45.14.150.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Romania

运营商(isp): SC Netsilvania Network SRL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	" "	2020-09-11 22:50:59
attackbots	Brute%20Force%20SSH	2020-09-11 14:57:18
attack	(sshd) Failed SSH login from 45.14.150.52 (RO/Romania/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Sep 10 18:58:35 centos8 sshd[164313]: Invalid user test1 from 45.14.150.52 port 37620 Sep 10 18:58:37 centos8 sshd[164313]: Failed password for invalid user test1 from 45.14.150.52 port 37620 ssh2 Sep 10 19:08:22 centos8 sshd[164606]: Invalid user range from 45.14.150.52 port 53926	2020-09-11 07:09:18
attackspam	Jul 9 20:05:27 xeon sshd[30585]: Failed password for invalid user takei from 45.14.150.52 port 54132 ssh2	2020-07-10 03:37:18
attackbotsspam	2020-06-29T19:49:31.723648server.espacesoutien.com sshd[2384]: Invalid user guohui from 45.14.150.52 port 57330 2020-06-29T19:49:31.743360server.espacesoutien.com sshd[2384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 2020-06-29T19:49:31.723648server.espacesoutien.com sshd[2384]: Invalid user guohui from 45.14.150.52 port 57330 2020-06-29T19:49:33.784093server.espacesoutien.com sshd[2384]: Failed password for invalid user guohui from 45.14.150.52 port 57330 ssh2 ...	2020-06-30 04:30:24
attackspambots	unauthorized connection attempt	2020-06-29 17:32:20
attackspam	leo_www	2020-06-25 03:46:07
attackbotsspam	Jun 21 05:49:49 minden010 sshd[16053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Jun 21 05:49:51 minden010 sshd[16053]: Failed password for invalid user admin from 45.14.150.52 port 52266 ssh2 Jun 21 05:57:09 minden010 sshd[19236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 ...	2020-06-21 12:53:37
attackbots	Jun 7 22:11:51 cdc sshd[6218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 user=root Jun 7 22:11:52 cdc sshd[6218]: Failed password for invalid user root from 45.14.150.52 port 57818 ssh2	2020-06-08 06:58:56
attackbotsspam	SIP/5060 Probe, BF, Hack -	2020-05-28 16:20:59
attack	TCP (SYN) 45.14.150.52:58729 -> port 18968, len 44	2020-05-25 03:30:11
attackspambots	SSH Invalid Login	2020-05-23 06:39:22
attackbots	May 21 14:03:05 Invalid user nrg from 45.14.150.52 port 60374	2020-05-22 02:39:12
attack	RO_Parfumuri Femei.com SRL_<177>1588971058 [1:2403348:57130] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 25 [Classification: Misc Attack] [Priority: 2]: {TCP} 45.14.150.52:46788	2020-05-09 05:10:27
attackspambots	Apr 22 06:40:36 sshgateway sshd\[452\]: Invalid user zz from 45.14.150.52 Apr 22 06:40:36 sshgateway sshd\[452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Apr 22 06:40:38 sshgateway sshd\[452\]: Failed password for invalid user zz from 45.14.150.52 port 42502 ssh2	2020-04-22 14:53:23
attack	Apr 16 14:12:26 [host] sshd[29144]: pam_unix(sshd: Apr 16 14:12:27 [host] sshd[29144]: Failed passwor Apr 16 14:19:31 [host] sshd[29450]: Invalid user l	2020-04-16 20:24:26
attack	Apr 16 06:04:30 host sshd[62465]: Invalid user grid from 45.14.150.52 port 48704 ...	2020-04-16 12:48:05
attack	SSH login attempts.	2020-04-09 17:44:58
attackbotsspam	Apr 2 20:23:27 vps647732 sshd[9238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Apr 2 20:23:29 vps647732 sshd[9238]: Failed password for invalid user ssq from 45.14.150.52 port 54950 ssh2 ...	2020-04-03 03:06:55
attackbots	[ssh] SSH attack	2020-03-19 02:09:06
attackspam	Mar 6 01:38:36 firewall sshd[15624]: Invalid user hata123 from 45.14.150.52 Mar 6 01:38:38 firewall sshd[15624]: Failed password for invalid user hata123 from 45.14.150.52 port 35990 ssh2 Mar 6 01:46:52 firewall sshd[15768]: Invalid user eppc from 45.14.150.52 ...	2020-03-06 21:27:54
attack	Feb 23 14:28:32 tuxlinux sshd[45171]: Invalid user tanwei from 45.14.150.52 port 46186 Feb 23 14:28:32 tuxlinux sshd[45171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Feb 23 14:28:32 tuxlinux sshd[45171]: Invalid user tanwei from 45.14.150.52 port 46186 Feb 23 14:28:32 tuxlinux sshd[45171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Feb 23 14:28:32 tuxlinux sshd[45171]: Invalid user tanwei from 45.14.150.52 port 46186 Feb 23 14:28:32 tuxlinux sshd[45171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Feb 23 14:28:34 tuxlinux sshd[45171]: Failed password for invalid user tanwei from 45.14.150.52 port 46186 ssh2 ...	2020-02-23 22:34:33
attackbots	SSH bruteforce (Triggered fail2ban)	2020-02-17 07:08:29

