumin from 128.199.220.207 port 59638 ssh2 ...	2020-02-21 16:06:40
222.186.175.148	attackbotsspam	Feb 20 22:36:25 web1 sshd\[12142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Feb 20 22:36:27 web1 sshd\[12142\]: Failed password for root from 222.186.175.148 port 4732 ssh2 Feb 20 22:36:30 web1 sshd\[12142\]: Failed password for root from 222.186.175.148 port 4732 ssh2 Feb 20 22:36:34 web1 sshd\[12142\]: Failed password for root from 222.186.175.148 port 4732 ssh2 Feb 20 22:36:37 web1 sshd\[12142\]: Failed password for root from 222.186.175.148 port 4732 ssh2	2020-02-21 16:37:05
36.79.235.22	attackspambots	1582260913 - 02/21/2020 05:55:13 Host: 36.79.235.22/36.79.235.22 Port: 445 TCP Blocked	2020-02-21 15:56:01
103.138.61.134	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-21 15:57:09
77.89.214.134	attackspambots	Automatic report - Port Scan Attack	2020-02-21 16:23:39
139.170.150.253	attackbotsspam	Invalid user administrator from 139.170.150.253 port 48848	2020-02-21 16:19:05
5.196.74.190	attackbotsspam	Feb 21 13:08:31 gw1 sshd[25977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.74.190 Feb 21 13:08:33 gw1 sshd[25977]: Failed password for invalid user home123 from 5.196.74.190 port 58955 ssh2 ...	2020-02-21 16:29:44
116.218.131.209	attack	$f2bV_matches	2020-02-21 16:32:24
125.124.30.186	attackbots	Feb 21 08:54:25 silence02 sshd[25001]: Failed password for news from 125.124.30.186 port 37072 ssh2 Feb 21 08:58:04 silence02 sshd[25214]: Failed password for mysql from 125.124.30.186 port 56890 ssh2	2020-02-21 16:26:35
117.114.161.11	attackspam	Feb 21 05:54:29 debian-2gb-nbg1-2 kernel: \[4520078.666112\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=117.114.161.11 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=235 ID=43601 PROTO=TCP SPT=57554 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-21 16:23:13
83.23.152.186	attackspam	Automatic report - Port Scan Attack	2020-02-21 16:17:07
164.77.117.10	attackspam	Feb 21 01:08:08 plusreed sshd[15147]: Invalid user tom from 164.77.117.10 ...	2020-02-21 16:11:48
138.68.93.14	attackbots	Feb 21 03:01:37 ny01 sshd[2872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.93.14 Feb 21 03:01:39 ny01 sshd[2872]: Failed password for invalid user lihuanhuan from 138.68.93.14 port 52712 ssh2 Feb 21 03:03:21 ny01 sshd[3591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.93.14	2020-02-21 16:26:55

Recently Reported IPs

14.207.28.42	14.207.28.72	14.207.28.8	14.207.28.79
14.207.28.80	14.207.28.74	14.207.28.85	14.207.28.82
14.207.27.10	71.211.154.105	14.207.30.22	14.207.30.222
14.207.30.233	14.207.30.235	14.207.30.242	14.207.30.224
14.207.30.248	14.207.30.25	14.207.30.237	14.207.30.228