14.204.145.108

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Unicom Yunnan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	- Port=3550	2020-10-08 02:57:02
attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 6 - port: 3550 proto: tcp cat: Misc Attackbytes: 60	2020-10-07 19:11:40
attackspam	Aug 28 11:10:13 vpn01 sshd[17460]: Failed password for root from 14.204.145.108 port 39002 ssh2 ...	2020-08-28 18:12:06
attack	Port scan denied	2020-08-27 23:29:54
attack	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-07 07:13:02
attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 8 - port: 4205 proto: tcp cat: Misc Attackbytes: 60	2020-08-05 19:21:50
attackspambots	Aug 2 04:56:55 scw-6657dc sshd[12920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 user=root Aug 2 04:56:55 scw-6657dc sshd[12920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 user=root Aug 2 04:56:57 scw-6657dc sshd[12920]: Failed password for root from 14.204.145.108 port 55988 ssh2 ...	2020-08-02 13:54:56
attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-07-29 02:35:16
attackspam	Jul 27 16:27:47 v22019038103785759 sshd\[27316\]: Invalid user lianwei from 14.204.145.108 port 33220 Jul 27 16:27:47 v22019038103785759 sshd\[27316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 Jul 27 16:27:49 v22019038103785759 sshd\[27316\]: Failed password for invalid user lianwei from 14.204.145.108 port 33220 ssh2 Jul 27 16:31:19 v22019038103785759 sshd\[27523\]: Invalid user wangchao from 14.204.145.108 port 40502 Jul 27 16:31:19 v22019038103785759 sshd\[27523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 ...	2020-07-28 00:13:05
attack	Jul 27 11:39:18 sxvn sshd[234420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108	2020-07-27 17:40:34
attack	2020-07-22T23:29:32.403647shield sshd\[13743\]: Invalid user dbuser from 14.204.145.108 port 50808 2020-07-22T23:29:32.412035shield sshd\[13743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 2020-07-22T23:29:34.002005shield sshd\[13743\]: Failed password for invalid user dbuser from 14.204.145.108 port 50808 ssh2 2020-07-22T23:35:06.531809shield sshd\[14639\]: Invalid user webadmin from 14.204.145.108 port 59546 2020-07-22T23:35:06.540539shield sshd\[14639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108	2020-07-23 07:36:25
attackbotsspam	prod8 ...	2020-07-19 00:13:25
attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-07-18 01:23:23
attackbotsspam	TCP (SYN) 14.204.145.108:42274 -> port 26962, len 44	2020-07-06 23:42:01
attack	unauthorized connection attempt	2020-06-30 17:55:56
attackbotsspam	Jun 24 16:06:43 propaganda sshd[20517]: Connection from 14.204.145.108 port 42426 on 10.0.0.160 port 22 rdomain "" Jun 24 16:06:44 propaganda sshd[20517]: Connection closed by 14.204.145.108 port 42426 [preauth]	2020-06-25 08:24:16
attack	Jun 20 13:49:00 Host-KEWR-E sshd[4776]: Invalid user oracle from 14.204.145.108 port 45428 ...	2020-06-21 04:01:11
attackbots	Jun 19 05:11:10 ws26vmsma01 sshd[60906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 Jun 19 05:11:12 ws26vmsma01 sshd[60906]: Failed password for invalid user fvm from 14.204.145.108 port 42894 ssh2 ...	2020-06-19 15:13:15
attackspam	Jun 15 00:24:58 hosting sshd[23019]: Invalid user pdf from 14.204.145.108 port 57688 ...	2020-06-15 08:28:27
attackspam	2020-06-13T02:21:19.1653361495-001 sshd[6463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 2020-06-13T02:21:19.1622641495-001 sshd[6463]: Invalid user qiuchen from 14.204.145.108 port 43434 2020-06-13T02:21:20.9896321495-001 sshd[6463]: Failed password for invalid user qiuchen from 14.204.145.108 port 43434 ssh2 2020-06-13T02:24:32.1266381495-001 sshd[6541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 user=root 2020-06-13T02:24:34.4476531495-001 sshd[6541]: Failed password for root from 14.204.145.108 port 52060 ssh2 2020-06-13T02:27:37.4123041495-001 sshd[6700]: Invalid user ell from 14.204.145.108 port 60684 ...	2020-06-13 16:19:49
attack	Invalid user QueryEntry from 14.204.145.108 port 51626	2020-05-29 01:54:24
attackspam	May 21 06:30:22 eventyay sshd[13284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 May 21 06:30:24 eventyay sshd[13284]: Failed password for invalid user vhb from 14.204.145.108 port 40356 ssh2 May 21 06:34:33 eventyay sshd[13443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.108 ...	2020-05-21 12:41:09
attackspambots	2020-05-14T08:11:06.064249linuxbox-skyline sshd[166457]: Invalid user user from 14.204.145.108 port 52236 ...	2020-05-15 01:21:39
attackbotsspam	Invalid user admin from 14.204.145.108 port 37514	2020-05-14 03:54:45
attack	Apr 27 09:50:28 firewall sshd[25575]: Invalid user qhj from 14.204.145.108 Apr 27 09:50:30 firewall sshd[25575]: Failed password for invalid user qhj from 14.204.145.108 port 34074 ssh2 Apr 27 09:54:51 firewall sshd[25668]: Invalid user webuser from 14.204.145.108 ...	2020-04-28 04:00:11
attackspam	DATE:2020-04-10 07:18:38, IP:14.204.145.108, PORT:ssh SSH brute force auth (docker-dc)	2020-04-10 13:36:13