相同子网IP讨论:

IP	类型	评论内容	时间
45.14.150.51	attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-11 04:37:24
45.14.150.51	attack	(sshd) Failed SSH login from 45.14.150.51 (RO/Romania/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 10 08:12:10 server4 sshd[27424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.51 user=nobody Oct 10 08:12:12 server4 sshd[27424]: Failed password for nobody from 45.14.150.51 port 59558 ssh2 Oct 10 08:29:52 server4 sshd[10555]: Invalid user majordomo5 from 45.14.150.51 Oct 10 08:29:52 server4 sshd[10555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.51 Oct 10 08:29:54 server4 sshd[10555]: Failed password for invalid user majordomo5 from 45.14.150.51 port 56344 ssh2	2020-10-10 20:35:58
45.14.150.130	attackbots	Sep 28 00:55:58 localhost sshd\[21533\]: Invalid user ftp_test from 45.14.150.130 Sep 28 00:55:58 localhost sshd\[21533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.130 Sep 28 00:56:00 localhost sshd\[21533\]: Failed password for invalid user ftp_test from 45.14.150.130 port 52920 ssh2 Sep 28 01:04:38 localhost sshd\[21805\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.130 user=root Sep 28 01:04:40 localhost sshd\[21805\]: Failed password for root from 45.14.150.130 port 34036 ssh2 ...	2020-09-28 07:24:40
45.14.150.130	attackspambots	Sep 27 14:48:36 scw-6657dc sshd[10123]: Failed password for root from 45.14.150.130 port 37550 ssh2 Sep 27 14:48:36 scw-6657dc sshd[10123]: Failed password for root from 45.14.150.130 port 37550 ssh2 Sep 27 14:57:12 scw-6657dc sshd[10371]: Invalid user mc from 45.14.150.130 port 48166 ...	2020-09-27 23:55:05
45.14.150.130	attackspambots	k+ssh-bruteforce	2020-09-27 15:56:32
45.14.150.140	attackbots	sshd jail - ssh hack attempt	2020-09-24 01:06:19
45.14.150.140	attackbots	sshd jail - ssh hack attempt	2020-09-23 17:09:07
45.14.150.51	attack	Sep 22 12:51:43 ip106 sshd[9293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.51 Sep 22 12:51:46 ip106 sshd[9293]: Failed password for invalid user gb from 45.14.150.51 port 39746 ssh2 ...	2020-09-22 21:04:53
45.14.150.51	attack	$f2bV_matches	2020-09-22 05:14:43
45.14.150.140	attackspambots	2020-09-20T15:00:46.079720abusebot-3.cloudsearch.cf sshd[10613]: Invalid user frappe from 45.14.150.140 port 39690 2020-09-20T15:00:46.085728abusebot-3.cloudsearch.cf sshd[10613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.140 2020-09-20T15:00:46.079720abusebot-3.cloudsearch.cf sshd[10613]: Invalid user frappe from 45.14.150.140 port 39690 2020-09-20T15:00:48.233131abusebot-3.cloudsearch.cf sshd[10613]: Failed password for invalid user frappe from 45.14.150.140 port 39690 ssh2 2020-09-20T15:09:48.367897abusebot-3.cloudsearch.cf sshd[10690]: Invalid user git from 45.14.150.140 port 50204 2020-09-20T15:09:48.373615abusebot-3.cloudsearch.cf sshd[10690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.140 2020-09-20T15:09:48.367897abusebot-3.cloudsearch.cf sshd[10690]: Invalid user git from 45.14.150.140 port 50204 2020-09-20T15:09:50.595996abusebot-3.cloudsearch.cf sshd[10690]: Failed ...	2020-09-21 01:34:26
45.14.150.140	attackspam	45.14.150.140 (RO/Romania/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 20 01:43:25 server2 sshd[12632]: Failed password for root from 51.79.84.101 port 47466 ssh2 Sep 20 01:43:10 server2 sshd[12434]: Failed password for root from 149.56.132.202 port 43078 ssh2 Sep 20 01:43:15 server2 sshd[12610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.127.59 user=root Sep 20 01:43:17 server2 sshd[12610]: Failed password for root from 139.155.127.59 port 53912 ssh2 Sep 20 01:43:34 server2 sshd[12715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.140 user=root IP Addresses Blocked: 51.79.84.101 (CA/Canada/-) 149.56.132.202 (CA/Canada/-) 139.155.127.59 (CN/China/-)	2020-09-20 17:33:15
45.14.150.140	attack	Invalid user server from 45.14.150.140 port 57638	2020-09-13 02:55:01
45.14.150.140	attack	Invalid user server from 45.14.150.140 port 43064	2020-09-12 18:58:12
45.14.150.86	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 24 - port: 1722 proto: tcp cat: Misc Attackbytes: 60	2020-09-11 00:44:59
45.14.150.86	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-10 16:03:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.14.150.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.14.150.52.			IN	A

