14.161.45.187 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	(sshd) Failed SSH login from 14.161.45.187 (VN/Vietnam/static.vnpt.vn): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 15:23:10 optimus sshd[3270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 user=root Oct 11 15:23:11 optimus sshd[3270]: Failed password for root from 14.161.45.187 port 51020 ssh2 Oct 11 15:55:09 optimus sshd[31504]: Invalid user test123 from 14.161.45.187 Oct 11 15:55:09 optimus sshd[31504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 Oct 11 15:55:10 optimus sshd[31504]: Failed password for invalid user test123 from 14.161.45.187 port 35170 ssh2	2020-10-12 04:09:04
attackbots	Oct 11 16:13:39 mx sshd[1351830]: Failed password for root from 14.161.45.187 port 47020 ssh2 Oct 11 16:14:33 mx sshd[1351838]: Invalid user uu from 14.161.45.187 port 52915 Oct 11 16:14:33 mx sshd[1351838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 Oct 11 16:14:33 mx sshd[1351838]: Invalid user uu from 14.161.45.187 port 52915 Oct 11 16:14:35 mx sshd[1351838]: Failed password for invalid user uu from 14.161.45.187 port 52915 ssh2 ...	2020-10-11 20:07:57
attackspam	$f2bV_matches	2020-10-11 12:07:15
attack	2020-10-10 16:10:30.176107-0500 localhost sshd[48225]: Failed password for root from 14.161.45.187 port 36078 ssh2	2020-10-11 05:31:23
attackbots	Invalid user tester from 14.161.45.187 port 35104	2020-09-21 02:03:57
attackbots	Invalid user tester from 14.161.45.187 port 35104	2020-09-20 18:04:22
attackbotsspam	Aug 17 07:12:39 PorscheCustomer sshd[28388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 Aug 17 07:12:41 PorscheCustomer sshd[28388]: Failed password for invalid user lisa from 14.161.45.187 port 36779 ssh2 Aug 17 07:14:24 PorscheCustomer sshd[28481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 ...	2020-08-17 13:29:25
attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-02 13:25:02
attackspam	Jul 23 16:54:26 Invalid user yxy from 14.161.45.187 port 40629	2020-07-23 23:09:34
attackspam	Jul 21 23:45:10 abendstille sshd\[7566\]: Invalid user mm from 14.161.45.187 Jul 21 23:45:10 abendstille sshd\[7566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 Jul 21 23:45:12 abendstille sshd\[7566\]: Failed password for invalid user mm from 14.161.45.187 port 41466 ssh2 Jul 21 23:49:06 abendstille sshd\[11714\]: Invalid user sda from 14.161.45.187 Jul 21 23:49:06 abendstille sshd\[11714\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 ...	2020-07-22 06:38:30
attack	2020-07-21T09:08:01.919873afi-git.jinr.ru sshd[15602]: Invalid user gitolite from 14.161.45.187 port 57538 2020-07-21T09:08:01.923118afi-git.jinr.ru sshd[15602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 2020-07-21T09:08:01.919873afi-git.jinr.ru sshd[15602]: Invalid user gitolite from 14.161.45.187 port 57538 2020-07-21T09:08:03.706524afi-git.jinr.ru sshd[15602]: Failed password for invalid user gitolite from 14.161.45.187 port 57538 ssh2 2020-07-21T09:10:56.435301afi-git.jinr.ru sshd[16384]: Invalid user guest from 14.161.45.187 port 49604 ...	2020-07-21 14:28:04
attackspam	SSH Brute-Forcing (server1)	2020-06-28 15:50:13
attackspambots	Jun 19 12:41:20 vps639187 sshd\[26885\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 user=root Jun 19 12:41:21 vps639187 sshd\[26885\]: Failed password for root from 14.161.45.187 port 60281 ssh2 Jun 19 12:44:41 vps639187 sshd\[26937\]: Invalid user ustin from 14.161.45.187 port 60197 Jun 19 12:44:41 vps639187 sshd\[26937\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 ...	2020-06-19 18:58:42
attack	145. On Jun 7 2020 experienced a Brute Force SSH login attempt -> 80 unique times by 14.161.45.187.	2020-06-08 08:27:32
attackbots	(sshd) Failed SSH login from 14.161.45.187 (VN/Vietnam/static.vnpt.vn): 5 in the last 3600 secs	2020-05-23 01:15:27
attackspambots	May 10 15:18:13 sip sshd[199212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 May 10 15:18:13 sip sshd[199212]: Invalid user restart from 14.161.45.187 port 47964 May 10 15:18:15 sip sshd[199212]: Failed password for invalid user restart from 14.161.45.187 port 47964 ssh2 ...	2020-05-11 00:49:10
attackspam	May 9 02:33:13 melroy-server sshd[31193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 May 9 02:33:15 melroy-server sshd[31193]: Failed password for invalid user www from 14.161.45.187 port 55785 ssh2 ...	2020-05-09 20:19:51
attack	$f2bV_matches	2020-04-08 08:56:39
attackbotsspam	invalid user	2020-04-07 15:47:52
attack	Apr 2 20:33:26 mout sshd[15383]: Failed password for root from 14.161.45.187 port 40555 ssh2 Apr 2 20:36:38 mout sshd[15640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 user=root Apr 2 20:36:40 mout sshd[15640]: Failed password for root from 14.161.45.187 port 39570 ssh2	2020-04-03 02:43:03
attack	Mar 27 07:32:30 ns3042688 sshd\[30230\]: Invalid user mmo from 14.161.45.187 Mar 27 07:32:30 ns3042688 sshd\[30230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 Mar 27 07:32:32 ns3042688 sshd\[30230\]: Failed password for invalid user mmo from 14.161.45.187 port 38291 ssh2 Mar 27 07:35:53 ns3042688 sshd\[32178\]: Invalid user zbi from 14.161.45.187 Mar 27 07:35:53 ns3042688 sshd\[32178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 ...	2020-03-27 14:49:49
attackbotsspam	SSH brute-force attempt	2020-03-24 16:44:25
attackbotsspam	leo_www	2020-03-18 17:58:05
attack	Mar 16 15:46:18 host sshd[20163]: Invalid user list from 14.161.45.187 port 58949 ...	2020-03-17 00:55:52
attackbots	sshd jail - ssh hack attempt	2020-03-08 21:21:06
attack	Mar 6 23:29:39 srv01 sshd[25227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 user=root Mar 6 23:29:41 srv01 sshd[25227]: Failed password for root from 14.161.45.187 port 47193 ssh2 Mar 6 23:32:08 srv01 sshd[25468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 user=root Mar 6 23:32:10 srv01 sshd[25468]: Failed password for root from 14.161.45.187 port 38584 ssh2 Mar 6 23:34:36 srv01 sshd[25606]: Invalid user amit from 14.161.45.187 port 58210 ...	2020-03-07 07:13:29
attackspambots	Feb 29 08:22:00 silence02 sshd[25976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187 Feb 29 08:22:02 silence02 sshd[25976]: Failed password for invalid user guoyifan from 14.161.45.187 port 36942 ssh2 Feb 29 08:27:31 silence02 sshd[26219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.187	2020-02-29 15:28:57