相同子网IP讨论:

IP	类型	评论内容	时间
14.204.145.124	attackbotsspam	Apr 6 10:06:45 vps sshd[26157]: Failed password for root from 14.204.145.124 port 38380 ssh2 Apr 6 10:21:27 vps sshd[26876]: Failed password for root from 14.204.145.124 port 51380 ssh2 ...	2020-04-06 17:52:34
14.204.145.125	attackbots	$f2bV_matches	2020-04-06 06:55:53
14.204.145.125	attackbotsspam	2020-04-01 UTC: (2x) - nproc,root	2020-04-02 19:16:33
14.204.145.125	attack	Mar 28 05:59:39 host01 sshd[19925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.125 Mar 28 05:59:41 host01 sshd[19925]: Failed password for invalid user glt from 14.204.145.125 port 56138 ssh2 Mar 28 06:03:34 host01 sshd[20600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.125 ...	2020-03-28 16:23:30
14.204.145.124	attack	Unauthorized SSH login attempts	2020-03-27 13:17:29
14.204.145.124	attackbotsspam	Mar 13 00:57:15 ws19vmsma01 sshd[153929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.124 Mar 13 00:57:17 ws19vmsma01 sshd[153929]: Failed password for invalid user user02 from 14.204.145.124 port 54620 ssh2 ...	2020-03-13 12:55:59
14.204.145.125	attackspam	Invalid user ncs from 14.204.145.125 port 54200	2020-03-12 17:13:13
14.204.145.124	attack	Mar 11 19:13:58 combo sshd[13054]: Failed password for root from 14.204.145.124 port 43528 ssh2 Mar 11 19:18:46 combo sshd[13434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.124 user=root Mar 11 19:18:48 combo sshd[13434]: Failed password for root from 14.204.145.124 port 45350 ssh2 ...	2020-03-12 04:05:29
14.204.145.125	attackspambots	$f2bV_matches	2020-03-05 06:09:39

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.204.145.108
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6006
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.204.145.108.			IN	A