;; AUTHORITY SECTION:
.			373	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021601 1800 900 604800 86400

;; Query time: 210 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 07:08:27 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 52.150.14.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.150.14.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
139.199.164.21	attackbotsspam	May 31 12:51:13 gw1 sshd[18630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.164.21 May 31 12:51:15 gw1 sshd[18630]: Failed password for invalid user bsugar from 139.199.164.21 port 45254 ssh2 ...	2020-05-31 17:57:23
35.239.127.71	attackspambots	May 31 07:27:15 piServer sshd[31025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.239.127.71 May 31 07:27:18 piServer sshd[31025]: Failed password for invalid user admin from 35.239.127.71 port 36058 ssh2 May 31 07:32:26 piServer sshd[31704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.239.127.71 ...	2020-05-31 17:57:00
152.136.50.26	attackspam	k+ssh-bruteforce	2020-05-31 17:59:50
24.251.190.163	attackbots	Invalid user adrian from 24.251.190.163 port 34784	2020-05-31 18:13:49
121.69.89.78	attackspambots	Invalid user Root123 from 121.69.89.78 port 48338	2020-05-31 18:00:43
203.86.7.110	attackspam	prod8 ...	2020-05-31 18:28:34
68.183.100.153	attack	May 31 11:08:12 ns382633 sshd\[15388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.100.153 user=root May 31 11:08:13 ns382633 sshd\[15388\]: Failed password for root from 68.183.100.153 port 49224 ssh2 May 31 11:16:42 ns382633 sshd\[17043\]: Invalid user payroll from 68.183.100.153 port 49756 May 31 11:16:42 ns382633 sshd\[17043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.100.153 May 31 11:16:44 ns382633 sshd\[17043\]: Failed password for invalid user payroll from 68.183.100.153 port 49756 ssh2	2020-05-31 18:11:25
162.243.215.241	attack	May 31 18:06:13 localhost sshd[1425969]: Invalid user test123 from 162.243.215.241 port 40220 ...	2020-05-31 18:31:59
14.169.251.93	attackbotsspam	2020-05-3105:47:431jfEwo-0002uX-JO\<=info@whatsup2013.chH=$localhost$[222.104.177.185]:55724P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3016id=07c7287b705b8e82a5e05605f136bcb083de8cc6@whatsup2013.chT="tochukwuebukaisrael313"forchukwuebukaisrael313@gmail.comromero18miguelangel@gmail.cometheridge47@gmail.com2020-05-3105:48:021jfEx6-0002vO-Qw\<=info@whatsup2013.chH=$localhost$[14.240.16.46]:38303P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2975id=86f75a1c173ce91a39c7316269bd84280be1b22b04@whatsup2013.chT="toprofjavier11"forprofjavier11@gmail.comruzni51@gmail.comredneck196925@hotmail.com2020-05-3105:48:131jfExJ-0002wr-AQ\<=info@whatsup2013.chH=$localhost$[14.169.251.93]:43661P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3031id=0f0af2a1aa8154587f3a8cdf2bec666a597c2950@whatsup2013.chT="tojeffreymadsen"forjeffreymadsen@gmail.comcomposer3201@gmail.comerocx92@gmail.com20	2020-05-31 18:09:50
159.203.74.227	attackspambots	May 31 11:36:16 sshd\[31978\]: User root from 159.203.74.227 not allowed because not listed in AllowUsersMay 31 11:36:18 sshd\[31978\]: Failed password for invalid user root from 159.203.74.227 port 53800 ssh2 ...	2020-05-31 18:06:04