相同子网IP讨论:

IP	类型	评论内容	时间
14.161.45.253	attack	Jul 5 17:26:58 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 9 secs): user=, method=PLAIN, rip=14.161.45.253, lip=185.198.26.142, TLS, session= ...	2020-07-06 08:07:12
14.161.45.179	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-06-10 02:40:23
14.161.45.92	attack	Dovecot Invalid User Login Attempt.	2020-05-16 16:58:55
14.161.45.83	attackspambots	This IP Address sent many spam to @bit.co.id mhamdanrifai@gmail.com is administrator	2019-12-26 16:32:50
14.161.45.78	attackspambots	"Fail2Ban detected SSH brute force attempt"	2019-11-02 04:33:28
14.161.45.253	attackspambots	Oct 7 13:42:52 dev sshd\[10939\]: Invalid user admin from 14.161.45.253 port 44058 Oct 7 13:42:52 dev sshd\[10939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.45.253 Oct 7 13:42:54 dev sshd\[10939\]: Failed password for invalid user admin from 14.161.45.253 port 44058 ssh2	2019-10-07 23:54:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.161.45.187
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51612
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.161.45.187.			IN	A

;; AUTHORITY SECTION:
.			314	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022900 1800 900 604800 86400

;; Query time: 255 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 29 15:28:50 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