;; AUTHORITY SECTION:
.			580	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041000 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 10 13:36:09 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 108.145.204.14.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 108.145.204.14.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
142.93.56.57	attackbots	(sshd) Failed SSH login from 142.93.56.57 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 30 09:49:45 server2 sshd[25809]: Invalid user admin from 142.93.56.57 Sep 30 09:49:45 server2 sshd[25809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.56.57 Sep 30 09:49:47 server2 sshd[25809]: Failed password for invalid user admin from 142.93.56.57 port 37282 ssh2 Sep 30 09:56:44 server2 sshd[32255]: Invalid user tom from 142.93.56.57 Sep 30 09:56:44 server2 sshd[32255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.56.57	2020-10-01 05:09:32
27.76.123.212	attackbotsspam	Unauthorized IMAP connection attempt	2020-10-01 05:16:00
49.231.238.162	attackspam	Sep 30 20:28:13 ns382633 sshd\[32060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.238.162 user=root Sep 30 20:28:15 ns382633 sshd\[32060\]: Failed password for root from 49.231.238.162 port 52978 ssh2 Sep 30 20:34:09 ns382633 sshd\[956\]: Invalid user root1 from 49.231.238.162 port 60532 Sep 30 20:34:09 ns382633 sshd\[956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.238.162 Sep 30 20:34:11 ns382633 sshd\[956\]: Failed password for invalid user root1 from 49.231.238.162 port 60532 ssh2	2020-10-01 05:26:09
183.237.191.186	attackbotsspam	2020-10-01T02:54:34.818671hostname sshd[21101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.237.191.186 2020-10-01T02:54:34.797369hostname sshd[21101]: Invalid user charles from 183.237.191.186 port 54436 2020-10-01T02:54:37.137813hostname sshd[21101]: Failed password for invalid user charles from 183.237.191.186 port 54436 ssh2 ...	2020-10-01 05:01:22
206.189.2.54	attack	206.189.2.54 - - [30/Sep/2020:21:13:16 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.2.54 - - [30/Sep/2020:21:13:17 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.2.54 - - [30/Sep/2020:21:13:17 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-01 04:59:39
114.230.120.72	attack	Brute forcing email accounts	2020-10-01 05:28:11
203.172.76.4	attack	fail2ban/Sep 30 19:20:15 h1962932 sshd[21820]: Invalid user newuser from 203.172.76.4 port 36528 Sep 30 19:20:15 h1962932 sshd[21820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.76.4 Sep 30 19:20:15 h1962932 sshd[21820]: Invalid user newuser from 203.172.76.4 port 36528 Sep 30 19:20:17 h1962932 sshd[21820]: Failed password for invalid user newuser from 203.172.76.4 port 36528 ssh2 Sep 30 19:28:07 h1962932 sshd[22454]: Invalid user haoyu from 203.172.76.4 port 51038	2020-10-01 05:21:39
66.240.192.138	attackbots	port	2020-10-01 04:54:50
192.35.168.231	attackbotsspam	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-01 05:12:44
115.229.207.143	attackspam	(sshd) Failed SSH login from 115.229.207.143 (CN/China/-): 10 in the last 3600 secs	2020-10-01 05:29:59
103.149.162.84	attackspambots	Sep 30 09:31:10 pmg postfix/postscreen[2687]: NOQUEUE: reject: RCPT from [103.149.162.84]:54561: 550 5.7.1 Service unavailable; client [103.149.162.84] blocked using cbl.abuseat.org; from=, to=	2020-10-01 05:27:48
125.227.141.116	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-30T18:04:40Z and 2020-09-30T18:36:19Z	2020-10-01 05:28:37
206.189.18.40	attackbotsspam	2020-09-30T23:07:06.803643centos sshd[8880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.18.40 user=root 2020-09-30T23:07:08.907032centos sshd[8880]: Failed password for root from 206.189.18.40 port 43726 ssh2 2020-09-30T23:11:31.628576centos sshd[9186]: Invalid user centos from 206.189.18.40 port 53644 ...	2020-10-01 05:12:05
192.241.239.9	attackspambots	TCP port : 49152	2020-10-01 05:08:38
41.210.16.13	attackbotsspam	SSH invalid-user multiple login attempts	2020-10-01 05:09:03

最近上报的IP列表

54.152.255.136	162.241.175.211	117.48.208.43	149.56.180.252
112.120.223.240	85.228.91.54	111.246.127.218	189.240.124.61
138.197.173.210	119.28.178.226	13.67.51.182	148.70.209.112
25.182.134.145	139.59.29.42	109.169.193.76	20.232.7.65
118.138.103.33	134.7.151.245	115.240.33.10	82.131.207.234

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表