118.24.104.55	attackspambots	May 31 09:01:07 DAAP sshd[3841]: Invalid user himanshu from 118.24.104.55 port 36664 May 31 09:01:07 DAAP sshd[3841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.104.55 May 31 09:01:07 DAAP sshd[3841]: Invalid user himanshu from 118.24.104.55 port 36664 May 31 09:01:09 DAAP sshd[3841]: Failed password for invalid user himanshu from 118.24.104.55 port 36664 ssh2 May 31 09:04:36 DAAP sshd[3888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.104.55 user=root May 31 09:04:38 DAAP sshd[3888]: Failed password for root from 118.24.104.55 port 42040 ssh2 ...	2020-05-31 18:20:55
178.128.62.78	attackspam	May 31 09:08:52 DAAP sshd[3935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.62.78 user=root May 31 09:08:54 DAAP sshd[3935]: Failed password for root from 178.128.62.78 port 38782 ssh2 May 31 09:15:07 DAAP sshd[4047]: Invalid user unicorn from 178.128.62.78 port 56632 May 31 09:15:07 DAAP sshd[4047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.62.78 May 31 09:15:07 DAAP sshd[4047]: Invalid user unicorn from 178.128.62.78 port 56632 May 31 09:15:08 DAAP sshd[4047]: Failed password for invalid user unicorn from 178.128.62.78 port 56632 ssh2 ...	2020-05-31 18:11:11
106.54.32.196	attackspambots	Brute-force attempt banned	2020-05-31 17:53:03
58.208.84.93	attackspam	May 31 07:14:58 vps687878 sshd\[24300\]: Failed password for invalid user bregenz from 58.208.84.93 port 51708 ssh2 May 31 07:17:14 vps687878 sshd\[24649\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.208.84.93 user=root May 31 07:17:16 vps687878 sshd\[24649\]: Failed password for root from 58.208.84.93 port 52900 ssh2 May 31 07:19:41 vps687878 sshd\[24751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.208.84.93 user=root May 31 07:19:42 vps687878 sshd\[24751\]: Failed password for root from 58.208.84.93 port 54202 ssh2 ...	2020-05-31 18:06:27
106.13.29.200	attackspam	May 31 11:32:53 h2646465 sshd[660]: Invalid user wei from 106.13.29.200 May 31 11:32:53 h2646465 sshd[660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.200 May 31 11:32:53 h2646465 sshd[660]: Invalid user wei from 106.13.29.200 May 31 11:32:55 h2646465 sshd[660]: Failed password for invalid user wei from 106.13.29.200 port 42856 ssh2 May 31 11:49:01 h2646465 sshd[1738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.200 user=root May 31 11:49:03 h2646465 sshd[1738]: Failed password for root from 106.13.29.200 port 35408 ssh2 May 31 11:51:59 h2646465 sshd[1984]: Invalid user admin from 106.13.29.200 May 31 11:51:59 h2646465 sshd[1984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.200 May 31 11:51:59 h2646465 sshd[1984]: Invalid user admin from 106.13.29.200 May 31 11:52:01 h2646465 sshd[1984]: Failed password for invalid user admin from 106.13.29.200 por	2020-05-31 18:22:17

最近上报的IP列表

106.13.3.238	3.123.154.171	190.95.96.212	115.63.204.123
5.165.86.163	189.209.1.39	202.130.169.177	11.111.197.14
136.236.66.174	195.97.27.1	55.193.12.122	189.209.0.52
128.14.226.167	211.95.28.170	201.247.45.118	189.209.0.39
174.52.209.168	198.251.89.19	189.209.0.241	23.95.12.242