187.45.161.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
187.45.161.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
5.135.185.27	attackspambots	Feb 21 19:03:39 server sshd\[19020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3290539.ip-5-135-185.eu user=root Feb 21 19:03:41 server sshd\[19020\]: Failed password for root from 5.135.185.27 port 37638 ssh2 Feb 22 07:54:07 server sshd\[10822\]: Invalid user fabian from 5.135.185.27 Feb 22 07:54:07 server sshd\[10822\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3290539.ip-5-135-185.eu Feb 22 07:54:09 server sshd\[10822\]: Failed password for invalid user fabian from 5.135.185.27 port 41384 ssh2 ...	2020-02-22 13:45:33
222.186.30.218	attackbots	Feb 22 06:37:13 vps691689 sshd[11873]: Failed password for root from 222.186.30.218 port 53882 ssh2 Feb 22 06:41:13 vps691689 sshd[11891]: Failed password for root from 222.186.30.218 port 36294 ssh2 ...	2020-02-22 13:41:43
219.75.64.69	attackbots	Forbidden directory scan :: 2020/02/22 04:53:13 [error] 983#983: *1524125 access forbidden by rule, client: 219.75.64.69, server: [censored_1], request: "HEAD /https://www.[censored_1]/ HTTP/1.1", host: "www.[censored_1]"	2020-02-22 14:13:45
222.186.175.151	attackbots	Feb 22 10:54:29 gw1 sshd[17798]: Failed password for root from 222.186.175.151 port 50142 ssh2 Feb 22 10:54:42 gw1 sshd[17798]: error: maximum authentication attempts exceeded for root from 222.186.175.151 port 50142 ssh2 [preauth] ...	2020-02-22 13:59:31
104.237.241.20	attackspam	Port probing on unauthorized port 445	2020-02-22 14:00:59
222.186.173.215	attackbots	2020-02-22T07:01:37.763216scmdmz1 sshd[32162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root 2020-02-22T07:01:39.549302scmdmz1 sshd[32162]: Failed password for root from 222.186.173.215 port 41544 ssh2 2020-02-22T07:01:42.988335scmdmz1 sshd[32162]: Failed password for root from 222.186.173.215 port 41544 ssh2 2020-02-22T07:01:37.763216scmdmz1 sshd[32162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root 2020-02-22T07:01:39.549302scmdmz1 sshd[32162]: Failed password for root from 222.186.173.215 port 41544 ssh2 2020-02-22T07:01:42.988335scmdmz1 sshd[32162]: Failed password for root from 222.186.173.215 port 41544 ssh2 2020-02-22T07:01:37.763216scmdmz1 sshd[32162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root 2020-02-22T07:01:39.549302scmdmz1 sshd[32162]: Failed password for root from 222.186.173.215 port 4154	2020-02-22 14:06:12
83.61.10.169	attackspam	frenzy	2020-02-22 13:56:10
152.67.67.89	attackbotsspam	Feb 22 06:45:25 localhost sshd\[24530\]: Invalid user liucanbin from 152.67.67.89 port 56026 Feb 22 06:45:25 localhost sshd\[24530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.67.67.89 Feb 22 06:45:27 localhost sshd\[24530\]: Failed password for invalid user liucanbin from 152.67.67.89 port 56026 ssh2	2020-02-22 14:03:27
24.139.145.250	attackbotsspam	Feb 22 07:54:31 server sshd\[10851\]: Invalid user smart from 24.139.145.250 Feb 22 07:54:31 server sshd\[10851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.139.145.250 Feb 22 07:54:33 server sshd\[10851\]: Failed password for invalid user smart from 24.139.145.250 port 56122 ssh2 Feb 22 08:47:56 server sshd\[20140\]: Invalid user gitlab-prometheus from 24.139.145.250 Feb 22 08:47:56 server sshd\[20140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.139.145.250 ...	2020-02-22 13:50:47
91.173.121.137	attackbotsspam	SSH auth scanning - multiple failed logins	2020-02-22 14:04:08
98.172.72.226	attackspam	RDP Brute-Force (Grieskirchen RZ2)	2020-02-22 14:14:24
112.215.113.10	attackspambots	Feb 22 07:06:52 lnxmysql61 sshd[17218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.113.10	2020-02-22 14:08:06
222.186.175.163	attack	Feb 22 06:40:40 mail sshd\[25831\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Feb 22 06:40:42 mail sshd\[25831\]: Failed password for root from 222.186.175.163 port 2886 ssh2 Feb 22 06:40:46 mail sshd\[25831\]: Failed password for root from 222.186.175.163 port 2886 ssh2 ...	2020-02-22 13:58:37
118.144.11.132	attackspam	Feb 22 06:35:02 lnxmysql61 sshd[12372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.144.11.132	2020-02-22 13:46:53
104.244.79.250	attackspambots	SSH-bruteforce attempts	2020-02-22 13:36:37

最近上报的IP列表

113.182.227.20	34.232.168.126	176.52.97.73	113.182.180.87
113.182.151.185	46.77.76.156	113.181.171.123	213.238.250.246
185.191.254.76	39.98.212.165	190.72.173.111	220.132.57.92
113.178.232.65	113.178.106.203	52.163.220.158	44.88.95.54
113.177.80.220	66.118.172.187	112.133.54.19	232.189.23.6